Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-03-2017 Ran by Frazier (28-03-2017 15:36:14) Running from C:\Users\Frazier\Desktop Windows 7 Professional Service Pack 1 (X64) (2011-11-15 16:23:13) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-998246979-33875040-2341155288-500 - Administrator - Disabled) Frazier (S-1-5-21-998246979-33875040-2341155288-1000 - Administrator - Enabled) => C:\Users\Frazier Guest (S-1-5-21-998246979-33875040-2341155288-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-998246979-33875040-2341155288-1006 - Limited - Enabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Spybot - Search and Destroy (Disabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 7 Days to Die (HKLM-x32\...\Steam App 251570) (Version: - The Fun Pimps) ABBYY FineReader 9.0 Sprint (HKLM-x32\...\ABBYY FineReader 9.0 Sprint) (Version: 9.01.513.58212 - ABBYY) ABBYY FineReader 9.0 Sprint (x32 Version: 9.01.513.58212 - ABBYY) Hidden ActivClient CAC x64 (HKLM\...\{86E45973-5352-439F-A115-2E8EE4D40140}) (Version: 6.2 - ActivIdentity) Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 15.023.20070 - Adobe Systems Incorporated) Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.023.20070 - Adobe Systems Incorporated) Adobe After Effects CC 2015 (HKLM-x32\...\{147EC100-14BE-45EF-AB42-35BAEE7D02F0}) (Version: 13.5.1 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 14.0.0.178 - Adobe Systems Incorporated) Adobe Bridge CC (64 Bit) (HKLM-x32\...\{359F8007-6486-429C-A8C5-D67F6897C88C}) (Version: 6.0 - Adobe Systems Incorporated) Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.4.980 - Adobe Systems Incorporated.) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.9.1.335 - Adobe Systems Incorporated) Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.0.6 - Adobe Systems Incorporated) Adobe Flash Player 25 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 25.0.0.127 - Adobe Systems Incorporated) Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.127 - Adobe Systems Incorporated) Adobe Flash Professional CC 2015 (HKLM-x32\...\{31390329-FFF0-11E4-85AD-AF2C4143F080}) (Version: 15.0 - Adobe Systems Incorporated) Adobe Illustrator CC 2015 (HKLM-x32\...\{5680D629-B263-49CC-821E-3CEBD4507B51}) (Version: 19.1.1 - Adobe Systems Incorporated) Adobe InDesign CC 2015 (HKLM-x32\...\{DBFD0312-6E55-1014-8952-E78D43BC0147}) (Version: 11.1.0.122 - Adobe Systems Incorporated) Adobe Media Encoder CC 2015 (HKLM-x32\...\{0FAC7130-BEC5-47A5-8813-1D339B8326ED}) (Version: 9.0.2 - Adobe Systems Incorporated) Adobe Photoshop CC 2015 (HKLM-x32\...\{793C2BF7-A4FE-4608-91C9-9282C5801C21}) (Version: 16.1.1 - Adobe Systems Incorporated) AdobeĀ® Content Viewer (HKLM-x32\...\com.adobe.dmp.contentviewer) (Version: 3.4.3 - Adobe Systems, Incorporated) Akamai NetSession Interface (HKU\S-1-5-21-998246979-33875040-2341155288-1000\...\Akamai) (Version: - Akamai Technologies, Inc) Andy OS (HKLM\...\Andy OS) (Version: 46.16 - Andy OS, Inc) Ansel (Version: 372.54 - NVIDIA Corporation) Hidden Apple Application Support (HKLM-x32\...\{122ADF8C-DDA1-480C-9936-C88F2825B265}) (Version: 2.1.9 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{6A76BEAF-6D1F-4273-A79B-DA8410A2E56B}) (Version: 5.2.0.6 - Apple Inc.) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) ApproveIt Desktop (HKLM-x32\...\{4E01B649-0023-4EB5-9263-57DE317C3418}) (Version: 6.50.25.1000 - Silanis Technology Inc.) ATI Catalyst Install Manager (HKLM\...\{64555D45-1F57-BF1D-1A5E-BFD4C8C0ADB4}) (Version: 3.0.765.0 - ATI Technologies, Inc.) Autodesk SketchBook (HKLM\...\{215A89B7-A6B4-46F2-9EB2-24F63F480AE5}) (Version: 8.23.0000 - Autodesk) AVG SafeGuard toolbar (HKLM-x32\...\AVG SafeGuard toolbar) (Version: 19.6.0.592 - AVG Technologies) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Belkin Setup and Router Monitor (HKLM-x32\...\Belkin Setup and Router Monitor_is1) (Version: - ) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Comcast Desktop Software (v1.2.1) (HKLM-x32\...\{118C3943-1683-42EF-824D-C22E70DB42E7}) (Version: 24 - Comcast) Corel WinDVD (x32 Version: 11 - Corel Inc.) Hidden Corel WinDVD Pro 11 (HKLM-x32\...\_{991D8429-CFD9-48D9-BD85-6EDD3007B5A9}) (Version: 11.0.0.289 - Corel Inc.) Curse Client (HKU\S-1-5-21-998246979-33875040-2341155288-1000\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment) Discord (HKU\S-1-5-21-998246979-33875040-2341155288-1000\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.) Epson Copy Utility 3.5 (HKLM-x32\...\{AA72FB28-73B4-49E5-B6B4-E78F44BBD0AD}) (Version: 3.5.0.0 - ) Epson Event Manager (HKLM-x32\...\{C9AC7ED6-FD1C-4E83-8553-ECF8BCA111E8}) (Version: 3.01.0007 - Seiko Epson Corporation) EPSON Perfection V600 Photo Scanner Driver Update version 3.0.2.0 (HKLM-x32\...\ScannerDriverUpdateEPSON Perfection V600 Photo_is1) (Version: 3.0.2.0 - Epson America Inc.) EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation) EPU (HKLM-x32\...\{9C2AC00C-0C06-4B7E-97A4-A833808D54D6}) (Version: 1.02.20 - ) GameStop App (HKLM-x32\...\GameStop App) (Version: 4.00 - GameStop) GameStop App (x32 Version: 4.00 - GameStop) Hidden Google Earth (HKLM-x32\...\{F6430171-B86B-4639-839E-374913E7911D}) (Version: 7.1.8.3036 - Google) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment) Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment) HP Deskjet 1000 J110 series Basic Device Software (HKLM\...\{883B114D-BD3E-498F-9DAD-5E4A8E1C43BA}) (Version: 22.50.231.0 - Hewlett-Packard Co.) HP Deskjet 1000 J110 series Help (HKLM-x32\...\{DDDFCC77-7F9C-45E9-B38E-721BA599BA0C}) (Version: 140.0.65.65 - Hewlett Packard) HP ENVY 120 series Basic Device Software (HKLM\...\{0E96CEFA-F256-4E54-BB46-34FA4A8847D7}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) HP ENVY 120 series Help (HKLM-x32\...\{B45F1BFE-C8D5-4F09-BD54-90CB32BEDE12}) (Version: 28.0.0 - Hewlett Packard) HP ENVY 120 series Product Improvement Study (HKLM\...\{E0C8943E-2DA5-4F82-A54E-76157E95AA30}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP) HTC Driver Installer (HKLM-x32\...\{6D6664A9-3342-4948-9B7E-034EFE366F0F}) (Version: 2.0.7.018 - HTC Corporation) IBM Lotus Forms Viewer 3.5.1 (HKLM-x32\...\{A0BBF7AB-2F47-47DC-BB02-4C826F2BC73C}) (Version: 7.6.1.123 - IBM) ICA (x32 Version: 1.0 - Corel Inc.) Hidden IPM (x32 Version: 1.00.0000 - Corel Inc.) Hidden iTunes (HKLM\...\{840A3BAA-4C68-4581-9C7A-6F8D6CF531B9}) (Version: 10.6.3.25 - Apple Inc.) Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation) Java SE Development Kit 7 Update 9 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0170090}) (Version: 1.7.0.90 - Oracle) JMicron JMB36X Driver (HKLM-x32\...\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}) (Version: 1.00.0000 - JMicron Technology Corp.) Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Logitech Gaming Software 8.89 (HKLM\...\Logitech Gaming Software) (Version: 8.89.68 - Logitech Inc.) McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.130.10 - McAfee, Inc.) Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft IntelliType Pro 7.1 (HKLM\...\{E6B7BD80-A921-4C72-A68B-44A9EB438BE4}) (Version: 7.10.344.0 - Microsoft) Microsoft Office 365 ProPlus - en-us (HKLM\...\O365ProPlusRetail - en-us) (Version: 15.0.4911.1002 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.) Mozilla Firefox 52.0.2 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 52.0.2 (x86 en-US)) (Version: 52.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 52.0.2.6291 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) NVIDIA 3D Vision Controller Driver 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation) NVIDIA 3D Vision Driver 372.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 372.54 - NVIDIA Corporation) NVIDIA Graphics Driver 372.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 372.54 - NVIDIA Corporation) NVIDIA HD Audio Driver 1.3.34.15 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.15 - NVIDIA Corporation) NVIDIA PhysX System Software 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) Office 15 Click-to-Run Extensibility Component (Version: 15.0.4911.1002 - Microsoft Corporation) Hidden Office 15 Click-to-Run Licensing Component (Version: 15.0.4911.1002 - Microsoft Corporation) Hidden Office 15 Click-to-Run Localization Component (Version: 15.0.4911.1002 - Microsoft Corporation) Hidden Origin (HKLM-x32\...\Origin) (Version: 9.4.20.386 - Electronic Arts, Inc.) Overwatch Test (HKLM-x32\...\Overwatch Test) (Version: - Blizzard Entertainment) Platform (x32 Version: 1.34 - VIA Technologies, Inc.) Hidden PMB (HKLM-x32\...\{B6A98E5F-D6A7-46FB-9E9D-1F7BF443491C}) (Version: 5.0.00.10260 - Sony Corporation) Power Tab Editor 1.7 (HKLM-x32\...\{6B3CA80E-6AC0-4725-BABF-9B0FEF880CB3}) (Version: 1.7.0 - Power Tab Software) Print Conductor 4.6 (HKLM-x32\...\Print Conductor_is1) (Version: 4.6 - fCoder Group, Inc.) QuickTime (HKLM-x32\...\{0E64B098-8018-4256-BA23-C316A43AD9B0}) (Version: 7.72.80.56 - Apple Inc.) RAR File Open Knife - Free Opener (HKLM-x32\...\RAR File Open Knife - Free Opener) (Version: 7 - Philipp Winterberg) Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.20.15.1031 - Razer Inc.) Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.21.531.2010 - Realtek) Reimage Repair (HKLM\...\Reimage Repair) (Version: 1.8.4.9 - Reimage) <==== ATTENTION Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.32.0 - Renesas Electronics Corporation) Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.32.0 - Renesas Electronics Corporation) Hidden Screenpresso (HKU\S-1-5-21-998246979-33875040-2341155288-1000\...\Screenpresso) (Version: 1.6.7.0 - Learnpulse) Sculptris Alpha 6 (HKLM-x32\...\InstallShield_{D2883AB6-09B4-4981-AAF8-E695411EEC9A}) (Version: 0.6 - Pixologic) Sculptris Alpha 6 (x32 Version: 0.6 - Pixologic) Hidden Setup (x32 Version: 11.0 - Corel Inc.) Hidden SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.11.4.0 - NVIDIA Corporation) Hidden Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.) StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment) Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.6 - TeamSpeak Systems GmbH) TurboV EVO (HKLM-x32\...\{491D92A9-69CA-4EB4-81D3-0106F9337957}) (Version: 1.02.32 - ) Universal Adb Driver (HKLM-x32\...\{D9C4202E-6D51-4B06-A8F1-22316E654BCA}) (Version: 1.0.0 - ClockworkMod) Universal Document Converter (Demo) (HKLM-x32\...\Universal Document Converter_is1) (Version: 6.5 - fCoder Group, Inc.) Unreal Tournament: Game of the Year Edition (HKLM-x32\...\Steam App 13240) (Version: - Epic Games, Inc.) Ventrilo Client for Windows x64 (HKLM\...\{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}) (Version: 3.0.8.0 - Flagship Industries, Inc.) VIA Platform Device Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.) Viewer_armyifx (HKLM-x32\...\Viewer_armyifx) (Version: 3.5.1 - ) VMware Player (HKLM\...\{6D211A09-EB2A-4B83-ACCB-13B1BC12AF4E}) (Version: 12.5.2 - VMware, Inc.) VMware VIX (HKLM-x32\...\{F99FC179-EA67-4BBC-8955-BDDA0CB94B88}) (Version: 1.15.6.00000 - VMware, Inc.) Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1-2) (Version: 1.0.11.1 - LunarG, Inc.) Vulkan Run Time Libraries 1.0.11.1 (Version: 1.0.11.1 - LunarG, Inc.) Hidden Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.3.18-5 - Wacom Technology Corp.) WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.) WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation) Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation) WinZip 16.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240CB}) (Version: 16.0.9691 - WinZip Computing, S.L. ) World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment) World of Warcraft Beta (HKLM-x32\...\World of Warcraft Beta) (Version: 5.0.5.16030 - Blizzard Entertainment) World of Warcraft Classic (HKLM-x32\...\{D55ED80F-FAFD-40E1-99FC-89AF8614A9B5}_is1) (Version: 1.12.1.5875 - Blizzard Entertainment) Worm.is: The Game (HKLM\...\Steam App 466910) (Version: - Freakinware Studios) ZBrush 4R7 (HKLM-x32\...\ZBrush 4R7 4R7) (Version: 4R7 - Pixologic) ZipGenius 6.3 (HKLM-x32\...\{EC3B598C-1151-4191-B5B4-A9072ADE6259}_is1) (Version: 6.3 - The ZipGenius Team) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-998246979-33875040-2341155288-1000_Classes\CLSID\{472dac16-3205-4726-b8ff-8b490e2ce5ad}\InprocServer32 -> C:\Windows\system32\dfshim.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-998246979-33875040-2341155288-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems) ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {19C9134F-DD10-49AC-9196-D1B8EC04C551} - System32\Tasks\Reimage Reminder => C:\Program Files\Reimage\Reimage Repair\ReimageReminder.exe [2016-11-13] (Reimage ltd.) <==== ATTENTION Task: {399AB491-5C5F-4900-A0A4-30ABDF14741D} - System32\Tasks\HPCustParticipation HP ENVY 120 series => C:\Program Files\HP\HP ENVY 120 series\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.) Task: {3EA3A2DF-1FF3-4C44-9F1D-CB770D9FB750} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2016-11-01] (Microsoft Corporation) Task: {40EFEFEF-4715-4292-97DB-89C590FB329F} - System32\Tasks\{6BD30371-A2CA-4295-874A-A635B57A15B4} => pcalua.exe -a "C:\Users\Frazier\Downloads\World of Warcraft Beta Setup.exe" -d C:\Users\Frazier\Downloads Task: {4416C58B-0B04-49B3-9611-DF64D4ECB7C8} - \Traffic Exchange -> No File <==== ATTENTION Task: {4CC32F28-89EC-40F0-BA97-5C3867CE9657} - System32\Tasks\{447DF3B2-6E30-4B53-9E31-053E2DC3332E} => pcalua.exe -a "C:\Users\Frazier\Desktop\ApproveIt 6.5\AGMDEFAULT.EXE" -d "C:\Users\Frazier\Desktop\ApproveIt 6.5" Task: {51E4EB14-553B-4043-8B65-2BB63A6C1EE7} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-01-27] (AVAST Software) Task: {5346A353-B2B4-4994-ADCE-19B551146E25} - System32\Tasks\AdobeAAMUpdater-1.0-Frazier-PC-Frazier => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated) Task: {5CEB64D6-B738-4F93-924E-8137D079A915} - System32\Tasks\ASUS\TurboVHelp => C:\Program Files (x86)\ASUS\TurboV EVO\TurboVHELP.exe [2010-07-07] (ASUSTeK Computer Inc.) Task: {67E5C197-02C9-4EE4-8A6B-A5E84883BE24} - System32\Tasks\{51275E12-FC38-441A-90FB-AD4A8EEA4100} => Firefox.exe hxxp://ui.skype.com/ui/0/6.3.73.105.457/en/abandoninstall?page=tsMain Task: {6CE87D0C-2A68-4A12-9F83-B9EA30C53BD5} - System32\Tasks\{7F702047-F570-42A9-8FE1-BD8D348C50A5} => pcalua.exe -a C:\Users\Frazier\Downloads\setup.exe -d C:\Users\Frazier\Downloads Task: {6E0873A9-72A4-4393-A6E9-D257FEC33A7B} - System32\Tasks\Microsoft_Hardware_Launch_IType_exe => C:\Program Files\Microsoft IntelliType Pro\IType.exe [2009-11-05] (Microsoft Corporation) Task: {7056F2DE-D6A0-4A21-A034-DC834CFFA00A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2016-11-01] (Microsoft Corporation) Task: {79D4D59B-7151-45E3-AFDC-2ADB5BDB5D7E} - System32\Tasks\{1845F085-FE8C-422F-898E-EC3C15CE37BB} => pcalua.exe -a C:\Users\Frazier\Downloads\Diablo-III-8370-enUS-Installer-downloader.exe -d C:\Users\Frazier\Downloads Task: {7BBBD9AC-1B94-424E-8C19-4A5437808974} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {7D856E19-3385-4D78-9B2B-2D79A04AF1A6} - \Online Application Guard -> No File <==== ATTENTION Task: {7F2B43F5-106C-4E5B-8CD6-18E962E3A441} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {8186B315-0A0F-41F1-8110-207A9BDDD24F} - \Traffic Exchange Guardian -> No File <==== ATTENTION Task: {879F48E4-5429-4962-A444-6120FA9FBA7C} - System32\Tasks\{9D2F356A-4376-418C-A810-9464AC730F97} => pcalua.exe -a "C:\Users\Frazier\Desktop\ApproveIt 6.5\AGMInst.exe" -d "C:\Users\Frazier\Desktop\ApproveIt 6.5" Task: {8FB01EF2-20FF-43FB-957B-57BE839DF0BB} - \Online Application Guardian -> No File <==== ATTENTION Task: {92B2193F-3845-464C-8B48-7F9978C87DC0} - System32\Tasks\{DCD68AD7-001A-4C39-94D4-BC6BD13AEE98} => pcalua.exe -a "C:\Users\Frazier\AppData\Local\Temp\{2B408CB5-029F-4E1D-A6E6-6FFE1FDC2765}\Photoshop_14_LS20\Adobe CC\payloads\Microsoft VC 2010 Redist (x64)\vcredist_x64.exe" -d "C:\Users\Frazier\AppData\Local\Temp\{2B408CB5-029F-4E1D-A6E6-6FFE1FDC2765}\Photoshop_14_LS20\Adobe CC\payloads\Microsoft VC 2010 Red (the data entry has 10 more characters). <==== ATTENTION Task: {AB3B6EC1-9674-4821-86A8-55E8DD333193} - System32\Tasks\ASUS\RunDAOD => C:\Windows\DAODx.exe [2009-03-30] () Task: {AB7749DA-2A5C-499A-9F7D-427F06BEA1E8} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-01-17] (Microsoft Corporation) Task: {AEECB08F-411E-4DC3-A39B-60474036C148} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx64\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2016-11-01] (Microsoft Corporation) Task: {B50325E2-6D4E-4E30-939F-F960236B3ED3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated) Task: {C15B7F86-92E2-4991-B278-8B338AAF7F6B} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-01-17] (Microsoft Corporation) Task: {C5516AB0-9152-4ACA-B34E-8F8D562F4805} - \GEN_Interval -> No File <==== ATTENTION Task: {C6648FC3-B70B-49D7-9B43-D6E12FDA13E5} - \Traffic Exchange Guard -> No File <==== ATTENTION Task: {C978EB26-D652-4846-B0BA-98E282A3F9D0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {C9CBC214-1788-46ED-B88F-331FBFF493C2} - System32\Tasks\ReimageUpdater => C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [2017-01-19] (ReimageĀ®) <==== ATTENTION Task: {CFBEBE28-1E89-41EA-8B01-18149184F8AA} - \GEN -> No File <==== ATTENTION Task: {D422E3F4-577E-4CDA-BF70-5446AF0CA398} - \Online Application -> No File <==== ATTENTION Task: {EB78CA1D-EA92-444A-AD74-77F3F0B5781D} - System32\Tasks\{128217F6-3333-4F8E-A82F-0C68A116232F} => pcalua.exe -a C:\Users\Frazier\Downloads\InstallRoot_v3.15A.exe -d "C:\Program Files (x86)\Mozilla Firefox" Task: {F97EACF6-7C28-4AE3-90DA-882926C2B497} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-03-14] (Adobe Systems Incorporated) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) ==================== Shortcuts ============================= (The entries could be listed to be restored or removed.) ==================== Loaded Modules (Whitelisted) ============== 2011-11-15 12:47 - 2010-06-24 02:19 - 00109056 ____R () C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe 2014-04-20 15:39 - 2017-01-17 03:25 - 00117440 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll 2016-08-27 18:05 - 2016-06-14 16:03 - 00367552 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll 2016-08-27 18:05 - 2016-06-14 16:03 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll 2016-08-27 18:05 - 2016-06-14 16:03 - 03611584 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll 2016-07-09 20:48 - 2016-06-14 16:03 - 00288192 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll 2016-09-24 18:20 - 2016-09-24 18:21 - 00189264 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe 2011-11-15 13:11 - 2016-08-11 07:49 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2016-08-27 18:05 - 2016-06-14 16:03 - 01988544 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll 2016-08-27 18:05 - 2016-06-14 16:03 - 02665920 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll 2016-08-27 18:05 - 2016-06-14 16:03 - 01840576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll 2016-07-09 20:48 - 2016-06-14 16:03 - 00207296 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll 2016-10-25 10:57 - 2016-10-25 10:57 - 00491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll 2017-03-25 18:11 - 2017-01-31 08:34 - 08909512 _____ () C:\Program Files\Microsoft Office 15\root\Office15\1033\GrooveIntlResource.dll 2009-03-30 02:32 - 2009-03-30 02:32 - 00032768 ____R () C:\Windows\DAODx.exe 2015-03-06 20:07 - 2015-03-06 20:07 - 00908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll 2016-12-08 16:47 - 2016-12-08 16:47 - 01096824 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll 2015-03-06 20:07 - 2015-03-06 20:07 - 00060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll 2016-12-08 16:47 - 2016-12-08 16:47 - 00241784 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll 2016-07-23 11:37 - 2016-10-27 12:24 - 01658320 _____ () C:\Program Files\Tablet\Wacom\libxml2.dll 2011-11-15 12:46 - 2009-05-07 04:51 - 00071680 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll 2011-11-15 12:46 - 2009-05-07 04:53 - 00379392 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll 2011-11-15 12:46 - 2008-01-18 02:50 - 00098816 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\VMicApi.dll 2011-11-15 12:46 - 2010-03-02 03:31 - 64105984 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Skin.dll 2016-08-27 18:05 - 2016-06-14 16:03 - 00034240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll 2016-08-27 18:05 - 2016-06-14 16:03 - 00920000 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll 2016-09-23 06:41 - 2016-09-23 06:41 - 00402624 _____ () C:\Program Files\Microsoft Office 15\root\office15\AppVIsvStream64.dll 2016-10-25 10:57 - 2016-10-25 10:57 - 31723696 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe 2013-03-09 10:59 - 2012-02-23 16:57 - 00022944 _____ () C:\Program Files (x86)\Belkin\Router Setup and Monitor\BelkinServicePS.dll 2011-09-27 08:23 - 2011-09-27 08:23 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll 2011-09-27 08:22 - 2011-09-27 08:22 - 01242472 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll 2011-11-15 12:48 - 2010-02-08 18:19 - 00053248 _____ () C:\Program Files (x86)\ASUS\TurboV EVO\HookKey32.dll 2011-11-15 12:48 - 2010-06-01 11:38 - 00253952 _____ () C:\Program Files (x86)\ASUS\TurboV EVO\pngio.dll 2015-05-27 12:32 - 2016-06-14 16:03 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2011-11-15 12:41 - 2009-04-22 21:20 - 00179712 _____ () C:\Program Files (x86)\ASUS\EPU\ASUSSERVICE.DLL 2011-11-15 12:41 - 2010-01-08 18:17 - 00565248 _____ () C:\Program Files (x86)\ASUS\EPU\pngio.dll 2011-11-15 12:41 - 2010-01-08 18:17 - 00053248 _____ () C:\Program Files (x86)\ASUS\EPU\AsSpindownTimeout.dll 2016-10-25 11:51 - 2016-10-25 11:51 - 40523456 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll 2011-11-15 12:48 - 2010-06-01 11:38 - 00061440 _____ () C:\Program Files (x86)\ASUS\TurboV EVO\flashobj.dll 2013-03-09 10:59 - 2010-08-22 21:01 - 00325632 _____ () C:\Program Files (x86)\Belkin\Router Setup and Monitor\QtXml4.dll 2013-03-09 10:59 - 2010-08-22 21:01 - 01954304 _____ () C:\Program Files (x86)\Belkin\Router Setup and Monitor\QtCore4.dll 2013-03-09 10:59 - 2010-08-22 21:01 - 07187456 _____ () C:\Program Files (x86)\Belkin\Router Setup and Monitor\QtGui4.dll 2013-03-09 10:59 - 2010-08-22 21:01 - 00847360 _____ () C:\Program Files (x86)\Belkin\Router Setup and Monitor\QtNetwork4.dll 2013-03-09 10:59 - 2010-08-22 20:32 - 00119808 _____ () C:\Program Files (x86)\Belkin\Router Setup and Monitor\imageformats\qjpeg4.dll 2013-03-09 10:59 - 2012-02-23 16:19 - 00669696 _____ () C:\Program Files (x86)\Belkin\Router Setup and Monitor\gateways\GenericBelkinGatewayLOC.dll 2017-03-25 18:11 - 2017-01-31 06:14 - 08909512 _____ () C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\1033\GrooveIntlResource.dll 2016-10-11 00:15 - 2016-10-11 00:15 - 00118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\fs-ext\build\Release\fs-ext.node 2016-10-11 00:15 - 2016-10-11 00:15 - 00117760 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ref\build\Release\binding.node 2016-10-11 00:15 - 2016-10-11 00:15 - 00125440 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ffi\build\Release\ffi_bindings.node 2016-10-11 00:17 - 2016-10-11 00:17 - 00223232 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node 2016-10-25 11:41 - 2016-10-25 11:41 - 00109760 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin7.dll 2016-10-11 00:14 - 2016-10-11 00:14 - 00121856 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\bufferutil\build\Release\bufferutil.node 2016-10-11 00:14 - 2016-10-11 00:14 - 00166400 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\idle-gc\build\Release\idle-gc.node 2016-10-12 02:08 - 2016-10-12 02:08 - 00118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node 2016-10-12 02:08 - 2016-10-12 02:08 - 00223232 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node 2016-10-12 02:08 - 2016-10-12 02:08 - 00117248 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node 2016-10-12 02:08 - 2016-10-12 02:08 - 00124928 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node 2016-10-25 11:49 - 2016-10-25 11:49 - 00109760 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin7.dll 2016-10-12 02:08 - 2016-10-12 02:08 - 00166400 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\ProgramData\TEMP:58DD92AC [143] AlternateDataStreams: C:\ProgramData\TEMP:76650B61 [208] ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) HKU\S-1-5-21-998246979-33875040-2341155288-1000\Software\Classes\regfile: regedit.exe "%1" <===== ATTENTION ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) IE trusted site: HKU\S-1-5-21-998246979-33875040-2341155288-1000\...\militarycac.com -> hxxps://militarycac.com ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-13 22:34 - 2016-09-24 17:24 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-998246979-33875040-2341155288-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Frazier\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.2.1 - 192.168.202.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == MSCONFIG\startupfolder: C:^Users^Frazier^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Color Calibration Software Gamma Loader.lnk => C:\Windows\pss\Color Calibration Software Gamma Loader.lnk.Startup ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [{F2F5717C-1F4C-4AA1-BAFF-9C63FB1D1A8D}] => (Allow) C:\Program Files (x86)\World of Warcraft\Launcher.exe FirewallRules: [{18E5D1B6-8212-4161-8C3B-AEADEAB17FE3}] => (Allow) C:\Program Files (x86)\World of Warcraft\Launcher.exe FirewallRules: [{287B1816-42E4-4505-A894-546D7BC0FBA1}] => (Allow) C:\Program Files (x86)\World of Warcraft\Launcher.patch.exe FirewallRules: [{316FAED2-C155-4214-A111-B29F90FF4AFE}] => (Allow) C:\Program Files (x86)\World of Warcraft\Launcher.patch.exe FirewallRules: [TCP Query User{B960DFBF-F02F-4D82-85F6-47C7396E3E7A}C:\program files (x86)\world of warcraft\backgrounddownloader.exe] => (Allow) C:\program files (x86)\world of warcraft\backgrounddownloader.exe FirewallRules: [UDP Query User{B78823D5-325E-4986-9995-B8C6981541B9}C:\program files (x86)\world of warcraft\backgrounddownloader.exe] => (Allow) C:\program files (x86)\world of warcraft\backgrounddownloader.exe FirewallRules: [TCP Query User{61154602-71B2-43CB-A3C1-1EF8647575ED}C:\users\frazier\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\frazier\appdata\local\akamai\netsession_win.exe FirewallRules: [UDP Query User{4A2EAF98-C27D-4993-9C12-02EE592C3F8B}C:\users\frazier\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\frazier\appdata\local\akamai\netsession_win.exe FirewallRules: [{3F12C742-CBDD-45DF-977F-89D037EF7B67}] => (Allow) c:\Program Files (x86)\Corel\WinDVD11\\WinDVD.exe FirewallRules: [TCP Query User{DFD26047-E35B-46F3-A62A-DD717CE35583}C:\program files (x86)\corel\windvd11\windvd.exe] => (Allow) C:\program files (x86)\corel\windvd11\windvd.exe FirewallRules: [UDP Query User{38A8C11E-9DBF-4775-BD40-D43C3889DF9B}C:\program files (x86)\corel\windvd11\windvd.exe] => (Allow) C:\program files (x86)\corel\windvd11\windvd.exe FirewallRules: [{64814050-7C0F-4FE3-840E-A6A4F090B2DF}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe FirewallRules: [{D71EA501-F812-41EF-AE54-E0D21E43538A}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{26A36711-CA8E-4C6C-8E1E-34272F1D0683}] => (Allow) LPort=2869 FirewallRules: [{43930B57-3ABC-4CB7-9C49-FDAC4B1BC74B}] => (Allow) LPort=1900 FirewallRules: [{26E526D1-2D72-4342-8DE3-DB69A2936BDA}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe FirewallRules: [{4A926C65-B9B4-4048-8E2D-E42E8F7E3470}] => (Allow) C:\Program Files\HP\HP Deskjet 1000 J110 series\Bin\USBSetup.exe FirewallRules: [{64898542-E7C5-42D1-8B9D-37DCCF00327E}] => (Allow) C:\Program Files\HP\HP Deskjet 1000 J110 series\Bin\USBSetup.exe FirewallRules: [{F878A5C1-E56B-4D8D-9D37-8547A69E7F88}] => (Allow) C:\Program Files\Ventrilo\Ventrilo.exe FirewallRules: [{0AABE3B5-5142-40F9-AC51-85224649C59B}] => (Allow) C:\Program Files\Ventrilo\Ventrilo.exe FirewallRules: [TCP Query User{252EF8AC-AE75-4F35-A6E0-A79137AF2389}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2683-enus-tools-downloader.exe] => (Allow) C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2683-enus-tools-downloader.exe FirewallRules: [UDP Query User{BAEF0D3B-795C-4A2D-9315-F401F444B63B}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2683-enus-tools-downloader.exe] => (Allow) C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2683-enus-tools-downloader.exe FirewallRules: [TCP Query User{1EA0F03B-AD46-4079-9BDF-E343175F5462}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2685-enus-tools-downloader.exe] => (Allow) C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2685-enus-tools-downloader.exe FirewallRules: [UDP Query User{C3E53739-1AED-4225-A2F4-2602A21FBD63}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2685-enus-tools-downloader.exe] => (Allow) C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2685-enus-tools-downloader.exe FirewallRules: [TCP Query User{08378ABD-02EF-4284-8B3C-18243C5BB92A}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2706-enus-tools-downloader.exe] => (Allow) C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2706-enus-tools-downloader.exe FirewallRules: [UDP Query User{2BB9F54B-5993-41D9-91E2-3095376E97B1}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2706-enus-tools-downloader.exe] => (Allow) C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2706-enus-tools-downloader.exe FirewallRules: [TCP Query User{94B83AB3-AB42-4E8C-AFBC-4DD3C641930B}C:\program files (x86)\bittorrent\bittorrent.exe] => (Allow) C:\program files (x86)\bittorrent\bittorrent.exe FirewallRules: [UDP Query User{9FCB6414-9258-413C-BC2F-EB3190024326}C:\program files (x86)\bittorrent\bittorrent.exe] => (Allow) C:\program files (x86)\bittorrent\bittorrent.exe FirewallRules: [TCP Query User{9A3543C2-C601-4EE2-834B-6555658411BC}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2730-enus-tools-downloader.exe] => (Allow) C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2730-enus-tools-downloader.exe FirewallRules: [UDP Query User{A4298301-9A0F-4B7A-A7E5-D0F00E7527A4}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2730-enus-tools-downloader.exe] => (Allow) C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2730-enus-tools-downloader.exe FirewallRules: [TCP Query User{7E29D370-05F8-4A1E-8900-80C30D253282}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe] => (Allow) C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe FirewallRules: [UDP Query User{B2AE14D1-6822-4AC6-A0FF-2842696450FE}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe] => (Allow) C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe FirewallRules: [TCP Query User{F233BB7E-783E-4B68-AFED-A08B2BC3DBB5}C:\users\frazier\downloads\diablo-iii-8370-enus-installer-downloader.exe] => (Allow) C:\users\frazier\downloads\diablo-iii-8370-enus-installer-downloader.exe FirewallRules: [UDP Query User{AAC45320-734D-448F-BCB2-A46A0006BCBC}C:\users\frazier\downloads\diablo-iii-8370-enus-installer-downloader.exe] => (Allow) C:\users\frazier\downloads\diablo-iii-8370-enus-installer-downloader.exe FirewallRules: [TCP Query User{D39AFED1-0377-4D03-8152-6FB0F78BF485}C:\programdata\battle.net\agent\agent.749\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.749\agent.exe FirewallRules: [UDP Query User{55D742C6-569F-4463-8F9D-2369F3CFC380}C:\programdata\battle.net\agent\agent.749\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.749\agent.exe FirewallRules: [TCP Query User{58610549-9E4E-410E-9080-96FA772DE2EB}C:\programdata\battle.net\agent\agent.913\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.913\agent.exe FirewallRules: [UDP Query User{779478D8-5338-4A32-95CB-3685D64C6E8B}C:\programdata\battle.net\agent\agent.913\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.913\agent.exe FirewallRules: [{715A6104-AEC2-4F91-93CE-0A9501454F78}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.954\Agent.exe FirewallRules: [{65DAD644-AC96-49C6-B670-AE9426FD7860}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.954\Agent.exe FirewallRules: [{66312267-B5B4-4C15-BEE8-75718C552497}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe FirewallRules: [{D359BA0A-5BDE-4A1A-BB93-CAF7DECB5A22}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe FirewallRules: [TCP Query User{1A0547C8-F9D2-4695-9421-63E42D392040}C:\programdata\battle.net\agent\agent.976\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.976\agent.exe FirewallRules: [UDP Query User{BC656A40-BEB0-4F9D-84BC-B1733B1292F3}C:\programdata\battle.net\agent\agent.976\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.976\agent.exe FirewallRules: [TCP Query User{C4AB9128-AE1D-4D95-80DB-60C97E383B58}C:\programdata\battle.net\agent\agent.998\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.998\agent.exe FirewallRules: [UDP Query User{FFE15F4E-4549-423D-BA6A-05467151777E}C:\programdata\battle.net\agent\agent.998\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.998\agent.exe FirewallRules: [{C99E81E2-D327-4290-B1E0-610DCC04BD60}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe FirewallRules: [TCP Query User{3AA291EF-723A-4422-B8DB-8B622BFF0A35}C:\programdata\battle.net\agent\agent.1040\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.1040\agent.exe FirewallRules: [UDP Query User{96C64FAB-A0DF-4CA3-A9AC-1ED5F6159A12}C:\programdata\battle.net\agent\agent.1040\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.1040\agent.exe FirewallRules: [{23B8C141-1880-4B9F-8925-AB5006D18A85}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1225\Agent.exe FirewallRules: [{61FE8556-0F53-4DA8-992E-ADB711CBF9D8}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1225\Agent.exe FirewallRules: [TCP Query User{DB00BB9C-97EC-4D44-85C3-4B9F8319741F}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2756-enus-tools-downloader.exe] => (Allow) C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2756-enus-tools-downloader.exe FirewallRules: [UDP Query User{BA74C737-1644-45EC-88AC-D5AAA3D76D5B}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2756-enus-tools-downloader.exe] => (Allow) C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2756-enus-tools-downloader.exe FirewallRules: [TCP Query User{81E6ACF9-720E-445B-9351-95C73E84A6CA}C:\program files (x86)\world of warcraft\temp\wow-4.3-5.0.15890-enus-downloader.exe] => (Allow) C:\program files (x86)\world of warcraft\temp\wow-4.3-5.0.15890-enus-downloader.exe FirewallRules: [UDP Query User{86E02E3D-7956-46E3-ACCF-F1FCED4DC5F7}C:\program files (x86)\world of warcraft\temp\wow-4.3-5.0.15890-enus-downloader.exe] => (Allow) C:\program files (x86)\world of warcraft\temp\wow-4.3-5.0.15890-enus-downloader.exe FirewallRules: [{80B1454D-A60F-4388-A8F1-FC0DD881E9C2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1267\Agent.exe FirewallRules: [{80A44D38-1DBF-4A68-829B-2E88881D47BB}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1267\Agent.exe FirewallRules: [{C7144A17-797F-40C8-9B1F-D21027EE1975}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe FirewallRules: [{D89F9816-505E-422A-BDE7-F6F322EA4047}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe FirewallRules: [{8471FDA1-050D-43D2-AA53-6F29BBD64A73}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe FirewallRules: [{FEAE5983-322E-4E15-B4FD-107D88C395A7}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe FirewallRules: [TCP Query User{0B150BBE-3CC9-4287-AA41-B97525C56C4E}C:\programdata\battle.net\agent\agent.1637\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.1637\agent.exe FirewallRules: [UDP Query User{729D1BE6-FF6E-49E8-9BCD-EF88812CEE22}C:\programdata\battle.net\agent\agent.1637\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.1637\agent.exe FirewallRules: [{7494DE0F-3D62-49D3-AB2F-C0EB7F764F8E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe FirewallRules: [{AEDAE103-A9D4-419A-987B-B584367C08F4}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe FirewallRules: [TCP Query User{2A11EB7E-20FA-41B7-8843-9BA82034C523}C:\users\frazier\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\frazier\appdata\local\akamai\netsession_win.exe FirewallRules: [UDP Query User{C26F9D48-3435-4877-88F8-3911A22DDA29}C:\users\frazier\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\frazier\appdata\local\akamai\netsession_win.exe FirewallRules: [{85A52240-125D-4E6D-BF78-D71361B2BDFE}] => (Allow) C:\Program Files (x86)\Belkin\Router Setup and Monitor\BelkinSetup.exe FirewallRules: [{0AAA2372-EEB5-41B5-8E4F-CCCEA39B4831}] => (Allow) C:\Program Files (x86)\Belkin\Router Setup and Monitor\BelkinSetup.exe FirewallRules: [{C4A21774-96CE-4E7D-AF52-2B22DE524739}] => (Allow) C:\Program Files (x86)\Belkin\Router Setup and Monitor\BelkinSetup.exe FirewallRules: [{E9E94562-AA56-48EF-842A-D5FBD2F776EB}] => (Allow) C:\Program Files (x86)\Belkin\Router Setup and Monitor\BelkinSetup.exe FirewallRules: [{FCD4DC92-8D1A-4765-8783-B20E33703556}] => (Allow) C:\Program Files (x86)\Belkin\Router Setup and Monitor\BelkinSetup.exe FirewallRules: [{35DEF714-5854-4A42-AEEE-DE53B77F058D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe FirewallRules: [{B2117FCC-08F2-4D4F-8966-0321B62B6CCD}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe FirewallRules: [{82D9D2DC-F377-4B5D-A0FC-9146731084A6}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1737\Agent.exe FirewallRules: [{3B848B31-2F7F-4179-B3E9-0945E0012FF6}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1737\Agent.exe FirewallRules: [{86A9506D-5AAC-402D-96EE-F5BBE7E368F6}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1737\Agent.exe FirewallRules: [{A8AEEF56-D523-4A79-86DB-942F4B2D1E2E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1737\Agent.exe FirewallRules: [{F07F4979-0751-4ADD-B6C1-BE11CD0E7F6A}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe FirewallRules: [{5E5B3535-FD62-435B-AAB4-59E48FCCD4B4}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe FirewallRules: [{63003BEE-B553-4699-B6EA-89BAE2F73778}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe FirewallRules: [{11ADB93A-6F89-440F-9F79-D16EFDFDDE21}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe FirewallRules: [{4B7482EC-561D-4DD0-BA6C-368CDEEDB15D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe FirewallRules: [{0D59450D-89AB-4A80-9D91-FE8E8EC4D6FE}] => (Allow) C:\Program Files\HP\HP ENVY 120 series\Bin\DeviceSetup.exe FirewallRules: [{AF0B8BA3-E05E-432C-BC3C-C2CB83D65DD5}] => (Allow) C:\Program Files\HP\HP ENVY 120 series\Bin\HPNetworkCommunicator.exe FirewallRules: [{1B86B769-CF0B-43D9-A530-B2484C5CA9D5}] => (Allow) C:\Program Files\HP\HP ENVY 120 series\Bin\HPNetworkCommunicatorCom.exe FirewallRules: [{274AE6C5-5C5C-41DF-860B-982D143266B8}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe FirewallRules: [{AF0EA3D8-80F5-4F44-BAC8-7B3660491129}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe FirewallRules: [TCP Query User{4B401B02-95E9-4939-809D-E9DFF60E2F5A}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe FirewallRules: [UDP Query User{55F78771-8573-43B7-BDE8-097A7AB2E901}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe FirewallRules: [TCP Query User{B95F595B-261F-46F6-AD03-7692683676AF}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe FirewallRules: [UDP Query User{CD8B0BB4-49AD-4EA2-B657-6C104FC1C140}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe FirewallRules: [{7263F252-92B7-41F1-A24B-B87742766AC0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe FirewallRules: [{714A24EA-9FE6-483F-A280-C10CCA1BC818}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe FirewallRules: [{C9EED53D-F3F4-4FCE-BF3B-DD777A1C617B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe FirewallRules: [{CC9C7A33-22D4-447B-B792-249E01EBAF09}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe FirewallRules: [{1CA401A6-905A-4A7C-91AA-DAD9DFAC7153}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe FirewallRules: [{EB6DF7DB-6100-412B-9A6B-9B3A12E98B51}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe FirewallRules: [TCP Query User{FD46EF9E-6D2F-4169-8EAB-74AABF2225FB}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe FirewallRules: [UDP Query User{B3D62A90-E637-4C4E-B52A-004CF6F459E8}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe FirewallRules: [{BF40EB67-4E53-46F8-8F99-343894EC9A14}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{C6460CD1-B1BE-4A41-A8CE-D92BAA038EB7}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{25E97459-A52A-4AF2-BAB2-40E4DA83A6B9}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe FirewallRules: [{18D1EBA9-9658-4CCE-B993-8C552D4FEA6A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe FirewallRules: [{884123EA-240E-4329-A4C3-DFB02F33620F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe FirewallRules: [{A767C0AA-6EFB-4049-BBAF-98ECE61BE566}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe FirewallRules: [{107C6008-E871-4955-A72C-69FE0680BE70}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe FirewallRules: [{309325F2-FA1C-4939-BD75-93015BAB3DA2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe FirewallRules: [{3451B20D-5238-44A5-9B36-19DB4800F077}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe FirewallRules: [{B535AFD2-80F2-41BB-B2C5-CABD832A0D4E}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe FirewallRules: [{A3A65C54-B4E9-4EDF-8A06-DDC3DBF3B31B}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe FirewallRules: [{F8381122-BCCF-4278-8A48-BB4335C7499B}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe FirewallRules: [TCP Query User{3BA043CF-E9BE-465C-80B6-3353F0245CE6}C:\program files (x86)\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe] => (Allow) C:\program files (x86)\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe FirewallRules: [UDP Query User{7E509E0D-01D4-4436-92B9-D8AC27F95B8E}C:\program files (x86)\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe] => (Allow) C:\program files (x86)\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe FirewallRules: [{71F36009-E091-4176-AC5F-8F229D04D847}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe FirewallRules: [{05F206E2-0F24-4AC4-AA15-A195117794F0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe FirewallRules: [{0ED6437B-0A45-475C-A8A8-88F3DEB929CA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe FirewallRules: [{1898EE61-23DA-4022-8EA1-72D7433712B0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe FirewallRules: [{49D2CB15-B07C-4C34-8DAC-2D437AE506DB}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe FirewallRules: [{06D5BD1D-8D47-45A5-B91F-E8A6E74448A5}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe FirewallRules: [{0922BF3F-F127-4CF9-BFB9-64237921DFE1}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II Public Test.exe FirewallRules: [{8DE03F0C-15E4-4BA8-9A2E-946AFF0B977D}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II Public Test.exe FirewallRules: [TCP Query User{3F139DB1-CCBB-467A-B670-5B6AD3998AB8}C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe FirewallRules: [UDP Query User{DAF9844E-C343-419E-A9A6-CB7FA561D5BA}C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe FirewallRules: [{D0852C9A-5F10-4C46-A79D-F8FDC23CA8F2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe FirewallRules: [{01C1456B-1965-4A82-8CE8-C09C66595084}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe FirewallRules: [{F0929D48-441B-4CEA-A135-638278E5CB00}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2787\Agent.exe FirewallRules: [{2590386D-03A9-4AC2-B031-E5658D5005DA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2787\Agent.exe FirewallRules: [{0A516A36-3A83-40AA-9412-A1310166855B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2816\Agent.exe FirewallRules: [{A938F44C-AC97-44EB-BE08-9FAEC4D4950C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2816\Agent.exe FirewallRules: [{D674DCF7-ED08-4E84-A679-96DA0FA751BC}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe FirewallRules: [{4DC6F986-0EDE-490C-A5E8-EA6CD738C11E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe FirewallRules: [{9477EEB9-02A7-4AE5-A38A-C99FED2D44B3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe FirewallRules: [{9056B843-652C-4E30-B7B1-E67457BC2AFB}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3023\Agent.exe FirewallRules: [{FF4371FC-AD95-4E67-A510-B6A02494576E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3023\Agent.exe FirewallRules: [{D3DB5F72-9566-4ABF-9484-7619B0C1CEF5}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3182\Agent.exe FirewallRules: [{029F1E28-4FF4-4E1B-BC11-6DB96F50E5A0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3182\Agent.exe FirewallRules: [TCP Query User{8A6EE09D-FA58-47DD-B4BC-948966DE6571}C:\programdata\battle.net\agent\agent.3235\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.3235\agent.exe FirewallRules: [UDP Query User{A3A0F263-7CF0-45BF-AB69-00BEB4D4E752}C:\programdata\battle.net\agent\agent.3235\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.3235\agent.exe FirewallRules: [{D9103020-975E-4D97-91AF-FB28E3196DDF}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{F010DE4D-EA1D-4F86-A590-EE8E2151009D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{8C6D9155-272A-4E30-8B99-89531DAB0C6A}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{698FBBEE-AC3D-46AF-BE1A-43D6336712F5}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{645D9E94-FC82-47D5-8FD4-B5BF83FD77B9}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe FirewallRules: [{9FFA3363-A78F-495B-8A07-D5AE18A33CF5}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe FirewallRules: [{C86D2BA8-CAFD-49AB-80EC-ED917CD0A222}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3334\Agent.exe FirewallRules: [{D42D9FCA-3450-4E35-9026-F56B444534C2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3334\Agent.exe FirewallRules: [{CFAE7DFD-9CF3-4587-9229-F218F0CB4CF5}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Unreal Tournament\System\UnrealTournament.exe FirewallRules: [{22AB9469-4864-4991-A1A1-E542C8038F0E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Unreal Tournament\System\UnrealTournament.exe FirewallRules: [{5837ADEB-64C7-42A9-A63A-9064F1BA52C4}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe FirewallRules: [{64250D1C-E12E-497D-BD9E-620FBE0CCDA8}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe FirewallRules: [TCP Query User{5660F044-993E-46DC-A27B-D5E187D1E8BE}C:\program files (x86)\gazillion entertainment\marvel heroes game\unrealengine3\binaries\win32\marvelheroes2015.exe] => (Allow) C:\program files (x86)\gazillion entertainment\marvel heroes game\unrealengine3\binaries\win32\marvelheroes2015.exe FirewallRules: [UDP Query User{F5933226-F41E-4037-B611-F1211116D15E}C:\program files (x86)\gazillion entertainment\marvel heroes game\unrealengine3\binaries\win32\marvelheroes2015.exe] => (Allow) C:\program files (x86)\gazillion entertainment\marvel heroes game\unrealengine3\binaries\win32\marvelheroes2015.exe FirewallRules: [{43AACA2E-3B69-4AD8-A8C4-7E8AA422CF97}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3372\Agent.exe FirewallRules: [{333FA3A7-AF66-40B1-A98D-2059D670BA28}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3372\Agent.exe FirewallRules: [{1A73138A-B556-48C8-AB50-41E982A04A04}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe FirewallRules: [{0BF93BE4-93F1-491B-AB2C-56248A921E11}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe FirewallRules: [{86E295F4-7AEF-4DF2-A359-64FD92E59D9C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe FirewallRules: [{8B8F968E-CE82-4C1C-8E3D-86A6A111C289}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe FirewallRules: [{4A5D87BD-0EB7-49DB-A3F3-794CA7A28B7C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe FirewallRules: [{691D8A40-2CC4-454B-8590-A6644378CC2A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe FirewallRules: [{CF946A19-AFB0-4580-84C0-8D1BFA411D24}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3632\Agent.exe FirewallRules: [{8CEB0FCA-0344-4D7D-979F-FBBBE564EB0B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3632\Agent.exe FirewallRules: [{5C2E5CE0-48EA-4420-BDA4-9ACC01B3CE9D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe FirewallRules: [{FFF9D208-4F22-479F-9083-410DAA0A8064}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe FirewallRules: [TCP Query User{9DC1510A-A8E8-4594-AA60-A6ED3EAB5150}C:\programdata\battle.net\agent\agent.3668\agent.exe] => (Block) C:\programdata\battle.net\agent\agent.3668\agent.exe FirewallRules: [UDP Query User{8022D3A4-C300-4DAB-84E2-E1E9051394E4}C:\programdata\battle.net\agent\agent.3668\agent.exe] => (Block) C:\programdata\battle.net\agent\agent.3668\agent.exe FirewallRules: [{847643F9-33F8-4D7C-90A9-F47AAA1EA727}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3669\Agent.exe FirewallRules: [{D32BBEC4-1A4A-4AE7-B151-D77D2F890ADD}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3669\Agent.exe FirewallRules: [{530F4568-4AEE-456F-AF02-B394DBD14C51}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe FirewallRules: [{36F2DF1E-B25E-4247-8334-CAFD002966E8}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe FirewallRules: [{51666F7E-5305-4C99-B057-959E105B0CA4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{05664B65-B550-4BF6-B6EE-2582675D624F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{79770ACD-2B3D-4D7F-9A03-C22D7AC39034}C:\programdata\battle.net\agent\agent.3688\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.3688\agent.exe FirewallRules: [UDP Query User{8BF88543-ECE0-43B9-887E-14DC582F0ED7}C:\programdata\battle.net\agent\agent.3688\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.3688\agent.exe FirewallRules: [{284BB057-BACE-4012-B87D-6D4D1C5E7DA1}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe FirewallRules: [{A195E4DF-79F6-40CC-A048-9CAEB79A4B5C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe FirewallRules: [{0BD04B27-386D-4C4F-B52C-B647C0219F5A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe FirewallRules: [{93078210-BCB5-4ED2-A891-71AB698AE7B5}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe FirewallRules: [TCP Query User{4C51276D-7FE4-4621-A275-353E27546483}C:\program files (x86)\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{5F5A9EBE-0779-44AC-AF59-9C798ACEA3FA}C:\program files (x86)\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe FirewallRules: [TCP Query User{CB2C0DF1-E3D6-4F97-85E3-4277250A9C16}C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{A24617E0-0799-40BC-8EB9-834683F0BAD3}C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe FirewallRules: [{3A7BB07D-6745-4415-9AC3-284315E77B06}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\7 Days To Die\7DaysToDie_EAC.exe FirewallRules: [{0D482530-30FB-489D-A407-23DF98FE8230}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\7 Days To Die\7DaysToDie_EAC.exe FirewallRules: [{99592B84-F5F1-4D7A-8BC3-CD1A5EAA61FB}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\7 Days To Die\7DaysToDie.exe FirewallRules: [{B99EBED7-EC09-4124-9A97-8A47A06758C6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\7 Days To Die\7DaysToDie.exe FirewallRules: [{EDC6E743-474A-4710-94CE-B6775BAA1E71}] => (Allow) C:\ProgramData\HappyCloud\Cache\TERA\TERA-Launcher.exe FirewallRules: [{9FB4337D-DCFF-4B43-AABC-5E443EDA1F4E}] => (Allow) C:\ProgramData\HappyCloud\Cache\TERA\TERA-Launcher.exe FirewallRules: [{1F2D059C-25AC-4AFC-87A5-92C83D663091}] => (Allow) C:\ProgramData\HappyCloud\Cache\TERA\Client\TL.exe FirewallRules: [{4B9AAF27-D6A4-4939-9902-002BCB752F5E}] => (Allow) C:\ProgramData\HappyCloud\Cache\TERA\Client\TL.exe FirewallRules: [{05B4E619-BC46-4B12-A8FA-587C0CB373D6}] => (Allow) C:\ProgramData\HappyCloud\Cache\TERA\Client\Binaries\TERA.exe FirewallRules: [{E06CD036-1E24-4C4B-8BF8-22BE9E3F26C7}] => (Allow) C:\ProgramData\HappyCloud\Cache\TERA\Client\Binaries\TERA.exe FirewallRules: [{9C70F2E0-1C76-4218-BF02-36AC5E8F3F5F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{DF190592-ABD6-442E-AD1C-46120D61ED7A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{12BFE634-D9A3-45C2-A835-9F029413FE3B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{223630F4-02DE-4A82-BABB-20A7C2B15756}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{0EC0C29A-593E-4E6E-90B0-086AD928DDA0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [TCP Query User{E4E46862-BA4F-4607-98A6-805A81A9AEEC}C:\program files (x86)\heroes of the storm\versions\base37795\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base37795\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{C163F15C-8ADC-4B2E-AD91-38F933C7F588}C:\program files (x86)\heroes of the storm\versions\base37795\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base37795\heroesofthestorm_x64.exe FirewallRules: [TCP Query User{4BAAD26C-6CB3-4237-8019-EFA01C7F6226}C:\program files (x86)\heroes of the storm\versions\base38236\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base38236\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{EEBDC908-8A0B-44A1-91BD-6C9C4C1C24F3}C:\program files (x86)\heroes of the storm\versions\base38236\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base38236\heroesofthestorm_x64.exe FirewallRules: [TCP Query User{148157E6-BA1E-4F1B-8C5E-52E0A9F7F8F7}C:\program files (x86)\heroes of the storm\versions\base38500\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base38500\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{F5B5B6FA-545F-4808-A9BC-CCDCAEF6C1DB}C:\program files (x86)\heroes of the storm\versions\base38500\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base38500\heroesofthestorm_x64.exe FirewallRules: [TCP Query User{5A3385EF-6DED-449D-984F-D4B3106559E8}C:\program files (x86)\heroes of the storm\versions\base38593\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base38593\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{C90ECCB8-561B-4D2A-9C08-8153F4505959}C:\program files (x86)\heroes of the storm\versions\base38593\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base38593\heroesofthestorm_x64.exe FirewallRules: [TCP Query User{D8F4A912-584C-4396-9BC9-7239BB4B10BC}C:\program files (x86)\heroes of the storm\versions\base38793\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base38793\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{E764FF0C-C16F-4020-9AB9-4C9C1BD43538}C:\program files (x86)\heroes of the storm\versions\base38793\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base38793\heroesofthestorm_x64.exe FirewallRules: [{1439EE43-CF0D-4991-BEE5-DBBC093B888C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{01111688-A817-4EB4-9122-B1C296EDB40E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{DC7DC30E-14DF-42EB-8BCF-DDD1E582A5FC}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe FirewallRules: [{46BA5478-59FE-4EBC-A8C5-305AD889E428}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe FirewallRules: [{AC64F315-DC2C-4F5A-8E8C-1E074D10A4DC}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe FirewallRules: [{E0B7BABF-8174-4823-A9DF-84987D079BB2}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe FirewallRules: [TCP Query User{780EF25A-630E-4AF3-B2EA-1A2F206C0E42}C:\program files (x86)\heroes of the storm\versions\base39445\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base39445\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{1BD65D9A-D87D-4BE5-9CB6-477287466658}C:\program files (x86)\heroes of the storm\versions\base39445\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base39445\heroesofthestorm_x64.exe FirewallRules: [TCP Query User{5BB1DAA0-F661-4A7E-B34F-FBD3D44CA9C7}C:\program files (x86)\gazillion entertainment\marvel heroes game\unrealengine3\binaries\win64\marvelheroes2015.exe] => (Allow) C:\program files (x86)\gazillion entertainment\marvel heroes game\unrealengine3\binaries\win64\marvelheroes2015.exe FirewallRules: [UDP Query User{1DA0C400-BDBA-45B9-9CA7-2C0D5BE5F806}C:\program files (x86)\gazillion entertainment\marvel heroes game\unrealengine3\binaries\win64\marvelheroes2015.exe] => (Allow) C:\program files (x86)\gazillion entertainment\marvel heroes game\unrealengine3\binaries\win64\marvelheroes2015.exe FirewallRules: [TCP Query User{25515C1C-D437-4D1D-9E17-9752D5340F66}C:\users\frazier\appdata\roaming\jwrapper-mote\jwrapper-windows64jre-00036047957-complete\bin\java.exe] => (Allow) C:\users\frazier\appdata\roaming\jwrapper-mote\jwrapper-windows64jre-00036047957-complete\bin\java.exe FirewallRules: [UDP Query User{357CEB87-9797-4054-A648-4E1925290DF1}C:\users\frazier\appdata\roaming\jwrapper-mote\jwrapper-windows64jre-00036047957-complete\bin\java.exe] => (Allow) C:\users\frazier\appdata\roaming\jwrapper-mote\jwrapper-windows64jre-00036047957-complete\bin\java.exe FirewallRules: [TCP Query User{2F06FE2A-35D5-4E55-817A-F852D493FA63}C:\program files (x86)\heroes of the storm\versions\base42958\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base42958\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{C9CE5194-D636-4CF5-83C7-EBA76E0258B4}C:\program files (x86)\heroes of the storm\versions\base42958\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base42958\heroesofthestorm_x64.exe FirewallRules: [TCP Query User{CAC4B247-ACC2-4B33-B01D-AD523CB2B87D}C:\program files (x86)\heroes of the storm\versions\base43905\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base43905\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{69ED31D6-F017-4D12-B6D9-2E987FD6F575}C:\program files (x86)\heroes of the storm\versions\base43905\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base43905\heroesofthestorm_x64.exe FirewallRules: [TCP Query User{206D53B6-2B94-4F9D-8F72-3AFFFCB79A20}C:\program files (x86)\heroes of the storm\versions\base44797\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base44797\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{BF132AFE-3624-44A3-8DE3-A1EE817C294B}C:\program files (x86)\heroes of the storm\versions\base44797\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base44797\heroesofthestorm_x64.exe FirewallRules: [{1176EABA-2500-4B5A-B87E-FC2290C66894}] => (Allow) C:\Users\Frazier\AppData\Local\Temp\7zS4065\HPDiagnosticCoreUI.exe FirewallRules: [{A277D966-D45D-43F2-8929-EB5F41C1864D}] => (Allow) C:\Users\Frazier\AppData\Local\Temp\7zS4065\HPDiagnosticCoreUI.exe FirewallRules: [{35BC12ED-49A0-449B-A553-86C7AF53A7E3}] => (Allow) C:\Users\Frazier\AppData\Local\Temp\7zS42D2\HPDiagnosticCoreUI.exe FirewallRules: [{26F721EE-38B8-43D7-852D-526F1BC5FC70}] => (Allow) C:\Users\Frazier\AppData\Local\Temp\7zS42D2\HPDiagnosticCoreUI.exe FirewallRules: [{9F88C96C-8CD9-4C55-A629-BA9C8B929F64}] => (Allow) C:\Users\Frazier\AppData\Local\Chromium\Application\chrome.exe FirewallRules: [TCP Query User{C42CF4C9-8A59-4FA7-A80C-0D8C20BAD831}C:\program files (x86)\heroes of the storm\versions\base47219\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base47219\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{C7F3AB91-3007-452F-8F42-BAE60AAEC97D}C:\program files (x86)\heroes of the storm\versions\base47219\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base47219\heroesofthestorm_x64.exe FirewallRules: [{01DDD6CE-3DE5-454E-9C98-88239E6652DA}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\7 Days To Die\7dLauncher.exe FirewallRules: [{31E41646-5FC7-484C-A319-0BB3FBC83479}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\7 Days To Die\7dLauncher.exe FirewallRules: [TCP Query User{CA450E3C-60B5-4E0F-9B80-C8C9750E3AFA}C:\program files (x86)\heroes of the storm\versions\base47479\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base47479\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{56EE5E33-7780-4A5C-9471-78C10183054F}C:\program files (x86)\heroes of the storm\versions\base47479\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base47479\heroesofthestorm_x64.exe FirewallRules: [TCP Query User{E67109D5-EF4E-4DC0-BEF3-9A60A97531ED}C:\program files (x86)\heroes of the storm\versions\base48027\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base48027\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{3B5D4BF9-DB99-439D-BBD9-B87A48B2DB15}C:\program files (x86)\heroes of the storm\versions\base48027\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base48027\heroesofthestorm_x64.exe FirewallRules: [TCP Query User{65D30898-6F68-4995-A2D2-798AB54950D2}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe FirewallRules: [UDP Query User{945B6190-8E1F-49C0-970E-275BF6B22AE5}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe FirewallRules: [TCP Query User{B78CFB01-577A-4BEE-A410-4546258D0F7A}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe FirewallRules: [UDP Query User{C9134787-FA92-4F18-A690-C8922DBA5D1E}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe FirewallRules: [{F408F515-71AC-4E5B-A464-111CAE7DE1F9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Worm.is The Game\Wormis.exe FirewallRules: [{127EF519-44F0-4AEC-B99C-106046D3952F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Worm.is The Game\Wormis.exe FirewallRules: [{FD57C75C-02DB-46C5-9714-80022A0F8818}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{109995AC-A4FC-421A-83D3-EC25FBF12081}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [TCP Query User{BB4B4C8F-3B87-449E-92F8-521A6ACBCFFB}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe FirewallRules: [UDP Query User{F3CFE5B0-5F1E-4991-BEC5-F0F8788F3CCD}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe FirewallRules: [TCP Query User{D7E37686-97CF-4D82-85A0-A572DDACB394}C:\program files (x86)\battle.net\battle.net.8265\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8265\battle.net.exe FirewallRules: [UDP Query User{BCEAFA1B-E689-459B-898B-D8081BE37AB0}C:\program files (x86)\battle.net\battle.net.8265\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8265\battle.net.exe FirewallRules: [TCP Query User{5E98FABD-63FA-4B4B-A3C6-B26D6925DC46}C:\program files (x86)\heroes of the storm\versions\base49907\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base49907\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{03A54BFF-2B22-44D1-A293-7927B43C8A9B}C:\program files (x86)\heroes of the storm\versions\base49907\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base49907\heroesofthestorm_x64.exe FirewallRules: [TCP Query User{8A568351-D964-4513-B456-B5E9AAD5EC80}C:\program files (x86)\heroes of the storm\versions\base50441\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base50441\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{6ED970BD-8D6A-4962-8F78-0EEE9E243FC8}C:\program files (x86)\heroes of the storm\versions\base50441\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base50441\heroesofthestorm_x64.exe FirewallRules: [{2F583506-4407-4939-AD69-C964A92139CC}] => (Allow) C:\Users\Frazier\AppData\Local\Temp\andy-x64\Setup.exe FirewallRules: [{99F8EB2A-BD74-4DD9-8B65-F4E20A065324}] => (Allow) C:\Users\Frazier\AppData\Local\Temp\andy-x64\Setup.exe FirewallRules: [{8C036CAD-DACC-496A-A873-33DE3A568999}] => (Allow) C:\Program Files\Andy\andy.exe FirewallRules: [{9AEE97E0-AF1C-4EB3-9AD9-5D9344C611F7}] => (Allow) C:\Program Files\Andy\andy.exe FirewallRules: [{576BCBDD-D837-471F-8DF1-EF7A35F9C4CF}] => (Allow) C:\Program Files\Andy\AndyConsole.exe FirewallRules: [{6981F6F8-0461-49DA-9849-CD4D70A39851}] => (Allow) C:\Program Files\Andy\AndyConsole.exe FirewallRules: [{B5B9B1D0-AAE0-423D-BC8F-C214B89344DB}] => (Allow) C:\Program Files\Andy\HandyAndy.exe FirewallRules: [{F88381D6-6778-4F16-AB6E-E782922816EA}] => (Allow) C:\Program Files\Andy\HandyAndy.exe FirewallRules: [{C860B03B-C50F-4F4C-BF50-F1A825365B4B}] => (Allow) C:\Program Files\Andy\SetupFiles\Uninstall.exe FirewallRules: [{47509C82-4665-445A-A5C6-93C53E192CB0}] => (Allow) C:\Program Files\Andy\SetupFiles\Uninstall.exe FirewallRules: [{B93D10AA-F3C8-46F3-88C8-79276C3516E7}] => (Allow) C:\Users\Frazier\AppData\Local\Temp\RemoveTemp.exe FirewallRules: [{85E76BD8-5BB8-4D7B-8DAF-AD2CEF247942}] => (Allow) C:\Users\Frazier\AppData\Local\Temp\RemoveTemp.exe FirewallRules: [{E423E048-15FC-4B53-AE84-80938DC34664}] => (Allow) C:\Program Files\Andy\SetupFiles\VMwareCheck.exe FirewallRules: [{1414F020-E89B-4EE6-8B54-50996B4852E0}] => (Allow) C:\Program Files\Andy\SetupFiles\VMwareCheck.exe FirewallRules: [{5B8350E2-A894-4374-A92B-50B6F9F66FEB}] => (Allow) C:\Program Files\Andy\SetupFiles\AndyDoctor.exe FirewallRules: [{54CBE926-AE5D-4517-94B6-FB5B8058EFC3}] => (Allow) C:\Program Files\Andy\SetupFiles\AndyDoctor.exe FirewallRules: [{93A115E1-5F09-4D4F-AAD3-3FC1C704A19E}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe FirewallRules: [{01E1DA6C-BE55-4563-8C84-D2C6EAA4F4A5}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe FirewallRules: [TCP Query User{95FAB827-D820-4E12-86FC-9989A193C1EC}C:\program files (x86)\overwatch test\overwatch.exe] => (Allow) C:\program files (x86)\overwatch test\overwatch.exe FirewallRules: [UDP Query User{2F4DFA8E-A5A5-4A08-A137-83386EC23907}C:\program files (x86)\overwatch test\overwatch.exe] => (Allow) C:\program files (x86)\overwatch test\overwatch.exe FirewallRules: [TCP Query User{6C1F5C32-B918-41C0-B963-02EE43F7EBEF}C:\program files\logitech gaming software\lcore.exe] => (Block) C:\program files\logitech gaming software\lcore.exe FirewallRules: [UDP Query User{930F8634-46CC-42E7-8B3C-3FF1F6AD2C62}C:\program files\logitech gaming software\lcore.exe] => (Block) C:\program files\logitech gaming software\lcore.exe StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service ==================== Restore Points ========================= ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (03/28/2017 03:26:50 PM) (Source: vmauthd) (EventID: 1000) (User: ) Description: Cannot find perfmon object in array returned by perfDLL, index=0 Error: (03/28/2017 03:26:35 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (03/28/2017 02:54:16 PM) (Source: vmauthd) (EventID: 1000) (User: ) Description: Cannot find perfmon object in array returned by perfDLL, index=0 Error: (03/28/2017 02:54:13 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (03/28/2017 02:45:19 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY) Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code. Error: (03/28/2017 02:45:19 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY) Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section. Error: (03/28/2017 02:42:42 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (03/28/2017 02:13:46 PM) (Source: vmauthd) (EventID: 1000) (User: ) Description: Cannot find perfmon object in array returned by perfDLL, index=0 Error: (03/28/2017 02:13:36 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (03/28/2017 02:11:21 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. System errors: ============= Error: (03/28/2017 03:31:26 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: The Windows Update service hung on starting. Error: (03/28/2017 03:28:56 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The Windows Management Service service failed to start due to the following error: The system cannot find the file specified. Error: (03/28/2017 03:26:33 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The Spybot-S&D 2 Security Center Service service failed to start due to the following error: The requested resource is in use. Error: (03/28/2017 03:26:27 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The vToolbarUpdater19.5.0 service failed to start due to the following error: The requested resource is in use. Error: (03/28/2017 03:26:24 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The Spybot-S&D 2 Scanner Service service failed to start due to the following error: The requested resource is in use. Error: (03/28/2017 03:26:17 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The Dataup Service service failed to start due to the following error: The system cannot find the file specified. Error: (03/28/2017 03:25:59 PM) (Source: BugCheck) (EventID: 1001) (User: ) Description: The computer has rebooted from a bugcheck. The bugcheck was: 0x0000007e (0xffffffffc0000005, 0xfffff88000e69130, 0xfffff880035be728, 0xfffff880035bdf80). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 032817-22916-01. Error: (03/28/2017 03:00:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The Windows Modules Installer service failed to start due to the following error: The requested resource is in use. Error: (03/28/2017 03:00:25 PM) (Source: DCOM) (EventID: 10005) (User: ) Description: DCOM got error "170" attempting to start the service TrustedInstaller with arguments "" in order to run the server: {752073A1-23F2-4396-85F0-8FDB879ED0ED} Error: (03/28/2017 02:59:26 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: The Windows Update service hung on starting. CodeIntegrity: =================================== Date: 2017-03-28 11:06:59.344 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Frazier\AppData\Local\Temp\andy-x64\tools\msvcr100.dll because the set of per-page image hashes could not be found on the system. Date: 2017-03-28 11:06:59.160 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Frazier\AppData\Local\Temp\andy-x64\tools\msvcr100.dll because the set of per-page image hashes could not be found on the system. Date: 2017-03-28 11:06:58.955 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Frazier\AppData\Local\Temp\andy-x64\tools\msvcr100.dll because the set of per-page image hashes could not be found on the system. Date: 2017-03-28 11:06:58.726 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Frazier\AppData\Local\Temp\andy-x64\tools\msvcp100.dll because the set of per-page image hashes could not be found on the system. Date: 2017-03-28 11:06:58.541 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Frazier\AppData\Local\Temp\andy-x64\tools\msvcp100.dll because the set of per-page image hashes could not be found on the system. Date: 2017-03-28 11:06:58.339 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Frazier\AppData\Local\Temp\andy-x64\tools\msvcp100.dll because the set of per-page image hashes could not be found on the system. Date: 2017-03-28 11:02:00.284 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Andy\msvcr100.dll because the set of per-page image hashes could not be found on the system. Date: 2017-03-28 11:02:00.086 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Andy\msvcr100.dll because the set of per-page image hashes could not be found on the system. Date: 2017-03-28 11:01:59.869 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Andy\msvcr100.dll because the set of per-page image hashes could not be found on the system. Date: 2017-03-28 11:01:59.596 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Andy\msvcp100.dll because the set of per-page image hashes could not be found on the system. ==================== Memory info =========================== Processor: AMD Phenom(tm) II X4 965 Processor Percentage of memory in use: 33% Total physical RAM: 12286.18 MB Available physical RAM: 8187.96 MB Total Virtual: 24570.54 MB Available Virtual: 20379.26 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:465.66 GB) (Free:117.89 GB) NTFS Drive d: (BIG_HERO_6) (CDROM) (Total:7.31 GB) (Free:0 GB) UDF ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: C13135B4) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS) ==================== End of Addition.txt ============================