Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-09-2017 Ran by Administrato (17-09-2017 19:43:53) Running from C:\Users\Zac\Downloads Windows 7 Home Premium Service Pack 1 (X64) (2016-08-31 20:31:31) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrato (S-1-5-21-1031213751-2141322334-938452745-1003 - Administrator - Enabled) => C:\Users\Administrato Administrator (S-1-5-21-1031213751-2141322334-938452745-500 - Administrator - Disabled) Guest (S-1-5-21-1031213751-2141322334-938452745-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1031213751-2141322334-938452745-1005 - Limited - Enabled) Zac (S-1-5-21-1031213751-2141322334-938452745-1002 - Limited - Enabled) => C:\Users\Zac ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: BullGuard Antivirus (Enabled - Up to date) {13E9CAA5-762A-794E-2DA9-245D5622A105} AS: BullGuard Antispyware (Enabled - Up to date) {A8882B41-5010-76C0-1719-1F2F2DA5EBB8} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: BullGuard Firewall (Enabled) {2BD24B80-3C45-7816-06F6-8D68A8F1E67E} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 7-Zip 16.02 (x64) (HKLM\...\7-Zip) (Version: 16.02 - Igor Pavlov) Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 17.012.20098 - Adobe Systems Incorporated) Adobe Flash Player 27 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 27.0.0.130 - Adobe Systems Incorporated) Adobe Flash Player 27 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 27.0.0.130 - Adobe Systems Incorporated) Age of Empires® III: Complete Collection (HKLM\...\Steam App 105450) (Version: - Ensemble Studios) Akamai NetSession Interface (HKU\S-1-5-21-1031213751-2141322334-938452745-1003\...\Akamai) (Version: - Akamai Technologies, Inc) Aliens vs. Predator (HKLM\...\Steam App 10680) (Version: - Rebellion) All The Ages mod (HKLM-x32\...\{18C94B21-9C7B-11D0-933A-10312CEA7318}_is1) (Version: 1.0.0 - microprose) Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 384.94 - NVIDIA Corporation) Hidden Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.12.0 - Asmedia Technology) ASRock App Charger v1.0.6 (HKLM\...\ASRock App Charger_is1) (Version: 1.0.6 - ASRock Inc.) Aura Kingdom (HKLM\...\Steam App 268420) (Version: - X-Legend) AutoREALM Version 2.2.1 (HKLM-x32\...\AutoREALM_is1) (Version: - ) Balance of Power (HKLM-x32\...\{18C94B21-9C7B-11D0-933A-10311CEA7318}_is1) (Version: 1.2.0 - microprose) Banished (HKLM\...\Steam App 242920) (Version: - Shining Rock Software LLC) Battlestar Galactica Online (HKLM-x32\...\Battlestar Galactica Online_is1) (Version: 1.0 - Bigpoint GmbH) Birth of the Federation (HKLM-x32\...\{18C94B21-9C7B-11D0-933A-10308CEA7318}_is1) (Version: 1.0.3 - microprose) Black Mesa (HKLM\...\Steam App 362890) (Version: - Crowbar Collective) Borg Incursion Mod (HKLM-x32\...\{18C94B21-9C7B-11D0-933A-10323CEA7318}_is1) (Version: 2.0.0 - microprose) BOTF Tools (HKLM-x32\...\{18C94B21-9C7B-11D0-933A-10307CEA7318}_is1) (Version: 1.0.0 - microprose) BullGuard Internet Security (HKLM\...\BullGuard) (Version: 17.1 - BullGuard Ltd.) Call of Duty 2 (HKLM\...\Steam App 2630) (Version: - Infinity Ward) CCleaner (HKLM\...\CCleaner) (Version: 5.33 - Piriform) Colony Survival (HKLM\...\Steam App 366090) (Version: - Pipliz) Company of Heroes (New Steam Version) (HKLM\...\Steam App 228200) (Version: - Relic) Company of Heroes: Eastern Front (HKLM\...\Steam App 317600) (Version: - Archaic Entertainment) Company of Heroes: Europe at War (HKLM\...\Steam App 342370) (Version: - Relic Entertainment) Company of Heroes: Far East War (HKLM\...\Steam App 547180) (Version: - Far East War Development Team) Company of Heroes: The Great War 1918 (HKLM\...\Steam App 314420) (Version: - Relic Entertainment) Crash Dive (HKLM\...\Steam App 365260) (Version: - Panic Ensues Software) Crush Crush (HKLM\...\Steam App 459820) (Version: - Sad Panda Studios) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.4.0.0195 - Disc Soft Ltd) Dawn of Andromeda (HKLM\...\Steam App 427570) (Version: - Grey Wolf Entertainment) Day of Infamy (HKLM\...\Steam App 447820) (Version: - New World Interactive) Delta Quadrant Mod (HKLM-x32\...\{18C94B21-9C7B-11D0-933A-10327CEA7318}_is1) (Version: 3.0.0 - microprose) Dirty Bomb (HKLM\...\Steam App 333930) (Version: - Splash Damage®) Discord (HKU\S-1-5-21-1031213751-2141322334-938452745-1002\...\Discord) (Version: 0.0.298 - Discord Inc.) Dropbox (HKLM-x32\...\Dropbox) (Version: 34.4.22 - Dropbox, Inc.) Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.59.1 - Dropbox, Inc.) Hidden Europa Universalis IV (HKLM\...\Steam App 236850) (Version: - Paradox Development Studio) Evil Genius (HKLM\...\Steam App 3720) (Version: - Elixir Studios) f.lux (HKU\S-1-5-21-1031213751-2141322334-938452745-1002\...\Flux) (Version: - ) Factorio (HKLM\...\Steam App 427520) (Version: - Wube Software LTD.) Fallout Mod Manager 0.13.21 (HKLM-x32\...\Generic Mod Manager_is1) (Version: - Q, Timeslip) Foxhole (HKLM\...\Steam App 505460) (Version: - Clapfoot) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 60.0.3112.113 - Google Inc.) Google Drive (HKLM-x32\...\{A90339B3-2C3F-492E-B3A7-0BDFC691E526}) (Version: 2.34.6425.2548 - Google, Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden Half-Life Deathmatch: Source (HKLM\...\Steam App 360) (Version: - Valve) Hearts of Iron IV (HKLM\...\Steam App 394360) (Version: - Paradox Development Studio) Hegemony III: Clash of the Ancients (HKLM\...\Steam App 308173) (Version: - Longbow Games) Hyperdimension Neptunia Re;Birth1 (HKLM\...\Steam App 282900) (Version: - IDEA FACTORY Co., Ltd.) Hyperdimension Neptunia Re;Birth2 Sisters Generation (HKLM\...\Steam App 351710) (Version: - Idea Factory) ILLUSION RapeLay (HKLM-x32\...\{D1E1F028-1953-43A3-BFD8-D2A00EC06E36}) (Version: 1.00.0000 - ILLUSION) Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{0EC7F9CC-4741-45AE-9F55-6E9343F726F5}) (Version: 1.1.0.36960 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.0.0.102 - Intel Corporation) Java 8 Update 141 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180141F0}) (Version: 8.0.1410.15 - Oracle Corporation) Manga maker ComiPo! (HKLM\...\Steam App 262490) (Version: - ComiPo! LLP) MAXtoA for 3ds Max 2018 (HKLM\...\{471069C7-09E2-4289-8EB7-852237FD867E}) (Version: 1.0.712.0 - Solid Angle) Men of War: Assault Squad 2 (HKLM\...\Steam App 244450) (Version: - Digitalmindsoft) Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation) Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation) Microsoft Office 2003 Web Components (HKLM-x32\...\{90120000-00A4-0409-0000-0000000FF1CE}) (Version: 12.0.6213.1000 - Microsoft Corporation) Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.6122.5000 - Microsoft Corporation) Microsoft Office Starter 2010 - English (HKLM-x32\...\{90140011-0066-0409-0000-0000000FF1CE}) (Version: 14.0.7168.5000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25008 (HKLM-x32\...\{f1e7e313-06df-4c56-96a9-99fdfd149c51}) (Version: 14.10.25008.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation) Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU (HKLM\...\Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU) (Version: - Microsoft Corporation) Microsoft Visual Studio 2005 Tools for Applications - ENU (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Applications - ENU) (Version: - Microsoft Corporation) Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang) Mini Metro (HKLM\...\Steam App 287980) (Version: - Dinosaur Polo Club) Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) My Game Long Name (HKLM\...\UDK-0a86a122-9e8d-4905-8c77-f45bf2706cc5) (Version: - Epic Games, Inc.) My Game Long Name (HKLM\...\UDK-2a2728e4-e944-4b09-b326-3291242fbab8) (Version: - Epic Games, Inc.) My Game Long Name (HKLM\...\UDK-7b518fd4-4cd7-48fd-b89a-ba0544e6862d) (Version: - Epic Games, Inc.) My Game Long Name (HKLM\...\UDK-9faedfef-aaf5-4a42-9738-fbcd04ed7d31) (Version: - Epic Games, Inc.) My Game Long Name (HKLM\...\UDK-e3deeaa7-02e5-43b2-a93e-be1de0f680b7) (Version: - Epic Games, Inc.) Northgard (HKLM\...\Steam App 466560) (Version: - Shiro Games) NVIDIA 3D Vision Controller Driver 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation) NVIDIA 3D Vision Driver 384.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 384.94 - NVIDIA Corporation) NVIDIA GeForce Experience 3.8.0.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.8.0.89 - NVIDIA Corporation) NVIDIA Graphics Driver 384.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 384.94 - NVIDIA Corporation) NVIDIA HD Audio Driver 1.3.34.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.27 - NVIDIA Corporation) NVIDIA PhysX (HKLM-x32\...\{7B5AA67E-FEA0-40BB-BAB5-CA56645A589C}) (Version: 9.13.0725 - NVIDIA Corporation) NVIDIA PhysX (Legacy) (HKLM-x32\...\{6F9D5A0B-202C-4161-BC7F-0664EA39E7E7}) (Version: 9.12.1031 - NVIDIA Corporation) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) paint.net (HKLM\...\{02D89175-E08F-401B-BA30-8B7512B57724}) (Version: 4.0.17 - dotPDN LLC) Panzer Vor Launcher (HKLM-x32\...\Panzer Vor Launcher) (Version: 1.1.0 - Oriko Industries) Pirates Of The Burning Sea (HKLM-x32\...\potbs) (Version: 1.0.0.32 - ) Prison Architect (HKLM\...\Steam App 233450) (Version: - Introversion Software) PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.992 - Even Balance, Inc.) Rags Suite (HKLM-x32\...\{E50D4D29-C7B5-4136-AADE-D85794926840}) (Version: 2.4.0 - RagsGame) Rags Suite 3.0.60 (HKU\S-1-5-21-1031213751-2141322334-938452745-1003\...\Rags Suite 3.0.60) (Version: - ) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.86.508.2014 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7209 - Realtek Semiconductor Corp.) Rising Storm/Red Orchestra 2 Multiplayer (HKLM\...\Steam App 35450) (Version: - Tripwire Interactive) Roblox Player for Zac (HKU\S-1-5-21-1031213751-2141322334-938452745-1002\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - Roblox Corporation) Roblox Studio for Zac (HKU\S-1-5-21-1031213751-2141322334-938452745-1002\...\{2922D6F1-2865-4EFA-97A9-94EEAB3AFA14}) (Version: - Roblox Corporation) Robocraft (HKLM\...\Steam App 301520) (Version: - Freejam) Shockwave (HKLM-x32\...\Shockwave) (Version: - ) Sid Meier's Civilization IV Colonization (HKU\S-1-5-21-1031213751-2141322334-938452745-1003\...\{EF36A836-BF89-4A4F-B079-057B0C68C1E0}) (Version: 1.00 - Firaxis Games) Sid Meier's Civilization V (HKLM\...\Steam App 8930) (Version: - Firaxis Games) Sid Meier's Civilization V (HKLM-x32\...\steam app 8930) (Version: - 2K Games, Inc.) Sid Meier's Railroads! (HKLM\...\Steam App 7600) (Version: - Firaxis Games) Sins of a Solar Empire: Rebellion (HKLM\...\Steam App 204880) (Version: - Ironclad Games) Speccy (HKLM\...\Speccy) (Version: 1.30 - Piriform) SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - ) Star Trek Online (HKLM\...\Steam App 9900) (Version: - Cryptic Studios) Star Trek Voyager Elite Force (HKLM-x32\...\Star Trek Voyager Elite Force) (Version: - ) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Subnautica (HKLM\...\Steam App 264710) (Version: - Unknown Worlds Entertainment) Sunless Sea (HKLM\...\Steam App 304650) (Version: - Failbetter Games) SurvHive (HKLM\...\Steam App 499230) (Version: - Rocking Hamster) SurvHive (HKLM\...\UDK-cfce8cda-403f-419a-af2e-53ce70521351) (Version: - Epic Games, Inc.) The Ship (HKLM\...\Steam App 2400) (Version: - Outerlight Ltd.) Theme Park Inc (HKLM-x32\...\{094FABA0-4865-11D4-95B6-000103485DB6}) (Version: - ) Theme Park World (HKLM-x32\...\Theme Park World) (Version: - ) Theme Park World Fix (HKLM-x32\...\{42082D6A-7C60-4CD9-B6FC-81E6F1FA96EF}) (Version: 1.0.0 - Adam Hearn) Tweaking.com - Windows Repair (HKLM-x32\...\Tweaking.com - Windows Repair) (Version: 3.9.32 - Tweaking.com) TyranoBuilder Visual Novel Studio (HKLM\...\Steam App 345370) (Version: - STRIKEWORKS) Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT) UE4 Prerequisites (x64) (HKLM\...\{36EAD5CF-44EF-4FCF-8BE1-D96C4835D7A4}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden UE4 Prerequisites (x64) (HKLM-x32\...\{2890ae6b-90e9-448d-b3e6-97e43c21e2fd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden Ultimate Mod 5 (HKLM-x32\...\{18C94B21-9C7B-11D0-933A-10313CEA7318}_is1) (Version: 2.5.0 - microprose) Valkyria Chronicles™ (HKLM\...\Steam App 294860) (Version: - SEGA) Verdun (HKLM\...\Steam App 242860) (Version: - M2H) VLC media player (HKLM\...\VLC media player) (Version: 2.2.6 - VideoLAN) Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.) Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.) War Thunder (HKLM\...\Steam App 236390) (Version: - Gaijin Entertainment) We Happy Few (HKLM\...\Steam App 320240) (Version: - Compulsion Games) Windows Driver Package - Realtek (RTL8167) Net (07/16/2014 7.089.0716.2014) (HKLM\...\8776E507C4538E1DB47E7B5F7CA62972C8B8CA8D) (Version: 07/16/2014 7.089.0716.2014 - Realtek) Windows Movie Maker 2016 (HKLM-x32\...\{3CC29C1A-B5FE-457B-8F22-32A2videowin}}_is1) (Version: - videowinsoft.com) WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) World of Tanks Blitz (HKLM\...\Steam App 444200) (Version: - Wargaming Group Limited) World of Warships (HKU\S-1-5-21-1031213751-2141322334-938452745-1002\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814eu}_is1) (Version: - Wargaming.net) XCOM 2 (HKLM\...\Steam App 268500) (Version: - Firaxis) yEd Graph Editor 3.16.2.1 (HKLM\...\3309-7404-0599-8908) (Version: 3.16.2.1 - yWorks GmbH) yEd Graph Editor 3.17 (HKLM-x32\...\3309-7404-0599-8908) (Version: 3.17 - yWorks GmbH) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-1031213751-2141322334-938452745-1003_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2018\Inventor Server\Bin\TestServer.dll => No File CustomCLSID: HKU\S-1-5-21-1031213751-2141322334-938452745-1003_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2018\Inventor Server\Bin\TestServer.dll => No File CustomCLSID: HKU\S-1-5-21-1031213751-2141322334-938452745-1003_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2018\Inventor Server\Bin\TestServer.dll => No File ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-08-04] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-08-04] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-08-04] (Google) ShellIconOverlayIdentifiers: [BackupOverlayErr] -> {8749448C-D907-45BF-A842-4D3898894AC8} => C:\Program Files\BullGuard Ltd\BullGuard\BackupShellHook.dll [2017-08-23] (BullGuard Ltd.) ShellIconOverlayIdentifiers: [BackupOverlayInProgress] -> {3FFBF330-7839-476B-BE14-2C8597CE11B6} => C:\Program Files\BullGuard Ltd\BullGuard\BackupShellHook.dll [2017-08-23] (BullGuard Ltd.) ShellIconOverlayIdentifiers: [BackupOverlaySynced] -> {C62CF4DB-48CB-4B03-BFD0-30A29125FA49} => C:\Program Files\BullGuard Ltd\BullGuard\BackupShellHook.dll [2017-08-23] (BullGuard Ltd.) ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov) ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-08-04] (Google) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov) ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-08-04] (Google) ContextMenuHandlers4: [MSSE] -> {0365FE2C-F183-4091-AC82-BFC39FB75C49} => -> No File ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2017-07-19] (NVIDIA Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov) ContextMenuHandlers6: [bgshellext] -> {F4BF1657-195F-4A0F-ACA2-9AE99D65BC0E} => C:\Program Files\BullGuard Ltd\BullGuard\BgShellExt.dll [2017-08-23] (BullGuard Ltd.) ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {04E7BFC9-0BCB-4710-852E-8EC3CBFCCC2D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-07] (Google Inc.) Task: {2FCB583B-4445-4F3C-A1E6-BDDA0041CFF4} - System32\Tasks\Tweaking.com - Windows Repair Tray Icon => C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe [2015-03-12] (Tweaking.com) Task: {3185840D-8AC0-499A-8E5E-713B591DE418} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-07-26] (NVIDIA Corporation) Task: {33987E10-AF68-4EFB-AB93-C6DC120CD89F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-07] (Google Inc.) Task: {460B3CD8-9C46-4CF6-A113-E53FA6B53CFB} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_27_0_0_130_pepper.exe [2017-09-12] (Adobe Systems Incorporated) Task: {4A52EE4B-64F0-4FE4-9969-76BA12D0AD5A} - System32\Tasks\Games\UpdateCheck_S-1-5-21-1031213751-2141322334-938452745-1002 Task: {58CCF945-8BD8-49A9-8B52-1E49DA007C6F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-08-03] (Piriform Ltd) Task: {6126E2E8-9936-4475-A9CF-7FB31C7A7921} - System32\Tasks\BullGuard\BullGuardUpdate2 => C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate2.exe [2017-08-23] (BullGuard Ltd.) Task: {689530A6-6DEA-4FC4-A1A6-ED789225E07F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated) Task: {724975B0-AC31-4CBB-891A-09C950665493} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-07-26] (NVIDIA Corporation) Task: {7C78359B-DDC7-410C-A2EF-9CECD74205A4} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-07-26] (NVIDIA Corporation) Task: {A6F1D5C8-BE73-435D-A42C-C9230914F832} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-07-26] (NVIDIA Corporation) Task: {A7AAC3C0-371A-45A8-BB5D-C7440338FF1A} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-09-07] (Dropbox, Inc.) Task: {B354004E-0786-4193-935D-7C6A7ABDBBAB} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-09-12] (Adobe Systems Incorporated) Task: {B4E4A819-1C1A-486D-A274-6BF835153AD5} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20] (Microsoft Corporation) Task: {BBB9593A-163C-4A29-A663-41D974840E74} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-07-26] (NVIDIA Corporation) Task: {C6A7E549-F3B5-4AE5-8E8B-6FBF18C29D1E} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2013-03-07] (Intel Corporation) Task: {CBF47FAA-A0AD-4533-8804-43C928981B3E} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-07-26] (NVIDIA Corporation) Task: {D76ADEAC-46DD-46BD-92BF-944A1958EAD3} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-07-26] (NVIDIA Corporation) Task: {D8F2A1FA-362D-4E73-9514-B2F754DEA72A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-07-26] (NVIDIA Corporation) Task: {E063CAC4-3B04-4C27-AF45-700C6E746A7C} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-09-07] (Dropbox, Inc.) Task: {E889BA15-B7D3-4C68-8D0A-CC790B00E19B} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2013-03-07] (Intel Corporation) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Shortcuts & WMI ======================== (The entries could be listed to be restored or removed.) ==================== Loaded Modules (Whitelisted) ============== 2017-08-23 14:22 - 2017-08-23 14:22 - 000727320 _____ () c:\program files\bullguard ltd\bullguard\SQLite.dll 2017-08-23 14:22 - 2017-08-23 14:22 - 000084248 _____ () c:\program files\bullguard ltd\bullguard\zlib1.dll 2017-08-23 14:22 - 2017-08-23 14:22 - 000644888 _____ () c:\program files\bullguard ltd\bullguard\LibXml2.dll 2017-08-23 14:22 - 2017-08-23 14:22 - 000064792 _____ () C:\Program Files\BullGuard Ltd\BullGuard\LIBBZ2.dll 2017-05-31 21:51 - 2017-07-26 18:09 - 001267136 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2017-01-24 18:13 - 2017-08-25 19:14 - 000076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe 2017-08-28 20:41 - 2017-08-23 09:48 - 002692952 _____ () C:\Program Files (x86)\Google\Chrome\Application\60.0.3112.113\swiftshader\libglesv2.dll 2017-08-28 20:41 - 2017-08-23 09:48 - 000137048 _____ () C:\Program Files (x86)\Google\Chrome\Application\60.0.3112.113\swiftshader\libegl.dll 2016-09-07 16:49 - 2017-08-04 22:19 - 000678176 _____ () C:\Program Files (x86)\Steam\SDL2.dll 2016-09-07 16:49 - 2016-09-01 02:02 - 004969248 _____ () C:\Program Files (x86)\Steam\v8.dll 2016-09-07 16:49 - 2016-09-01 02:02 - 001563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll 2016-09-07 16:49 - 2016-09-01 02:02 - 001195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll 2016-09-07 16:49 - 2017-09-07 05:51 - 002505504 _____ () C:\Program Files (x86)\Steam\video.dll 2016-09-07 16:49 - 2016-01-27 08:49 - 002549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll 2016-09-07 16:49 - 2016-01-27 08:49 - 000442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll 2016-09-07 16:49 - 2016-01-27 08:49 - 000491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll 2016-09-07 16:49 - 2016-01-27 08:49 - 000332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll 2016-09-07 16:49 - 2016-01-27 08:49 - 000485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll 2016-09-07 16:49 - 2017-09-07 05:51 - 000885024 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL 2016-09-07 16:49 - 2016-07-04 23:17 - 000266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll 2017-09-16 15:12 - 2017-09-14 22:41 - 000771392 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_watchdog.dll 2017-09-16 15:12 - 2017-09-14 22:41 - 001804608 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_crashpad.dll 2017-09-16 15:12 - 2017-09-14 22:40 - 000100296 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd 2017-09-16 15:12 - 2017-09-14 22:40 - 000018888 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd 2017-09-16 15:12 - 2017-09-14 22:43 - 000020800 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd 2017-09-16 15:12 - 2017-09-14 22:40 - 000035792 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd 2017-09-16 15:12 - 2017-09-14 22:42 - 000021848 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd 2017-09-16 15:12 - 2017-09-14 22:40 - 000125904 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd 2017-09-16 15:12 - 2017-09-14 22:40 - 000694224 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd 2017-09-16 15:12 - 2017-09-14 22:42 - 001862992 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd 2017-09-16 15:12 - 2017-09-14 22:42 - 000022864 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd 2017-09-16 15:12 - 2017-09-14 22:40 - 000145864 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd 2017-09-16 15:12 - 2017-09-14 22:41 - 000116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll 2017-09-16 15:12 - 2017-09-14 22:40 - 000105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd 2017-09-16 15:12 - 2017-09-14 22:43 - 000022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.crt.compiled._winffi_crt.pyd 2017-09-16 15:12 - 2017-09-14 22:42 - 000062784 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd 2017-09-16 15:12 - 2017-09-14 22:40 - 000024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd 2017-09-16 15:12 - 2017-09-14 22:42 - 000040248 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd 2017-09-16 15:12 - 2017-09-14 22:40 - 000020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd 2017-09-16 15:12 - 2017-09-14 22:40 - 000124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd 2017-09-16 15:12 - 2017-09-14 22:40 - 000116176 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd 2017-09-16 15:12 - 2017-09-14 22:41 - 000392656 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll 2017-09-16 15:12 - 2017-09-14 22:43 - 000392512 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd 2017-09-16 15:12 - 2017-09-14 22:43 - 000026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.pyd 2017-09-16 15:12 - 2017-09-14 22:40 - 000024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd 2017-09-16 15:12 - 2017-09-14 22:40 - 000175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd 2017-09-16 15:12 - 2017-09-14 22:40 - 000030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd 2017-09-16 15:12 - 2017-09-14 22:40 - 000043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd 2017-09-16 15:12 - 2017-09-14 22:40 - 000048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd 2017-09-16 15:12 - 2017-09-14 22:40 - 000057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd 2017-09-16 15:12 - 2017-09-14 22:42 - 000022336 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd 2017-09-16 15:12 - 2017-09-14 22:43 - 000023368 _____ () C:\Program Files (x86)\Dropbox\Client\winshell.compiled._winshell.pyd 2017-09-16 15:12 - 2017-09-14 22:43 - 000082264 _____ () C:\Program Files (x86)\Dropbox\Client\winenumhandles.compiled._WinEnumHandles.pyd 2017-09-16 15:12 - 2017-09-14 22:43 - 000025432 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd 2017-09-16 15:12 - 2017-09-14 22:40 - 000028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd 2017-09-16 15:12 - 2017-09-14 22:40 - 000024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd 2017-09-16 15:12 - 2017-09-14 22:42 - 001826104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd 2017-09-16 15:12 - 2017-09-14 22:40 - 000083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd 2017-09-16 15:12 - 2017-09-14 22:42 - 001972024 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd 2017-09-16 15:12 - 2017-09-14 22:42 - 003928896 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd 2017-09-16 15:12 - 2017-09-14 22:42 - 000171336 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.pyd 2017-09-16 15:12 - 2017-09-14 22:42 - 000042816 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.pyd 2017-09-16 15:12 - 2017-09-14 22:42 - 000531264 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd 2017-09-16 15:12 - 2017-09-14 22:42 - 000133432 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd 2017-09-16 15:12 - 2017-09-14 22:42 - 000224064 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd 2017-09-16 15:12 - 2017-09-14 22:42 - 000207680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd 2017-09-16 15:12 - 2017-09-14 22:40 - 000060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd 2017-09-16 15:12 - 2017-09-14 22:43 - 000054608 _____ () C:\Program Files (x86)\Dropbox\Client\winrpcserver.compiled._RPCServer.pyd 2017-09-16 15:12 - 2017-09-14 22:43 - 000022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32.compiled._winffi_user32.pyd 2017-09-16 15:12 - 2017-09-14 22:43 - 000022872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi.compiled._winffi_iphlpapi.pyd 2017-09-16 15:12 - 2017-09-14 22:43 - 000021848 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror.compiled._winffi_winerror.pyd 2017-09-16 15:12 - 2017-09-14 22:43 - 000022872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet.compiled._winffi_wininet.pyd 2017-09-16 15:12 - 2017-09-14 22:42 - 000027488 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd 2017-09-16 15:12 - 2017-09-14 22:40 - 000349128 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd 2017-09-16 15:12 - 2017-09-14 22:43 - 000023896 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd 2017-09-16 15:12 - 2017-09-14 22:42 - 000025936 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd 2017-09-16 15:12 - 2017-09-14 22:41 - 000036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll 2017-09-16 15:12 - 2017-09-14 22:42 - 000181056 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL 2017-09-16 15:12 - 2017-09-14 22:43 - 000030536 _____ () C:\Program Files (x86)\Dropbox\Client\wind3d11.compiled._wind3d11.pyd 2017-09-16 15:12 - 2017-09-14 22:42 - 000024368 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.dll 2017-09-16 15:12 - 2017-09-14 22:42 - 001637688 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll 2017-09-16 15:12 - 2017-09-14 22:43 - 000026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.pyd 2017-09-16 15:12 - 2017-09-14 22:43 - 000023368 _____ () C:\Program Files (x86)\Dropbox\Client\wincrashpad.compiled._Crashpad.pyd 2017-09-16 15:12 - 2017-09-14 22:42 - 000546104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd 2017-09-16 15:12 - 2017-09-14 22:42 - 000357688 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd 2017-05-31 21:51 - 2017-07-26 18:09 - 001040320 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2016-12-12 23:55 - 2017-07-17 23:50 - 073115424 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll 2017-06-09 10:58 - 2017-05-17 02:54 - 000678176 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\SDL2.dll 2016-09-07 16:49 - 2015-09-25 00:52 - 000119208 _____ () C:\Program Files (x86)\Steam\winh264.dll 2016-08-31 21:44 - 2013-09-03 16:52 - 001242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2017-08-09 00:51 - 2017-08-08 15:13 - 001893880 _____ () C:\Users\Zac\AppData\Local\Discord\app-0.0.298\ffmpeg.dll 2017-08-09 00:51 - 2017-08-08 15:13 - 001938424 _____ () C:\Users\Zac\AppData\Local\Discord\app-0.0.298\libglesv2.dll 2017-08-09 00:51 - 2017-08-08 15:13 - 000095736 _____ () C:\Users\Zac\AppData\Local\Discord\app-0.0.298\libegl.dll 2017-08-09 17:04 - 2017-08-31 13:46 - 009622008 _____ () \\?\C:\Users\Zac\AppData\Roaming\discord\0.0.298\modules\discord_voice\discord_voice.node 2017-08-09 17:04 - 2017-08-09 17:04 - 001440248 _____ () \\?\C:\Users\Zac\AppData\Roaming\discord\0.0.298\modules\discord_utils\discord_utils.node 2017-08-14 11:52 - 2017-08-14 11:52 - 000148992 _____ () \\?\C:\Users\Zac\AppData\Local\Discord\app-0.0.298\resources\app\node_modules\erlpack\build\Release\erlpack.node 2017-08-09 17:02 - 2017-08-09 17:02 - 002658296 _____ () \\?\C:\Users\Zac\AppData\Roaming\discord\0.0.298\modules\discord_rpc\discord_rpc.node 2017-08-09 17:08 - 2017-08-09 17:08 - 002673656 _____ () \\?\C:\Users\Zac\AppData\Roaming\discord\0.0.298\modules\discord_contact_import\discord_contact_import.node 2017-02-23 01:18 - 2017-02-23 01:18 - 000111104 _____ () C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis IV\pdx_online.dll 2017-02-23 01:12 - 2017-02-23 01:18 - 000583680 _____ () C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis IV\pops_api.dll 2016-09-07 16:49 - 2017-07-19 02:53 - 000384288 _____ () C:\Program Files (x86)\Steam\steam.dll 2010-12-17 12:56 - 2010-12-17 12:56 - 002603520 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\QtCore4.dll 2010-12-17 12:56 - 2010-12-17 12:56 - 000382464 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\QtXml4.dll 2010-01-12 16:55 - 2010-01-12 16:55 - 000400384 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\sqlite3.dll 2010-01-12 16:55 - 2010-01-12 16:55 - 000322048 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\log4cplus.dll 2013-03-07 12:53 - 2013-03-07 12:53 - 000015872 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\featureController.dll 2010-12-17 12:56 - 2010-12-17 12:56 - 001006592 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\QtNetwork4.dll 2010-12-16 12:16 - 2010-12-16 12:16 - 000195584 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\libgsoap.dll 2010-01-17 23:34 - 2010-01-17 23:34 - 000062464 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\zlib1.dll 2013-03-07 12:55 - 2013-03-07 12:55 - 000472576 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\DeviceProfile.dll 2013-03-07 12:58 - 2013-03-07 12:58 - 000499488 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\plugin\PServerPlugin.dll 2013-03-07 12:54 - 2013-03-07 12:54 - 000013824 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\eventsSender.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\Users\Zac:Heroes & Generals [38] AlternateDataStreams: C:\ProgramData\.rdata:X [526] AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0] ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsMain => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsScanner => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsMain => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsScanner => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsUpdate => ""="Service" ==================== Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 03:34 - 2017-09-16 21:31 - 000000855 _____ C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-1031213751-2141322334-938452745-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Zac\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg HKU\S-1-5-21-1031213751-2141322334-938452745-1003\Control Panel\Desktop\\Wallpaper -> C:\Users\Administrato\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == MSCONFIG\startupreg: Dropbox => "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup MSCONFIG\startupreg: Wondershare Helper Compact.exe => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [VirtualPC-In-UDP-1] => (Allow) %SystemRoot%\System32\vpc.exe FirewallRules: [VirtualPC-In-UDP-2] => (Allow) %SystemRoot%\System32\vpc.exe FirewallRules: [VirtualPC-In-TCP-1] => (Allow) %SystemRoot%\System32\vpc.exe FirewallRules: [{D679A5B9-468B-4CE0-A92D-892AC2F8F132}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{E114E1F4-2156-485C-8871-C82386FD7EA1}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{E51C5DAD-0DC4-4F18-A7F9-E152D0B76919}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{028E0FE0-9E54-44BB-B3E2-A400BDFB57DB}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{A7BE29B2-AA4F-472F-B526-502DFC430484}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe FirewallRules: [{1CF27AF0-A0C5-4343-863C-BA6A058DD5A7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe FirewallRules: [TCP Query User{A2816B81-83DA-468C-A1FE-BF38C375DD37}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe FirewallRules: [UDP Query User{FFFCE239-7CC7-4701-8A99-EDC0C0F86F44}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe FirewallRules: [{2A5016D1-5081-418C-BBB3-240782F81D41}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sins of a Solar Empire Rebellion\Sins of a Solar Empire Rebellion.exe FirewallRules: [{EE67D270-F4B6-445C-B9DD-D0E4835F2FB4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sins of a Solar Empire Rebellion\Sins of a Solar Empire Rebellion.exe FirewallRules: [{E9AD4F6B-4397-41D3-BA11-581DCA083CF0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes Relaunch\RelicCOH.exe FirewallRules: [{7B851DB5-7A17-4D17-84D4-E06942C070CF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes Relaunch\RelicCOH.exe FirewallRules: [TCP Query User{90B4B04D-04AF-4ADE-8D0E-CB59CC197FC0}C:\program files (x86)\steam\steamapps\common\xcom-enemy-unknown\xew\binaries\win32\xcomew.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\xcom-enemy-unknown\xew\binaries\win32\xcomew.exe FirewallRules: [UDP Query User{EEF34110-5064-40ED-A374-A65D575FD201}C:\program files (x86)\steam\steamapps\common\xcom-enemy-unknown\xew\binaries\win32\xcomew.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\xcom-enemy-unknown\xew\binaries\win32\xcomew.exe FirewallRules: [{2C003377-E669-4ECC-81AC-2972CD01461E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Star Trek Online\Star Trek Online.exe FirewallRules: [{EF291A60-DCEC-4183-A338-B72AFADD7C2D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Star Trek Online\Star Trek Online.exe FirewallRules: [TCP Query User{FAE89C94-6D2A-4686-8F3A-2F455BBF801B}C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe FirewallRules: [UDP Query User{D68775B8-0F6D-48FC-B6E9-9EB8E37B4F7F}C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe FirewallRules: [{AB6DE4B6-A22B-4EDE-AF45-75F5B3BA029A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life 1 Source Deathmatch\hl2.exe FirewallRules: [{B47FE66C-1EF2-4B63-9627-99841F662CA4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life 1 Source Deathmatch\hl2.exe FirewallRules: [{9629C626-99D4-4FAB-BF45-F7DC86616605}] => (Allow) C:\Games\World_of_Warships\WoWSLauncher.exe FirewallRules: [{9B7EF0EE-B182-419D-990E-B2D2D8BFCC0A}] => (Allow) C:\Games\World_of_Warships\WoWSLauncher.exe FirewallRules: [{BCB9BD86-7522-4EB3-966D-968736C9AE91}] => (Allow) C:\Games\World_of_Warships\worldofwarships.exe FirewallRules: [{8A260B40-5F30-48E4-8381-BC259E49731C}] => (Allow) C:\Games\World_of_Warships\worldofwarships.exe FirewallRules: [{742BC669-B07B-49FD-8478-15B5719AC702}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hearts of Iron IV\hoi4.exe FirewallRules: [{A21CC790-D6C5-47A8-8F6B-2EF15321F11A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hearts of Iron IV\hoi4.exe FirewallRules: [TCP Query User{D93E792D-A688-4BB7-A328-BAA28F3E2EA4}C:\program files (x86)\xcom 2\binaries\win64\xcom2.exe] => (Allow) C:\program files (x86)\xcom 2\binaries\win64\xcom2.exe FirewallRules: [UDP Query User{72DAB633-854F-4DEB-898D-1A0F144CDEE2}C:\program files (x86)\xcom 2\binaries\win64\xcom2.exe] => (Allow) C:\program files (x86)\xcom 2\binaries\win64\xcom2.exe FirewallRules: [TCP Query User{399E4A39-2DDB-410D-A9AD-1D44FA479032}C:\games\wolfram\system\wolfram.exe] => (Allow) C:\games\wolfram\system\wolfram.exe FirewallRules: [UDP Query User{323348A7-D0AA-46CD-A071-523DA4EF7E78}C:\games\wolfram\system\wolfram.exe] => (Allow) C:\games\wolfram\system\wolfram.exe FirewallRules: [TCP Query User{D3F5F1BC-5CED-49D7-8813-93FB10F26A64}C:\users\zac\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\zac\appdata\local\mycomgames\mycomgames.exe FirewallRules: [UDP Query User{1BDB2F2C-7386-4E73-9053-6477F45B96AE}C:\users\zac\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\zac\appdata\local\mycomgames\mycomgames.exe FirewallRules: [TCP Query User{C05993F2-F71A-45C3-AE26-8A7183000A48}C:\mygames\armored warfare mycom\bin64\armoredwarfare.exe] => (Allow) C:\mygames\armored warfare mycom\bin64\armoredwarfare.exe FirewallRules: [UDP Query User{92036EB2-AA31-42A0-98F9-450EA2965F34}C:\mygames\armored warfare mycom\bin64\armoredwarfare.exe] => (Allow) C:\mygames\armored warfare mycom\bin64\armoredwarfare.exe FirewallRules: [TCP Query User{FC2C8A44-A9C6-485A-8855-BED2F21508E2}C:\users\zac\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\zac\appdata\local\mycomgames\mycomgames.exe FirewallRules: [UDP Query User{2CF467C3-97C1-40ED-AD4B-3AD3F0863E04}C:\users\zac\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\zac\appdata\local\mycomgames\mycomgames.exe FirewallRules: [TCP Query User{1E38AFB8-79AE-42DE-B860-3A3947748437}C:\program files (x86)\steam\steamapps\common\xcom 2\binaries\win64\xcom2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\xcom 2\binaries\win64\xcom2.exe FirewallRules: [UDP Query User{8758918C-2504-4623-AE87-B570CB395424}C:\program files (x86)\steam\steamapps\common\xcom 2\binaries\win64\xcom2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\xcom 2\binaries\win64\xcom2.exe FirewallRules: [{BD1024AD-D160-4A7B-AD91-39FE339B9498}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SurvHive\SurvHive.exe FirewallRules: [{8CE56E74-8103-4E63-929B-ED15D0869393}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SurvHive\SurvHive.exe FirewallRules: [TCP Query User{6B7E7C01-D172-4A83-B7AB-60F615615A91}C:\program files (x86)\steam\steamapps\common\survhive\binaries\win32\udk.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\survhive\binaries\win32\udk.exe FirewallRules: [UDP Query User{5224A1E8-692E-4B77-8BBB-56CAE89800BF}C:\program files (x86)\steam\steamapps\common\survhive\binaries\win32\udk.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\survhive\binaries\win32\udk.exe FirewallRules: [{694C3E76-0104-4562-AE14-9B4C2EE8F2E3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Neptunia Rebirth1\NeptuniaReBirth1.exe FirewallRules: [{85A0CA27-D8B9-4D54-A1DB-05BE36558D8E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Neptunia Rebirth1\NeptuniaReBirth1.exe FirewallRules: [{569403A1-D4ED-47E3-9ADE-40F0505D0619}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SunlessSea\Sunless Sea.exe FirewallRules: [{DAD7DFCF-6151-4683-9794-224A95FFEA3F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SunlessSea\Sunless Sea.exe FirewallRules: [{EE6AFF2D-0925-4698-84B5-3DE280FCA8AD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Manga Maker Comipo\ComiPo.exe FirewallRules: [{96C41C54-2864-4F43-BDBA-28A0C687570A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Manga Maker Comipo\ComiPo.exe FirewallRules: [TCP Query User{53FD4CB3-94C7-4EE3-A234-2A13D144852B}C:\program files (x86)\steam\steamapps\common\stay close\migrate\binaries\win64\migrate-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\stay close\migrate\binaries\win64\migrate-win64-shipping.exe FirewallRules: [UDP Query User{CC0F5770-B34C-4E15-9C7C-A6CC683AECEA}C:\program files (x86)\steam\steamapps\common\stay close\migrate\binaries\win64\migrate-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\stay close\migrate\binaries\win64\migrate-win64-shipping.exe FirewallRules: [{61A3A3B5-7E0C-44CC-8608-A764CD043808}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Banished\Application-steam-x64.exe FirewallRules: [{DA164387-06A4-4220-B32A-DD2A991CCA56}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Banished\Application-steam-x64.exe FirewallRules: [{008424CD-ADDA-43BE-9816-21FF40F0F503}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PWI\patcher\patcher.exe FirewallRules: [{7847D9BE-12E8-4B03-A62A-E39ACB13353A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PWI\patcher\patcher.exe FirewallRules: [{F648234D-AE39-4D7D-9B22-D3737D9C9041}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CrushCrush\CrushCrush.exe FirewallRules: [{FE49F8E7-D378-4432-81BE-A21FCF1B97EC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CrushCrush\CrushCrush.exe FirewallRules: [{61A577B6-2244-456D-8963-0DAA1E06132F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{76FB5FF0-3306-4124-9834-DAA1C7C857C7}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{5895378E-B54D-412C-9657-90DFF4A335A2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MiniMetro\MiniMetro.exe FirewallRules: [{C56FF795-F76F-49CF-8A26-EA477A28EE63}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MiniMetro\MiniMetro.exe FirewallRules: [{6B6DD910-1C57-468A-BE93-14BAF88C69FE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Verdun\Verdun.exe FirewallRules: [{1A386AB2-B06B-4F96-B779-13BC1E858B0D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Verdun\Verdun.exe FirewallRules: [{5FA23934-AC61-4B7A-B0F2-0D138C9F3F6D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Neptunia Rebirth2\NeptuniaReBirth2.exe FirewallRules: [{A7BAFCF2-9946-42B0-9C9B-B18C125D4E09}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Neptunia Rebirth2\NeptuniaReBirth2.exe FirewallRules: [{B0D4C660-54C2-43DE-8210-3F7B02B1FF6C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Valkyria Chronicles\Launcher.exe FirewallRules: [{D025A8BF-E453-4C6D-85CB-EBDFE0E27146}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Valkyria Chronicles\Launcher.exe FirewallRules: [{DA1AACCC-7B9A-4592-A947-4C1AF8D862F4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\workshop\Workshop.exe FirewallRules: [{15306FEE-0DA8-49FA-A652-008ED0C311CC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\workshop\Workshop.exe FirewallRules: [{5050D2A3-5C0C-4C60-9F3E-583BFB842688}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Men of War Assault Squad 2\mowas_2.exe FirewallRules: [{1E417AED-2737-4F02-9DE5-A59936AAA5AF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Men of War Assault Squad 2\mowas_2.exe FirewallRules: [{EB747C6B-7B55-4AA5-982B-50B644E015C2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Men of War Assault Squad 2\mowas_2_ed.exe FirewallRules: [{663D4DF6-3F01-4FF3-8160-413927CBCB30}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Men of War Assault Squad 2\mowas_2_ed.exe FirewallRules: [{E781DBCF-3547-4A26-8B58-E0A6384FA09A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe FirewallRules: [{44A60164-5CAE-42E6-A3AA-E81D71CCBCDC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe FirewallRules: [TCP Query User{F3417C21-1C08-411F-9709-51BED18F1713}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{6701E3C7-964F-47EC-9D27-47AF1FEBFBEB}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [{38ED1FDF-A31A-4460-81A1-8A7924329221}] => (Allow) C:\Program Files (x86)\Project Reality\Project Reality BF2\prbf2.exe FirewallRules: [{B65E848C-4DA7-41EE-93B4-C65CD7754826}] => (Allow) C:\Program Files (x86)\Project Reality\Project Reality BF2\mods\pr\bin\PRLauncher.exe FirewallRules: [{CDBD8811-68D2-4803-B599-2EC8352CD07E}] => (Allow) C:\Program Files (x86)\Project Reality\Project Reality BF2\mods\pr\bin\PRUpdater.exe FirewallRules: [{643C7A91-4B96-44BB-86B1-4581579412A4}] => (Allow) C:\Program Files (x86)\Project Reality\Project Reality BF2\mods\pr\bin\PRMumble\PRMumble.exe FirewallRules: [{B873F3E7-7AC4-43F7-A1DE-CDA6C0865A99}] => (Allow) C:\Program Files (x86)\2K Games\Firaxis Games\Sid Meier's Civilization IV Colonization\Colonization.exe FirewallRules: [{66A20C45-5FC2-46EA-8F64-5ECFB0E5B138}] => (Allow) C:\Program Files (x86)\2K Games\Firaxis Games\Sid Meier's Civilization IV Colonization\Colonization.exe FirewallRules: [{D0AB3298-D5B6-46EB-98B5-8AD55084EA9E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\sfm.exe FirewallRules: [{A65FEB50-E881-4A94-839E-77557ECD4843}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\sfm.exe FirewallRules: [{A02FFA92-54BD-4F57-A2F7-EA09D63322FE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\qsdklauncher.exe FirewallRules: [{368A9156-8092-42ED-B417-3109D968152B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\qsdklauncher.exe FirewallRules: [{EF81F51D-9A9D-47E6-AD82-4A88B79ED874}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis IV\eu4.exe FirewallRules: [{F290C9BC-A53B-4D21-B85D-6CE663F1CD43}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis IV\eu4.exe FirewallRules: [{8261F2C3-8B0A-410E-8C82-4B1E7E1DB6AA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fog of War\Battalion_Beta\Binaries\Win64\Battalion_Beta.exe FirewallRules: [{14722516-9AB0-4377-9B10-CE954B660C6C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fog of War\Battalion_Beta\Binaries\Win64\Battalion_Beta.exe FirewallRules: [{87821078-02AA-4BBC-B8F0-E975FECD9449}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dayofinfamy\dayofinfamy_BE.exe FirewallRules: [{002087DB-9FD4-4C04-A7FB-831D812C9528}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dayofinfamy\dayofinfamy_BE.exe FirewallRules: [TCP Query User{15F8EF69-28D2-4BA5-AD75-C2268CD80170}C:\program files (x86)\steam\steamapps\common\dayofinfamy\dayofinfamy.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dayofinfamy\dayofinfamy.exe FirewallRules: [UDP Query User{2F2741C2-A496-4DE3-8AF2-714357722671}C:\program files (x86)\steam\steamapps\common\dayofinfamy\dayofinfamy.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dayofinfamy\dayofinfamy.exe FirewallRules: [{05965A43-6478-4E1C-A8B3-6FA025319676}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hegemony III\Hegemony III Launcher.exe FirewallRules: [{498902D2-13B6-40D9-9B3D-96B4F013EE4A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hegemony III\Hegemony III Launcher.exe FirewallRules: [TCP Query User{E80635FE-9342-417D-90C5-34CB588EABD8}C:\gog games\we happy few\glimpsegame\binaries\win64\glimpsegame.exe] => (Allow) C:\gog games\we happy few\glimpsegame\binaries\win64\glimpsegame.exe FirewallRules: [UDP Query User{FFC24C24-2BAC-42E7-B836-3A19F69B2F4A}C:\gog games\we happy few\glimpsegame\binaries\win64\glimpsegame.exe] => (Allow) C:\gog games\we happy few\glimpsegame\binaries\win64\glimpsegame.exe FirewallRules: [{3EAAA74D-0AC2-4B81-B30A-EDC6DF1EAC49}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe FirewallRules: [{B9DC80D9-6BC7-43B6-A891-217A3CE10F15}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe FirewallRules: [{A19EC27B-504B-42CE-95B9-EF57B1AB7BC4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Robocraft\Robocraft.exe FirewallRules: [{7AF0E45D-A98C-4EA3-897D-3E26CABEBC57}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Robocraft\Robocraft.exe FirewallRules: [{D6A71A77-BCAE-454C-8A1B-99D82B3D6DF8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TyranoBuilder\tyranobuilder.exe FirewallRules: [{71470EB1-99D3-491D-AB2A-9BEADB9770F3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TyranoBuilder\tyranobuilder.exe FirewallRules: [{F1ABFA48-6CFA-479F-BE7B-5FCC0B3DCEF1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dawn of Andromeda\Dawn of Andromeda.exe FirewallRules: [{EB59AA7A-F81B-4C8E-8FAC-F5BD7D7934B4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dawn of Andromeda\Dawn of Andromeda.exe FirewallRules: [{8A3A04B2-F8B0-40B9-9756-89FC55BF99C3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Aliens vs Predator\AvP_Launcher.exe FirewallRules: [{4BD9FEF2-ABCA-46C6-B7BA-DC3E1F38C6D9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Aliens vs Predator\AvP_Launcher.exe FirewallRules: [{A26F24BB-B508-4E86-8D41-9B559E91551C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Aliens vs Predator\AvP_DX11.exe FirewallRules: [{63A8BA8F-21DE-4C09-8D24-A6BF4E930B26}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Aliens vs Predator\AvP_DX11.exe FirewallRules: [{64CE076D-542C-4EB6-81C4-51F8786BC406}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Aliens vs Predator\AvP.exe FirewallRules: [{2CE85465-B523-4F3A-A45A-12CA78437C0C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Aliens vs Predator\AvP.exe FirewallRules: [{A92BCE2B-AA65-4B4C-87D5-FC727A84012B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{BCDD4102-EFEF-49B9-8311-F3540C6843C7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{D4AB5718-CED4-432E-8A07-854DA4DF1F14}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{1DD2D2CB-3389-42C0-87F4-83C97B06786A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{030EADA1-128E-44DB-929F-3F34C92A8215}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{4E2D8899-8271-4118-A075-F1D348C51886}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes Relaunch\CoHFEW.exe FirewallRules: [{F3EE8AE6-DEDC-49C4-BA29-182B215B5B54}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes Relaunch\CoHFEW.exe FirewallRules: [TCP Query User{81DA7D3F-39F4-4C5E-B231-7D72C36CC24C}C:\program files (x86)\bsgo\launcher\launcher.exe] => (Allow) C:\program files (x86)\bsgo\launcher\launcher.exe FirewallRules: [UDP Query User{2C08D129-3DEE-4C5E-A043-22DAC9241523}C:\program files (x86)\bsgo\launcher\launcher.exe] => (Allow) C:\program files (x86)\bsgo\launcher\launcher.exe FirewallRules: [{DBE4D7E2-80F8-4D25-B9FD-6523AA3EBD0A}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe FirewallRules: [{3D11BAD0-09B0-4600-BB66-281E37015062}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe FirewallRules: [{B4D2102B-D211-4BA4-943F-34118599B7A8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty 2\CoD2SP_s.exe FirewallRules: [{56571994-1A09-4ECA-8F0D-BA8624D57CB0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty 2\CoD2SP_s.exe FirewallRules: [{4FF8B739-8583-4618-8651-BACE8F7F348B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty 2\CoD2MP_s.exe FirewallRules: [{B2E456F6-6F2D-406B-A36F-8A90611A495D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty 2\CoD2MP_s.exe FirewallRules: [{183EF34E-72C6-4CF6-B640-399E7FC2251D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Northgard\Northgard.exe FirewallRules: [{A147D06C-C6E2-4D15-ADE3-C6E2A726C7DB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Northgard\Northgard.exe FirewallRules: [{D72EFD72-7227-4477-A130-799BEB33DFBD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sins of a Solar Empire Rebellion\StardockLauncher.exe FirewallRules: [{A14839B0-A65F-4701-8C44-B8C6DF989725}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sins of a Solar Empire Rebellion\StardockLauncher.exe FirewallRules: [{7E2D0B90-0DFA-4EF6-AFF5-04072963033C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age Of Empires 3\bin\age3.exe FirewallRules: [{B38D045E-FE03-401A-80C8-681CA83F17ED}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age Of Empires 3\bin\age3.exe FirewallRules: [{15174FFE-01BB-4D30-A37A-688DB34D1BFF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age Of Empires 3\bin\age3x.exe FirewallRules: [{8BC407B6-D28F-44DE-B613-90701B37430B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age Of Empires 3\bin\age3x.exe FirewallRules: [{A4FB3B4B-18CA-43B3-9D8B-0A6283BAE9F9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age Of Empires 3\bin\age3y.exe FirewallRules: [{B97284AD-BE84-4E00-8B1B-C5636F6D624A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age Of Empires 3\bin\age3y.exe FirewallRules: [{E369F78A-4648-4A64-8E38-6EE3A115EB3B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Subnautica\Subnautica.exe FirewallRules: [{EF7033C0-5736-457A-844B-40F52B9C5B39}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Subnautica\Subnautica.exe FirewallRules: [{D7144AB3-AC22-4569-AC7E-9031EDE50E63}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dirty Bomb\DirtyBombLauncher.exe FirewallRules: [{2464B846-82E4-429A-90A5-A0883E8E6FCA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dirty Bomb\DirtyBombLauncher.exe FirewallRules: [TCP Query User{1544B4B3-B815-4A21-B951-3EA843C3763D}C:\program files (x86)\steam\steamapps\common\dirty bomb\binaries\win32\shootergame-win32-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dirty bomb\binaries\win32\shootergame-win32-shipping.exe FirewallRules: [UDP Query User{C3CA18A8-B5C5-4FFB-B238-C445401D555D}C:\program files (x86)\steam\steamapps\common\dirty bomb\binaries\win32\shootergame-win32-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dirty bomb\binaries\win32\shootergame-win32-shipping.exe FirewallRules: [TCP Query User{81781052-0416-40B5-8300-12F433655405}C:\program files (x86)\steam\steamapps\common\survhive\binaries\win32\udk.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\survhive\binaries\win32\udk.exe FirewallRules: [UDP Query User{D9D1B88B-B8F2-4CFB-9F08-1C1D19249B6B}C:\program files (x86)\steam\steamapps\common\survhive\binaries\win32\udk.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\survhive\binaries\win32\udk.exe FirewallRules: [{841ED260-3071-471C-9AB8-3A300B7A2E83}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect.exe FirewallRules: [{26C8214E-22D9-4406-AC46-3EE75F149B78}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect.exe FirewallRules: [TCP Query User{CBCAFA04-FB53-4611-852B-53D39E904703}C:\program files (x86)\qbittorrent\qbittorrent.exe] => (Allow) C:\program files (x86)\qbittorrent\qbittorrent.exe FirewallRules: [UDP Query User{EA7DC921-0997-4440-8651-D03471EA390F}C:\program files (x86)\qbittorrent\qbittorrent.exe] => (Allow) C:\program files (x86)\qbittorrent\qbittorrent.exe FirewallRules: [{7463ABDF-B531-444E-9A8A-167ED252BF07}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes Relaunch\EF_Bin\CoHEF.exe FirewallRules: [{B6E33AA1-526D-44C9-BABF-CCCA0BDFDE04}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes Relaunch\EF_Bin\CoHEF.exe FirewallRules: [{E29AC8E2-7507-4F11-9A58-8A71F04AFDD8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe FirewallRules: [{C9B16513-83EB-4CE6-98C4-D284735B5B5A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe FirewallRules: [TCP Query User{95EBD83E-D924-43E9-8601-D1119A29344D}C:\program files (x86)\steam\steamapps\common\dayofinfamy\dayofinfamy.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dayofinfamy\dayofinfamy.exe FirewallRules: [UDP Query User{5041F673-5B7C-4A5E-9834-25522A1ACFE9}C:\program files (x86)\steam\steamapps\common\dayofinfamy\dayofinfamy.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dayofinfamy\dayofinfamy.exe FirewallRules: [TCP Query User{86DC05E6-2276-460A-BFFD-D4A548D700D9}C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe FirewallRules: [UDP Query User{F4F52F51-83EB-479E-8A8E-D1154CEDF831}C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe FirewallRules: [{73156F06-A849-4679-9BAD-8DD286400D9B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Railroads\RailRoads.exe FirewallRules: [{BEB04D42-DFC9-4A58-B5C8-68AEACE544CA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Railroads\RailRoads.exe FirewallRules: [{C2FD3A17-F630-436A-AE4F-B856EFC2CCC1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Factorio\bin\x64\factorio.exe FirewallRules: [{90E40CA0-50BA-429F-BB6D-783BE22A6574}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Factorio\bin\x64\factorio.exe FirewallRules: [{949906B6-8552-4B59-9448-6F1B6857D591}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization VI\Base\Binaries\Win64Steam\CivilizationVI.exe FirewallRules: [{5CF60719-BAC3-4D4C-A0AC-50A95CA708AC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization VI\Base\Binaries\Win64Steam\CivilizationVI.exe FirewallRules: [{D8592637-067E-4D5E-BB91-F4BD6FE2AF5C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization VI\Base\Binaries\Win64Steam\CivilizationVI_DX12.exe FirewallRules: [{F95672A9-07B0-4F95-BF48-24667A28DCA5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization VI\Base\Binaries\Win64Steam\CivilizationVI_DX12.exe FirewallRules: [{B8214759-717B-440B-9C67-896516E360A1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Evil Genius\EvilGeniusLauncher.exe FirewallRules: [{6A1B58AC-37C0-4720-B538-B5E5E5C1D84E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Evil Genius\EvilGeniusLauncher.exe FirewallRules: [{84400C04-99FE-4E3D-B6F6-780B04E31AF9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Foxhole\War.exe FirewallRules: [{2A225157-C7BC-49B8-9B7A-DB8736B8CCE5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Foxhole\War.exe FirewallRules: [TCP Query User{16973F16-94D2-4CE4-BD6D-4649CD998B67}C:\program files (x86)\steam\steamapps\common\foxhole\war\binaries\win64\war-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\foxhole\war\binaries\win64\war-win64-shipping.exe FirewallRules: [UDP Query User{F0D22764-1A6F-47B8-A054-1E5B2057A7D8}C:\program files (x86)\steam\steamapps\common\foxhole\war\binaries\win64\war-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\foxhole\war\binaries\win64\war-win64-shipping.exe FirewallRules: [{5E8D5BC1-C47A-4C05-9696-F86918A6A5E0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Aura Kingdom\Launcher.exe FirewallRules: [{26600867-6DFB-4988-943D-1612AEBDF079}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Aura Kingdom\Launcher.exe FirewallRules: [{EA6F6455-6FCE-48E9-8F6D-9371CF3A305C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Aura Kingdom\game.bin FirewallRules: [{ED345084-0F4A-44BC-8D9E-2F77D2CF9574}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Aura Kingdom\game.bin FirewallRules: [{43F37270-6176-4400-9AF2-FC99C160F3B5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Colony Survival\colonyclient.exe FirewallRules: [{0080C645-2B8F-451B-8CEE-1A7D5A8F2218}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Colony Survival\colonyclient.exe FirewallRules: [{0B329396-78DE-41C7-8B9C-0C66A0B542B5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\World of Tanks Blitz\wotblitz.exe FirewallRules: [{0328B737-8330-4C6E-8100-34757344D6A7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\World of Tanks Blitz\wotblitz.exe FirewallRules: [{D42FDAE7-66DF-42B5-9E8E-4D49937AB995}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe FirewallRules: [{D4FE2570-5A2D-4BF4-8382-32E6F4490EE1}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe FirewallRules: [{531B46AF-CE00-48F6-9780-F245538AEB5C}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe FirewallRules: [{96D9B7F3-E559-433E-821D-3FC35B63ADFE}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe FirewallRules: [{D931AB30-7CFC-4206-A3D0-9B2052CC6183}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hegemony III\x64\Hegemony III.exe FirewallRules: [{FF9DAA8C-65CC-45BC-B233-23B8BE4E665B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hegemony III\x64\Hegemony III.exe FirewallRules: [{C7FC37A7-FDAB-4AF5-9520-58D85384DDDE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{596835EC-F541-4134-8198-DCE387336D8D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{C4E0725F-FC1C-4F91-B2F0-95E8ED3CA26F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{3A18941A-A6DC-4CA4-B915-594A5117E3C8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{E920BB41-0B19-4E18-9F1A-DA9BCF1C2C64}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{35455FB8-85EE-4629-8166-F601DCE43880}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Mesa\bms.exe FirewallRules: [{C854D8EA-C7A6-413B-BFF6-E5F9F15B8163}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Mesa\bms.exe FirewallRules: [{C55168DD-650C-41D6-9D84-5B16A8EFF495}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Factorio\bin\x64\factorio.exe FirewallRules: [{1FA63B2B-F60B-4493-92BA-D27A96DE3868}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Factorio\bin\x64\factorio.exe FirewallRules: [TCP Query User{A9D76D2A-42A5-446E-BA83-89CFAB7CDA30}C:\program files\java\jre1.8.0_141\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_141\bin\javaw.exe FirewallRules: [UDP Query User{322D2F88-8C5F-4E12-8B68-D7608EDDE40C}C:\program files\java\jre1.8.0_141\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_141\bin\javaw.exe FirewallRules: [{8C4D71FD-6A6C-492B-80FC-94FCA73FF8C6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Red Orchestra 2\Binaries\Win32\ROGame.exe FirewallRules: [{2D454E08-7501-4BBB-B1BB-1B43058D3307}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Red Orchestra 2\Binaries\Win32\ROGame.exe FirewallRules: [{01089073-547D-4406-9F0F-64BB8C9CA124}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{3AB8417F-9578-428D-B4B0-9968A1456769}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{D0B1D211-92DE-4FB0-B92C-7D2590F9EC37}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{424EA691-68B7-4CCB-B5EF-55E834FD80BE}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{2E40AD7A-554E-4690-9BD5-BF45838E9ACB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{C85CAAB1-81D1-4A39-9413-C7A8F842A62B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\WeHappyFew\GlimpseGame\Binaries\Win64\GlimpseGame.exe FirewallRules: [{AE33E47F-DF72-4354-9871-61B875EE697B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\WeHappyFew\GlimpseGame\Binaries\Win64\GlimpseGame.exe FirewallRules: [{FBADBAED-FA9E-4F14-8E68-DBD78A2CCA32}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Ship\ship.exe FirewallRules: [{5B3633F9-5FF3-4C50-9AE3-0492E347F21C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Ship\ship.exe FirewallRules: [TCP Query User{7BAD58F0-0B8E-49BA-B293-14D7793B6279}C:\users\administrato\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\administrato\appdata\local\akamai\netsession_win.exe FirewallRules: [UDP Query User{12437518-4C5B-4101-AD76-BD58597C085A}C:\users\administrato\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\administrato\appdata\local\akamai\netsession_win.exe FirewallRules: [{45D49CA6-0BC3-4C38-9BC1-D1DF0653B5AE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\XCOM 2\Binaries\Win64\Launcher\ModLauncherWPF.exe FirewallRules: [{F3F5AC95-B4B0-4A9D-8A51-28ED866500E9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\XCOM 2\Binaries\Win64\Launcher\ModLauncherWPF.exe FirewallRules: [{00FF623B-880D-4537-A407-85EA2636321D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Verdun\1914-1918 Series.exe FirewallRules: [{06A08AF3-EBD3-42DC-A0B0-45C0839AC581}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Verdun\1914-1918 Series.exe FirewallRules: [{5E905906-1019-4959-B853-546AE3434564}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes Relaunch\EF_Bin\CoHEF.exe FirewallRules: [{1A15705A-A747-4612-A8FC-CEDD69FF8E3C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes Relaunch\EF_Bin\CoHEF.exe FirewallRules: [{CB1CCB77-D74F-4EC4-99F4-FCD6EB700453}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe ==================== Restore Points ========================= 15-09-2017 19:19:18 Windows Update 15-09-2017 21:02:56 Windows Update 16-09-2017 14:50:48 Windows Update 16-09-2017 15:34:22 Windows Update 16-09-2017 15:49:32 Windows Update 16-09-2017 18:13:40 Windows Update 16-09-2017 22:51:03 Windows Update 16-09-2017 22:54:45 Windows Update 17-09-2017 02:27:35 Windows Update 17-09-2017 16:59:08 Windows Update ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (09/16/2017 09:43:30 PM) (Source: .NET Runtime Optimization Service) (EventID: 1103) (User: ) Description: .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32) - Tried to start a service that wasn't the latest version of CLR Optimization service. Will shutdown Error: (09/16/2017 09:43:27 PM) (Source: .NET Runtime Optimization Service) (EventID: 1103) (User: ) Description: .NET Runtime Optimization Service (clr_optimization_v2.0.50727_64) - Tried to start a service that wasn't the latest version of CLR Optimization service. Will shutdown Error: (09/16/2017 09:40:49 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: ) Description: The Cryptographic Services service failed to initialize the Catalog Database. The ESENT error was: -528. Error: (09/16/2017 09:40:48 PM) (Source: ESENT) (EventID: 455) (User: ) Description: Catalog Database (1324) Catalog Database: Error -1811 (0xfffff8ed) occurred while opening logfile C:\Windows\system32\CatRoot2\edb.log. Error: (09/16/2017 09:37:55 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3009) (User: User-PC) Description: Installing the performance counter strings for service .NET Data Provider for Oracle () failed. The first DWORD in the Data section contains the error code. Error: (09/16/2017 09:28:25 PM) (Source: WinMgmt) (EventID: 4) (User: ) Description: Error 0x8004401e encountered when trying to load MOF C:\WINDOWS\SYSTEM32\WBEM\EN-US\AACLIENT.MFL while recovering .MOF file marked with autorecover. Error: (09/16/2017 09:27:47 PM) (Source: WinMgmt) (EventID: 4) (User: ) Description: Error 0x8004401e encountered when trying to load MOF C:\WINDOWS\SYSTEM32\WBEM\AACLIENT.MOF while recovering .MOF file marked with autorecover. Error: (09/16/2017 03:35:01 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x80070013, The media is write protected. . Error: (09/16/2017 03:35:01 PM) (Source: VSS) (EventID: 13) (User: ) Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x80070013, The media is write protected. ] Error: (09/11/2017 06:18:38 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: The program RobloxStudioBeta.exe version 0.306.0.16614 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel. Process ID: 235c Start Time: 01d32b1bc1e8bc1d Termination Time: 183 Application Path: C:\Users\Zac\AppData\Local\Roblox\Versions\version-54a34f6a5393472d\RobloxStudioBeta.exe Report Id: 39e8c485-9715-11e7-ba5d-d05099988926 System errors: ============= Error: (09/17/2017 07:12:27 PM) (Source: WMPNetworkSvc) (EventID: 14332) (User: ) Description: Service 'WMPNetworkSvc' did not start correctly because CoCreateInstance(CLSID_UPnPDeviceFinder) encountered error '0x80004005'. Verify that the UPnPHost service is running and that the UPnPHost component of Windows is installed properly. Error: (09/17/2017 07:08:49 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: The previous system shutdown at 16:59:40 on ‎17/‎09/‎2017 was unexpected. Error: (09/17/2017 09:40:12 AM) (Source: bowser) (EventID: 8003) (User: ) Description: The master browser has received a server announcement from the computer BOOTCAMP-IMAC that believes that it is the master browser for the domain on transport NetBT_Tcpip_{7F88570A-BF92-4392-9C5D-CAB300B002D5}. The master browser is stopping or an election is being forced. Error: (09/17/2017 09:05:10 AM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: The Intel(R) Management and Security Application Local Management Service service hung on starting. Error: (09/17/2017 09:00:18 AM) (Source: WMPNetworkSvc) (EventID: 14332) (User: ) Description: Service 'WMPNetworkSvc' did not start correctly because CoCreateInstance(CLSID_UPnPDeviceFinder) encountered error '0x80004005'. Verify that the UPnPHost service is running and that the UPnPHost component of Windows is installed properly. Error: (09/17/2017 08:56:48 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: The previous system shutdown at 02:28:57 on ‎17/‎09/‎2017 was unexpected. Error: (09/17/2017 02:29:28 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY) Description: Installation Failure: Windows failed to install the following update with error 0x800736b3: 2017-09 Security and Quality Rollup for .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7 on Windows 7 and Server 2008 R2 for x64 (KB4041083). Error: (09/16/2017 10:58:05 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY) Description: Installation Failure: Windows failed to install the following update with error 0x800736b3: 2017-09 Security and Quality Rollup for .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7 on Windows 7 and Server 2008 R2 for x64 (KB4041083). Error: (09/16/2017 10:58:05 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY) Description: Installation Failure: Windows failed to install the following update with error 0x800736b3: 2017-09 Security and Quality Rollup for .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7 on Windows 7 and Server 2008 R2 for x64 (KB4041083). Error: (09/16/2017 09:49:59 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: The Windows Update service hung on starting. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i5-4460 CPU @ 3.20GHz Percentage of memory in use: 84% Total physical RAM: 8130.38 MB Available physical RAM: 1241.82 MB Total Virtual: 16258.95 MB Available Virtual: 8603.93 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:931.41 GB) (Free:357.52 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: F2A35A49) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS) ==================== End of Addition.txt ============================