Additional scan result of Farbar Recovery Scan Tool (x64) Version: 23-11-2019 Ran by jonpr (23-11-2019 13:20:01) Running from S:\Downloads Windows 10 Pro Version 1909 18363.476 (X64) (2019-11-21 22:52:08) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-2868613054-3718284689-2572456167-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-2868613054-3718284689-2572456167-503 - Limited - Disabled) ebony (S-1-5-21-2868613054-3718284689-2572456167-1004 - Limited - Enabled) => C:\Users\ebony Guest (S-1-5-21-2868613054-3718284689-2572456167-501 - Limited - Disabled) jonpr (S-1-5-21-2868613054-3718284689-2572456167-1001 - Administrator - Enabled) => C:\Users\jonpr postgres (S-1-5-21-2868613054-3718284689-2572456167-1002 - Limited - Enabled) => C:\Users\postgres WDAGUtilityAccount (S-1-5-21-2868613054-3718284689-2572456167-504 - Limited - Disabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) Adobe Photoshop CC 2019 (HKLM-x32\...\PHSP_20_0) (Version: 20.0.0 - Adobe Systems Incorporated) AltServer (HKLM-x32\...\{2535A529-DB80-4BC5-BC95-D2AB7C9660DD}) (Version: 1.0.1 - Riley Testut) Anthem™ (HKLM-x32\...\{57b4eaa0-f1f5-407e-afbd-2db397381ad8}) (Version: 1.0.58.44883 - Electronic Arts) Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.2.4 - Electronic Arts, Inc.) Apple Application Support (32-bit) (HKLM-x32\...\{BED24701-751B-41C5-8888-A8EABAB9FE8C}) (Version: 8.1 - Apple Inc.) Apple Application Support (64-bit) (HKLM\...\{88F21C94-88AF-4665-AF4F-FECB1FA059B9}) (Version: 8.1 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{6CECF0FB-EE71-4FE5-8AE0-FA007408934A}) (Version: 13.0.0.38 - Apple Inc.) Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.) Assassin's Creed Origins (HKLM-x32\...\Uplay Install 3539) (Version: - Ubisoft) Audacity 2.3.2 (HKLM-x32\...\Audacity_is1) (Version: 2.3.2 - Audacity Team) balenaEtcher 1.5.57 (HKU\S-1-5-21-2868613054-3718284689-2572456167-1001\...\d2f3b6c7-6f49-59e2-b8a5-f72e33900c2b) (Version: 1.5.57 - Balena Inc.) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Battlefield™ 1 (HKLM-x32\...\{335B50BC-6130-4BAF-9A6A-F1561270587B}) (Version: 1.0.57.44284 - Electronic Arts) Bethesda.net Launcher (HKLM-x32\...\{3448917E-E4FE-4E30-9502-9FD52EABB6F5}_is1) (Version: 1.51.0 - Bethesda Softworks) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Burnout™ Paradise Remastered (HKLM-x32\...\{ADF3783C-C4B7-46A0-A0A6-EC4CA30479BE}) (Version: 1.0.0.0 - Electronic Arts, Inc.) Call of Duty Black Ops 4 (HKLM-x32\...\Call of Duty Black Ops 4) (Version: - Blizzard Entertainment) CPUID CPU-Z 1.90 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.90 - CPUID, Inc.) Creative Media Toolbox 6 (HKLM-x32\...\{F1A14CB2-A048-45A6-AFDA-3571296E1D76}) (Version: 6.02 - Creative Technology Limited) Creative Music Server (HKLM-x32\...\Music Server) (Version: 1.01 - Creative Technology Limited) Creative Smart Recorder (HKLM-x32\...\Smart Recorder) (Version: 2.20 - Creative Technology Limited) Creative WaveStudio 7 (HKLM-x32\...\WaveStudio 7) (Version: 7.14 - Creative Technology Limited) CrystalDiskInfo 8.2.4 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 8.2.4 - Crystal Dew World) CrystalDiskMark 6.0.2 (HKLM\...\CrystalDiskMark6_is1) (Version: 6.0.2 - Crystal Dew World) DaVinci Resolve (HKLM\...\{4DA063F8-F151-4D1E-8BC2-43190DE2D31F}) (Version: 16.1.1005 - Blackmagic Design) DaVinci Resolve Keyboards (HKLM\...\{04F776FB-37A2-4116-84F2-6CF3D731999D}) (Version: 1.0.0.0 - Blackmagic Design) DaVinci Resolve Panels (HKLM\...\{74ADC138-4768-4C5D-8123-B17527E513B5}) (Version: 1.3.1.0 - Blackmagic Design) Dead Cells (HKLM-x32\...\{77B0D30B-43DB-464C-B02F-0B9DD13865E4}) (Version: 1.5.0.0 - Motion Twin) Dead Space™ (HKLM-x32\...\{9789E33B-317A-44B2-AF9A-FF8708AD93E0}) (Version: 3.0.0.222 - Electronic Arts) Destiny 2 (HKLM-x32\...\Destiny 2) (Version: - Blizzard Entertainment) Discord (HKU\S-1-5-21-2868613054-3718284689-2572456167-1001\...\Discord) (Version: 0.0.305 - Discord Inc.) Dolby Digital Live Pack (HKLM-x32\...\Dolby Digital Live Pack) (Version: 3.03 - Creative Technology Limited) DTS Connect Pack (HKLM-x32\...\DTS Connect Pack) (Version: 1.00 - Creative Technology Limited) Epic Games Launcher (HKLM-x32\...\{5B340CD5-07E3-41AA-9117-0A0EC863E454}) (Version: 1.1.220.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Fairlight Audio Accelerator Utility (HKLM\...\FairlightAudioAccelerator_is1) (Version: 1.0.11 - Blackmagic Design) Fairlight Studio Utility (HKLM\...\{8F81CF78-0ABF-45A7-9C22-C16D3BB6894A}) (Version: 1.1.1.0 - Blackmagic Design) foobar2000 v1.4.8 (HKLM-x32\...\foobar2000) (Version: 1.4.8 - Peter Pawlowski) FormatFactory 4.9.0.0 (HKLM-x32\...\FormatFactory) (Version: 4.9.0.0 - Free Time) Fraps (HKLM-x32\...\Fraps) (Version: - ) GIMP 2.10.14 (HKLM\...\GIMP-2_is1) (Version: 2.10.14 - The GIMP Team) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 78.0.3904.108 - Google LLC) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.341 - Google LLC) Hidden Grand Theft Auto V (HKLM-x32\...\{5EFC6C07-6B87-43FC-9524-F9E967241741}) (Version: 1.0.1737.6 - Rockstar Games) HandBrake 1.2.2 (HKLM-x32\...\HandBrake) (Version: 1.2.2 - ) iCloud (HKLM\...\{576BC8FA-1891-47C8-8A23-F3DDB78C06DE}) (Version: 7.15.0.10 - Apple Inc.) Inkscape 0.92.4 (HKLM\...\{81922150-317E-4BB0-A31D-FF1C14F707C5}) (Version: 0.92.4.0 - Inkscape project) ISA2 basic 2.1.5 (HKLM-x32\...\{F320039E-800C-4DFB-9382-57E72CD551C0}_is1) (Version: 2.1.5 - Scripture4All Publishing) iTunes (HKLM\...\{38749252-C55E-44D9-9CB6-52199D0173AB}) (Version: 12.10.2.3 - Apple Inc.) Kinect for Windows Speech Recognition Language Pack (en-AU) (HKLM-x32\...\{48CEC0A3-AE10-4EE3-AC62-76D3D58792E5}) (Version: 11.0.7400.336 - Microsoft Corporation) Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden LibreOffice 6.3.1.2 (HKLM\...\{46BF4998-7CC7-43AA-8D4C-D43DEFB24493}) (Version: 6.3.1.2 - The Document Foundation) Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: - Logitech) Logitech SetPoint 6.69 (HKLM\...\sp6) (Version: 6.69.123 - Logitech) Maxx Audio Installer (x64) (HKLM\...\{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 2.6.8627.1 - Waves Audio Ltd.) Hidden Microsoft Server Speech Platform Runtime (x64) (HKLM\...\{3B433087-E62E-4BF5-97F9-4AF6E1C2409C}) (Version: 11.0.7400.345 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation) Mozilla Firefox 70.0.1 (x64 en-US) (HKLM\...\Mozilla Firefox 70.0.1 (x64 en-US)) (Version: 70.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.0.2 - Mozilla) NAPS2 6.1.2 (HKLM-x32\...\NAPS2 (Not Another PDF Scanner 2)_is1) (Version: - Ben Olden-Cooligan) NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden NVIDIA GeForce Experience 3.20.1.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.1.57 - NVIDIA Corporation) NVIDIA Graphics Driver 441.20 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 441.20 - NVIDIA Corporation) NVIDIA HD Audio Driver 1.3.38.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.21 - NVIDIA Corporation) NVIDIA PhysX System Software 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 23.2.1 - OBS Project) Origin (HKLM-x32\...\Origin) (Version: 10.5.55.33574 - Electronic Arts, Inc.) PeaZip 6.7.2 (WIN64) (HKLM\...\{5A2BC38A-406C-4A5B-BF45-6991F9A05325}_is1) (Version: 6.7.2 - Giorgio Tani) PostgreSQL 9.5 (HKLM\...\PostgreSQL 9.5) (Version: 9.5 - PostgreSQL Global Development Group) Realtek Audio COM Components (HKLM-x32\...\{2355B503-9B11-4449-861D-1C1748B26320}) (Version: 1.0.2 - Realtek Semiconductor Corp.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6111 - Realtek Semiconductor Corp.) Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.15.182 - Rockstar Games) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.4.1 - Rockstar Games) Sound Blaster Z-Series (HKLM-x32\...\{DAB64FB1-0BBB-486E-9C57-A3E34F463AEB}) (Version: 1.01.10 - Creative Technology Limited) Sound Blaster Z-Series Extras (HKLM-x32\...\{9D9DB4BA-E352-4AC8-AD2B-B10104F5AB80}) (Version: 1.0 - Creative Technology Limited) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Steep (HKLM-x32\...\Uplay Install 3279) (Version: - Ubisoft) Streamlabs OBS 0.17.1 (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.17.1 - General Workings, Inc.) TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp) Titanfall™ 2 (HKLM-x32\...\{4BD80373-FEE7-45B6-8249-6E8E98717405}) (Version: 1.0.1.3 - Electronic Arts, Inc.) Twitch (HKU\S-1-5-21-2868613054-3718284689-2572456167-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.) Uplay (HKLM-x32\...\Uplay) (Version: 94.0 - Ubisoft) VEGAS Pro 16.0 (HKLM\...\{3D82310F-FE3E-11E8-9448-00155D6302F2}) (Version: 16.0.352 - VEGAS) VEGAS Pro 17.0 (HKLM\...\{E649B5F0-B27C-11E9-B856-A5146957F833}) (Version: 17.0.284 - VEGAS) VideoProc (HKLM-x32\...\VideoProc) (Version: 3.4 - Digiarty, Inc.) VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN) WestwoodChat (HKLM-x32\...\{7CAE6A67-AF7B-4A6A-8705-8AFACA45BB60}) (Version: 1.0.0.0 - WestwoodChat) WestwoodOnline (HKLM-x32\...\{BBCD6D56-8A26-4DDE-9482-DBC9C7B7341D}) (Version: 1.0.0.0 - WestwoodOnline) Windows 10 Update Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22925 - Microsoft Corporation) Zoom (HKU\S-1-5-21-2868613054-3718284689-2572456167-1001\...\ZoomUMX) (Version: 4.5 - Zoom Video Communications, Inc.) Packages: ========= Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_2.8.0.1_neutral__6e5tt8cgb93ep [2019-11-07] (Canon Inc.) DirectX -> C:\Program Files\WindowsApps\Microsoft.DirectXRuntime_9.29.952.0_x64__8wekyb3d8bbwe [2019-09-11] (Microsoft Corporation) DirectX -> C:\Program Files\WindowsApps\Microsoft.DirectXRuntime_9.29.952.0_x86__8wekyb3d8bbwe [2019-09-11] (Microsoft Corporation) Forza Horizon 4 -> C:\Program Files\WindowsApps\Microsoft.SunriseBaseGame_1.367.746.2_x64__8wekyb3d8bbwe [2019-11-21] (Microsoft Studios) Forza Horizon 4 Formula Drift Car Pack -> C:\Program Files\WindowsApps\Microsoft.FormulaDriftCarPack_1.0.3.2_neutral__8wekyb3d8bbwe [2019-08-16] (Microsoft Studios) Forza Hub -> C:\Program Files\WindowsApps\Microsoft.Lucille_1.0.4.0_x64__8wekyb3d8bbwe [2019-08-15] (Microsoft Studios) Forza Motorsport 7 -> C:\Program Files\WindowsApps\Microsoft.ApolloBaseGame_1.174.4791.2_x64__8wekyb3d8bbwe [2019-08-17] (Microsoft Studios) Forza Motorsport 7 Hoonigan Car Pack -> C:\Program Files\WindowsApps\Microsoft.ForzaMotorsport7PreorderBonus_1.3.3.2_neutral__8wekyb3d8bbwe [2019-08-17] (Microsoft Studios) Gaming Services -> C:\Program Files\WindowsApps\Microsoft.GamingServices_1.35.19001.0_x64__8wekyb3d8bbwe [2019-11-21] (Microsoft Corporation) Gears 5 -> C:\Program Files\WindowsApps\Microsoft.HalifaxBaseGame_1.1.109.0_x64__8wekyb3d8bbwe [2019-11-21] (Microsoft Studios) Halo: The Master Chief Collection -> C:\Program Files\WindowsApps\Microsoft.Chelan_1.1000.0.0_x64__8wekyb3d8bbwe [2019-11-19] (Microsoft Studios) Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_41.1788.50991.0_x86__8xx8rvfyw5nnt [2019-08-18] (Instagram) Mail and Calendar -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12228.20276.0_x64__8wekyb3d8bbwe [2019-11-23] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-08-15] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-08-15] (Microsoft Corporation) [MS Ad] Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.33.13094.0_x64__8wekyb3d8bbwe [2019-11-13] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.11052.0_x64__8wekyb3d8bbwe [2019-11-08] (Microsoft Studios) [MS Ad] MSN Weather -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.33.13253.0_x64__8wekyb3d8bbwe [2019-11-22] (Microsoft Corporation) [MS Ad] NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.956.0_x64__56jybvy8sckqj [2019-09-30] (NVIDIA Corp.) Photos Media Engine Add-on -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-10-06] (Microsoft Corporation) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0 [2019-11-22] (Spotify AB) [Startup Task] The Master Chief Collection: REACH -> C:\Program Files\WindowsApps\Microsoft.TheMasterChiefCollectionREACH_1.1.0.0_x64__8wekyb3d8bbwe [2019-11-19] (Microsoft Studios) ==================== Custom CLSID (Whitelisted): ============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2019-10-25] (Apple Inc. -> Apple Inc.) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_c54903cb687d7726\nvshext.dll [2019-11-08] (NVIDIA Corporation -> NVIDIA Corporation) ==================== Codecs (Whitelisted) ==================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Drivers32: [VIDC.FPS1] => C:\WINDOWS\system32\frapsv64.dll [105984 2019-08-30] (Beepa P/L) [File not signed] HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [94208 2019-08-30] (Beepa P/L) [File not signed] ==================== Shortcuts & WMI ======================== (The entries could be listed to be restored or removed.) ShortcutWithArgument: C:\Users\jonpr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Keep - notes and lists.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=hmjkmjkepdijhoojdojkdfohbdgmmhki ShortcutWithArgument: C:\Users\jonpr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Play Music.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fahmaaghhglfmonjliepjlchgpgfmobi ShortcutWithArgument: C:\Users\jonpr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sketchpad 3.5.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kkghjbajgkcialbbimbifdcjilhcgoim ShortcutWithArgument: C:\Users\jonpr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Yawanathan - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1" ShortcutWithArgument: C:\Users\jonpr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\225bb61db2f318c1\jqaeda - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 3" ==================== Loaded Modules (Whitelisted) ============= 2019-09-03 00:24 - 2016-08-09 00:13 - 000183296 _____ () [File not signed] C:\Program Files\PostgreSQL\9.5\bin\LIBPQ.dll 2019-09-03 00:24 - 2016-07-27 03:08 - 002264576 _____ () [File not signed] C:\Program Files\PostgreSQL\9.5\bin\libxml2.dll 2019-08-22 16:02 - 2009-03-18 15:00 - 000151552 _____ (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\ShareDLL\CADI\CTCadiEP.dll 2014-07-03 16:22 - 2014-07-03 16:22 - 000555008 _____ (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\CTAudEp.dll 2011-09-16 16:04 - 2011-09-16 16:04 - 000238080 _____ (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\CTLoadRs.dll 2013-02-27 10:29 - 2013-02-27 10:29 - 000251904 _____ (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\HKDetect.dll 2019-09-03 00:24 - 2015-08-26 03:40 - 001687930 _____ (Free Software Foundation) [File not signed] C:\Program Files\PostgreSQL\9.5\bin\libiconv-2.dll 2019-09-03 00:24 - 2015-08-26 03:40 - 000685350 _____ (Free Software Foundation) [File not signed] C:\Program Files\PostgreSQL\9.5\bin\libintl-8.dll 2019-08-15 12:16 - 2019-08-15 12:08 - 001277440 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll 2019-08-15 12:16 - 2019-08-15 12:08 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll 2019-09-03 00:24 - 2016-05-05 01:35 - 001655808 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\PostgreSQL\9.5\bin\LIBEAY32.dll 2019-09-03 00:24 - 2016-05-05 01:35 - 000349696 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\PostgreSQL\9.5\bin\SSLEAY32.dll 2019-08-15 12:16 - 2019-08-15 12:08 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll 2019-11-12 19:24 - 2019-08-15 12:08 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll 2019-11-12 19:24 - 2019-08-15 12:08 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll 2019-11-12 19:24 - 2019-08-15 12:08 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll 2019-11-12 19:24 - 2019-08-15 12:08 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll 2019-11-12 19:24 - 2019-08-15 12:08 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll ==================== Alternate Data Streams (Whitelisted) ======== ==================== Safe Mode (Whitelisted) ================== ==================== Association (Whitelisted) ================= ==================== Internet Explorer trusted/restricted ========== ==================== Hosts content: ========================= (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2018-09-15 02:31 - 2018-09-15 02:31 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Other Areas =========================== (Currently there is no automatic fix for this section.) HKU\S-1-5-21-2868613054-3718284689-2572456167-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\jonpr\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\imac-pro-5k-ad.jpg HKU\S-1-5-21-2868613054-3718284689-2572456167-1002\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == (If an entry is included in the fixlist, it will be removed.) HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0" HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run: => "iTunesHelper" HKU\S-1-5-21-2868613054-3718284689-2572456167-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk" HKU\S-1-5-21-2868613054-3718284689-2572456167-1001\...\StartupApproved\Run: => "EpicGamesLauncher" HKU\S-1-5-21-2868613054-3718284689-2572456167-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-2868613054-3718284689-2572456167-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-2868613054-3718284689-2572456167-1001\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-2868613054-3718284689-2572456167-1001\...\StartupApproved\Run: => "iCloudServices" HKU\S-1-5-21-2868613054-3718284689-2572456167-1001\...\StartupApproved\Run: => "iCloudPhotos" HKU\S-1-5-21-2868613054-3718284689-2572456167-1001\...\StartupApproved\Run: => "iCloudDrive" ==================== FirewallRules (Whitelisted) ================ (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{93D4FD6A-F4C7-4DD6-8953-D9E00C6927C8}] => (Allow) X:\Game Library\Origin Games\Anthem\Anthem.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{F3BEE3BC-4EE4-4633-ACB7-B5E4AF39BE3F}] => (Allow) X:\Game Library\Origin Games\Anthem\Anthem.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{3F5A4F2B-D1EF-4E94-8FED-66DAA2D6A007}] => (Allow) X:\Game Library\Origin Games\Anthem\AnthemTrial.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{1DD59B58-A165-49A0-A035-239D09601499}] => (Allow) X:\Game Library\Origin Games\Anthem\AnthemTrial.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{0E38BD92-A88E-4CEA-BF5D-6DB3FCA1C98E}] => (Allow) X:\Game Library\Origin Games\Dead Cells\deadcells_gl.exe () [File not signed] FirewallRules: [{29FDD720-2917-45CC-8D22-89BA2566BE2B}] => (Allow) X:\Game Library\Origin Games\Dead Cells\deadcells_gl.exe () [File not signed] FirewallRules: [{AD94C813-6E1F-4D98-A7A2-4A8035F28867}] => (Allow) X:\Game Library\Origin Games\Dead Cells\deadcells.exe () [File not signed] FirewallRules: [{A2C4BB6F-A2B7-45FD-A9DA-EAC43AF1DB34}] => (Allow) X:\Game Library\Origin Games\Dead Cells\deadcells.exe () [File not signed] FirewallRules: [{66A2E67D-89CF-41BA-8CB4-2E33A4735650}] => (Allow) X:\Game Library\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [{A73A0195-9F83-44FC-A4BC-CD946B980C58}] => (Allow) X:\Game Library\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [{4D9FB966-5276-4372-AF2E-76CA105906B9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{E2E4C435-3CF5-4EAE-B39E-F3298CE04442}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{54E45D88-7622-43A6-8321-BA6E609D92A2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{7C49E020-3631-4A0A-8598-BB632F8B80CF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{E1F2FAFA-C483-4456-9C39-92A441293B28}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\Legacy of Kain Soul Reaver\kain2.exe () [File not signed] FirewallRules: [{7F825E18-3DFC-4B34-9CA8-0DC86B451292}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\Legacy of Kain Soul Reaver\kain2.exe () [File not signed] FirewallRules: [{DADF96B9-B3B4-4B91-A19B-DECA30D8DD62}] => (Allow) C:\ProgramData\Blackmagic Design\DaVinci Resolve\Support\QtDecoder\QTDecoder.exe No File FirewallRules: [{BB87E239-BFF2-4C8B-A008-F2CD90DC1960}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DPDecoder.exe (Blackmagic Design Pty Ltd -> ) FirewallRules: [{5ED29655-E5BF-49D8-A5D4-C0CA7B71234F}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\OxygenPanelDaemon.exe No File FirewallRules: [{6053D54B-FC6F-4B6F-BD78-3A2D4B6FCE96}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe No File FirewallRules: [{0951CD1A-3D84-42E6-BC5B-2B8F57A0DB51}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe () [File not signed] FirewallRules: [{C73185E8-6737-4C40-A791-2876241E73DE}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe () [File not signed] FirewallRules: [{9A85443E-33AD-434C-9C32-39D7588F0A5B}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe () [File not signed] FirewallRules: [{4AB4B23E-06C5-4C3C-8586-907D82F1E900}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe () [File not signed] FirewallRules: [{2172491B-F8B5-4292-BABF-D04F7376D60F}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe () [File not signed] FirewallRules: [{5143E977-CCA4-4E32-AD3D-58CA6B895282}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.) FirewallRules: [{26EBBFA0-A45B-4580-800F-F6A2536295EB}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{698079A8-21BA-4900-8EB1-66A5E7A10504}] => (Allow) C:\Users\jonpr\AppData\Roaming\Zoom\bin\airhost.exe No File FirewallRules: [{16FEE9B4-8A33-447F-90CE-7E8B209A02C9}] => (Allow) C:\Users\jonpr\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{2C23BF73-7DAB-4A28-A39C-55A46D08EC54}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) FirewallRules: [{F475DF3B-1107-495D-B6E4-7AA05349925C}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) FirewallRules: [{A5C9A4B5-3A91-419F-887B-686F94CBB0CC}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) FirewallRules: [{9113A298-83E1-4630-89E0-E60D26A912F8}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) FirewallRules: [UDP Query User{78B920EF-7B09-4A71-984A-0CA486662A05}X:\game library\call of duty black ops 4\blackops4.exe] => (Allow) X:\game library\call of duty black ops 4\blackops4.exe (Activision Publishing Inc -> Activision Publishing, Inc.) FirewallRules: [TCP Query User{572EA320-9F41-43D2-A45E-13D541F1DC10}X:\game library\call of duty black ops 4\blackops4.exe] => (Allow) X:\game library\call of duty black ops 4\blackops4.exe (Activision Publishing Inc -> Activision Publishing, Inc.) FirewallRules: [{713E8A59-3821-4949-B082-0C13C1D10EA4}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe (Activision Publishing Inc -> ) FirewallRules: [{4523FCC4-65E5-474B-A027-18E6E879F63F}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe (Activision Publishing Inc -> ) FirewallRules: [{54B871B8-23C9-4CED-B947-7CF5CE736AB7}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{EDE55B36-98EF-4CBF-A8CF-03393AECDB37}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{535F179F-7E92-41BB-B4AE-C9A48966BDF0}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{400B3161-FAA4-4B5C-A6C5-B351F6755FED}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [UDP Query User{ECD9B20E-BC8B-408D-AD68-96B49D99F490}C:\program files (x86)\altserver\altserver.exe] => (Allow) C:\program files (x86)\altserver\altserver.exe () [File not signed] FirewallRules: [TCP Query User{69C0FD52-86ED-4C92-8CCE-B41D93009EBB}C:\program files (x86)\altserver\altserver.exe] => (Allow) C:\program files (x86)\altserver\altserver.exe () [File not signed] FirewallRules: [UDP Query User{EE43C395-14F1-4A67-8338-D61DF7AFCE8D}X:\game library\steamlibrary\steamapps\common\doom\doomx64vk.exe] => (Allow) X:\game library\steamlibrary\steamapps\common\doom\doomx64vk.exe (id Software) [File not signed] FirewallRules: [TCP Query User{8757DB4A-669C-48A8-AE36-9B881FC0B1B6}X:\game library\steamlibrary\steamapps\common\doom\doomx64vk.exe] => (Allow) X:\game library\steamlibrary\steamapps\common\doom\doomx64vk.exe (id Software) [File not signed] FirewallRules: [{4501289B-828B-4CAB-94F5-2ADD898551E1}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\Destiny 2\destiny2.exe (Bungie Inc. -> Bungie) FirewallRules: [{9BC0251E-43E7-47A2-99EE-B6540B723BBA}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\Destiny 2\destiny2.exe (Bungie Inc. -> Bungie) FirewallRules: [UDP Query User{42CC6887-0046-4591-90D5-75F2E343D29C}X:\game library\ubisoft\ubisoft game launcher\games\ghost recon breakpoint\grb.exe] => (Allow) X:\game library\ubisoft\ubisoft game launcher\games\ghost recon breakpoint\grb.exe No File FirewallRules: [TCP Query User{F5A130B1-425D-4727-8FD6-8866B6D94B5B}X:\game library\ubisoft\ubisoft game launcher\games\ghost recon breakpoint\grb.exe] => (Allow) X:\game library\ubisoft\ubisoft game launcher\games\ghost recon breakpoint\grb.exe No File FirewallRules: [{3C56FAFC-B817-47D5-BB10-3038A712A052}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\NARUTO SHIPPUDEN Ultimate Ninja STORM 4\NSUNS4.exe () [File not signed] FirewallRules: [{2283214F-7D78-40EC-8DC9-CB0A98B29CF3}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\NARUTO SHIPPUDEN Ultimate Ninja STORM 4\NSUNS4.exe () [File not signed] FirewallRules: [UDP Query User{2A1D00F0-F99B-4BC0-B456-48171415A906}X:\game library\call of duty modern warfare beta\modernwarfare.exe] => (Allow) X:\game library\call of duty modern warfare beta\modernwarfare.exe No File FirewallRules: [TCP Query User{A14F3025-D966-491A-A41A-B3C73A1613D5}X:\game library\call of duty modern warfare beta\modernwarfare.exe] => (Allow) X:\game library\call of duty modern warfare beta\modernwarfare.exe No File FirewallRules: [{068FF16D-48AA-4342-BE53-D8B0AF4FA77B}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\Tunche Arena\Tunche.exe () [File not signed] FirewallRules: [{692CC00E-941B-4C2F-854D-2590F917058C}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\Tunche Arena\Tunche.exe () [File not signed] FirewallRules: [{BE878EE2-A557-4C2D-87FE-40767E4AEB1D}] => (Allow) X:\Game Library\Origin Games\Dead Space\Dead Space.exe (Electronic Arts, Inc. -> ) FirewallRules: [{3BE3A15D-C8D3-44A0-A921-C504601FCA7F}] => (Allow) X:\Game Library\Origin Games\Dead Space\Dead Space.exe (Electronic Arts, Inc. -> ) FirewallRules: [{BA2508FA-9617-4987-A10A-762C408BFFEB}] => (Allow) X:\Game Library\Origin Games\Battlefield 1\bf1.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB) FirewallRules: [{4FABFC08-77A6-46AF-B090-DCB7DA15DD6A}] => (Allow) X:\Game Library\Origin Games\Battlefield 1\bf1.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB) FirewallRules: [{6AB2C833-7E3C-462B-9862-0CF5121DE88B}] => (Allow) X:\Game Library\Origin Games\Battlefield 1\bf1Trial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB) FirewallRules: [{4B7DEFCE-1F35-442C-B25D-80A127ECF87B}] => (Allow) X:\Game Library\Origin Games\Battlefield 1\bf1Trial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB) FirewallRules: [{8440DF65-2305-46C7-BAC4-EB1399EF50A4}] => (Allow) X:\Game Library\Origin Games\Titanfall2\Titanfall2_trial.exe (Respawn Entertainment, LLC -> Respawn Entertainment) FirewallRules: [{8B8094A1-0575-46D0-B243-84F438DDB559}] => (Allow) X:\Game Library\Origin Games\Titanfall2\Titanfall2_trial.exe (Respawn Entertainment, LLC -> Respawn Entertainment) FirewallRules: [{9CA369F5-83E6-4B65-800C-800D3502A8E2}] => (Allow) X:\Game Library\Origin Games\Titanfall2\Titanfall2.exe (Respawn Entertainment, LLC -> Respawn Entertainment) FirewallRules: [{B528B673-5554-4F40-8BDE-05787442E7FF}] => (Allow) X:\Game Library\Origin Games\Titanfall2\Titanfall2.exe (Respawn Entertainment, LLC -> Respawn Entertainment) FirewallRules: [{E8AE61CD-F50E-42AB-8E78-79715AD429E2}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\Audiosurf\engine\QuestViewer.exe () [File not signed] FirewallRules: [{A38E3E29-A064-4AFE-B1F7-8105E5991870}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\Audiosurf\engine\QuestViewer.exe () [File not signed] FirewallRules: [{6522CBB2-F407-4711-A1C9-B74677233D9D}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) FirewallRules: [{6B0DC5D0-F0E6-4994-9900-D3133C780908}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) FirewallRules: [{7698ACC2-3D5D-4262-95FB-790C7018914E}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) FirewallRules: [{C1499F7C-A546-48F5-B89C-DBA9B8461259}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) FirewallRules: [{0F1D6323-FE6F-45F9-95D3-A25EAA19F11F}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{7236D89B-A2F1-4339-A364-B816C283CCD8}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\DOOM\DOOMx64.exe (id Software) [File not signed] FirewallRules: [{325F2674-C688-48FE-8965-62121D9C4A56}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\DOOM\DOOMx64.exe (id Software) [File not signed] FirewallRules: [{52CA2BAD-3697-402A-80FD-4A08842872FB}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\Call of Duty Ghosts\iw6sp64_ship.exe (Activision) [File not signed] FirewallRules: [{23B1732A-3685-4FCE-8F44-EA7A2D86F3A5}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\Call of Duty Ghosts\iw6sp64_ship.exe (Activision) [File not signed] FirewallRules: [{FD8B5A43-147F-4601-B0D9-40D329122CBF}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\MGS_TPP\mgsvtpp.exe (Konami Digital Entertainment) [File not signed] FirewallRules: [{5762F80F-D790-43CE-990D-FF85F9F5D925}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\MGS_TPP\mgsvtpp.exe (Konami Digital Entertainment) [File not signed] FirewallRules: [{A82FCD29-64B5-4B15-A8A7-95F1C8A37FE3}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\Emily Wants To Play\EmilyWantsToPlay.exe () [File not signed] FirewallRules: [{D20CE39B-DCDC-4E36-9593-E823A0B3DD84}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\Emily Wants To Play\EmilyWantsToPlay.exe () [File not signed] FirewallRules: [{EF6554C8-66AD-4C40-BB7D-039D1515B9C4}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\DOOM 3 BFG Edition\Doom3BFG.exe (Bethesda Softworks -> id Software LLC, a ZeniMax Media company) [File not signed] FirewallRules: [{6707A488-11F9-4016-953F-91D676444793}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\DOOM 3 BFG Edition\Doom3BFG.exe (Bethesda Softworks -> id Software LLC, a ZeniMax Media company) [File not signed] FirewallRules: [UDP Query User{91E73A29-FFB7-4FFB-AD81-196B210E46BE}X:\game library\grand theft auto v\gta5.exe] => (Allow) X:\game library\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [TCP Query User{B4EC9550-E6E6-42D1-A9BB-4FF48D0CC269}X:\game library\grand theft auto v\gta5.exe] => (Allow) X:\game library\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [{C1990A7D-8BD9-4D07-A824-960B950124AA}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\Deus Ex Human Revolution Director's Cut\DXHRDC.exe No File FirewallRules: [{E4CDC96F-DA48-4867-BF53-BF29EA00CFB1}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\Deus Ex Human Revolution Director's Cut\DXHRDC.exe No File FirewallRules: [{B172DB08-A75A-4E5D-AC46-85D31F0D4EDA}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\quakechampions\client\bin\pc\QuakeChampions.exe No File FirewallRules: [{EEAACC79-FE6E-4D79-819C-0874D73F3ADB}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\quakechampions\client\bin\pc\QuakeChampions.exe No File FirewallRules: [UDP Query User{5F06B002-3C12-45CD-B75F-23DFA65B1B54}X:\game library\ubisoft\ubisoft game launcher\games\ghost recon breakpoint\grb_upp.exe] => (Allow) X:\game library\ubisoft\ubisoft game launcher\games\ghost recon breakpoint\grb_upp.exe No File FirewallRules: [TCP Query User{4C05D5FA-2137-4558-A8B7-1EDC6B4F7DBE}X:\game library\ubisoft\ubisoft game launcher\games\ghost recon breakpoint\grb_upp.exe] => (Allow) X:\game library\ubisoft\ubisoft game launcher\games\ghost recon breakpoint\grb_upp.exe No File FirewallRules: [UDP Query User{9B1B83F2-60C0-4821-9EF9-276C5EF609B5}X:\game library\gta5.exe] => (Allow) X:\game library\gta5.exe No File FirewallRules: [TCP Query User{204E2732-36D1-4877-8E23-E03DB7978362}X:\game library\gta5.exe] => (Allow) X:\game library\gta5.exe No File FirewallRules: [UDP Query User{E774985C-4406-426C-B85D-41281A3C5EB8}C:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\fuscript.exe (Blackmagic Design Pty. Ltd.) [File not signed] FirewallRules: [TCP Query User{8D2E1221-1C5E-4C76-A6C1-EA9339638A5E}C:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\fuscript.exe (Blackmagic Design Pty. Ltd.) [File not signed] FirewallRules: [{30C69F21-5163-436F-AE16-C77B70D3DD52}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\Project Warlock Arctic Attack\pw_aa_x64.exe No File FirewallRules: [{36EEF143-80D1-472C-AF81-64D858E29ED2}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\Project Warlock Arctic Attack\pw_aa_x64.exe No File FirewallRules: [{17CEEFBC-E1E6-42B6-BB14-20105A4A36F9}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{A773C8C2-4DF5-40EE-B594-223299C02186}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{71F9AE50-5670-4513-8502-5E769FE0223C}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\Tomb Raider\TombRaider.exe No File FirewallRules: [{C1C9F94B-C176-45BB-8A26-B80B283C6F22}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\Tomb Raider\TombRaider.exe No File FirewallRules: [UDP Query User{F1952453-8494-4A1E-8970-466DA942B27B}X:\game library\steamlibrary\steamapps\common\mk10\binaries\retail\mk10.exe] => (Allow) X:\game library\steamlibrary\steamapps\common\mk10\binaries\retail\mk10.exe No File FirewallRules: [TCP Query User{B1B748A6-67CE-4DE5-B7E3-28C569C13AE2}X:\game library\steamlibrary\steamapps\common\mk10\binaries\retail\mk10.exe] => (Allow) X:\game library\steamlibrary\steamapps\common\mk10\binaries\retail\mk10.exe No File FirewallRules: [UDP Query User{15AE0C49-99E1-47A6-ABDB-811E07815238}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [TCP Query User{5C8ADDB5-54D9-4B6A-B8CC-59ADAA7FED21}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [UDP Query User{E2766D2D-1766-4C13-A36B-3668F41A58F6}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [TCP Query User{64685351-1217-422A-8333-AB3380FF5497}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [UDP Query User{A59C7084-0909-432B-9A75-D5032267E101}X:\game library\destiny 2\destiny2.exe] => (Allow) X:\game library\destiny 2\destiny2.exe No File FirewallRules: [TCP Query User{FB59A0F7-218A-47CD-8E22-847354AA5971}X:\game library\destiny 2\destiny2.exe] => (Allow) X:\game library\destiny 2\destiny2.exe No File FirewallRules: [{1EACABEF-6369-4270-AD0F-0C1F8A0E1B21}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\MechWarrior Online\Bin64\MWOClient.exe No File FirewallRules: [{4C1A0C8B-D4E2-451F-AB81-B179E7CFDA57}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\MechWarrior Online\Bin64\MWOClient.exe No File FirewallRules: [{BF1F1591-9A75-4334-A33B-066AD1A22745}] => (Allow) X:\Game Library\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's The Division 2\TheDivision2.exe No File FirewallRules: [UDP Query User{C2FA44F2-9E0C-410E-98BB-416E1D23A49F}X:\game library\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) X:\game library\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.) FirewallRules: [TCP Query User{31E3B70F-E0FB-4221-BCDF-D2ABD6175DEB}X:\game library\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) X:\game library\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.) FirewallRules: [{F5DBBAC8-EBC9-43A9-973B-9D7434187196}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (Bluehole, Inc. -> PUBG Corporation ) FirewallRules: [{A1A03171-79A0-4812-985D-1426973F7B7A}] => (Allow) X:\Game Library\SteamLibrary\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (Bluehole, Inc. -> PUBG Corporation ) FirewallRules: [UDP Query User{B0A5B9D2-5568-405F-B28C-827D61823DE2}X:\game library\origin games\apex\r5apex.exe] => (Allow) X:\game library\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment) FirewallRules: [TCP Query User{6D434BD3-B455-484E-A928-980B458491FC}X:\game library\origin games\apex\r5apex.exe] => (Allow) X:\game library\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment) FirewallRules: [{B8B204EA-2248-48C0-BF42-286A96944D47}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{5B5C08E3-4DAC-4291-8201-CE431CD25A7F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{ECC4AB82-1D58-47B5-B8A8-225448D883E4}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File FirewallRules: [{E5EDAE8F-0AE3-491B-8B4A-BA69702562E6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File FirewallRules: [{0142C4F4-15FE-4C7F-9F1C-8F3DC8B23FFC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{C2B77BB5-CD73-40AE-B62B-F387B129B9C8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{94493634-3AA8-44AB-94FE-9B2DFCE2EB16}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{8FD08268-6A5B-4E87-BAA9-D3399A19D2A1}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{FFAD7F16-A98A-4577-904C-18EAC517EBF6}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{10F505AC-636B-4ADA-8E19-8C92ABD22D33}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{6F8563F6-B30D-4088-8CA8-A0CE82A8F71F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{DF956D31-8BA0-4645-9C64-B064F6F94025}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{3E218A9B-B3C1-4846-BED1-4945E3A3E005}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{D0609147-8004-4205-8F18-33004FC353DA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{26A40406-8CE6-4DB1-B68C-729550171A3F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{9C91F592-91CA-4A06-B417-45D24589E5D5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{69E3CA23-1185-409D-B19D-153B647DF6A0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.120.510.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) ==================== Restore Points ========================= 21-11-2019 20:43:14 Windows Update ==================== Faulty Device Manager Devices ============ ==================== Event log errors: ======================== Application errors: ================== System errors: ============= ==================== Memory info =========================== BIOS: Dell Inc. A31 06/05/2019 Motherboard: Dell Inc. 0WR1RF Processor: Intel(R) Xeon(R) CPU E5-2678 v3 @ 2.50GHz Percentage of memory in use: 14% Total physical RAM: 49072.67 MB Available physical RAM: 42114.78 MB Total Virtual: 56240.67 MB Available Virtual: 46837.81 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:237.32 GB) (Free:121 GB) NTFS Drive f: (Seagate2TB) (Fixed) (Total:1863.02 GB) (Free:242.02 GB) NTFS Drive s: (Side Drive) (Fixed) (Total:238.47 GB) (Free:165.71 GB) NTFS Drive x: (FireCUDA) (Fixed) (Total:1863 GB) (Free:708.67 GB) NTFS \\?\Volume{cbde7154-36dd-45dd-991c-3b595b0703c2}\ (Recovery) (Fixed) (Total:0.49 GB) (Free:0.47 GB) NTFS \\?\Volume{78676602-2ebf-4720-89c5-5323157ffd5b}\ () (Fixed) (Total:0.55 GB) (Free:0.08 GB) NTFS \\?\Volume{e6cd1cb9-f2cc-fe2b-719d-65ea9c5789a8}\ () (Fixed) (Total:0.01 GB) (Free:0 GB) NTFS \\?\Volume{1a68038b-a75d-2b67-149d-3ac0436daaa3}\ () (Fixed) (Total:74.61 GB) (Free:0 GB) NTFS \\?\Volume{a7537661-921f-ed59-a758-f2ff8a6db369}\ () (Fixed) (Total:0 GB) (Free:0 GB) NTFS \\?\Volume{4e1bfd98-cd60-4e5a-81ed-be851edb1e63}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Partition Table ==================== ========================================================== Disk: 0 (Size: 238.5 GB) (Disk ID: E1DC3C62) Partition: GPT. ========================================================== Disk: 1 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 2 (Protective MBR) (Size: 238.5 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 3 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000) Partition: GPT. Attempted reading MBR returned 0 bytes. Could not read MBR for disk 4. Attempted reading MBR returned 0 bytes. Could not read MBR for disk 5. Attempted reading MBR returned 0 bytes. Could not read MBR for disk 6. ==================== End of Addition.txt =======================