Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

CPU and RAM running at 100% Can't do anything within Windows

Started by rockitout , Sep 28 2015 05:28 PM

  • Please log in to reply

#1
rockitout
Posted 28 September 2015 - 05:28 PM

rockitout

    Member

  • Member
  • PipPipPip
  • 140 posts

I first start up Windows and shortly after it starts up, both my CPU and RAM run at 100%, deeming my computer useless.  I was able to view in Task Manager that ASWCHLIC.exe (Avast) had multiple instances running, causing the problem.  After a search, and finding that the file belonged to Avast, I uninstalled it.  After that I tried installing Avira as my antivirus program, but I'm not sure if it installed as I'm not able to open it.  Needless to say, I still have the problem.  The only way I was able to run the FRST64 program was to start up in safe mode, with networking, and d/l it.  I was able to start the program and press scan as soon as regular windows started up.  It ran for a very long time and I'm not even sure if it finished.  It left only one log file, even though I made sure the Addition.txt box was checked.  Anyway, that is where I'm at.  Here is the log file:

 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:27-09-2015 01
Ran by Christian (administrator) on CHRISTIANDESKPC (28-09-2015 13:22:03)
Running from C:\Users\Christian\Desktop
Loaded Profiles: Christian (Available Profiles: Christian & DefaultAppPool)
Platform: Windows 10 Pro (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
() C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(DTS, Inc) C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe
() C:\Program Files\Everything\Everything.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(ClanServers Hosting LLC) C:\Program Files (x86)\GameTracker\GSInGameService.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Nitro PDF Software) C:\Program Files\Common Files\Nitro\Reader\3.0\NitroPDFReaderDriverService3x64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(LogMeIn Inc.) E:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Updater\Updater.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(LogMeIn, Inc.) E:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(NVIDIA Corporation) C:\Users\Christian\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
Failed to access process -> clientmonitor.exe
(Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
Failed to access process -> clientmonitor.exe
(Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
Failed to access process -> clientmonitor.exe
(Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
Failed to access process -> clientmonitor.exe
(Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
Failed to access process -> clientmonitor.exe
(Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
Failed to access process -> clientmonitor.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
Failed to access process -> clientmonitor.exe
(Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
(Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
Failed to access process -> clientmonitor.exe
(Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\proclaunch.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
Failed to access process -> clientmonitor.exe
(Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
Failed to access process -> clientmonitor.exe
(Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\proclaunch.exe
Failed to access process -> clientmonitor.exe
(Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
(Avast Software s.r.o.) C:\ProgramData\652551\RtHDVcp.exe
() C:\Program Files (x86)\Real\RealPlayer\RPDS\Tools\ffmpeg\ffprobe.exe
() C:\Program Files (x86)\Real\RealPlayer\RPDS\Tools\ffmpeg\ffprobe.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
Failed to access process -> WerFault.exe
(Avast Software s.r.o.) C:\Program Files (x86)\clientmonitor.exe
Failed to access process -> clientmonitor.exe
 
 
==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8492800 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_DTS] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [7477016 2013-04-24] (Logitech Inc.)
HKLM\...\Run: [ProfilerU] => C:\Program Files\SmartTechnology\Software\ProfilerU.exe [454144 2013-04-16] (Saitek)
HKLM\...\Run: [SaiMfd] => C:\Program Files\SmartTechnology\Software\SaiMfd.exe [158208 2013-04-16] (Saitek)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [557768 2014-10-14] (Adobe Systems Incorporated)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-26] (NVIDIA Corporation)
HKLM\...\Run: [XMouseButtonControl] => C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe [1121776 2015-08-10] (Highresolution Enterprises)
HKU\S-1-5-19\...\Run: [Realtek High Defention Control Panel] => C:\Program Files (x86)\clientmonitor.exe [553472 2015-09-05] (Avast Software s.r.o.)
HKU\S-1-5-19\...\RunOnce: [Realtek High Defention Control Panel] => C:\Program Files (x86)\clientmonitor.exe [553472 2015-09-05] (Avast Software s.r.o.)
HKU\S-1-5-19\...\Winlogon: [Shell] C:\Windows\ServiceProfiles\LocalService\Documents\clientmonitor.exe [553472 2015-09-05] (Avast Software s.r.o.) <==== ATTENTION
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\Run: [Realtek High Defention Control Panel] => C:\Program Files (x86)\clientmonitor.exe [553472 2015-09-05] (Avast Software s.r.o.)
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\Run: [GoogleChromeAutoLaunch_F95133299531DA24C7CB703BC8432DCE] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944 2015-09-18] (Google Inc.)
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\MountPoints2: {2aa539fd-9067-11e4-b111-806e6f6e6963} - "D:\install.EXE" id= ver=1.0.0.0
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\Winlogon: [Shell] C:\Users\Christian\Documents\clientmonitor.exe [553472 2015-09-05] () <==== ATTENTION
HKU\S-1-5-18\...\Run: [Realtek High Defention Control Panel] => C:\ProgramData\652551\RtHDVcp.exe [553472 2015-09-05] (Avast Software s.r.o.)
HKU\S-1-5-18\...\RunOnce: [Realtek High Defention Control Panel] => C:\ProgramData\652551\RtHDVcp.exe [553472 2015-09-05] (Avast Software s.r.o.)
IFEO\aav_guard.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\ascservice.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\AvastSvc.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\AvastUI.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\avcenter.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\avconfig.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\avgcsrvx.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\avgidsagent.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\avgnt.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\avgrsx.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\avguard.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\avgui.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\avgwdsvc.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\Avira.ServiceHost.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\Avira.SystrayStartTrigger.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\avp.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\avscan.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\avshadow.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\bdagent.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\blindman.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\ccuac.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\ComboFix.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\egui.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\hijackthis.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\instup.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\keyscrambler.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\mbam.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\mbamgui.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\mbampt.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\mbamscheduler.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\mbamservice.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\mcapexe.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\mcuicnt.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\MpCmdRun.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\MSASCui.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\MsMpEng.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\msseces.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\NST.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\qhactivedefense.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\rstrui.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\SDFiles.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\SDMain.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\SDWinSec.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\spybotsd.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\update.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\wireshark.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\ZedgeTonesync.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
IFEO\zlclient.exe: [Debugger] C:\Program Files (x86)\clientmonitor.exe
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-07-29] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-07-29] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-07-29] (Google)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Christian\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll [2015-08-04] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Christian\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll [2015-08-04] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Christian\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll [2015-08-04] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Christian\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\FileSyncShell.dll [2015-08-04] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Christian\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\FileSyncShell.dll [2015-08-04] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Christian\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\FileSyncShell.dll [2015-08-04] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RealPlayer Cloud Service UI.lnk [2014-08-25]
ShortcutTarget: RealPlayer Cloud Service UI.lnk -> C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe (RealNetworks, Inc.)
Startup: C:\Users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk [2013-10-30]
Startup: C:\Users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2013-06-16]
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{58ecfa1d-1ba8-47ec-8d2b-c2bed90aeb97}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{fcc1e0e7-2478-40bc-9c6d-ff7a0cb2c241}: [DhcpNameServer] 192.168.1.1
 
Internet Explorer:
==================
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://battlelog.battlefield.com/bf4/servers/
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
SearchScopes: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000 -> {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3321459&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=4&UP=SPB90DDB1B-0727-408F-B23F-B931A581751A&q={searchTerms}&SSPV=
SearchScopes: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000 -> {8D2A2E78-E3FF-480A-AF29-CB95920AC6CD} URL = hxxp://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=599486&p={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Norton Identity Protection -> {AB4C7833-A6EC-433f-B9FE-6B14B1A2F836} -> C:\Program Files (x86)\Norton Identity Safe\Engine64\2014.7.11.42\coIEPlg.dll No File
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-09-05] (Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-22] (Oracle Corporation)
BHO-x32: Norton Identity Protection -> {AB4C7833-A6EC-433f-B9FE-6B14B1A2F836} -> C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\coIEPlg.dll No File
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05] (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-22] (Oracle Corporation)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05] (Adobe Systems Incorporated)
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  No File
Toolbar: HKLM - Norton Identity Safe Toolbar - {A13C2648-91D4-4bf3-BC6D-0079707C4389} - C:\Program Files (x86)\Norton Identity Safe\Engine64\2014.7.11.42\coIEPlg.dll No File
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Norton Identity Safe Toolbar - {A13C2648-91D4-4bf3-BC6D-0079707C4389} - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\coIEPlg.dll No File
Toolbar: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
 
FireFox:
========
FF ProfilePath: C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default
FF DefaultSearchEngine: Google
FF DefaultSearchEngine.US: Google
FF Homepage: hxxps://www.google.com
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_287.dll [2015-01-23] ()
FF Plugin: @esn/npbattlelog,version=2.5.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.0\npbattlelogx64.dll [No File]
FF Plugin: @esn/npbattlelog,version=2.7.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.0\npbattlelogx64.dll [No File]
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=10.21.2 -> C:\Windows\system32\npDeployJava1.dll [2013-06-16] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeExManDetect -> E:\Program Files\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll [2013-12-03] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_287.dll [2015-01-23] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-02-18] ()
FF Plugin-x32: @esn/npbattlelog,version=2.5.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.0\npbattlelog.dll [No File]
FF Plugin-x32: @esn/npbattlelog,version=2.7.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.0\npbattlelog.dll [No File]
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-22] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-22] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Reader 3\npnitromozilla.dll [2013-07-26] (Nitro PDF)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-09-13] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-09-13] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin-x32: @raidcall.en/RCplugin -> C:\Users\Christian\AppData\Roaming\raidcall\plugins\nprcplugin.dll [2014-05-27] (Raidcall)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-14] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.7 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-06-07] (VideoLAN)
FF Plugin-x32: Adobe Acrobat -> E:\Program Files\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2011-09-05] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeExManDetect -> E:\Program Files\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [2013-12-03] (Adobe Systems)
FF Plugin HKU\S-1-5-21-2842136386-2703010871-4203806482-1000: @nsroblox.roblox.com/launcher -> C:\Users\Christian\AppData\Local\Roblox\Versions\version-957ce0cc47814d39\\NPRobloxProxy.dll [2013-01-01] ( ROBLOX Corporation)
FF Plugin HKU\S-1-5-21-2842136386-2703010871-4203806482-1000: @nsroblox.roblox.com/launcher64 -> C:\Users\Christian\AppData\Local\Roblox\Versions\version-957ce0cc47814d39\\NPRobloxProxy64.dll [2013-01-01] ( ROBLOX Corporation)
FF Plugin HKU\S-1-5-21-2842136386-2703010871-4203806482-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Christian\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-11-30] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-2842136386-2703010871-4203806482-1000: facebook.com/fbDesktopPlugin -> C:\Users\Christian\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll [2013-03-07] (Facebook, Inc.)
FF user.js: detected! => C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\user.js [2014-02-26]
FF SearchPlugin: C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\searchplugins\yahoo_ff.xml [2014-01-29]
FF Extension: VontaeGames Upload widget - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-04-25]
FF Extension: LtCookieMobster Upload Addon - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-04-25]
FF Extension: No Name - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2015-09-25]
FF Extension: Battlefield Play4Free - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-03-07]
FF Extension: No Name - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2015-09-25]
FF Extension: Add to Amazon Wish List Button - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-06-03]
FF Extension: Battletag for Battlelog™ - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-12-07]
FF Extension: Firebug - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-01-30]
FF Extension: YouTube mp3 - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-10-15]
FF Extension: BetterTTV - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-05-26]
FF Extension: Enhanced Steam - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-01-30]
FF Extension: Google Translator for Firefox - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-12-07]
FF Extension: Session Manager - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi [2014-10-17]
FF Extension: New Tab Homepage - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\{66E978CD-981F-47DF-AC42-E3CF417C1467}.xpi [2014-01-30]
FF Extension: Download YouTube Videos as MP4 - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\{b9bfaf1c-a63f-47cd-8b9a-29526ced9060}.xpi [2014-12-09]
FF Extension: Adblock Plus - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-01-30]
FF Extension: Screenshoter Fixed - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\{d9babd10-47de-11df-9879-0800200c9a67}.xpi [2014-01-30]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - E:\Program Files\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - E:\Program Files\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2014-01-24]
FF HKLM-x32\...\Firefox\Extensions: [{F04D2D30-776C-4d02-8627-8E4385ECA58D}] - C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2014.7.0.47\coFFPlgn => not found
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext => not found
 
Chrome: 
=======
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchURL: Default -> hxxps://safesearch.avira.com/#web/result?source=omnibar&q={searchTerms}
CHR DefaultSearchKeyword: Default -> Avira
CHR DefaultSuggestURL: Default -> hxxps://safesearch.avira.com/suggestions?q={searchTerms}&li=ff&hl=en
CHR Profile: C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Theme Creator) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\akpelnjfckgfiplcikojhomllgombffc [2015-04-17]
CHR Extension: (YouTube) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-06-16]
CHR Extension: (Styler) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\bogdgcfoocbajfkjjolkmcdcnnellpkb [2015-09-19]
CHR Extension: (Adblock Plus) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2013-06-19]
CHR Extension: (Battletag for Battlelog™) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckdomikkinngpfpodjjannnbojbembhj [2015-01-25]
CHR Extension: (Webpage Screenshot) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckibcdccnfeookdmbahgiakhnjcddpki [2013-06-19]
CHR Extension: (Spotify - Music for every moment) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnkjkdjlofllcpbemipjbcpfnglbgieh [2015-04-17]
CHR Extension: (Google Search) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-06-16]
CHR Extension: (Netflix) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\deceagebecbceejblnlcjooeohmmeldh [2015-04-17]
CHR Extension: (Hitbox Now!) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\eblhpeihibbjknadncjbpcnnhkcljnhg [2015-04-17]
CHR Extension: (Rush Team) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecdnoeebfjlplfkljdedokbcmebojbpb [2013-06-19]
CHR Extension: (Untamed Now Playing) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\elmdghkkehlmfllejpgikgpjgfalppei [2014-06-24]
CHR Extension: (ThemeBeta.com) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgpfjdopafniillnphhkmnihojeclljc [2015-08-04]
CHR Extension: (Better Battlelog (BBLog)) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjlfnjepjdmlppapoikepbaabbghofma [2015-01-25]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-04-05]
CHR Extension: (Channel Sub Box for YouTube™) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\lhbmojliagbancdcmookpmaaoipjifmc [2015-01-26]
CHR Extension: (Session Manager) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\mghenlmbmjcpehccoangkdpagbcbkdpc [2015-03-30]
CHR Extension: (OneDrive) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nffchahhjecejoiigmnhhicpoabngedk [2013-06-19]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-24]
CHR Extension: (Battlelog Emblem Editor Extended) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\noagedoiolkfaoaknohhepocfeooibjb [2015-01-27]
CHR Extension: (Norton Security Toolbar) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nppllibpnmahfaklnpggkibhkapjkeob [2014-06-13]
CHR Extension: (Battlefield Play4Free) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiokahphinmbmakkehgelkmpolmnbkdh [2013-10-09]
CHR Extension: (Xbox LIVE Dashboard) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\oobdmiffgnobnpagcjjmpcajhdaoighg [2015-04-17]
CHR Extension: (Gmail) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-06-16]
CHR Extension: (Twitch Giveaways) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\poohjpljfecljomfhhimjhddddlidhdd [2014-08-30]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [khjilmcjipkeokomeekfnhkpbnhmgaje] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [nppllibpnmahfaklnpggkibhkapjkeob] - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\Exts\Chrome.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gagdebbdflpnhgahjichmoigigfbbmon] - C:\Program Files (x86)\Higher Aurum\gagdebbdflpnhgahjichmoigigfbbmon.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [khjilmcjipkeokomeekfnhkpbnhmgaje] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [nppllibpnmahfaklnpggkibhkapjkeob] - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\Exts\Chrome.crx <not found>
 
==================== Services (Whitelisted) ========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [599944 2014-12-04] (Autodesk Inc.)
S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-10-30] (Adobe Systems) [File not signed]
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [0 ] (Avira Operations GmbH & Co. KG) <==== ATTENTION (zero byte File/Folder)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [0 ] (Avira Operations GmbH & Co. KG) <==== ATTENTION (zero byte File/Folder)
S2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [0 ] (Avira Operations GmbH & Co. KG) <==== ATTENTION (zero byte File/Folder)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [0 ] (Avira Operations GmbH & Co. KG) <==== ATTENTION (zero byte File/Folder)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [920736 2012-06-01] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [951936 2012-06-01] (ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [149120 2012-02-17] (ASUSTeK Computer Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1225216 2015-09-18] ()
S3 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [476936 2013-08-25] (BitRaider, LLC)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1268568 2015-06-18] (Disc Soft Ltd)
R2 DTSAudioSvc; C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe [249328 2015-06-24] (DTS, Inc)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [238376 2015-07-23] (EasyAntiCheat Ltd)
R2 Everything; C:\Program Files\Everything\Everything.exe [1441792 2014-08-05] () [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-26] (NVIDIA Corporation)
R2 Hamachi2Svc; E:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2485608 2015-01-20] (LogMeIn Inc.)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
S3 mi-raysat_3dsmax2015_64; C:\Program Files\Autodesk\3ds Max 2015\NVIDIA\Satellite\raysat_3dsmax2015_64server.exe [86016 2011-09-14] () [File not signed]
R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-08-04] (Microsoft Corporation)
R2 NitroReaderDriverReadSpool3; C:\Program Files\Common Files\Nitro\Reader\3.0\NitroPDFReaderDriverService3x64.exe [230416 2013-07-26] (Nitro PDF Software)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-26] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-26] (NVIDIA Corporation)
S3 Origin Client Service; E:\Program Files (x86)\Origin\OriginClientService.exe [2077192 2015-09-20] (Electronic Arts)
R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76152 2015-06-14] ()
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76152 2015-08-31] ()
R2 RealPlayer Cloud Service; c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe [1141848 2014-08-25] (RealNetworks, Inc.)
S2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [174600 2014-10-14] (Sandboxie Holdings, LLC)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5495056 2015-06-18] (TeamViewer GmbH)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-08-04] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-08-04] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
S2 Avira.ServiceHost; "C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe" [X]
S2 NCO; "C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\NST.exe" /s "NCO" /m "C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\diMaster.dll" /prefetch:1
 
===================== Drivers (Whitelisted) ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R0 asahci64; C:\Windows\System32\drivers\asahci64.sys [49760 2012-01-06] (Asmedia Technology)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-08-24] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [137800 2015-09-01] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [148632 2015-09-01] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2015-09-01] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [74440 2015-09-01] (Avira Operations GmbH & Co. KG)
S3 BRDriver64; C:\ProgramData\BitRaider\BRDriver64.sys [75048 2013-08-25] (BitRaider)
R1 ccSet_NST; C:\Windows\system32\drivers\NSTx64\7DE070B0.02A\ccSetx64.sys [162392 2013-09-27] (Symantec Corporation)
S3 dc1-controller; C:\Windows\System32\drivers\dc1-controller.sys [50688 2015-07-10] (Microsoft Corp.)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-07-05] (Disc Soft Ltd)
R3 LGSHidFilt; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys [66800 2013-01-17] (Logitech Inc.)
R3 LGSUsbFilt; C:\Windows\system32\DRIVERS\LGSUsbFilt.Sys [44272 2013-01-17] (Logitech Inc.)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-08-04] (Microsoft Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-26] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-10] (NVIDIA Corporation)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
R3 SaiMini; C:\Windows\System32\drivers\SaiMini.sys [25120 2013-04-30] (Saitek)
R3 SaiNtBus; C:\Windows\system32\drivers\SaiBus.sys [52640 2013-04-30] (Saitek)
S3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [185352 2014-10-14] (Sandboxie Holdings, LLC)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 vsnd_idev; C:\Windows\system32\drivers\vsnd.sys [68224 2013-12-24] (Roman Ukhov)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
U3 idsvc; no ImagePath
S3 VBoxNetFlt; \SystemRoot\system32\DRIVERS\VBoxNetFlt.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; no ImagePath
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 

  • 0

Advertisements

#2
RKinner
Posted 28 September 2015 - 09:43 PM

RKinner

    Malware Expert

  • Expert
  • 24,625 posts
  • MVP

It wasn't really Avast. 

 

You can do the following in Safe Mode with Networking:

 

Download the attached fixlist.txt to the same location as FRST
Run FRST and press Fix
A fix log will be generated please post that.  Run FRST again, check the Additions box and then Scan.  You will get two logs.  Post them both.


  • 0

#3
rockitout
Posted 30 September 2015 - 03:49 PM

rockitout

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 140 posts

Here are the logs you requested:

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:27-09-2015 01
Ran by Christian (administrator) on CHRISTIANDESKPC (30-09-2015 16:17:52)
Running from C:\Users\Christian\Desktop
Loaded Profiles: Christian (Available Profiles: Christian)
Platform: Windows 10 Pro (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Safe Mode (with Networking)
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Microsoft Corporation) C:\Windows\HelpPane.exe
 
 
==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8492800 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_DTS] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [7477016 2013-04-24] (Logitech Inc.)
HKLM\...\Run: [ProfilerU] => C:\Program Files\SmartTechnology\Software\ProfilerU.exe [454144 2013-04-16] (Saitek)
HKLM\...\Run: [SaiMfd] => C:\Program Files\SmartTechnology\Software\SaiMfd.exe [158208 2013-04-16] (Saitek)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [557768 2014-10-14] (Adobe Systems Incorporated)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-26] (NVIDIA Corporation)
HKLM\...\Run: [XMouseButtonControl] => C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe [1121776 2015-08-10] (Highresolution Enterprises)
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\Run: [GoogleChromeAutoLaunch_F95133299531DA24C7CB703BC8432DCE] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944 2015-09-18] (Google Inc.)
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\MountPoints2: {2aa539fd-9067-11e4-b111-806e6f6e6963} - "D:\install.EXE" id= ver=1.0.0.0
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\Winlogon: [Shell] C:\Users\Christian\Documents\clientmonitor.exe [553472 2015-09-05] () <==== ATTENTION
HKU\S-1-5-18\...\Run: [Realtek High Defention Control Panel] => C:\ProgramData\652551\RtHDVcp.exe [553472 2015-09-05] (Avast Software s.r.o.)
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-07-29] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-07-29] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-07-29] (Google)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Christian\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll [2015-08-04] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Christian\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll [2015-08-04] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Christian\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll [2015-08-04] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Christian\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\FileSyncShell.dll [2015-08-04] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Christian\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\FileSyncShell.dll [2015-08-04] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Christian\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\FileSyncShell.dll [2015-08-04] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RealPlayer Cloud Service UI.lnk [2014-08-25]
ShortcutTarget: RealPlayer Cloud Service UI.lnk -> C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe (RealNetworks, Inc.)
Startup: C:\Users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk [2013-10-30]
Startup: C:\Users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2013-06-16]
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{58ecfa1d-1ba8-47ec-8d2b-c2bed90aeb97}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{fcc1e0e7-2478-40bc-9c6d-ff7a0cb2c241}: [DhcpNameServer] 192.168.1.1
 
Internet Explorer:
==================
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://battlelog.battlefield.com/bf4/servers/
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
SearchScopes: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000 -> {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3321459&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=4&UP=SPB90DDB1B-0727-408F-B23F-B931A581751A&q={searchTerms}&SSPV=
SearchScopes: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000 -> {8D2A2E78-E3FF-480A-AF29-CB95920AC6CD} URL = hxxp://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=599486&p={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Norton Identity Protection -> {AB4C7833-A6EC-433f-B9FE-6B14B1A2F836} -> C:\Program Files (x86)\Norton Identity Safe\Engine64\2014.7.11.42\coIEPlg.dll No File
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-09-05] (Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-22] (Oracle Corporation)
BHO-x32: Norton Identity Protection -> {AB4C7833-A6EC-433f-B9FE-6B14B1A2F836} -> C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\coIEPlg.dll No File
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05] (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-22] (Oracle Corporation)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05] (Adobe Systems Incorporated)
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  No File
Toolbar: HKLM - Norton Identity Safe Toolbar - {A13C2648-91D4-4bf3-BC6D-0079707C4389} - C:\Program Files (x86)\Norton Identity Safe\Engine64\2014.7.11.42\coIEPlg.dll No File
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Norton Identity Safe Toolbar - {A13C2648-91D4-4bf3-BC6D-0079707C4389} - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\coIEPlg.dll No File
Toolbar: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
 
FireFox:
========
FF ProfilePath: C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default
FF DefaultSearchEngine: Google
FF DefaultSearchEngine.US: Google
FF Homepage: hxxps://www.google.com
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_287.dll [2015-01-23] ()
FF Plugin: @esn/npbattlelog,version=2.5.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.0\npbattlelogx64.dll [No File]
FF Plugin: @esn/npbattlelog,version=2.7.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.0\npbattlelogx64.dll [No File]
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=10.21.2 -> C:\Windows\system32\npDeployJava1.dll [2013-06-16] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeExManDetect -> E:\Program Files\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll [2013-12-03] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_287.dll [2015-01-23] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-02-18] ()
FF Plugin-x32: @esn/npbattlelog,version=2.5.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.0\npbattlelog.dll [No File]
FF Plugin-x32: @esn/npbattlelog,version=2.7.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.0\npbattlelog.dll [No File]
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-22] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-22] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Reader 3\npnitromozilla.dll [2013-07-26] (Nitro PDF)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-09-13] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-09-13] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin-x32: @raidcall.en/RCplugin -> C:\Users\Christian\AppData\Roaming\raidcall\plugins\nprcplugin.dll [2014-05-27] (Raidcall)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-14] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.7 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-06-07] (VideoLAN)
FF Plugin-x32: Adobe Acrobat -> E:\Program Files\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2011-09-05] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeExManDetect -> E:\Program Files\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [2013-12-03] (Adobe Systems)
FF Plugin HKU\S-1-5-21-2842136386-2703010871-4203806482-1000: @nsroblox.roblox.com/launcher -> C:\Users\Christian\AppData\Local\Roblox\Versions\version-957ce0cc47814d39\\NPRobloxProxy.dll [2013-01-01] ( ROBLOX Corporation)
FF Plugin HKU\S-1-5-21-2842136386-2703010871-4203806482-1000: @nsroblox.roblox.com/launcher64 -> C:\Users\Christian\AppData\Local\Roblox\Versions\version-957ce0cc47814d39\\NPRobloxProxy64.dll [2013-01-01] ( ROBLOX Corporation)
FF Plugin HKU\S-1-5-21-2842136386-2703010871-4203806482-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Christian\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-11-30] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-2842136386-2703010871-4203806482-1000: facebook.com/fbDesktopPlugin -> C:\Users\Christian\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll [2013-03-07] (Facebook, Inc.)
FF user.js: detected! => C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\user.js [2014-02-26]
FF SearchPlugin: C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\searchplugins\yahoo_ff.xml [2014-01-29]
FF Extension: VontaeGames Upload widget - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-04-25]
FF Extension: LtCookieMobster Upload Addon - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-04-25]
FF Extension: No Name - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2015-09-25]
FF Extension: Battlefield Play4Free - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-03-07]
FF Extension: No Name - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2015-09-25]
FF Extension: Add to Amazon Wish List Button - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-06-03]
FF Extension: Battletag for Battlelog™ - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-12-07]
FF Extension: Firebug - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-01-30]
FF Extension: YouTube mp3 - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-10-15]
FF Extension: BetterTTV - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-05-26]
FF Extension: Enhanced Steam - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-01-30]
FF Extension: Google Translator for Firefox - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-12-07]
FF Extension: Session Manager - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi [2014-10-17]
FF Extension: New Tab Homepage - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\{66E978CD-981F-47DF-AC42-E3CF417C1467}.xpi [2014-01-30]
FF Extension: Download YouTube Videos as MP4 - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\{b9bfaf1c-a63f-47cd-8b9a-29526ced9060}.xpi [2014-12-09]
FF Extension: Adblock Plus - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-01-30]
FF Extension: Screenshoter Fixed - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\{d9babd10-47de-11df-9879-0800200c9a67}.xpi [2014-01-30]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - E:\Program Files\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - E:\Program Files\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2014-01-24]
FF HKLM-x32\...\Firefox\Extensions: [{F04D2D30-776C-4d02-8627-8E4385ECA58D}] - C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2014.7.0.47\coFFPlgn => not found
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext => not found
 
Chrome: 
=======
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchURL: Default -> hxxps://safesearch.avira.com/#web/result?source=omnibar&q={searchTerms}
CHR DefaultSearchKeyword: Default -> Avira
CHR DefaultSuggestURL: Default -> hxxps://safesearch.avira.com/suggestions?q={searchTerms}&li=ff&hl=en
CHR Profile: C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Theme Creator) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\akpelnjfckgfiplcikojhomllgombffc [2015-04-17]
CHR Extension: (YouTube) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-06-16]
CHR Extension: (Styler) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\bogdgcfoocbajfkjjolkmcdcnnellpkb [2015-09-19]
CHR Extension: (Adblock Plus) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2013-06-19]
CHR Extension: (Battletag for Battlelog™) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckdomikkinngpfpodjjannnbojbembhj [2015-01-25]
CHR Extension: (Webpage Screenshot) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckibcdccnfeookdmbahgiakhnjcddpki [2013-06-19]
CHR Extension: (Spotify - Music for every moment) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnkjkdjlofllcpbemipjbcpfnglbgieh [2015-04-17]
CHR Extension: (Google Search) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-06-16]
CHR Extension: (Netflix) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\deceagebecbceejblnlcjooeohmmeldh [2015-04-17]
CHR Extension: (Hitbox Now!) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\eblhpeihibbjknadncjbpcnnhkcljnhg [2015-04-17]
CHR Extension: (Rush Team) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecdnoeebfjlplfkljdedokbcmebojbpb [2013-06-19]
CHR Extension: (Untamed Now Playing) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\elmdghkkehlmfllejpgikgpjgfalppei [2014-06-24]
CHR Extension: (ThemeBeta.com) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgpfjdopafniillnphhkmnihojeclljc [2015-08-04]
CHR Extension: (Better Battlelog (BBLog)) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjlfnjepjdmlppapoikepbaabbghofma [2015-01-25]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-04-05]
CHR Extension: (Channel Sub Box for YouTube™) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\lhbmojliagbancdcmookpmaaoipjifmc [2015-01-26]
CHR Extension: (Session Manager) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\mghenlmbmjcpehccoangkdpagbcbkdpc [2015-03-30]
CHR Extension: (OneDrive) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nffchahhjecejoiigmnhhicpoabngedk [2013-06-19]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-24]
CHR Extension: (Battlelog Emblem Editor Extended) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\noagedoiolkfaoaknohhepocfeooibjb [2015-01-27]
CHR Extension: (Norton Security Toolbar) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nppllibpnmahfaklnpggkibhkapjkeob [2014-06-13]
CHR Extension: (Battlefield Play4Free) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiokahphinmbmakkehgelkmpolmnbkdh [2013-10-09]
CHR Extension: (Xbox LIVE Dashboard) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\oobdmiffgnobnpagcjjmpcajhdaoighg [2015-04-17]
CHR Extension: (Gmail) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-06-16]
CHR Extension: (Twitch Giveaways) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\poohjpljfecljomfhhimjhddddlidhdd [2014-08-30]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [khjilmcjipkeokomeekfnhkpbnhmgaje] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [nppllibpnmahfaklnpggkibhkapjkeob] - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\Exts\Chrome.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gagdebbdflpnhgahjichmoigigfbbmon] - C:\Program Files (x86)\Higher Aurum\gagdebbdflpnhgahjichmoigigfbbmon.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [khjilmcjipkeokomeekfnhkpbnhmgaje] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [nppllibpnmahfaklnpggkibhkapjkeob] - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\Exts\Chrome.crx <not found>
 
==================== Services (Whitelisted) ========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
S2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [599944 2014-12-04] (Autodesk Inc.)
S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-10-30] (Adobe Systems) [File not signed]
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [0 ] (Avira Operations GmbH & Co. KG) <==== ATTENTION (zero byte File/Folder)
S2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [0 ] (Avira Operations GmbH & Co. KG) <==== ATTENTION (zero byte File/Folder)
S2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [0 ] (Avira Operations GmbH & Co. KG) <==== ATTENTION (zero byte File/Folder)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [0 ] (Avira Operations GmbH & Co. KG) <==== ATTENTION (zero byte File/Folder)
S2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [920736 2012-06-01] ()
S2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [951936 2012-06-01] (ASUSTeK Computer Inc.)
S2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [149120 2012-02-17] (ASUSTeK Computer Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1225216 2015-09-18] ()
S3 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [476936 2013-08-25] (BitRaider, LLC)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1268568 2015-06-18] (Disc Soft Ltd)
S2 DTSAudioSvc; C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe [249328 2015-06-24] (DTS, Inc)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [238376 2015-07-23] (EasyAntiCheat Ltd)
S2 Everything; C:\Program Files\Everything\Everything.exe [1441792 2014-08-05] () [File not signed]
S2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-26] (NVIDIA Corporation)
S2 Hamachi2Svc; E:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2485608 2015-01-20] (LogMeIn Inc.)
S2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
S3 mi-raysat_3dsmax2015_64; C:\Program Files\Autodesk\3ds Max 2015\NVIDIA\Satellite\raysat_3dsmax2015_64server.exe [86016 2011-09-14] () [File not signed]
S2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-08-04] (Microsoft Corporation)
S2 NitroReaderDriverReadSpool3; C:\Program Files\Common Files\Nitro\Reader\3.0\NitroPDFReaderDriverService3x64.exe [230416 2013-07-26] (Nitro PDF Software)
S2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-26] (NVIDIA Corporation)
S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-26] (NVIDIA Corporation)
S3 Origin Client Service; E:\Program Files (x86)\Origin\OriginClientService.exe [2077192 2015-09-20] (Electronic Arts)
S2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76152 2015-06-14] ()
S2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76152 2015-08-31] ()
S2 RealPlayer Cloud Service; c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe [1141848 2014-08-25] (RealNetworks, Inc.)
S2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [174600 2014-10-14] (Sandboxie Holdings, LLC)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5495056 2015-06-18] (TeamViewer GmbH)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-08-04] (Microsoft Corporation)
S2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-08-04] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
S2 Avira.ServiceHost; "C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe" [X]
S2 NCO; "C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\NST.exe" /s "NCO" /m "C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\diMaster.dll" /prefetch:1
 
===================== Drivers (Whitelisted) ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R0 asahci64; C:\Windows\System32\drivers\asahci64.sys [49760 2012-01-06] (Asmedia Technology)
S1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-08-24] ()
S2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [137800 2015-09-01] (Avira Operations GmbH & Co. KG)
S1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [148632 2015-09-01] (Avira Operations GmbH & Co. KG)
S1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2015-09-01] (Avira Operations GmbH & Co. KG)
S2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [74440 2015-09-01] (Avira Operations GmbH & Co. KG)
S3 BRDriver64; C:\ProgramData\BitRaider\BRDriver64.sys [75048 2013-08-25] (BitRaider)
S1 ccSet_NST; C:\Windows\system32\drivers\NSTx64\7DE070B0.02A\ccSetx64.sys [162392 2013-09-27] (Symantec Corporation)
S3 dc1-controller; C:\Windows\System32\drivers\dc1-controller.sys [50688 2015-07-10] (Microsoft Corp.)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-07-05] (Disc Soft Ltd)
R3 LGSHidFilt; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys [66800 2013-01-17] (Logitech Inc.)
R3 LGSUsbFilt; C:\Windows\system32\DRIVERS\LGSUsbFilt.Sys [44272 2013-01-17] (Logitech Inc.)
S3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-08-04] (Microsoft Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-26] (NVIDIA Corporation)
S3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-10] (NVIDIA Corporation)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
S3 SaiMini; C:\Windows\System32\drivers\SaiMini.sys [25120 2013-04-30] (Saitek)
S3 SaiNtBus; C:\Windows\system32\drivers\SaiBus.sys [52640 2013-04-30] (Saitek)
S3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [185352 2014-10-14] (Sandboxie Holdings, LLC)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 vsnd_idev; C:\Windows\system32\drivers\vsnd.sys [68224 2013-12-24] (Roman Ukhov)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
U3 idsvc; no ImagePath
S3 VBoxNetFlt; \SystemRoot\system32\DRIVERS\VBoxNetFlt.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; no ImagePath
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-09-30 16:17 - 2015-09-30 16:17 - 00000000 ____D C:\Users\Christian\Desktop\(x86)
2015-09-30 16:17 - 2015-09-30 16:17 - 00000000 ____D C:\Program
2015-09-30 16:16 - 2015-09-30 16:16 - 00000129 _____ C:\Users\Christian\Desktop\CPU and RAM running at 100% Can't do anything within Windows - Geeks to Go Forum.url
2015-09-30 16:15 - 2015-09-30 16:15 - 00016148 _____ C:\WINDOWS\system32\CHRISTIANDESKPC_Christian_HistoryPrediction.bin
2015-09-28 14:59 - 2015-09-28 14:59 - 00364944 _____ C:\WINDOWS\Minidump\092815-65781-01.dmp
2015-09-28 13:22 - 2015-09-30 16:18 - 00032038 _____ C:\Users\Christian\Desktop\FRST.txt
2015-09-28 13:21 - 2015-09-30 16:17 - 00000000 ____D C:\FRST
2015-09-28 13:17 - 2015-09-28 13:18 - 02192384 _____ (Farbar) C:\Users\Christian\Desktop\FRST64.exe
2015-09-28 12:45 - 2015-09-30 16:15 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2015-09-26 09:41 - 2015-09-26 09:42 - 00262144 _____ C:\WINDOWS\Minidump\092615-48359-01.dmp
2015-09-25 22:19 - 2015-09-25 22:19 - 00365272 _____ C:\WINDOWS\Minidump\092515-17296-01.dmp
2015-09-25 20:17 - 2015-09-01 17:09 - 00148632 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2015-09-25 20:17 - 2015-09-01 17:09 - 00137800 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2015-09-25 20:17 - 2015-09-01 17:09 - 00074440 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2015-09-25 20:17 - 2015-09-01 17:09 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2015-09-25 20:10 - 2015-09-25 20:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-09-25 20:10 - 2015-09-25 20:10 - 00001286 _____ C:\Users\Public\Desktop\Avira Launcher.lnk
2015-09-25 20:09 - 2015-09-25 20:17 - 00000000 ____D C:\ProgramData\Avira
2015-09-25 20:09 - 2015-09-25 20:17 - 00000000 ____D C:\Program Files (x86)\Avira
2015-09-25 17:51 - 2015-09-25 17:51 - 00015357 _____ C:\Users\Christian\Downloads\compactalet.zip
2015-09-25 16:54 - 2015-09-25 16:54 - 00024448 _____ C:\Users\Christian\Downloads\45_photoshop_shields_shapes_by_tutsii.csh
2015-09-25 16:54 - 2015-09-25 16:54 - 00024448 _____ C:\Users\Christian\Downloads\45_photoshop_shields_shapes_by_tutsii (1).csh
2015-09-25 16:53 - 2015-09-25 16:53 - 04559688 _____ (Avira Operations GmbH & Co. KG) C:\Users\Christian\Downloads\avira_en_av_5605c195aa733__ws (1).exe
2015-09-25 16:50 - 2015-09-25 16:50 - 04559688 _____ (Avira Operations GmbH & Co. KG) C:\Users\Christian\Downloads\avira_en_av_5605c195aa733__ws.exe
2015-09-25 16:49 - 2015-09-25 16:49 - 00000000 ___DL C:\ProgramData\Adobe
2015-09-25 16:49 - 2015-09-25 16:49 - 00000000 ____D C:\Users\Christian\AppData\Roaming\PDAppFlex
2015-09-25 15:53 - 2015-09-25 15:53 - 00025969 _____ C:\Users\Christian\Downloads\TundraMultimediaInc.-InvoiceTemplate.odt
2015-09-22 18:38 - 2015-09-13 16:57 - 00574256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2015-09-22 18:37 - 2015-09-13 19:24 - 42840184 _____ C:\WINDOWS\system32\nvcompiler.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 37819000 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 18569848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 16646112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 15631128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 14945040 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 13666840 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 12191856 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 02354808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 02105976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 01898104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435598.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 01558832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435598.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 01178248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 01075320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 01064056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 01001440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00986416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00945272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00787384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00785152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00632664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00631128 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00601240 _____ C:\WINDOWS\system32\nvmcumd.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00408184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00387720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00376440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00364152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00339760 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00316120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00177088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00155792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00150648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00128696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2015-09-20 14:00 - 2015-09-20 14:00 - 00012520 _____ C:\Users\Christian\Downloads\cyberfunk.zip
2015-09-20 14:00 - 2015-09-20 14:00 - 00007175 _____ C:\Users\Christian\Downloads\rezland.zip
2015-09-20 13:10 - 2015-09-20 13:10 - 00029814 _____ C:\Users\Christian\Downloads\abode.zip
2015-09-20 13:05 - 2015-09-20 13:05 - 00548090 _____ C:\Users\Christian\Downloads\dreamwalker.zip
2015-09-20 12:53 - 2015-09-20 12:53 - 00015387 _____ C:\Users\Christian\Downloads\45_photoshop_shields_shapes.zip
2015-09-20 12:50 - 2015-09-20 12:50 - 00102147 _____ C:\Users\Christian\Downloads\shields-Shapes4FREE.zip
2015-09-16 16:51 - 2015-09-16 16:51 - 00000000 ___RD C:\Users\Christian\3D Objects
2015-09-08 15:56 - 2015-09-01 20:20 - 00077400 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-09-08 15:56 - 2015-09-01 19:25 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-09-08 15:56 - 2015-09-01 19:25 - 01382912 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-09-08 15:56 - 2015-08-27 01:36 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-09-08 15:56 - 2015-08-27 01:32 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-09-08 15:56 - 2015-08-27 01:04 - 21874688 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-09-08 15:56 - 2015-08-27 00:59 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-09-08 15:56 - 2015-08-27 00:55 - 24594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-09-08 15:56 - 2015-08-27 00:54 - 00541248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-09-08 15:56 - 2015-08-27 00:54 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-09-08 15:56 - 2015-08-27 00:51 - 02350592 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-09-08 15:56 - 2015-08-27 00:51 - 01774592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-08 15:56 - 2015-08-27 00:49 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-09-08 15:56 - 2015-08-27 00:47 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-09-08 15:56 - 2015-08-27 00:43 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-09-08 15:56 - 2015-08-27 00:43 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-09-08 15:56 - 2015-08-27 00:42 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-09-08 15:56 - 2015-08-27 00:42 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-09-08 15:56 - 2015-08-27 00:42 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-09-08 15:56 - 2015-08-27 00:42 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2015-09-08 15:56 - 2015-08-27 00:39 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-09-08 15:56 - 2015-08-27 00:23 - 19324416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-09-08 15:56 - 2015-08-27 00:23 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-09-08 15:56 - 2015-08-27 00:16 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-09-08 15:56 - 2015-08-27 00:16 - 02153472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-09-08 15:56 - 2015-08-27 00:16 - 01612288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-09-08 15:56 - 2015-08-27 00:12 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-09-08 15:56 - 2015-08-27 00:12 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-09-08 15:56 - 2015-08-27 00:11 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2015-09-08 15:56 - 2015-08-27 00:11 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2015-09-08 15:56 - 2015-08-27 00:09 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-09-08 15:56 - 2015-08-27 00:08 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-09-06 17:58 - 2015-09-06 17:58 - 00002286 _____ C:\Users\Christian\Downloads\afro.svg
2015-09-06 11:42 - 2015-09-05 16:07 - 00553472 __RSH (Avast Software s.r.o.) C:\clientmonitor.exe
2015-09-05 16:10 - 2015-09-05 16:07 - 00553472 __RSH C:\Users\Christian\Documents\clientmonitor.exe
2015-09-05 16:10 - 2015-09-05 16:07 - 00553472 _____ (Avast Software s.r.o.) C:\WINDOWS\SysWOW64\clientmonitor.exe
2015-09-05 16:07 - 2015-09-28 18:13 - 00000000 _RSHD C:\ProgramData\652551
2015-09-05 16:07 - 2015-09-05 16:07 - 00000006 ____S C:\ProgramData\cfc4764f3bbfae7c2c155456e0ae08a61242b9ff
2015-09-05 16:07 - 2015-09-05 16:07 - 00000000 _RSHD C:\ProgramData\652651
2015-09-05 14:31 - 2015-09-05 14:31 - 00000000 ____D C:\Users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2
2015-09-05 14:28 - 2015-09-05 14:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image Line FL Studio Producer Edition
2015-09-05 14:28 - 2015-09-05 14:28 - 00000000 ____D C:\Program Files (x86)\Image Line FL Studio Producer Edition
2015-09-05 14:24 - 2015-09-05 14:31 - 00000000 ____D C:\Users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line
2015-09-05 14:24 - 2015-09-05 14:24 - 00000000 ____D C:\Users\Christian\Documents\Image-Line
2015-09-05 14:24 - 2015-09-05 14:24 - 00000000 ____D C:\Users\Christian\AppData\Roaming\Image-Line
2015-09-05 14:24 - 2015-09-05 14:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image-Line
2015-09-05 14:24 - 2015-09-05 14:24 - 00000000 ____D C:\Program Files\Image-Line
2015-09-05 14:24 - 2015-09-05 14:24 - 00000000 ____D C:\Program Files\Common Files\Propellerhead Software
2015-09-05 14:20 - 2015-09-05 14:20 - 43246275 _____ C:\Users\Christian\Downloads\blackguards_ost_mp3_1415656995.zip
2015-09-05 14:18 - 2015-09-18 17:19 - 00000000 ___HD C:\Users\Christian\AppData\Roaming\Realtek Audio Control
2015-09-05 14:16 - 2015-09-05 14:28 - 00000000 ____D C:\Users\Christian\AppData\Roaming\Application Store
2015-09-05 14:16 - 2015-09-05 14:25 - 00000000 ____D C:\Program Files (x86)\Image-Line
2015-09-05 14:15 - 2015-09-05 14:15 - 00000000 __HDC C:\ProgramData\{76224FB4-131A-42F7-AC4F-ACA025FCC383}
2015-09-05 14:15 - 2015-09-05 14:15 - 00000000 ____D C:\Users\Christian\AppData\Local\InstallAware Installation Information
2015-09-04 19:35 - 2015-09-04 19:35 - 00000000 ____D C:\Users\Christian\AppData\Local\Curve Digital
2015-09-03 16:13 - 2015-09-03 16:13 - 00000000 __SHD C:\found.006
2015-09-02 22:18 - 2015-09-03 07:39 - 00000000 ____D C:\Users\Christian\Desktop\Stream Applications
2015-09-02 21:04 - 2015-08-25 13:38 - 01898104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435582.dll
2015-09-02 21:04 - 2015-08-25 13:38 - 01558648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435582.dll
2015-09-01 21:39 - 2015-09-01 21:39 - 07521488 _____ C:\Users\Christian\Downloads\PhantomBot.zip
2015-09-01 16:22 - 2015-09-01 16:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\mIRC
2015-08-31 16:01 - 2015-08-31 16:01 - 00000000 ____D C:\Users\Christian\Documents\Battlefield 3
2015-08-31 14:32 - 2015-08-31 14:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 3
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-09-30 16:14 - 2015-07-10 07:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-09-30 16:14 - 2015-07-10 06:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-09-30 16:13 - 2015-07-10 07:20 - 00257056 _____ C:\WINDOWS\setupact.log
2015-09-30 16:13 - 2013-06-16 19:34 - 00000000 ____D C:\ProgramData\NVIDIA
2015-09-28 18:29 - 2015-08-04 09:37 - 00000000 ____D C:\Users\Christian
2015-09-28 18:29 - 2015-07-10 04:05 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2015-09-28 18:18 - 2015-08-04 09:34 - 01005598 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-28 18:07 - 2014-01-15 07:36 - 00000000 ____D C:\Users\Christian\AppData\Local\CrashDumps
2015-09-28 18:03 - 2015-02-05 10:04 - 00000934 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d041557696e34.job
2015-09-28 18:02 - 2015-07-10 07:22 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-09-28 17:17 - 2015-02-05 10:04 - 00000938 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d041557818a6e.job
2015-09-28 14:59 - 2015-08-21 12:53 - 00000000 ____D C:\WINDOWS\Minidump
2015-09-28 14:58 - 2014-12-20 07:37 - 1760089940 ____N C:\WINDOWS\MEMORY.DMP
2015-09-28 13:22 - 2013-06-16 23:18 - 00000000 ____D C:\Users\Christian\AppData\Local\Adobe
2015-09-28 12:30 - 2015-07-10 06:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-09-25 22:19 - 2015-08-04 09:29 - 00611142 _____ C:\WINDOWS\PFRO.log
2015-09-25 20:43 - 2013-06-16 18:05 - 00000000 ____D C:\ProgramData\AVAST Software
2015-09-25 20:42 - 2013-11-17 09:53 - 00000000 ____D C:\Users\Christian\AppData\Local\Spotify
2015-09-25 20:42 - 2013-07-30 06:49 - 00000000 ____D C:\Users\Christian\AppData\Roaming\TS3Client
2015-09-25 20:09 - 2013-10-05 23:01 - 00000000 ____D C:\ProgramData\Package Cache
2015-09-25 20:05 - 2013-11-17 09:53 - 00000000 ____D C:\Users\Christian\AppData\Roaming\Spotify
2015-09-25 19:39 - 2015-07-10 07:20 - 05128072 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-09-25 16:49 - 2013-10-30 17:33 - 00000000 ____D C:\Users\Christian\Documents\Adobe
2015-09-25 16:49 - 2013-08-27 17:34 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2015-09-25 16:49 - 2013-06-16 19:11 - 00000000 ____D C:\Users\Christian\AppData\Roaming\Adobe
2015-09-24 18:05 - 2015-07-10 05:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-09-22 18:38 - 2015-08-04 09:31 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-09-22 18:38 - 2013-06-16 19:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-09-21 17:55 - 2015-07-23 04:02 - 11198080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-09-21 16:17 - 2015-07-25 12:01 - 00000000 ___RD C:\Users\Christian\Desktop\Files
2015-09-21 16:17 - 2014-05-24 16:26 - 00000000 ___RD C:\Users\Christian\Desktop\Games
2015-09-20 21:01 - 2013-10-05 22:33 - 00000000 ____D C:\ProgramData\Origin
2015-09-20 18:28 - 2013-06-20 16:43 - 00226680 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2015-09-20 18:17 - 2013-06-20 16:43 - 00226680 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2015-09-20 16:44 - 2013-07-12 18:44 - 00000000 ____D C:\Users\Christian\AppData\Local\ArmA 2 OA
2015-09-20 07:44 - 2015-08-09 19:11 - 00204056 _____ C:\WINDOWS\system32\Drivers\EasyAntiCheat.sys
2015-09-19 13:19 - 2014-04-15 19:07 - 00000000 ____D C:\Users\Christian\AppData\Roaming\.minecraft
2015-09-19 13:17 - 2013-06-16 16:45 - 00000000 ____D C:\Users\Christian\AppData\Local\VirtualStore
2015-09-19 13:16 - 2015-08-04 09:46 - 00000000 ____D C:\Users\Christian\AppData\Local\Packages
2015-09-19 13:12 - 2014-12-19 19:37 - 00000000 ____D C:\Program Files (x86)\Minecraft
2015-09-18 17:19 - 2015-07-10 08:14 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-18 17:19 - 2015-07-10 06:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-09-18 17:19 - 2014-06-13 09:40 - 00000000 ____D C:\Users\Christian\Documents\ArmAWork
2015-09-18 17:13 - 2013-07-09 12:32 - 00000000 ____D C:\Users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bohemia Interactive
2015-09-15 11:12 - 2015-07-10 06:06 - 00812008 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-09-15 11:12 - 2015-07-10 06:06 - 00178152 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-09-14 22:12 - 2015-02-05 10:04 - 00004024 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1d041557818a6e
2015-09-14 22:12 - 2015-02-05 10:04 - 00003792 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore1d041557696e34
2015-09-13 19:24 - 2015-07-23 04:02 - 22559352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2015-09-13 19:24 - 2015-07-23 04:02 - 17934400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2015-09-13 19:24 - 2015-07-23 04:02 - 15336024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2015-09-13 19:24 - 2015-07-23 04:02 - 12611632 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2015-09-13 19:24 - 2015-07-23 04:02 - 03484216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2015-09-13 19:24 - 2015-07-23 04:02 - 03077544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2015-09-13 19:24 - 2015-07-23 04:02 - 00034098 _____ C:\WINDOWS\system32\nvinfo.pb
2015-09-13 19:24 - 2014-12-03 19:58 - 00112760 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2015-09-13 19:24 - 2014-12-03 19:58 - 00105080 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2015-09-13 17:04 - 2014-12-03 19:58 - 06885168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-09-13 17:04 - 2014-12-03 19:58 - 03496056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2015-09-13 17:04 - 2014-12-03 19:58 - 02558584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-09-13 17:04 - 2014-12-03 19:58 - 00937776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-09-13 17:04 - 2014-12-03 19:58 - 00385144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-09-13 17:04 - 2014-12-03 19:58 - 00062768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-09-11 18:27 - 2014-01-23 22:04 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-09-11 07:17 - 2014-12-03 19:58 - 05231082 _____ C:\WINDOWS\system32\nvcoproc.bin
2015-09-10 16:01 - 2013-06-16 17:10 - 00000000 ____D C:\Users\Christian\AppData\Local\Google
2015-09-08 16:09 - 2013-08-15 03:00 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-09-07 19:19 - 2013-10-08 06:46 - 00000000 ____D C:\Users\Christian\AppData\Roaming\vlc
2015-09-05 09:02 - 2015-08-04 09:54 - 00000000 ____D C:\Users\Christian\AppData\Local\Deployment
2015-09-04 22:00 - 2013-08-18 18:48 - 00000000 ____D C:\Users\Christian\AppData\Roaming\OBS
2015-09-04 21:59 - 2013-06-18 13:51 - 00000000 ____D C:\Users\Christian\AppData\Roaming\Skype
2015-09-04 07:06 - 2015-08-04 09:31 - 00016408 _____ C:\WINDOWS\system32\lvcoinst.log
2015-09-03 08:25 - 2014-10-27 18:53 - 00000000 ____D C:\Users\Christian\AppData\Local\Eric_Zhang
2015-09-02 22:44 - 2013-06-20 15:41 - 01065224 _____ C:\WINDOWS\DirectX.log
2015-09-02 22:23 - 2009-07-13 21:34 - 00000900 _____ C:\WINDOWS\system32\Drivers\etc\HOSTS.BackupByPhotoshopPortable
2015-09-02 21:45 - 2015-03-01 15:04 - 00433664 _____ (Newtonsoft) C:\Users\Christian\Downloads\Newtonsoft.Json.dll
2015-09-02 21:45 - 2015-03-01 15:04 - 00044032 _____ (NirSoft) C:\Users\Christian\Downloads\nircmd.exe
2015-09-01 21:39 - 2014-06-19 07:58 - 00000000 ____D C:\Users\Christian\AppData\Roaming\mIRC
2015-09-01 16:53 - 2014-06-19 07:58 - 00000000 ____D C:\Program Files (x86)\mIRC
2015-08-31 16:06 - 2013-06-20 16:44 - 00348360 _____ C:\WINDOWS\SysWOW64\PnkBstrB.xtr
2015-08-31 16:06 - 2013-06-20 16:43 - 00076152 _____ C:\WINDOWS\SysWOW64\PnkBstrA.exe
 
==================== Files in the root of some directories =======
 
2013-12-29 14:21 - 2014-01-04 20:00 - 0000132 _____ () C:\Users\Christian\AppData\Roaming\Adobe PNG Format CC Prefs
2014-02-06 19:58 - 2014-02-09 11:00 - 0000132 _____ () C:\Users\Christian\AppData\Roaming\Adobe PNG Format CS6 Prefs
2013-12-24 17:04 - 2013-12-24 17:07 - 0000132 _____ () C:\Users\Christian\AppData\Roaming\Adobe Targa Format CC Prefs
2014-03-30 10:15 - 2014-09-20 17:02 - 0000303 _____ () C:\Users\Christian\AppData\Roaming\BreakingPoint_Login.ini
2014-03-01 09:37 - 2014-09-20 17:39 - 0001751 _____ () C:\Users\Christian\AppData\Roaming\BreakingPoint_Options.ini
2013-12-12 16:05 - 2013-12-12 16:05 - 0108564 _____ () C:\Users\Christian\AppData\Roaming\icarus-dxdiag.xml
2014-11-13 13:56 - 2014-11-13 13:56 - 0000112 _____ () C:\Users\Christian\AppData\Roaming\JP2K CS6 Prefs
2013-07-13 18:33 - 2015-06-13 13:06 - 0000600 _____ () C:\Users\Christian\AppData\Roaming\winscp.rnd
2014-11-11 00:30 - 2014-12-12 17:07 - 0001456 _____ () C:\Users\Christian\AppData\Local\Adobe Save for Web 13.0 Prefs.BackupByPhotoshopPortable
2014-01-14 19:11 - 2015-07-19 11:00 - 0011264 _____ () C:\Users\Christian\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-08-08 09:32 - 2015-08-08 09:32 - 0000000 _____ () C:\Users\Christian\AppData\Local\DVDPATH.TXT
2008-02-05 14:28 - 2008-02-05 14:28 - 0000051 _____ () C:\Users\Christian\AppData\Local\setup.txt
2013-06-18 14:31 - 2013-06-18 14:31 - 0000057 _____ () C:\ProgramData\Ament.ini
2015-09-05 16:07 - 2015-09-05 16:07 - 0000006 ____S () C:\ProgramData\cfc4764f3bbfae7c2c155456e0ae08a61242b9ff
2015-08-04 09:30 - 2015-08-04 09:30 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-12-07 11:24 - 2014-12-07 11:24 - 0005045 _____ () C:\ProgramData\wmzddnmb.cix
 
Some files in TEMP:
====================
C:\Users\Christian\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpkv2x8i.dll
C:\Users\Christian\AppData\Local\Temp\mirc741.exe
C:\Users\Christian\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Christian\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Christian\AppData\Local\Temp\nvStInst.exe
C:\Users\Christian\AppData\Local\Temp\uninstall.exe
 
 
==================== Bamital & volsnap =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2015-09-24 18:05
 
==================== End of FRST.txt ============================
 
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version:27-09-2015 01
Ran by Christian (2015-09-30 16:18:13)
Running from C:\Users\Christian\Desktop
Windows 10 Pro (X64) (2015-08-04 14:46:44)
Boot Mode: Safe Mode (with Networking)
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-2842136386-2703010871-4203806482-500 - Administrator - Disabled)
Christian (S-1-5-21-2842136386-2703010871-4203806482-1000 - Administrator - Enabled) => C:\Users\Christian
DefaultAccount (S-1-5-21-2842136386-2703010871-4203806482-503 - Limited - Disabled)
Guest (S-1-5-21-2842136386-2703010871-4203806482-501 - Limited - Disabled)
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Disabled - Out of date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
7 Days to Die - Alpha version 0.9.1 (HKLM-x32\...\{967E55B4-6DDD-4A2F-BFC7-07F1E327971E}_is1) (Version: 0.9.1 - The Fun Pimps LLC)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
A3Launcher version 0.0.0.3 (HKLM-x32\...\{E31045B4-9DB5-9EBD-44DF-BD4CFDE640DF}_is1) (Version: 0.0.0.3 - Maca134)
Action! (HKLM-x32\...\Mirillis Action!) (Version: 1.16.3 - Mirillis)
Addon Sync 2009 (HKLM-x32\...\{4E3AA543-09D7-401E-9DF2-2591D24C7C49}) (Version: 1.0.67 - YomaTools)
Adobe Acrobat X Pro - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000005}) (Version: 10.1.1 - Adobe Systems)
Adobe After Effects 7.0 (HKLM-x32\...\Adobe After Effects 7.0) (Version: 7.0.0.244 - Adobe Systems, Inc.)
Adobe After Effects CC 2014 (HKLM-x32\...\{2B22C750-5C3B-4738-B621-BA786AC7A494}) (Version: 13.1.1 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 18.0.0.199 - Adobe Systems Incorporated)
Adobe Creative Suite 6 Master Collection (HKLM-x32\...\{E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0}) (Version: 6 - Adobe Systems Incorporated)
Adobe Flash Media Live Encoder 3.2 (HKLM-x32\...\{0659E943-DDF4-44FC-9FEE-A13B09F8BB08}) (Version: 3.2.0 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.287 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Illustrator CC 2014 (HKLM-x32\...\{2B4B4082-8043-4646-8334-B0A29E641211}) (Version: 18.1.0 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2014 (HKLM-x32\...\{663DEEEF-EF34-4DCB-8687-73A7AA146E02}) (Version: 8.1.0 - Adobe Systems Incorporated)
Adobe Photoshop CS2 (HKLM-x32\...\Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0409-1E257A25E34D}) (Version: 9.0 - Adobe Systems, Inc.)
Adobe Premiere Pro 2.0 (HKLM-x32\...\Adobe Premiere Pro 2.0) (Version: 2.000.000 - Adobe Systems, Inc.)
Adobe Premiere Pro CC 2014 (HKLM-x32\...\{07BE616F-9E42-4C90-AF4F-0F32A5B088E7}) (Version: 8.2.0 - Adobe Systems Incorporated)
Adobe Widget Browser (HKLM-x32\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.)
AdVenture Capitalist (HKLM-x32\...\Steam App 346900) (Version:  - Hyper Hippo Games)
Aftermath version 1.0 (HKLM-x32\...\{024D0ADC-6846-4B7A-B12F-D571DF826068}}_is1) (Version: 1.0 - Free Reign Entertainment)
AI Suite II (HKLM-x32\...\{34D3688E-A737-44C5-9E2A-FF73618728E1}) (Version: 2.00.00 - ASUSTeK Computer Inc.)
Anarchy Arcade (HKLM-x32\...\Steam App 266430) (Version:  - Elijah Newman-Gomez)
Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ArcSoft TotalMedia Extreme (HKLM-x32\...\{88B05038-C890-468B-A563-0015FD53CDC3}) (Version:  - ArcSoft)
ARK: Survival Evolved (HKLM-x32\...\Steam App 346110) (Version:  - Studio Wildcard)
Arma 2 (HKLM-x32\...\Steam App 33900) (Version:  - Bohemia Interactive)
Arma 2: Operation Arrowhead (HKLM-x32\...\Steam App 33930) (Version:  - Bohemia Interactive)
Arma 2: Operation Arrowhead Beta (HKLM-x32\...\Steam App 219540) (Version:  - )
Arma 3 (HKLM-x32\...\Steam App 107410) (Version:  - Bohemia Interactive)
Arma 3 Server (HKLM-x32\...\Steam App 233780) (Version:  - Bohemia Interactive)
Arma 3 Tools (HKLM-x32\...\Steam App 233800) (Version:  - Bohemia Interactive)
ArmA3Sync 1.4.54 (HKLM-x32\...\{F097E7D7-D093-4394-9EED-43AFCCD12B7A}_is1) (Version: 1.4.54 - The [S.o.E] team)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.14.3.0 - Asmedia Technology)
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}) (Version: 1.3.4.000 - Asmedia Technology)
Assassin's Creed Unity (HKLM-x32\...\Uplay Install 720) (Version:  - Ubisoft)
ASUS Product Register Program (HKLM-x32\...\{49BE9B8A-E858-4533-A74A-64306C13DB59}) (Version: 1.0.014 - ASUS)
Audacity 2.0.3 (HKLM-x32\...\Audacity_is1) (Version: 2.0.3 - Audacity Team)
Autodesk 3ds Max 2015 (HKLM\...\Autodesk 3ds Max 2015) (Version: 17.0.630.0 - Autodesk)
Autodesk 3ds Max 2015 (Version: 17.0.630.0 - Autodesk) Hidden
Autodesk 3ds Max 2015 Populate Data (HKLM\...\{57E92DED-DC6C-41E5-B9E1-76D83BD2EABE}) (Version: 17.0.0.0 - Autodesk)
Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 4.0.69.0 - Autodesk)
Autodesk Backburner 2015 (HKLM-x32\...\{8C5F38D2-8EFE-49A4-B3F5-BF3210FED168}) (Version: 15.0.0.0 - Autodesk)
Autodesk DirectConnect 2015 64-bit (HKLM\...\Autodesk DirectConnect 2015 64-bit) (Version: 9.0.56.4 - Autodesk)
Autodesk DirectConnect 2015 64-bit (Version: 9.0.56.4 - Autodesk) Hidden
Autodesk Inventor Server Engine for 3ds Max 2015 (HKLM\...\{9167CA34-4E48-49E3-8892-3C439739D2D3}) (Version: 17.0 - Autodesk)
Autodesk Material Library 2015 (HKLM-x32\...\{427F733F-4D6C-45BC-9324-EB743104C321}) (Version: 5.2.9.100 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2015 (HKLM-x32\...\{ABE2F70B-8D94-44E9-AA04-F0DB35063D62}) (Version: 5.2.9.100 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2015 (HKLM-x32\...\{9F6466D9-6EFC-4A10-B931-C72D1A3F1763}) (Version: 5.2.9.100 - Autodesk)
Autodesk Revit Interoperability for 3ds Max 2015 (HKLM\...\Autodesk Revit Interoperability for 3ds Max 2015) (Version: 15.0.107.0 - Autodesk)
Autodesk Revit Interoperability for 3ds Max 2015 (Version: 15.0.107.0 - Autodesk) Hidden
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.13.202 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM-x32\...\{5dfbeba9-9f22-463d-8c95-c861911810a2}) (Version: 1.1.47.11018 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.47.11018 - Avira Operations GmbH & Co. KG) Hidden
Awesomium Redistributable (HKLM-x32\...\{5BCB064B-9F65-4E15-BAFB-669E72E54FD9}) (Version: 1.7.4.2 - SIX Networks GmbH)
AwesomiumSetup (HKLM-x32\...\{19EF99D1-7EE6-4B5E-ABEE-0B3825F703B0}) (Version: 1.00.0000 - SIX Networks GmbH)
Battlefield 2 (HKLM-x32\...\Steam App 24860) (Version:  - DICE)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.5.2.34169 - Electronic Arts)
Battlefield: Bad Company 2 (HKLM-x32\...\Steam App 24960) (Version:  - DICE)
Battlefield: Bad Company™ 2 (HKLM-x32\...\{3AC8457C-0385-4BEA-A959-E095F05D6D67}) (Version: 1.0.0.0 - Electronic Arts)
Battlefield™ Hardline (HKLM-x32\...\{CB4AC3DA-8CC1-4516-86DA-4078B57DB229}) (Version: 1.2.0.6 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.7.1 - EA Digital Illusions CE AB)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version:  - )
BattlEye Uninstall (HKLM-x32\...\BattlEye for A2) (Version:  - )
BinMake Uninstall (HKLM-x32\...\BinMake) (Version:  - )
BioShock Infinite (HKLM-x32\...\Steam App 8870) (Version:  - Irrational Games)
BI's Tools drive Uninstall (HKLM-x32\...\BI's Tools drive) (Version:  - )
BitRaider Web Client (HKLM-x32\...\BitRaider Web Client) (Version: 1.1.8.1 - BitRaider, LLC)
BitTorrent Sync (HKLM-x32\...\BitTorrent Sync) (Version: 1.4.83 - BitTorrent Inc.)
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
Black Tomato Mod version 0.5 (HKLM-x32\...\{C15DE3EF-E89E-40D7-B864-CEFDFEDB6683}_is1) (Version: 0.5 - Dan)
Blender (HKLM\...\Blender) (Version: 2.74 - Blender Foundation)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Borderlands 2 (HKLM-x32\...\Steam App 49520) (Version:  - Gearbox Software)
Build and Shoot Launcher 1.2 (HKLM-x32\...\Build and Shoot Launcher) (Version: 1.2 - Buld Then Snip, LLC)
Call of Duty Black Ops - Remote Console (HKLM-x32\...\Steam App 42720) (Version:  - Treyarch)
Call of Duty: Advanced Warfare - Multiplayer (HKLM-x32\...\Steam App 209660) (Version:  - Sledgehammer Games)
Call of Duty: Advanced Warfare (HKLM-x32\...\Steam App 209650) (Version:  - Sledgehammer Games)
Call of Duty: Black Ops - Multiplayer (HKLM-x32\...\Steam App 42710) (Version:  - Treyarch)
Call of Duty: Black Ops (HKLM-x32\...\Steam App 42700) (Version:  - Treyarch)
Call of Duty: Black Ops II - Multiplayer (HKLM-x32\...\Steam App 202990) (Version:  - Treyarch)
Call of Duty: Black Ops II - Zombies (HKLM-x32\...\Steam App 212910) (Version:  - )
Call of Duty: Black Ops II (HKLM-x32\...\Steam App 202970) (Version:  - Treyarch)
Call of Duty: Black Ops III Beta (HKLM-x32\...\Steam App 388520) (Version:  - Treyarch)
Call of Duty: Ghosts - Multiplayer (HKLM-x32\...\Steam App 209170) (Version:  - Infinity Ward)
Call of Duty: World at War (HKLM-x32\...\Steam App 10090) (Version:  - Treyarch)
CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden
Camtasia Studio 8 (HKLM-x32\...\{A7727F03-5311-4A12-9A63-2ACD20BA0497}) (Version: 8.2.1.1423 - TechSmith Corporation)
Castle Crashers (HKLM-x32\...\Steam App 204360) (Version:  - The Behemoth)
CCGLauncher version 0.0.0.9 (HKLM-x32\...\{78D51CE5-799C-4FCA-9635-6F61E19EA5E3}_is1) (Version: 0.0.0.9 - Custom Combat Gaming)
CCleaner (HKLM\...\CCleaner) (Version: 5.01 - Piriform)
Celtx (2.9.7) (HKLM-x32\...\Celtx (2.9.7)) (Version: 2.9.7 (en-US) - Greyfirst)
Cities XL Platinum (HKLM-x32\...\Steam App 231140) (Version:  - Focus Home Interactive)
Clownfish for Skype (HKLM-x32\...\Clownfish) (Version:  - )
Contagion (HKLM-x32\...\Steam App 238430) (Version:  - Monochrome LLC)
Counter-Strike: Global Offensive - SDK (HKLM-x32\...\Steam App 745) (Version:  - )
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version:  - Valve)
Crafty 1.0.2 (HKLM-x32\...\Crafty_is1) (Version:  - Ryan Gregg)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.1.0.0074 - Disc Soft Ltd)
DayZ (HKLM-x32\...\Steam App 221100) (Version:  - Bohemia Interactive)
DayZ Commander (HKLM-x32\...\{0B74EC0B-2A85-4542-A167-3DE2132E7DAA}) (Version: 0.92.85 - Dotjosh Studios)
DayZLauncher version 0.0.0.15 (HKLM-x32\...\{E31045B4-9DB5-9EBD-44DF-BD4E6CFD40DF}_is1) (Version: 0.0.0.15 - Maca134)
DayZLauncher version 0.0.0.7 (HKLM-x32\...\{E31045B4-9DB5-44DF-9EBD-BD4CFDE640FD}_is1) (Version: 0.0.0.7 - Maca134)
Dead Island Riptide (HKLM-x32\...\Steam App 216250) (Version:  - Techland)
Dead Space™ (HKLM-x32\...\{9789E33B-317A-44B2-AF9A-FF8708AD93E0}) (Version: 1.0.0.222 - Electronic Arts)
DefianceRuntimes (HKLM-x32\...\{79B1FF35-9EA8-48ED-98D6-19ABE004BE89}) (Version: 1.0.2 - Trion Worlds, Inc.)
Desura (HKLM-x32\...\Desura) (Version: 100.64 - Desura)
Dirty Bomb (HKLM-x32\...\Steam App 333930) (Version:  - Splash Damage®)
Dishonored (HKLM-x32\...\Steam App 205100) (Version:  - Arkane Studios)
Don't Starve (HKLM-x32\...\Steam App 219740) (Version:  - Klei Entertainment)
Don't Starve Together Beta (HKLM-x32\...\Steam App 322330) (Version:  - Klei Entertainment)
Dota 2 (HKLM-x32\...\Steam App 570) (Version:  - Valve)
Dragon Age: Origins (HKLM-x32\...\{AEC81925-9C76-4707-84A9-40696C613ED3}) (Version: 1.05.0.0 - Electronic Arts)
Dropbox (HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\Dropbox) (Version: 3.0.3 - Dropbox, Inc.)
Dungeon Defenders (HKLM-x32\...\Steam App 65800) (Version:  - Trendy Entertainment)
Dxtory version 2.0.132 (HKLM-x32\...\Dxtory2.0_is1) (Version: 2.0.132 - ExKode Co. Ltd.)
Epic Pen (HKLM-x32\...\Epic Pen_is1) (Version:  - Brian Hoary)
Epoch Launcher (HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\de6ddf4941177887) (Version: 0.0.1.12 - Epoch Mod Team)
erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
Everything 1.3.4.686 (x64) (HKLM\...\Everything) (Version:  - )
Facebook Messenger 2.1.4814.0 (HKLM-x32\...\{7204BDEE-1A48-4D95-A964-44A9250B439E}) (Version: 2.1.4814.0 - Facebook)
Farming Simulator 15 (HKLM-x32\...\FarmingSimulator2015INT_is1) (Version: 1.2.0.0 - GIANTS Software)
FilesFrog Update Checker (HKLM-x32\...\FilesFrog Update Checker) (Version:  - ) <==== ATTENTION
Fistful of Frags (HKLM-x32\...\Steam App 265630) (Version:  - Fistful of Frags Team)
Five Nights at Freddy's (HKLM-x32\...\Steam App 319510) (Version:  - Scott Cawthon)
FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version:  - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version:  - Image-Line)
foobar2000 v1.2.9 (HKLM-x32\...\foobar2000) (Version: 1.2.9 - Peter Pawlowski)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
Free Video Compressor (HKLM-x32\...\{01554C33-4131-4BC7-9E6D-AF85E02BDF4F}_is1) (Version:  - freevideocompressor.com)
FTL: Faster Than Light (HKLM-x32\...\Steam App 212680) (Version:  - Subset Games)
GameMaker-Studio 1.2 (HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\GameMaker-Studio12) (Version:  - YoYo Games Ltd.)
GameSpy Comrade (HKLM-x32\...\{894084B6-BC69-43B7-BF06-B93AECFEA520}) (Version: 2.1.1.214 - GameSpy)
GameTracker Lite (HKLM-x32\...\GameTracker Lite) (Version:  - ClanServers Hosting LLC.)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Facepunch Studios)
GCFScape 1.8.4 (HKLM\...\GCFScape_is1) (Version:  - Ryan Gregg)
Glyph (HKLM-x32\...\Glyph) (Version:  - Trion Worlds, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.99 - Google Inc.)
Google Drive (HKLM-x32\...\{12ADFB82-D5A3-43E4-B2F4-FCD9B690315B}) (Version: 1.24.9931.5480 - Google, Inc.)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\Steam App 12210) (Version:  - Rockstar North)
Grand Theft Auto V (HKLM-x32\...\Steam App 271590) (Version:  - Rockstar North)
GRID 2 (HKLM-x32\...\Steam App 44350) (Version:  - Codemasters Racing)
H1Z1 (HKLM-x32\...\Steam App 295110) (Version:  - Sony Online Entertainment)
Hauppauge Capture (HKLM-x32\...\Hauppauge Capture) (Version: 1.0.32133 - Hauppauge Computer Works)
Heroes & Generals (HKLM-x32\...\Steam App 227940) (Version:  - Reto-Moto)
HP FWUpdateEDO2 (HKLM-x32\...\{415FA9AD-DA10-4ABE-97B6-5051D4795C90}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Officejet 6700 Basic Device Software (HKLM\...\{A1CFA587-90D4-4DE6-B200-68CC0F92252F}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Officejet 6700 Help (HKLM-x32\...\{E1AE0CB7-1333-4728-8520-CB3F88A252B4}) (Version: 140.0.2.2 - Hewlett Packard)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
HPDiagnosticAlert (x32 Version: 1.00.0000 - Microsoft) Hidden
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version:  - Image-Line)
Image Line FL Studio Producer Edition (HKLM-x32\...\Image Line FL Studio Producer Edition) (Version: 12.1.2 - Image Line FL Studio Producer Edition)
Infestation: Survivor Stories (HKLM-x32\...\Steam App 226700) (Version:  - OP Productions LLC)
Insurgency (HKLM-x32\...\Steam App 222880) (Version:  - New World Interactive)
Insurgency Dedicated Server (HKLM-x32\...\Steam App 237410) (Version:  - )
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel® Network Connections 17.2.154.0 (HKLM\...\PROSetDX) (Version: 17.2.154.0 - Intel)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.1.0.1006 - Intel Corporation)
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.5.235 - Intel Corporation)
Iron Europe (HKLM-x32\...\{3C262E00-3C8B-4774-83DB-6412EDFE9FB4}_is1) (Version: 1.2.1 - Iron Europe Development Team)
Iron Europe (HKLM-x32\...\{7735559E-F41A-480F-A5FC-174F8B9EB58E}_is1) (Version: 1.0.0 - Iron Europe Development Team)
Iron Europe (HKLM-x32\...\{957609F3-9CF1-4726-8F8F-1C1AAC063917}_is1) (Version: 1.1.0 - Iron Europe Development Team)
iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)
Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Just Cause 2 (HKLM-x32\...\Steam App 8190) (Version:  - Avalanche)
Just Cause 2: Multiplayer Mod (HKLM-x32\...\Steam App 259080) (Version:  - JC2-MP Team)
KeePass Password Safe 2.22 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version:  - Dominik Reichl)
Kerbal Space Program (HKLM-x32\...\Steam App 220200) (Version:  - Squad)
Lagarith Lossless Codec (1.3.27) (HKLM-x32\...\{F59AC46C-10C3-4023-882C-4212A92283B3}_is1) (Version:  - )
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
League of Legends (HKLM-x32\...\League of Legends 3.0.0) (Version: 3.0.0 - Riot Games)
League of Legends (x32 Version: 3.0.0 - Riot Games) Hidden
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version:  - Valve)
Logitech Gaming Software 8.46 (HKLM\...\Logitech Gaming Software) (Version: 8.46.27 - Logitech Inc.)
Logitech QuickCam Software (HKLM-x32\...\{C43048A9-742C-4DAD-90D2-E3B53C9DB825}) (Version: 8.47.0000 - Logitech, Inc.)
Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.291 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.291 - LogMeIn, Inc.) Hidden
Magicka (HKLM-x32\...\Steam App 42910) (Version:  - Arrowhead Game Studios)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE (HKLM-x32\...\{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}) (Version: 3.1.186.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{02BAAFC5-4E16-42E6-A9F6-8DDE0B7ED3B8}) (Version: 1.0.0.0 - Mojang)
mIRC (HKLM-x32\...\mIRC) (Version: 7.41 - mIRC Co. Ltd.)
MorphVOX Junior (HKLM-x32\...\{E6C7380F-15DD-445E-BA02-B7A180BA0A5A}) (Version: 2.8.1 - Screaming Bee)
Mount&Blade (HKLM-x32\...\Mount&Blade) (Version:  - )
Mount&Blade Warband (HKLM-x32\...\Mount&Blade Warband) (Version:  - )
Mount&Blade With Fire and Sword (HKLM-x32\...\Mount&Blade With Fire and Sword) (Version:  - )
Mount&Blade: Warband - Napoleonic Wars (HKLM-x32\...\Mount&Blade: Warband - Napoleonic Wars) (Version:  - )
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 39.0.3 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 39.0.3 (x86 en-US)) (Version: 39.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
Mozilla Thunderbird 24.0 (x86 en-US) (HKLM-x32\...\Mozilla Thunderbird 24.0 (x86 en-US)) (Version: 24.0 - Mozilla)
Mozilla Thunderbird 24.3.0 (x86 en-US) (HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\Mozilla Thunderbird 24.3.0 (x86 en-US)) (Version: 24.3.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Napoleonic Wars Enhancement Pack (HKLM-x32\...\{39FEF436-D526-4829-ACF9-014874ABEFAD}_is1) (Version: 5.1.0 - Parrot)
Nitro Reader 3 (HKLM\...\{9EA981E5-EE67-4662-86F1-58937D31FE07}) (Version: 3.5.6.5 - Nitro)
No More Room in [bleep] (HKLM-x32\...\Steam App 224260) (Version:  - No More Room in [bleep] Team)
North and South version 0.404 (HKLM-x32\...\{C0C24D7F-3B0D-4169-AC92-4999D18FB04D}_is1) (Version: 0.404 - Antietam Studios)
Norton Identity Safe (HKLM-x32\...\NST) (Version: 2014.7.11.42 - Symantec Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.1 - Notepad++ Team)
NVIDIA 3D Vision Controller Driver 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 355.98 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 355.98 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.5.14.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.14.5 - NVIDIA Corporation)
NVIDIA Graphics Driver 355.98 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.98 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
OBS Multiplatform (HKLM-x32\...\OBS Multiplatform) (Version: 0.11.4 - OBS Project)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OpenOffice 4.0.0 (HKLM-x32\...\{55E61709-D7D4-43C0-B45D-BFAF5C09A02D}) (Version: 4.00.9702 - Apache Software Foundation)
OpenRA (HKLM-x32\...\OpenRA) (Version:  - OpenRA developers)
Oracle VM VirtualBox 4.3.20 (HKLM\...\{DD8F7A7A-852F-4648-8A73-B8FC1DF5F082}) (Version: 4.3.20 - Oracle Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.3.7.2735 - Electronic Arts, Inc.)
Paintball2 Alpha build 40 (HKLM-x32\...\Paintball2) (Version: Alpha build 40 - Digital Paint)
PaintTool SAI Ver.1 (HKLM-x32\...\PaintToolSAI) (Version:  - )
Paronicon 2 - Uninstall (HKLM-x32\...\Paronicon 2 0.2.2.0) (Version: 0.2.2.0 - GSN Gaming)
Paronicon 2 (x32 Version: 0.2.2.0 - GSN Gaming) Hidden
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version:  - OVERKILL - a Starbreeze Studio.)
PAYDAY: The Heist (HKLM-x32\...\Steam App 24240) (Version:  - OVERKILL Software)
PBO Manager v.1.4 beta (HKLM\...\{127B5371-1802-4EDD-A25A-A43BF761D383}) (Version: 1.4.0 -  )
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Peggle (HKLM-x32\...\{715AD72D-887A-459E-988B-D4F3E87FA24B}) (Version: 1.04.0.0 - PopCap Games)
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
Pivot Animator version 4.1.10 (HKLM-x32\...\Pivot Animator_is1) (Version: 4.1.10 - Motus Software Ltd)
Plants vs. Zombies™ (HKLM-x32\...\{5E6536C2-E79A-49CF-83EA-817AD81F9FC8}) (Version: 1.2.0.1093 - Electronic Arts, Inc.)
Poker Night 2 (HKLM-x32\...\Steam App 234710) (Version:  - Telltale Games)
Poker Night at the Inventory (HKLM-x32\...\Steam App 31280) (Version:  - Telltale Games)
Portal (HKLM-x32\...\Steam App 400) (Version:  - Valve)
Portal 2 (HKLM-x32\...\Steam App 620) (Version:  - Valve)
PowerISO (HKLM-x32\...\PowerISO) (Version: 5.8 - Power Software Ltd)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
qBittorrent 3.1.11 (HKLM-x32\...\qbittorrent) (Version: 3.1.11 - The qBittorrent project)
Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{7D916FA5-DAE9-4A25-B089-655C70EAF607}) (Version: 3.0 - Qualcomm Atheros)
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
RaidCall (HKLM-x32\...\RaidCall) (Version: 7.3.6-1.0.12972.94 - raidcall.com)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
ROBLOX Player for Christian (HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version:  - ROBLOX Corporation)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.6.1 - Rockstar Games)
Rust (HKLM-x32\...\Steam App 252490) (Version:  - Facepunch Studios)
Sandboxie 4.14 (64-bit) (HKLM\...\Sandboxie) (Version: 4.14 - Sandboxie Holdings, LLC)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version:  - Microsoft) Hidden
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.14.5 - NVIDIA Corporation) Hidden
Sid Meier’s Ace Patrol: Pacific Skies (HKLM-x32\...\Steam App 244090) (Version:  - Firaxis)
Sid Meier's Ace Patrol (HKLM-x32\...\Steam App 244070) (Version:  - Firaxis Games)
Sid Meier's Civilization III: Complete (HKLM-x32\...\Steam App 3910) (Version:  - Firaxis Games)
Sid Meier's Civilization IV (HKLM-x32\...\Steam App 3900) (Version:  - Firaxis Games)
Sid Meier's Civilization IV: Beyond the Sword (HKLM-x32\...\Steam App 8800) (Version:  - Firaxis Games)
Sid Meier's Civilization IV: Colonization (HKLM-x32\...\Steam App 16810) (Version:  - Firaxis Games)
Sid Meier's Civilization IV: Warlords (HKLM-x32\...\Steam App 3990) (Version:  - Firaxis Games)
Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version:  - 2K Games, Inc.)
Sid Meier's Railroads! (HKLM-x32\...\Steam App 7600) (Version:  - Firaxis Games)
Six Updater (HKLM-x32\...\{AD42165D-FF3C-4975-A130-7AA2801AB5DD}) (Version: 2.09.7042 - Six Projects)
SketchUp 2013 (HKLM-x32\...\{B75BC01B-4586-43F8-9349-D250DB98F26F}) (Version: 13.0.4812 - Trimble Navigation Limited)
Skype™ 7.8 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.8.102 - Skype Technologies S.A.)
Smart Technology Programming Software 7.0.27.13 (HKLM\...\{BD90BC1C-115D-47E1-B85C-07AE182C3AB8}) (Version: 7.0.27.13 - Mad Catz)
Snaz version 1.9.2.6 (HKLM-x32\...\{70A76031-FDC6-4F9B-BB5C-33776703F45A}_is1) (Version: 1.9.2.6 - JimsApps)
Sniper Elite 3 (HKLM-x32\...\Steam App 238090) (Version:  - Rebellion)
Sniper Elite V2 (HKLM-x32\...\Steam App 63380) (Version:  - Rebellion)
Soundboard (HKLM-x32\...\Soundboard) (Version: 1.0.0 - UNKNOWN)
Soundboard (x32 Version: 1.0.0 - UNKNOWN) Hidden
Source SDK (HKLM-x32\...\Steam App 211) (Version:  - Valve)
Source SDK Base 2006 (HKLM-x32\...\Steam App 215) (Version:  - Valve)
Source SDK Base 2013 Multiplayer (HKLM-x32\...\Steam App 243750) (Version:  - )
South Park™: The Stick of Truth™ (HKLM-x32\...\Steam App 213670) (Version:  - Obsidian Entertainment)
Spotify (HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\Spotify) (Version: 1.0.14.124.g4dfabc51 - Spotify AB)
Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version: 7.0.0.6 - Bioware/EA)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
Stealth Inc 2 (HKLM-x32\...\Steam App 329380) (Version:  - Carbon)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version:  - Valve)
TeamSpeak 3 Client (HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\TeamSpeak 3 Client) (Version: 3.0.15.1 - TeamSpeak Systems GmbH)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.43879 - TeamViewer)
TexView 2 Uninstall (HKLM-x32\...\TexView 2) (Version:  - )
The Crew (Worldwide) (HKLM-x32\...\Uplay Install 413) (Version:  - Ubisoft)
The Elder Scrolls Online Beta (HKLM-x32\...\The Elder Scrolls Online Beta_is1) (Version: 0.3.4 - )
The Forest (HKLM-x32\...\Steam App 242760) (Version:  - Endnight Games Ltd)
The Stanley Parable (HKLM-x32\...\Steam App 221910) (Version:  - Galactic Cafe)
Tomb Raider (HKLM-x32\...\Steam App 203160) (Version:  - Crystal Dynamics)
ToneSync for Windows (HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\c2c9648a374f64d1) (Version: 1.2.3.309 - Zedge Europe AS)
Unity Web Player (HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Unturned (HKLM-x32\...\Steam App 304930) (Version:  - Nelson Sexton)
Uplay (HKLM-x32\...\Uplay) (Version: 4.9 - Ubisoft)
Vegas Pro 12.0 (64-bit) (HKLM\...\{BD422D00-5232-11E3-A6F3-F04DA23A5C58}) (Version: 12.0.770 - Sony)
Verdun (HKLM-x32\...\Steam App 242860) (Version:  - M2H)
Victoria 2 (HKLM-x32\...\{9C3B7F54-C6E2-4A74-9937-9C6EBA10C4A2}) (Version:  - )
Virtual Audio Cable 4.10 (HKLM\...\Virtual Audio Cable 4.10) (Version:  - )
VLC media player 2.0.7 (HKLM-x32\...\VLC media player) (Version: 2.0.7 - VideoLAN)
VMic (HKLM-x32\...\VMic) (Version:  - )
Volvo - The Game (HKLM-x32\...\Volvo - The Game_is1) (Version:  - SimBin)
VTFEdit 1.3.3 (HKLM\...\VTFEdit_is1) (Version:  - Neil Jedrzejewski & Ryan Gregg)
War Thunder (HKLM-x32\...\Steam App 236390) (Version:  - Gaijin Entertainment)
WinDirStat 1.1.2 (HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\WinDirStat) (Version:  - )
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Movie Maker 2.6 (HKLM-x32\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation)
Wing Commander III (HKLM-x32\...\{F96B9930-E22A-44D6-81B5-6C8E92C21B4B}) (Version: 2.0.0.2 - Electronic Arts)
WinRAR 5.00 beta 6 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.00.6 - win.rar GmbH)
WinSCP 5.1.5 (HKLM-x32\...\winscp3_is1) (Version: 5.1.5 - Martin Prikryl)
WS Launcher (HKLM-x32\...\{575E5E77-2C8E-405F-AB8E-9A7418B704CF}) (Version: 0.0.0.9 - Launcher)
Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org)
X-Mouse Button Control 2.11.1 (HKLM-x32\...\X-Mouse Button Control) (Version: 2.11.1 - Highresolution Enterprises)
XSplit (HKLM-x32\...\{24570B2F-3937-47F0-A16A-E82B480A7699}) (Version: 1.1.1210.3101 - SplitMediaLabs)
 
==================== Custom CLSID (Whitelisted): ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Christian\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2015\Inventor Server\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2015\Inventor Server\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{D45F043D-F17F-4e8a-8435-70971D9FA46D}\InprocServer32 -> C:\Program Files\Blender Foundation\Blender\BlendThumb64.dll ()
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{DEE03C2B-0C0C-41A9-9877-FD4B4D7B6EA3}\InprocServer32 -> C:\Users\Christian\AppData\Local\Roblox\Versions\version-957ce0cc47814d39\RobloxProxy64.dll (ROBLOX Corporation)
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2015\Inventor Server\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Christian\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Christian\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Christian\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Christian\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Christian\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Christian\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Christian\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Christian\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
 
==================== Restore Points =========================
 
17-09-2015 17:30:55 avast! antivirus system restore point
20-09-2015 16:58:19 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
20-09-2015 16:58:28 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
24-09-2015 18:05:29 Windows Update
25-09-2015 20:26:17 avast! antivirus system restore point
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2015-09-25 19:40 - 2015-09-25 19:40 - 00000076 ____A C:\WINDOWS\system32\Drivers\etc\hosts
0.0.0.0 pubads.g.doubleclick.net
0.0.0.0 securepubads.g.doubleclick.net
 
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {0019BEF5-5D67-4C9B-99E9-095E0A38A249} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2842136386-2703010871-4203806482-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe
Task: {02DBD956-1A64-4801-815B-4FD1AD3CCFA8} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {030EAF9C-2A21-4CC4-9670-E6B59F53F196} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {0EA2A80C-26EB-4859-819E-A7B5D192506F} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {0EA36A42-5297-489F-A7AA-DC10DFD540FA} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2842136386-2703010871-4203806482-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
Task: {150BC3E0-6B9A-4E84-948B-153B97C8D824} - System32\Tasks\{56A68917-9FE8-415F-A4E1-24575FF34FD6} => pcalua.exe -a C:\Users\CHRIST~1\AppData\Local\Temp\$PowerISO$\install.exe -d E:\Users\Christian\Downloads\rzr-skrm
Task: {171BE514-AAE8-485E-AAAD-5BB7FC37089B} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {1A9A440C-279D-40F8-A73C-AA14E46C33DF} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {20264754-6574-4445-86B6-310D0D755F6C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-01-23] (Adobe Systems Incorporated)
Task: {20AF6801-E267-4B73-B400-66A1E0BD8B34} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {20CCE052-DA99-4C58-838F-817A3AF6B0C6} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {2162D55C-72E0-44F3-9CBC-3E8F9EB3D218} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {253C4637-EF43-477A-8982-5C37BB3D484E} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {27A8C9CD-9C1C-48AF-AC09-DD4EF9255022} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {2AAFDAC5-9DC8-4241-B57C-5C1F85D5C071} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {2F2E2878-3F6C-4487-AF4C-148B55FAF5AD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {31DE5BD3-DCBD-4B06-B073-584464B1B596} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {3A8B6163-677E-46CF-865A-77C78D50D641} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {3B1912DE-41A6-4457-919F-EAD9B1B419E9} - System32\Tasks\ASUS\ASUS WiFi GO! Server Execute => C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFi GO! Server.exe [2012-07-12] (ASUSTeK Computer Inc.)
Task: {4048D3FE-68E9-43E9-9139-B31EBA2A9073} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {4B2F4186-F784-489B-BA4D-B4673BFF4C86} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {4D754DB5-89FD-4871-A60A-D554CA05C0FE} - System32\Tasks\{15DCDB01-AB91-4CB6-ACA5-99A968789279} => pcalua.exe -a C:\Users\Christian\Downloads\BP_Installer(2).exe -d C:\Users\Christian\Downloads
Task: {53DF64B4-578E-4DF9-B84B-70214BBACF11} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2842136386-2703010871-4203806482-1000Core => C:\Users\Christian\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-09-11] (Facebook Inc.)
Task: {5FBB1F28-C69D-4173-B220-101CEE852D93} - System32\Tasks\Norton Identity Safe\Norton Error Analyzer => C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\SymErr.exe
Task: {63459F8B-DE2E-4481-AEB3-71AD438FD6BC} - System32\Tasks\CCleanerSkipUAC => E:\Program Files\CCleaner\CCleaner.exe [2014-12-12] (Piriform Ltd)
Task: {6489AE90-C36A-45F7-BD6C-DC5DE3C0BBD1} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {6D748174-6583-4961-A5FE-614D69E05196} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {71D72724-8E78-47AF-A357-F768E14218E3} - System32\Tasks\GoogleUpdateTaskMachineCore1d041557696e34 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {721DAC04-C281-4AB3-B8D8-E555591FA5BE} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {7A11C935-1670-4B49-B693-E510607F5282} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {7A1D5B31-D82D-4DA9-9FAC-DCC6D7DB05D7} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {7C540B0C-4605-450C-82C6-E73735A403A7} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {80218F04-0F60-44FA-9D97-3CB837134488} - System32\Tasks\Norton Identity Safe\Norton Error Processor => C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\SymErr.exe
Task: {83F9CC54-AD9A-4A16-93F1-8503614821C8} - System32\Tasks\ASUS\ASUS AI Suite II Execute => C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2012-03-13] (ASUSTeK Computer Inc.)
Task: {85355830-C5C5-4626-9C0B-BFDDAFA69BF9} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2014-03-19] (Microsoft)
Task: {8BCADE15-B74D-47F2-B4E8-7FE014F3482C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {8BD56B63-FEA9-459B-950B-21004F5106BB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {8C014F5D-1F40-4542-A372-F1F90EED13A8} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-2842136386-2703010871-4203806482-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe
Task: {8F4C3A2F-D807-437E-BAA4-10DF9721ED47} - \Microsoft\Windows\File Classification Infrastructure\Property Definition Sync -> No File <==== ATTENTION
Task: {8F5CCF43-CE5E-425A-8D11-F5BC0D200ECA} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {8FCA3894-ECF2-44A0-AC5F-A845785447DB} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {96700324-2CA0-4E8F-B9FE-54D829B7AC0F} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {96985AB1-5DE0-49DA-8CF1-75EFCF32270B} - System32\Tasks\AdobeAAMUpdater-1.0-ChristianDeskPC-Christian => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-10-14] (Adobe Systems Incorporated)
Task: {96B828D6-5E17-4BC3-A0F9-B4137A659FF5} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2842136386-2703010871-4203806482-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
Task: {A167DC2A-6873-46CD-B829-FFA8E25C9E85} - System32\Tasks\SomotoUpdateCheckerAutoStart => C:\Users\Christian\AppData\Local\FilesFrog Update Checker\update_checker.exe [2013-10-17] (Somoto) <==== ATTENTION
Task: {AB5450C0-06FC-4B7D-AC9C-0102185CE3FE} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2842136386-2703010871-4203806482-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe
Task: {B31042FF-CE33-458F-ABD8-977C649DD092} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {B980C206-8CF6-4D5F-B0A1-51CF2D5305C0} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {BE5D89F3-C282-443D-984D-7518B575CFDE} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {BF2BD0FC-31B1-4E27-97D0-A1DEE377AB2A} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2842136386-2703010871-4203806482-1000UA => C:\Users\Christian\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-09-11] (Facebook Inc.)
Task: {CE482425-4960-4FDD-B3B2-9B14B3B7A2AE} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-08-26] (Microsoft Corporation)
Task: {D905381F-EA74-4D3B-AB6F-BF2D28DFD351} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {DA39A95A-A466-4196-A764-FEEBDB29A6BF} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {DEBE52EC-3106-4F63-BB41-1E972F8F6A00} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {E253DAEC-B688-408F-8D21-396CE1405D7B} - System32\Tasks\{3D336034-F692-466F-B63E-703359D7A5D7} => pcalua.exe -a C:\Users\Christian\Downloads\x45_151205_64.exe -d C:\Users\Christian\Downloads
Task: {E5BC248A-7A33-4B4A-A532-2F509E9857EA} - System32\Tasks\GoogleUpdateTaskMachineUA1d041557818a6e => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {EA4FEA15-F40A-44C1-B8B8-CAFFF02CD4BE} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {ED54F4B6-75A7-43E1-BEFB-FCCAA0F96E9A} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {F0E95C6F-41F4-43B8-9820-4384CC8487E0} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {F14203A6-85AC-4168-B4FF-1FDCED0B432E} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {F6931CFB-24E2-4828-BF69-578C961AFD96} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {F69F6FE4-5806-4A8C-AA90-FB9C55FEEEC1} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {FBC4B584-59C9-4F60-A5E8-0D7EFEEA26BA} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {FF659939-9CFF-40F0-92A8-D461B00A9E5C} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2842136386-2703010871-4203806482-1000Core.job => C:\Users\Christian\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2842136386-2703010871-4203806482-1000UA.job => C:\Users\Christian\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d041557696e34.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d041557818a6e.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
 
==================== Loaded Modules (Whitelisted) ==============
 
2015-07-10 06:00 - 2015-07-10 06:00 - 00028160 _____ () C:\WINDOWS\SYSTEM32\efsext.dll
2015-08-04 12:26 - 2015-08-04 12:26 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-08-28 14:38 - 2015-08-18 02:56 - 02498808 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-28 14:38 - 2015-08-18 02:56 - 02498808 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2013-09-05 01:17 - 2013-09-05 01:17 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2010-10-20 16:23 - 2010-10-20 16:23 - 08801632 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2015-07-10 05:59 - 2015-07-10 05:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-08-11 13:18 - 2015-08-02 20:11 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-07-10 06:00 - 2015-07-10 08:14 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-08-19 15:47 - 2015-08-11 03:58 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-08-11 13:18 - 2015-08-02 20:09 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
 
==================== Alternate Data Streams (Whitelisted) =========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
AlternateDataStreams: C:\ProgramData\TEMP:373E1720
AlternateDataStreams: C:\ProgramData\TEMP:B6418BC9
 
==================== Safe Mode (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="2"
 
==================== EXE Association (Whitelisted) ===============
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 
IE trusted site: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\sony.com -> sony.com
 
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\Control Panel\Desktop\\Wallpaper -> I:\Images\Everything.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
(Currently there is no automatic fix for this section.)
 
HKLM\...\StartupApproved\StartupFolder: => "RealPlayer Cloud Service UI.lnk"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\StartupApproved\Run: => "Clownfish"
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_F95133299531DA24C7CB703BC8432DCE"
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\StartupApproved\Run: => "msnmsgr"
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\StartupApproved\Run: => "Realtek High Defention Control Panel"
 
==================== FirewallRules (Whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{2D0F1339-DA1B-4FD7-92DC-35CB74617F3F}] => (Allow) I:\SteamLibrary\steamapps\common\Anarchy Arcade\AArcade.exe
FirewallRules: [{AC94B733-F58A-4F6B-9B31-4D9E00CC8E6E}] => (Allow) I:\SteamLibrary\steamapps\common\Anarchy Arcade\AArcade.exe
FirewallRules: [{0551B0A1-FFDB-4702-B3B6-621053C1BC67}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{DD39F251-7FA1-4FDF-8F05-72C05D5D64EE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{42A31CA4-C4E7-45F9-ACB5-E73A79F6A759}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{C1DC25B7-0E08-466A-8134-171A83975F3E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{8F4E3467-6402-42A2-A604-CEB7FBDC7146}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{1B2C886F-88D7-4A7C-85E0-89C57DE9A9D4}] => (Allow) I:\SteamLibrary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{E9CFF488-5153-4418-AF3F-CF95373C067E}] => (Allow) I:\SteamLibrary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [UDP Query User{E04A2CB3-B554-45C8-BF9D-D30CF431FDF8}C:\program files (x86)\dayzlauncher\dayzlauncher.exe] => (Allow) C:\program files (x86)\dayzlauncher\dayzlauncher.exe
FirewallRules: [TCP Query User{978196C5-67E5-44DD-8DBD-88964BC67820}C:\program files (x86)\dayzlauncher\dayzlauncher.exe] => (Allow) C:\program files (x86)\dayzlauncher\dayzlauncher.exe
FirewallRules: [{0FCFC04D-551B-428F-A6F4-872DBF523F52}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{59818BDF-01DB-4024-AE3F-C7D25A6E453D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{8CB03426-8949-4799-9192-CBC9CC8E01D4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{8C18392B-0497-44FB-9E4B-A134BC3D03DB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{B54A519A-8B04-4BD6-AE3F-26B9B62A42A9}] => (Allow) C:\Program Files\Autodesk\3ds Max 2015\NVIDIA\Satellite\raysat_3dsmax2015_64.exe
FirewallRules: [{620B3677-1359-4807-B72D-9CD9EFBBB393}] => (Allow) C:\Program Files\Autodesk\3ds Max 2015\NVIDIA\Satellite\raysat_3dsmax2015_64.exe
FirewallRules: [{661D3406-33BC-49DD-9216-66DC0419153E}] => (Allow) C:\Program Files\Autodesk\3ds Max 2015\NVIDIA\Satellite\raysat_3dsmax2015_64server.exe
FirewallRules: [{5794C6EC-BE9B-4DA2-BD2F-565612EE1CF6}] => (Allow) C:\Program Files\Autodesk\3ds Max 2015\NVIDIA\Satellite\raysat_3dsmax2015_64server.exe
FirewallRules: [{D5DC8EA5-A7FA-401B-B3BE-E628370DC445}] => (Allow) I:\SteamLibrary\steamapps\common\Verdun\Verdun.exe
FirewallRules: [{38589CE4-1A6D-43C7-8F2E-4D0F54843071}] => (Allow) I:\SteamLibrary\steamapps\common\Verdun\Verdun.exe
FirewallRules: [{EB6144F7-D339-4CAA-A552-C5E2747F6D06}] => (Allow) E:\Program Files (x86)\Origin Games\BFH\bfh.exe
FirewallRules: [{BC3E07B0-4772-4F73-9125-0D21BD0E9567}] => (Allow) E:\Program Files (x86)\Origin Games\BFH\bfh.exe
FirewallRules: [UDP Query User{7AA0069F-132A-4B1D-BE9C-A2FE9399CD93}C:\users\christian\documents\aftermath\amlauncher.exe] => (Allow) C:\users\christian\documents\aftermath\amlauncher.exe
FirewallRules: [TCP Query User{EF4814AD-8969-40C9-89C6-D5585586C0E6}C:\users\christian\documents\aftermath\amlauncher.exe] => (Allow) C:\users\christian\documents\aftermath\amlauncher.exe
FirewallRules: [{17965463-F10A-4E79-9967-A2672E71281C}] => (Allow) I:\SteamLibrary\steamapps\common\Battlefield Bad Company 2\BFBC2Game.exe
FirewallRules: [{D32C8520-9AB0-40C6-B092-597C53B9CFC8}] => (Allow) I:\SteamLibrary\steamapps\common\Battlefield Bad Company 2\BFBC2Game.exe
FirewallRules: [{C2809041-5A88-4F61-9DF3-28D6459AF0D9}] => (Allow) I:\SteamLibrary\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{665C379A-4795-4638-91D9-E02403A68088}] => (Allow) I:\SteamLibrary\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{8F79BDD0-48D9-4421-A2B5-1B051CC3F878}] => (Allow) E:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [{1123D876-0AD9-422B-B1EA-D74845C932A4}] => (Allow) E:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [{6BD31786-2669-4FB2-B9DF-44DAA5F37311}] => (Allow) E:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{D411D493-8A32-4A6D-B1BD-3343CB7727F1}] => (Allow) E:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{38AB72F4-9BA5-4318-86E5-CB37BD5183C6}] => (Allow) I:\SteamLibrary\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{0740B37A-E32B-49E8-AAD1-94A6A239B4C8}] => (Allow) I:\SteamLibrary\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [UDP Query User{64D79F63-66AD-46FA-8CAF-6333979D2BD9}C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe
FirewallRules: [TCP Query User{678C614D-F0D6-4275-8B38-C20329EAD0D1}C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe
FirewallRules: [UDP Query User{9F407E81-EC45-40C3-BD34-4979D74C9823}C:\program files (x86)\razer\comms\razercomms.exe] => (Allow) C:\program files (x86)\razer\comms\razercomms.exe
FirewallRules: [TCP Query User{E1E3F141-6403-49C6-BB69-4D8214F1CA5F}C:\program files (x86)\razer\comms\razercomms.exe] => (Allow) C:\program files (x86)\razer\comms\razercomms.exe
FirewallRules: [{6D07FC7B-905C-4350-95FF-36FA0637E44A}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\legacy\rust.exe
FirewallRules: [{E13D17A3-37B9-4A97-A335-CBA7062DCB0A}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\legacy\rust.exe
FirewallRules: [{76DA0D22-1680-46FD-8BD1-B9A987384A6A}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty World at War\CoDWaWmp.exe
FirewallRules: [{FE2208DA-73C9-4382-A199-C31E62CE9AE1}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty World at War\CoDWaWmp.exe
FirewallRules: [{F6967FE9-BDFF-4713-BBA3-777E14FEEE87}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty World at War\CoDWaW.exe
FirewallRules: [{51DA8D36-48C0-4BC7-B04E-0318D069F7AC}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty World at War\CoDWaW.exe
FirewallRules: [{4CA90817-9AA9-4A28-BF01-49CC3346654E}] => (Allow) I:\SteamLibrary\steamapps\common\Arma 3 Tools\Publisher\Publisher.exe
FirewallRules: [{E08F54F4-2C98-4BF5-8DE9-360CE616EBE6}] => (Allow) I:\SteamLibrary\steamapps\common\Arma 3 Tools\Publisher\Publisher.exe
FirewallRules: [{9CF90A07-A37D-4E41-935B-C9BFAA49D1BE}] => (Allow) I:\SteamLibrary\steamapps\common\Arma 3 Tools\AddonBuilder\AddonBuilder.exe
FirewallRules: [{754CC947-A824-4B4C-AE0F-FE6A76F57443}] => (Allow) I:\SteamLibrary\steamapps\common\Arma 3 Tools\AddonBuilder\AddonBuilder.exe
FirewallRules: [{C73A1AB2-721A-4A2B-ACB7-33F5BF11C302}] => (Allow) I:\SteamLibrary\steamapps\common\Arma 3 Tools\starter.exe
FirewallRules: [{2D983E4C-7637-4910-AFC2-3934F9292C91}] => (Allow) I:\SteamLibrary\steamapps\common\Arma 3 Tools\starter.exe
FirewallRules: [{A35D9000-AAFE-4CE9-85A1-467DCD6BD23E}] => (Allow) I:\SteamLibrary\steamapps\common\Arma 3 Tools\Arma3Tools.exe
FirewallRules: [{32F7695E-10CE-4C5B-A4AC-F36F9C633AE0}] => (Allow) I:\SteamLibrary\steamapps\common\Arma 3 Tools\Arma3Tools.exe
FirewallRules: [{8C53F307-4C9B-4B63-9EAE-B31BB835F9BA}] => (Allow) I:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{8A91CF5C-D076-43BD-877C-AC3DEFCF9959}] => (Allow) I:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{85649953-721B-4FFA-B21D-6DC0EAEF4553}] => (Block) I:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{EE9B7B75-3550-4CD0-9889-CA1DF553BA87}] => (Block) I:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{BC57ACA6-C7D6-4A7B-AF73-7157EBC904F7}I:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) I:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{60DB3792-1A67-4FE0-B338-E931E9D9C36C}I:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) I:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{C7331429-FEF9-4420-852E-8CC982078E39}] => (Allow) I:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{E8E7091D-1929-48C3-97DA-92EB5E09D358}] => (Allow) I:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{FB673D0B-D310-440C-B109-ECA8408CE64D}] => (Allow) I:\SteamLibrary\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe
FirewallRules: [{77D8FF16-D0DB-4ACE-ABCE-09224F55BF1D}] => (Allow) I:\SteamLibrary\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe
FirewallRules: [{4942271E-DF34-4FB1-9EFB-D5F42B6B03CB}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty Black Ops II\t6sp.exe
FirewallRules: [{AA981EA0-A956-4135-9AAB-090DE7F8A979}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty Black Ops II\t6sp.exe
FirewallRules: [{2E55C175-879E-45F2-9139-4C606B849C66}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty Black Ops II\t6mp.exe
FirewallRules: [{48B33FB9-3851-4968-A6D0-DF012FDCE179}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty Black Ops II\t6mp.exe
FirewallRules: [{B6425EF5-8D43-4E84-9953-576B134C13B2}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty Black Ops II\t6zm.exe
FirewallRules: [{152AB625-83FE-490A-851A-7181ADEE6181}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty Black Ops II\t6zm.exe
FirewallRules: [UDP Query User{3DEB888C-DDC3-4605-AB4F-4543FD78B9BE}I:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) I:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe
FirewallRules: [TCP Query User{01BD8494-8581-47F6-832E-F8AF84F463A0}I:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) I:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe
FirewallRules: [UDP Query User{8AF6CB47-F63A-4C5C-8CFE-38750B75C58F}I:\steamlibrary\steamapps\common\garrysmod\hl2.exe] => (Allow) I:\steamlibrary\steamapps\common\garrysmod\hl2.exe
FirewallRules: [TCP Query User{675EC66B-51B2-406F-9491-8A275D5A8EB5}I:\steamlibrary\steamapps\common\garrysmod\hl2.exe] => (Allow) I:\steamlibrary\steamapps\common\garrysmod\hl2.exe
FirewallRules: [{5998F03F-1B5B-4661-97A1-7F864F7DBBB4}] => (Block) I:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [{37FE2385-20E2-44CD-9CEE-AD637FB0E101}] => (Block) I:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [UDP Query User{CC12BC42-CF43-4A83-AA1F-AF5D93701E63}I:\steamlibrary\steamapps\common\dayz\dayz.exe] => (Allow) I:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [TCP Query User{BA506788-AC90-4B29-AE89-42AFA8DB6371}I:\steamlibrary\steamapps\common\dayz\dayz.exe] => (Allow) I:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [{1EAA1227-58C0-4F39-8A4E-E260559C9B73}] => (Allow) I:\SteamLibrary\steamapps\common\grid 2\grid2.exe
FirewallRules: [{2E9A2F67-B7BA-4FCF-BC5C-846D50AD5279}] => (Allow) I:\SteamLibrary\steamapps\common\grid 2\grid2.exe
FirewallRules: [{75DD1F8C-5A6E-4C37-B6E0-FC4C7B005F8B}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Battlefield 2\BF2.exe
FirewallRules: [{275EDF68-148A-4848-A9AF-D93CF1FE861C}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Battlefield 2\BF2.exe
FirewallRules: [{3337831B-98C1-45E4-B588-C2C8516061CF}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite V2\Launcher\SniperV2Launcher.exe
FirewallRules: [{3EABB4C7-08AD-413B-8CE8-1649C136B5E0}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite V2\Launcher\SniperV2Launcher.exe
FirewallRules: [{ABC5C933-EBA1-4657-83D1-4B42CB47A96D}] => (Allow) C:\Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\BFBC2Updater.exe
FirewallRules: [{6F458F7D-DE1C-4E01-A27E-69AB736DA31F}] => (Allow) C:\Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\BFBC2Updater.exe
FirewallRules: [{54D1AC76-C293-4F19-AD1D-774F4564DC0F}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Ghosts\iw6mp64_ship.exe
FirewallRules: [{EAA5D757-5781-4956-8EFB-7A3D9CCA98BC}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Ghosts\iw6mp64_ship.exe
FirewallRules: [{E434A91A-568B-4C5F-8E97-A536CC43B94B}] => (Block) I:\csgo-ds\srcds.exe
FirewallRules: [{AC3902C9-B06D-4E32-BFAE-0E7E32F70057}] => (Block) I:\csgo-ds\srcds.exe
FirewallRules: [UDP Query User{97145661-B04B-4BAB-BBB5-3513B2BB5B4D}I:\csgo-ds\srcds.exe] => (Allow) I:\csgo-ds\srcds.exe
FirewallRules: [TCP Query User{3BEEBE51-9B0D-488C-A684-2CBD9FEB6D83}I:\csgo-ds\srcds.exe] => (Allow) I:\csgo-ds\srcds.exe
FirewallRules: [{F19A3F06-88C3-4A28-B59A-9A5D81C41C00}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{C673E1D7-3B1A-4528-B1F7-F9B27F3C5F27}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{DA166FBF-F836-4084-91A4-34E97C52AC69}] => (Block) E:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe
FirewallRules: [{D4B0E399-7BA3-40F4-90B9-A4BB418430D8}] => (Block) E:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe
FirewallRules: [UDP Query User{EDCDFF7F-9A9A-41B4-A581-39FBAE484794}E:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe
FirewallRules: [TCP Query User{69DFB23D-23D7-4036-8FB2-5A1FF5459995}E:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe
FirewallRules: [{7BA9AC23-FDAD-41C6-A6C3-5D1621BC0147}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\H1Z1\LaunchPad.exe
FirewallRules: [{763A0ADC-D296-4ACD-B0CA-0B1E1985A967}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\H1Z1\LaunchPad.exe
FirewallRules: [{74BE7A51-C89D-4596-B302-E672DEEE7232}] => (Block) C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe
FirewallRules: [{749CF903-8449-4E90-AE60-B642698AD9A9}] => (Block) C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{95849F70-AD51-4C53-9B7B-E79A12F43C92}C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{E29886C2-35ED-426C-A707-6B60974751C9}C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe
FirewallRules: [{E1BC6CDE-B3BA-4479-BAD6-16AD70683D73}] => (Block) C:\users\christian\desktop\utb\ultimate twitch bot.exe
FirewallRules: [{21993303-43EC-4D0D-94BA-7E3BA79BAEF4}] => (Block) C:\users\christian\desktop\utb\ultimate twitch bot.exe
FirewallRules: [UDP Query User{004C9DAB-866F-49F9-ADC4-8E13B03BE269}C:\users\christian\desktop\utb\ultimate twitch bot.exe] => (Allow) C:\users\christian\desktop\utb\ultimate twitch bot.exe
FirewallRules: [TCP Query User{2585E77C-26C0-4E97-BD64-89C163C98B3B}C:\users\christian\desktop\utb\ultimate twitch bot.exe] => (Allow) C:\users\christian\desktop\utb\ultimate twitch bot.exe
FirewallRules: [{9F0FDE6D-3C94-4199-A516-C5F0FDA3F910}] => (Allow) E:\Program Files (x86)\Farming Simulator 2015\x64\FarmingSimulator2015Game.exe
FirewallRules: [{D1181254-3934-4774-91D0-F5C65810690A}] => (Allow) E:\Program Files (x86)\Farming Simulator 2015\x64\FarmingSimulator2015Game.exe
FirewallRules: [{41EB3386-3D42-4004-9023-DBFBF9763539}] => (Allow) E:\Program Files (x86)\Farming Simulator 2015\x86\FarmingSimulator2015Game.exe
FirewallRules: [{D3B5377B-E21C-45FE-B83D-7DB59C880841}] => (Allow) E:\Program Files (x86)\Farming Simulator 2015\x86\FarmingSimulator2015Game.exe
FirewallRules: [{36246D29-03FE-4157-8062-09EA2640DB1B}] => (Allow) E:\Program Files (x86)\Farming Simulator 2015\FarmingSimulator2015.exe
FirewallRules: [{2F192F0D-1244-4000-8627-D9A906EA1EFF}] => (Allow) E:\Program Files (x86)\Farming Simulator 2015\FarmingSimulator2015.exe
FirewallRules: [{8CDB0143-1D7F-45B9-A88A-FA89F3C22829}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{01D852C3-FF9E-441C-85B1-00E228780BAA}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{2D98EC2C-F1B3-4928-B75F-F3B592AD128E}] => (Block) C:\program files\icechat9\icechat2009.exe
FirewallRules: [{8EB4578C-8350-4FDA-92B6-5E8418438D9A}] => (Block) C:\program files\icechat9\icechat2009.exe
FirewallRules: [UDP Query User{048D8AFC-6BE5-4DFB-9D43-3B14CE530700}C:\program files\icechat9\icechat2009.exe] => (Allow) C:\program files\icechat9\icechat2009.exe
FirewallRules: [TCP Query User{DA672C43-B69C-49A8-967C-A49C46198EBC}C:\program files\icechat9\icechat2009.exe] => (Allow) C:\program files\icechat9\icechat2009.exe
FirewallRules: [{A7386F38-03A7-4866-9CE7-039A304BAD32}] => (Block) C:\program files\hexchat\hexchat.exe
FirewallRules: [{25DFB8D1-9FAA-4A69-AFC4-55FBB0F8F07F}] => (Block) C:\program files\hexchat\hexchat.exe
FirewallRules: [UDP Query User{6F1A0041-1A0E-48C9-A8CC-83FAEFDF5FBF}C:\program files\hexchat\hexchat.exe] => (Allow) C:\program files\hexchat\hexchat.exe
FirewallRules: [TCP Query User{446FD770-50E5-4729-8D96-075CDA104DEA}C:\program files\hexchat\hexchat.exe] => (Allow) C:\program files\hexchat\hexchat.exe
FirewallRules: [{9671F9C8-5F52-4EBE-9C7A-BB1A0C760FAD}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Advanced Warfare\s1_sp64_ship.exe
FirewallRules: [{5682F659-8A13-410B-8AB6-C1C88A906DF1}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Advanced Warfare\s1_sp64_ship.exe
FirewallRules: [{5756E3B3-3D7E-400E-B469-61354AC1F44D}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Advanced Warfare\s1_mp64_ship.exe
FirewallRules: [{82926819-3F81-43C6-93C2-E8FFA66EF8FC}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Advanced Warfare\s1_mp64_ship.exe
FirewallRules: [{1E665E35-9041-4AC2-8629-8074E43824DD}] => (Block) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{9002640C-E6B4-4090-A463-24D8AE5CC958}] => (Block) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{7B2E64F3-88BA-48BD-B538-44C7FBDA98D2}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{E088DEA5-55A6-42F6-A948-EC6D8D11BB58}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{B59D70FB-2C42-407E-87B5-FCBDEA50FD3B}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{61E419F6-DB3C-4488-8186-C05B7D84F926}] => (Block) E:\program files (x86)\a3launcher\a3launcher.exe
FirewallRules: [{1759DA14-DD51-4F0F-B4A2-74784AD8F9B2}] => (Block) E:\program files (x86)\a3launcher\a3launcher.exe
FirewallRules: [UDP Query User{EA8F3AB3-DA70-4F26-A0BC-B76A1547C2A9}E:\program files (x86)\a3launcher\a3launcher.exe] => (Allow) E:\program files (x86)\a3launcher\a3launcher.exe
FirewallRules: [TCP Query User{44BF10DF-52DB-4A21-B090-B26C854D404D}E:\program files (x86)\a3launcher\a3launcher.exe] => (Allow) E:\program files (x86)\a3launcher\a3launcher.exe
FirewallRules: [{C4269C85-B641-4172-9639-4C99CE8D515D}] => (Block) E:\program files (x86)\ubisoft\ubisoft game launcher\games\the crew (worldwide)\thecrew.exe
FirewallRules: [{1FCCF742-9CA2-44D4-B66A-77E27A4D963F}] => (Block) E:\program files (x86)\ubisoft\ubisoft game launcher\games\the crew (worldwide)\thecrew.exe
FirewallRules: [UDP Query User{3F6991A3-6DC9-4539-BA14-C02662E3F79B}E:\program files (x86)\ubisoft\ubisoft game launcher\games\the crew (worldwide)\thecrew.exe] => (Allow) E:\program files (x86)\ubisoft\ubisoft game launcher\games\the crew (worldwide)\thecrew.exe
FirewallRules: [TCP Query User{A4AC7037-6088-44E6-A2D3-E8B3E4A7FB2E}E:\program files (x86)\ubisoft\ubisoft game launcher\games\the crew (worldwide)\thecrew.exe] => (Allow) E:\program files (x86)\ubisoft\ubisoft game launcher\games\the crew (worldwide)\thecrew.exe
FirewallRules: [{E544B5CE-9368-4127-8D73-E4C62DFD26A3}] => (Allow) E:\Program Files (x86)\qBittorrent\qbittorrent.exe
FirewallRules: [{6F9FF2FD-72FE-4541-B629-04EC3D350E1F}] => (Allow) E:\Program Files (x86)\qBittorrent\qbittorrent.exe
FirewallRules: [{645716AA-4F80-4F4A-A038-CAD16D57DE99}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\The War Z\WarZlauncher.exe
FirewallRules: [{682F3E20-B78B-4E8C-979F-30E87ABFE181}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\The War Z\WarZlauncher.exe
FirewallRules: [{D2520F5C-6838-426B-BD25-554F19DA3E9E}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{F2F21E75-3F1E-450A-A7B3-1410B8FD58C4}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{F4AECD3D-2B4F-46DD-A3E5-02DC80AE6460}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{35DE0E45-2758-479D-ABA8-38A9BC52D8D2}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{B72644D2-D0CC-4817-84B1-841DCAF0FA02}] => (Block) E:\program files (x86)\steam\steamapps\common\sniper elite 3\bin\sniperelite3.exe
FirewallRules: [{1D65D144-A7EE-4802-AA27-C30C7E4E2B1C}] => (Block) E:\program files (x86)\steam\steamapps\common\sniper elite 3\bin\sniperelite3.exe
FirewallRules: [UDP Query User{A7083EAB-474D-4C48-8B4F-B47BA258DD5D}E:\program files (x86)\steam\steamapps\common\sniper elite 3\bin\sniperelite3.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\sniper elite 3\bin\sniperelite3.exe
FirewallRules: [TCP Query User{3F670A14-9CB6-4CE0-995E-CB4DCD97932E}E:\program files (x86)\steam\steamapps\common\sniper elite 3\bin\sniperelite3.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\sniper elite 3\bin\sniperelite3.exe
FirewallRules: [{4BDF2FC0-FB41-436E-811A-7A0F3D600951}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite 3\Launcher\Sniper3Launcher.exe
FirewallRules: [{4F32DAD1-109E-4FDC-8B31-37F0528C06E1}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite 3\Launcher\Sniper3Launcher.exe
FirewallRules: [{3E1B75ED-8206-4D03-83BF-A86DB4FC0980}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Evolve\Bin64_SteamRetail\StaticLauncher64.exe
FirewallRules: [{4A8B7D56-DF9D-4B40-91FD-3757CF9462A7}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Evolve\Bin64_SteamRetail\StaticLauncher64.exe
FirewallRules: [{914BD39D-636E-4091-AD86-B2D8BE0F5BC6}] => (Allow) %ProgramFiles% (x86)\OBS\OBS.exe
FirewallRules: [{7A971088-6B24-4876-90D0-C9520AE9F184}] => (Allow) %ProgramFiles% (x86)\OBS\OBS.exe
FirewallRules: [{E8B5E2CF-3018-4300-BC2B-CE9227447270}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Five Nights at Freddy's\FiveNightsatFreddys.exe
FirewallRules: [{68207FE2-B217-4752-B847-C48EF0F9C6EC}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Five Nights at Freddy's\FiveNightsatFreddys.exe
FirewallRules: [{53014FE9-0C98-4EEE-8C7A-5D65D324E14F}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\PAYDAY The Heist\payday_win32_release.exe
FirewallRules: [{4B29946B-825F-4FFA-B0A1-3FB8F40F9CA0}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\PAYDAY The Heist\payday_win32_release.exe
FirewallRules: [{FB875C72-A285-4428-9422-36B734E96E86}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Fistful of Frags\sdk\hl2.exe
FirewallRules: [{678EDA25-C4CE-49DF-96BA-D5A854E03868}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Fistful of Frags\sdk\hl2.exe
FirewallRules: [{F5EC08F4-F16C-4F49-B21D-983A9EE84213}] => (Block) C:\users\christian\appdata\local\apps\2.0\1l4n9v4t.pwg\v2tvjk7n.ohq\epoc..tion_0000000000000000_0000.0000_52a3e75d6f96edf6\epoch launcher.exe
FirewallRules: [{8566FCBE-AFF7-4191-8170-192D311625CD}] => (Block) C:\users\christian\appdata\local\apps\2.0\1l4n9v4t.pwg\v2tvjk7n.ohq\epoc..tion_0000000000000000_0000.0000_52a3e75d6f96edf6\epoch launcher.exe
FirewallRules: [UDP Query User{C1DA08BE-2395-4260-88FD-6793AD1D057D}C:\users\christian\appdata\local\apps\2.0\1l4n9v4t.pwg\v2tvjk7n.ohq\epoc..tion_0000000000000000_0000.0000_52a3e75d6f96edf6\epoch launcher.exe] => (Allow) C:\users\christian\appdata\local\apps\2.0\1l4n9v4t.pwg\v2tvjk7n.ohq\epoc..tion_0000000000000000_0000.0000_52a3e75d6f96edf6\epoch launcher.exe
FirewallRules: [TCP Query User{01275927-0605-47BA-A136-1F1D7A94F035}C:\users\christian\appdata\local\apps\2.0\1l4n9v4t.pwg\v2tvjk7n.ohq\epoc..tion_0000000000000000_0000.0000_52a3e75d6f96edf6\epoch launcher.exe] => (Allow) C:\users\christian\appdata\local\apps\2.0\1l4n9v4t.pwg\v2tvjk7n.ohq\epoc..tion_0000000000000000_0000.0000_52a3e75d6f96edf6\epoch launcher.exe
FirewallRules: [{7BA4D1D3-426E-49D1-917D-C6B97B6FCE0A}] => (Allow) E:\Program Files (x86)\Origin Games\Dragon Age\bin_ship\daorigins.exe
FirewallRules: [{38A7CA39-9EB2-4EEB-8C25-D6296B6D09CF}] => (Allow) E:\Program Files (x86)\Origin Games\Dragon Age\bin_ship\daorigins.exe
FirewallRules: [{D5636DF6-2088-4651-B0DE-00C64EE59BD8}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\nmrih\sdk\hl2.exe
FirewallRules: [{92BE24F5-5726-4299-9256-6A223DC54F77}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\nmrih\sdk\hl2.exe
FirewallRules: [{7616394D-F20D-4C7D-9FC9-AA3D12C9F6AF}] => (Allow) C:\Program Files (x86)\BitTorrent Sync\BTSync.exe
FirewallRules: [{C70DD2EE-6B98-4FED-A0EA-9EB8AE479C6E}] => (Allow) C:\Program Files (x86)\BitTorrent Sync\BTSync.exe
FirewallRules: [{C8EBAAE4-0988-4689-B670-B98F6ECBA2C0}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 3\arma3launcher.exe
FirewallRules: [{7BB5405C-0C3E-4AF0-8D42-8CF9B89B1FF2}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 3\arma3launcher.exe
FirewallRules: [{EF69FCF3-1E6F-4DAD-837A-80038F48F057}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 3\arma3.exe
FirewallRules: [{66F4DAAC-7BEC-4BF2-98C5-0BF4793FA8E0}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 3\arma3.exe
FirewallRules: [{8DB42447-9A26-4AD9-BA7E-629E650FFA09}] => (Allow) c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe
FirewallRules: [{543B84F1-8A98-472C-B3A5-B0155C552E5E}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Insurgency Dedicated Server\srcds.exe
FirewallRules: [{C4A2D824-6731-46D3-8D60-2420A938474C}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Insurgency Dedicated Server\srcds.exe
FirewallRules: [{C0050EB5-CEAB-458F-B258-68087DD23D08}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Source SDK Base 2013 Multiplayer\hl2.exe
FirewallRules: [{1CAB2B16-FA70-41BE-9524-E4857492AC92}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Source SDK Base 2013 Multiplayer\hl2.exe
FirewallRules: [{8D0B282B-4AEC-41A8-9B29-1C0EFF4C2DEE}] => (Allow) E:\Program Files (x86)\Origin Games\Wing Commander III\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{5E1A7DA1-072A-42D2-AB9E-D5F1F8836E4D}] => (Allow) E:\Program Files (x86)\Origin Games\Wing Commander III\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{612078B8-897B-4912-B99C-245922391B15}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Contagion\contagionds.exe
FirewallRules: [{98EF194A-3297-49BA-B29C-855F3C750D0B}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Contagion\contagionds.exe
FirewallRules: [{C5DD5A2B-148D-470B-A3CD-B2A2643F8162}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Contagion\contagion.exe
FirewallRules: [{6E01B8BF-09A1-46C8-A472-ABEACC4C1FB6}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Contagion\contagion.exe
FirewallRules: [{C5A2B965-4599-4A24-9800-AD1625A0D1B2}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Kerbal Space Program\KSP.exe
FirewallRules: [{C5C53A1A-AF87-4831-AC8B-0D71D05E97BE}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Kerbal Space Program\KSP.exe
FirewallRules: [{CC979E70-EE6D-450F-BB84-100C07764B9A}] => (Allow) E:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{68F1DF9E-23D5-4D47-BA5B-BB3F576CC5D7}] => (Allow) E:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{A2EE57E0-1C49-4156-A441-152178B2AAF7}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Unturned\Unturned.exe
FirewallRules: [{63359197-325D-4DE4-9993-38439F877E9F}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Unturned\Unturned.exe
FirewallRules: [{7511BD15-3673-4A58-9B60-6082B2D5D4D8}] => (Allow) E:\Program Files (x86)\Origin Games\Peggle Deluxe\Peggle.exe
FirewallRules: [{87CFAC63-0BEB-4F9B-A645-D9A4B3AA2388}] => (Allow) E:\Program Files (x86)\Origin Games\Peggle Deluxe\Peggle.exe
FirewallRules: [{3560DD03-0FD8-4920-8DBC-D25FC55B9F63}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA_BE.exe
FirewallRules: [{275925D9-9912-4D27-AF43-1DCFA3BDD062}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA_BE.exe
FirewallRules: [{DCF5D9BE-E795-477A-9AC0-C2C87EE88608}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{A09F7A11-1080-4EAD-9F30-EFFACA190E94}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{EF36D240-0BD1-444B-ACB1-3457090D68F6}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe
FirewallRules: [{2DA55597-BCF6-45FF-9DF1-79CFE8211B12}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe
FirewallRules: [{FFA24F43-C2EC-4B78-9D7D-D62099A0FFF6}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Tomb Raider\TombRaider.exe
FirewallRules: [{57A5F622-9975-4975-950D-1031AC229361}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Tomb Raider\TombRaider.exe
FirewallRules: [{487A90D4-F4B0-420E-B82F-5032F0F9343B}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\The Stanley Parable\stanley.exe
FirewallRules: [{2FDB4601-3FAC-4818-8BFA-24CAB763662C}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\The Stanley Parable\stanley.exe
FirewallRules: [{153E8E23-3347-4948-A3FA-EFD0E053E66E}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\The Forest\TheForest.exe
FirewallRules: [{82E3D6DF-430D-4A9D-9D8D-8B38FB051BDF}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\The Forest\TheForest.exe
FirewallRules: [{BDDC0E72-F8B5-4CE4-9142-2FAC834964B7}] => (Block) C:\users\christian\desktop\mirc.exe
FirewallRules: [{08D181D9-6761-425A-9D5A-7BCA23A3CE54}] => (Block) C:\users\christian\desktop\mirc.exe
FirewallRules: [UDP Query User{F013D7F4-0BC9-45E3-B664-9FB2CC90DC8E}C:\users\christian\desktop\mirc.exe] => (Allow) C:\users\christian\desktop\mirc.exe
FirewallRules: [TCP Query User{DB4A2D57-8658-4E56-B4EC-071A5A7B889A}C:\users\christian\desktop\mirc.exe] => (Allow) C:\users\christian\desktop\mirc.exe
FirewallRules: [{D66A4A87-0599-4416-87A2-CB1D17A2E0A4}] => (Block) C:\program files (x86)\trillian\plugins\skypekit.exe
FirewallRules: [{63D970FA-6CC7-4D0B-8599-9B20B35D3AEB}] => (Block) C:\program files (x86)\trillian\plugins\skypekit.exe
FirewallRules: [UDP Query User{E87B4ABA-CBD0-4CAE-A640-C56F02D96DD1}C:\program files (x86)\trillian\plugins\skypekit.exe] => (Allow) C:\program files (x86)\trillian\plugins\skypekit.exe
FirewallRules: [TCP Query User{B7C35EEE-59A7-46C4-BFC4-DE52267375EF}C:\program files (x86)\trillian\plugins\skypekit.exe] => (Allow) C:\program files (x86)\trillian\plugins\skypekit.exe
FirewallRules: [{39897C98-E207-4055-A668-BDDD3753399B}] => (Block) C:\program files (x86)\mirc\mirc.exe
FirewallRules: [{38F27F7C-C936-4E42-8EC0-0A51B8138707}] => (Block) C:\program files (x86)\mirc\mirc.exe
FirewallRules: [UDP Query User{CC5E5C3D-8605-45F4-8F05-B2346F113FA1}C:\program files (x86)\mirc\mirc.exe] => (Allow) C:\program files (x86)\mirc\mirc.exe
FirewallRules: [TCP Query User{8A6C500D-F18B-4544-A85E-1B354F36AD3B}C:\program files (x86)\mirc\mirc.exe] => (Allow) C:\program files (x86)\mirc\mirc.exe
FirewallRules: [{15776FE0-1E52-47BF-885C-19BE25DEE08F}] => (Block) C:\users\christian\documents\ccglauncher\beta_103718\arma2oa.exe
FirewallRules: [{FC966D16-D2AB-441B-9835-D71FEA43395E}] => (Block) C:\users\christian\documents\ccglauncher\beta_103718\arma2oa.exe
FirewallRules: [UDP Query User{4F95AA64-BE70-4EB1-BF4A-BF4D32AD2BA2}C:\users\christian\documents\ccglauncher\beta_103718\arma2oa.exe] => (Allow) C:\users\christian\documents\ccglauncher\beta_103718\arma2oa.exe
FirewallRules: [TCP Query User{1FE3E238-4138-476D-90C4-D05849CBE061}C:\users\christian\documents\ccglauncher\beta_103718\arma2oa.exe] => (Allow) C:\users\christian\documents\ccglauncher\beta_103718\arma2oa.exe
FirewallRules: [{6BA99BE4-DF0E-465B-80A7-1D21852ADD3E}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\diriptide\DeadIslandGame_x86_rwdi.exe
FirewallRules: [{9A13FC8B-2B67-48AB-83FD-8C5423B6DC98}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\diriptide\DeadIslandGame_x86_rwdi.exe
FirewallRules: [{6C8A7949-A880-4A72-82D6-2EAF16570E25}] => (Allow) C:\Users\Christian\AppData\Roaming\Spotify\spotify.exe
FirewallRules: [{E0E3356F-0986-40EE-BCA7-56B38C4CC48B}] => (Allow) C:\Users\Christian\AppData\Roaming\Spotify\spotify.exe
FirewallRules: [{3A49D075-8A8B-4973-89D1-11AB19135010}] => (Allow) E:\Program Files (x86)\Origin Games\Plants vs. Zombies\PlantsVsZombies.exe
FirewallRules: [{0AAA334C-1588-4C97-A8CC-33D82D8C7372}] => (Allow) E:\Program Files (x86)\Origin Games\Plants vs. Zombies\PlantsVsZombies.exe
FirewallRules: [{907DD1A3-EE9B-4E88-AC5D-CDF53CBD0D02}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\South Park - The Stick of Truth\South Park - The Stick of Truth.exe
FirewallRules: [{8555DB90-C8EE-405F-B548-92F163227B32}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\South Park - The Stick of Truth\South Park - The Stick of Truth.exe
FirewallRules: [{206382DC-307C-4869-9043-F603D4896945}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Source SDK Base\hl2.exe
FirewallRules: [{011B63DC-531F-498E-B814-D396967E2BD5}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Source SDK Base\hl2.exe
FirewallRules: [{3FFF5A96-F435-409B-ABD3-752711E61C92}] => (Allow) E:\Program Files (x86)\Origin Games\Dead Space\Dead Space.exe
FirewallRules: [{6C9F8237-7C58-4F61-BE3A-70E756F224B1}] => (Allow) E:\Program Files (x86)\Origin Games\Dead Space\Dead Space.exe
FirewallRules: [{7D454C6B-0944-4173-9D92-36C408711414}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\insurgency2\insurgency.exe
FirewallRules: [{71FEB999-FBC2-4EAC-8CDE-DAF959F74CF8}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\insurgency2\insurgency.exe
FirewallRules: [UDP Query User{5B7B95B0-335C-43A6-8B5A-B4FA43D2CD11}E:\games\paintball2\paintball2.exe] => (Allow) E:\games\paintball2\paintball2.exe
FirewallRules: [TCP Query User{312F4EFC-ACA7-44F5-82E3-E0B52C31C6B1}E:\games\paintball2\paintball2.exe] => (Allow) E:\games\paintball2\paintball2.exe
FirewallRules: [{A86B5671-E22E-4679-B63E-B99747320D79}] => (Block) E:\breaking point\breakingpoint.exe
FirewallRules: [{F2C6CCAD-BF88-4D11-9B56-ABC6AC0E5F22}] => (Block) E:\breaking point\breakingpoint.exe
FirewallRules: [UDP Query User{7167B965-612D-418D-90AC-511E92D64319}E:\breaking point\breakingpoint.exe] => (Allow) E:\breaking point\breakingpoint.exe
FirewallRules: [TCP Query User{E677FC83-0F35-4CD6-92FF-787BE6925872}E:\breaking point\breakingpoint.exe] => (Allow) E:\breaking point\breakingpoint.exe
FirewallRules: [{09DB1715-F680-45E6-BD79-2C99935D32D8}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{C740A35B-709F-4C23-8929-5969F03A621F}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{3690E4F7-2EC2-4C0D-B575-5B6E7F7970DC}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Pacific Skies\AcePatrol2.exe
FirewallRules: [{0EFCB97F-702C-4332-AF8E-8CF685C28D09}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Pacific Skies\AcePatrol2.exe
FirewallRules: [{C897C1A4-0CF5-4E13-BD9B-A10D949B4B7D}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization IV Warlords\Warlords\Civ4Warlords_PitBoss.exe
FirewallRules: [{3DE9425A-F819-47B3-B64F-4FE9697D4762}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization IV Warlords\Warlords\Civ4Warlords_PitBoss.exe
FirewallRules: [{1876C470-33B4-4A68-B706-D0262CF7F993}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization IV Warlords\Warlords\Civ4Warlords.exe
FirewallRules: [{7CC5D15A-A951-4D03-919B-0B3FAFEBBA83}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization IV Warlords\Warlords\Civ4Warlords.exe
FirewallRules: [{57BCE7A2-7CAD-4276-A213-51167C47B656}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Civilization IV Colonization\Colonization.exe
FirewallRules: [{BA6F286D-EBA1-4255-8CA7-8D15AAC13F70}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Civilization IV Colonization\Colonization.exe
FirewallRules: [{4BF50BF8-5539-46DE-86E3-C824F1C2290B}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization IV Beyond the Sword\Beyond the Sword\Civ4BeyondSword.exe
FirewallRules: [{D5D9AA7F-C9E8-45BE-A61B-A34ECBE3E364}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization IV Beyond the Sword\Beyond the Sword\Civ4BeyondSword.exe
FirewallRules: [{A0EDD696-E4DD-44D2-BC9B-E0D8C99FCEFF}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Ace Patrol\AcePatrol.exe
FirewallRules: [{22D0398F-4EED-4A71-9BAE-C4C247D4705A}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Ace Patrol\AcePatrol.exe
FirewallRules: [{22AADF9A-C352-49EC-85A3-85E2D823BCAE}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization III Complete\Conquests\Civ3Conquests.exe
FirewallRules: [{52577A5F-F4FD-4885-9E21-ECE740D26030}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization III Complete\Conquests\Civ3Conquests.exe
FirewallRules: [{B3BFF787-93FA-41BD-82FC-E092B85F4ED9}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization IV\Civilization4.exe
FirewallRules: [{6C04C940-71AB-4A1C-AD60-0460FE7F199E}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization IV\Civilization4.exe
FirewallRules: [{32A3DD0D-39BF-4643-851D-3BCFEE2E8321}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Railroads\RailRoads.exe
FirewallRules: [{E14C5CB0-2828-454F-9E79-A23F8AC65549}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Railroads\RailRoads.exe
FirewallRules: [{D273C666-E61C-4BD2-80C3-36869B13EB44}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{D5E9FF72-10FB-4A40-BB93-44784FC46443}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{08AD63A0-2C98-414A-A7B6-159D845BA84E}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{3A933C25-8FAE-42A1-BEAB-EC002F37D815}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{46FD8605-CFF7-4348-A914-D296D48EB8D9}] => (Allow) LPort=7935
FirewallRules: [{5918BA56-2422-4977-A0F9-305DC1091515}] => (Allow) E:\Program Files\Adobe Flash Builder 4.6\FlashBuilder.exe
FirewallRules: [{F849273C-32CF-4354-BB13-2BCB0C3B15E8}] => (Allow) E:\Program Files\Adobe Flash Builder 4.6\FlashBuilder.exe
FirewallRules: [{143A356A-1D30-4808-AD24-3313E5159D9C}] => (Block) E:\program files (x86)\paradox interactive\victoria 2\v2game.exe
FirewallRules: [{63E7B07D-D29E-4DD2-840D-E765A65A9C61}] => (Block) E:\program files (x86)\paradox interactive\victoria 2\v2game.exe
FirewallRules: [UDP Query User{F7CB4854-27F8-4F7C-B3F6-5E9B4246FEE8}E:\program files (x86)\paradox interactive\victoria 2\v2game.exe] => (Allow) E:\program files (x86)\paradox interactive\victoria 2\v2game.exe
FirewallRules: [TCP Query User{9A2DEF4F-4C4B-4C13-8BC2-CA99A2E2E0C6}E:\program files (x86)\paradox interactive\victoria 2\v2game.exe] => (Allow) E:\program files (x86)\paradox interactive\victoria 2\v2game.exe
FirewallRules: [{F9CCFE08-25BB-42FE-9AC6-8DBAAFFD3DF1}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\SourceSDK\bin\SDKLauncher.exe
FirewallRules: [{4BF263BB-6F96-4564-8D3A-597581022498}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\SourceSDK\bin\SDKLauncher.exe
FirewallRules: [{922F8E8E-7893-4E47-B883-6CBF5F6803FB}] => (Allow) LPort=8317
FirewallRules: [{C9F11037-8DD8-4156-886C-378131E6B6F3}] => (Block) E:\program files (x86)\steam\steamapps\common\war thunder\aces.exe
FirewallRules: [{DB715758-3CB3-4683-80CC-F04183F89BBC}] => (Block) E:\program files (x86)\steam\steamapps\common\war thunder\aces.exe
FirewallRules: [UDP Query User{26E89064-CAFD-44B9-AA9B-BD04EA3FCD4B}E:\program files (x86)\steam\steamapps\common\war thunder\aces.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\war thunder\aces.exe
FirewallRules: [TCP Query User{C8B936E8-E0CC-4F6E-82DB-B2A715D93292}E:\program files (x86)\steam\steamapps\common\war thunder\aces.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\war thunder\aces.exe
FirewallRules: [{EF4BFFDE-C39A-428C-BFEF-75D4FD05F155}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\War Thunder\launcher.exe
FirewallRules: [{3184E323-F483-4FED-A52F-0CB33E2B288F}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\War Thunder\launcher.exe
FirewallRules: [{329F7472-7C48-446D-AF6E-BC5639CB7A6F}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Portal\hl2.exe
FirewallRules: [{6D537511-3ADF-453B-9825-0762FABAC0E4}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Portal\hl2.exe
FirewallRules: [{01EBD104-D643-4E2C-AD9B-648D6FF30724}] => (Block) E:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe
FirewallRules: [{0F5B2CB5-DDCA-4984-B801-5A5DF6BB3654}] => (Block) E:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe
FirewallRules: [UDP Query User{C3F648C2-39EA-405F-8BDE-49A42BB5B5C3}E:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe
FirewallRules: [TCP Query User{B245CE42-05BF-4780-B023-225FAE7F8D2A}E:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe
FirewallRules: [{52998493-A823-4FA0-8560-403D3564975D}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe
FirewallRules: [{F9520F71-83B9-48D9-A250-B4AC0B99A16B}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe
FirewallRules: [{09DA31BA-F89D-4F2C-914E-4FD7897659F8}] => (Block) E:\program files (x86)\steam\steamapps\common\the war z\infestation.exe
FirewallRules: [{8672B3D0-D55F-4E25-B3D7-49B7746E9E40}] => (Block) E:\program files (x86)\steam\steamapps\common\the war z\infestation.exe
FirewallRules: [UDP Query User{A08387E5-BBA9-468E-BDB5-51AE8176EFC5}E:\program files (x86)\steam\steamapps\common\the war z\infestation.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\the war z\infestation.exe
FirewallRules: [TCP Query User{DCB62410-5A8C-40CB-B393-0C2DD37942D3}E:\program files (x86)\steam\steamapps\common\the war z\infestation.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\the war z\infestation.exe
FirewallRules: [{1BB17B44-17A0-4A92-ABA0-46394947D76E}] => (Allow) LPort=30033
FirewallRules: [{DF22C65E-3A9C-49D1-B187-031F5412C68D}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\dota.exe
FirewallRules: [{49D4B4C1-BBB0-4611-9AD2-6C9206F89C2E}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\dota.exe
FirewallRules: [{3C583985-605A-4EA0-BF00-0F5AB39D5FAB}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{C79CFFBC-FCEA-4DE0-80F1-6CC875D07A14}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{62413B64-C4F6-49B0-AD5D-B09B1B1D6692}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{EBFA8197-DFC9-4673-B1DB-A6361D7A2682}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{4FD79604-65B9-4C95-BF77-DB14D6C828BC}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{88360E76-2C16-4C5B-B466-FE463848908B}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{DDE01896-924A-4BC4-8558-C1A8510D658A}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Just Cause 2\JustCause2.exe
FirewallRules: [{A523ACC5-F48A-4055-861A-F092C64B21D0}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Just Cause 2\JustCause2.exe
FirewallRules: [{FBEC1B12-B0F2-49F4-99DB-51F45EC06090}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Poker Night 2\PokerNight2.exe
FirewallRules: [{95F9D666-F7CC-4230-8B4F-E2CDCC3F24B6}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Poker Night 2\PokerNight2.exe
FirewallRules: [{331C2191-D384-421C-A511-9F4111A9B841}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Poker Night at the Inventory\CelebrityPoker.exe
FirewallRules: [{463ECF8B-3D60-4D86-A1BA-4E4C2C0D0936}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Poker Night at the Inventory\CelebrityPoker.exe
FirewallRules: [{B469DAFC-C1FA-482E-AA90-D0F997BD00D0}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Just Cause 2 - Multiplayer Mod\JcmpLauncher.exe
FirewallRules: [{18BFAEEC-C5BE-4DB8-956B-41AE272D6B69}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Just Cause 2 - Multiplayer Mod\JcmpLauncher.exe
FirewallRules: [{D1F20684-6BFE-4849-A5D8-E492A6B6787B}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{A28DCCC5-7FFB-4728-8650-572CAF922715}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{4FA80281-8B0A-4430-A48E-5E834837929F}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{BA296C4C-5E82-43F8-97F2-5A7B159B8A83}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{849ADED2-7A6B-460D-BEC7-654270D256F0}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{5000D550-9413-4BC1-BA3F-9FC7FD84B043}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{92F55CA7-7C9B-4781-858B-8177F09E74AA}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{493AEE7E-58C5-4296-8253-7504464F7610}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{2675D07A-CFE1-4CDD-9005-A8E09686A8ED}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{370DC8D2-8D35-4A5F-AC04-FDA59E48B3F1}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{BBD83CD4-D50F-40D6-880C-06D9B3129AC0}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{CEBDEE9C-F559-4022-A7FE-0010BF0A5771}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{11506048-548C-4494-9AA7-48DBD7967768}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{C7374F3D-97CB-40B9-A621-C692CDBA1BD1}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{599C0F32-9E41-4D61-96D7-1E4515C0B973}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{DECA1E13-97C2-4F4B-A6E6-2E641536825C}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{8E5164C5-3B9C-4EDA-84F4-F59BEDDF960A}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{73F45CDF-E960-4518-803C-CC930DE32BBD}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{B88C6E36-5F9B-46F4-BB1F-DC86A8167C25}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{CCC99E9B-B055-4909-AFEF-84AA57C17741}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{A45D6167-BDBA-4956-AE41-4778B853CA08}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Portal 2\portal2.exe
FirewallRules: [{DCD8E182-B839-410D-B84A-AA3C56475E21}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Portal 2\portal2.exe
FirewallRules: [{008D8112-B18A-4860-A56A-BDC09D1F54B2}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{2B08C08E-971F-4B27-B3C6-96925BCA0075}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{D1F5F36C-F430-4686-ABCE-F605B408E782}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{F9CABDFC-0DBF-4615-A68B-034EF7B6B5FF}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{E1D4EC1C-D4DB-4169-B9F7-89D025EAB1C7}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{EB8C7038-3A1E-4E3F-8986-732A2F002198}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{4063916F-6C37-40D2-8F36-B39FA78A4A06}] => (Block) E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oaserver.exe
FirewallRules: [{5F071A74-3E33-4485-8770-B636CA4F5515}] => (Block) E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oaserver.exe
FirewallRules: [UDP Query User{9C8CE3A8-4BA2-4E3D-8A46-A1141336AF83}E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oaserver.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oaserver.exe
FirewallRules: [TCP Query User{8B2D6374-1F6D-4FDA-AD13-6FD8A022AAB5}E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oaserver.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oaserver.exe
FirewallRules: [{32FD03D1-F654-4CC4-8800-ED56E790FB4F}] => (Block) E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oaserver.exe
FirewallRules: [{49D85312-3E87-4E4A-A31E-FA8403CC155E}] => (Block) E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oaserver.exe
FirewallRules: [UDP Query User{C962B6B2-45C7-4CBA-A20C-2E5646E14DA4}E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oaserver.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oaserver.exe
FirewallRules: [TCP Query User{853F6EB9-CC7C-48AD-A3F6-FFCE334F45EA}E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oaserver.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oaserver.exe
FirewallRules: [{6799EBDF-3564-47EF-A6DD-99DFE49F2D31}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{4780A5BD-7C60-4654-941E-8BD4C5C8EEAA}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{4A5718E2-7868-4FE6-A7FD-DC64CED647CE}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 3 Server\arma3server_readme.txt
FirewallRules: [{87EFBE50-9FD6-4CF0-8BDC-ABCF8CFE949A}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 3 Server\arma3server_readme.txt
FirewallRules: [{CCD5D7E3-915C-4AAE-8DA8-7CA5B37E5DAC}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops Rcon\BlackOpsRcon.exe
FirewallRules: [{B792AB39-7844-4712-8DD1-1A0BDFAFFE84}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops Rcon\BlackOpsRcon.exe
FirewallRules: [{F937B0A8-887C-4DE7-82FB-75DD3D37D822}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{37337C8C-3B38-4EFD-8503-57CC1F5D3B39}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{BAB4A83C-6925-434E-9C8A-61CB727D38AB}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{C990A3DF-3505-4BFC-8F25-2E09F1CE1092}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{1177576B-228E-4F5A-8FCD-719525C1620D}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [{0FCFAD7D-6768-4698-9613-ECC5CCA343C9}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [{EB7EF4E2-8708-4AE3-8CB9-5D1FA50E02F9}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{FA3A7C39-83C9-4D33-A7ED-800E86FA0833}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{EF82017E-4458-4842-B15C-2A3F5FB42D4A}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{81116DED-8909-4AAE-A32D-7F31B85C89C4}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{F9D975EF-2918-4051-B730-A2A60E60457D}] => (Block) E:\program files (x86)\steam\steamapps\common\arma 3\arma3server.exe
FirewallRules: [{1B7AC9D8-5B4A-4755-BF29-2BC5E2801004}] => (Block) E:\program files (x86)\steam\steamapps\common\arma 3\arma3server.exe
FirewallRules: [UDP Query User{E688BBB4-9846-47DC-875E-838C765111CA}E:\program files (x86)\steam\steamapps\common\arma 3\arma3server.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\arma 3\arma3server.exe
FirewallRules: [TCP Query User{1B8A3C2B-994B-45E7-8D9C-63CDF993CBE2}E:\program files (x86)\steam\steamapps\common\arma 3\arma3server.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\arma 3\arma3server.exe
FirewallRules: [{878D05F4-8CF9-46A6-B395-8F34D55BC1D1}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\dota.exe
FirewallRules: [{C7F3DFEB-2594-4EF0-BB94-E041D5942BEF}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\dota.exe
FirewallRules: [{E5F98A24-1088-49BB-A671-FD2EFFCA0C94}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Dungeon Defenders\Binaries\Win32\DungeonDefenders.exe
FirewallRules: [{42DD6C98-1334-42E6-B755-6D6D8B1D5011}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Dungeon Defenders\Binaries\Win32\DungeonDefenders.exe
FirewallRules: [{F61013F3-F635-423C-8FAB-B5EB3B722E84}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Magicka\Magicka.exe
FirewallRules: [{5D2202A0-1588-4F92-AA0C-DB4275B335EB}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Magicka\Magicka.exe
FirewallRules: [{2BCCB500-F629-49FD-806C-DDF412C0CA92}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\FTL Faster Than Light\FTLGame.exe
FirewallRules: [{B33626D6-6D58-4759-ABA9-A3AF984BDD77}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\FTL Faster Than Light\FTLGame.exe
FirewallRules: [{2509876C-237C-4146-BB1B-5EA18B1A744F}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{8AFCA206-D4C0-4388-8228-668D60C15795}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{C46A42D4-2A9E-483B-8AA3-41A77373ACCA}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Cities XL Platinum\CitiesXL_Platinum.exe
FirewallRules: [{4B7C4AB1-0446-468B-B516-1CACE7473C17}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Cities XL Platinum\CitiesXL_Platinum.exe
FirewallRules: [{8AF0B653-0D57-4237-AE9F-7CE5EB38FB01}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\CastleCrashers\castle.exe
FirewallRules: [{1DD1F6D1-4854-4208-8DA0-E470F30D701D}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\CastleCrashers\castle.exe
FirewallRules: [{38CED98B-6172-4658-A3CC-19F9B1D622EC}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{345FCC5F-5DD5-4A91-8483-2B45143C542B}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{39609370-7AE1-435A-B651-D96B20A99C98}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOpsMP.exe
FirewallRules: [{8BB6470C-274F-4A1F-B712-D1A0671F0809}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOpsMP.exe
FirewallRules: [{222482AE-3EE7-4004-ABAB-1D4CD383EF61}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{3E6DBB95-BC9F-4481-BDDF-B8B735784D7C}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{736A35CE-4052-433A-A5E5-536C5F420D70}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{980AFB78-53CF-4834-93D6-2501FDF681B0}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{756E8505-B62C-4AA2-9E75-378FA39436A2}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{D63B2D37-4B19-4312-A3A3-AD00EEB24C15}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{7CCCE7E9-2108-49A4-AC96-8B79384B0535}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{E813535E-D420-4DF3-A67F-9F8C27289C3C}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{58CBA23C-870C-4C77-A24B-0083E2111C7F}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{3E1A9506-1CF2-447D-805D-CA8F78DE1877}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{07C84C98-4BFD-44F6-A333-318C0F2B8FF5}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite V2\bin\SniperEliteV2.exe
FirewallRules: [{EA07F36F-BED3-40B7-9264-5ABA672CB492}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite V2\bin\SniperEliteV2.exe
FirewallRules: [{03ABE0BB-E3B9-4711-A1DC-210784F8C897}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{97BF1F8B-B840-4DE1-9312-577AE2CCDE76}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{D1556776-B56B-4AC2-A63F-16F240BBA515}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{4E2AD639-00D9-496D-BCFB-17B2676129FB}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{D132BD24-42EE-4DFA-9993-C5B929362750}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{34C21A3B-0F84-455E-AEB5-45D556572104}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{08B707F5-595F-4E8E-83C1-C76DD97A3F52}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{7F698FE6-EFBC-423B-8B3B-6EAA58D4E078}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{5C7074D4-8336-4224-9BF9-9AB4B5FCA991}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{AF092B50-58B1-42E3-876C-F130D73FAD3C}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{96A389C3-8927-4C4D-811D-38B20CBBE979}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{15A71C64-D704-4ACA-9E55-F76873522176}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{BB62DB5E-B286-4E77-8C91-379317E07177}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{C39E2BA5-4681-4A74-9C47-F8F3AB229A40}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{5129F014-B254-476F-A368-35F3ADE0FFF7}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{C19BB8CA-8666-44E4-9DC4-36D9BC166577}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{9C47D641-55E5-41EA-B1A9-7FE2F6E47705}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{AFD85689-C933-4D2E-B3A2-2E6D15167733}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{A71424E3-721D-4F2E-8118-9DDD2A0723F6}] => (Allow) E:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{B8DADE39-A88A-4CD3-A6F7-691EE1AC153C}] => (Allow) E:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{68A1F2B7-5EF5-4566-9591-02DD7F087F37}] => (Allow) E:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{145ECC7D-D8DE-47CC-B5E2-6E28283F1849}] => (Allow) E:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [UDP Query User{22B3EB1E-9899-4283-A059-ACA06C23412F}E:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) E:\program files (x86)\origin games\battlefield 4\bf4.exe
FirewallRules: [TCP Query User{A2452E32-E907-4D12-961B-032DD0F96698}E:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) E:\program files (x86)\origin games\battlefield 4\bf4.exe
FirewallRules: [UDP Query User{D9560B02-441E-415D-81EF-F33062DE85B0}C:\users\christian\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\christian\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{12CA7606-80F2-4534-82E8-E96C894FDF2A}C:\users\christian\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\christian\appdata\roaming\spotify\spotify.exe
FirewallRules: [{C7D5E27A-5711-49DF-A184-7C352B4E619F}] => (Allow) LPort=1900
FirewallRules: [{0E953FB2-6DC7-4C56-8761-CD97AE9CC267}] => (Allow) LPort=2869
FirewallRules: [{61BFA9C5-CE5F-4F37-912E-F4A77DB07025}] => (Allow) C:\Users\Christian\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{D6A0B5DA-251E-4482-9E8F-52AC1254CC91}] => (Allow) E:\users\christian\ts3\teamspeak3-server_win64\ts3server_win64.exe
FirewallRules: [{0AECA6A3-B46E-4C28-AD8C-C83A35551B52}] => (Allow) E:\users\christian\ts3\teamspeak3-server_win64\ts3server_win64.exe
FirewallRules: [UDP Query User{D5CD2566-9898-478F-AC8B-903D8DE0BF0A}E:\users\christian\ts3\teamspeak3-server_win64\ts3server_win64.exe] => (Allow) E:\users\christian\ts3\teamspeak3-server_win64\ts3server_win64.exe
FirewallRules: [TCP Query User{17AA43AE-5AD4-4FD4-8E9A-06908D891878}E:\users\christian\ts3\teamspeak3-server_win64\ts3server_win64.exe] => (Allow) E:\users\christian\ts3\teamspeak3-server_win64\ts3server_win64.exe
FirewallRules: [{34852B4B-BC4F-4CA7-B65D-E017137E8375}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{AE7A802B-0B12-4741-B1C1-0811C820EC15}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{2E1091DA-A5DD-4A61-ABD5-267BAEB9E457}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{1AA9F407-4D20-4A93-AEBC-69F5F70ACE9D}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [UDP Query User{8AB2C590-B872-4360-BEA1-E93783D26918}C:\users\christian\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\christian\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{5F59D164-7FBD-49B9-9CDC-A528F30908B4}C:\users\christian\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\christian\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{C08DBEAE-AE2C-4A3D-B1DF-3B10BB2E458C}] => (Allow) C:\Users\Christian\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{26C8119D-DC2E-466A-BBEE-8CD86AC38689}] => (Allow) C:\Users\Christian\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{31BED915-E6F4-423D-950F-CBD0C34853D6}] => (Allow) e:\Program Files (x86)\7DaysToDie-Alpha\7DaysToDie.exe
FirewallRules: [{4384AC3F-BFD6-466D-9432-626FF84F80A5}] => (Allow) e:\Program Files (x86)\7DaysToDie-Alpha\7DaysToDie.exe
FirewallRules: [UDP Query User{D4595A5B-94DB-4A24-A694-D7BCA91475B6}E:\program files (x86)\six projects\six updater\tools\bin\rsync.exe] => (Allow) E:\program files (x86)\six projects\six updater\tools\bin\rsync.exe
FirewallRules: [TCP Query User{FFA52CF7-F838-4C56-B5F0-3A5D18845036}E:\program files (x86)\six projects\six updater\tools\bin\rsync.exe] => (Allow) E:\program files (x86)\six projects\six updater\tools\bin\rsync.exe
FirewallRules: [UDP Query User{5B9C100E-CABC-4BE9-9F73-7B498958A21C}C:\users\christian\documents\arma 2\expansion\beta\arma2oa.exe] => (Allow) C:\users\christian\documents\arma 2\expansion\beta\arma2oa.exe
FirewallRules: [TCP Query User{F7925ECA-E196-430B-919D-2BF6567217AF}C:\users\christian\documents\arma 2\expansion\beta\arma2oa.exe] => (Allow) C:\users\christian\documents\arma 2\expansion\beta\arma2oa.exe
FirewallRules: [UDP Query User{3286DFC7-183D-48B5-9B75-ABE1C74D63A6}E:\users\christian\downloads\teamspeak3-server_win64-3.0.7.2\teamspeak3-server_win64\ts3server_win64.exe] => (Allow) E:\users\christian\downloads\teamspeak3-server_win64-3.0.7.2\teamspeak3-server_win64\ts3server_win64.exe
FirewallRules: [TCP Query User{980C42A6-571F-438B-B36F-4AF27D86A7CF}E:\users\christian\downloads\teamspeak3-server_win64-3.0.7.2\teamspeak3-server_win64\ts3server_win64.exe] => (Allow) E:\users\christian\downloads\teamspeak3-server_win64-3.0.7.2\teamspeak3-server_win64\ts3server_win64.exe
FirewallRules: [{4B13B6EA-B1A0-4352-91C4-B91A16D58716}] => (Allow) C:\Program Files\HP\HP Officejet 6700\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{6BFBECE6-90B5-4789-84EE-6D0F666C6741}] => (Allow) C:\Program Files\HP\HP Officejet 6700\Bin\HPNetworkCommunicator.exe
FirewallRules: [{FF98AFB3-D672-4FA8-A9DA-A7C0CD52A360}] => (Allow) C:\Program Files\HP\HP Officejet 6700\Bin\DeviceSetup.exe
FirewallRules: [{6C80D7D1-7D15-4ADE-9CE4-EE13A2A6BF5E}] => (Allow) C:\Program Files\HP\HP Officejet 6700\bin\SendAFax.exe
FirewallRules: [{F54D28A3-CBBA-4ABB-A7C4-6BE7D6E97DD4}] => (Allow) C:\Program Files\HP\HP Officejet 6700\bin\DigitalWizards.exe
FirewallRules: [{C7A73513-5A90-4F03-8FA4-750AD0AC06AA}] => (Allow) C:\Program Files\HP\HP Officejet 6700\bin\FaxApplications.exe
FirewallRules: [{C00748DC-5982-4F1B-8A85-14FEDC4A4B65}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{10434351-B094-447D-9A4B-70870489E17D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{43EFDC73-1AFA-4D21-A6D7-0D2E264E3A22}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{E69E325A-CFEB-49E1-9A6A-0C3955ACB26E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{AD4AB134-9D54-488F-9C2F-C0762EB20737}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{FDC4D5FF-C78C-40C1-AA4E-9FADA9B5B8F8}] => (Allow) C:\Program Files (x86)\Google\Google Talk\googletalk.exe
FirewallRules: [{92718C3E-EF26-4B35-AFFE-1B14342C4B15}] => (Allow) C:\Program Files (x86)\Google\Google Talk\googletalk.exe
FirewallRules: [{B7EA6D3E-63D2-46C4-B768-87C549839C48}] => (Allow) LPort=1900
FirewallRules: [{9FE23E7B-50B6-4322-B241-798EFFBE4198}] => (Allow) LPort=2869
FirewallRules: [{31980898-8C93-48BF-AC84-ABA185D50DDC}] => (Allow) LPort=1900
FirewallRules: [{45C839CB-A4AE-4AD5-A883-0E129E263558}] => (Allow) LPort=2869
FirewallRules: [{B2FB47D4-9FDE-4347-B8EC-5BCA3B76FEB3}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
FirewallRules: [{08A304F8-C46C-4DCB-9D25-8952BEEFF1E9}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
FirewallRules: [{AFA70EE5-6FA2-4E9B-8A91-A90C63285DED}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFi GO! Server.exe
FirewallRules: [{4AC6ED38-3ABA-4F6F-AB40-F9445CAE7CEE}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFi GO! Server.exe
FirewallRules: [{85A5403E-1493-4101-86AD-80A568B741BC}] => (Allow) I:\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [{A376BECC-1642-4357-BD8F-FF7E3F8B24AF}] => (Allow) I:\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [{B0EF6457-2677-4EA1-9CFA-302DF43B91E5}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{B7C50FB0-B82B-48B4-9902-19B0BE5E2884}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{33C5ADB7-479E-481A-8975-BF26A78AE04B}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty Black Ops III Beta\BlackOps3.exe
FirewallRules: [{2C2FD143-9626-44DF-BAA9-DF438F3DB56F}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty Black Ops III Beta\BlackOps3.exe
FirewallRules: [{F5D2F0E2-034B-40CA-BB1D-559560CC2C89}] => (Allow) I:\SteamLibrary\steamapps\common\Stealth Inc 2\settings\settings.exe
FirewallRules: [{46AD5FAB-E133-4AD6-BC7C-F01B81EC1684}] => (Allow) I:\SteamLibrary\steamapps\common\Stealth Inc 2\settings\settings.exe
FirewallRules: [{612FB0B0-A6E3-4A50-9CAB-77DB8B78940E}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{D1C03DA4-482B-4229-B6E4-B17D07F3BA7E}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{259A80A5-9BCF-463D-A683-D0A4744A32C3}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{C15E3964-0B94-4714-B880-BEAFFC64B507}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{7A6A7746-3DE0-4E3A-8D64-6175D54A137D}] => (Allow) E:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{A9BFA494-27CE-4478-8FC1-AB788461A01D}] => (Allow) E:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{C2973967-11B5-434D-9299-D5A300224FA1}] => (Allow) I:\SteamLibrary\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{2453C9AB-8B36-46ED-9858-E2FAF403E555}] => (Allow) I:\SteamLibrary\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [TCP Query User{FF1AB6E5-C135-4839-B457-B710E2B14547}C:\program files (x86)\java\jre1.8.0_40\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_40\bin\java.exe
FirewallRules: [UDP Query User{13BA534A-F825-40D6-BE07-EFAF64540A2B}C:\program files (x86)\java\jre1.8.0_40\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_40\bin\java.exe
FirewallRules: [{9DE15098-C621-4274-8433-D76CB2397BA7}] => (Allow) E:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [{4B183D52-DD34-49C8-AE2A-743CE2B5A231}] => (Allow) E:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [{04BC63B0-A1F7-40C8-A7CC-89800ABFA26C}] => (Allow) E:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe
FirewallRules: [{ED6942BE-E3AE-442C-BD31-42ED1001FA16}] => (Allow) E:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe
FirewallRules: [{CBEC20CD-62E4-42D3-9D3B-3E6110335D51}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3FBBE953-13EA-42CF-BA47-CD93DAF67CDE}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8A36B334-227D-4000-899E-585730BFAF81}] => (Allow) I:\SteamLibrary\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{0F36723F-0EEE-496B-AC0F-C664FA97236A}] => (Allow) I:\SteamLibrary\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{F5FC6412-141D-4032-8A27-F8DA75769563}] => (Allow) I:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\bin\SDKLauncher.exe
FirewallRules: [{FFDA4F49-31C7-4301-9B87-5ECF9D6D1907}] => (Allow) I:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\bin\SDKLauncher.exe
FirewallRules: [{22FC65F6-EA33-4484-ADCD-9BABDEE6DCA8}] => (Allow) E:\Program Files (x86)\Origin Games\BFH\BFHWebHelper.exe
FirewallRules: [{9A81B400-F604-4BEE-8923-6AE9FC1236F6}] => (Allow) E:\Program Files (x86)\Origin Games\BFH\BFHWebHelper.exe
FirewallRules: [{CA248488-D630-4DF6-B1C0-5F29F9B67D5C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (09/30/2015 04:14:28 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: clientmonitor.exe, version: 10.2.2218.942, time stamp: 0x55dcffdb
Faulting module name: ntdll.dll, version: 10.0.10240.16430, time stamp: 0x55c599e1
Exception code: 0xc000071c
Fault offset: 0x0009b169
Faulting process id: 0x1d68
Faulting application start time: 0xclientmonitor.exe0
Faulting application path: clientmonitor.exe1
Faulting module path: clientmonitor.exe2
Report Id: clientmonitor.exe3
Faulting package full name: clientmonitor.exe4
Faulting package-relative application ID: clientmonitor.exe5
 
Error: (09/30/2015 04:14:28 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: clientmonitor.exe, version: 10.2.2218.942, time stamp: 0x55dcffdb
Faulting module name: ntdll.dll, version: 10.0.10240.16430, time stamp: 0x55c599e1
Exception code: 0xc000071c
Fault offset: 0x0009b169
Faulting process id: 0x1d30
Faulting application start time: 0xclientmonitor.exe0
Faulting application path: clientmonitor.exe1
Faulting module path: clientmonitor.exe2
Report Id: clientmonitor.exe3
Faulting package full name: clientmonitor.exe4
Faulting package-relative application ID: clientmonitor.exe5
 
Error: (09/30/2015 04:14:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: clientmonitor.exe, version: 10.2.2218.942, time stamp: 0x55dcffdb
Faulting module name: ntdll.dll, version: 10.0.10240.16430, time stamp: 0x55c599e1
Exception code: 0xc000071c
Fault offset: 0x0009b169
Faulting process id: 0x1c34
Faulting application start time: 0xclientmonitor.exe0
Faulting application path: clientmonitor.exe1
Faulting module path: clientmonitor.exe2
Report Id: clientmonitor.exe3
Faulting package full name: clientmonitor.exe4
Faulting package-relative application ID: clientmonitor.exe5
 
Error: (09/30/2015 04:14:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: clientmonitor.exe, version: 10.2.2218.942, time stamp: 0x55dcffdb
Faulting module name: ntdll.dll, version: 10.0.10240.16430, time stamp: 0x55c599e1
Exception code: 0xc000071c
Fault offset: 0x0009b169
Faulting process id: 0x1c14
Faulting application start time: 0xclientmonitor.exe0
Faulting application path: clientmonitor.exe1
Faulting module path: clientmonitor.exe2
Report Id: clientmonitor.exe3
Faulting package full name: clientmonitor.exe4
Faulting package-relative application ID: clientmonitor.exe5
 
Error: (09/30/2015 04:14:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: clientmonitor.exe, version: 10.2.2218.942, time stamp: 0x55dcffdb
Faulting module name: ntdll.dll, version: 10.0.10240.16430, time stamp: 0x55c599e1
Exception code: 0xc000071c
Fault offset: 0x0009b169
Faulting process id: 0x1948
Faulting application start time: 0xclientmonitor.exe0
Faulting application path: clientmonitor.exe1
Faulting module path: clientmonitor.exe2
Report Id: clientmonitor.exe3
Faulting package full name: clientmonitor.exe4
Faulting package-relative application ID: clientmonitor.exe5
 
Error: (09/30/2015 04:14:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: clientmonitor.exe, version: 10.2.2218.942, time stamp: 0x55dcffdb
Faulting module name: ntdll.dll, version: 10.0.10240.16430, time stamp: 0x55c599e1
Exception code: 0xc000071c
Fault offset: 0x0009b169
Faulting process id: 0x166c
Faulting application start time: 0xclientmonitor.exe0
Faulting application path: clientmonitor.exe1
Faulting module path: clientmonitor.exe2
Report Id: clientmonitor.exe3
Faulting package full name: clientmonitor.exe4
Faulting package-relative application ID: clientmonitor.exe5
 
Error: (09/30/2015 04:14:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: clientmonitor.exe, version: 10.2.2218.942, time stamp: 0x55dcffdb
Faulting module name: ntdll.dll, version: 10.0.10240.16430, time stamp: 0x55c599e1
Exception code: 0xc000071c
Fault offset: 0x0009b169
Faulting process id: 0x664
Faulting application start time: 0xclientmonitor.exe0
Faulting application path: clientmonitor.exe1
Faulting module path: clientmonitor.exe2
Report Id: clientmonitor.exe3
Faulting package full name: clientmonitor.exe4
Faulting package-relative application ID: clientmonitor.exe5
 
Error: (09/30/2015 04:14:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: clientmonitor.exe, version: 10.2.2218.942, time stamp: 0x55dcffdb
Faulting module name: ntdll.dll, version: 10.0.10240.16430, time stamp: 0x55c599e1
Exception code: 0xc000071c
Fault offset: 0x0009b169
Faulting process id: 0x6e8
Faulting application start time: 0xclientmonitor.exe0
Faulting application path: clientmonitor.exe1
Faulting module path: clientmonitor.exe2
Report Id: clientmonitor.exe3
Faulting package full name: clientmonitor.exe4
Faulting package-relative application ID: clientmonitor.exe5
 
Error: (09/30/2015 04:14:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: clientmonitor.exe, version: 10.2.2218.942, time stamp: 0x55dcffdb
Faulting module name: ntdll.dll, version: 10.0.10240.16430, time stamp: 0x55c599e1
Exception code: 0xc000071c
Fault offset: 0x0009b169
Faulting process id: 0x1b54
Faulting application start time: 0xclientmonitor.exe0
Faulting application path: clientmonitor.exe1
Faulting module path: clientmonitor.exe2
Report Id: clientmonitor.exe3
Faulting package full name: clientmonitor.exe4
Faulting package-relative application ID: clientmonitor.exe5
 
Error: (09/30/2015 04:14:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: clientmonitor.exe, version: 10.2.2218.942, time stamp: 0x55dcffdb
Faulting module name: ntdll.dll, version: 10.0.10240.16430, time stamp: 0x55c599e1
Exception code: 0xc000071c
Fault offset: 0x0009b169
Faulting process id: 0x1b4c
Faulting application start time: 0xclientmonitor.exe0
Faulting application path: clientmonitor.exe1
Faulting module path: clientmonitor.exe2
Report Id: clientmonitor.exe3
Faulting package full name: clientmonitor.exe4
Faulting package-relative application ID: clientmonitor.exe5
 
 
System errors:
=============
Error: (09/30/2015 04:18:14 PM) (Source: DCOM) (EventID: 10005) (User: CHRISTIANDESKPC)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}
 
Error: (09/30/2015 04:18:14 PM) (Source: DCOM) (EventID: 10005) (User: CHRISTIANDESKPC)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}
 
Error: (09/30/2015 04:18:11 PM) (Source: DCOM) (EventID: 10005) (User: CHRISTIANDESKPC)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}
 
Error: (09/30/2015 04:18:11 PM) (Source: DCOM) (EventID: 10005) (User: CHRISTIANDESKPC)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}
 
Error: (09/30/2015 04:18:11 PM) (Source: DCOM) (EventID: 10005) (User: CHRISTIANDESKPC)
Description: 1084ShellHWDetectionUnavailable{DD522ACC-F821-461A-A407-50B198B896DC}
 
Error: (09/30/2015 04:17:53 PM) (Source: DCOM) (EventID: 10005) (User: CHRISTIANDESKPC)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}
 
Error: (09/30/2015 04:17:53 PM) (Source: DCOM) (EventID: 10005) (User: CHRISTIANDESKPC)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}
 
Error: (09/30/2015 04:17:53 PM) (Source: DCOM) (EventID: 10005) (User: CHRISTIANDESKPC)
Description: 1084ShellHWDetectionUnavailable{DD522ACC-F821-461A-A407-50B198B896DC}
 
Error: (09/30/2015 04:17:41 PM) (Source: DCOM) (EventID: 10005) (User: CHRISTIANDESKPC)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}
 
Error: (09/30/2015 04:17:41 PM) (Source: DCOM) (EventID: 10005) (User: CHRISTIANDESKPC)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}
 
 
CodeIntegrity:
===================================
  Date: 2015-09-30 16:13:08.836
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vsnd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2015-09-28 18:10:35.286
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vsnd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2015-09-28 18:02:10.103
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vsnd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2015-09-28 14:58:35.338
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vsnd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2015-09-28 13:20:07.934
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vsnd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2015-09-28 12:41:55.029
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vsnd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2015-09-28 12:39:59.493
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vsnd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2015-09-28 12:28:21.215
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vsnd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2015-09-26 09:41:19.230
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vsnd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2015-09-26 08:46:38.426
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vsnd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™ i7-3770K CPU @ 3.50GHz
Percentage of memory in use: 6%
Total physical RAM: 16328.42 MB
Available physical RAM: 15266.25 MB
Total Virtual: 32712.42 MB
Available Virtual: 31786.38 MB
 
==================== Drives ================================
 
Drive c: (SSD) (Fixed) (Total:237.94 GB) (Free:50.06 GB) NTFS
Drive d: (SCOOBYDOO_LIVE_ACTION) (CDROM) (Total:7.62 GB) (Free:0 GB) UDF
Drive e: (1TB HD) (Fixed) (Total:931.51 GB) (Free:58.54 GB) NTFS
Drive i: (4TB HD) (Fixed) (Total:3725.9 GB) (Free:2960.57 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 238.5 GB) (Disk ID: 80EA82DA)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=237.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
 
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 6990C34E)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
 
========================================================
Disk: 2 (Size: 3726 GB) (Disk ID: 2C3061ED)
 
Partition: GPT.
 
==================== End of Addition.txt ============================

  • 0

#4
RKinner
Posted 30 September 2015 - 05:00 PM

RKinner

    Malware Expert

  • Expert
  • 24,625 posts
  • MVP

I think we got most of it.  There are a few remnants but they aren't running.

 

Avira has a bunch of missing files so I think it needs to be uninstalled and a new version downloaded and reinstalled.

 

Ditto for Norton Identity Safe

 

You've got some adware.  May have come from the Avira install so after you reinstall it:

 

Download : ADWCleaner to your desktop.  Make sure you get the correct Download button.  Sometimes the ads on BleepingComputer will mimic the real Download button which should say: Download Now @BleepingComputer

NOTE: If using Internet Explorer and you get an alert that stops the program downloading, click on the warning and allow the download to complete.

Close  all programs, pause your anti-virus and run AdwCleaner (Vista or Win 7 => right click and Run As Administrator).

scan-results.jpg

Click on Scan  and follow the prompts. Let it run unhindered. When done, click on the Clean button, and follow the prompts. Allow the system to reboot. You will then be presented with the report. Copy & Paste this report on your next reply.

The report will be saved in the C:\AdwCleaner folder.



Junkware-Removal-Tool

Please download Junkware Removal Tool to your desktop.  Make sure you get the correct Download button.  Sometimes the ads on BleepingComputer will mimic the real Download button which should say: Download Now @Author's site

  • Pause your anti-virus.  Close all browsers.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

 

 

We need to run a second fixlist to get the remnants and clean up some of the deadwood.

 

Download the attached fixlist.txt to the same location as FRST
Run FRST and press Fix
A fix log will be generated please post that then you should be able to boot into regular mode.  Run FRST again, check the Additions box and then Scan.  You will get two logs.  Post them both.


 


  • 0

#5
rockitout
Posted 30 September 2015 - 07:40 PM

rockitout

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 140 posts

I uninstalled Avira and tried to reinstall it but windows is telling me I need SYSTEM permissions to access the programdata folder which is where the Avira Launcher is.


  • 0

#6
RKinner
Posted 30 September 2015 - 10:18 PM

RKinner

    Malware Expert

  • Expert
  • 24,625 posts
  • MVP

Did you right click and Run As Administrator when you tried to reinstall?


  • 0

#7
rockitout
Posted 01 October 2015 - 05:28 AM

rockitout

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 140 posts

I tried that, but I get an error that says "an error has occured while trying to create the folder c:\ProgramData\Avira\Launcher.  The folder is already there and it has files in it.  I try to delete the folder and is says I need administrator privileges to do so.


  • 0

#8
RKinner
Posted 01 October 2015 - 05:44 AM

RKinner

    Malware Expert

  • Expert
  • 24,625 posts
  • MVP

Copy the next line:

rmdir /s \ProgramData\Avira

Start, All Programs, Accessories, right click on Command Prompt and Run as Administrator (Yes).  Right click and Paste or Edit then Paste and the copied line should appear.
Hit Enter

 

if that doesn't work we can take ownership of the file


  • 0

#9
rockitout
Posted 01 October 2015 - 06:21 AM

rockitout

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 140 posts

I tried your instructions and I get "Access is denied".


  • 0

#10
RKinner
Posted 01 October 2015 - 06:37 AM

RKinner

    Malware Expert

  • Expert
  • 24,625 posts
  • MVP

Rather than playing with this folder let's just reinstall Avast.

 

http://files.avast.c...virus_setup.exe



Download, Save, and right click and Run As Administrator.
 


  • 0

Advertisements

#11
rockitout
Posted 01 October 2015 - 08:07 AM

rockitout

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 140 posts

ok, I installed Avast.  It looks like it installed correctly, but it says I'm unprotected.  I click on "Resolve All", or "Start now" and it does not change the status.  I tried restarting Windows and same thing.  Thank you for your help so far.  I will wait for further instructions.


  • 0

#12
RKinner
Posted 01 October 2015 - 08:21 AM

RKinner

    Malware Expert

  • Expert
  • 24,625 posts
  • MVP

Can you run adwcleaner and junkware removal tool?

 

Tonight let Avast do a boot time scan:

 

How to do a boot-time scan while you sleep:
First mute the speakers so it won't wake you up when Windows loads.  Click on the Orange ball.  Click on Scan, then Scan for Viruses and wait a couple of minutes for the page to change.  Change Quickscan to Boot-time Scan.  Click on Settings.  Where it says Heuristic Sensitivity click on the last rectangle so that all of them are  orange and it says High.  Check both boxes.  Then change When a threat is found ... to:  Move to Chest.  OK.  Now click on Start.  Close the Avast window and then reboot.  The scan will start.  It will tell you where it will save the report.  Usually it's
C:\ProgramData\AVAST Software\Avast\report\aswBoot.txt but it might change so verify the location.  When Windows loads Click on the Orange Ball then Scan, Then Scan History (at the bottom of the page). Click on the last scan and then Detailed Report.  If it found anything then open the aswBoot.txt file and copy and paste it.  You may need to enable seeing hidden files in order to see the file so: Open the Control Panel menu and click Folder Options.
    After the new window appears select the View tab.
    Put a checkmark in the checkbox labeled Display the contents of system folders.
    Under the Hidden files and folders section select the radio button labeled Show hidden files and folders.
    Remove the checkmark from the checkbox labeled Hide file extensions for known file types.
    Remove the checkmark from the checkbox labeled Hide protected operating system files.
    Press the Apply button and then the OK button


  • 0

#13
rockitout
Posted 01 October 2015 - 01:44 PM

rockitout

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 140 posts

I was able to run adwcleaner and junkware.  Here are the log files:

 

# AdwCleaner v5.009 - Logfile created 01/10/2015 at 11:15:51
# Updated 27/09/2015 by Xplode
# Database : 2015-09-30.1 [Server]
# Operating system : Windows 10 Pro  (x64)
# Username : Christian - CHRISTIANDESKPC
# Running from : C:\Users\Christian\Desktop\AdwCleaner.exe
# Option : Cleaning
 
***** [ Services ] *****
 
 
***** [ Folders ] *****
 
[-] Folder Deleted : C:\Users\Christian\AppData\Local\FilesFrog Update Checker
[-] Folder Deleted : C:\Users\Christian\AppData\Local\PackageAware
[-] Folder Deleted : C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiokahphinmbmakkehgelkmpolmnbkdh
[-] Folder Deleted : C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\poohjpljfecljomfhhimjhddddlidhdd
[-] Folder Deleted : C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\oobdmiffgnobnpagcjjmpcajhdaoighg
[-] Folder Deleted : C:\Users\Christian\Documents\PC Speed Maximizer
[-] Folder Deleted : C:\Users\Christian\Documents\Updater
[-] Folder Deleted : C:\WINDOWS\SysWOW64\SearchProtect
 
***** [ Files ] *****
 
[-] File Deleted : C:\END
[-] File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo.xml
[-] File Deleted : C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_oobdmiffgnobnpagcjjmpcajhdaoighg_0.localstorage
[-] File Deleted : C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\gagdebbdflpnhgahjichmoigigfbbmon
[-] File Deleted : C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.pricepeep00.pricepeep.net_0.localstorage
[-] File Deleted : C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.pricepeep00.pricepeep.net_0.localstorage-journal
[-] File Deleted : C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\searchplugins\yahoo_ff.xml
[-] File Deleted : C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\user.js
 
***** [ Shortcuts ] *****
 
 
***** [ Scheduled tasks ] *****
 
[-] Task Deleted : SomotoUpdateCheckerAutoStart
[-] Task Deleted : Adobe Flash Player Updater
 
***** [ Registry ] *****
 
[-] Key Deleted : HKLM\SOFTWARE\Classes\Updater.AmiUpd
[-] Key Deleted : HKLM\SOFTWARE\Classes\SDP
[-] Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\gagdebbdflpnhgahjichmoigigfbbmon
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{363BB65D-1747-4826-B445-1DA6244E2037}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
[-] Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
[-] Key Deleted : HKCU\Software\APN PIP
[-] Key Deleted : HKCU\Software\Softonic
[-] Key Deleted : HKCU\Software\Somoto
[-] Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
[-] Key Deleted : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
[-] Key Deleted : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FilesFrog Update Checker
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{70A76031-FDC6-4F9B-BB5C-33776703F45A}_is1
[!] Key Not Deleted : [x64] HKCU\Software\APN PIP
[!] Key Not Deleted : [x64] HKCU\Software\Softonic
[!] Key Not Deleted : [x64] HKCU\Software\Somoto
[!] Key Not Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
[!] Key Not Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
[!] Key Not Deleted : HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
 
***** [ Web browsers ] *****
 
[-] [C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\prefs.js] [Preference] Deleted : user_pref("extensions.brandthunder.websearchplus", false);
[-] [C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : booedmolknjekdopkepjjeckmjkdpfgl
[-] [C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : flpcjncodpafbgdpnkljologafpionhb
[-] [C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : oiokahphinmbmakkehgelkmpolmnbkdh
[-] [C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : oobdmiffgnobnpagcjjmpcajhdaoighg
[-] [C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : poohjpljfecljomfhhimjhddddlidhdd
 
*************************
 
:: Winsock settings cleared
 
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [5286 bytes] ##########
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.6.4 (09.28.2015:1)
OS: Windows 10 Pro x64
Ran by Christian on Thu 10/01/2015 at 11:20:40.69
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Tasks
 
 
 
~~~ Registry Values
 
Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_F95133299531DA24C7CB703BC8432DCE
 
 
 
~~~ Registry Keys
 
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Eventlog\Application\Update Higher Aurum
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Eventlog\Application\Util Higher Aurum
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
Successfully deleted: [Folder] C:\ai_recyclebin
Successfully deleted: [Folder] C:\Users\Christian\Appdata\Local\crashrpt
Successfully deleted: [Folder] C:\Users\Christian\Appdata\Local\tempdir
Successfully deleted: [Folder] C:\Users\Christian\Documents\optimizer pro
Successfully deleted: [Folder] C:\WINDOWS\SysWOW64\ai_recyclebin
Successfully deleted: [Folder] C:\ProgramData\652551
Successfully deleted: [Folder] C:\ProgramData\652651
 
 
 
~~~ FireFox
 
Successfully deleted: [File] C:\Users\Christian\AppData\Roaming\mozilla\firefox\profiles\fq9fv6zw.default\extensions\[email protected]
Successfully deleted the following from C:\Users\Christian\AppData\Roaming\mozilla\firefox\profiles\fq9fv6zw.default\prefs.js
 
user_pref(extensions.brandthunder.btpersonas.installedTheme, [email protected]);
user_pref(lightweightThemes.usedThemes, [{\id\:\227628\,\name\:\Tardis Doctor Who\,\headerURL\:\hxxps://addons.cdn.mozilla.net/user-media/addons/227628/tardis2.j
Emptied folder: C:\Users\Christian\AppData\Roaming\mozilla\firefox\profiles\fq9fv6zw.default\minidumps [95 files]
 
 
 
~~~ Chrome
 
 
[C:\Users\Christian\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - default search provider reset
 
[C:\Users\Christian\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted:
 
[C:\Users\Christian\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset
 
[C:\Users\Christian\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted:
[]
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Thu 10/01/2015 at 11:25:07.72
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 

  • 0

#14
RKinner
Posted 01 October 2015 - 03:33 PM

RKinner

    Malware Expert

  • Expert
  • 24,625 posts
  • MVP

Right click on (My) Computer and select Manage (Continue) Then click on the arrow in front of Event Viewer. Next Click on the arrow in front of Windows Logs Right click on System and Clear Log, Clear. Repeat for Application.

Reboot.

Start, All Programs, Accessories then right click on Command Prompt and Run as Administrator.  Then type (with an Enter after each line).

sfc  /scannow

(This will check your critical system files. Does this finish without complaint?  IF it says it couldn't fix everything then:

Copy the next two lines:

findstr  /c:"[SR]"  \windows\logs\cbs\cbs.log  >  \windows\logs\cbs\junk.txt
notepad \windows\logs\cbs\junk.txt

Start, All Programs, Accessories, right click on Command Prompt and Run as Administrator, Continue.  Right click and Paste or Edit then Paste and the copied line should appear.
Hit Enter. Copy and paste the text from notepad or if it is too big, just attach the file.)


1. Please download the Event Viewer Tool by Vino Rosso
http://images.malwar...om/vino/VEW.exe
and save it to your Desktop:
2. Right-click VEW.exe and Run AS Administrator
3. Under 'Select log to query', select:

* System
4. Under 'Select type to list', select:
* Error
* Warning


Then use the 'Number of events' as follows:


1. Click the radio button for 'Number of events'
Type 20 in the 1 to 20 box
Then click the Run button.
Notepad will open with the output log.


Please post the Output log in your next reply then repeat but select Application.

 (Second time you run vew it will overwrite the first log so copy it to a reply or rename it first.)

 
  • 0

#15
rockitout
Posted 01 October 2015 - 05:16 PM

rockitout

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 140 posts

I followed your instructions and here are the logs:

 

2015-10-01 17:46:57, Info                  CSI    0000000a [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:46:57, Info                  CSI    0000000b [SR] Beginning Verify and Repair transaction
2015-10-01 17:46:58, Info                  CSI    00000070 [SR] Verify complete
2015-10-01 17:46:58, Info                  CSI    00000071 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:46:58, Info                  CSI    00000072 [SR] Beginning Verify and Repair transaction
2015-10-01 17:46:59, Info                  CSI    000000d7 [SR] Verify complete
2015-10-01 17:46:59, Info                  CSI    000000d8 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:46:59, Info                  CSI    000000d9 [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:00, Info                  CSI    0000013e [SR] Verify complete
2015-10-01 17:47:01, Info                  CSI    0000013f [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:01, Info                  CSI    00000140 [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:02, Info                  CSI    000001a5 [SR] Verify complete
2015-10-01 17:47:02, Info                  CSI    000001a6 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:02, Info                  CSI    000001a7 [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:03, Info                  CSI    0000020c [SR] Verify complete
2015-10-01 17:47:03, Info                  CSI    0000020d [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:03, Info                  CSI    0000020e [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:04, Info                  CSI    00000273 [SR] Verify complete
2015-10-01 17:47:04, Info                  CSI    00000274 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:04, Info                  CSI    00000275 [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:05, Info                  CSI    000002da [SR] Verify complete
2015-10-01 17:47:05, Info                  CSI    000002db [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:05, Info                  CSI    000002dc [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:06, Info                  CSI    00000341 [SR] Verify complete
2015-10-01 17:47:06, Info                  CSI    00000342 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:06, Info                  CSI    00000343 [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:07, Info                  CSI    000003a8 [SR] Verify complete
2015-10-01 17:47:07, Info                  CSI    000003a9 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:07, Info                  CSI    000003aa [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:08, Info                  CSI    0000040f [SR] Verify complete
2015-10-01 17:47:08, Info                  CSI    00000410 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:08, Info                  CSI    00000411 [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:09, Info                  CSI    00000476 [SR] Verify complete
2015-10-01 17:47:09, Info                  CSI    00000477 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:09, Info                  CSI    00000478 [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:10, Info                  CSI    000004dd [SR] Verify complete
2015-10-01 17:47:10, Info                  CSI    000004de [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:10, Info                  CSI    000004df [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:12, Info                  CSI    00000544 [SR] Verify complete
2015-10-01 17:47:12, Info                  CSI    00000545 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:12, Info                  CSI    00000546 [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:13, Info                  CSI    000005ab [SR] Verify complete
2015-10-01 17:47:13, Info                  CSI    000005ac [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:13, Info                  CSI    000005ad [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:14, Info                  CSI    00000612 [SR] Verify complete
2015-10-01 17:47:14, Info                  CSI    00000613 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:14, Info                  CSI    00000614 [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:15, Info                  CSI    00000679 [SR] Verify complete
2015-10-01 17:47:15, Info                  CSI    0000067a [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:15, Info                  CSI    0000067b [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:16, Info                  CSI    000006e0 [SR] Verify complete
2015-10-01 17:47:16, Info                  CSI    000006e1 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:16, Info                  CSI    000006e2 [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:17, Info                  CSI    00000747 [SR] Verify complete
2015-10-01 17:47:17, Info                  CSI    00000748 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:17, Info                  CSI    00000749 [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:18, Info                  CSI    000007ae [SR] Verify complete
2015-10-01 17:47:18, Info                  CSI    000007af [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:18, Info                  CSI    000007b0 [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:19, Info                  CSI    00000815 [SR] Verify complete
2015-10-01 17:47:19, Info                  CSI    00000816 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:19, Info                  CSI    00000817 [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:21, Info                  CSI    0000087c [SR] Verify complete
2015-10-01 17:47:21, Info                  CSI    0000087d [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:21, Info                  CSI    0000087e [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:22, Info                  CSI    000008e5 [SR] Verify complete
2015-10-01 17:47:22, Info                  CSI    000008e6 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:22, Info                  CSI    000008e7 [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:23, Info                  CSI    0000094c [SR] Verify complete
2015-10-01 17:47:23, Info                  CSI    0000094d [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:23, Info                  CSI    0000094e [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:24, Info                  CSI    000009ba [SR] Verify complete
2015-10-01 17:47:24, Info                  CSI    000009bb [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:24, Info                  CSI    000009bc [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:26, Info                  CSI    00000a22 [SR] Verify complete
2015-10-01 17:47:26, Info                  CSI    00000a23 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:26, Info                  CSI    00000a24 [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:27, Info                  CSI    00000a89 [SR] Verify complete
2015-10-01 17:47:27, Info                  CSI    00000a8a [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:27, Info                  CSI    00000a8b [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:28, Info                  CSI    00000afa [SR] Verify complete
2015-10-01 17:47:28, Info                  CSI    00000afb [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:28, Info                  CSI    00000afc [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:31, Info                  CSI    00000b77 [SR] Verify complete
2015-10-01 17:47:31, Info                  CSI    00000b78 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:31, Info                  CSI    00000b79 [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:34, Info                  CSI    00000be3 [SR] Verify complete
2015-10-01 17:47:34, Info                  CSI    00000be4 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:34, Info                  CSI    00000be5 [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:35, Info                  CSI    00000c4f [SR] Verify complete
2015-10-01 17:47:35, Info                  CSI    00000c50 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:35, Info                  CSI    00000c51 [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:37, Info                  CSI    00000cbe [SR] Verify complete
2015-10-01 17:47:37, Info                  CSI    00000cbf [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:37, Info                  CSI    00000cc0 [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:39, Info                  CSI    00000d29 [SR] Verify complete
2015-10-01 17:47:39, Info                  CSI    00000d2a [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:39, Info                  CSI    00000d2b [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:41, Info                  CSI    00000d90 [SR] Verify complete
2015-10-01 17:47:41, Info                  CSI    00000d91 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:41, Info                  CSI    00000d92 [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:43, Info                  CSI    00000df7 [SR] Verify complete
2015-10-01 17:47:43, Info                  CSI    00000df8 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:43, Info                  CSI    00000df9 [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:45, Info                  CSI    00000e5e [SR] Verify complete
2015-10-01 17:47:45, Info                  CSI    00000e5f [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:45, Info                  CSI    00000e60 [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:47, Info                  CSI    00000ec7 [SR] Verify complete
2015-10-01 17:47:48, Info                  CSI    00000ec8 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:48, Info                  CSI    00000ec9 [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:51, Info                  CSI    00000f46 [SR] Verify complete
2015-10-01 17:47:51, Info                  CSI    00000f47 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:51, Info                  CSI    00000f48 [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:53, Info                  CSI    00000fb8 [SR] Verify complete
2015-10-01 17:47:53, Info                  CSI    00000fb9 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:53, Info                  CSI    00000fba [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:57, Info                  CSI    00001045 [SR] Verify complete
2015-10-01 17:47:57, Info                  CSI    00001046 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:57, Info                  CSI    00001047 [SR] Beginning Verify and Repair transaction
2015-10-01 17:47:59, Info                  CSI    000010b7 [SR] Verify complete
2015-10-01 17:47:59, Info                  CSI    000010b8 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:47:59, Info                  CSI    000010b9 [SR] Beginning Verify and Repair transaction
2015-10-01 17:48:01, Info                  CSI    00001123 [SR] Verify complete
2015-10-01 17:48:01, Info                  CSI    00001124 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:48:01, Info                  CSI    00001125 [SR] Beginning Verify and Repair transaction
2015-10-01 17:48:03, Info                  CSI    00001197 [SR] Verify complete
2015-10-01 17:48:03, Info                  CSI    00001198 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:48:03, Info                  CSI    00001199 [SR] Beginning Verify and Repair transaction
2015-10-01 17:48:05, Info                  CSI    0000120b [SR] Verify complete
2015-10-01 17:48:05, Info                  CSI    0000120c [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:48:05, Info                  CSI    0000120d [SR] Beginning Verify and Repair transaction
2015-10-01 17:48:07, Info                  CSI    0000127c [SR] Verify complete
2015-10-01 17:48:07, Info                  CSI    0000127d [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:48:07, Info                  CSI    0000127e [SR] Beginning Verify and Repair transaction
2015-10-01 17:48:09, Info                  CSI    000012e3 [SR] Verify complete
2015-10-01 17:48:09, Info                  CSI    000012e4 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:48:09, Info                  CSI    000012e5 [SR] Beginning Verify and Repair transaction
2015-10-01 17:48:11, Info                  CSI    0000134e [SR] Verify complete
2015-10-01 17:48:11, Info                  CSI    0000134f [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:48:11, Info                  CSI    00001350 [SR] Beginning Verify and Repair transaction
2015-10-01 17:48:12, Info                  CSI    000013c0 [SR] Verify complete
2015-10-01 17:48:12, Info                  CSI    000013c1 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:48:12, Info                  CSI    000013c2 [SR] Beginning Verify and Repair transaction
2015-10-01 17:48:15, Info                  CSI    00001446 [SR] Verify complete
2015-10-01 17:48:15, Info                  CSI    00001447 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:48:15, Info                  CSI    00001448 [SR] Beginning Verify and Repair transaction
2015-10-01 17:48:18, Info                  CSI    000014dd [SR] Verify complete
2015-10-01 17:48:18, Info                  CSI    000014de [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:48:18, Info                  CSI    000014df [SR] Beginning Verify and Repair transaction
2015-10-01 17:48:23, Info                  CSI    0000156b [SR] Verify complete
2015-10-01 17:48:23, Info                  CSI    0000156c [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:48:23, Info                  CSI    0000156d [SR] Beginning Verify and Repair transaction
2015-10-01 17:48:24, Info                  CSI    000015d2 [SR] Verify complete
2015-10-01 17:48:24, Info                  CSI    000015d3 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:48:24, Info                  CSI    000015d4 [SR] Beginning Verify and Repair transaction
2015-10-01 17:48:26, Info                  CSI    00001642 [SR] Verify complete
2015-10-01 17:48:26, Info                  CSI    00001643 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:48:26, Info                  CSI    00001644 [SR] Beginning Verify and Repair transaction
2015-10-01 17:48:28, Info                  CSI    000016ae [SR] Verify complete
2015-10-01 17:48:28, Info                  CSI    000016af [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:48:28, Info                  CSI    000016b0 [SR] Beginning Verify and Repair transaction
2015-10-01 17:48:31, Info                  CSI    00001729 [SR] Verify complete
2015-10-01 17:48:32, Info                  CSI    0000172a [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:48:32, Info                  CSI    0000172b [SR] Beginning Verify and Repair transaction
2015-10-01 17:48:33, Info                  CSI    00001791 [SR] Verify complete
2015-10-01 17:48:33, Info                  CSI    00001792 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:48:33, Info                  CSI    00001793 [SR] Beginning Verify and Repair transaction
2015-10-01 17:48:34, Info                  CSI    000017f8 [SR] Verify complete
2015-10-01 17:48:34, Info                  CSI    000017f9 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:48:34, Info                  CSI    000017fa [SR] Beginning Verify and Repair transaction
2015-10-01 17:48:36, Info                  CSI    0000186a [SR] Verify complete
2015-10-01 17:48:36, Info                  CSI    0000186b [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:48:36, Info                  CSI    0000186c [SR] Beginning Verify and Repair transaction
2015-10-01 17:48:37, Info                  CSI    000018d3 [SR] Verify complete
2015-10-01 17:48:37, Info                  CSI    000018d4 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:48:37, Info                  CSI    000018d5 [SR] Beginning Verify and Repair transaction
2015-10-01 17:48:40, Info                  CSI    000019b9 [SR] Verify complete
2015-10-01 17:48:40, Info                  CSI    000019ba [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:48:40, Info                  CSI    000019bb [SR] Beginning Verify and Repair transaction
2015-10-01 17:48:43, Info                  CSI    00001a2a [SR] Verify complete
2015-10-01 17:48:43, Info                  CSI    00001a2b [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:48:43, Info                  CSI    00001a2c [SR] Beginning Verify and Repair transaction
2015-10-01 17:48:46, Info                  CSI    00001aa3 [SR] Verify complete
2015-10-01 17:48:46, Info                  CSI    00001aa4 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:48:46, Info                  CSI    00001aa5 [SR] Beginning Verify and Repair transaction
2015-10-01 17:48:47, Info                  CSI    00001b0c [SR] Verify complete
2015-10-01 17:48:47, Info                  CSI    00001b0d [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:48:47, Info                  CSI    00001b0e [SR] Beginning Verify and Repair transaction
2015-10-01 17:48:51, Info                  CSI    00001b8d [SR] Verify complete
2015-10-01 17:48:51, Info                  CSI    00001b8e [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:48:51, Info                  CSI    00001b8f [SR] Beginning Verify and Repair transaction
2015-10-01 17:48:53, Info                  CSI    00001bf4 [SR] Verify complete
2015-10-01 17:48:53, Info                  CSI    00001bf5 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:48:53, Info                  CSI    00001bf6 [SR] Beginning Verify and Repair transaction
2015-10-01 17:48:55, Info                  CSI    00001c61 [SR] Verify complete
2015-10-01 17:48:56, Info                  CSI    00001c62 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:48:56, Info                  CSI    00001c63 [SR] Beginning Verify and Repair transaction
2015-10-01 17:48:57, Info                  CSI    00001cc9 [SR] Verify complete
2015-10-01 17:48:57, Info                  CSI    00001cca [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:48:57, Info                  CSI    00001ccb [SR] Beginning Verify and Repair transaction
2015-10-01 17:49:00, Info                  CSI    00001d3b [SR] Verify complete
2015-10-01 17:49:00, Info                  CSI    00001d3c [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:49:00, Info                  CSI    00001d3d [SR] Beginning Verify and Repair transaction
2015-10-01 17:49:00, Info                  CSI    00001d3f [SR] Cannot repair member file [l:106{53}]"MicrosoftEdgeSquare44x44.scale-125_contrast-white.png" of Microsoft-Windows-MicrosoftEdge, Version = 10.0.10240.16515, pA = amd64, nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2015-10-01 17:49:04, Info                  CSI    00001da9 [SR] Cannot repair member file [l:106{53}]"MicrosoftEdgeSquare44x44.scale-125_contrast-white.png" of Microsoft-Windows-MicrosoftEdge, Version = 10.0.10240.16515, pA = amd64, nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2015-10-01 17:49:04, Info                  CSI    00001daa [SR] This component was referenced by [l:158{79}]"Package_627_for_KB3093266~31bf3856ad364e35~amd64~~10.0.1.4.3093266-1559_neutral"
2015-10-01 17:49:04, Info                  CSI    00001dad [SR] Could not reproject corrupted file [ml:142{71},l:140{70}]"\??\C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets"\[l:106{53}]"MicrosoftEdgeSquare44x44.scale-125_contrast-white.png"; source file in store is also corrupted
2015-10-01 17:49:05, Info                  CSI    00001dd4 [SR] Verify complete
2015-10-01 17:49:05, Info                  CSI    00001dd5 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:49:05, Info                  CSI    00001dd6 [SR] Beginning Verify and Repair transaction
2015-10-01 17:49:07, Info                  CSI    00001e3b [SR] Verify complete
2015-10-01 17:49:07, Info                  CSI    00001e3c [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:49:07, Info                  CSI    00001e3d [SR] Beginning Verify and Repair transaction
2015-10-01 17:49:09, Info                  CSI    00001ea9 [SR] Verify complete
2015-10-01 17:49:09, Info                  CSI    00001eaa [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:49:09, Info                  CSI    00001eab [SR] Beginning Verify and Repair transaction
2015-10-01 17:49:10, Info                  CSI    00001f12 [SR] Verify complete
2015-10-01 17:49:10, Info                  CSI    00001f13 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:49:10, Info                  CSI    00001f14 [SR] Beginning Verify and Repair transaction
2015-10-01 17:49:12, Info                  CSI    00001fac [SR] Verify complete
2015-10-01 17:49:12, Info                  CSI    00001fad [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:49:12, Info                  CSI    00001fae [SR] Beginning Verify and Repair transaction
2015-10-01 17:49:14, Info                  CSI    00002016 [SR] Verify complete
2015-10-01 17:49:14, Info                  CSI    00002017 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:49:14, Info                  CSI    00002018 [SR] Beginning Verify and Repair transaction
2015-10-01 17:49:16, Info                  CSI    00002084 [SR] Verify complete
2015-10-01 17:49:16, Info                  CSI    00002085 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:49:16, Info                  CSI    00002086 [SR] Beginning Verify and Repair transaction
2015-10-01 17:49:17, Info                  CSI    000020fa [SR] Verify complete
2015-10-01 17:49:17, Info                  CSI    000020fb [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:49:17, Info                  CSI    000020fc [SR] Beginning Verify and Repair transaction
2015-10-01 17:49:19, Info                  CSI    00002170 [SR] Verify complete
2015-10-01 17:49:19, Info                  CSI    00002171 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:49:19, Info                  CSI    00002172 [SR] Beginning Verify and Repair transaction
2015-10-01 17:49:21, Info                  CSI    000021dd [SR] Verify complete
2015-10-01 17:49:21, Info                  CSI    000021de [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:49:21, Info                  CSI    000021df [SR] Beginning Verify and Repair transaction
2015-10-01 17:49:23, Info                  CSI    00002262 [SR] Verify complete
2015-10-01 17:49:23, Info                  CSI    00002263 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:49:23, Info                  CSI    00002264 [SR] Beginning Verify and Repair transaction
2015-10-01 17:49:25, Info                  CSI    000022d5 [SR] Verify complete
2015-10-01 17:49:25, Info                  CSI    000022d6 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:49:25, Info                  CSI    000022d7 [SR] Beginning Verify and Repair transaction
2015-10-01 17:49:27, Info                  CSI    00002341 [SR] Verify complete
2015-10-01 17:49:27, Info                  CSI    00002342 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:49:27, Info                  CSI    00002343 [SR] Beginning Verify and Repair transaction
2015-10-01 17:49:28, Info                  CSI    000023aa [SR] Verify complete
2015-10-01 17:49:28, Info                  CSI    000023ab [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:49:28, Info                  CSI    000023ac [SR] Beginning Verify and Repair transaction
2015-10-01 17:49:30, Info                  CSI    00002414 [SR] Verify complete
2015-10-01 17:49:30, Info                  CSI    00002415 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:49:30, Info                  CSI    00002416 [SR] Beginning Verify and Repair transaction
2015-10-01 17:49:32, Info                  CSI    0000248a [SR] Verify complete
2015-10-01 17:49:32, Info                  CSI    0000248b [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:49:32, Info                  CSI    0000248c [SR] Beginning Verify and Repair transaction
2015-10-01 17:49:34, Info                  CSI    000024f3 [SR] Verify complete
2015-10-01 17:49:34, Info                  CSI    000024f4 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:49:34, Info                  CSI    000024f5 [SR] Beginning Verify and Repair transaction
2015-10-01 17:49:35, Info                  CSI    0000255d [SR] Verify complete
2015-10-01 17:49:35, Info                  CSI    0000255e [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:49:35, Info                  CSI    0000255f [SR] Beginning Verify and Repair transaction
2015-10-01 17:49:38, Info                  CSI    000025d7 [SR] Verify complete
2015-10-01 17:49:38, Info                  CSI    000025d8 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:49:38, Info                  CSI    000025d9 [SR] Beginning Verify and Repair transaction
2015-10-01 17:49:40, Info                  CSI    00002644 [SR] Verify complete
2015-10-01 17:49:40, Info                  CSI    00002645 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:49:40, Info                  CSI    00002646 [SR] Beginning Verify and Repair transaction
2015-10-01 17:49:42, Info                  CSI    000026b1 [SR] Verify complete
2015-10-01 17:49:42, Info                  CSI    000026b2 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:49:42, Info                  CSI    000026b3 [SR] Beginning Verify and Repair transaction
2015-10-01 17:49:45, Info                  CSI    0000274c [SR] Verify complete
2015-10-01 17:49:45, Info                  CSI    0000274d [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:49:45, Info                  CSI    0000274e [SR] Beginning Verify and Repair transaction
2015-10-01 17:49:48, Info                  CSI    000027c0 [SR] Verify complete
2015-10-01 17:49:48, Info                  CSI    000027c1 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:49:48, Info                  CSI    000027c2 [SR] Beginning Verify and Repair transaction
2015-10-01 17:49:50, Info                  CSI    00002828 [SR] Verify complete
2015-10-01 17:49:50, Info                  CSI    00002829 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:49:50, Info                  CSI    0000282a [SR] Beginning Verify and Repair transaction
2015-10-01 17:49:52, Info                  CSI    0000289d [SR] Verify complete
2015-10-01 17:49:52, Info                  CSI    0000289e [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:49:52, Info                  CSI    0000289f [SR] Beginning Verify and Repair transaction
2015-10-01 17:49:54, Info                  CSI    00002908 [SR] Verify complete
2015-10-01 17:49:54, Info                  CSI    00002909 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:49:54, Info                  CSI    0000290a [SR] Beginning Verify and Repair transaction
2015-10-01 17:49:56, Info                  CSI    00002972 [SR] Verify complete
2015-10-01 17:49:56, Info                  CSI    00002973 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:49:56, Info                  CSI    00002974 [SR] Beginning Verify and Repair transaction
2015-10-01 17:49:58, Info                  CSI    000029db [SR] Verify complete
2015-10-01 17:49:58, Info                  CSI    000029dc [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:49:58, Info                  CSI    000029dd [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:00, Info                  CSI    00002a4d [SR] Verify complete
2015-10-01 17:50:00, Info                  CSI    00002a4e [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:00, Info                  CSI    00002a4f [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:02, Info                  CSI    00002ac1 [SR] Verify complete
2015-10-01 17:50:02, Info                  CSI    00002ac2 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:02, Info                  CSI    00002ac3 [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:04, Info                  CSI    00002b32 [SR] Verify complete
2015-10-01 17:50:04, Info                  CSI    00002b33 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:04, Info                  CSI    00002b34 [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:06, Info                  CSI    00002ba1 [SR] Verify complete
2015-10-01 17:50:06, Info                  CSI    00002ba2 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:06, Info                  CSI    00002ba3 [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:07, Info                  CSI    00002c0f [SR] Verify complete
2015-10-01 17:50:07, Info                  CSI    00002c10 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:07, Info                  CSI    00002c11 [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:09, Info                  CSI    00002c81 [SR] Verify complete
2015-10-01 17:50:09, Info                  CSI    00002c82 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:09, Info                  CSI    00002c83 [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:12, Info                  CSI    00002ceb [SR] Verify complete
2015-10-01 17:50:12, Info                  CSI    00002cec [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:12, Info                  CSI    00002ced [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:14, Info                  CSI    00002d52 [SR] Verify complete
2015-10-01 17:50:14, Info                  CSI    00002d53 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:14, Info                  CSI    00002d54 [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:16, Info                  CSI    00002dc5 [SR] Verify complete
2015-10-01 17:50:16, Info                  CSI    00002dc6 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:16, Info                  CSI    00002dc7 [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:19, Info                  CSI    00002e91 [SR] Verify complete
2015-10-01 17:50:20, Info                  CSI    00002e92 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:20, Info                  CSI    00002e93 [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:21, Info                  CSI    00002ef8 [SR] Verify complete
2015-10-01 17:50:21, Info                  CSI    00002ef9 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:21, Info                  CSI    00002efa [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:23, Info                  CSI    00002f74 [SR] Verify complete
2015-10-01 17:50:23, Info                  CSI    00002f75 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:23, Info                  CSI    00002f76 [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:25, Info                  CSI    00002fdb [SR] Verify complete
2015-10-01 17:50:25, Info                  CSI    00002fdc [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:25, Info                  CSI    00002fdd [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:26, Info                  CSI    00003042 [SR] Verify complete
2015-10-01 17:50:26, Info                  CSI    00003043 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:26, Info                  CSI    00003044 [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:28, Info                  CSI    000030aa [SR] Verify complete
2015-10-01 17:50:28, Info                  CSI    000030ab [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:28, Info                  CSI    000030ac [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:30, Info                  CSI    00003111 [SR] Verify complete
2015-10-01 17:50:30, Info                  CSI    00003112 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:30, Info                  CSI    00003113 [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:31, Info                  CSI    00003178 [SR] Verify complete
2015-10-01 17:50:32, Info                  CSI    00003179 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:32, Info                  CSI    0000317a [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:33, Info                  CSI    000031df [SR] Verify complete
2015-10-01 17:50:33, Info                  CSI    000031e0 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:33, Info                  CSI    000031e1 [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:35, Info                  CSI    00003247 [SR] Verify complete
2015-10-01 17:50:35, Info                  CSI    00003248 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:35, Info                  CSI    00003249 [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:36, Info                  CSI    000032ae [SR] Verify complete
2015-10-01 17:50:36, Info                  CSI    000032af [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:36, Info                  CSI    000032b0 [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:37, Info                  CSI    00003315 [SR] Verify complete
2015-10-01 17:50:37, Info                  CSI    00003316 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:37, Info                  CSI    00003317 [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:39, Info                  CSI    0000337c [SR] Verify complete
2015-10-01 17:50:39, Info                  CSI    0000337d [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:39, Info                  CSI    0000337e [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:41, Info                  CSI    00003405 [SR] Verify complete
2015-10-01 17:50:41, Info                  CSI    00003406 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:41, Info                  CSI    00003407 [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:42, Info                  CSI    0000346c [SR] Verify complete
2015-10-01 17:50:42, Info                  CSI    0000346d [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:42, Info                  CSI    0000346e [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:44, Info                  CSI    000034d5 [SR] Verify complete
2015-10-01 17:50:44, Info                  CSI    000034d6 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:44, Info                  CSI    000034d7 [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:46, Info                  CSI    0000353c [SR] Verify complete
2015-10-01 17:50:46, Info                  CSI    0000353d [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:46, Info                  CSI    0000353e [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:47, Info                  CSI    000035a3 [SR] Verify complete
2015-10-01 17:50:47, Info                  CSI    000035a4 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:47, Info                  CSI    000035a5 [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:49, Info                  CSI    0000360b [SR] Verify complete
2015-10-01 17:50:49, Info                  CSI    0000360c [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:49, Info                  CSI    0000360d [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:50, Info                  CSI    00003672 [SR] Verify complete
2015-10-01 17:50:50, Info                  CSI    00003673 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:50, Info                  CSI    00003674 [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:52, Info                  CSI    000036d9 [SR] Verify complete
2015-10-01 17:50:52, Info                  CSI    000036da [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:52, Info                  CSI    000036db [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:55, Info                  CSI    00003745 [SR] Verify complete
2015-10-01 17:50:55, Info                  CSI    00003746 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:55, Info                  CSI    00003747 [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:57, Info                  CSI    000037b5 [SR] Verify complete
2015-10-01 17:50:57, Info                  CSI    000037b6 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:57, Info                  CSI    000037b7 [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:58, Info                  CSI    0000381c [SR] Verify complete
2015-10-01 17:50:58, Info                  CSI    0000381d [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:58, Info                  CSI    0000381e [SR] Beginning Verify and Repair transaction
2015-10-01 17:50:59, Info                  CSI    00003885 [SR] Verify complete
2015-10-01 17:50:59, Info                  CSI    00003886 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:50:59, Info                  CSI    00003887 [SR] Beginning Verify and Repair transaction
2015-10-01 17:51:01, Info                  CSI    000038f3 [SR] Verify complete
2015-10-01 17:51:01, Info                  CSI    000038f4 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:51:01, Info                  CSI    000038f5 [SR] Beginning Verify and Repair transaction
2015-10-01 17:51:02, Info                  CSI    0000395a [SR] Verify complete
2015-10-01 17:51:02, Info                  CSI    0000395b [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:51:02, Info                  CSI    0000395c [SR] Beginning Verify and Repair transaction
2015-10-01 17:51:04, Info                  CSI    000039c1 [SR] Verify complete
2015-10-01 17:51:04, Info                  CSI    000039c2 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:51:04, Info                  CSI    000039c3 [SR] Beginning Verify and Repair transaction
2015-10-01 17:51:05, Info                  CSI    00003a28 [SR] Verify complete
2015-10-01 17:51:05, Info                  CSI    00003a29 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:51:05, Info                  CSI    00003a2a [SR] Beginning Verify and Repair transaction
2015-10-01 17:51:07, Info                  CSI    00003a8f [SR] Verify complete
2015-10-01 17:51:07, Info                  CSI    00003a90 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:51:07, Info                  CSI    00003a91 [SR] Beginning Verify and Repair transaction
2015-10-01 17:51:09, Info                  CSI    00003af6 [SR] Verify complete
2015-10-01 17:51:09, Info                  CSI    00003af7 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:51:09, Info                  CSI    00003af8 [SR] Beginning Verify and Repair transaction
2015-10-01 17:51:11, Info                  CSI    00003b6b [SR] Verify complete
2015-10-01 17:51:11, Info                  CSI    00003b6c [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:51:11, Info                  CSI    00003b6d [SR] Beginning Verify and Repair transaction
2015-10-01 17:51:13, Info                  CSI    00003be2 [SR] Verify complete
2015-10-01 17:51:13, Info                  CSI    00003be3 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:51:13, Info                  CSI    00003be4 [SR] Beginning Verify and Repair transaction
2015-10-01 17:51:15, Info                  CSI    00003c5a [SR] Verify complete
2015-10-01 17:51:15, Info                  CSI    00003c5b [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:51:15, Info                  CSI    00003c5c [SR] Beginning Verify and Repair transaction
2015-10-01 17:51:17, Info                  CSI    00003cc4 [SR] Verify complete
2015-10-01 17:51:17, Info                  CSI    00003cc5 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:51:17, Info                  CSI    00003cc6 [SR] Beginning Verify and Repair transaction
2015-10-01 17:51:19, Info                  CSI    00003d3b [SR] Verify complete
2015-10-01 17:51:19, Info                  CSI    00003d3c [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:51:19, Info                  CSI    00003d3d [SR] Beginning Verify and Repair transaction
2015-10-01 17:51:21, Info                  CSI    00003da3 [SR] Verify complete
2015-10-01 17:51:22, Info                  CSI    00003da4 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:51:22, Info                  CSI    00003da5 [SR] Beginning Verify and Repair transaction
2015-10-01 17:51:23, Info                  CSI    00003e0a [SR] Verify complete
2015-10-01 17:51:23, Info                  CSI    00003e0b [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:51:23, Info                  CSI    00003e0c [SR] Beginning Verify and Repair transaction
2015-10-01 17:51:24, Info                  CSI    00003e71 [SR] Verify complete
2015-10-01 17:51:24, Info                  CSI    00003e72 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:51:24, Info                  CSI    00003e73 [SR] Beginning Verify and Repair transaction
2015-10-01 17:51:26, Info                  CSI    00003ee0 [SR] Verify complete
2015-10-01 17:51:26, Info                  CSI    00003ee1 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:51:26, Info                  CSI    00003ee2 [SR] Beginning Verify and Repair transaction
2015-10-01 17:51:29, Info                  CSI    00003f4e [SR] Verify complete
2015-10-01 17:51:29, Info                  CSI    00003f4f [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:51:29, Info                  CSI    00003f50 [SR] Beginning Verify and Repair transaction
2015-10-01 17:51:31, Info                  CSI    00003fbb [SR] Verify complete
2015-10-01 17:51:31, Info                  CSI    00003fbc [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:51:31, Info                  CSI    00003fbd [SR] Beginning Verify and Repair transaction
2015-10-01 17:51:34, Info                  CSI    00004027 [SR] Verify complete
2015-10-01 17:51:34, Info                  CSI    00004028 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:51:34, Info                  CSI    00004029 [SR] Beginning Verify and Repair transaction
2015-10-01 17:51:36, Info                  CSI    000040a7 [SR] Verify complete
2015-10-01 17:51:36, Info                  CSI    000040a8 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:51:36, Info                  CSI    000040a9 [SR] Beginning Verify and Repair transaction
2015-10-01 17:51:37, Info                  CSI    0000411a [SR] Verify complete
2015-10-01 17:51:37, Info                  CSI    0000411b [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:51:37, Info                  CSI    0000411c [SR] Beginning Verify and Repair transaction
2015-10-01 17:51:39, Info                  CSI    0000418c [SR] Verify complete
2015-10-01 17:51:39, Info                  CSI    0000418d [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:51:39, Info                  CSI    0000418e [SR] Beginning Verify and Repair transaction
2015-10-01 17:51:42, Info                  CSI    000041fe [SR] Verify complete
2015-10-01 17:51:42, Info                  CSI    000041ff [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:51:42, Info                  CSI    00004200 [SR] Beginning Verify and Repair transaction
2015-10-01 17:51:45, Info                  CSI    0000427b [SR] Verify complete
2015-10-01 17:51:45, Info                  CSI    0000427c [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:51:45, Info                  CSI    0000427d [SR] Beginning Verify and Repair transaction
2015-10-01 17:51:47, Info                  CSI    000042f5 [SR] Verify complete
2015-10-01 17:51:47, Info                  CSI    000042f6 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:51:47, Info                  CSI    000042f7 [SR] Beginning Verify and Repair transaction
2015-10-01 17:51:49, Info                  CSI    00004367 [SR] Verify complete
2015-10-01 17:51:49, Info                  CSI    00004368 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:51:49, Info                  CSI    00004369 [SR] Beginning Verify and Repair transaction
2015-10-01 17:51:52, Info                  CSI    00004444 [SR] Verify complete
2015-10-01 17:51:52, Info                  CSI    00004445 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:51:52, Info                  CSI    00004446 [SR] Beginning Verify and Repair transaction
2015-10-01 17:51:54, Info                  CSI    000044e9 [SR] Verify complete
2015-10-01 17:51:54, Info                  CSI    000044ea [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:51:54, Info                  CSI    000044eb [SR] Beginning Verify and Repair transaction
2015-10-01 17:51:56, Info                  CSI    00004550 [SR] Verify complete
2015-10-01 17:51:56, Info                  CSI    00004551 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:51:56, Info                  CSI    00004552 [SR] Beginning Verify and Repair transaction
2015-10-01 17:51:58, Info                  CSI    000045b7 [SR] Verify complete
2015-10-01 17:51:58, Info                  CSI    000045b8 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:51:58, Info                  CSI    000045b9 [SR] Beginning Verify and Repair transaction
2015-10-01 17:52:00, Info                  CSI    00004636 [SR] Verify complete
2015-10-01 17:52:00, Info                  CSI    00004637 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:52:00, Info                  CSI    00004638 [SR] Beginning Verify and Repair transaction
2015-10-01 17:52:02, Info                  CSI    000046b3 [SR] Verify complete
2015-10-01 17:52:03, Info                  CSI    000046b4 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:52:03, Info                  CSI    000046b5 [SR] Beginning Verify and Repair transaction
2015-10-01 17:52:05, Info                  CSI    0000472c [SR] Verify complete
2015-10-01 17:52:05, Info                  CSI    0000472d [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:52:05, Info                  CSI    0000472e [SR] Beginning Verify and Repair transaction
2015-10-01 17:52:07, Info                  CSI    0000479a [SR] Verify complete
2015-10-01 17:52:07, Info                  CSI    0000479b [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:52:07, Info                  CSI    0000479c [SR] Beginning Verify and Repair transaction
2015-10-01 17:52:08, Info                  CSI    00004802 [SR] Verify complete
2015-10-01 17:52:08, Info                  CSI    00004803 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:52:08, Info                  CSI    00004804 [SR] Beginning Verify and Repair transaction
2015-10-01 17:52:11, Info                  CSI    00004897 [SR] Verify complete
2015-10-01 17:52:11, Info                  CSI    00004898 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:52:11, Info                  CSI    00004899 [SR] Beginning Verify and Repair transaction
2015-10-01 17:52:13, Info                  CSI    00004908 [SR] Verify complete
2015-10-01 17:52:13, Info                  CSI    00004909 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:52:13, Info                  CSI    0000490a [SR] Beginning Verify and Repair transaction
2015-10-01 17:52:16, Info                  CSI    0000497f [SR] Verify complete
2015-10-01 17:52:16, Info                  CSI    00004980 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:52:16, Info                  CSI    00004981 [SR] Beginning Verify and Repair transaction
2015-10-01 17:52:18, Info                  CSI    000049e8 [SR] Verify complete
2015-10-01 17:52:18, Info                  CSI    000049e9 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:52:18, Info                  CSI    000049ea [SR] Beginning Verify and Repair transaction
2015-10-01 17:52:21, Info                  CSI    00004a69 [SR] Verify complete
2015-10-01 17:52:21, Info                  CSI    00004a6a [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:52:21, Info                  CSI    00004a6b [SR] Beginning Verify and Repair transaction
2015-10-01 17:52:23, Info                  CSI    00004ad8 [SR] Verify complete
2015-10-01 17:52:23, Info                  CSI    00004ad9 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:52:23, Info                  CSI    00004ada [SR] Beginning Verify and Repair transaction
2015-10-01 17:52:25, Info                  CSI    00004b44 [SR] Verify complete
2015-10-01 17:52:25, Info                  CSI    00004b45 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:52:25, Info                  CSI    00004b46 [SR] Beginning Verify and Repair transaction
2015-10-01 17:52:28, Info                  CSI    00004bcc [SR] Verify complete
2015-10-01 17:52:28, Info                  CSI    00004bcd [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:52:28, Info                  CSI    00004bce [SR] Beginning Verify and Repair transaction
2015-10-01 17:52:30, Info                  CSI    00004c5e [SR] Verify complete
2015-10-01 17:52:30, Info                  CSI    00004c5f [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:52:30, Info                  CSI    00004c60 [SR] Beginning Verify and Repair transaction
2015-10-01 17:52:31, Info                  CSI    00004cc6 [SR] Verify complete
2015-10-01 17:52:31, Info                  CSI    00004cc7 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:52:31, Info                  CSI    00004cc8 [SR] Beginning Verify and Repair transaction
2015-10-01 17:52:33, Info                  CSI    00004d30 [SR] Verify complete
2015-10-01 17:52:33, Info                  CSI    00004d31 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:52:33, Info                  CSI    00004d32 [SR] Beginning Verify and Repair transaction
2015-10-01 17:52:34, Info                  CSI    00004d9b [SR] Verify complete
2015-10-01 17:52:34, Info                  CSI    00004d9c [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:52:34, Info                  CSI    00004d9d [SR] Beginning Verify and Repair transaction
2015-10-01 17:52:36, Info                  CSI    00004e03 [SR] Verify complete
2015-10-01 17:52:36, Info                  CSI    00004e04 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:52:36, Info                  CSI    00004e05 [SR] Beginning Verify and Repair transaction
2015-10-01 17:52:38, Info                  CSI    00004e6e [SR] Verify complete
2015-10-01 17:52:38, Info                  CSI    00004e6f [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:52:38, Info                  CSI    00004e70 [SR] Beginning Verify and Repair transaction
2015-10-01 17:52:39, Info                  CSI    00004ed8 [SR] Verify complete
2015-10-01 17:52:39, Info                  CSI    00004ed9 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:52:39, Info                  CSI    00004eda [SR] Beginning Verify and Repair transaction
2015-10-01 17:52:41, Info                  CSI    00004f40 [SR] Verify complete
2015-10-01 17:52:41, Info                  CSI    00004f41 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:52:41, Info                  CSI    00004f42 [SR] Beginning Verify and Repair transaction
2015-10-01 17:52:42, Info                  CSI    00004fa9 [SR] Verify complete
2015-10-01 17:52:42, Info                  CSI    00004faa [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:52:42, Info                  CSI    00004fab [SR] Beginning Verify and Repair transaction
2015-10-01 17:52:44, Info                  CSI    00005019 [SR] Verify complete
2015-10-01 17:52:44, Info                  CSI    0000501a [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:52:44, Info                  CSI    0000501b [SR] Beginning Verify and Repair transaction
2015-10-01 17:52:46, Info                  CSI    00005083 [SR] Verify complete
2015-10-01 17:52:46, Info                  CSI    00005084 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:52:46, Info                  CSI    00005085 [SR] Beginning Verify and Repair transaction
2015-10-01 17:52:48, Info                  CSI    000050ea [SR] Verify complete
2015-10-01 17:52:48, Info                  CSI    000050eb [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:52:48, Info                  CSI    000050ec [SR] Beginning Verify and Repair transaction
2015-10-01 17:52:50, Info                  CSI    00005152 [SR] Verify complete
2015-10-01 17:52:50, Info                  CSI    00005153 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:52:50, Info                  CSI    00005154 [SR] Beginning Verify and Repair transaction
2015-10-01 17:52:51, Info                  CSI    000051b9 [SR] Verify complete
2015-10-01 17:52:51, Info                  CSI    000051ba [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:52:51, Info                  CSI    000051bb [SR] Beginning Verify and Repair transaction
2015-10-01 17:52:53, Info                  CSI    00005220 [SR] Verify complete
2015-10-01 17:52:53, Info                  CSI    00005221 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:52:53, Info                  CSI    00005222 [SR] Beginning Verify and Repair transaction
2015-10-01 17:52:54, Info                  CSI    00005288 [SR] Verify complete
2015-10-01 17:52:54, Info                  CSI    00005289 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:52:54, Info                  CSI    0000528a [SR] Beginning Verify and Repair transaction
2015-10-01 17:52:56, Info                  CSI    000052ef [SR] Verify complete
2015-10-01 17:52:56, Info                  CSI    000052f0 [SR] Verifying 100 (0x0000000000000064) components
2015-10-01 17:52:56, Info                  CSI    000052f1 [SR] Beginning Verify and Repair transaction
2015-10-01 17:52:58, Info                  CSI    00005356 [SR] Verify complete
2015-10-01 17:52:58, Info                  CSI    00005357 [SR] Verifying 11 (0x000000000000000b) components
2015-10-01 17:52:58, Info                  CSI    00005358 [SR] Beginning Verify and Repair transaction
2015-10-01 17:52:58, Info                  CSI    00005364 [SR] Verify complete
2015-10-01 17:52:58, Info                  CSI    00005365 [SR] Repairing 1 components
2015-10-01 17:52:58, Info                  CSI    00005366 [SR] Beginning Verify and Repair transaction
2015-10-01 17:52:58, Info                  CSI    00005368 [SR] Cannot repair member file [l:106{53}]"MicrosoftEdgeSquare44x44.scale-125_contrast-white.png" of Microsoft-Windows-MicrosoftEdge, Version = 10.0.10240.16515, pA = amd64, nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2015-10-01 17:52:59, Info                  CSI    0000536b [SR] Cannot repair member file [l:106{53}]"MicrosoftEdgeSquare44x44.scale-125_contrast-white.png" of Microsoft-Windows-MicrosoftEdge, Version = 10.0.10240.16515, pA = amd64, nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35} in the store, hash mismatch
2015-10-01 17:52:59, Info                  CSI    0000536c [SR] This component was referenced by [l:158{79}]"Package_627_for_KB3093266~31bf3856ad364e35~amd64~~10.0.1.4.3093266-1559_neutral"
2015-10-01 17:52:59, Info                  CSI    0000536f [SR] Could not reproject corrupted file [ml:142{71},l:140{70}]"\??\C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets"\[l:106{53}]"MicrosoftEdgeSquare44x44.scale-125_contrast-white.png"; source file in store is also corrupted
2015-10-01 17:52:59, Info                  CSI    00005372 [SR] Repair complete
2015-10-01 17:52:59, Info                  CSI    00005373 [SR] Committing transaction
2015-10-01 17:52:59, Info                  CSI    00005378 [SR] Verify and Repair Transaction completed. All files and registry keys listed in this transaction  have been successfully repaired
 
 
Vino's Event Viewer v01c run on Windows 7 in English
Report run at 01/10/2015 6:07:07 PM
 
Note: All dates below are in the format dd/mm/yyyy
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 01/10/2015 10:52:56 PM
Type: Error Category: 0
Event: 7024 Source: Service Control Manager
The Xbox Live Auth Manager service terminated with the following service-specific error:  The operation completed successfully.
 
Log: 'System' Date/Time: 01/10/2015 10:45:36 PM
Type: Error Category: 0
Event: 9234 Source: SbieSvc
SBIE9234 Service startup error level 9153 status=C0000001 error=-1073741823
 
Log: 'System' Date/Time: 01/10/2015 10:45:33 PM
Type: Error Category: 0
Event: 7001 Source: Service Control Manager
The Net.Tcp Listener Adapter service depends on the Net.Tcp Port Sharing Service service which failed to start because of the following error:  The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
 
Log: 'System' Date/Time: 01/10/2015 10:45:33 PM
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The Norton Identity Safe service failed to start due to the following error:  Access is denied.
 
Log: 'System' Date/Time: 01/10/2015 10:45:32 PM
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The avnetflt service failed to start due to the following error:  The system cannot find the file specified.
 
Log: 'System' Date/Time: 01/10/2015 10:45:31 PM
Type: Error Category: 0
Event: 1103 Source: SbieDrv
SBIE1103 Sandboxie driver (SbieDrv) version 4.14 failed to start
 
Log: 'System' Date/Time: 01/10/2015 10:45:31 PM
Type: Error Category: 0
Event: 1105 Source: SbieDrv
SBIE1105 Unknown operating system version:  10.0 (10240)
 
Log: 'System' Date/Time: 01/10/2015 10:45:31 PM
Type: Error Category: 0
Event: 10016 Source: Microsoft-Windows-DistributedCOM
The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID  {22279AF5-03AE-4CAF-989D-2530918B2F1C}  and APPID  {0773CCD6-59A2-4D26-B235-19247767E645}  to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Log: 'System' Date/Time: 01/10/2015 10:45:30 PM
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The avgntflt service failed to start due to the following error:  The system cannot find the file specified.
 
Log: 'System' Date/Time: 01/10/2015 10:44:48 PM
Type: Error Category: 0
Event: 7031 Source: Service Control Manager
The User Data Access_Session1 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.
 
Log: 'System' Date/Time: 01/10/2015 10:44:48 PM
Type: Error Category: 0
Event: 7031 Source: Service Control Manager
The User Data Storage_Session1 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.
 
Log: 'System' Date/Time: 01/10/2015 10:44:48 PM
Type: Error Category: 0
Event: 7031 Source: Service Control Manager
The Contact Data_Session1 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.
 
Log: 'System' Date/Time: 01/10/2015 10:44:48 PM
Type: Error Category: 0
Event: 7031 Source: Service Control Manager
The Sync Host_Session1 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 01/10/2015 10:45:39 PM
Type: Warning Category: 0
Event: 11 Source: Microsoft-Windows-Wininit
Custom dynamic link libraries are being loaded for every application. The system administrator should review the list of libraries to ensure they are related to trusted applications. Please visit http://support.microsoft.com/kb/197571for more information.
 
Log: 'System' Date/Time: 01/10/2015 10:45:30 PM
Type: Warning Category: 414
Event: 414 Source: Microsoft-Windows-TaskScheduler
Task Scheduler service found a misconfiguration in the NT TASK\Norton Identity Safe\Norton Error Processor definition. Additional Data: Error Value: C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\SymErr.exe.
 
Log: 'System' Date/Time: 01/10/2015 10:45:30 PM
Type: Warning Category: 414
Event: 414 Source: Microsoft-Windows-TaskScheduler
Task Scheduler service found a misconfiguration in the NT TASK\Norton Identity Safe\Norton Error Analyzer definition. Additional Data: Error Value: C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\SymErr.exe.
 
Log: 'System' Date/Time: 01/10/2015 10:45:30 PM
Type: Warning Category: 414
Event: 414 Source: Microsoft-Windows-TaskScheduler
Task Scheduler service found a misconfiguration in the NT TASK\Microsoft\Windows\Media Center\PeriodicScanRetry definition. Additional Data: Error Value: %windir%\ehome\MCUpdate.exe.
 
Log: 'System' Date/Time: 01/10/2015 10:45:27 PM
Type: Warning Category: 212
Event: 219 Source: Microsoft-Windows-Kernel-PnP
The driver \Driver\vsnd_idev failed to load for the device ROOT\MEDIA\0002.
 
 
Vino's Event Viewer v01c run on Windows 7 in English
Report run at 01/10/2015 6:07:48 PM
 
Note: All dates below are in the format dd/mm/yyyy
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'Application' Date/Time: 01/10/2015 10:45:38 PM
Type: Error Category: 0
Event: 11714 Source: MsiInstaller
Product: LogMeIn Hamachi -- Error 1714. The older version of LogMeIn Hamachi cannot be removed.  Contact your technical support group.  System Error 1612.
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'Application' Date/Time: 01/10/2015 10:45:40 PM
Type: Warning Category: 0
Event: 64 Source: Microsoft-Windows-CertificateServicesClient-AutoEnrollment
Certificate for local system with Thumbprint ca ef d4 52 72 cd 29 79 e3 01 d8 e5 0d 5e 41 53 ef eb 6d 59 is about to expire or already expired.
 

  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP