Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

CPU and RAM running at 100% Can't do anything within Windows


  • Please log in to reply

#16
rockitout

rockitout

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 130 posts

Sorry for the double post, but I tried setting up the boot-time scan and got to the part where it restarts the computer.  The computer restarts just fine, but it doesn't run the scan.  I thought maybe I did something wrong, so I followed the instructions again and it did the same thing.  I think it might have something to do with Avast and how it won't run properly. 


  • 0

Advertisements


#17
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,025 posts
  • MVP

Let's run FRST again with the Addition box checked and then post both logs.


  • 0

#18
rockitout

rockitout

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 130 posts

I ran FRST again and here are the logs.  FYI, my responses may be limited today as I'm at work.

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:27-09-2015 01
Ran by Christian (administrator) on CHRISTIANDESKPC (02-10-2015 05:55:12)
Running from C:\Users\Christian\Desktop
Loaded Profiles: Christian (Available Profiles: Christian & DefaultAppPool)
Platform: Windows 10 Pro (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
() C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
(Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
(DTS, Inc) C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(ClanServers Hosting LLC) C:\Program Files (x86)\GameTracker\GSInGameService.exe
() C:\Program Files\Everything\Everything.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(LogMeIn Inc.) E:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(LogMeIn, Inc.) E:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Nitro PDF Software) C:\Program Files\Common Files\Nitro\Reader\3.0\NitroPDFReaderDriverService3x64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDMedia.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDCountdown.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDClock.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDPOP3.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDRSS.exe
(Saitek) C:\Program Files\SmartTechnology\Software\ProfilerU.exe
(Saitek) C:\Program Files\SmartTechnology\Software\SaiMfd.exe
(Highresolution Enterprises) C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.922.11070.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.13251.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.9.25.0_x64__8wekyb3d8bbwe\WinStore.Mobile.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1509.14010.0_x64__8wekyb3d8bbwe\Calculator.exe
 
 
==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8492800 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_DTS] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [7477016 2013-04-24] (Logitech Inc.)
HKLM\...\Run: [ProfilerU] => C:\Program Files\SmartTechnology\Software\ProfilerU.exe [454144 2013-04-16] (Saitek)
HKLM\...\Run: [SaiMfd] => C:\Program Files\SmartTechnology\Software\SaiMfd.exe [158208 2013-04-16] (Saitek)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [557768 2014-10-14] (Adobe Systems Incorporated)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-26] (NVIDIA Corporation)
HKLM\...\Run: [XMouseButtonControl] => C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe [1121776 2015-08-10] (Highresolution Enterprises)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6134544 2015-10-01] (AVAST Software)
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\Run: [GoogleChromeAutoLaunch_F95133299531DA24C7CB703BC8432DCE] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944 2015-09-23] (Google Inc.)
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\MountPoints2: {2aa539fd-9067-11e4-b111-806e6f6e6963} - "D:\install.EXE" id= ver=1.0.0.0
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\Winlogon: [Shell] C:\Windows\explorer.exe [4532304 2015-08-11] (Microsoft Corporation) <==== ATTENTION
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-09-11] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-09-11] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-09-11] (Google)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Christian\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll [2015-08-04] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Christian\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll [2015-08-04] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Christian\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll [2015-08-04] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-10-01] (AVAST Software)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Christian\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\FileSyncShell.dll [2015-08-04] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Christian\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\FileSyncShell.dll [2015-08-04] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Christian\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\FileSyncShell.dll [2015-08-04] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RealPlayer Cloud Service UI.lnk [2014-08-25]
ShortcutTarget: RealPlayer Cloud Service UI.lnk -> C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe (RealNetworks, Inc.)
Startup: C:\Users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk [2013-10-30]
Startup: C:\Users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2013-06-16]
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{58ecfa1d-1ba8-47ec-8d2b-c2bed90aeb97}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{fcc1e0e7-2478-40bc-9c6d-ff7a0cb2c241}: [DhcpNameServer] 192.168.1.1
 
Internet Explorer:
==================
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://battlelog.battlefield.com/bf4/servers/
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
SearchScopes: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000 -> {8D2A2E78-E3FF-480A-AF29-CB95920AC6CD} URL = hxxp://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=599486&p={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-10-01] (AVAST Software)
BHO: Norton Identity Protection -> {AB4C7833-A6EC-433f-B9FE-6B14B1A2F836} -> C:\Program Files (x86)\Norton Identity Safe\Engine64\2014.7.11.42\coIEPlg.dll No File
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-09-05] (Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-22] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-10-01] (AVAST Software)
BHO-x32: Norton Identity Protection -> {AB4C7833-A6EC-433f-B9FE-6B14B1A2F836} -> C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\coIEPlg.dll No File
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05] (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-22] (Oracle Corporation)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05] (Adobe Systems Incorporated)
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  No File
Toolbar: HKLM - Norton Identity Safe Toolbar - {A13C2648-91D4-4bf3-BC6D-0079707C4389} - C:\Program Files (x86)\Norton Identity Safe\Engine64\2014.7.11.42\coIEPlg.dll No File
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Norton Identity Safe Toolbar - {A13C2648-91D4-4bf3-BC6D-0079707C4389} - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\coIEPlg.dll No File
Toolbar: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
 
FireFox:
========
FF ProfilePath: C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default
FF DefaultSearchEngine: Google
FF DefaultSearchEngine.US: Google
FF Homepage: hxxps://www.google.com
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_287.dll [2015-01-23] ()
FF Plugin: @esn/npbattlelog,version=2.5.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.0\npbattlelogx64.dll [No File]
FF Plugin: @esn/npbattlelog,version=2.7.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.0\npbattlelogx64.dll [No File]
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeExManDetect -> E:\Program Files\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll [2013-12-03] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_287.dll [2015-01-23] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-02-18] ()
FF Plugin-x32: @esn/npbattlelog,version=2.5.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.0\npbattlelog.dll [No File]
FF Plugin-x32: @esn/npbattlelog,version=2.7.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.0\npbattlelog.dll [No File]
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-22] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-22] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Reader 3\npnitromozilla.dll [2013-07-26] (Nitro PDF)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-09-13] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-09-13] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin-x32: @raidcall.en/RCplugin -> C:\Users\Christian\AppData\Roaming\raidcall\plugins\nprcplugin.dll [2014-05-27] (Raidcall)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-14] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.7 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-06-07] (VideoLAN)
FF Plugin-x32: Adobe Acrobat -> E:\Program Files\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2011-09-05] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeExManDetect -> E:\Program Files\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [2013-12-03] (Adobe Systems)
FF Plugin HKU\S-1-5-21-2842136386-2703010871-4203806482-1000: @nsroblox.roblox.com/launcher -> C:\Users\Christian\AppData\Local\Roblox\Versions\version-957ce0cc47814d39\\NPRobloxProxy.dll [2013-01-01] ( ROBLOX Corporation)
FF Plugin HKU\S-1-5-21-2842136386-2703010871-4203806482-1000: @nsroblox.roblox.com/launcher64 -> C:\Users\Christian\AppData\Local\Roblox\Versions\version-957ce0cc47814d39\\NPRobloxProxy64.dll [2013-01-01] ( ROBLOX Corporation)
FF Plugin HKU\S-1-5-21-2842136386-2703010871-4203806482-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Christian\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-11-30] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-2842136386-2703010871-4203806482-1000: facebook.com/fbDesktopPlugin -> C:\Users\Christian\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll [2013-03-07] (Facebook, Inc.)
FF Extension: VontaeGames Upload widget - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-04-25]
FF Extension: LtCookieMobster Upload Addon - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-04-25]
FF Extension: No Name - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2015-09-25]
FF Extension: Battlefield Play4Free - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-03-07]
FF Extension: No Name - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2015-09-25]
FF Extension: Add to Amazon Wish List Button - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-06-03]
FF Extension: Battletag for Battlelog™ - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-12-07]
FF Extension: Firebug - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-01-30]
FF Extension: YouTube mp3 - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-10-15]
FF Extension: Enhanced Steam - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-01-30]
FF Extension: Google Translator for Firefox - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-12-07]
FF Extension: Session Manager - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi [2014-10-17]
FF Extension: New Tab Homepage - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\{66E978CD-981F-47DF-AC42-E3CF417C1467}.xpi [2014-01-30]
FF Extension: Download YouTube Videos as MP4 - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\{b9bfaf1c-a63f-47cd-8b9a-29526ced9060}.xpi [2014-12-09]
FF Extension: Adblock Plus - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-01-30]
FF Extension: Screenshoter Fixed - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\{d9babd10-47de-11df-9879-0800200c9a67}.xpi [2014-01-30]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - E:\Program Files\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - E:\Program Files\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2014-01-24]
FF HKLM-x32\...\Firefox\Extensions: [{F04D2D30-776C-4d02-8627-8E4385ECA58D}] - C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2014.7.0.47\coFFPlgn => not found
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext => not found
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-10-01]
 
Chrome: 
=======
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchURL: Default -> hxxps://safesearch.avira.com/#web/result?source=omnibar&q={searchTerms}
CHR DefaultSearchKeyword: Default -> Avira
CHR DefaultSuggestURL: Default -> hxxps://safesearch.avira.com/suggestions?q={searchTerms}&li=ff&hl=en
CHR Profile: C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Theme Creator) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\akpelnjfckgfiplcikojhomllgombffc [2015-04-17]
CHR Extension: (YouTube) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-06-16]
CHR Extension: (Styler) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\bogdgcfoocbajfkjjolkmcdcnnellpkb [2015-09-19]
CHR Extension: (Adblock Plus) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2013-06-19]
CHR Extension: (Battletag for Battlelog™) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckdomikkinngpfpodjjannnbojbembhj [2015-01-25]
CHR Extension: (Webpage Screenshot) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckibcdccnfeookdmbahgiakhnjcddpki [2013-06-19]
CHR Extension: (Spotify - Music for every moment) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnkjkdjlofllcpbemipjbcpfnglbgieh [2015-04-17]
CHR Extension: (Google Search) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-06-16]
CHR Extension: (Netflix) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\deceagebecbceejblnlcjooeohmmeldh [2015-04-17]
CHR Extension: (Hitbox Now!) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\eblhpeihibbjknadncjbpcnnhkcljnhg [2015-04-17]
CHR Extension: (Rush Team) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecdnoeebfjlplfkljdedokbcmebojbpb [2013-06-19]
CHR Extension: (Untamed Now Playing) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\elmdghkkehlmfllejpgikgpjgfalppei [2014-06-24]
CHR Extension: (Avast Online Security) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-10-01]
CHR Extension: (ThemeBeta.com) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgpfjdopafniillnphhkmnihojeclljc [2015-08-04]
CHR Extension: (Better Battlelog (BBLog)) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjlfnjepjdmlppapoikepbaabbghofma [2015-01-25]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-04-05]
CHR Extension: (Channel Sub Box for YouTube™) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\lhbmojliagbancdcmookpmaaoipjifmc [2015-01-26]
CHR Extension: (Session Manager) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\mghenlmbmjcpehccoangkdpagbcbkdpc [2015-03-30]
CHR Extension: (OneDrive) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nffchahhjecejoiigmnhhicpoabngedk [2013-06-19]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-24]
CHR Extension: (Battlelog Emblem Editor Extended) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\noagedoiolkfaoaknohhepocfeooibjb [2015-01-27]
CHR Extension: (Norton Security Toolbar) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nppllibpnmahfaklnpggkibhkapjkeob [2014-06-13]
CHR Extension: (Gmail) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-06-16]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [khjilmcjipkeokomeekfnhkpbnhmgaje] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [nppllibpnmahfaklnpggkibhkapjkeob] - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\Exts\Chrome.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-10-01]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [khjilmcjipkeokomeekfnhkpbnhmgaje] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [nppllibpnmahfaklnpggkibhkapjkeob] - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\Exts\Chrome.crx <not found>
 
==================== Services (Whitelisted) ========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [599944 2014-12-04] (Autodesk Inc.)
S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-10-30] (Adobe Systems) [File not signed]
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [920736 2012-06-01] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [951936 2012-06-01] (ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [149120 2012-02-17] (ASUSTeK Computer Inc.)
S2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-10-01] (AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1225216 2015-09-18] ()
S3 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [476936 2013-08-25] (BitRaider, LLC)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1268568 2015-06-18] (Disc Soft Ltd)
R2 DTSAudioSvc; C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe [249328 2015-06-24] (DTS, Inc)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [238376 2015-07-23] (EasyAntiCheat Ltd)
R2 Everything; C:\Program Files\Everything\Everything.exe [1441792 2014-08-05] () [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-26] (NVIDIA Corporation)
R2 Hamachi2Svc; E:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2485608 2015-01-20] (LogMeIn Inc.)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
S3 mi-raysat_3dsmax2015_64; C:\Program Files\Autodesk\3ds Max 2015\NVIDIA\Satellite\raysat_3dsmax2015_64server.exe [86016 2011-09-14] () [File not signed]
R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-08-04] (Microsoft Corporation)
R2 NitroReaderDriverReadSpool3; C:\Program Files\Common Files\Nitro\Reader\3.0\NitroPDFReaderDriverService3x64.exe [230416 2013-07-26] (Nitro PDF Software)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-26] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-26] (NVIDIA Corporation)
S3 Origin Client Service; E:\Program Files (x86)\Origin\OriginClientService.exe [2077192 2015-09-20] (Electronic Arts)
R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76152 2015-06-14] ()
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76152 2015-08-31] ()
R2 RealPlayer Cloud Service; c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe [1141848 2014-08-25] (RealNetworks, Inc.)
S2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [174600 2014-10-14] (Sandboxie Holdings, LLC)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5495056 2015-06-18] (TeamViewer GmbH)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-08-04] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-08-04] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
S2 NCO; "C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\NST.exe" /s "NCO" /m "C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\diMaster.dll" /prefetch:1
 
===================== Drivers (Whitelisted) ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R0 asahci64; C:\Windows\System32\drivers\asahci64.sys [49760 2012-01-06] (Asmedia Technology)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-08-24] ()
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-10-01] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-10-01] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-10-01] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-10-01] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1049880 2015-10-01] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [448968 2015-10-01] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [153744 2015-10-01] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-10-01] (AVAST Software)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2015-09-01] (Avira Operations GmbH & Co. KG)
S3 BRDriver64; C:\ProgramData\BitRaider\BRDriver64.sys [75048 2013-08-25] (BitRaider)
R1 ccSet_NST; C:\Windows\system32\drivers\NSTx64\7DE070B0.02A\ccSetx64.sys [162392 2013-09-27] (Symantec Corporation)
S3 dc1-controller; C:\Windows\System32\drivers\dc1-controller.sys [50688 2015-07-10] (Microsoft Corp.)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-07-05] (Disc Soft Ltd)
R3 LGSHidFilt; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys [66800 2013-01-17] (Logitech Inc.)
R3 LGSUsbFilt; C:\Windows\system32\DRIVERS\LGSUsbFilt.Sys [44272 2013-01-17] (Logitech Inc.)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-08-04] (Microsoft Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-26] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-10] (NVIDIA Corporation)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
R3 SaiMini; C:\Windows\System32\drivers\SaiMini.sys [25120 2013-04-30] (Saitek)
R3 SaiNtBus; C:\Windows\system32\drivers\SaiBus.sys [52640 2013-04-30] (Saitek)
S3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [185352 2014-10-14] (Sandboxie Holdings, LLC)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 vsnd_idev; C:\Windows\system32\drivers\vsnd.sys [68224 2013-12-24] (Roman Ukhov)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S2 avgntflt; system32\DRIVERS\avgntflt.sys [X]
S1 avipbb; \SystemRoot\system32\DRIVERS\avipbb.sys [X]
S2 avnetflt; \SystemRoot\system32\DRIVERS\avnetflt.sys [X]
U3 idsvc; no ImagePath
S3 VBoxNetFlt; \SystemRoot\system32\DRIVERS\VBoxNetFlt.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; no ImagePath
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-10-02 05:54 - 2015-10-02 05:54 - 00016148 _____ C:\WINDOWS\system32\CHRISTIANDESKPC_Christian_HistoryPrediction.bin
2015-10-01 18:08 - 2015-10-01 18:08 - 00001042 _____ C:\Users\Christian\Desktop\VEW1.txt
2015-10-01 18:07 - 2015-10-01 18:07 - 00005704 _____ C:\Users\Christian\Desktop\VEW.txt
2015-10-01 18:07 - 2015-10-01 18:07 - 00001042 _____ C:\VEW.txt
2015-10-01 18:06 - 2015-10-01 18:06 - 00061440 _____ ( ) C:\Users\Christian\Desktop\VEW.exe
2015-10-01 18:05 - 2015-10-01 18:05 - 00059219 _____ C:\Users\Christian\Desktop\junk.txt
2015-10-01 11:25 - 2015-10-01 11:25 - 00002643 _____ C:\Users\Christian\Desktop\JRT.txt
2015-10-01 11:19 - 2015-10-01 11:19 - 01801288 _____ (Malwarebytes) C:\Users\Christian\Desktop\JRT.exe
2015-10-01 11:09 - 2015-10-01 11:15 - 00000000 ____D C:\AdwCleaner
2015-10-01 11:08 - 2015-10-01 11:09 - 01670656 _____ C:\Users\Christian\Desktop\AdwCleaner.exe
2015-10-01 09:00 - 2015-10-01 09:00 - 00000000 ____D C:\Users\Christian\AppData\Roaming\AVAST Software
2015-10-01 08:59 - 2015-10-01 08:59 - 00001970 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-10-01 08:59 - 2015-10-01 08:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-10-01 08:58 - 2015-10-01 08:58 - 01049880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2015-10-01 08:58 - 2015-10-01 08:58 - 00448968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2015-10-01 08:58 - 2015-10-01 08:58 - 00378880 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2015-10-01 08:58 - 2015-10-01 08:58 - 00274808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2015-10-01 08:58 - 2015-10-01 08:58 - 00153744 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2015-10-01 08:58 - 2015-10-01 08:58 - 00093528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2015-10-01 08:58 - 2015-10-01 08:58 - 00090968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2015-10-01 08:58 - 2015-10-01 08:58 - 00065224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2015-10-01 08:58 - 2015-10-01 08:58 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2015-10-01 08:58 - 2015-10-01 08:58 - 00028656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2015-10-01 08:58 - 2015-10-01 08:58 - 00004006 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2015-10-01 08:57 - 2015-10-01 08:57 - 154429024 _____ (AVAST Software) C:\Users\Christian\Downloads\avast_free_antivirus_setup.exe
2015-10-01 08:57 - 2015-10-01 08:57 - 00000000 ____D C:\Program Files\AVAST Software
2015-09-30 19:32 - 2015-09-24 18:34 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2015-09-30 19:32 - 2015-09-24 18:34 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2015-09-30 19:32 - 2015-09-24 17:43 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2015-09-30 19:32 - 2015-09-24 17:43 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2015-09-30 19:32 - 2015-09-24 17:25 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-09-30 19:32 - 2015-09-24 17:25 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-09-30 19:32 - 2015-09-24 17:25 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2015-09-30 19:32 - 2015-09-24 17:25 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2015-09-30 19:32 - 2015-09-24 17:25 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2015-09-30 19:32 - 2015-09-24 17:24 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallHistoryClient.dll
2015-09-30 19:32 - 2015-09-24 17:19 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-09-30 19:32 - 2015-09-17 01:28 - 05120056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2015-09-30 19:32 - 2015-09-17 01:28 - 02154808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-09-30 19:32 - 2015-09-17 01:28 - 01357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2015-09-30 19:32 - 2015-09-17 01:28 - 00441168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2015-09-30 19:32 - 2015-09-17 01:28 - 00407608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-09-30 19:32 - 2015-09-17 01:28 - 00074880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2015-09-30 19:32 - 2015-09-17 01:27 - 01766952 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-09-30 19:32 - 2015-09-17 01:27 - 00454512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2015-09-30 19:32 - 2015-09-17 01:26 - 02446648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2015-09-30 19:32 - 2015-09-17 01:26 - 01895568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2015-09-30 19:32 - 2015-09-17 01:26 - 00646672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2015-09-30 19:32 - 2015-09-17 01:26 - 00508248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2015-09-30 19:32 - 2015-09-17 01:26 - 00434376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2015-09-30 19:32 - 2015-09-17 01:26 - 00428128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2015-09-30 19:32 - 2015-09-17 01:25 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-09-30 19:32 - 2015-09-17 01:21 - 00658528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2015-09-30 19:32 - 2015-09-17 01:20 - 00764416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-09-30 19:32 - 2015-09-17 00:51 - 13027840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-09-30 19:32 - 2015-09-17 00:51 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2015-09-30 19:32 - 2015-09-17 00:49 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Speech.Pal.dll
2015-09-30 19:32 - 2015-09-17 00:47 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2015-09-30 19:32 - 2015-09-17 00:45 - 19325440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-09-30 19:32 - 2015-09-17 00:45 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2015-09-30 19:32 - 2015-09-17 00:43 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-09-30 19:32 - 2015-09-17 00:42 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-09-30 19:32 - 2015-09-17 00:41 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2015-09-30 19:32 - 2015-09-17 00:40 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2015-09-30 19:32 - 2015-09-17 00:40 - 01918464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-09-30 19:32 - 2015-09-17 00:40 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2015-09-30 19:32 - 2015-09-17 00:39 - 00587264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-09-30 19:32 - 2015-09-17 00:39 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-09-30 19:32 - 2015-09-17 00:38 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2015-09-30 19:32 - 2015-09-17 00:37 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-09-30 19:32 - 2015-09-17 00:37 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-09-30 19:32 - 2015-09-17 00:36 - 01171456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcenter.dll
2015-09-30 19:32 - 2015-09-17 00:35 - 05079552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2015-09-30 19:32 - 2015-09-17 00:35 - 02207232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-09-30 19:32 - 2015-09-17 00:35 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2015-09-30 19:32 - 2015-09-17 00:35 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2015-09-30 19:32 - 2015-09-17 00:34 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2015-09-30 19:32 - 2015-09-17 00:33 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2015-09-30 19:32 - 2015-09-17 00:32 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-09-30 19:32 - 2015-09-17 00:32 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2015-09-30 19:32 - 2015-09-17 00:32 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2015-09-30 19:32 - 2015-09-17 00:32 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2015-09-30 19:32 - 2015-09-17 00:31 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-09-30 19:32 - 2015-09-17 00:31 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2015-09-30 19:32 - 2015-09-17 00:30 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2015-09-30 19:32 - 2015-09-17 00:29 - 01104384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-09-30 19:32 - 2015-09-17 00:29 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2015-09-30 19:32 - 2015-09-17 00:29 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2015-09-30 19:32 - 2015-09-17 00:29 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-09-30 19:32 - 2015-09-17 00:28 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2015-09-30 19:32 - 2015-09-17 00:26 - 00899584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2015-09-30 19:32 - 2015-09-17 00:16 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2015-09-30 19:32 - 2015-09-12 20:41 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2015-09-30 19:30 - 2015-09-24 19:35 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2015-09-30 19:30 - 2015-09-24 19:34 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-09-30 19:30 - 2015-09-24 19:13 - 01276416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-09-30 19:30 - 2015-09-24 18:24 - 00796160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2015-09-30 19:30 - 2015-09-24 18:24 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-09-30 19:30 - 2015-09-24 18:23 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-09-30 19:30 - 2015-09-24 18:08 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-09-30 19:30 - 2015-09-24 18:07 - 01382400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-09-30 19:30 - 2015-09-24 18:06 - 01423872 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-09-30 19:30 - 2015-09-24 18:05 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-09-30 19:30 - 2015-09-24 18:01 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-09-30 19:30 - 2015-09-24 18:01 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2015-09-30 19:30 - 2015-09-24 18:00 - 01205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-09-30 19:30 - 2015-09-24 18:00 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2015-09-30 19:30 - 2015-09-24 18:00 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2015-09-30 19:30 - 2015-09-24 18:00 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2015-09-30 19:30 - 2015-09-17 01:50 - 02464216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-09-30 19:30 - 2015-09-17 01:50 - 01563392 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-09-30 19:30 - 2015-09-17 01:50 - 00099664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2015-09-30 19:30 - 2015-09-17 01:49 - 08020816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-09-30 19:30 - 2015-09-17 01:49 - 01563472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-09-30 19:30 - 2015-09-17 01:49 - 00894256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys
2015-09-30 19:30 - 2015-09-17 01:49 - 00553808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2015-09-30 19:30 - 2015-09-17 01:48 - 02824248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2015-09-30 19:30 - 2015-09-17 01:48 - 02432336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2015-09-30 19:30 - 2015-09-17 01:48 - 02156400 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2015-09-30 19:30 - 2015-09-17 01:48 - 00784136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-09-30 19:30 - 2015-09-17 01:48 - 00584656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-09-30 19:30 - 2015-09-17 01:48 - 00537080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2015-09-30 19:30 - 2015-09-17 01:48 - 00516448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-09-30 19:30 - 2015-09-17 01:48 - 00476760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2015-09-30 19:30 - 2015-09-17 01:48 - 00406864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2015-09-30 19:30 - 2015-09-17 01:48 - 00278352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2015-09-30 19:30 - 2015-09-17 01:48 - 00243760 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-09-30 19:30 - 2015-09-17 01:47 - 01397088 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-09-30 19:30 - 2015-09-17 01:44 - 00781976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2015-09-30 19:30 - 2015-09-17 01:43 - 00966416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-09-30 19:30 - 2015-09-17 01:37 - 01295712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2015-09-30 19:30 - 2015-09-17 01:37 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-09-30 19:30 - 2015-09-17 01:10 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2015-09-30 19:30 - 2015-09-17 01:09 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-09-30 19:30 - 2015-09-17 01:09 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2015-09-30 19:30 - 2015-09-17 01:08 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-09-30 19:30 - 2015-09-17 01:08 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Speech.Pal.dll
2015-09-30 19:30 - 2015-09-17 01:08 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-09-30 19:30 - 2015-09-17 01:06 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-09-30 19:30 - 2015-09-17 01:05 - 02226688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-09-30 19:30 - 2015-09-17 01:05 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-09-30 19:30 - 2015-09-17 01:04 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-09-30 19:30 - 2015-09-17 01:04 - 00910848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2015-09-30 19:30 - 2015-09-17 01:04 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2015-09-30 19:30 - 2015-09-17 01:03 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-09-30 19:30 - 2015-09-17 01:03 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngckeyenum.dll
2015-09-30 19:30 - 2015-09-17 01:00 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-09-30 19:30 - 2015-09-17 01:00 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-09-30 19:30 - 2015-09-17 00:58 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2015-09-30 19:30 - 2015-09-17 00:57 - 02228736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2015-09-30 19:30 - 2015-09-17 00:57 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2015-09-30 19:30 - 2015-09-17 00:57 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-09-30 19:30 - 2015-09-17 00:56 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-09-30 19:30 - 2015-09-17 00:56 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-09-30 19:30 - 2015-09-17 00:55 - 02236416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-09-30 19:30 - 2015-09-17 00:55 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-09-30 19:30 - 2015-09-17 00:55 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx02000.dll
2015-09-30 19:30 - 2015-09-17 00:55 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2015-09-30 19:30 - 2015-09-17 00:55 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2015-09-30 19:30 - 2015-09-17 00:55 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll
2015-09-30 19:30 - 2015-09-17 00:55 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll
2015-09-30 19:30 - 2015-09-17 00:54 - 03781120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-09-30 19:30 - 2015-09-17 00:54 - 00780288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-09-30 19:30 - 2015-09-17 00:54 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-09-30 19:30 - 2015-09-17 00:53 - 07055872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-09-30 19:30 - 2015-09-17 00:52 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2015-09-30 19:30 - 2015-09-17 00:52 - 01216512 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcenter.dll
2015-09-30 19:30 - 2015-09-17 00:52 - 01181696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-09-30 19:30 - 2015-09-17 00:52 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2015-09-30 19:30 - 2015-09-17 00:52 - 00591360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-09-30 19:30 - 2015-09-17 00:52 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-09-30 19:30 - 2015-09-17 00:52 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2015-09-30 19:30 - 2015-09-17 00:52 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2015-09-30 19:30 - 2015-09-17 00:52 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-09-30 19:30 - 2015-09-17 00:52 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2015-09-30 19:30 - 2015-09-17 00:51 - 02660864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-09-30 19:30 - 2015-09-17 00:51 - 01812480 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2015-09-30 19:30 - 2015-09-17 00:51 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-09-30 19:30 - 2015-09-17 00:50 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2015-09-30 19:30 - 2015-09-17 00:50 - 00312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2015-09-30 19:30 - 2015-09-17 00:49 - 01290240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-09-30 19:30 - 2015-09-17 00:49 - 01010176 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-09-30 19:30 - 2015-09-17 00:49 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2015-09-30 19:30 - 2015-09-17 00:48 - 02093056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2015-09-30 19:30 - 2015-09-17 00:48 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2015-09-30 19:30 - 2015-09-17 00:47 - 07523328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-09-30 19:30 - 2015-09-17 00:47 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2015-09-30 19:30 - 2015-09-17 00:47 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2015-09-30 19:30 - 2015-09-17 00:46 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2015-09-30 19:30 - 2015-09-17 00:46 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2015-09-30 19:30 - 2015-09-17 00:46 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2015-09-30 19:30 - 2015-09-17 00:46 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2015-09-30 19:30 - 2015-09-17 00:45 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-09-30 19:30 - 2015-09-17 00:45 - 01331200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-09-30 19:30 - 2015-09-17 00:45 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-09-30 19:30 - 2015-09-17 00:45 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-09-30 19:30 - 2015-09-17 00:45 - 00627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-09-30 19:30 - 2015-09-17 00:44 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2015-09-30 19:30 - 2015-09-17 00:44 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2015-09-30 19:30 - 2015-09-17 00:43 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-09-30 19:30 - 2015-09-17 00:43 - 00378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-09-30 19:30 - 2015-09-17 00:43 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-09-30 19:29 - 2015-09-19 00:14 - 00102304 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2015-09-30 19:29 - 2015-09-17 01:49 - 06487248 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2015-09-30 19:29 - 2015-09-17 01:48 - 02494712 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-09-30 19:29 - 2015-09-17 01:48 - 01983824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-09-30 19:29 - 2015-09-17 01:48 - 00555768 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2015-09-30 19:29 - 2015-09-17 01:48 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2015-09-30 19:29 - 2015-09-17 01:48 - 00395088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2015-09-30 19:29 - 2015-09-17 01:48 - 00332624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2015-09-30 19:29 - 2015-09-17 01:12 - 16708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-09-30 19:29 - 2015-09-17 01:11 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2015-09-30 19:29 - 2015-09-17 01:07 - 21875712 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-09-30 19:29 - 2015-09-17 01:06 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll
2015-09-30 19:29 - 2015-09-17 01:03 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2015-09-30 19:29 - 2015-09-17 01:03 - 00154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2015-09-30 19:29 - 2015-09-17 01:03 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2015-09-30 19:29 - 2015-09-17 01:02 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2015-09-30 19:29 - 2015-09-17 01:02 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2015-09-30 19:29 - 2015-09-17 01:00 - 24595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-09-30 19:29 - 2015-09-17 01:00 - 02417664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-09-30 19:29 - 2015-09-17 00:57 - 00403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2015-09-30 19:29 - 2015-09-17 00:56 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2015-09-30 19:29 - 2015-09-17 00:55 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2015-09-30 19:29 - 2015-09-17 00:55 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2015-09-30 19:29 - 2015-09-17 00:51 - 01203712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-09-30 19:29 - 2015-09-17 00:50 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-09-30 19:29 - 2015-09-17 00:50 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeWiFi.dll
2015-09-30 19:29 - 2015-09-17 00:50 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeCell.dll
2015-09-30 19:29 - 2015-09-17 00:49 - 02740224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-09-30 19:29 - 2015-09-17 00:49 - 00439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationWebproxy.dll
2015-09-30 19:29 - 2015-09-17 00:49 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationGeofences.dll
2015-09-30 19:29 - 2015-09-17 00:49 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2015-09-30 19:29 - 2015-09-17 00:49 - 00215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationCrowdsource.dll
2015-09-30 19:29 - 2015-09-17 00:49 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeIP.dll
2015-09-30 19:29 - 2015-09-17 00:49 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationWiFiAdapter.dll
2015-09-30 19:29 - 2015-09-17 00:48 - 00408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2015-09-30 19:29 - 2015-09-17 00:48 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2015-09-30 19:29 - 2015-09-17 00:46 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2015-09-30 19:29 - 2015-09-17 00:46 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2015-09-30 19:29 - 2015-09-17 00:46 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncmlhook.dll
2015-09-30 19:29 - 2015-09-17 00:44 - 01844736 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2015-09-30 19:29 - 2015-09-17 00:44 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2015-09-30 19:29 - 2015-09-12 21:05 - 02987520 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-09-30 19:28 - 2015-09-24 18:17 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-09-30 19:28 - 2015-09-24 17:53 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-09-30 19:28 - 2015-09-24 17:42 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-09-30 19:28 - 2015-09-17 01:50 - 00088384 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-09-30 19:28 - 2015-09-17 01:49 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-09-30 19:28 - 2015-09-17 01:48 - 00809352 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2015-09-30 19:28 - 2015-09-17 01:39 - 00081488 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-09-30 19:28 - 2015-09-17 01:06 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-09-30 19:28 - 2015-09-17 01:00 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\KeywordDetectorMsftSidAdapter.dll
2015-09-30 19:28 - 2015-09-17 00:51 - 01067520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-09-30 19:28 - 2015-09-17 00:50 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\buttonconverter.sys
2015-09-30 19:28 - 2015-09-17 00:48 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2015-09-30 19:28 - 2015-09-17 00:48 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-09-30 19:28 - 2015-09-17 00:46 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-09-30 19:11 - 2015-09-30 19:11 - 04559688 _____ (Avira Operations GmbH & Co. KG) C:\Users\Christian\Downloads\avira_en_av_5605c195aa733__ws (2).exe
2015-09-30 16:18 - 2015-09-30 16:18 - 00144483 _____ C:\Users\Christian\Desktop\Addition.txt
2015-09-30 16:17 - 2015-09-30 16:17 - 00000000 ____D C:\Users\Christian\Desktop\(x86)
2015-09-30 16:16 - 2015-09-30 16:16 - 00000129 _____ C:\Users\Christian\Desktop\CPU and RAM running at 100% Can't do anything within Windows - Geeks to Go Forum.url
2015-09-28 14:59 - 2015-09-28 14:59 - 00364944 _____ C:\WINDOWS\Minidump\092815-65781-01.dmp
2015-09-28 13:22 - 2015-10-02 05:55 - 00036826 _____ C:\Users\Christian\Desktop\FRST.txt
2015-09-28 13:21 - 2015-10-02 05:55 - 00000000 ____D C:\FRST
2015-09-28 13:17 - 2015-09-28 13:18 - 02192384 _____ (Farbar) C:\Users\Christian\Desktop\FRST64.exe
2015-09-28 12:45 - 2015-09-30 19:16 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2015-09-26 09:41 - 2015-09-26 09:42 - 00262144 _____ C:\WINDOWS\Minidump\092615-48359-01.dmp
2015-09-25 22:19 - 2015-09-25 22:19 - 00365272 _____ C:\WINDOWS\Minidump\092515-17296-01.dmp
2015-09-25 20:17 - 2015-09-01 17:09 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2015-09-25 20:09 - 2015-09-25 20:17 - 00000000 ____D C:\ProgramData\Avira
2015-09-25 20:09 - 2015-09-25 20:17 - 00000000 ____D C:\Program Files (x86)\Avira
2015-09-25 17:51 - 2015-09-25 17:51 - 00015357 _____ C:\Users\Christian\Downloads\compactalet.zip
2015-09-25 16:54 - 2015-09-25 16:54 - 00024448 _____ C:\Users\Christian\Downloads\45_photoshop_shields_shapes_by_tutsii.csh
2015-09-25 16:54 - 2015-09-25 16:54 - 00024448 _____ C:\Users\Christian\Downloads\45_photoshop_shields_shapes_by_tutsii (1).csh
2015-09-25 16:53 - 2015-09-25 16:53 - 04559688 _____ (Avira Operations GmbH & Co. KG) C:\Users\Christian\Downloads\avira_en_av_5605c195aa733__ws (1).exe
2015-09-25 16:50 - 2015-09-25 16:50 - 04559688 _____ (Avira Operations GmbH & Co. KG) C:\Users\Christian\Downloads\avira_en_av_5605c195aa733__ws.exe
2015-09-25 16:49 - 2015-09-25 16:49 - 00000000 ___DL C:\ProgramData\Adobe
2015-09-25 16:49 - 2015-09-25 16:49 - 00000000 ____D C:\Users\Christian\AppData\Roaming\PDAppFlex
2015-09-25 15:53 - 2015-09-25 15:53 - 00025969 _____ C:\Users\Christian\Downloads\TundraMultimediaInc.-InvoiceTemplate.odt
2015-09-22 18:38 - 2015-09-13 16:57 - 00574256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2015-09-22 18:37 - 2015-09-13 19:24 - 42840184 _____ C:\WINDOWS\system32\nvcompiler.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 37819000 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 18569848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 16646112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 15631128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 14945040 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 13666840 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 12191856 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 02354808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 02105976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 01898104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435598.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 01558832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435598.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 01178248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 01075320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 01064056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 01001440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00986416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00945272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00787384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00785152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00632664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00631128 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00601240 _____ C:\WINDOWS\system32\nvmcumd.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00408184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00387720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00376440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00364152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00339760 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00316120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00177088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00155792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00150648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00128696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2015-09-20 14:00 - 2015-09-20 14:00 - 00012520 _____ C:\Users\Christian\Downloads\cyberfunk.zip
2015-09-20 14:00 - 2015-09-20 14:00 - 00007175 _____ C:\Users\Christian\Downloads\rezland.zip
2015-09-20 13:10 - 2015-09-20 13:10 - 00029814 _____ C:\Users\Christian\Downloads\abode.zip
2015-09-20 13:05 - 2015-09-20 13:05 - 00548090 _____ C:\Users\Christian\Downloads\dreamwalker.zip
2015-09-20 12:53 - 2015-09-20 12:53 - 00015387 _____ C:\Users\Christian\Downloads\45_photoshop_shields_shapes.zip
2015-09-20 12:50 - 2015-09-20 12:50 - 00102147 _____ C:\Users\Christian\Downloads\shields-Shapes4FREE.zip
2015-09-16 16:51 - 2015-09-16 16:51 - 00000000 ___RD C:\Users\Christian\3D Objects
2015-09-08 15:56 - 2015-08-27 01:36 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-09-08 15:56 - 2015-08-27 01:32 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-09-08 15:56 - 2015-08-27 00:59 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-09-08 15:56 - 2015-08-27 00:54 - 00541248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-09-08 15:56 - 2015-08-27 00:54 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-09-08 15:56 - 2015-08-27 00:51 - 02350592 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-09-08 15:56 - 2015-08-27 00:51 - 01774592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-08 15:56 - 2015-08-27 00:49 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-09-08 15:56 - 2015-08-27 00:47 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-09-08 15:56 - 2015-08-27 00:43 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-09-08 15:56 - 2015-08-27 00:43 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-09-08 15:56 - 2015-08-27 00:42 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-09-08 15:56 - 2015-08-27 00:42 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-09-08 15:56 - 2015-08-27 00:42 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2015-09-08 15:56 - 2015-08-27 00:39 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-09-08 15:56 - 2015-08-27 00:23 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-09-08 15:56 - 2015-08-27 00:16 - 02153472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-09-08 15:56 - 2015-08-27 00:16 - 01612288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-09-08 15:56 - 2015-08-27 00:12 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-09-08 15:56 - 2015-08-27 00:12 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-09-08 15:56 - 2015-08-27 00:11 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2015-09-08 15:56 - 2015-08-27 00:11 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2015-09-08 15:56 - 2015-08-27 00:09 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-09-08 15:56 - 2015-08-27 00:08 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-09-06 17:58 - 2015-09-06 17:58 - 00002286 _____ C:\Users\Christian\Downloads\afro.svg
2015-09-05 16:07 - 2015-09-05 16:07 - 00000006 ____S C:\ProgramData\cfc4764f3bbfae7c2c155456e0ae08a61242b9ff
2015-09-05 14:31 - 2015-09-05 14:31 - 00000000 ____D C:\Users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2
2015-09-05 14:28 - 2015-09-05 14:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image Line FL Studio Producer Edition
2015-09-05 14:28 - 2015-09-05 14:28 - 00000000 ____D C:\Program Files (x86)\Image Line FL Studio Producer Edition
2015-09-05 14:24 - 2015-09-05 14:31 - 00000000 ____D C:\Users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line
2015-09-05 14:24 - 2015-09-05 14:24 - 00000000 ____D C:\Users\Christian\Documents\Image-Line
2015-09-05 14:24 - 2015-09-05 14:24 - 00000000 ____D C:\Users\Christian\AppData\Roaming\Image-Line
2015-09-05 14:24 - 2015-09-05 14:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image-Line
2015-09-05 14:24 - 2015-09-05 14:24 - 00000000 ____D C:\Program Files\Image-Line
2015-09-05 14:24 - 2015-09-05 14:24 - 00000000 ____D C:\Program Files\Common Files\Propellerhead Software
2015-09-05 14:20 - 2015-09-05 14:20 - 43246275 _____ C:\Users\Christian\Downloads\blackguards_ost_mp3_1415656995.zip
2015-09-05 14:18 - 2015-09-30 20:01 - 00000000 ___HD C:\Users\Christian\AppData\Roaming\Realtek Audio Control
2015-09-05 14:16 - 2015-09-05 14:28 - 00000000 ____D C:\Users\Christian\AppData\Roaming\Application Store
2015-09-05 14:16 - 2015-09-05 14:25 - 00000000 ____D C:\Program Files (x86)\Image-Line
2015-09-05 14:15 - 2015-09-05 14:15 - 00000000 __HDC C:\ProgramData\{76224FB4-131A-42F7-AC4F-ACA025FCC383}
2015-09-05 14:15 - 2015-09-05 14:15 - 00000000 ____D C:\Users\Christian\AppData\Local\InstallAware Installation Information
2015-09-04 19:35 - 2015-09-04 19:35 - 00000000 ____D C:\Users\Christian\AppData\Local\Curve Digital
2015-09-03 16:13 - 2015-09-03 16:13 - 00000000 __SHD C:\found.006
2015-09-02 22:18 - 2015-09-03 07:39 - 00000000 ____D C:\Users\Christian\Desktop\Stream Applications
2015-09-02 21:04 - 2015-08-25 13:38 - 01898104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435582.dll
2015-09-02 21:04 - 2015-08-25 13:38 - 01558648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435582.dll
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-10-02 05:55 - 2015-07-10 07:22 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-10-02 05:35 - 2015-07-10 06:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-10-02 05:17 - 2015-02-05 10:04 - 00000938 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d041557818a6e.job
2015-10-01 22:17 - 2015-02-05 10:04 - 00000934 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d041557696e34.job
2015-10-01 21:27 - 2015-07-10 06:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-10-01 18:34 - 2015-08-04 09:34 - 01005598 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-01 18:27 - 2015-07-10 07:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-10-01 18:27 - 2015-07-10 07:20 - 00297952 _____ C:\WINDOWS\setupact.log
2015-10-01 18:27 - 2015-07-10 04:05 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2015-10-01 18:27 - 2013-06-16 19:34 - 00000000 ____D C:\ProgramData\NVIDIA
2015-10-01 17:51 - 2015-08-04 09:46 - 00000000 ____D C:\Users\Christian\AppData\Local\Packages
2015-10-01 17:17 - 2013-06-16 18:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2015-10-01 09:01 - 2015-08-04 09:29 - 00612222 _____ C:\WINDOWS\PFRO.log
2015-10-01 08:57 - 2013-06-16 18:05 - 00000000 ____D C:\ProgramData\AVAST Software
2015-10-01 06:25 - 2013-10-05 23:01 - 00000000 ____D C:\ProgramData\Package Cache
2015-10-01 03:30 - 2015-07-10 06:04 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2015-10-01 03:30 - 2015-07-10 06:04 - 00000000 ___SD C:\WINDOWS\system32\F12
2015-10-01 03:30 - 2015-07-10 06:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-10-01 03:30 - 2015-07-10 06:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-01 03:30 - 2015-07-10 06:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-10-01 03:30 - 2015-07-10 06:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-10-01 03:30 - 2015-07-10 06:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-10-01 03:30 - 2015-07-10 06:04 - 00000000 ____D C:\WINDOWS\Provisioning
2015-10-01 03:30 - 2015-07-10 06:04 - 00000000 ____D C:\WINDOWS\L2Schemas
2015-09-30 20:39 - 2015-08-04 09:47 - 00000000 ____D C:\Users\Christian\AppData\Local\Publishers
2015-09-30 19:51 - 2015-07-10 05:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-09-28 18:29 - 2015-08-04 09:37 - 00000000 ____D C:\Users\Christian
2015-09-28 18:07 - 2014-01-15 07:36 - 00000000 ____D C:\Users\Christian\AppData\Local\CrashDumps
2015-09-28 14:59 - 2015-08-21 12:53 - 00000000 ____D C:\WINDOWS\Minidump
2015-09-28 14:58 - 2014-12-20 07:37 - 1760089940 ____N C:\WINDOWS\MEMORY.DMP
2015-09-28 13:22 - 2013-06-16 23:18 - 00000000 ____D C:\Users\Christian\AppData\Local\Adobe
2015-09-25 20:42 - 2013-11-17 09:53 - 00000000 ____D C:\Users\Christian\AppData\Local\Spotify
2015-09-25 20:42 - 2013-07-30 06:49 - 00000000 ____D C:\Users\Christian\AppData\Roaming\TS3Client
2015-09-25 20:05 - 2013-11-17 09:53 - 00000000 ____D C:\Users\Christian\AppData\Roaming\Spotify
2015-09-25 19:39 - 2015-07-10 07:20 - 05128072 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-09-25 16:49 - 2013-10-30 17:33 - 00000000 ____D C:\Users\Christian\Documents\Adobe
2015-09-25 16:49 - 2013-08-27 17:34 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2015-09-25 16:49 - 2013-06-16 19:11 - 00000000 ____D C:\Users\Christian\AppData\Roaming\Adobe
2015-09-22 18:38 - 2015-08-04 09:31 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-09-22 18:38 - 2013-06-16 19:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-09-21 17:55 - 2015-07-23 04:02 - 11198080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-09-21 16:17 - 2015-07-25 12:01 - 00000000 ___RD C:\Users\Christian\Desktop\Files
2015-09-21 16:17 - 2014-05-24 16:26 - 00000000 ___RD C:\Users\Christian\Desktop\Games
2015-09-20 21:01 - 2013-10-05 22:33 - 00000000 ____D C:\ProgramData\Origin
2015-09-20 18:28 - 2013-06-20 16:43 - 00226680 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2015-09-20 18:17 - 2013-06-20 16:43 - 00226680 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2015-09-20 16:44 - 2013-07-12 18:44 - 00000000 ____D C:\Users\Christian\AppData\Local\ArmA 2 OA
2015-09-20 07:44 - 2015-08-09 19:11 - 00204056 _____ C:\WINDOWS\system32\Drivers\EasyAntiCheat.sys
2015-09-19 13:19 - 2014-04-15 19:07 - 00000000 ____D C:\Users\Christian\AppData\Roaming\.minecraft
2015-09-19 13:17 - 2013-06-16 16:45 - 00000000 ____D C:\Users\Christian\AppData\Local\VirtualStore
2015-09-19 13:12 - 2014-12-19 19:37 - 00000000 ____D C:\Program Files (x86)\Minecraft
2015-09-18 17:19 - 2015-07-10 08:14 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-18 17:19 - 2014-06-13 09:40 - 00000000 ____D C:\Users\Christian\Documents\ArmAWork
2015-09-18 17:13 - 2013-07-09 12:32 - 00000000 ____D C:\Users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bohemia Interactive
2015-09-15 11:12 - 2015-07-10 06:06 - 00812008 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-09-15 11:12 - 2015-07-10 06:06 - 00178152 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-09-14 22:12 - 2015-02-05 10:04 - 00004024 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1d041557818a6e
2015-09-14 22:12 - 2015-02-05 10:04 - 00003792 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore1d041557696e34
2015-09-13 19:24 - 2015-07-23 04:02 - 22559352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2015-09-13 19:24 - 2015-07-23 04:02 - 17934400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2015-09-13 19:24 - 2015-07-23 04:02 - 15336024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2015-09-13 19:24 - 2015-07-23 04:02 - 12611632 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2015-09-13 19:24 - 2015-07-23 04:02 - 03484216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2015-09-13 19:24 - 2015-07-23 04:02 - 03077544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2015-09-13 19:24 - 2015-07-23 04:02 - 00034098 _____ C:\WINDOWS\system32\nvinfo.pb
2015-09-13 19:24 - 2014-12-03 19:58 - 00112760 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2015-09-13 19:24 - 2014-12-03 19:58 - 00105080 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2015-09-13 17:04 - 2014-12-03 19:58 - 06885168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-09-13 17:04 - 2014-12-03 19:58 - 03496056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2015-09-13 17:04 - 2014-12-03 19:58 - 02558584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-09-13 17:04 - 2014-12-03 19:58 - 00937776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-09-13 17:04 - 2014-12-03 19:58 - 00385144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-09-13 17:04 - 2014-12-03 19:58 - 00062768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-09-11 18:27 - 2014-01-23 22:04 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-09-11 07:17 - 2014-12-03 19:58 - 05231082 _____ C:\WINDOWS\system32\nvcoproc.bin
2015-09-10 16:01 - 2013-06-16 17:10 - 00000000 ____D C:\Users\Christian\AppData\Local\Google
2015-09-08 16:09 - 2013-08-15 03:00 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-09-07 19:19 - 2013-10-08 06:46 - 00000000 ____D C:\Users\Christian\AppData\Roaming\vlc
2015-09-05 09:02 - 2015-08-04 09:54 - 00000000 ____D C:\Users\Christian\AppData\Local\Deployment
2015-09-04 22:00 - 2013-08-18 18:48 - 00000000 ____D C:\Users\Christian\AppData\Roaming\OBS
2015-09-04 21:59 - 2013-06-18 13:51 - 00000000 ____D C:\Users\Christian\AppData\Roaming\Skype
2015-09-04 07:06 - 2015-08-04 09:31 - 00016408 _____ C:\WINDOWS\system32\lvcoinst.log
2015-09-03 08:25 - 2014-10-27 18:53 - 00000000 ____D C:\Users\Christian\AppData\Local\Eric_Zhang
2015-09-02 22:44 - 2013-06-20 15:41 - 01065224 _____ C:\WINDOWS\DirectX.log
2015-09-02 22:23 - 2009-07-13 21:34 - 00000900 _____ C:\WINDOWS\system32\Drivers\etc\HOSTS.BackupByPhotoshopPortable
2015-09-02 21:45 - 2015-03-01 15:04 - 00433664 _____ (Newtonsoft) C:\Users\Christian\Downloads\Newtonsoft.Json.dll
2015-09-02 21:45 - 2015-03-01 15:04 - 00044032 _____ (NirSoft) C:\Users\Christian\Downloads\nircmd.exe
 
==================== Files in the root of some directories =======
 
2013-12-29 14:21 - 2014-01-04 20:00 - 0000132 _____ () C:\Users\Christian\AppData\Roaming\Adobe PNG Format CC Prefs
2014-02-06 19:58 - 2014-02-09 11:00 - 0000132 _____ () C:\Users\Christian\AppData\Roaming\Adobe PNG Format CS6 Prefs
2013-12-24 17:04 - 2013-12-24 17:07 - 0000132 _____ () C:\Users\Christian\AppData\Roaming\Adobe Targa Format CC Prefs
2014-03-30 10:15 - 2014-09-20 17:02 - 0000303 _____ () C:\Users\Christian\AppData\Roaming\BreakingPoint_Login.ini
2014-03-01 09:37 - 2014-09-20 17:39 - 0001751 _____ () C:\Users\Christian\AppData\Roaming\BreakingPoint_Options.ini
2013-12-12 16:05 - 2013-12-12 16:05 - 0108564 _____ () C:\Users\Christian\AppData\Roaming\icarus-dxdiag.xml
2014-11-13 13:56 - 2014-11-13 13:56 - 0000112 _____ () C:\Users\Christian\AppData\Roaming\JP2K CS6 Prefs
2013-07-13 18:33 - 2015-06-13 13:06 - 0000600 _____ () C:\Users\Christian\AppData\Roaming\winscp.rnd
2014-11-11 00:30 - 2014-12-12 17:07 - 0001456 _____ () C:\Users\Christian\AppData\Local\Adobe Save for Web 13.0 Prefs.BackupByPhotoshopPortable
2014-01-14 19:11 - 2015-07-19 11:00 - 0011264 _____ () C:\Users\Christian\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-08-08 09:32 - 2015-08-08 09:32 - 0000000 _____ () C:\Users\Christian\AppData\Local\DVDPATH.TXT
2008-02-05 14:28 - 2008-02-05 14:28 - 0000051 _____ () C:\Users\Christian\AppData\Local\setup.txt
2013-06-18 14:31 - 2013-06-18 14:31 - 0000057 _____ () C:\ProgramData\Ament.ini
2015-09-05 16:07 - 2015-09-05 16:07 - 0000006 ____S () C:\ProgramData\cfc4764f3bbfae7c2c155456e0ae08a61242b9ff
2015-08-04 09:30 - 2015-08-04 09:30 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-12-07 11:24 - 2014-12-07 11:24 - 0005045 _____ () C:\ProgramData\wmzddnmb.cix
 
Some files in TEMP:
====================
C:\Users\Christian\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpkv2x8i.dll
C:\Users\Christian\AppData\Local\Temp\mirc741.exe
C:\Users\Christian\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Christian\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Christian\AppData\Local\Temp\nvStInst.exe
C:\Users\Christian\AppData\Local\Temp\sqlite3.dll
C:\Users\Christian\AppData\Local\Temp\uninstall.exe
 
 
==================== Bamital & volsnap =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2015-10-01 03:41
 
==================== End of FRST.txt ============================
 
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version:27-09-2015 01
Ran by Christian (2015-10-02 05:55:55)
Running from C:\Users\Christian\Desktop
Windows 10 Pro (X64) (2015-08-04 14:46:44)
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-2842136386-2703010871-4203806482-500 - Administrator - Disabled)
Christian (S-1-5-21-2842136386-2703010871-4203806482-1000 - Administrator - Enabled) => C:\Users\Christian
DefaultAccount (S-1-5-21-2842136386-2703010871-4203806482-503 - Limited - Disabled)
Guest (S-1-5-21-2842136386-2703010871-4203806482-501 - Limited - Disabled)
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
7 Days to Die - Alpha version 0.9.1 (HKLM-x32\...\{967E55B4-6DDD-4A2F-BFC7-07F1E327971E}_is1) (Version: 0.9.1 - The Fun Pimps LLC)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
A3Launcher version 0.0.0.3 (HKLM-x32\...\{E31045B4-9DB5-9EBD-44DF-BD4CFDE640DF}_is1) (Version: 0.0.0.3 - Maca134)
Action! (HKLM-x32\...\Mirillis Action!) (Version: 1.16.3 - Mirillis)
Addon Sync 2009 (HKLM-x32\...\{4E3AA543-09D7-401E-9DF2-2591D24C7C49}) (Version: 1.0.67 - YomaTools)
Adobe Acrobat X Pro - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000005}) (Version: 10.1.1 - Adobe Systems)
Adobe After Effects 7.0 (HKLM-x32\...\Adobe After Effects 7.0) (Version: 7.0.0.244 - Adobe Systems, Inc.)
Adobe After Effects CC 2014 (HKLM-x32\...\{2B22C750-5C3B-4738-B621-BA786AC7A494}) (Version: 13.1.1 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 18.0.0.199 - Adobe Systems Incorporated)
Adobe Creative Suite 6 Master Collection (HKLM-x32\...\{E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0}) (Version: 6 - Adobe Systems Incorporated)
Adobe Flash Media Live Encoder 3.2 (HKLM-x32\...\{0659E943-DDF4-44FC-9FEE-A13B09F8BB08}) (Version: 3.2.0 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.287 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Illustrator CC 2014 (HKLM-x32\...\{2B4B4082-8043-4646-8334-B0A29E641211}) (Version: 18.1.0 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2014 (HKLM-x32\...\{663DEEEF-EF34-4DCB-8687-73A7AA146E02}) (Version: 8.1.0 - Adobe Systems Incorporated)
Adobe Photoshop CS2 (HKLM-x32\...\Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0409-1E257A25E34D}) (Version: 9.0 - Adobe Systems, Inc.)
Adobe Premiere Pro 2.0 (HKLM-x32\...\Adobe Premiere Pro 2.0) (Version: 2.000.000 - Adobe Systems, Inc.)
Adobe Premiere Pro CC 2014 (HKLM-x32\...\{07BE616F-9E42-4C90-AF4F-0F32A5B088E7}) (Version: 8.2.0 - Adobe Systems Incorporated)
Adobe Widget Browser (HKLM-x32\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.)
AdVenture Capitalist (HKLM-x32\...\Steam App 346900) (Version:  - Hyper Hippo Games)
Aftermath version 1.0 (HKLM-x32\...\{024D0ADC-6846-4B7A-B12F-D571DF826068}}_is1) (Version: 1.0 - Free Reign Entertainment)
AI Suite II (HKLM-x32\...\{34D3688E-A737-44C5-9E2A-FF73618728E1}) (Version: 2.00.00 - ASUSTeK Computer Inc.)
Anarchy Arcade (HKLM-x32\...\Steam App 266430) (Version:  - Elijah Newman-Gomez)
Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ArcSoft TotalMedia Extreme (HKLM-x32\...\{88B05038-C890-468B-A563-0015FD53CDC3}) (Version:  - ArcSoft)
ARK: Survival Evolved (HKLM-x32\...\Steam App 346110) (Version:  - Studio Wildcard)
Arma 2 (HKLM-x32\...\Steam App 33900) (Version:  - Bohemia Interactive)
Arma 2: Operation Arrowhead (HKLM-x32\...\Steam App 33930) (Version:  - Bohemia Interactive)
Arma 2: Operation Arrowhead Beta (HKLM-x32\...\Steam App 219540) (Version:  - )
Arma 3 (HKLM-x32\...\Steam App 107410) (Version:  - Bohemia Interactive)
Arma 3 Server (HKLM-x32\...\Steam App 233780) (Version:  - Bohemia Interactive)
Arma 3 Tools (HKLM-x32\...\Steam App 233800) (Version:  - Bohemia Interactive)
ArmA3Sync 1.4.54 (HKLM-x32\...\{F097E7D7-D093-4394-9EED-43AFCCD12B7A}_is1) (Version: 1.4.54 - The [S.o.E] team)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.14.3.0 - Asmedia Technology)
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}) (Version: 1.3.4.000 - Asmedia Technology)
Assassin's Creed Unity (HKLM-x32\...\Uplay Install 720) (Version:  - Ubisoft)
ASUS Product Register Program (HKLM-x32\...\{49BE9B8A-E858-4533-A74A-64306C13DB59}) (Version: 1.0.014 - ASUS)
Audacity 2.0.3 (HKLM-x32\...\Audacity_is1) (Version: 2.0.3 - Audacity Team)
Autodesk 3ds Max 2015 (HKLM\...\Autodesk 3ds Max 2015) (Version: 17.0.630.0 - Autodesk)
Autodesk 3ds Max 2015 (Version: 17.0.630.0 - Autodesk) Hidden
Autodesk 3ds Max 2015 Populate Data (HKLM\...\{57E92DED-DC6C-41E5-B9E1-76D83BD2EABE}) (Version: 17.0.0.0 - Autodesk)
Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 4.0.69.0 - Autodesk)
Autodesk Backburner 2015 (HKLM-x32\...\{8C5F38D2-8EFE-49A4-B3F5-BF3210FED168}) (Version: 15.0.0.0 - Autodesk)
Autodesk DirectConnect 2015 64-bit (HKLM\...\Autodesk DirectConnect 2015 64-bit) (Version: 9.0.56.4 - Autodesk)
Autodesk DirectConnect 2015 64-bit (Version: 9.0.56.4 - Autodesk) Hidden
Autodesk Inventor Server Engine for 3ds Max 2015 (HKLM\...\{9167CA34-4E48-49E3-8892-3C439739D2D3}) (Version: 17.0 - Autodesk)
Autodesk Material Library 2015 (HKLM-x32\...\{427F733F-4D6C-45BC-9324-EB743104C321}) (Version: 5.2.9.100 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2015 (HKLM-x32\...\{ABE2F70B-8D94-44E9-AA04-F0DB35063D62}) (Version: 5.2.9.100 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2015 (HKLM-x32\...\{9F6466D9-6EFC-4A10-B931-C72D1A3F1763}) (Version: 5.2.9.100 - Autodesk)
Autodesk Revit Interoperability for 3ds Max 2015 (HKLM\...\Autodesk Revit Interoperability for 3ds Max 2015) (Version: 15.0.107.0 - Autodesk)
Autodesk Revit Interoperability for 3ds Max 2015 (Version: 15.0.107.0 - Autodesk) Hidden
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.4.2233 - AVAST Software)
Awesomium Redistributable (HKLM-x32\...\{5BCB064B-9F65-4E15-BAFB-669E72E54FD9}) (Version: 1.7.4.2 - SIX Networks GmbH)
AwesomiumSetup (HKLM-x32\...\{19EF99D1-7EE6-4B5E-ABEE-0B3825F703B0}) (Version: 1.00.0000 - SIX Networks GmbH)
Battlefield 2 (HKLM-x32\...\Steam App 24860) (Version:  - DICE)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.5.2.34169 - Electronic Arts)
Battlefield: Bad Company 2 (HKLM-x32\...\Steam App 24960) (Version:  - DICE)
Battlefield: Bad Company™ 2 (HKLM-x32\...\{3AC8457C-0385-4BEA-A959-E095F05D6D67}) (Version: 1.0.0.0 - Electronic Arts)
Battlefield™ Hardline (HKLM-x32\...\{CB4AC3DA-8CC1-4516-86DA-4078B57DB229}) (Version: 1.2.0.6 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.7.1 - EA Digital Illusions CE AB)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version:  - )
BattlEye Uninstall (HKLM-x32\...\BattlEye for A2) (Version:  - )
BinMake Uninstall (HKLM-x32\...\BinMake) (Version:  - )
BioShock Infinite (HKLM-x32\...\Steam App 8870) (Version:  - Irrational Games)
BI's Tools drive Uninstall (HKLM-x32\...\BI's Tools drive) (Version:  - )
BitRaider Web Client (HKLM-x32\...\BitRaider Web Client) (Version: 1.1.8.1 - BitRaider, LLC)
BitTorrent Sync (HKLM-x32\...\BitTorrent Sync) (Version: 1.4.83 - BitTorrent Inc.)
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
Black Tomato Mod version 0.5 (HKLM-x32\...\{C15DE3EF-E89E-40D7-B864-CEFDFEDB6683}_is1) (Version: 0.5 - Dan)
Blender (HKLM\...\Blender) (Version: 2.74 - Blender Foundation)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Borderlands 2 (HKLM-x32\...\Steam App 49520) (Version:  - Gearbox Software)
Build and Shoot Launcher 1.2 (HKLM-x32\...\Build and Shoot Launcher) (Version: 1.2 - Buld Then Snip, LLC)
Call of Duty Black Ops - Remote Console (HKLM-x32\...\Steam App 42720) (Version:  - Treyarch)
Call of Duty: Advanced Warfare - Multiplayer (HKLM-x32\...\Steam App 209660) (Version:  - Sledgehammer Games)
Call of Duty: Advanced Warfare (HKLM-x32\...\Steam App 209650) (Version:  - Sledgehammer Games)
Call of Duty: Black Ops - Multiplayer (HKLM-x32\...\Steam App 42710) (Version:  - Treyarch)
Call of Duty: Black Ops (HKLM-x32\...\Steam App 42700) (Version:  - Treyarch)
Call of Duty: Black Ops II - Multiplayer (HKLM-x32\...\Steam App 202990) (Version:  - Treyarch)
Call of Duty: Black Ops II - Zombies (HKLM-x32\...\Steam App 212910) (Version:  - )
Call of Duty: Black Ops II (HKLM-x32\...\Steam App 202970) (Version:  - Treyarch)
Call of Duty: Black Ops III Beta (HKLM-x32\...\Steam App 388520) (Version:  - Treyarch)
Call of Duty: Ghosts - Multiplayer (HKLM-x32\...\Steam App 209170) (Version:  - Infinity Ward)
Call of Duty: World at War (HKLM-x32\...\Steam App 10090) (Version:  - Treyarch)
CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden
Camtasia Studio 8 (HKLM-x32\...\{A7727F03-5311-4A12-9A63-2ACD20BA0497}) (Version: 8.2.1.1423 - TechSmith Corporation)
Castle Crashers (HKLM-x32\...\Steam App 204360) (Version:  - The Behemoth)
CCGLauncher version 0.0.0.9 (HKLM-x32\...\{78D51CE5-799C-4FCA-9635-6F61E19EA5E3}_is1) (Version: 0.0.0.9 - Custom Combat Gaming)
CCleaner (HKLM\...\CCleaner) (Version: 5.01 - Piriform)
Celtx (2.9.7) (HKLM-x32\...\Celtx (2.9.7)) (Version: 2.9.7 (en-US) - Greyfirst)
Cities XL Platinum (HKLM-x32\...\Steam App 231140) (Version:  - Focus Home Interactive)
Clownfish for Skype (HKLM-x32\...\Clownfish) (Version:  - )
Contagion (HKLM-x32\...\Steam App 238430) (Version:  - Monochrome LLC)
Counter-Strike: Global Offensive - SDK (HKLM-x32\...\Steam App 745) (Version:  - )
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version:  - Valve)
Crafty 1.0.2 (HKLM-x32\...\Crafty_is1) (Version:  - Ryan Gregg)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.1.0.0074 - Disc Soft Ltd)
DayZ (HKLM-x32\...\Steam App 221100) (Version:  - Bohemia Interactive)
DayZ Commander (HKLM-x32\...\{0B74EC0B-2A85-4542-A167-3DE2132E7DAA}) (Version: 0.92.85 - Dotjosh Studios)
DayZLauncher version 0.0.0.15 (HKLM-x32\...\{E31045B4-9DB5-9EBD-44DF-BD4E6CFD40DF}_is1) (Version: 0.0.0.15 - Maca134)
DayZLauncher version 0.0.0.7 (HKLM-x32\...\{E31045B4-9DB5-44DF-9EBD-BD4CFDE640FD}_is1) (Version: 0.0.0.7 - Maca134)
Dead Island Riptide (HKLM-x32\...\Steam App 216250) (Version:  - Techland)
Dead Space™ (HKLM-x32\...\{9789E33B-317A-44B2-AF9A-FF8708AD93E0}) (Version: 1.0.0.222 - Electronic Arts)
DefianceRuntimes (HKLM-x32\...\{79B1FF35-9EA8-48ED-98D6-19ABE004BE89}) (Version: 1.0.2 - Trion Worlds, Inc.)
Desura (HKLM-x32\...\Desura) (Version: 100.64 - Desura)
Dirty Bomb (HKLM-x32\...\Steam App 333930) (Version:  - Splash Damage®)
Dishonored (HKLM-x32\...\Steam App 205100) (Version:  - Arkane Studios)
Don't Starve (HKLM-x32\...\Steam App 219740) (Version:  - Klei Entertainment)
Don't Starve Together Beta (HKLM-x32\...\Steam App 322330) (Version:  - Klei Entertainment)
Dota 2 (HKLM-x32\...\Steam App 570) (Version:  - Valve)
Dragon Age: Origins (HKLM-x32\...\{AEC81925-9C76-4707-84A9-40696C613ED3}) (Version: 1.05.0.0 - Electronic Arts)
Dropbox (HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\Dropbox) (Version: 3.0.3 - Dropbox, Inc.)
Dungeon Defenders (HKLM-x32\...\Steam App 65800) (Version:  - Trendy Entertainment)
Dxtory version 2.0.132 (HKLM-x32\...\Dxtory2.0_is1) (Version: 2.0.132 - ExKode Co. Ltd.)
Epic Pen (HKLM-x32\...\Epic Pen_is1) (Version:  - Brian Hoary)
Epoch Launcher (HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\de6ddf4941177887) (Version: 0.0.1.12 - Epoch Mod Team)
erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
Everything 1.3.4.686 (x64) (HKLM\...\Everything) (Version:  - )
Facebook Messenger 2.1.4814.0 (HKLM-x32\...\{7204BDEE-1A48-4D95-A964-44A9250B439E}) (Version: 2.1.4814.0 - Facebook)
Farming Simulator 15 (HKLM-x32\...\FarmingSimulator2015INT_is1) (Version: 1.2.0.0 - GIANTS Software)
Fistful of Frags (HKLM-x32\...\Steam App 265630) (Version:  - Fistful of Frags Team)
Five Nights at Freddy's (HKLM-x32\...\Steam App 319510) (Version:  - Scott Cawthon)
FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version:  - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version:  - Image-Line)
foobar2000 v1.2.9 (HKLM-x32\...\foobar2000) (Version: 1.2.9 - Peter Pawlowski)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
Free Video Compressor (HKLM-x32\...\{01554C33-4131-4BC7-9E6D-AF85E02BDF4F}_is1) (Version:  - freevideocompressor.com)
FTL: Faster Than Light (HKLM-x32\...\Steam App 212680) (Version:  - Subset Games)
GameMaker-Studio 1.2 (HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\GameMaker-Studio12) (Version:  - YoYo Games Ltd.)
GameSpy Comrade (HKLM-x32\...\{894084B6-BC69-43B7-BF06-B93AECFEA520}) (Version: 2.1.1.214 - GameSpy)
GameTracker Lite (HKLM-x32\...\GameTracker Lite) (Version:  - ClanServers Hosting LLC.)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Facepunch Studios)
GCFScape 1.8.4 (HKLM\...\GCFScape_is1) (Version:  - Ryan Gregg)
Glyph (HKLM-x32\...\Glyph) (Version:  - Trion Worlds, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.101 - Google Inc.)
Google Drive (HKLM-x32\...\{CF772DD2-4767-49AE-B764-EACA6F6CD9AE}) (Version: 1.25.0286.7715 - Google, Inc.)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\Steam App 12210) (Version:  - Rockstar North)
Grand Theft Auto V (HKLM-x32\...\Steam App 271590) (Version:  - Rockstar North)
GRID 2 (HKLM-x32\...\Steam App 44350) (Version:  - Codemasters Racing)
H1Z1 (HKLM-x32\...\Steam App 295110) (Version:  - Sony Online Entertainment)
Hauppauge Capture (HKLM-x32\...\Hauppauge Capture) (Version: 1.0.32133 - Hauppauge Computer Works)
Heroes & Generals (HKLM-x32\...\Steam App 227940) (Version:  - Reto-Moto)
HP FWUpdateEDO2 (HKLM-x32\...\{415FA9AD-DA10-4ABE-97B6-5051D4795C90}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Officejet 6700 Basic Device Software (HKLM\...\{A1CFA587-90D4-4DE6-B200-68CC0F92252F}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Officejet 6700 Help (HKLM-x32\...\{E1AE0CB7-1333-4728-8520-CB3F88A252B4}) (Version: 140.0.2.2 - Hewlett Packard)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
HPDiagnosticAlert (x32 Version: 1.00.0000 - Microsoft) Hidden
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version:  - Image-Line)
Image Line FL Studio Producer Edition (HKLM-x32\...\Image Line FL Studio Producer Edition) (Version: 12.1.2 - Image Line FL Studio Producer Edition)
Infestation: Survivor Stories (HKLM-x32\...\Steam App 226700) (Version:  - OP Productions LLC)
Insurgency (HKLM-x32\...\Steam App 222880) (Version:  - New World Interactive)
Insurgency Dedicated Server (HKLM-x32\...\Steam App 237410) (Version:  - )
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel® Network Connections 17.2.154.0 (HKLM\...\PROSetDX) (Version: 17.2.154.0 - Intel)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.1.0.1006 - Intel Corporation)
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.5.235 - Intel Corporation)
Iron Europe (HKLM-x32\...\{3C262E00-3C8B-4774-83DB-6412EDFE9FB4}_is1) (Version: 1.2.1 - Iron Europe Development Team)
Iron Europe (HKLM-x32\...\{7735559E-F41A-480F-A5FC-174F8B9EB58E}_is1) (Version: 1.0.0 - Iron Europe Development Team)
Iron Europe (HKLM-x32\...\{957609F3-9CF1-4726-8F8F-1C1AAC063917}_is1) (Version: 1.1.0 - Iron Europe Development Team)
iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)
Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Just Cause 2 (HKLM-x32\...\Steam App 8190) (Version:  - Avalanche)
Just Cause 2: Multiplayer Mod (HKLM-x32\...\Steam App 259080) (Version:  - JC2-MP Team)
KeePass Password Safe 2.22 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version:  - Dominik Reichl)
Kerbal Space Program (HKLM-x32\...\Steam App 220200) (Version:  - Squad)
Lagarith Lossless Codec (1.3.27) (HKLM-x32\...\{F59AC46C-10C3-4023-882C-4212A92283B3}_is1) (Version:  - )
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
League of Legends (HKLM-x32\...\League of Legends 3.0.0) (Version: 3.0.0 - Riot Games)
League of Legends (x32 Version: 3.0.0 - Riot Games) Hidden
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version:  - Valve)
Logitech Gaming Software 8.46 (HKLM\...\Logitech Gaming Software) (Version: 8.46.27 - Logitech Inc.)
Logitech QuickCam Software (HKLM-x32\...\{C43048A9-742C-4DAD-90D2-E3B53C9DB825}) (Version: 8.47.0000 - Logitech, Inc.)
Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.291 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.291 - LogMeIn, Inc.) Hidden
Magicka (HKLM-x32\...\Steam App 42910) (Version:  - Arrowhead Game Studios)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE (HKLM-x32\...\{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}) (Version: 3.1.186.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{02BAAFC5-4E16-42E6-A9F6-8DDE0B7ED3B8}) (Version: 1.0.0.0 - Mojang)
mIRC (HKLM-x32\...\mIRC) (Version: 7.41 - mIRC Co. Ltd.)
MorphVOX Junior (HKLM-x32\...\{E6C7380F-15DD-445E-BA02-B7A180BA0A5A}) (Version: 2.8.1 - Screaming Bee)
Mount&Blade (HKLM-x32\...\Mount&Blade) (Version:  - )
Mount&Blade Warband (HKLM-x32\...\Mount&Blade Warband) (Version:  - )
Mount&Blade With Fire and Sword (HKLM-x32\...\Mount&Blade With Fire and Sword) (Version:  - )
Mount&Blade: Warband - Napoleonic Wars (HKLM-x32\...\Mount&Blade: Warband - Napoleonic Wars) (Version:  - )
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 39.0.3 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 39.0.3 (x86 en-US)) (Version: 39.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
Mozilla Thunderbird 24.0 (x86 en-US) (HKLM-x32\...\Mozilla Thunderbird 24.0 (x86 en-US)) (Version: 24.0 - Mozilla)
Mozilla Thunderbird 24.3.0 (x86 en-US) (HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\Mozilla Thunderbird 24.3.0 (x86 en-US)) (Version: 24.3.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Napoleonic Wars Enhancement Pack (HKLM-x32\...\{39FEF436-D526-4829-ACF9-014874ABEFAD}_is1) (Version: 5.1.0 - Parrot)
Nitro Reader 3 (HKLM\...\{9EA981E5-EE67-4662-86F1-58937D31FE07}) (Version: 3.5.6.5 - Nitro)
No More Room in [bleep] (HKLM-x32\...\Steam App 224260) (Version:  - No More Room in [bleep] Team)
North and South version 0.404 (HKLM-x32\...\{C0C24D7F-3B0D-4169-AC92-4999D18FB04D}_is1) (Version: 0.404 - Antietam Studios)
Norton Identity Safe (HKLM-x32\...\NST) (Version: 2014.7.11.42 - Symantec Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.1 - Notepad++ Team)
NVIDIA 3D Vision Controller Driver 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 355.98 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 355.98 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.5.14.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.14.5 - NVIDIA Corporation)
NVIDIA Graphics Driver 355.98 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.98 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
OBS Multiplatform (HKLM-x32\...\OBS Multiplatform) (Version: 0.11.4 - OBS Project)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OpenOffice 4.0.0 (HKLM-x32\...\{55E61709-D7D4-43C0-B45D-BFAF5C09A02D}) (Version: 4.00.9702 - Apache Software Foundation)
OpenRA (HKLM-x32\...\OpenRA) (Version:  - OpenRA developers)
Oracle VM VirtualBox 4.3.20 (HKLM\...\{DD8F7A7A-852F-4648-8A73-B8FC1DF5F082}) (Version: 4.3.20 - Oracle Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.3.7.2735 - Electronic Arts, Inc.)
Paintball2 Alpha build 40 (HKLM-x32\...\Paintball2) (Version: Alpha build 40 - Digital Paint)
PaintTool SAI Ver.1 (HKLM-x32\...\PaintToolSAI) (Version:  - )
Paronicon 2 - Uninstall (HKLM-x32\...\Paronicon 2 0.2.2.0) (Version: 0.2.2.0 - GSN Gaming)
Paronicon 2 (x32 Version: 0.2.2.0 - GSN Gaming) Hidden
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version:  - OVERKILL - a Starbreeze Studio.)
PAYDAY: The Heist (HKLM-x32\...\Steam App 24240) (Version:  - OVERKILL Software)
PBO Manager v.1.4 beta (HKLM\...\{127B5371-1802-4EDD-A25A-A43BF761D383}) (Version: 1.4.0 -  )
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Peggle (HKLM-x32\...\{715AD72D-887A-459E-988B-D4F3E87FA24B}) (Version: 1.04.0.0 - PopCap Games)
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
Pivot Animator version 4.1.10 (HKLM-x32\...\Pivot Animator_is1) (Version: 4.1.10 - Motus Software Ltd)
Plants vs. Zombies™ (HKLM-x32\...\{5E6536C2-E79A-49CF-83EA-817AD81F9FC8}) (Version: 1.2.0.1093 - Electronic Arts, Inc.)
Poker Night 2 (HKLM-x32\...\Steam App 234710) (Version:  - Telltale Games)
Poker Night at the Inventory (HKLM-x32\...\Steam App 31280) (Version:  - Telltale Games)
Portal (HKLM-x32\...\Steam App 400) (Version:  - Valve)
Portal 2 (HKLM-x32\...\Steam App 620) (Version:  - Valve)
PowerISO (HKLM-x32\...\PowerISO) (Version: 5.8 - Power Software Ltd)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
qBittorrent 3.1.11 (HKLM-x32\...\qbittorrent) (Version: 3.1.11 - The qBittorrent project)
Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{7D916FA5-DAE9-4A25-B089-655C70EAF607}) (Version: 3.0 - Qualcomm Atheros)
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
RaidCall (HKLM-x32\...\RaidCall) (Version: 7.3.6-1.0.12972.94 - raidcall.com)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
ROBLOX Player for Christian (HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version:  - ROBLOX Corporation)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.6.1 - Rockstar Games)
Rust (HKLM-x32\...\Steam App 252490) (Version:  - Facepunch Studios)
Sandboxie 4.14 (64-bit) (HKLM\...\Sandboxie) (Version: 4.14 - Sandboxie Holdings, LLC)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version:  - Microsoft) Hidden
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.14.5 - NVIDIA Corporation) Hidden
Sid Meier’s Ace Patrol: Pacific Skies (HKLM-x32\...\Steam App 244090) (Version:  - Firaxis)
Sid Meier's Ace Patrol (HKLM-x32\...\Steam App 244070) (Version:  - Firaxis Games)
Sid Meier's Civilization III: Complete (HKLM-x32\...\Steam App 3910) (Version:  - Firaxis Games)
Sid Meier's Civilization IV (HKLM-x32\...\Steam App 3900) (Version:  - Firaxis Games)
Sid Meier's Civilization IV: Beyond the Sword (HKLM-x32\...\Steam App 8800) (Version:  - Firaxis Games)
Sid Meier's Civilization IV: Colonization (HKLM-x32\...\Steam App 16810) (Version:  - Firaxis Games)
Sid Meier's Civilization IV: Warlords (HKLM-x32\...\Steam App 3990) (Version:  - Firaxis Games)
Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version:  - 2K Games, Inc.)
Sid Meier's Railroads! (HKLM-x32\...\Steam App 7600) (Version:  - Firaxis Games)
Six Updater (HKLM-x32\...\{AD42165D-FF3C-4975-A130-7AA2801AB5DD}) (Version: 2.09.7042 - Six Projects)
SketchUp 2013 (HKLM-x32\...\{B75BC01B-4586-43F8-9349-D250DB98F26F}) (Version: 13.0.4812 - Trimble Navigation Limited)
Skype™ 7.8 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.8.102 - Skype Technologies S.A.)
Smart Technology Programming Software 7.0.27.13 (HKLM\...\{BD90BC1C-115D-47E1-B85C-07AE182C3AB8}) (Version: 7.0.27.13 - Mad Catz)
Sniper Elite 3 (HKLM-x32\...\Steam App 238090) (Version:  - Rebellion)
Sniper Elite V2 (HKLM-x32\...\Steam App 63380) (Version:  - Rebellion)
Soundboard (HKLM-x32\...\Soundboard) (Version: 1.0.0 - UNKNOWN)
Soundboard (x32 Version: 1.0.0 - UNKNOWN) Hidden
Source SDK (HKLM-x32\...\Steam App 211) (Version:  - Valve)
Source SDK Base 2006 (HKLM-x32\...\Steam App 215) (Version:  - Valve)
Source SDK Base 2013 Multiplayer (HKLM-x32\...\Steam App 243750) (Version:  - )
South Park™: The Stick of Truth™ (HKLM-x32\...\Steam App 213670) (Version:  - Obsidian Entertainment)
Spotify (HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\Spotify) (Version: 1.0.14.124.g4dfabc51 - Spotify AB)
Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version: 7.0.0.6 - Bioware/EA)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
Stealth Inc 2 (HKLM-x32\...\Steam App 329380) (Version:  - Carbon)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version:  - Valve)
TeamSpeak 3 Client (HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\TeamSpeak 3 Client) (Version: 3.0.15.1 - TeamSpeak Systems GmbH)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.43879 - TeamViewer)
TexView 2 Uninstall (HKLM-x32\...\TexView 2) (Version:  - )
The Crew (Worldwide) (HKLM-x32\...\Uplay Install 413) (Version:  - Ubisoft)
The Elder Scrolls Online Beta (HKLM-x32\...\The Elder Scrolls Online Beta_is1) (Version: 0.3.4 - )
The Forest (HKLM-x32\...\Steam App 242760) (Version:  - Endnight Games Ltd)
The Stanley Parable (HKLM-x32\...\Steam App 221910) (Version:  - Galactic Cafe)
Tomb Raider (HKLM-x32\...\Steam App 203160) (Version:  - Crystal Dynamics)
ToneSync for Windows (HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\c2c9648a374f64d1) (Version: 1.2.3.309 - Zedge Europe AS)
Unity Web Player (HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Unturned (HKLM-x32\...\Steam App 304930) (Version:  - Nelson Sexton)
Uplay (HKLM-x32\...\Uplay) (Version: 4.9 - Ubisoft)
Vegas Pro 12.0 (64-bit) (HKLM\...\{BD422D00-5232-11E3-A6F3-F04DA23A5C58}) (Version: 12.0.770 - Sony)
Verdun (HKLM-x32\...\Steam App 242860) (Version:  - M2H)
Victoria 2 (HKLM-x32\...\{9C3B7F54-C6E2-4A74-9937-9C6EBA10C4A2}) (Version:  - )
Virtual Audio Cable 4.10 (HKLM\...\Virtual Audio Cable 4.10) (Version:  - )
VLC media player 2.0.7 (HKLM-x32\...\VLC media player) (Version: 2.0.7 - VideoLAN)
VMic (HKLM-x32\...\VMic) (Version:  - )
Volvo - The Game (HKLM-x32\...\Volvo - The Game_is1) (Version:  - SimBin)
VTFEdit 1.3.3 (HKLM\...\VTFEdit_is1) (Version:  - Neil Jedrzejewski & Ryan Gregg)
War Thunder (HKLM-x32\...\Steam App 236390) (Version:  - Gaijin Entertainment)
WinDirStat 1.1.2 (HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\WinDirStat) (Version:  - )
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Movie Maker 2.6 (HKLM-x32\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation)
Wing Commander III (HKLM-x32\...\{F96B9930-E22A-44D6-81B5-6C8E92C21B4B}) (Version: 2.0.0.2 - Electronic Arts)
WinRAR 5.00 beta 6 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.00.6 - win.rar GmbH)
WinSCP 5.1.5 (HKLM-x32\...\winscp3_is1) (Version: 5.1.5 - Martin Prikryl)
WS Launcher (HKLM-x32\...\{575E5E77-2C8E-405F-AB8E-9A7418B704CF}) (Version: 0.0.0.9 - Launcher)
Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org)
X-Mouse Button Control 2.11.1 (HKLM-x32\...\X-Mouse Button Control) (Version: 2.11.1 - Highresolution Enterprises)
XSplit (HKLM-x32\...\{24570B2F-3937-47F0-A16A-E82B480A7699}) (Version: 1.1.1210.3101 - SplitMediaLabs)
 
==================== Custom CLSID (Whitelisted): ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Christian\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2015\Inventor Server\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2015\Inventor Server\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{D45F043D-F17F-4e8a-8435-70971D9FA46D}\InprocServer32 -> C:\Program Files\Blender Foundation\Blender\BlendThumb64.dll ()
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{DEE03C2B-0C0C-41A9-9877-FD4B4D7B6EA3}\InprocServer32 -> C:\Users\Christian\AppData\Local\Roblox\Versions\version-957ce0cc47814d39\RobloxProxy64.dll (ROBLOX Corporation)
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2015\Inventor Server\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Christian\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Christian\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Christian\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Christian\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Christian\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Christian\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Christian\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Christian\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
 
==================== Restore Points =========================
 
30-09-2015 19:51:17 Windows Update
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2015-09-25 19:40 - 2015-09-25 19:40 - 00000076 ____A C:\WINDOWS\system32\Drivers\etc\hosts
0.0.0.0 pubads.g.doubleclick.net
0.0.0.0 securepubads.g.doubleclick.net
 
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {0019BEF5-5D67-4C9B-99E9-095E0A38A249} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2842136386-2703010871-4203806482-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe
Task: {02DBD956-1A64-4801-815B-4FD1AD3CCFA8} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {030EAF9C-2A21-4CC4-9670-E6B59F53F196} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {0EA2A80C-26EB-4859-819E-A7B5D192506F} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {0EA36A42-5297-489F-A7AA-DC10DFD540FA} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2842136386-2703010871-4203806482-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
Task: {138C57AB-A7CD-4D66-80D4-868E1E27625F} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-08-26] (Microsoft Corporation)
Task: {150BC3E0-6B9A-4E84-948B-153B97C8D824} - System32\Tasks\{56A68917-9FE8-415F-A4E1-24575FF34FD6} => pcalua.exe -a C:\Users\CHRIST~1\AppData\Local\Temp\$PowerISO$\install.exe -d E:\Users\Christian\Downloads\rzr-skrm
Task: {171BE514-AAE8-485E-AAAD-5BB7FC37089B} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {1A9A440C-279D-40F8-A73C-AA14E46C33DF} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {20AF6801-E267-4B73-B400-66A1E0BD8B34} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {20CCE052-DA99-4C58-838F-817A3AF6B0C6} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {2162D55C-72E0-44F3-9CBC-3E8F9EB3D218} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {253C4637-EF43-477A-8982-5C37BB3D484E} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {27A8C9CD-9C1C-48AF-AC09-DD4EF9255022} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {2AAFDAC5-9DC8-4241-B57C-5C1F85D5C071} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {2F2E2878-3F6C-4487-AF4C-148B55FAF5AD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {31DE5BD3-DCBD-4B06-B073-584464B1B596} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {3A8B6163-677E-46CF-865A-77C78D50D641} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {3B1912DE-41A6-4457-919F-EAD9B1B419E9} - System32\Tasks\ASUS\ASUS WiFi GO! Server Execute => C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFi GO! Server.exe [2012-07-12] (ASUSTeK Computer Inc.)
Task: {4048D3FE-68E9-43E9-9139-B31EBA2A9073} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {4B2F4186-F784-489B-BA4D-B4673BFF4C86} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {4D754DB5-89FD-4871-A60A-D554CA05C0FE} - System32\Tasks\{15DCDB01-AB91-4CB6-ACA5-99A968789279} => pcalua.exe -a C:\Users\Christian\Downloads\BP_Installer(2).exe -d C:\Users\Christian\Downloads
Task: {53DF64B4-578E-4DF9-B84B-70214BBACF11} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2842136386-2703010871-4203806482-1000Core => C:\Users\Christian\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-09-11] (Facebook Inc.)
Task: {5FBB1F28-C69D-4173-B220-101CEE852D93} - System32\Tasks\Norton Identity Safe\Norton Error Analyzer => C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\SymErr.exe
Task: {63459F8B-DE2E-4481-AEB3-71AD438FD6BC} - System32\Tasks\CCleanerSkipUAC => E:\Program Files\CCleaner\CCleaner.exe [2014-12-12] (Piriform Ltd)
Task: {6489AE90-C36A-45F7-BD6C-DC5DE3C0BBD1} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {6D748174-6583-4961-A5FE-614D69E05196} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {708A437E-BBB5-4756-8F72-C1BA40E8FEBD} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-10-01] (AVAST Software)
Task: {71D72724-8E78-47AF-A357-F768E14218E3} - System32\Tasks\GoogleUpdateTaskMachineCore1d041557696e34 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {721DAC04-C281-4AB3-B8D8-E555591FA5BE} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {7A11C935-1670-4B49-B693-E510607F5282} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {7A1D5B31-D82D-4DA9-9FAC-DCC6D7DB05D7} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {7C540B0C-4605-450C-82C6-E73735A403A7} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {80218F04-0F60-44FA-9D97-3CB837134488} - System32\Tasks\Norton Identity Safe\Norton Error Processor => C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\SymErr.exe
Task: {83F9CC54-AD9A-4A16-93F1-8503614821C8} - System32\Tasks\ASUS\ASUS AI Suite II Execute => C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2012-03-13] (ASUSTeK Computer Inc.)
Task: {85355830-C5C5-4626-9C0B-BFDDAFA69BF9} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2014-03-19] (Microsoft)
Task: {8BCADE15-B74D-47F2-B4E8-7FE014F3482C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {8BD56B63-FEA9-459B-950B-21004F5106BB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {8C014F5D-1F40-4542-A372-F1F90EED13A8} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-2842136386-2703010871-4203806482-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe
Task: {8F4C3A2F-D807-437E-BAA4-10DF9721ED47} - \Microsoft\Windows\File Classification Infrastructure\Property Definition Sync -> No File <==== ATTENTION
Task: {8F5CCF43-CE5E-425A-8D11-F5BC0D200ECA} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {8FCA3894-ECF2-44A0-AC5F-A845785447DB} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {96700324-2CA0-4E8F-B9FE-54D829B7AC0F} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {96985AB1-5DE0-49DA-8CF1-75EFCF32270B} - System32\Tasks\AdobeAAMUpdater-1.0-ChristianDeskPC-Christian => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-10-14] (Adobe Systems Incorporated)
Task: {96B828D6-5E17-4BC3-A0F9-B4137A659FF5} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2842136386-2703010871-4203806482-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
Task: {AB5450C0-06FC-4B7D-AC9C-0102185CE3FE} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2842136386-2703010871-4203806482-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe
Task: {B31042FF-CE33-458F-ABD8-977C649DD092} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {B980C206-8CF6-4D5F-B0A1-51CF2D5305C0} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {BE5D89F3-C282-443D-984D-7518B575CFDE} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {BF2BD0FC-31B1-4E27-97D0-A1DEE377AB2A} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2842136386-2703010871-4203806482-1000UA => C:\Users\Christian\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-09-11] (Facebook Inc.)
Task: {D905381F-EA74-4D3B-AB6F-BF2D28DFD351} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {DA39A95A-A466-4196-A764-FEEBDB29A6BF} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {DEBE52EC-3106-4F63-BB41-1E972F8F6A00} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {E253DAEC-B688-408F-8D21-396CE1405D7B} - System32\Tasks\{3D336034-F692-466F-B63E-703359D7A5D7} => pcalua.exe -a C:\Users\Christian\Downloads\x45_151205_64.exe -d C:\Users\Christian\Downloads
Task: {E5BC248A-7A33-4B4A-A532-2F509E9857EA} - System32\Tasks\GoogleUpdateTaskMachineUA1d041557818a6e => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {EA4FEA15-F40A-44C1-B8B8-CAFFF02CD4BE} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {ED54F4B6-75A7-43E1-BEFB-FCCAA0F96E9A} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {F0E95C6F-41F4-43B8-9820-4384CC8487E0} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {F14203A6-85AC-4168-B4FF-1FDCED0B432E} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {F6931CFB-24E2-4828-BF69-578C961AFD96} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {F69F6FE4-5806-4A8C-AA90-FB9C55FEEEC1} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {FBC4B584-59C9-4F60-A5E8-0D7EFEEA26BA} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {FF659939-9CFF-40F0-92A8-D461B00A9E5C} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2842136386-2703010871-4203806482-1000Core.job => C:\Users\Christian\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2842136386-2703010871-4203806482-1000UA.job => C:\Users\Christian\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d041557696e34.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d041557818a6e.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
 
==================== Loaded Modules (Whitelisted) ==============
 
2015-07-10 06:00 - 2015-07-10 06:00 - 00028160 _____ () C:\WINDOWS\SYSTEM32\efsext.dll
2015-08-04 12:26 - 2015-08-04 12:26 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2014-12-03 19:58 - 2015-09-13 17:04 - 00116528 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2012-06-01 04:42 - 2012-06-01 04:42 - 00920736 ____R () C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
2015-08-19 15:47 - 2015-08-11 04:14 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-08-06 11:33 - 2014-08-05 20:04 - 01441792 _____ () C:\Program Files\Everything\Everything.exe
2013-06-20 16:43 - 2015-08-31 16:06 - 00076152 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2015-09-30 19:29 - 2015-09-17 01:48 - 02494712 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-09-30 19:29 - 2015-09-17 01:48 - 02494712 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2013-09-05 01:17 - 2013-09-05 01:17 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2010-10-20 16:23 - 2010-10-20 16:23 - 08801632 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2015-09-30 19:30 - 2015-09-17 00:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-09-30 19:29 - 2015-09-17 00:44 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-09-30 19:29 - 2015-09-17 00:42 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-09-30 19:29 - 2015-09-17 00:42 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-09-30 19:29 - 2015-09-17 00:43 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-09-23 16:30 - 2015-09-23 16:30 - 00012288 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.922.11070.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2015-09-23 16:30 - 2015-09-23 16:30 - 10807296 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.922.11070.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2015-09-30 20:40 - 2015-09-30 20:40 - 08395776 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.9.25.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
2015-09-30 20:40 - 2015-09-30 20:40 - 02311680 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.9.25.0_x64__8wekyb3d8bbwe\MS.Entertainment.Common.Mobile.dll
2015-09-17 16:57 - 2015-09-17 16:57 - 03495936 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1509.14010.0_x64__8wekyb3d8bbwe\Calculator.exe
2014-07-31 12:16 - 2014-07-31 12:16 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-10-11 14:05 - 2014-10-11 14:05 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-06-16 17:17 - 2015-10-01 18:27 - 00030720 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\PEbiosinterface32.dll
2013-06-16 17:17 - 2010-06-28 21:58 - 00104448 ____R () C:\Program Files (x86)\ASUS\AXSP\1.00.19\ATKEX.dll
2015-07-05 08:52 - 2014-12-04 21:27 - 00055688 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\QtSolutions_Service-head.dll
2015-07-05 08:52 - 2014-12-04 21:27 - 00104328 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\qjson0.dll
2014-08-25 15:01 - 2014-08-25 15:01 - 00864856 _____ () c:\program files (x86)\real\realplayer\RPDS\Plugins\cldplin.dll
2015-03-30 16:20 - 2015-08-26 19:37 - 00011896 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-08-05 14:29 - 2015-08-05 14:29 - 00172032 _____ () C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\IsdiInterop\453e3f3a93aa5269710d60c5f7a19452\IsdiInterop.ni.dll
2013-06-16 17:18 - 2012-02-01 16:25 - 00059904 _____ () C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll
2015-09-30 20:22 - 2015-09-23 21:34 - 01501512 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.101\libglesv2.dll
2015-09-30 20:22 - 2015-09-23 21:34 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.101\libegl.dll
2015-10-01 08:58 - 2015-10-01 08:58 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-10-01 08:58 - 2015-10-01 08:58 - 00103376 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-10-01 08:58 - 2015-10-01 08:58 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2013-06-16 17:13 - 2012-06-25 10:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll
 
==================== Alternate Data Streams (Whitelisted) =========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
AlternateDataStreams: C:\ProgramData\TEMP:373E1720
AlternateDataStreams: C:\ProgramData\TEMP:B6418BC9
 
==================== Safe Mode (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
 
==================== EXE Association (Whitelisted) ===============
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 
IE trusted site: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\sony.com -> sony.com
 
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\Control Panel\Desktop\\Wallpaper -> I:\Images\Everything.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
(Currently there is no automatic fix for this section.)
 
HKLM\...\StartupApproved\StartupFolder: => "RealPlayer Cloud Service UI.lnk"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\StartupApproved\Run: => "Clownfish"
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_F95133299531DA24C7CB703BC8432DCE"
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\StartupApproved\Run: => "msnmsgr"
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\StartupApproved\Run: => "Realtek High Defention Control Panel"
 
==================== FirewallRules (Whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{2D0F1339-DA1B-4FD7-92DC-35CB74617F3F}] => (Allow) I:\SteamLibrary\steamapps\common\Anarchy Arcade\AArcade.exe
FirewallRules: [{AC94B733-F58A-4F6B-9B31-4D9E00CC8E6E}] => (Allow) I:\SteamLibrary\steamapps\common\Anarchy Arcade\AArcade.exe
FirewallRules: [{0551B0A1-FFDB-4702-B3B6-621053C1BC67}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{DD39F251-7FA1-4FDF-8F05-72C05D5D64EE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{42A31CA4-C4E7-45F9-ACB5-E73A79F6A759}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{C1DC25B7-0E08-466A-8134-171A83975F3E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{8F4E3467-6402-42A2-A604-CEB7FBDC7146}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{1B2C886F-88D7-4A7C-85E0-89C57DE9A9D4}] => (Allow) I:\SteamLibrary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{E9CFF488-5153-4418-AF3F-CF95373C067E}] => (Allow) I:\SteamLibrary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [UDP Query User{E04A2CB3-B554-45C8-BF9D-D30CF431FDF8}C:\program files (x86)\dayzlauncher\dayzlauncher.exe] => (Allow) C:\program files (x86)\dayzlauncher\dayzlauncher.exe
FirewallRules: [TCP Query User{978196C5-67E5-44DD-8DBD-88964BC67820}C:\program files (x86)\dayzlauncher\dayzlauncher.exe] => (Allow) C:\program files (x86)\dayzlauncher\dayzlauncher.exe
FirewallRules: [{0FCFC04D-551B-428F-A6F4-872DBF523F52}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{59818BDF-01DB-4024-AE3F-C7D25A6E453D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{8CB03426-8949-4799-9192-CBC9CC8E01D4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{8C18392B-0497-44FB-9E4B-A134BC3D03DB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{B54A519A-8B04-4BD6-AE3F-26B9B62A42A9}] => (Allow) C:\Program Files\Autodesk\3ds Max 2015\NVIDIA\Satellite\raysat_3dsmax2015_64.exe
FirewallRules: [{620B3677-1359-4807-B72D-9CD9EFBBB393}] => (Allow) C:\Program Files\Autodesk\3ds Max 2015\NVIDIA\Satellite\raysat_3dsmax2015_64.exe
FirewallRules: [{661D3406-33BC-49DD-9216-66DC0419153E}] => (Allow) C:\Program Files\Autodesk\3ds Max 2015\NVIDIA\Satellite\raysat_3dsmax2015_64server.exe
FirewallRules: [{5794C6EC-BE9B-4DA2-BD2F-565612EE1CF6}] => (Allow) C:\Program Files\Autodesk\3ds Max 2015\NVIDIA\Satellite\raysat_3dsmax2015_64server.exe
FirewallRules: [{D5DC8EA5-A7FA-401B-B3BE-E628370DC445}] => (Allow) I:\SteamLibrary\steamapps\common\Verdun\Verdun.exe
FirewallRules: [{38589CE4-1A6D-43C7-8F2E-4D0F54843071}] => (Allow) I:\SteamLibrary\steamapps\common\Verdun\Verdun.exe
FirewallRules: [{EB6144F7-D339-4CAA-A552-C5E2747F6D06}] => (Allow) E:\Program Files (x86)\Origin Games\BFH\bfh.exe
FirewallRules: [{BC3E07B0-4772-4F73-9125-0D21BD0E9567}] => (Allow) E:\Program Files (x86)\Origin Games\BFH\bfh.exe
FirewallRules: [UDP Query User{7AA0069F-132A-4B1D-BE9C-A2FE9399CD93}C:\users\christian\documents\aftermath\amlauncher.exe] => (Allow) C:\users\christian\documents\aftermath\amlauncher.exe
FirewallRules: [TCP Query User{EF4814AD-8969-40C9-89C6-D5585586C0E6}C:\users\christian\documents\aftermath\amlauncher.exe] => (Allow) C:\users\christian\documents\aftermath\amlauncher.exe
FirewallRules: [{17965463-F10A-4E79-9967-A2672E71281C}] => (Allow) I:\SteamLibrary\steamapps\common\Battlefield Bad Company 2\BFBC2Game.exe
FirewallRules: [{D32C8520-9AB0-40C6-B092-597C53B9CFC8}] => (Allow) I:\SteamLibrary\steamapps\common\Battlefield Bad Company 2\BFBC2Game.exe
FirewallRules: [{C2809041-5A88-4F61-9DF3-28D6459AF0D9}] => (Allow) I:\SteamLibrary\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{665C379A-4795-4638-91D9-E02403A68088}] => (Allow) I:\SteamLibrary\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{8F79BDD0-48D9-4421-A2B5-1B051CC3F878}] => (Allow) E:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [{1123D876-0AD9-422B-B1EA-D74845C932A4}] => (Allow) E:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [{6BD31786-2669-4FB2-B9DF-44DAA5F37311}] => (Allow) E:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{D411D493-8A32-4A6D-B1BD-3343CB7727F1}] => (Allow) E:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{38AB72F4-9BA5-4318-86E5-CB37BD5183C6}] => (Allow) I:\SteamLibrary\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{0740B37A-E32B-49E8-AAD1-94A6A239B4C8}] => (Allow) I:\SteamLibrary\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [UDP Query User{64D79F63-66AD-46FA-8CAF-6333979D2BD9}C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe
FirewallRules: [TCP Query User{678C614D-F0D6-4275-8B38-C20329EAD0D1}C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe
FirewallRules: [UDP Query User{9F407E81-EC45-40C3-BD34-4979D74C9823}C:\program files (x86)\razer\comms\razercomms.exe] => (Allow) C:\program files (x86)\razer\comms\razercomms.exe
FirewallRules: [TCP Query User{E1E3F141-6403-49C6-BB69-4D8214F1CA5F}C:\program files (x86)\razer\comms\razercomms.exe] => (Allow) C:\program files (x86)\razer\comms\razercomms.exe
FirewallRules: [{6D07FC7B-905C-4350-95FF-36FA0637E44A}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\legacy\rust.exe
FirewallRules: [{E13D17A3-37B9-4A97-A335-CBA7062DCB0A}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\legacy\rust.exe
FirewallRules: [{76DA0D22-1680-46FD-8BD1-B9A987384A6A}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty World at War\CoDWaWmp.exe
FirewallRules: [{FE2208DA-73C9-4382-A199-C31E62CE9AE1}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty World at War\CoDWaWmp.exe
FirewallRules: [{F6967FE9-BDFF-4713-BBA3-777E14FEEE87}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty World at War\CoDWaW.exe
FirewallRules: [{51DA8D36-48C0-4BC7-B04E-0318D069F7AC}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty World at War\CoDWaW.exe
FirewallRules: [{4CA90817-9AA9-4A28-BF01-49CC3346654E}] => (Allow) I:\SteamLibrary\steamapps\common\Arma 3 Tools\Publisher\Publisher.exe
FirewallRules: [{E08F54F4-2C98-4BF5-8DE9-360CE616EBE6}] => (Allow) I:\SteamLibrary\steamapps\common\Arma 3 Tools\Publisher\Publisher.exe
FirewallRules: [{9CF90A07-A37D-4E41-935B-C9BFAA49D1BE}] => (Allow) I:\SteamLibrary\steamapps\common\Arma 3 Tools\AddonBuilder\AddonBuilder.exe
FirewallRules: [{754CC947-A824-4B4C-AE0F-FE6A76F57443}] => (Allow) I:\SteamLibrary\steamapps\common\Arma 3 Tools\AddonBuilder\AddonBuilder.exe
FirewallRules: [{C73A1AB2-721A-4A2B-ACB7-33F5BF11C302}] => (Allow) I:\SteamLibrary\steamapps\common\Arma 3 Tools\starter.exe
FirewallRules: [{2D983E4C-7637-4910-AFC2-3934F9292C91}] => (Allow) I:\SteamLibrary\steamapps\common\Arma 3 Tools\starter.exe
FirewallRules: [{A35D9000-AAFE-4CE9-85A1-467DCD6BD23E}] => (Allow) I:\SteamLibrary\steamapps\common\Arma 3 Tools\Arma3Tools.exe
FirewallRules: [{32F7695E-10CE-4C5B-A4AC-F36F9C633AE0}] => (Allow) I:\SteamLibrary\steamapps\common\Arma 3 Tools\Arma3Tools.exe
FirewallRules: [{8C53F307-4C9B-4B63-9EAE-B31BB835F9BA}] => (Allow) I:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{8A91CF5C-D076-43BD-877C-AC3DEFCF9959}] => (Allow) I:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{85649953-721B-4FFA-B21D-6DC0EAEF4553}] => (Block) I:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{EE9B7B75-3550-4CD0-9889-CA1DF553BA87}] => (Block) I:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{BC57ACA6-C7D6-4A7B-AF73-7157EBC904F7}I:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) I:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{60DB3792-1A67-4FE0-B338-E931E9D9C36C}I:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) I:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{C7331429-FEF9-4420-852E-8CC982078E39}] => (Allow) I:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{E8E7091D-1929-48C3-97DA-92EB5E09D358}] => (Allow) I:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{FB673D0B-D310-440C-B109-ECA8408CE64D}] => (Allow) I:\SteamLibrary\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe
FirewallRules: [{77D8FF16-D0DB-4ACE-ABCE-09224F55BF1D}] => (Allow) I:\SteamLibrary\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe
FirewallRules: [{4942271E-DF34-4FB1-9EFB-D5F42B6B03CB}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty Black Ops II\t6sp.exe
FirewallRules: [{AA981EA0-A956-4135-9AAB-090DE7F8A979}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty Black Ops II\t6sp.exe
FirewallRules: [{2E55C175-879E-45F2-9139-4C606B849C66}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty Black Ops II\t6mp.exe
FirewallRules: [{48B33FB9-3851-4968-A6D0-DF012FDCE179}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty Black Ops II\t6mp.exe
FirewallRules: [{B6425EF5-8D43-4E84-9953-576B134C13B2}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty Black Ops II\t6zm.exe
FirewallRules: [{152AB625-83FE-490A-851A-7181ADEE6181}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty Black Ops II\t6zm.exe
FirewallRules: [UDP Query User{3DEB888C-DDC3-4605-AB4F-4543FD78B9BE}I:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) I:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe
FirewallRules: [TCP Query User{01BD8494-8581-47F6-832E-F8AF84F463A0}I:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) I:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe
FirewallRules: [UDP Query User{8AF6CB47-F63A-4C5C-8CFE-38750B75C58F}I:\steamlibrary\steamapps\common\garrysmod\hl2.exe] => (Allow) I:\steamlibrary\steamapps\common\garrysmod\hl2.exe
FirewallRules: [TCP Query User{675EC66B-51B2-406F-9491-8A275D5A8EB5}I:\steamlibrary\steamapps\common\garrysmod\hl2.exe] => (Allow) I:\steamlibrary\steamapps\common\garrysmod\hl2.exe
FirewallRules: [{5998F03F-1B5B-4661-97A1-7F864F7DBBB4}] => (Block) I:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [{37FE2385-20E2-44CD-9CEE-AD637FB0E101}] => (Block) I:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [UDP Query User{CC12BC42-CF43-4A83-AA1F-AF5D93701E63}I:\steamlibrary\steamapps\common\dayz\dayz.exe] => (Allow) I:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [TCP Query User{BA506788-AC90-4B29-AE89-42AFA8DB6371}I:\steamlibrary\steamapps\common\dayz\dayz.exe] => (Allow) I:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [{1EAA1227-58C0-4F39-8A4E-E260559C9B73}] => (Allow) I:\SteamLibrary\steamapps\common\grid 2\grid2.exe
FirewallRules: [{2E9A2F67-B7BA-4FCF-BC5C-846D50AD5279}] => (Allow) I:\SteamLibrary\steamapps\common\grid 2\grid2.exe
FirewallRules: [{75DD1F8C-5A6E-4C37-B6E0-FC4C7B005F8B}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Battlefield 2\BF2.exe
FirewallRules: [{275EDF68-148A-4848-A9AF-D93CF1FE861C}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Battlefield 2\BF2.exe
FirewallRules: [{3337831B-98C1-45E4-B588-C2C8516061CF}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite V2\Launcher\SniperV2Launcher.exe
FirewallRules: [{3EABB4C7-08AD-413B-8CE8-1649C136B5E0}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite V2\Launcher\SniperV2Launcher.exe
FirewallRules: [{ABC5C933-EBA1-4657-83D1-4B42CB47A96D}] => (Allow) C:\Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\BFBC2Updater.exe
FirewallRules: [{6F458F7D-DE1C-4E01-A27E-69AB736DA31F}] => (Allow) C:\Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\BFBC2Updater.exe
FirewallRules: [{54D1AC76-C293-4F19-AD1D-774F4564DC0F}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Ghosts\iw6mp64_ship.exe
FirewallRules: [{EAA5D757-5781-4956-8EFB-7A3D9CCA98BC}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Ghosts\iw6mp64_ship.exe
FirewallRules: [{E434A91A-568B-4C5F-8E97-A536CC43B94B}] => (Block) I:\csgo-ds\srcds.exe
FirewallRules: [{AC3902C9-B06D-4E32-BFAE-0E7E32F70057}] => (Block) I:\csgo-ds\srcds.exe
FirewallRules: [UDP Query User{97145661-B04B-4BAB-BBB5-3513B2BB5B4D}I:\csgo-ds\srcds.exe] => (Allow) I:\csgo-ds\srcds.exe
FirewallRules: [TCP Query User{3BEEBE51-9B0D-488C-A684-2CBD9FEB6D83}I:\csgo-ds\srcds.exe] => (Allow) I:\csgo-ds\srcds.exe
FirewallRules: [{F19A3F06-88C3-4A28-B59A-9A5D81C41C00}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{C673E1D7-3B1A-4528-B1F7-F9B27F3C5F27}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{DA166FBF-F836-4084-91A4-34E97C52AC69}] => (Block) E:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe
FirewallRules: [{D4B0E399-7BA3-40F4-90B9-A4BB418430D8}] => (Block) E:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe
FirewallRules: [UDP Query User{EDCDFF7F-9A9A-41B4-A581-39FBAE484794}E:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe
FirewallRules: [TCP Query User{69DFB23D-23D7-4036-8FB2-5A1FF5459995}E:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe
FirewallRules: [{7BA9AC23-FDAD-41C6-A6C3-5D1621BC0147}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\H1Z1\LaunchPad.exe
FirewallRules: [{763A0ADC-D296-4ACD-B0CA-0B1E1985A967}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\H1Z1\LaunchPad.exe
FirewallRules: [{74BE7A51-C89D-4596-B302-E672DEEE7232}] => (Block) C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe
FirewallRules: [{749CF903-8449-4E90-AE60-B642698AD9A9}] => (Block) C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{95849F70-AD51-4C53-9B7B-E79A12F43C92}C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{E29886C2-35ED-426C-A707-6B60974751C9}C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe
FirewallRules: [{E1BC6CDE-B3BA-4479-BAD6-16AD70683D73}] => (Block) C:\users\christian\desktop\utb\ultimate twitch bot.exe
FirewallRules: [{21993303-43EC-4D0D-94BA-7E3BA79BAEF4}] => (Block) C:\users\christian\desktop\utb\ultimate twitch bot.exe
FirewallRules: [UDP Query User{004C9DAB-866F-49F9-ADC4-8E13B03BE269}C:\users\christian\desktop\utb\ultimate twitch bot.exe] => (Allow) C:\users\christian\desktop\utb\ultimate twitch bot.exe
FirewallRules: [TCP Query User{2585E77C-26C0-4E97-BD64-89C163C98B3B}C:\users\christian\desktop\utb\ultimate twitch bot.exe] => (Allow) C:\users\christian\desktop\utb\ultimate twitch bot.exe
FirewallRules: [{9F0FDE6D-3C94-4199-A516-C5F0FDA3F910}] => (Allow) E:\Program Files (x86)\Farming Simulator 2015\x64\FarmingSimulator2015Game.exe
FirewallRules: [{D1181254-3934-4774-91D0-F5C65810690A}] => (Allow) E:\Program Files (x86)\Farming Simulator 2015\x64\FarmingSimulator2015Game.exe
FirewallRules: [{41EB3386-3D42-4004-9023-DBFBF9763539}] => (Allow) E:\Program Files (x86)\Farming Simulator 2015\x86\FarmingSimulator2015Game.exe
FirewallRules: [{D3B5377B-E21C-45FE-B83D-7DB59C880841}] => (Allow) E:\Program Files (x86)\Farming Simulator 2015\x86\FarmingSimulator2015Game.exe
FirewallRules: [{36246D29-03FE-4157-8062-09EA2640DB1B}] => (Allow) E:\Program Files (x86)\Farming Simulator 2015\FarmingSimulator2015.exe
FirewallRules: [{2F192F0D-1244-4000-8627-D9A906EA1EFF}] => (Allow) E:\Program Files (x86)\Farming Simulator 2015\FarmingSimulator2015.exe
FirewallRules: [{8CDB0143-1D7F-45B9-A88A-FA89F3C22829}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{01D852C3-FF9E-441C-85B1-00E228780BAA}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{2D98EC2C-F1B3-4928-B75F-F3B592AD128E}] => (Block) C:\program files\icechat9\icechat2009.exe
FirewallRules: [{8EB4578C-8350-4FDA-92B6-5E8418438D9A}] => (Block) C:\program files\icechat9\icechat2009.exe
FirewallRules: [UDP Query User{048D8AFC-6BE5-4DFB-9D43-3B14CE530700}C:\program files\icechat9\icechat2009.exe] => (Allow) C:\program files\icechat9\icechat2009.exe
FirewallRules: [TCP Query User{DA672C43-B69C-49A8-967C-A49C46198EBC}C:\program files\icechat9\icechat2009.exe] => (Allow) C:\program files\icechat9\icechat2009.exe
FirewallRules: [{A7386F38-03A7-4866-9CE7-039A304BAD32}] => (Block) C:\program files\hexchat\hexchat.exe
FirewallRules: [{25DFB8D1-9FAA-4A69-AFC4-55FBB0F8F07F}] => (Block) C:\program files\hexchat\hexchat.exe
FirewallRules: [UDP Query User{6F1A0041-1A0E-48C9-A8CC-83FAEFDF5FBF}C:\program files\hexchat\hexchat.exe] => (Allow) C:\program files\hexchat\hexchat.exe
FirewallRules: [TCP Query User{446FD770-50E5-4729-8D96-075CDA104DEA}C:\program files\hexchat\hexchat.exe] => (Allow) C:\program files\hexchat\hexchat.exe
FirewallRules: [{9671F9C8-5F52-4EBE-9C7A-BB1A0C760FAD}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Advanced Warfare\s1_sp64_ship.exe
FirewallRules: [{5682F659-8A13-410B-8AB6-C1C88A906DF1}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Advanced Warfare\s1_sp64_ship.exe
FirewallRules: [{5756E3B3-3D7E-400E-B469-61354AC1F44D}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Advanced Warfare\s1_mp64_ship.exe
FirewallRules: [{82926819-3F81-43C6-93C2-E8FFA66EF8FC}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Advanced Warfare\s1_mp64_ship.exe
FirewallRules: [{1E665E35-9041-4AC2-8629-8074E43824DD}] => (Block) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{9002640C-E6B4-4090-A463-24D8AE5CC958}] => (Block) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{7B2E64F3-88BA-48BD-B538-44C7FBDA98D2}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{E088DEA5-55A6-42F6-A948-EC6D8D11BB58}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{B59D70FB-2C42-407E-87B5-FCBDEA50FD3B}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{61E419F6-DB3C-4488-8186-C05B7D84F926}] => (Block) E:\program files (x86)\a3launcher\a3launcher.exe
FirewallRules: [{1759DA14-DD51-4F0F-B4A2-74784AD8F9B2}] => (Block) E:\program files (x86)\a3launcher\a3launcher.exe
FirewallRules: [UDP Query User{EA8F3AB3-DA70-4F26-A0BC-B76A1547C2A9}E:\program files (x86)\a3launcher\a3launcher.exe] => (Allow) E:\program files (x86)\a3launcher\a3launcher.exe
FirewallRules: [TCP Query User{44BF10DF-52DB-4A21-B090-B26C854D404D}E:\program files (x86)\a3launcher\a3launcher.exe] => (Allow) E:\program files (x86)\a3launcher\a3launcher.exe
FirewallRules: [{C4269C85-B641-4172-9639-4C99CE8D515D}] => (Block) E:\program files (x86)\ubisoft\ubisoft game launcher\games\the crew (worldwide)\thecrew.exe
FirewallRules: [{1FCCF742-9CA2-44D4-B66A-77E27A4D963F}] => (Block) E:\program files (x86)\ubisoft\ubisoft game launcher\games\the crew (worldwide)\thecrew.exe
FirewallRules: [UDP Query User{3F6991A3-6DC9-4539-BA14-C02662E3F79B}E:\program files (x86)\ubisoft\ubisoft game launcher\games\the crew (worldwide)\thecrew.exe] => (Allow) E:\program files (x86)\ubisoft\ubisoft game launcher\games\the crew (worldwide)\thecrew.exe
FirewallRules: [TCP Query User{A4AC7037-6088-44E6-A2D3-E8B3E4A7FB2E}E:\program files (x86)\ubisoft\ubisoft game launcher\games\the crew (worldwide)\thecrew.exe] => (Allow) E:\program files (x86)\ubisoft\ubisoft game launcher\games\the crew (worldwide)\thecrew.exe
FirewallRules: [{E544B5CE-9368-4127-8D73-E4C62DFD26A3}] => (Allow) E:\Program Files (x86)\qBittorrent\qbittorrent.exe
FirewallRules: [{6F9FF2FD-72FE-4541-B629-04EC3D350E1F}] => (Allow) E:\Program Files (x86)\qBittorrent\qbittorrent.exe
FirewallRules: [{645716AA-4F80-4F4A-A038-CAD16D57DE99}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\The War Z\WarZlauncher.exe
FirewallRules: [{682F3E20-B78B-4E8C-979F-30E87ABFE181}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\The War Z\WarZlauncher.exe
FirewallRules: [{D2520F5C-6838-426B-BD25-554F19DA3E9E}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{F2F21E75-3F1E-450A-A7B3-1410B8FD58C4}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{F4AECD3D-2B4F-46DD-A3E5-02DC80AE6460}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{35DE0E45-2758-479D-ABA8-38A9BC52D8D2}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{B72644D2-D0CC-4817-84B1-841DCAF0FA02}] => (Block) E:\program files (x86)\steam\steamapps\common\sniper elite 3\bin\sniperelite3.exe
FirewallRules: [{1D65D144-A7EE-4802-AA27-C30C7E4E2B1C}] => (Block) E:\program files (x86)\steam\steamapps\common\sniper elite 3\bin\sniperelite3.exe
FirewallRules: [UDP Query User{A7083EAB-474D-4C48-8B4F-B47BA258DD5D}E:\program files (x86)\steam\steamapps\common\sniper elite 3\bin\sniperelite3.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\sniper elite 3\bin\sniperelite3.exe
FirewallRules: [TCP Query User{3F670A14-9CB6-4CE0-995E-CB4DCD97932E}E:\program files (x86)\steam\steamapps\common\sniper elite 3\bin\sniperelite3.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\sniper elite 3\bin\sniperelite3.exe
FirewallRules: [{4BDF2FC0-FB41-436E-811A-7A0F3D600951}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite 3\Launcher\Sniper3Launcher.exe
FirewallRules: [{4F32DAD1-109E-4FDC-8B31-37F0528C06E1}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite 3\Launcher\Sniper3Launcher.exe
FirewallRules: [{3E1B75ED-8206-4D03-83BF-A86DB4FC0980}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Evolve\Bin64_SteamRetail\StaticLauncher64.exe
FirewallRules: [{4A8B7D56-DF9D-4B40-91FD-3757CF9462A7}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Evolve\Bin64_SteamRetail\StaticLauncher64.exe
FirewallRules: [{914BD39D-636E-4091-AD86-B2D8BE0F5BC6}] => (Allow) %ProgramFiles% (x86)\OBS\OBS.exe
FirewallRules: [{7A971088-6B24-4876-90D0-C9520AE9F184}] => (Allow) %ProgramFiles% (x86)\OBS\OBS.exe
FirewallRules: [{E8B5E2CF-3018-4300-BC2B-CE9227447270}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Five Nights at Freddy's\FiveNightsatFreddys.exe
FirewallRules: [{68207FE2-B217-4752-B847-C48EF0F9C6EC}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Five Nights at Freddy's\FiveNightsatFreddys.exe
FirewallRules: [{53014FE9-0C98-4EEE-8C7A-5D65D324E14F}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\PAYDAY The Heist\payday_win32_release.exe
FirewallRules: [{4B29946B-825F-4FFA-B0A1-3FB8F40F9CA0}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\PAYDAY The Heist\payday_win32_release.exe
FirewallRules: [{FB875C72-A285-4428-9422-36B734E96E86}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Fistful of Frags\sdk\hl2.exe
FirewallRules: [{678EDA25-C4CE-49DF-96BA-D5A854E03868}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Fistful of Frags\sdk\hl2.exe
FirewallRules: [{F5EC08F4-F16C-4F49-B21D-983A9EE84213}] => (Block) C:\users\christian\appdata\local\apps\2.0\1l4n9v4t.pwg\v2tvjk7n.ohq\epoc..tion_0000000000000000_0000.0000_52a3e75d6f96edf6\epoch launcher.exe
FirewallRules: [{8566FCBE-AFF7-4191-8170-192D311625CD}] => (Block) C:\users\christian\appdata\local\apps\2.0\1l4n9v4t.pwg\v2tvjk7n.ohq\epoc..tion_0000000000000000_0000.0000_52a3e75d6f96edf6\epoch launcher.exe
FirewallRules: [UDP Query User{C1DA08BE-2395-4260-88FD-6793AD1D057D}C:\users\christian\appdata\local\apps\2.0\1l4n9v4t.pwg\v2tvjk7n.ohq\epoc..tion_0000000000000000_0000.0000_52a3e75d6f96edf6\epoch launcher.exe] => (Allow) C:\users\christian\appdata\local\apps\2.0\1l4n9v4t.pwg\v2tvjk7n.ohq\epoc..tion_0000000000000000_0000.0000_52a3e75d6f96edf6\epoch launcher.exe
FirewallRules: [TCP Query User{01275927-0605-47BA-A136-1F1D7A94F035}C:\users\christian\appdata\local\apps\2.0\1l4n9v4t.pwg\v2tvjk7n.ohq\epoc..tion_0000000000000000_0000.0000_52a3e75d6f96edf6\epoch launcher.exe] => (Allow) C:\users\christian\appdata\local\apps\2.0\1l4n9v4t.pwg\v2tvjk7n.ohq\epoc..tion_0000000000000000_0000.0000_52a3e75d6f96edf6\epoch launcher.exe
FirewallRules: [{7BA4D1D3-426E-49D1-917D-C6B97B6FCE0A}] => (Allow) E:\Program Files (x86)\Origin Games\Dragon Age\bin_ship\daorigins.exe
FirewallRules: [{38A7CA39-9EB2-4EEB-8C25-D6296B6D09CF}] => (Allow) E:\Program Files (x86)\Origin Games\Dragon Age\bin_ship\daorigins.exe
FirewallRules: [{D5636DF6-2088-4651-B0DE-00C64EE59BD8}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\nmrih\sdk\hl2.exe
FirewallRules: [{92BE24F5-5726-4299-9256-6A223DC54F77}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\nmrih\sdk\hl2.exe
FirewallRules: [{7616394D-F20D-4C7D-9FC9-AA3D12C9F6AF}] => (Allow) C:\Program Files (x86)\BitTorrent Sync\BTSync.exe
FirewallRules: [{C70DD2EE-6B98-4FED-A0EA-9EB8AE479C6E}] => (Allow) C:\Program Files (x86)\BitTorrent Sync\BTSync.exe
FirewallRules: [{C8EBAAE4-0988-4689-B670-B98F6ECBA2C0}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 3\arma3launcher.exe
FirewallRules: [{7BB5405C-0C3E-4AF0-8D42-8CF9B89B1FF2}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 3\arma3launcher.exe
FirewallRules: [{EF69FCF3-1E6F-4DAD-837A-80038F48F057}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 3\arma3.exe
FirewallRules: [{66F4DAAC-7BEC-4BF2-98C5-0BF4793FA8E0}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 3\arma3.exe
FirewallRules: [{8DB42447-9A26-4AD9-BA7E-629E650FFA09}] => (Allow) c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe
FirewallRules: [{543B84F1-8A98-472C-B3A5-B0155C552E5E}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Insurgency Dedicated Server\srcds.exe
FirewallRules: [{C4A2D824-6731-46D3-8D60-2420A938474C}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Insurgency Dedicated Server\srcds.exe
FirewallRules: [{C0050EB5-CEAB-458F-B258-68087DD23D08}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Source SDK Base 2013 Multiplayer\hl2.exe
FirewallRules: [{1CAB2B16-FA70-41BE-9524-E4857492AC92}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Source SDK Base 2013 Multiplayer\hl2.exe
FirewallRules: [{8D0B282B-4AEC-41A8-9B29-1C0EFF4C2DEE}] => (Allow) E:\Program Files (x86)\Origin Games\Wing Commander III\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{5E1A7DA1-072A-42D2-AB9E-D5F1F8836E4D}] => (Allow) E:\Program Files (x86)\Origin Games\Wing Commander III\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{612078B8-897B-4912-B99C-245922391B15}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Contagion\contagionds.exe
FirewallRules: [{98EF194A-3297-49BA-B29C-855F3C750D0B}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Contagion\contagionds.exe
FirewallRules: [{C5DD5A2B-148D-470B-A3CD-B2A2643F8162}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Contagion\contagion.exe
FirewallRules: [{6E01B8BF-09A1-46C8-A472-ABEACC4C1FB6}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Contagion\contagion.exe
FirewallRules: [{C5A2B965-4599-4A24-9800-AD1625A0D1B2}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Kerbal Space Program\KSP.exe
FirewallRules: [{C5C53A1A-AF87-4831-AC8B-0D71D05E97BE}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Kerbal Space Program\KSP.exe
FirewallRules: [{CC979E70-EE6D-450F-BB84-100C07764B9A}] => (Allow) E:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{68F1DF9E-23D5-4D47-BA5B-BB3F576CC5D7}] => (Allow) E:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{A2EE57E0-1C49-4156-A441-152178B2AAF7}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Unturned\Unturned.exe
FirewallRules: [{63359197-325D-4DE4-9993-38439F877E9F}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Unturned\Unturned.exe
FirewallRules: [{7511BD15-3673-4A58-9B60-6082B2D5D4D8}] => (Allow) E:\Program Files (x86)\Origin Games\Peggle Deluxe\Peggle.exe
FirewallRules: [{87CFAC63-0BEB-4F9B-A645-D9A4B3AA2388}] => (Allow) E:\Program Files (x86)\Origin Games\Peggle Deluxe\Peggle.exe
FirewallRules: [{3560DD03-0FD8-4920-8DBC-D25FC55B9F63}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA_BE.exe
FirewallRules: [{275925D9-9912-4D27-AF43-1DCFA3BDD062}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA_BE.exe
FirewallRules: [{DCF5D9BE-E795-477A-9AC0-C2C87EE88608}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{A09F7A11-1080-4EAD-9F30-EFFACA190E94}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{EF36D240-0BD1-444B-ACB1-3457090D68F6}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe
FirewallRules: [{2DA55597-BCF6-45FF-9DF1-79CFE8211B12}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe
FirewallRules: [{FFA24F43-C2EC-4B78-9D7D-D62099A0FFF6}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Tomb Raider\TombRaider.exe
FirewallRules: [{57A5F622-9975-4975-950D-1031AC229361}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Tomb Raider\TombRaider.exe
FirewallRules: [{487A90D4-F4B0-420E-B82F-5032F0F9343B}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\The Stanley Parable\stanley.exe
FirewallRules: [{2FDB4601-3FAC-4818-8BFA-24CAB763662C}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\The Stanley Parable\stanley.exe
FirewallRules: [{153E8E23-3347-4948-A3FA-EFD0E053E66E}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\The Forest\TheForest.exe
FirewallRules: [{82E3D6DF-430D-4A9D-9D8D-8B38FB051BDF}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\The Forest\TheForest.exe
FirewallRules: [{BDDC0E72-F8B5-4CE4-9142-2FAC834964B7}] => (Block) C:\users\christian\desktop\mirc.exe
FirewallRules: [{08D181D9-6761-425A-9D5A-7BCA23A3CE54}] => (Block) C:\users\christian\desktop\mirc.exe
FirewallRules: [UDP Query User{F013D7F4-0BC9-45E3-B664-9FB2CC90DC8E}C:\users\christian\desktop\mirc.exe] => (Allow) C:\users\christian\desktop\mirc.exe
FirewallRules: [TCP Query User{DB4A2D57-8658-4E56-B4EC-071A5A7B889A}C:\users\christian\desktop\mirc.exe] => (Allow) C:\users\christian\desktop\mirc.exe
FirewallRules: [{D66A4A87-0599-4416-87A2-CB1D17A2E0A4}] => (Block) C:\program files (x86)\trillian\plugins\skypekit.exe
FirewallRules: [{63D970FA-6CC7-4D0B-8599-9B20B35D3AEB}] => (Block) C:\program files (x86)\trillian\plugins\skypekit.exe
FirewallRules: [UDP Query User{E87B4ABA-CBD0-4CAE-A640-C56F02D96DD1}C:\program files (x86)\trillian\plugins\skypekit.exe] => (Allow) C:\program files (x86)\trillian\plugins\skypekit.exe
FirewallRules: [TCP Query User{B7C35EEE-59A7-46C4-BFC4-DE52267375EF}C:\program files (x86)\trillian\plugins\skypekit.exe] => (Allow) C:\program files (x86)\trillian\plugins\skypekit.exe
FirewallRules: [{39897C98-E207-4055-A668-BDDD3753399B}] => (Block) C:\program files (x86)\mirc\mirc.exe
FirewallRules: [{38F27F7C-C936-4E42-8EC0-0A51B8138707}] => (Block) C:\program files (x86)\mirc\mirc.exe
FirewallRules: [UDP Query User{CC5E5C3D-8605-45F4-8F05-B2346F113FA1}C:\program files (x86)\mirc\mirc.exe] => (Allow) C:\program files (x86)\mirc\mirc.exe
FirewallRules: [TCP Query User{8A6C500D-F18B-4544-A85E-1B354F36AD3B}C:\program files (x86)\mirc\mirc.exe] => (Allow) C:\program files (x86)\mirc\mirc.exe
FirewallRules: [{15776FE0-1E52-47BF-885C-19BE25DEE08F}] => (Block) C:\users\christian\documents\ccglauncher\beta_103718\arma2oa.exe
FirewallRules: [{FC966D16-D2AB-441B-9835-D71FEA43395E}] => (Block) C:\users\christian\documents\ccglauncher\beta_103718\arma2oa.exe
FirewallRules: [UDP Query User{4F95AA64-BE70-4EB1-BF4A-BF4D32AD2BA2}C:\users\christian\documents\ccglauncher\beta_103718\arma2oa.exe] => (Allow) C:\users\christian\documents\ccglauncher\beta_103718\arma2oa.exe
FirewallRules: [TCP Query User{1FE3E238-4138-476D-90C4-D05849CBE061}C:\users\christian\documents\ccglauncher\beta_103718\arma2oa.exe] => (Allow) C:\users\christian\documents\ccglauncher\beta_103718\arma2oa.exe
FirewallRules: [{6BA99BE4-DF0E-465B-80A7-1D21852ADD3E}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\diriptide\DeadIslandGame_x86_rwdi.exe
FirewallRules: [{9A13FC8B-2B67-48AB-83FD-8C5423B6DC98}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\diriptide\DeadIslandGame_x86_rwdi.exe
FirewallRules: [{6C8A7949-A880-4A72-82D6-2EAF16570E25}] => (Allow) C:\Users\Christian\AppData\Roaming\Spotify\spotify.exe
FirewallRules: [{E0E3356F-0986-40EE-BCA7-56B38C4CC48B}] => (Allow) C:\Users\Christian\AppData\Roaming\Spotify\spotify.exe
FirewallRules: [{3A49D075-8A8B-4973-89D1-11AB19135010}] => (Allow) E:\Program Files (x86)\Origin Games\Plants vs. Zombies\PlantsVsZombies.exe
FirewallRules: [{0AAA334C-1588-4C97-A8CC-33D82D8C7372}] => (Allow) E:\Program Files (x86)\Origin Games\Plants vs. Zombies\PlantsVsZombies.exe
FirewallRules: [{907DD1A3-EE9B-4E88-AC5D-CDF53CBD0D02}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\South Park - The Stick of Truth\South Park - The Stick of Truth.exe
FirewallRules: [{8555DB90-C8EE-405F-B548-92F163227B32}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\South Park - The Stick of Truth\South Park - The Stick of Truth.exe
FirewallRules: [{206382DC-307C-4869-9043-F603D4896945}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Source SDK Base\hl2.exe
FirewallRules: [{011B63DC-531F-498E-B814-D396967E2BD5}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Source SDK Base\hl2.exe
FirewallRules: [{3FFF5A96-F435-409B-ABD3-752711E61C92}] => (Allow) E:\Program Files (x86)\Origin Games\Dead Space\Dead Space.exe
FirewallRules: [{6C9F8237-7C58-4F61-BE3A-70E756F224B1}] => (Allow) E:\Program Files (x86)\Origin Games\Dead Space\Dead Space.exe
FirewallRules: [{7D454C6B-0944-4173-9D92-36C408711414}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\insurgency2\insurgency.exe
FirewallRules: [{71FEB999-FBC2-4EAC-8CDE-DAF959F74CF8}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\insurgency2\insurgency.exe
FirewallRules: [UDP Query User{5B7B95B0-335C-43A6-8B5A-B4FA43D2CD11}E:\games\paintball2\paintball2.exe] => (Allow) E:\games\paintball2\paintball2.exe
FirewallRules: [TCP Query User{312F4EFC-ACA7-44F5-82E3-E0B52C31C6B1}E:\games\paintball2\paintball2.exe] => (Allow) E:\games\paintball2\paintball2.exe
FirewallRules: [{A86B5671-E22E-4679-B63E-B99747320D79}] => (Block) E:\breaking point\breakingpoint.exe
FirewallRules: [{F2C6CCAD-BF88-4D11-9B56-ABC6AC0E5F22}] => (Block) E:\breaking point\breakingpoint.exe
FirewallRules: [UDP Query User{7167B965-612D-418D-90AC-511E92D64319}E:\breaking point\breakingpoint.exe] => (Allow) E:\breaking point\breakingpoint.exe
FirewallRules: [TCP Query User{E677FC83-0F35-4CD6-92FF-787BE6925872}E:\breaking point\breakingpoint.exe] => (Allow) E:\breaking point\breakingpoint.exe
FirewallRules: [{09DB1715-F680-45E6-BD79-2C99935D32D8}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{C740A35B-709F-4C23-8929-5969F03A621F}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{3690E4F7-2EC2-4C0D-B575-5B6E7F7970DC}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Pacific Skies\AcePatrol2.exe
FirewallRules: [{0EFCB97F-702C-4332-AF8E-8CF685C28D09}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Pacific Skies\AcePatrol2.exe
FirewallRules: [{C897C1A4-0CF5-4E13-BD9B-A10D949B4B7D}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization IV Warlords\Warlords\Civ4Warlords_PitBoss.exe
FirewallRules: [{3DE9425A-F819-47B3-B64F-4FE9697D4762}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization IV Warlords\Warlords\Civ4Warlords_PitBoss.exe
FirewallRules: [{1876C470-33B4-4A68-B706-D0262CF7F993}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization IV Warlords\Warlords\Civ4Warlords.exe
FirewallRules: [{7CC5D15A-A951-4D03-919B-0B3FAFEBBA83}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization IV Warlords\Warlords\Civ4Warlords.exe
FirewallRules: [{57BCE7A2-7CAD-4276-A213-51167C47B656}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Civilization IV Colonization\Colonization.exe
FirewallRules: [{BA6F286D-EBA1-4255-8CA7-8D15AAC13F70}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Civilization IV Colonization\Colonization.exe
FirewallRules: [{4BF50BF8-5539-46DE-86E3-C824F1C2290B}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization IV Beyond the Sword\Beyond the Sword\Civ4BeyondSword.exe
FirewallRules: [{D5D9AA7F-C9E8-45BE-A61B-A34ECBE3E364}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization IV Beyond the Sword\Beyond the Sword\Civ4BeyondSword.exe
FirewallRules: [{A0EDD696-E4DD-44D2-BC9B-E0D8C99FCEFF}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Ace Patrol\AcePatrol.exe
FirewallRules: [{22D0398F-4EED-4A71-9BAE-C4C247D4705A}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Ace Patrol\AcePatrol.exe
FirewallRules: [{22AADF9A-C352-49EC-85A3-85E2D823BCAE}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization III Complete\Conquests\Civ3Conquests.exe
FirewallRules: [{52577A5F-F4FD-4885-9E21-ECE740D26030}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization III Complete\Conquests\Civ3Conquests.exe
FirewallRules: [{B3BFF787-93FA-41BD-82FC-E092B85F4ED9}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization IV\Civilization4.exe
FirewallRules: [{6C04C940-71AB-4A1C-AD60-0460FE7F199E}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization IV\Civilization4.exe
FirewallRules: [{32A3DD0D-39BF-4643-851D-3BCFEE2E8321}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Railroads\RailRoads.exe
FirewallRules: [{E14C5CB0-2828-454F-9E79-A23F8AC65549}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Railroads\RailRoads.exe
FirewallRules: [{D273C666-E61C-4BD2-80C3-36869B13EB44}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{D5E9FF72-10FB-4A40-BB93-44784FC46443}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{08AD63A0-2C98-414A-A7B6-159D845BA84E}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{3A933C25-8FAE-42A1-BEAB-EC002F37D815}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{46FD8605-CFF7-4348-A914-D296D48EB8D9}] => (Allow) LPort=7935
FirewallRules: [{5918BA56-2422-4977-A0F9-305DC1091515}] => (Allow) E:\Program Files\Adobe Flash Builder 4.6\FlashBuilder.exe
FirewallRules: [{F849273C-32CF-4354-BB13-2BCB0C3B15E8}] => (Allow) E:\Program Files\Adobe Flash Builder 4.6\FlashBuilder.exe
FirewallRules: [{143A356A-1D30-4808-AD24-3313E5159D9C}] => (Block) E:\program files (x86)\paradox interactive\victoria 2\v2game.exe
FirewallRules: [{63E7B07D-D29E-4DD2-840D-E765A65A9C61}] => (Block) E:\program files (x86)\paradox interactive\victoria 2\v2game.exe
FirewallRules: [UDP Query User{F7CB4854-27F8-4F7C-B3F6-5E9B4246FEE8}E:\program files (x86)\paradox interactive\victoria 2\v2game.exe] => (Allow) E:\program files (x86)\paradox interactive\victoria 2\v2game.exe
FirewallRules: [TCP Query User{9A2DEF4F-4C4B-4C13-8BC2-CA99A2E2E0C6}E:\program files (x86)\paradox interactive\victoria 2\v2game.exe] => (Allow) E:\program files (x86)\paradox interactive\victoria 2\v2game.exe
FirewallRules: [{F9CCFE08-25BB-42FE-9AC6-8DBAAFFD3DF1}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\SourceSDK\bin\SDKLauncher.exe
FirewallRules: [{4BF263BB-6F96-4564-8D3A-597581022498}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\SourceSDK\bin\SDKLauncher.exe
FirewallRules: [{922F8E8E-7893-4E47-B883-6CBF5F6803FB}] => (Allow) LPort=8317
FirewallRules: [{C9F11037-8DD8-4156-886C-378131E6B6F3}] => (Block) E:\program files (x86)\steam\steamapps\common\war thunder\aces.exe
FirewallRules: [{DB715758-3CB3-4683-80CC-F04183F89BBC}] => (Block) E:\program files (x86)\steam\steamapps\common\war thunder\aces.exe
FirewallRules: [UDP Query User{26E89064-CAFD-44B9-AA9B-BD04EA3FCD4B}E:\program files (x86)\steam\steamapps\common\war thunder\aces.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\war thunder\aces.exe
FirewallRules: [TCP Query User{C8B936E8-E0CC-4F6E-82DB-B2A715D93292}E:\program files (x86)\steam\steamapps\common\war thunder\aces.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\war thunder\aces.exe
FirewallRules: [{EF4BFFDE-C39A-428C-BFEF-75D4FD05F155}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\War Thunder\launcher.exe
FirewallRules: [{3184E323-F483-4FED-A52F-0CB33E2B288F}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\War Thunder\launcher.exe
FirewallRules: [{329F7472-7C48-446D-AF6E-BC5639CB7A6F}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Portal\hl2.exe
FirewallRules: [{6D537511-3ADF-453B-9825-0762FABAC0E4}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Portal\hl2.exe
FirewallRules: [{01EBD104-D643-4E2C-AD9B-648D6FF30724}] => (Block) E:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe
FirewallRules: [{0F5B2CB5-DDCA-4984-B801-5A5DF6BB3654}] => (Block) E:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe
FirewallRules: [UDP Query User{C3F648C2-39EA-405F-8BDE-49A42BB5B5C3}E:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe
FirewallRules: [TCP Query User{B245CE42-05BF-4780-B023-225FAE7F8D2A}E:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe
FirewallRules: [{52998493-A823-4FA0-8560-403D3564975D}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe
FirewallRules: [{F9520F71-83B9-48D9-A250-B4AC0B99A16B}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe
FirewallRules: [{09DA31BA-F89D-4F2C-914E-4FD7897659F8}] => (Block) E:\program files (x86)\steam\steamapps\common\the war z\infestation.exe
FirewallRules: [{8672B3D0-D55F-4E25-B3D7-49B7746E9E40}] => (Block) E:\program files (x86)\steam\steamapps\common\the war z\infestation.exe
FirewallRules: [UDP Query User{A08387E5-BBA9-468E-BDB5-51AE8176EFC5}E:\program files (x86)\steam\steamapps\common\the war z\infestation.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\the war z\infestation.exe
FirewallRules: [TCP Query User{DCB62410-5A8C-40CB-B393-0C2DD37942D3}E:\program files (x86)\steam\steamapps\common\the war z\infestation.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\the war z\infestation.exe
FirewallRules: [{1BB17B44-17A0-4A92-ABA0-46394947D76E}] => (Allow) LPort=30033
FirewallRules: [{DF22C65E-3A9C-49D1-B187-031F5412C68D}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\dota.exe
FirewallRules: [{49D4B4C1-BBB0-4611-9AD2-6C9206F89C2E}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\dota.exe
FirewallRules: [{3C583985-605A-4EA0-BF00-0F5AB39D5FAB}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{C79CFFBC-FCEA-4DE0-80F1-6CC875D07A14}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{62413B64-C4F6-49B0-AD5D-B09B1B1D6692}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{EBFA8197-DFC9-4673-B1DB-A6361D7A2682}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{4FD79604-65B9-4C95-BF77-DB14D6C828BC}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{88360E76-2C16-4C5B-B466-FE463848908B}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{DDE01896-924A-4BC4-8558-C1A8510D658A}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Just Cause 2\JustCause2.exe
FirewallRules: [{A523ACC5-F48A-4055-861A-F092C64B21D0}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Just Cause 2\JustCause2.exe
FirewallRules: [{FBEC1B12-B0F2-49F4-99DB-51F45EC06090}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Poker Night 2\PokerNight2.exe
FirewallRules: [{95F9D666-F7CC-4230-8B4F-E2CDCC3F24B6}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Poker Night 2\PokerNight2.exe
FirewallRules: [{331C2191-D384-421C-A511-9F4111A9B841}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Poker Night at the Inventory\CelebrityPoker.exe
FirewallRules: [{463ECF8B-3D60-4D86-A1BA-4E4C2C0D0936}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Poker Night at the Inventory\CelebrityPoker.exe
FirewallRules: [{B469DAFC-C1FA-482E-AA90-D0F997BD00D0}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Just Cause 2 - Multiplayer Mod\JcmpLauncher.exe
FirewallRules: [{18BFAEEC-C5BE-4DB8-956B-41AE272D6B69}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Just Cause 2 - Multiplayer Mod\JcmpLauncher.exe
FirewallRules: [{D1F20684-6BFE-4849-A5D8-E492A6B6787B}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{A28DCCC5-7FFB-4728-8650-572CAF922715}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{4FA80281-8B0A-4430-A48E-5E834837929F}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{BA296C4C-5E82-43F8-97F2-5A7B159B8A83}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{849ADED2-7A6B-460D-BEC7-654270D256F0}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{5000D550-9413-4BC1-BA3F-9FC7FD84B043}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{92F55CA7-7C9B-4781-858B-8177F09E74AA}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{493AEE7E-58C5-4296-8253-7504464F7610}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{2675D07A-CFE1-4CDD-9005-A8E09686A8ED}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{370DC8D2-8D35-4A5F-AC04-FDA59E48B3F1}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{BBD83CD4-D50F-40D6-880C-06D9B3129AC0}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{CEBDEE9C-F559-4022-A7FE-0010BF0A5771}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{11506048-548C-4494-9AA7-48DBD7967768}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{C7374F3D-97CB-40B9-A621-C692CDBA1BD1}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{599C0F32-9E41-4D61-96D7-1E4515C0B973}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{DECA1E13-97C2-4F4B-A6E6-2E641536825C}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{8E5164C5-3B9C-4EDA-84F4-F59BEDDF960A}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{73F45CDF-E960-4518-803C-CC930DE32BBD}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{B88C6E36-5F9B-46F4-BB1F-DC86A8167C25}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{CCC99E9B-B055-4909-AFEF-84AA57C17741}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{A45D6167-BDBA-4956-AE41-4778B853CA08}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Portal 2\portal2.exe
FirewallRules: [{DCD8E182-B839-410D-B84A-AA3C56475E21}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Portal 2\portal2.exe
FirewallRules: [{008D8112-B18A-4860-A56A-BDC09D1F54B2}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{2B08C08E-971F-4B27-B3C6-96925BCA0075}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{D1F5F36C-F430-4686-ABCE-F605B408E782}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{F9CABDFC-0DBF-4615-A68B-034EF7B6B5FF}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{E1D4EC1C-D4DB-4169-B9F7-89D025EAB1C7}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{EB8C7038-3A1E-4E3F-8986-732A2F002198}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{4063916F-6C37-40D2-8F36-B39FA78A4A06}] => (Block) E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oaserver.exe
FirewallRules: [{5F071A74-3E33-4485-8770-B636CA4F5515}] => (Block) E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oaserver.exe
FirewallRules: [UDP Query User{9C8CE3A8-4BA2-4E3D-8A46-A1141336AF83}E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oaserver.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oaserver.exe
FirewallRules: [TCP Query User{8B2D6374-1F6D-4FDA-AD13-6FD8A022AAB5}E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oaserver.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oaserver.exe
FirewallRules: [{32FD03D1-F654-4CC4-8800-ED56E790FB4F}] => (Block) E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oaserver.exe
FirewallRules: [{49D85312-3E87-4E4A-A31E-FA8403CC155E}] => (Block) E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oaserver.exe
FirewallRules: [UDP Query User{C962B6B2-45C7-4CBA-A20C-2E5646E14DA4}E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oaserver.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oaserver.exe
FirewallRules: [TCP Query User{853F6EB9-CC7C-48AD-A3F6-FFCE334F45EA}E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oaserver.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oaserver.exe
FirewallRules: [{6799EBDF-3564-47EF-A6DD-99DFE49F2D31}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{4780A5BD-7C60-4654-941E-8BD4C5C8EEAA}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{4A5718E2-7868-4FE6-A7FD-DC64CED647CE}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 3 Server\arma3server_readme.txt
FirewallRules: [{87EFBE50-9FD6-4CF0-8BDC-ABCF8CFE949A}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 3 Server\arma3server_readme.txt
FirewallRules: [{CCD5D7E3-915C-4AAE-8DA8-7CA5B37E5DAC}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops Rcon\BlackOpsRcon.exe
FirewallRules: [{B792AB39-7844-4712-8DD1-1A0BDFAFFE84}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops Rcon\BlackOpsRcon.exe
FirewallRules: [{F937B0A8-887C-4DE7-82FB-75DD3D37D822}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{37337C8C-3B38-4EFD-8503-57CC1F5D3B39}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{BAB4A83C-6925-434E-9C8A-61CB727D38AB}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{C990A3DF-3505-4BFC-8F25-2E09F1CE1092}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{1177576B-228E-4F5A-8FCD-719525C1620D}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [{0FCFAD7D-6768-4698-9613-ECC5CCA343C9}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [{EB7EF4E2-8708-4AE3-8CB9-5D1FA50E02F9}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{FA3A7C39-83C9-4D33-A7ED-800E86FA0833}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{EF82017E-4458-4842-B15C-2A3F5FB42D4A}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{81116DED-8909-4AAE-A32D-7F31B85C89C4}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{F9D975EF-2918-4051-B730-A2A60E60457D}] => (Block) E:\program files (x86)\steam\steamapps\common\arma 3\arma3server.exe
FirewallRules: [{1B7AC9D8-5B4A-4755-BF29-2BC5E2801004}] => (Block) E:\program files (x86)\steam\steamapps\common\arma 3\arma3server.exe
FirewallRules: [UDP Query User{E688BBB4-9846-47DC-875E-838C765111CA}E:\program files (x86)\steam\steamapps\common\arma 3\arma3server.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\arma 3\arma3server.exe
FirewallRules: [TCP Query User{1B8A3C2B-994B-45E7-8D9C-63CDF993CBE2}E:\program files (x86)\steam\steamapps\common\arma 3\arma3server.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\arma 3\arma3server.exe
FirewallRules: [{878D05F4-8CF9-46A6-B395-8F34D55BC1D1}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\dota.exe
FirewallRules: [{C7F3DFEB-2594-4EF0-BB94-E041D5942BEF}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\dota.exe
FirewallRules: [{E5F98A24-1088-49BB-A671-FD2EFFCA0C94}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Dungeon Defenders\Binaries\Win32\DungeonDefenders.exe
FirewallRules: [{42DD6C98-1334-42E6-B755-6D6D8B1D5011}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Dungeon Defenders\Binaries\Win32\DungeonDefenders.exe
FirewallRules: [{F61013F3-F635-423C-8FAB-B5EB3B722E84}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Magicka\Magicka.exe
FirewallRules: [{5D2202A0-1588-4F92-AA0C-DB4275B335EB}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Magicka\Magicka.exe
FirewallRules: [{2BCCB500-F629-49FD-806C-DDF412C0CA92}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\FTL Faster Than Light\FTLGame.exe
FirewallRules: [{B33626D6-6D58-4759-ABA9-A3AF984BDD77}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\FTL Faster Than Light\FTLGame.exe
FirewallRules: [{2509876C-237C-4146-BB1B-5EA18B1A744F}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{8AFCA206-D4C0-4388-8228-668D60C15795}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{C46A42D4-2A9E-483B-8AA3-41A77373ACCA}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Cities XL Platinum\CitiesXL_Platinum.exe
FirewallRules: [{4B7C4AB1-0446-468B-B516-1CACE7473C17}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Cities XL Platinum\CitiesXL_Platinum.exe
FirewallRules: [{8AF0B653-0D57-4237-AE9F-7CE5EB38FB01}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\CastleCrashers\castle.exe
FirewallRules: [{1DD1F6D1-4854-4208-8DA0-E470F30D701D}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\CastleCrashers\castle.exe
FirewallRules: [{38CED98B-6172-4658-A3CC-19F9B1D622EC}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{345FCC5F-5DD5-4A91-8483-2B45143C542B}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{39609370-7AE1-435A-B651-D96B20A99C98}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOpsMP.exe
FirewallRules: [{8BB6470C-274F-4A1F-B712-D1A0671F0809}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOpsMP.exe
FirewallRules: [{222482AE-3EE7-4004-ABAB-1D4CD383EF61}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{3E6DBB95-BC9F-4481-BDDF-B8B735784D7C}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{736A35CE-4052-433A-A5E5-536C5F420D70}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{980AFB78-53CF-4834-93D6-2501FDF681B0}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{756E8505-B62C-4AA2-9E75-378FA39436A2}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{D63B2D37-4B19-4312-A3A3-AD00EEB24C15}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{7CCCE7E9-2108-49A4-AC96-8B79384B0535}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{E813535E-D420-4DF3-A67F-9F8C27289C3C}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{58CBA23C-870C-4C77-A24B-0083E2111C7F}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{3E1A9506-1CF2-447D-805D-CA8F78DE1877}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{07C84C98-4BFD-44F6-A333-318C0F2B8FF5}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite V2\bin\SniperEliteV2.exe
FirewallRules: [{EA07F36F-BED3-40B7-9264-5ABA672CB492}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite V2\bin\SniperEliteV2.exe
FirewallRules: [{03ABE0BB-E3B9-4711-A1DC-210784F8C897}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{97BF1F8B-B840-4DE1-9312-577AE2CCDE76}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{D1556776-B56B-4AC2-A63F-16F240BBA515}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{4E2AD639-00D9-496D-BCFB-17B2676129FB}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{D132BD24-42EE-4DFA-9993-C5B929362750}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{34C21A3B-0F84-455E-AEB5-45D556572104}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{08B707F5-595F-4E8E-83C1-C76DD97A3F52}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{7F698FE6-EFBC-423B-8B3B-6EAA58D4E078}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{5C7074D4-8336-4224-9BF9-9AB4B5FCA991}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{AF092B50-58B1-42E3-876C-F130D73FAD3C}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{96A389C3-8927-4C4D-811D-38B20CBBE979}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{15A71C64-D704-4ACA-9E55-F76873522176}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{BB62DB5E-B286-4E77-8C91-379317E07177}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{C39E2BA5-4681-4A74-9C47-F8F3AB229A40}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{5129F014-B254-476F-A368-35F3ADE0FFF7}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{C19BB8CA-8666-44E4-9DC4-36D9BC166577}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{9C47D641-55E5-41EA-B1A9-7FE2F6E47705}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{AFD85689-C933-4D2E-B3A2-2E6D15167733}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{A71424E3-721D-4F2E-8118-9DDD2A0723F6}] => (Allow) E:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{B8DADE39-A88A-4CD3-A6F7-691EE1AC153C}] => (Allow) E:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{68A1F2B7-5EF5-4566-9591-02DD7F087F37}] => (Allow) E:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{145ECC7D-D8DE-47CC-B5E2-6E28283F1849}] => (Allow) E:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [UDP Query User{22B3EB1E-9899-4283-A059-ACA06C23412F}E:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) E:\program files (x86)\origin games\battlefield 4\bf4.exe
FirewallRules: [TCP Query User{A2452E32-E907-4D12-961B-032DD0F96698}E:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) E:\program files (x86)\origin games\battlefield 4\bf4.exe
FirewallRules: [UDP Query User{D9560B02-441E-415D-81EF-F33062DE85B0}C:\users\christian\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\christian\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{12CA7606-80F2-4534-82E8-E96C894FDF2A}C:\users\christian\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\christian\appdata\roaming\spotify\spotify.exe
FirewallRules: [{C7D5E27A-5711-49DF-A184-7C352B4E619F}] => (Allow) LPort=1900
FirewallRules: [{0E953FB2-6DC7-4C56-8761-CD97AE9CC267}] => (Allow) LPort=2869
FirewallRules: [{61BFA9C5-CE5F-4F37-912E-F4A77DB07025}] => (Allow) C:\Users\Christian\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{D6A0B5DA-251E-4482-9E8F-52AC1254CC91}] => (Allow) E:\users\christian\ts3\teamspeak3-server_win64\ts3server_win64.exe
FirewallRules: [{0AECA6A3-B46E-4C28-AD8C-C83A35551B52}] => (Allow) E:\users\christian\ts3\teamspeak3-server_win64\ts3server_win64.exe
FirewallRules: [UDP Query User{D5CD2566-9898-478F-AC8B-903D8DE0BF0A}E:\users\christian\ts3\teamspeak3-server_win64\ts3server_win64.exe] => (Allow) E:\users\christian\ts3\teamspeak3-server_win64\ts3server_win64.exe
FirewallRules: [TCP Query User{17AA43AE-5AD4-4FD4-8E9A-06908D891878}E:\users\christian\ts3\teamspeak3-server_win64\ts3server_win64.exe] => (Allow) E:\users\christian\ts3\teamspeak3-server_win64\ts3server_win64.exe
FirewallRules: [{34852B4B-BC4F-4CA7-B65D-E017137E8375}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{AE7A802B-0B12-4741-B1C1-0811C820EC15}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{2E1091DA-A5DD-4A61-ABD5-267BAEB9E457}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{1AA9F407-4D20-4A93-AEBC-69F5F70ACE9D}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [UDP Query User{8AB2C590-B872-4360-BEA1-E93783D26918}C:\users\christian\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\christian\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{5F59D164-7FBD-49B9-9CDC-A528F30908B4}C:\users\christian\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\christian\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{C08DBEAE-AE2C-4A3D-B1DF-3B10BB2E458C}] => (Allow) C:\Users\Christian\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{26C8119D-DC2E-466A-BBEE-8CD86AC38689}] => (Allow) C:\Users\Christian\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{31BED915-E6F4-423D-950F-CBD0C34853D6}] => (Allow) e:\Program Files (x86)\7DaysToDie-Alpha\7DaysToDie.exe
FirewallRules: [{4384AC3F-BFD6-466D-9432-626FF84F80A5}] => (Allow) e:\Program Files (x86)\7DaysToDie-Alpha\7DaysToDie.exe
FirewallRules: [UDP Query User{D4595A5B-94DB-4A24-A694-D7BCA91475B6}E:\program files (x86)\six projects\six updater\tools\bin\rsync.exe] => (Allow) E:\program files (x86)\six projects\six updater\tools\bin\rsync.exe
FirewallRules: [TCP Query User{FFA52CF7-F838-4C56-B5F0-3A5D18845036}E:\program files (x86)\six projects\six updater\tools\bin\rsync.exe] => (Allow) E:\program files (x86)\six projects\six updater\tools\bin\rsync.exe
FirewallRules: [UDP Query User{5B9C100E-CABC-4BE9-9F73-7B498958A21C}C:\users\christian\documents\arma 2\expansion\beta\arma2oa.exe] => (Allow) C:\users\christian\documents\arma 2\expansion\beta\arma2oa.exe
FirewallRules: [TCP Query User{F7925ECA-E196-430B-919D-2BF6567217AF}C:\users\christian\documents\arma 2\expansion\beta\arma2oa.exe] => (Allow) C:\users\christian\documents\arma 2\expansion\beta\arma2oa.exe
FirewallRules: [UDP Query User{3286DFC7-183D-48B5-9B75-ABE1C74D63A6}E:\users\christian\downloads\teamspeak3-server_win64-3.0.7.2\teamspeak3-server_win64\ts3server_win64.exe] => (Allow) E:\users\christian\downloads\teamspeak3-server_win64-3.0.7.2\teamspeak3-server_win64\ts3server_win64.exe
FirewallRules: [TCP Query User{980C42A6-571F-438B-B36F-4AF27D86A7CF}E:\users\christian\downloads\teamspeak3-server_win64-3.0.7.2\teamspeak3-server_win64\ts3server_win64.exe] => (Allow) E:\users\christian\downloads\teamspeak3-server_win64-3.0.7.2\teamspeak3-server_win64\ts3server_win64.exe
FirewallRules: [{4B13B6EA-B1A0-4352-91C4-B91A16D58716}] => (Allow) C:\Program Files\HP\HP Officejet 6700\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{6BFBECE6-90B5-4789-84EE-6D0F666C6741}] => (Allow) C:\Program Files\HP\HP Officejet 6700\Bin\HPNetworkCommunicator.exe
FirewallRules: [{FF98AFB3-D672-4FA8-A9DA-A7C0CD52A360}] => (Allow) C:\Program Files\HP\HP Officejet 6700\Bin\DeviceSetup.exe
FirewallRules: [{6C80D7D1-7D15-4ADE-9CE4-EE13A2A6BF5E}] => (Allow) C:\Program Files\HP\HP Officejet 6700\bin\SendAFax.exe
FirewallRules: [{F54D28A3-CBBA-4ABB-A7C4-6BE7D6E97DD4}] => (Allow) C:\Program Files\HP\HP Officejet 6700\bin\DigitalWizards.exe
FirewallRules: [{C7A73513-5A90-4F03-8FA4-750AD0AC06AA}] => (Allow) C:\Program Files\HP\HP Officejet 6700\bin\FaxApplications.exe
FirewallRules: [{C00748DC-5982-4F1B-8A85-14FEDC4A4B65}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{10434351-B094-447D-9A4B-70870489E17D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{43EFDC73-1AFA-4D21-A6D7-0D2E264E3A22}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{E69E325A-CFEB-49E1-9A6A-0C3955ACB26E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{AD4AB134-9D54-488F-9C2F-C0762EB20737}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{FDC4D5FF-C78C-40C1-AA4E-9FADA9B5B8F8}] => (Allow) C:\Program Files (x86)\Google\Google Talk\googletalk.exe
FirewallRules: [{92718C3E-EF26-4B35-AFFE-1B14342C4B15}] => (Allow) C:\Program Files (x86)\Google\Google Talk\googletalk.exe
FirewallRules: [{B7EA6D3E-63D2-46C4-B768-87C549839C48}] => (Allow) LPort=1900
FirewallRules: [{9FE23E7B-50B6-4322-B241-798EFFBE4198}] => (Allow) LPort=2869
FirewallRules: [{31980898-8C93-48BF-AC84-ABA185D50DDC}] => (Allow) LPort=1900
FirewallRules: [{45C839CB-A4AE-4AD5-A883-0E129E263558}] => (Allow) LPort=2869
FirewallRules: [{B2FB47D4-9FDE-4347-B8EC-5BCA3B76FEB3}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
FirewallRules: [{08A304F8-C46C-4DCB-9D25-8952BEEFF1E9}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
FirewallRules: [{AFA70EE5-6FA2-4E9B-8A91-A90C63285DED}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFi GO! Server.exe
FirewallRules: [{4AC6ED38-3ABA-4F6F-AB40-F9445CAE7CEE}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFi GO! Server.exe
FirewallRules: [{85A5403E-1493-4101-86AD-80A568B741BC}] => (Allow) I:\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [{A376BECC-1642-4357-BD8F-FF7E3F8B24AF}] => (Allow) I:\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [{B0EF6457-2677-4EA1-9CFA-302DF43B91E5}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{B7C50FB0-B82B-48B4-9902-19B0BE5E2884}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{33C5ADB7-479E-481A-8975-BF26A78AE04B}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty Black Ops III Beta\BlackOps3.exe
FirewallRules: [{2C2FD143-9626-44DF-BAA9-DF438F3DB56F}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty Black Ops III Beta\BlackOps3.exe
FirewallRules: [{F5D2F0E2-034B-40CA-BB1D-559560CC2C89}] => (Allow) I:\SteamLibrary\steamapps\common\Stealth Inc 2\settings\settings.exe
FirewallRules: [{46AD5FAB-E133-4AD6-BC7C-F01B81EC1684}] => (Allow) I:\SteamLibrary\steamapps\common\Stealth Inc 2\settings\settings.exe
FirewallRules: [{612FB0B0-A6E3-4A50-9CAB-77DB8B78940E}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{D1C03DA4-482B-4229-B6E4-B17D07F3BA7E}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{259A80A5-9BCF-463D-A683-D0A4744A32C3}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{C15E3964-0B94-4714-B880-BEAFFC64B507}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{7A6A7746-3DE0-4E3A-8D64-6175D54A137D}] => (Allow) E:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{A9BFA494-27CE-4478-8FC1-AB788461A01D}] => (Allow) E:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{C2973967-11B5-434D-9299-D5A300224FA1}] => (Allow) I:\SteamLibrary\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{2453C9AB-8B36-46ED-9858-E2FAF403E555}] => (Allow) I:\SteamLibrary\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [TCP Query User{FF1AB6E5-C135-4839-B457-B710E2B14547}C:\program files (x86)\java\jre1.8.0_40\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_40\bin\java.exe
FirewallRules: [UDP Query User{13BA534A-F825-40D6-BE07-EFAF64540A2B}C:\program files (x86)\java\jre1.8.0_40\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_40\bin\java.exe
FirewallRules: [{9DE15098-C621-4274-8433-D76CB2397BA7}] => (Allow) E:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [{4B183D52-DD34-49C8-AE2A-743CE2B5A231}] => (Allow) E:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [{04BC63B0-A1F7-40C8-A7CC-89800ABFA26C}] => (Allow) E:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe
FirewallRules: [{ED6942BE-E3AE-442C-BD31-42ED1001FA16}] => (Allow) E:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe
FirewallRules: [{CBEC20CD-62E4-42D3-9D3B-3E6110335D51}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3FBBE953-13EA-42CF-BA47-CD93DAF67CDE}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8A36B334-227D-4000-899E-585730BFAF81}] => (Allow) I:\SteamLibrary\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{0F36723F-0EEE-496B-AC0F-C664FA97236A}] => (Allow) I:\SteamLibrary\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{F5FC6412-141D-4032-8A27-F8DA75769563}] => (Allow) I:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\bin\SDKLauncher.exe
FirewallRules: [{FFDA4F49-31C7-4301-9B87-5ECF9D6D1907}] => (Allow) I:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\bin\SDKLauncher.exe
FirewallRules: [{22FC65F6-EA33-4484-ADCD-9BABDEE6DCA8}] => (Allow) E:\Program Files (x86)\Origin Games\BFH\BFHWebHelper.exe
FirewallRules: [{9A81B400-F604-4BEE-8923-6AE9FC1236F6}] => (Allow) E:\Program Files (x86)\Origin Games\BFH\BFHWebHelper.exe
FirewallRules: [{A83263E7-D276-4BD9-A60A-7B07CCBA1258}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (10/01/2015 06:27:23 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: CHRISTIANDESKPC)
Description: Activation of app Microsoft.XboxIdentityProvider_cw5n1h2txyewy!Microsoft.XboxIdentityProvider failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information.
 
Error: (10/01/2015 05:45:38 PM) (Source: MsiInstaller) (EventID: 11714) (User: NT AUTHORITY)
Description: Product: LogMeIn Hamachi -- Error 1714. The older version of LogMeIn Hamachi cannot be removed.  Contact your technical support group.  System Error 1612.
 
 
System errors:
=============
Error: (10/02/2015 03:23:25 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: The Xbox Live Auth Manager service terminated with the following service-specific error: 
%%0
 
Error: (10/01/2015 06:35:15 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: The Xbox Live Auth Manager service terminated with the following service-specific error: 
%%0
 
Error: (10/01/2015 06:27:59 PM) (Source: SbieSvc) (EventID: 9234) (User: )
Description: SBIE9234 Service startup error level 9153 status=C0000001 error=-1073741823
 
Error: (10/01/2015 06:27:56 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Net.Tcp Listener Adapter service depends on the Net.Tcp Port Sharing Service service which failed to start because of the following error: 
%%1058
 
Error: (10/01/2015 06:27:55 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Norton Identity Safe service failed to start due to the following error: 
%%5
 
Error: (10/01/2015 06:27:55 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The avnetflt service failed to start due to the following error: 
%%2
 
Error: (10/01/2015 06:27:54 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{22279AF5-03AE-4CAF-989D-2530918B2F1C}{0773CCD6-59A2-4D26-B235-19247767E645}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable
 
Error: (10/01/2015 06:27:54 PM) (Source: SbieDrv) (EventID: 1103) (User: )
Description: SBIE1103 Sandboxie driver (SbieDrv) version 4.14 failed to start
 
Error: (10/01/2015 06:27:54 PM) (Source: SbieDrv) (EventID: 1105) (User: )
Description: SBIE1105 Unknown operating system version:  10.0 (10240)
 
Error: (10/01/2015 06:27:54 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{22279AF5-03AE-4CAF-989D-2530918B2F1C}{0773CCD6-59A2-4D26-B235-19247767E645}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable
 
 
CodeIntegrity:
===================================
  Date: 2015-10-02 03:32:41.886
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-10-02 03:32:41.796
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-10-01 18:27:50.295
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vsnd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2015-10-01 18:22:37.340
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vsnd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2015-10-01 18:06:27.553
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-10-01 18:06:27.538
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-10-01 17:45:27.295
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vsnd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2015-10-01 11:24:48.450
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-10-01 11:24:48.435
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-10-01 11:17:04.231
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vsnd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™ i7-3770K CPU @ 3.50GHz
Percentage of memory in use: 17%
Total physical RAM: 16328.42 MB
Available physical RAM: 13485.06 MB
Total Virtual: 32712.42 MB
Available Virtual: 29663.83 MB
 
==================== Drives ================================
 
Drive c: (SSD) (Fixed) (Total:237.94 GB) (Free:55.63 GB) NTFS
Drive d: (SCOOBYDOO_LIVE_ACTION) (CDROM) (Total:7.62 GB) (Free:0 GB) UDF
Drive e: (1TB HD) (Fixed) (Total:931.51 GB) (Free:58.54 GB) NTFS
Drive i: (4TB HD) (Fixed) (Total:3725.9 GB) (Free:2960.57 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 238.5 GB) (Disk ID: 80EA82DA)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=237.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
 
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 6990C34E)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
 
========================================================
Disk: 2 (Size: 3726 GB) (Disk ID: 2C3061ED)
 
Partition: GPT.
 
==================== End of Addition.txt ============================

  • 0

#19
rockitout

rockitout

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 130 posts

I ran FRST again and here are the logs.  FYI, my responses may be limited today as I'm at work.

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:27-09-2015 01
Ran by Christian (administrator) on CHRISTIANDESKPC (02-10-2015 05:55:12)
Running from C:\Users\Christian\Desktop
Loaded Profiles: Christian (Available Profiles: Christian & DefaultAppPool)
Platform: Windows 10 Pro (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
() C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
(Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
(DTS, Inc) C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(ClanServers Hosting LLC) C:\Program Files (x86)\GameTracker\GSInGameService.exe
() C:\Program Files\Everything\Everything.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(LogMeIn Inc.) E:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(LogMeIn, Inc.) E:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Nitro PDF Software) C:\Program Files\Common Files\Nitro\Reader\3.0\NitroPDFReaderDriverService3x64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDMedia.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDCountdown.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDClock.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDPOP3.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDRSS.exe
(Saitek) C:\Program Files\SmartTechnology\Software\ProfilerU.exe
(Saitek) C:\Program Files\SmartTechnology\Software\SaiMfd.exe
(Highresolution Enterprises) C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.922.11070.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.13251.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.9.25.0_x64__8wekyb3d8bbwe\WinStore.Mobile.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1509.14010.0_x64__8wekyb3d8bbwe\Calculator.exe
 
 
==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8492800 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_DTS] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [7477016 2013-04-24] (Logitech Inc.)
HKLM\...\Run: [ProfilerU] => C:\Program Files\SmartTechnology\Software\ProfilerU.exe [454144 2013-04-16] (Saitek)
HKLM\...\Run: [SaiMfd] => C:\Program Files\SmartTechnology\Software\SaiMfd.exe [158208 2013-04-16] (Saitek)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [557768 2014-10-14] (Adobe Systems Incorporated)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-26] (NVIDIA Corporation)
HKLM\...\Run: [XMouseButtonControl] => C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe [1121776 2015-08-10] (Highresolution Enterprises)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6134544 2015-10-01] (AVAST Software)
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\Run: [GoogleChromeAutoLaunch_F95133299531DA24C7CB703BC8432DCE] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944 2015-09-23] (Google Inc.)
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\MountPoints2: {2aa539fd-9067-11e4-b111-806e6f6e6963} - "D:\install.EXE" id= ver=1.0.0.0
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\Winlogon: [Shell] C:\Windows\explorer.exe [4532304 2015-08-11] (Microsoft Corporation) <==== ATTENTION
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-09-11] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-09-11] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-09-11] (Google)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Christian\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll [2015-08-04] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Christian\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll [2015-08-04] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Christian\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll [2015-08-04] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-10-01] (AVAST Software)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Christian\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\FileSyncShell.dll [2015-08-04] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Christian\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\FileSyncShell.dll [2015-08-04] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Christian\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\FileSyncShell.dll [2015-08-04] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RealPlayer Cloud Service UI.lnk [2014-08-25]
ShortcutTarget: RealPlayer Cloud Service UI.lnk -> C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe (RealNetworks, Inc.)
Startup: C:\Users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk [2013-10-30]
Startup: C:\Users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2013-06-16]
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{58ecfa1d-1ba8-47ec-8d2b-c2bed90aeb97}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{fcc1e0e7-2478-40bc-9c6d-ff7a0cb2c241}: [DhcpNameServer] 192.168.1.1
 
Internet Explorer:
==================
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://battlelog.battlefield.com/bf4/servers/
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
SearchScopes: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000 -> {8D2A2E78-E3FF-480A-AF29-CB95920AC6CD} URL = hxxp://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=599486&p={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-10-01] (AVAST Software)
BHO: Norton Identity Protection -> {AB4C7833-A6EC-433f-B9FE-6B14B1A2F836} -> C:\Program Files (x86)\Norton Identity Safe\Engine64\2014.7.11.42\coIEPlg.dll No File
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-09-05] (Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-22] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-10-01] (AVAST Software)
BHO-x32: Norton Identity Protection -> {AB4C7833-A6EC-433f-B9FE-6B14B1A2F836} -> C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\coIEPlg.dll No File
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05] (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-22] (Oracle Corporation)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05] (Adobe Systems Incorporated)
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  No File
Toolbar: HKLM - Norton Identity Safe Toolbar - {A13C2648-91D4-4bf3-BC6D-0079707C4389} - C:\Program Files (x86)\Norton Identity Safe\Engine64\2014.7.11.42\coIEPlg.dll No File
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Norton Identity Safe Toolbar - {A13C2648-91D4-4bf3-BC6D-0079707C4389} - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\coIEPlg.dll No File
Toolbar: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
 
FireFox:
========
FF ProfilePath: C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default
FF DefaultSearchEngine: Google
FF DefaultSearchEngine.US: Google
FF Homepage: hxxps://www.google.com
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_287.dll [2015-01-23] ()
FF Plugin: @esn/npbattlelog,version=2.5.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.0\npbattlelogx64.dll [No File]
FF Plugin: @esn/npbattlelog,version=2.7.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.0\npbattlelogx64.dll [No File]
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeExManDetect -> E:\Program Files\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll [2013-12-03] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_287.dll [2015-01-23] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-02-18] ()
FF Plugin-x32: @esn/npbattlelog,version=2.5.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.0\npbattlelog.dll [No File]
FF Plugin-x32: @esn/npbattlelog,version=2.7.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.0\npbattlelog.dll [No File]
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-22] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-22] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Reader 3\npnitromozilla.dll [2013-07-26] (Nitro PDF)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-09-13] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-09-13] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin-x32: @raidcall.en/RCplugin -> C:\Users\Christian\AppData\Roaming\raidcall\plugins\nprcplugin.dll [2014-05-27] (Raidcall)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-14] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.7 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-06-07] (VideoLAN)
FF Plugin-x32: Adobe Acrobat -> E:\Program Files\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2011-09-05] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeExManDetect -> E:\Program Files\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [2013-12-03] (Adobe Systems)
FF Plugin HKU\S-1-5-21-2842136386-2703010871-4203806482-1000: @nsroblox.roblox.com/launcher -> C:\Users\Christian\AppData\Local\Roblox\Versions\version-957ce0cc47814d39\\NPRobloxProxy.dll [2013-01-01] ( ROBLOX Corporation)
FF Plugin HKU\S-1-5-21-2842136386-2703010871-4203806482-1000: @nsroblox.roblox.com/launcher64 -> C:\Users\Christian\AppData\Local\Roblox\Versions\version-957ce0cc47814d39\\NPRobloxProxy64.dll [2013-01-01] ( ROBLOX Corporation)
FF Plugin HKU\S-1-5-21-2842136386-2703010871-4203806482-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Christian\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-11-30] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-2842136386-2703010871-4203806482-1000: facebook.com/fbDesktopPlugin -> C:\Users\Christian\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll [2013-03-07] (Facebook, Inc.)
FF Extension: VontaeGames Upload widget - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-04-25]
FF Extension: LtCookieMobster Upload Addon - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-04-25]
FF Extension: No Name - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2015-09-25]
FF Extension: Battlefield Play4Free - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-03-07]
FF Extension: No Name - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2015-09-25]
FF Extension: Add to Amazon Wish List Button - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-06-03]
FF Extension: Battletag for Battlelog™ - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-12-07]
FF Extension: Firebug - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-01-30]
FF Extension: YouTube mp3 - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-10-15]
FF Extension: Enhanced Steam - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-01-30]
FF Extension: Google Translator for Firefox - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2014-12-07]
FF Extension: Session Manager - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi [2014-10-17]
FF Extension: New Tab Homepage - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\{66E978CD-981F-47DF-AC42-E3CF417C1467}.xpi [2014-01-30]
FF Extension: Download YouTube Videos as MP4 - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\{b9bfaf1c-a63f-47cd-8b9a-29526ced9060}.xpi [2014-12-09]
FF Extension: Adblock Plus - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-01-30]
FF Extension: Screenshoter Fixed - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\{d9babd10-47de-11df-9879-0800200c9a67}.xpi [2014-01-30]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - E:\Program Files\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - E:\Program Files\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2014-01-24]
FF HKLM-x32\...\Firefox\Extensions: [{F04D2D30-776C-4d02-8627-8E4385ECA58D}] - C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2014.7.0.47\coFFPlgn => not found
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext => not found
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-10-01]
 
Chrome: 
=======
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchURL: Default -> hxxps://safesearch.avira.com/#web/result?source=omnibar&q={searchTerms}
CHR DefaultSearchKeyword: Default -> Avira
CHR DefaultSuggestURL: Default -> hxxps://safesearch.avira.com/suggestions?q={searchTerms}&li=ff&hl=en
CHR Profile: C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Theme Creator) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\akpelnjfckgfiplcikojhomllgombffc [2015-04-17]
CHR Extension: (YouTube) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-06-16]
CHR Extension: (Styler) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\bogdgcfoocbajfkjjolkmcdcnnellpkb [2015-09-19]
CHR Extension: (Adblock Plus) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2013-06-19]
CHR Extension: (Battletag for Battlelog™) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckdomikkinngpfpodjjannnbojbembhj [2015-01-25]
CHR Extension: (Webpage Screenshot) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckibcdccnfeookdmbahgiakhnjcddpki [2013-06-19]
CHR Extension: (Spotify - Music for every moment) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnkjkdjlofllcpbemipjbcpfnglbgieh [2015-04-17]
CHR Extension: (Google Search) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-06-16]
CHR Extension: (Netflix) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\deceagebecbceejblnlcjooeohmmeldh [2015-04-17]
CHR Extension: (Hitbox Now!) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\eblhpeihibbjknadncjbpcnnhkcljnhg [2015-04-17]
CHR Extension: (Rush Team) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecdnoeebfjlplfkljdedokbcmebojbpb [2013-06-19]
CHR Extension: (Untamed Now Playing) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\elmdghkkehlmfllejpgikgpjgfalppei [2014-06-24]
CHR Extension: (Avast Online Security) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-10-01]
CHR Extension: (ThemeBeta.com) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgpfjdopafniillnphhkmnihojeclljc [2015-08-04]
CHR Extension: (Better Battlelog (BBLog)) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjlfnjepjdmlppapoikepbaabbghofma [2015-01-25]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-04-05]
CHR Extension: (Channel Sub Box for YouTube™) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\lhbmojliagbancdcmookpmaaoipjifmc [2015-01-26]
CHR Extension: (Session Manager) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\mghenlmbmjcpehccoangkdpagbcbkdpc [2015-03-30]
CHR Extension: (OneDrive) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nffchahhjecejoiigmnhhicpoabngedk [2013-06-19]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-24]
CHR Extension: (Battlelog Emblem Editor Extended) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\noagedoiolkfaoaknohhepocfeooibjb [2015-01-27]
CHR Extension: (Norton Security Toolbar) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nppllibpnmahfaklnpggkibhkapjkeob [2014-06-13]
CHR Extension: (Gmail) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-06-16]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [khjilmcjipkeokomeekfnhkpbnhmgaje] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [nppllibpnmahfaklnpggkibhkapjkeob] - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\Exts\Chrome.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-10-01]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [khjilmcjipkeokomeekfnhkpbnhmgaje] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [nppllibpnmahfaklnpggkibhkapjkeob] - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\Exts\Chrome.crx <not found>
 
==================== Services (Whitelisted) ========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [599944 2014-12-04] (Autodesk Inc.)
S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-10-30] (Adobe Systems) [File not signed]
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [920736 2012-06-01] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [951936 2012-06-01] (ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [149120 2012-02-17] (ASUSTeK Computer Inc.)
S2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-10-01] (AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1225216 2015-09-18] ()
S3 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [476936 2013-08-25] (BitRaider, LLC)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1268568 2015-06-18] (Disc Soft Ltd)
R2 DTSAudioSvc; C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe [249328 2015-06-24] (DTS, Inc)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [238376 2015-07-23] (EasyAntiCheat Ltd)
R2 Everything; C:\Program Files\Everything\Everything.exe [1441792 2014-08-05] () [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-26] (NVIDIA Corporation)
R2 Hamachi2Svc; E:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2485608 2015-01-20] (LogMeIn Inc.)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
S3 mi-raysat_3dsmax2015_64; C:\Program Files\Autodesk\3ds Max 2015\NVIDIA\Satellite\raysat_3dsmax2015_64server.exe [86016 2011-09-14] () [File not signed]
R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-08-04] (Microsoft Corporation)
R2 NitroReaderDriverReadSpool3; C:\Program Files\Common Files\Nitro\Reader\3.0\NitroPDFReaderDriverService3x64.exe [230416 2013-07-26] (Nitro PDF Software)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-26] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-26] (NVIDIA Corporation)
S3 Origin Client Service; E:\Program Files (x86)\Origin\OriginClientService.exe [2077192 2015-09-20] (Electronic Arts)
R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76152 2015-06-14] ()
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76152 2015-08-31] ()
R2 RealPlayer Cloud Service; c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe [1141848 2014-08-25] (RealNetworks, Inc.)
S2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [174600 2014-10-14] (Sandboxie Holdings, LLC)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5495056 2015-06-18] (TeamViewer GmbH)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-08-04] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-08-04] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
S2 NCO; "C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\NST.exe" /s "NCO" /m "C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\diMaster.dll" /prefetch:1
 
===================== Drivers (Whitelisted) ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R0 asahci64; C:\Windows\System32\drivers\asahci64.sys [49760 2012-01-06] (Asmedia Technology)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-08-24] ()
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-10-01] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-10-01] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-10-01] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-10-01] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1049880 2015-10-01] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [448968 2015-10-01] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [153744 2015-10-01] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-10-01] (AVAST Software)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2015-09-01] (Avira Operations GmbH & Co. KG)
S3 BRDriver64; C:\ProgramData\BitRaider\BRDriver64.sys [75048 2013-08-25] (BitRaider)
R1 ccSet_NST; C:\Windows\system32\drivers\NSTx64\7DE070B0.02A\ccSetx64.sys [162392 2013-09-27] (Symantec Corporation)
S3 dc1-controller; C:\Windows\System32\drivers\dc1-controller.sys [50688 2015-07-10] (Microsoft Corp.)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-07-05] (Disc Soft Ltd)
R3 LGSHidFilt; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys [66800 2013-01-17] (Logitech Inc.)
R3 LGSUsbFilt; C:\Windows\system32\DRIVERS\LGSUsbFilt.Sys [44272 2013-01-17] (Logitech Inc.)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-08-04] (Microsoft Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-26] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-10] (NVIDIA Corporation)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
R3 SaiMini; C:\Windows\System32\drivers\SaiMini.sys [25120 2013-04-30] (Saitek)
R3 SaiNtBus; C:\Windows\system32\drivers\SaiBus.sys [52640 2013-04-30] (Saitek)
S3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [185352 2014-10-14] (Sandboxie Holdings, LLC)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 vsnd_idev; C:\Windows\system32\drivers\vsnd.sys [68224 2013-12-24] (Roman Ukhov)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S2 avgntflt; system32\DRIVERS\avgntflt.sys [X]
S1 avipbb; \SystemRoot\system32\DRIVERS\avipbb.sys [X]
S2 avnetflt; \SystemRoot\system32\DRIVERS\avnetflt.sys [X]
U3 idsvc; no ImagePath
S3 VBoxNetFlt; \SystemRoot\system32\DRIVERS\VBoxNetFlt.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; no ImagePath
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-10-02 05:54 - 2015-10-02 05:54 - 00016148 _____ C:\WINDOWS\system32\CHRISTIANDESKPC_Christian_HistoryPrediction.bin
2015-10-01 18:08 - 2015-10-01 18:08 - 00001042 _____ C:\Users\Christian\Desktop\VEW1.txt
2015-10-01 18:07 - 2015-10-01 18:07 - 00005704 _____ C:\Users\Christian\Desktop\VEW.txt
2015-10-01 18:07 - 2015-10-01 18:07 - 00001042 _____ C:\VEW.txt
2015-10-01 18:06 - 2015-10-01 18:06 - 00061440 _____ ( ) C:\Users\Christian\Desktop\VEW.exe
2015-10-01 18:05 - 2015-10-01 18:05 - 00059219 _____ C:\Users\Christian\Desktop\junk.txt
2015-10-01 11:25 - 2015-10-01 11:25 - 00002643 _____ C:\Users\Christian\Desktop\JRT.txt
2015-10-01 11:19 - 2015-10-01 11:19 - 01801288 _____ (Malwarebytes) C:\Users\Christian\Desktop\JRT.exe
2015-10-01 11:09 - 2015-10-01 11:15 - 00000000 ____D C:\AdwCleaner
2015-10-01 11:08 - 2015-10-01 11:09 - 01670656 _____ C:\Users\Christian\Desktop\AdwCleaner.exe
2015-10-01 09:00 - 2015-10-01 09:00 - 00000000 ____D C:\Users\Christian\AppData\Roaming\AVAST Software
2015-10-01 08:59 - 2015-10-01 08:59 - 00001970 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-10-01 08:59 - 2015-10-01 08:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-10-01 08:58 - 2015-10-01 08:58 - 01049880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2015-10-01 08:58 - 2015-10-01 08:58 - 00448968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2015-10-01 08:58 - 2015-10-01 08:58 - 00378880 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2015-10-01 08:58 - 2015-10-01 08:58 - 00274808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2015-10-01 08:58 - 2015-10-01 08:58 - 00153744 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2015-10-01 08:58 - 2015-10-01 08:58 - 00093528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2015-10-01 08:58 - 2015-10-01 08:58 - 00090968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2015-10-01 08:58 - 2015-10-01 08:58 - 00065224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2015-10-01 08:58 - 2015-10-01 08:58 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2015-10-01 08:58 - 2015-10-01 08:58 - 00028656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2015-10-01 08:58 - 2015-10-01 08:58 - 00004006 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2015-10-01 08:57 - 2015-10-01 08:57 - 154429024 _____ (AVAST Software) C:\Users\Christian\Downloads\avast_free_antivirus_setup.exe
2015-10-01 08:57 - 2015-10-01 08:57 - 00000000 ____D C:\Program Files\AVAST Software
2015-09-30 19:32 - 2015-09-24 18:34 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2015-09-30 19:32 - 2015-09-24 18:34 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2015-09-30 19:32 - 2015-09-24 17:43 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2015-09-30 19:32 - 2015-09-24 17:43 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2015-09-30 19:32 - 2015-09-24 17:25 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-09-30 19:32 - 2015-09-24 17:25 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-09-30 19:32 - 2015-09-24 17:25 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2015-09-30 19:32 - 2015-09-24 17:25 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2015-09-30 19:32 - 2015-09-24 17:25 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2015-09-30 19:32 - 2015-09-24 17:24 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallHistoryClient.dll
2015-09-30 19:32 - 2015-09-24 17:19 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-09-30 19:32 - 2015-09-17 01:28 - 05120056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2015-09-30 19:32 - 2015-09-17 01:28 - 02154808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-09-30 19:32 - 2015-09-17 01:28 - 01357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2015-09-30 19:32 - 2015-09-17 01:28 - 00441168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2015-09-30 19:32 - 2015-09-17 01:28 - 00407608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-09-30 19:32 - 2015-09-17 01:28 - 00074880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2015-09-30 19:32 - 2015-09-17 01:27 - 01766952 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-09-30 19:32 - 2015-09-17 01:27 - 00454512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2015-09-30 19:32 - 2015-09-17 01:26 - 02446648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2015-09-30 19:32 - 2015-09-17 01:26 - 01895568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2015-09-30 19:32 - 2015-09-17 01:26 - 00646672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2015-09-30 19:32 - 2015-09-17 01:26 - 00508248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2015-09-30 19:32 - 2015-09-17 01:26 - 00434376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2015-09-30 19:32 - 2015-09-17 01:26 - 00428128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2015-09-30 19:32 - 2015-09-17 01:25 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-09-30 19:32 - 2015-09-17 01:21 - 00658528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2015-09-30 19:32 - 2015-09-17 01:20 - 00764416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-09-30 19:32 - 2015-09-17 00:51 - 13027840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-09-30 19:32 - 2015-09-17 00:51 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2015-09-30 19:32 - 2015-09-17 00:49 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Speech.Pal.dll
2015-09-30 19:32 - 2015-09-17 00:47 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2015-09-30 19:32 - 2015-09-17 00:45 - 19325440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-09-30 19:32 - 2015-09-17 00:45 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2015-09-30 19:32 - 2015-09-17 00:43 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-09-30 19:32 - 2015-09-17 00:42 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-09-30 19:32 - 2015-09-17 00:41 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2015-09-30 19:32 - 2015-09-17 00:40 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2015-09-30 19:32 - 2015-09-17 00:40 - 01918464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-09-30 19:32 - 2015-09-17 00:40 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2015-09-30 19:32 - 2015-09-17 00:39 - 00587264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-09-30 19:32 - 2015-09-17 00:39 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-09-30 19:32 - 2015-09-17 00:38 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2015-09-30 19:32 - 2015-09-17 00:37 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-09-30 19:32 - 2015-09-17 00:37 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-09-30 19:32 - 2015-09-17 00:36 - 01171456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcenter.dll
2015-09-30 19:32 - 2015-09-17 00:35 - 05079552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2015-09-30 19:32 - 2015-09-17 00:35 - 02207232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-09-30 19:32 - 2015-09-17 00:35 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2015-09-30 19:32 - 2015-09-17 00:35 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2015-09-30 19:32 - 2015-09-17 00:34 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2015-09-30 19:32 - 2015-09-17 00:33 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2015-09-30 19:32 - 2015-09-17 00:32 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-09-30 19:32 - 2015-09-17 00:32 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2015-09-30 19:32 - 2015-09-17 00:32 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2015-09-30 19:32 - 2015-09-17 00:32 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2015-09-30 19:32 - 2015-09-17 00:31 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-09-30 19:32 - 2015-09-17 00:31 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2015-09-30 19:32 - 2015-09-17 00:30 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2015-09-30 19:32 - 2015-09-17 00:29 - 01104384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-09-30 19:32 - 2015-09-17 00:29 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2015-09-30 19:32 - 2015-09-17 00:29 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2015-09-30 19:32 - 2015-09-17 00:29 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-09-30 19:32 - 2015-09-17 00:28 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2015-09-30 19:32 - 2015-09-17 00:26 - 00899584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2015-09-30 19:32 - 2015-09-17 00:16 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2015-09-30 19:32 - 2015-09-12 20:41 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2015-09-30 19:30 - 2015-09-24 19:35 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2015-09-30 19:30 - 2015-09-24 19:34 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-09-30 19:30 - 2015-09-24 19:13 - 01276416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-09-30 19:30 - 2015-09-24 18:24 - 00796160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2015-09-30 19:30 - 2015-09-24 18:24 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-09-30 19:30 - 2015-09-24 18:23 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-09-30 19:30 - 2015-09-24 18:08 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-09-30 19:30 - 2015-09-24 18:07 - 01382400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-09-30 19:30 - 2015-09-24 18:06 - 01423872 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-09-30 19:30 - 2015-09-24 18:05 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-09-30 19:30 - 2015-09-24 18:01 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-09-30 19:30 - 2015-09-24 18:01 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2015-09-30 19:30 - 2015-09-24 18:00 - 01205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-09-30 19:30 - 2015-09-24 18:00 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2015-09-30 19:30 - 2015-09-24 18:00 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2015-09-30 19:30 - 2015-09-24 18:00 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2015-09-30 19:30 - 2015-09-17 01:50 - 02464216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-09-30 19:30 - 2015-09-17 01:50 - 01563392 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-09-30 19:30 - 2015-09-17 01:50 - 00099664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2015-09-30 19:30 - 2015-09-17 01:49 - 08020816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-09-30 19:30 - 2015-09-17 01:49 - 01563472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-09-30 19:30 - 2015-09-17 01:49 - 00894256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys
2015-09-30 19:30 - 2015-09-17 01:49 - 00553808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2015-09-30 19:30 - 2015-09-17 01:48 - 02824248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2015-09-30 19:30 - 2015-09-17 01:48 - 02432336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2015-09-30 19:30 - 2015-09-17 01:48 - 02156400 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2015-09-30 19:30 - 2015-09-17 01:48 - 00784136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-09-30 19:30 - 2015-09-17 01:48 - 00584656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-09-30 19:30 - 2015-09-17 01:48 - 00537080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2015-09-30 19:30 - 2015-09-17 01:48 - 00516448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-09-30 19:30 - 2015-09-17 01:48 - 00476760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2015-09-30 19:30 - 2015-09-17 01:48 - 00406864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2015-09-30 19:30 - 2015-09-17 01:48 - 00278352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2015-09-30 19:30 - 2015-09-17 01:48 - 00243760 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-09-30 19:30 - 2015-09-17 01:47 - 01397088 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-09-30 19:30 - 2015-09-17 01:44 - 00781976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2015-09-30 19:30 - 2015-09-17 01:43 - 00966416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-09-30 19:30 - 2015-09-17 01:37 - 01295712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2015-09-30 19:30 - 2015-09-17 01:37 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-09-30 19:30 - 2015-09-17 01:10 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2015-09-30 19:30 - 2015-09-17 01:09 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-09-30 19:30 - 2015-09-17 01:09 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2015-09-30 19:30 - 2015-09-17 01:08 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-09-30 19:30 - 2015-09-17 01:08 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Speech.Pal.dll
2015-09-30 19:30 - 2015-09-17 01:08 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-09-30 19:30 - 2015-09-17 01:06 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-09-30 19:30 - 2015-09-17 01:05 - 02226688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-09-30 19:30 - 2015-09-17 01:05 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-09-30 19:30 - 2015-09-17 01:04 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-09-30 19:30 - 2015-09-17 01:04 - 00910848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2015-09-30 19:30 - 2015-09-17 01:04 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2015-09-30 19:30 - 2015-09-17 01:03 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-09-30 19:30 - 2015-09-17 01:03 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngckeyenum.dll
2015-09-30 19:30 - 2015-09-17 01:00 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-09-30 19:30 - 2015-09-17 01:00 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-09-30 19:30 - 2015-09-17 00:58 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2015-09-30 19:30 - 2015-09-17 00:57 - 02228736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2015-09-30 19:30 - 2015-09-17 00:57 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2015-09-30 19:30 - 2015-09-17 00:57 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-09-30 19:30 - 2015-09-17 00:56 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-09-30 19:30 - 2015-09-17 00:56 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-09-30 19:30 - 2015-09-17 00:55 - 02236416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-09-30 19:30 - 2015-09-17 00:55 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-09-30 19:30 - 2015-09-17 00:55 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx02000.dll
2015-09-30 19:30 - 2015-09-17 00:55 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2015-09-30 19:30 - 2015-09-17 00:55 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2015-09-30 19:30 - 2015-09-17 00:55 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll
2015-09-30 19:30 - 2015-09-17 00:55 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll
2015-09-30 19:30 - 2015-09-17 00:54 - 03781120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-09-30 19:30 - 2015-09-17 00:54 - 00780288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-09-30 19:30 - 2015-09-17 00:54 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-09-30 19:30 - 2015-09-17 00:53 - 07055872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-09-30 19:30 - 2015-09-17 00:52 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2015-09-30 19:30 - 2015-09-17 00:52 - 01216512 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcenter.dll
2015-09-30 19:30 - 2015-09-17 00:52 - 01181696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-09-30 19:30 - 2015-09-17 00:52 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2015-09-30 19:30 - 2015-09-17 00:52 - 00591360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-09-30 19:30 - 2015-09-17 00:52 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-09-30 19:30 - 2015-09-17 00:52 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2015-09-30 19:30 - 2015-09-17 00:52 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2015-09-30 19:30 - 2015-09-17 00:52 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-09-30 19:30 - 2015-09-17 00:52 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2015-09-30 19:30 - 2015-09-17 00:51 - 02660864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-09-30 19:30 - 2015-09-17 00:51 - 01812480 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2015-09-30 19:30 - 2015-09-17 00:51 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-09-30 19:30 - 2015-09-17 00:50 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2015-09-30 19:30 - 2015-09-17 00:50 - 00312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2015-09-30 19:30 - 2015-09-17 00:49 - 01290240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-09-30 19:30 - 2015-09-17 00:49 - 01010176 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-09-30 19:30 - 2015-09-17 00:49 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2015-09-30 19:30 - 2015-09-17 00:48 - 02093056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2015-09-30 19:30 - 2015-09-17 00:48 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2015-09-30 19:30 - 2015-09-17 00:47 - 07523328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-09-30 19:30 - 2015-09-17 00:47 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2015-09-30 19:30 - 2015-09-17 00:47 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2015-09-30 19:30 - 2015-09-17 00:46 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2015-09-30 19:30 - 2015-09-17 00:46 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2015-09-30 19:30 - 2015-09-17 00:46 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2015-09-30 19:30 - 2015-09-17 00:46 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2015-09-30 19:30 - 2015-09-17 00:45 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-09-30 19:30 - 2015-09-17 00:45 - 01331200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-09-30 19:30 - 2015-09-17 00:45 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-09-30 19:30 - 2015-09-17 00:45 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-09-30 19:30 - 2015-09-17 00:45 - 00627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-09-30 19:30 - 2015-09-17 00:44 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2015-09-30 19:30 - 2015-09-17 00:44 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2015-09-30 19:30 - 2015-09-17 00:43 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-09-30 19:30 - 2015-09-17 00:43 - 00378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-09-30 19:30 - 2015-09-17 00:43 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-09-30 19:29 - 2015-09-19 00:14 - 00102304 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2015-09-30 19:29 - 2015-09-17 01:49 - 06487248 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2015-09-30 19:29 - 2015-09-17 01:48 - 02494712 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-09-30 19:29 - 2015-09-17 01:48 - 01983824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-09-30 19:29 - 2015-09-17 01:48 - 00555768 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2015-09-30 19:29 - 2015-09-17 01:48 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2015-09-30 19:29 - 2015-09-17 01:48 - 00395088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2015-09-30 19:29 - 2015-09-17 01:48 - 00332624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2015-09-30 19:29 - 2015-09-17 01:12 - 16708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-09-30 19:29 - 2015-09-17 01:11 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2015-09-30 19:29 - 2015-09-17 01:07 - 21875712 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-09-30 19:29 - 2015-09-17 01:06 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll
2015-09-30 19:29 - 2015-09-17 01:03 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2015-09-30 19:29 - 2015-09-17 01:03 - 00154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2015-09-30 19:29 - 2015-09-17 01:03 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2015-09-30 19:29 - 2015-09-17 01:02 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2015-09-30 19:29 - 2015-09-17 01:02 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2015-09-30 19:29 - 2015-09-17 01:00 - 24595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-09-30 19:29 - 2015-09-17 01:00 - 02417664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-09-30 19:29 - 2015-09-17 00:57 - 00403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2015-09-30 19:29 - 2015-09-17 00:56 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2015-09-30 19:29 - 2015-09-17 00:55 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2015-09-30 19:29 - 2015-09-17 00:55 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2015-09-30 19:29 - 2015-09-17 00:51 - 01203712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-09-30 19:29 - 2015-09-17 00:50 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-09-30 19:29 - 2015-09-17 00:50 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeWiFi.dll
2015-09-30 19:29 - 2015-09-17 00:50 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeCell.dll
2015-09-30 19:29 - 2015-09-17 00:49 - 02740224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-09-30 19:29 - 2015-09-17 00:49 - 00439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationWebproxy.dll
2015-09-30 19:29 - 2015-09-17 00:49 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationGeofences.dll
2015-09-30 19:29 - 2015-09-17 00:49 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2015-09-30 19:29 - 2015-09-17 00:49 - 00215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationCrowdsource.dll
2015-09-30 19:29 - 2015-09-17 00:49 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeIP.dll
2015-09-30 19:29 - 2015-09-17 00:49 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationWiFiAdapter.dll
2015-09-30 19:29 - 2015-09-17 00:48 - 00408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2015-09-30 19:29 - 2015-09-17 00:48 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2015-09-30 19:29 - 2015-09-17 00:46 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2015-09-30 19:29 - 2015-09-17 00:46 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2015-09-30 19:29 - 2015-09-17 00:46 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncmlhook.dll
2015-09-30 19:29 - 2015-09-17 00:44 - 01844736 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2015-09-30 19:29 - 2015-09-17 00:44 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2015-09-30 19:29 - 2015-09-12 21:05 - 02987520 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-09-30 19:28 - 2015-09-24 18:17 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-09-30 19:28 - 2015-09-24 17:53 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-09-30 19:28 - 2015-09-24 17:42 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-09-30 19:28 - 2015-09-17 01:50 - 00088384 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-09-30 19:28 - 2015-09-17 01:49 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-09-30 19:28 - 2015-09-17 01:48 - 00809352 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2015-09-30 19:28 - 2015-09-17 01:39 - 00081488 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-09-30 19:28 - 2015-09-17 01:06 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-09-30 19:28 - 2015-09-17 01:00 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\KeywordDetectorMsftSidAdapter.dll
2015-09-30 19:28 - 2015-09-17 00:51 - 01067520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-09-30 19:28 - 2015-09-17 00:50 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\buttonconverter.sys
2015-09-30 19:28 - 2015-09-17 00:48 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2015-09-30 19:28 - 2015-09-17 00:48 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-09-30 19:28 - 2015-09-17 00:46 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-09-30 19:11 - 2015-09-30 19:11 - 04559688 _____ (Avira Operations GmbH & Co. KG) C:\Users\Christian\Downloads\avira_en_av_5605c195aa733__ws (2).exe
2015-09-30 16:18 - 2015-09-30 16:18 - 00144483 _____ C:\Users\Christian\Desktop\Addition.txt
2015-09-30 16:17 - 2015-09-30 16:17 - 00000000 ____D C:\Users\Christian\Desktop\(x86)
2015-09-30 16:16 - 2015-09-30 16:16 - 00000129 _____ C:\Users\Christian\Desktop\CPU and RAM running at 100% Can't do anything within Windows - Geeks to Go Forum.url
2015-09-28 14:59 - 2015-09-28 14:59 - 00364944 _____ C:\WINDOWS\Minidump\092815-65781-01.dmp
2015-09-28 13:22 - 2015-10-02 05:55 - 00036826 _____ C:\Users\Christian\Desktop\FRST.txt
2015-09-28 13:21 - 2015-10-02 05:55 - 00000000 ____D C:\FRST
2015-09-28 13:17 - 2015-09-28 13:18 - 02192384 _____ (Farbar) C:\Users\Christian\Desktop\FRST64.exe
2015-09-28 12:45 - 2015-09-30 19:16 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2015-09-26 09:41 - 2015-09-26 09:42 - 00262144 _____ C:\WINDOWS\Minidump\092615-48359-01.dmp
2015-09-25 22:19 - 2015-09-25 22:19 - 00365272 _____ C:\WINDOWS\Minidump\092515-17296-01.dmp
2015-09-25 20:17 - 2015-09-01 17:09 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2015-09-25 20:09 - 2015-09-25 20:17 - 00000000 ____D C:\ProgramData\Avira
2015-09-25 20:09 - 2015-09-25 20:17 - 00000000 ____D C:\Program Files (x86)\Avira
2015-09-25 17:51 - 2015-09-25 17:51 - 00015357 _____ C:\Users\Christian\Downloads\compactalet.zip
2015-09-25 16:54 - 2015-09-25 16:54 - 00024448 _____ C:\Users\Christian\Downloads\45_photoshop_shields_shapes_by_tutsii.csh
2015-09-25 16:54 - 2015-09-25 16:54 - 00024448 _____ C:\Users\Christian\Downloads\45_photoshop_shields_shapes_by_tutsii (1).csh
2015-09-25 16:53 - 2015-09-25 16:53 - 04559688 _____ (Avira Operations GmbH & Co. KG) C:\Users\Christian\Downloads\avira_en_av_5605c195aa733__ws (1).exe
2015-09-25 16:50 - 2015-09-25 16:50 - 04559688 _____ (Avira Operations GmbH & Co. KG) C:\Users\Christian\Downloads\avira_en_av_5605c195aa733__ws.exe
2015-09-25 16:49 - 2015-09-25 16:49 - 00000000 ___DL C:\ProgramData\Adobe
2015-09-25 16:49 - 2015-09-25 16:49 - 00000000 ____D C:\Users\Christian\AppData\Roaming\PDAppFlex
2015-09-25 15:53 - 2015-09-25 15:53 - 00025969 _____ C:\Users\Christian\Downloads\TundraMultimediaInc.-InvoiceTemplate.odt
2015-09-22 18:38 - 2015-09-13 16:57 - 00574256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2015-09-22 18:37 - 2015-09-13 19:24 - 42840184 _____ C:\WINDOWS\system32\nvcompiler.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 37819000 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 18569848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 16646112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 15631128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 14945040 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 13666840 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 12191856 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 02354808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 02105976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 01898104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435598.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 01558832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435598.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 01178248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 01075320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 01064056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 01001440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00986416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00945272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00787384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00785152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00632664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00631128 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00601240 _____ C:\WINDOWS\system32\nvmcumd.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00408184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00387720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00376440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00364152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00339760 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00316120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00177088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00155792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00150648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2015-09-22 18:37 - 2015-09-13 19:24 - 00128696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2015-09-20 14:00 - 2015-09-20 14:00 - 00012520 _____ C:\Users\Christian\Downloads\cyberfunk.zip
2015-09-20 14:00 - 2015-09-20 14:00 - 00007175 _____ C:\Users\Christian\Downloads\rezland.zip
2015-09-20 13:10 - 2015-09-20 13:10 - 00029814 _____ C:\Users\Christian\Downloads\abode.zip
2015-09-20 13:05 - 2015-09-20 13:05 - 00548090 _____ C:\Users\Christian\Downloads\dreamwalker.zip
2015-09-20 12:53 - 2015-09-20 12:53 - 00015387 _____ C:\Users\Christian\Downloads\45_photoshop_shields_shapes.zip
2015-09-20 12:50 - 2015-09-20 12:50 - 00102147 _____ C:\Users\Christian\Downloads\shields-Shapes4FREE.zip
2015-09-16 16:51 - 2015-09-16 16:51 - 00000000 ___RD C:\Users\Christian\3D Objects
2015-09-08 15:56 - 2015-08-27 01:36 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-09-08 15:56 - 2015-08-27 01:32 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-09-08 15:56 - 2015-08-27 00:59 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-09-08 15:56 - 2015-08-27 00:54 - 00541248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-09-08 15:56 - 2015-08-27 00:54 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-09-08 15:56 - 2015-08-27 00:51 - 02350592 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-09-08 15:56 - 2015-08-27 00:51 - 01774592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-08 15:56 - 2015-08-27 00:49 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-09-08 15:56 - 2015-08-27 00:47 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-09-08 15:56 - 2015-08-27 00:43 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-09-08 15:56 - 2015-08-27 00:43 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-09-08 15:56 - 2015-08-27 00:42 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-09-08 15:56 - 2015-08-27 00:42 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-09-08 15:56 - 2015-08-27 00:42 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2015-09-08 15:56 - 2015-08-27 00:39 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-09-08 15:56 - 2015-08-27 00:23 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-09-08 15:56 - 2015-08-27 00:16 - 02153472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-09-08 15:56 - 2015-08-27 00:16 - 01612288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-09-08 15:56 - 2015-08-27 00:12 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-09-08 15:56 - 2015-08-27 00:12 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-09-08 15:56 - 2015-08-27 00:11 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2015-09-08 15:56 - 2015-08-27 00:11 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2015-09-08 15:56 - 2015-08-27 00:09 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-09-08 15:56 - 2015-08-27 00:08 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-09-06 17:58 - 2015-09-06 17:58 - 00002286 _____ C:\Users\Christian\Downloads\afro.svg
2015-09-05 16:07 - 2015-09-05 16:07 - 00000006 ____S C:\ProgramData\cfc4764f3bbfae7c2c155456e0ae08a61242b9ff
2015-09-05 14:31 - 2015-09-05 14:31 - 00000000 ____D C:\Users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2
2015-09-05 14:28 - 2015-09-05 14:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image Line FL Studio Producer Edition
2015-09-05 14:28 - 2015-09-05 14:28 - 00000000 ____D C:\Program Files (x86)\Image Line FL Studio Producer Edition
2015-09-05 14:24 - 2015-09-05 14:31 - 00000000 ____D C:\Users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line
2015-09-05 14:24 - 2015-09-05 14:24 - 00000000 ____D C:\Users\Christian\Documents\Image-Line
2015-09-05 14:24 - 2015-09-05 14:24 - 00000000 ____D C:\Users\Christian\AppData\Roaming\Image-Line
2015-09-05 14:24 - 2015-09-05 14:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image-Line
2015-09-05 14:24 - 2015-09-05 14:24 - 00000000 ____D C:\Program Files\Image-Line
2015-09-05 14:24 - 2015-09-05 14:24 - 00000000 ____D C:\Program Files\Common Files\Propellerhead Software
2015-09-05 14:20 - 2015-09-05 14:20 - 43246275 _____ C:\Users\Christian\Downloads\blackguards_ost_mp3_1415656995.zip
2015-09-05 14:18 - 2015-09-30 20:01 - 00000000 ___HD C:\Users\Christian\AppData\Roaming\Realtek Audio Control
2015-09-05 14:16 - 2015-09-05 14:28 - 00000000 ____D C:\Users\Christian\AppData\Roaming\Application Store
2015-09-05 14:16 - 2015-09-05 14:25 - 00000000 ____D C:\Program Files (x86)\Image-Line
2015-09-05 14:15 - 2015-09-05 14:15 - 00000000 __HDC C:\ProgramData\{76224FB4-131A-42F7-AC4F-ACA025FCC383}
2015-09-05 14:15 - 2015-09-05 14:15 - 00000000 ____D C:\Users\Christian\AppData\Local\InstallAware Installation Information
2015-09-04 19:35 - 2015-09-04 19:35 - 00000000 ____D C:\Users\Christian\AppData\Local\Curve Digital
2015-09-03 16:13 - 2015-09-03 16:13 - 00000000 __SHD C:\found.006
2015-09-02 22:18 - 2015-09-03 07:39 - 00000000 ____D C:\Users\Christian\Desktop\Stream Applications
2015-09-02 21:04 - 2015-08-25 13:38 - 01898104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435582.dll
2015-09-02 21:04 - 2015-08-25 13:38 - 01558648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435582.dll
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-10-02 05:55 - 2015-07-10 07:22 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-10-02 05:35 - 2015-07-10 06:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-10-02 05:17 - 2015-02-05 10:04 - 00000938 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d041557818a6e.job
2015-10-01 22:17 - 2015-02-05 10:04 - 00000934 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d041557696e34.job
2015-10-01 21:27 - 2015-07-10 06:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-10-01 18:34 - 2015-08-04 09:34 - 01005598 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-01 18:27 - 2015-07-10 07:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-10-01 18:27 - 2015-07-10 07:20 - 00297952 _____ C:\WINDOWS\setupact.log
2015-10-01 18:27 - 2015-07-10 04:05 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2015-10-01 18:27 - 2013-06-16 19:34 - 00000000 ____D C:\ProgramData\NVIDIA
2015-10-01 17:51 - 2015-08-04 09:46 - 00000000 ____D C:\Users\Christian\AppData\Local\Packages
2015-10-01 17:17 - 2013-06-16 18:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2015-10-01 09:01 - 2015-08-04 09:29 - 00612222 _____ C:\WINDOWS\PFRO.log
2015-10-01 08:57 - 2013-06-16 18:05 - 00000000 ____D C:\ProgramData\AVAST Software
2015-10-01 06:25 - 2013-10-05 23:01 - 00000000 ____D C:\ProgramData\Package Cache
2015-10-01 03:30 - 2015-07-10 06:04 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2015-10-01 03:30 - 2015-07-10 06:04 - 00000000 ___SD C:\WINDOWS\system32\F12
2015-10-01 03:30 - 2015-07-10 06:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-10-01 03:30 - 2015-07-10 06:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-01 03:30 - 2015-07-10 06:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-10-01 03:30 - 2015-07-10 06:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-10-01 03:30 - 2015-07-10 06:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-10-01 03:30 - 2015-07-10 06:04 - 00000000 ____D C:\WINDOWS\Provisioning
2015-10-01 03:30 - 2015-07-10 06:04 - 00000000 ____D C:\WINDOWS\L2Schemas
2015-09-30 20:39 - 2015-08-04 09:47 - 00000000 ____D C:\Users\Christian\AppData\Local\Publishers
2015-09-30 19:51 - 2015-07-10 05:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-09-28 18:29 - 2015-08-04 09:37 - 00000000 ____D C:\Users\Christian
2015-09-28 18:07 - 2014-01-15 07:36 - 00000000 ____D C:\Users\Christian\AppData\Local\CrashDumps
2015-09-28 14:59 - 2015-08-21 12:53 - 00000000 ____D C:\WINDOWS\Minidump
2015-09-28 14:58 - 2014-12-20 07:37 - 1760089940 ____N C:\WINDOWS\MEMORY.DMP
2015-09-28 13:22 - 2013-06-16 23:18 - 00000000 ____D C:\Users\Christian\AppData\Local\Adobe
2015-09-25 20:42 - 2013-11-17 09:53 - 00000000 ____D C:\Users\Christian\AppData\Local\Spotify
2015-09-25 20:42 - 2013-07-30 06:49 - 00000000 ____D C:\Users\Christian\AppData\Roaming\TS3Client
2015-09-25 20:05 - 2013-11-17 09:53 - 00000000 ____D C:\Users\Christian\AppData\Roaming\Spotify
2015-09-25 19:39 - 2015-07-10 07:20 - 05128072 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-09-25 16:49 - 2013-10-30 17:33 - 00000000 ____D C:\Users\Christian\Documents\Adobe
2015-09-25 16:49 - 2013-08-27 17:34 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2015-09-25 16:49 - 2013-06-16 19:11 - 00000000 ____D C:\Users\Christian\AppData\Roaming\Adobe
2015-09-22 18:38 - 2015-08-04 09:31 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-09-22 18:38 - 2013-06-16 19:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-09-21 17:55 - 2015-07-23 04:02 - 11198080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-09-21 16:17 - 2015-07-25 12:01 - 00000000 ___RD C:\Users\Christian\Desktop\Files
2015-09-21 16:17 - 2014-05-24 16:26 - 00000000 ___RD C:\Users\Christian\Desktop\Games
2015-09-20 21:01 - 2013-10-05 22:33 - 00000000 ____D C:\ProgramData\Origin
2015-09-20 18:28 - 2013-06-20 16:43 - 00226680 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2015-09-20 18:17 - 2013-06-20 16:43 - 00226680 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2015-09-20 16:44 - 2013-07-12 18:44 - 00000000 ____D C:\Users\Christian\AppData\Local\ArmA 2 OA
2015-09-20 07:44 - 2015-08-09 19:11 - 00204056 _____ C:\WINDOWS\system32\Drivers\EasyAntiCheat.sys
2015-09-19 13:19 - 2014-04-15 19:07 - 00000000 ____D C:\Users\Christian\AppData\Roaming\.minecraft
2015-09-19 13:17 - 2013-06-16 16:45 - 00000000 ____D C:\Users\Christian\AppData\Local\VirtualStore
2015-09-19 13:12 - 2014-12-19 19:37 - 00000000 ____D C:\Program Files (x86)\Minecraft
2015-09-18 17:19 - 2015-07-10 08:14 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-18 17:19 - 2014-06-13 09:40 - 00000000 ____D C:\Users\Christian\Documents\ArmAWork
2015-09-18 17:13 - 2013-07-09 12:32 - 00000000 ____D C:\Users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bohemia Interactive
2015-09-15 11:12 - 2015-07-10 06:06 - 00812008 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-09-15 11:12 - 2015-07-10 06:06 - 00178152 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-09-14 22:12 - 2015-02-05 10:04 - 00004024 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1d041557818a6e
2015-09-14 22:12 - 2015-02-05 10:04 - 00003792 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore1d041557696e34
2015-09-13 19:24 - 2015-07-23 04:02 - 22559352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2015-09-13 19:24 - 2015-07-23 04:02 - 17934400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2015-09-13 19:24 - 2015-07-23 04:02 - 15336024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2015-09-13 19:24 - 2015-07-23 04:02 - 12611632 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2015-09-13 19:24 - 2015-07-23 04:02 - 03484216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2015-09-13 19:24 - 2015-07-23 04:02 - 03077544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2015-09-13 19:24 - 2015-07-23 04:02 - 00034098 _____ C:\WINDOWS\system32\nvinfo.pb
2015-09-13 19:24 - 2014-12-03 19:58 - 00112760 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2015-09-13 19:24 - 2014-12-03 19:58 - 00105080 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2015-09-13 17:04 - 2014-12-03 19:58 - 06885168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-09-13 17:04 - 2014-12-03 19:58 - 03496056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2015-09-13 17:04 - 2014-12-03 19:58 - 02558584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-09-13 17:04 - 2014-12-03 19:58 - 00937776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-09-13 17:04 - 2014-12-03 19:58 - 00385144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-09-13 17:04 - 2014-12-03 19:58 - 00062768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-09-11 18:27 - 2014-01-23 22:04 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-09-11 07:17 - 2014-12-03 19:58 - 05231082 _____ C:\WINDOWS\system32\nvcoproc.bin
2015-09-10 16:01 - 2013-06-16 17:10 - 00000000 ____D C:\Users\Christian\AppData\Local\Google
2015-09-08 16:09 - 2013-08-15 03:00 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-09-07 19:19 - 2013-10-08 06:46 - 00000000 ____D C:\Users\Christian\AppData\Roaming\vlc
2015-09-05 09:02 - 2015-08-04 09:54 - 00000000 ____D C:\Users\Christian\AppData\Local\Deployment
2015-09-04 22:00 - 2013-08-18 18:48 - 00000000 ____D C:\Users\Christian\AppData\Roaming\OBS
2015-09-04 21:59 - 2013-06-18 13:51 - 00000000 ____D C:\Users\Christian\AppData\Roaming\Skype
2015-09-04 07:06 - 2015-08-04 09:31 - 00016408 _____ C:\WINDOWS\system32\lvcoinst.log
2015-09-03 08:25 - 2014-10-27 18:53 - 00000000 ____D C:\Users\Christian\AppData\Local\Eric_Zhang
2015-09-02 22:44 - 2013-06-20 15:41 - 01065224 _____ C:\WINDOWS\DirectX.log
2015-09-02 22:23 - 2009-07-13 21:34 - 00000900 _____ C:\WINDOWS\system32\Drivers\etc\HOSTS.BackupByPhotoshopPortable
2015-09-02 21:45 - 2015-03-01 15:04 - 00433664 _____ (Newtonsoft) C:\Users\Christian\Downloads\Newtonsoft.Json.dll
2015-09-02 21:45 - 2015-03-01 15:04 - 00044032 _____ (NirSoft) C:\Users\Christian\Downloads\nircmd.exe
 
==================== Files in the root of some directories =======
 
2013-12-29 14:21 - 2014-01-04 20:00 - 0000132 _____ () C:\Users\Christian\AppData\Roaming\Adobe PNG Format CC Prefs
2014-02-06 19:58 - 2014-02-09 11:00 - 0000132 _____ () C:\Users\Christian\AppData\Roaming\Adobe PNG Format CS6 Prefs
2013-12-24 17:04 - 2013-12-24 17:07 - 0000132 _____ () C:\Users\Christian\AppData\Roaming\Adobe Targa Format CC Prefs
2014-03-30 10:15 - 2014-09-20 17:02 - 0000303 _____ () C:\Users\Christian\AppData\Roaming\BreakingPoint_Login.ini
2014-03-01 09:37 - 2014-09-20 17:39 - 0001751 _____ () C:\Users\Christian\AppData\Roaming\BreakingPoint_Options.ini
2013-12-12 16:05 - 2013-12-12 16:05 - 0108564 _____ () C:\Users\Christian\AppData\Roaming\icarus-dxdiag.xml
2014-11-13 13:56 - 2014-11-13 13:56 - 0000112 _____ () C:\Users\Christian\AppData\Roaming\JP2K CS6 Prefs
2013-07-13 18:33 - 2015-06-13 13:06 - 0000600 _____ () C:\Users\Christian\AppData\Roaming\winscp.rnd
2014-11-11 00:30 - 2014-12-12 17:07 - 0001456 _____ () C:\Users\Christian\AppData\Local\Adobe Save for Web 13.0 Prefs.BackupByPhotoshopPortable
2014-01-14 19:11 - 2015-07-19 11:00 - 0011264 _____ () C:\Users\Christian\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-08-08 09:32 - 2015-08-08 09:32 - 0000000 _____ () C:\Users\Christian\AppData\Local\DVDPATH.TXT
2008-02-05 14:28 - 2008-02-05 14:28 - 0000051 _____ () C:\Users\Christian\AppData\Local\setup.txt
2013-06-18 14:31 - 2013-06-18 14:31 - 0000057 _____ () C:\ProgramData\Ament.ini
2015-09-05 16:07 - 2015-09-05 16:07 - 0000006 ____S () C:\ProgramData\cfc4764f3bbfae7c2c155456e0ae08a61242b9ff
2015-08-04 09:30 - 2015-08-04 09:30 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-12-07 11:24 - 2014-12-07 11:24 - 0005045 _____ () C:\ProgramData\wmzddnmb.cix
 
Some files in TEMP:
====================
C:\Users\Christian\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpkv2x8i.dll
C:\Users\Christian\AppData\Local\Temp\mirc741.exe
C:\Users\Christian\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Christian\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Christian\AppData\Local\Temp\nvStInst.exe
C:\Users\Christian\AppData\Local\Temp\sqlite3.dll
C:\Users\Christian\AppData\Local\Temp\uninstall.exe
 
 
==================== Bamital & volsnap =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2015-10-01 03:41
 
==================== End of FRST.txt ============================
 
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version:27-09-2015 01
Ran by Christian (2015-10-02 05:55:55)
Running from C:\Users\Christian\Desktop
Windows 10 Pro (X64) (2015-08-04 14:46:44)
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-2842136386-2703010871-4203806482-500 - Administrator - Disabled)
Christian (S-1-5-21-2842136386-2703010871-4203806482-1000 - Administrator - Enabled) => C:\Users\Christian
DefaultAccount (S-1-5-21-2842136386-2703010871-4203806482-503 - Limited - Disabled)
Guest (S-1-5-21-2842136386-2703010871-4203806482-501 - Limited - Disabled)
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
7 Days to Die - Alpha version 0.9.1 (HKLM-x32\...\{967E55B4-6DDD-4A2F-BFC7-07F1E327971E}_is1) (Version: 0.9.1 - The Fun Pimps LLC)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
A3Launcher version 0.0.0.3 (HKLM-x32\...\{E31045B4-9DB5-9EBD-44DF-BD4CFDE640DF}_is1) (Version: 0.0.0.3 - Maca134)
Action! (HKLM-x32\...\Mirillis Action!) (Version: 1.16.3 - Mirillis)
Addon Sync 2009 (HKLM-x32\...\{4E3AA543-09D7-401E-9DF2-2591D24C7C49}) (Version: 1.0.67 - YomaTools)
Adobe Acrobat X Pro - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000005}) (Version: 10.1.1 - Adobe Systems)
Adobe After Effects 7.0 (HKLM-x32\...\Adobe After Effects 7.0) (Version: 7.0.0.244 - Adobe Systems, Inc.)
Adobe After Effects CC 2014 (HKLM-x32\...\{2B22C750-5C3B-4738-B621-BA786AC7A494}) (Version: 13.1.1 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 18.0.0.199 - Adobe Systems Incorporated)
Adobe Creative Suite 6 Master Collection (HKLM-x32\...\{E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0}) (Version: 6 - Adobe Systems Incorporated)
Adobe Flash Media Live Encoder 3.2 (HKLM-x32\...\{0659E943-DDF4-44FC-9FEE-A13B09F8BB08}) (Version: 3.2.0 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.287 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Illustrator CC 2014 (HKLM-x32\...\{2B4B4082-8043-4646-8334-B0A29E641211}) (Version: 18.1.0 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2014 (HKLM-x32\...\{663DEEEF-EF34-4DCB-8687-73A7AA146E02}) (Version: 8.1.0 - Adobe Systems Incorporated)
Adobe Photoshop CS2 (HKLM-x32\...\Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0409-1E257A25E34D}) (Version: 9.0 - Adobe Systems, Inc.)
Adobe Premiere Pro 2.0 (HKLM-x32\...\Adobe Premiere Pro 2.0) (Version: 2.000.000 - Adobe Systems, Inc.)
Adobe Premiere Pro CC 2014 (HKLM-x32\...\{07BE616F-9E42-4C90-AF4F-0F32A5B088E7}) (Version: 8.2.0 - Adobe Systems Incorporated)
Adobe Widget Browser (HKLM-x32\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.)
AdVenture Capitalist (HKLM-x32\...\Steam App 346900) (Version:  - Hyper Hippo Games)
Aftermath version 1.0 (HKLM-x32\...\{024D0ADC-6846-4B7A-B12F-D571DF826068}}_is1) (Version: 1.0 - Free Reign Entertainment)
AI Suite II (HKLM-x32\...\{34D3688E-A737-44C5-9E2A-FF73618728E1}) (Version: 2.00.00 - ASUSTeK Computer Inc.)
Anarchy Arcade (HKLM-x32\...\Steam App 266430) (Version:  - Elijah Newman-Gomez)
Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ArcSoft TotalMedia Extreme (HKLM-x32\...\{88B05038-C890-468B-A563-0015FD53CDC3}) (Version:  - ArcSoft)
ARK: Survival Evolved (HKLM-x32\...\Steam App 346110) (Version:  - Studio Wildcard)
Arma 2 (HKLM-x32\...\Steam App 33900) (Version:  - Bohemia Interactive)
Arma 2: Operation Arrowhead (HKLM-x32\...\Steam App 33930) (Version:  - Bohemia Interactive)
Arma 2: Operation Arrowhead Beta (HKLM-x32\...\Steam App 219540) (Version:  - )
Arma 3 (HKLM-x32\...\Steam App 107410) (Version:  - Bohemia Interactive)
Arma 3 Server (HKLM-x32\...\Steam App 233780) (Version:  - Bohemia Interactive)
Arma 3 Tools (HKLM-x32\...\Steam App 233800) (Version:  - Bohemia Interactive)
ArmA3Sync 1.4.54 (HKLM-x32\...\{F097E7D7-D093-4394-9EED-43AFCCD12B7A}_is1) (Version: 1.4.54 - The [S.o.E] team)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.14.3.0 - Asmedia Technology)
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}) (Version: 1.3.4.000 - Asmedia Technology)
Assassin's Creed Unity (HKLM-x32\...\Uplay Install 720) (Version:  - Ubisoft)
ASUS Product Register Program (HKLM-x32\...\{49BE9B8A-E858-4533-A74A-64306C13DB59}) (Version: 1.0.014 - ASUS)
Audacity 2.0.3 (HKLM-x32\...\Audacity_is1) (Version: 2.0.3 - Audacity Team)
Autodesk 3ds Max 2015 (HKLM\...\Autodesk 3ds Max 2015) (Version: 17.0.630.0 - Autodesk)
Autodesk 3ds Max 2015 (Version: 17.0.630.0 - Autodesk) Hidden
Autodesk 3ds Max 2015 Populate Data (HKLM\...\{57E92DED-DC6C-41E5-B9E1-76D83BD2EABE}) (Version: 17.0.0.0 - Autodesk)
Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 4.0.69.0 - Autodesk)
Autodesk Backburner 2015 (HKLM-x32\...\{8C5F38D2-8EFE-49A4-B3F5-BF3210FED168}) (Version: 15.0.0.0 - Autodesk)
Autodesk DirectConnect 2015 64-bit (HKLM\...\Autodesk DirectConnect 2015 64-bit) (Version: 9.0.56.4 - Autodesk)
Autodesk DirectConnect 2015 64-bit (Version: 9.0.56.4 - Autodesk) Hidden
Autodesk Inventor Server Engine for 3ds Max 2015 (HKLM\...\{9167CA34-4E48-49E3-8892-3C439739D2D3}) (Version: 17.0 - Autodesk)
Autodesk Material Library 2015 (HKLM-x32\...\{427F733F-4D6C-45BC-9324-EB743104C321}) (Version: 5.2.9.100 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2015 (HKLM-x32\...\{ABE2F70B-8D94-44E9-AA04-F0DB35063D62}) (Version: 5.2.9.100 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2015 (HKLM-x32\...\{9F6466D9-6EFC-4A10-B931-C72D1A3F1763}) (Version: 5.2.9.100 - Autodesk)
Autodesk Revit Interoperability for 3ds Max 2015 (HKLM\...\Autodesk Revit Interoperability for 3ds Max 2015) (Version: 15.0.107.0 - Autodesk)
Autodesk Revit Interoperability for 3ds Max 2015 (Version: 15.0.107.0 - Autodesk) Hidden
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.4.2233 - AVAST Software)
Awesomium Redistributable (HKLM-x32\...\{5BCB064B-9F65-4E15-BAFB-669E72E54FD9}) (Version: 1.7.4.2 - SIX Networks GmbH)
AwesomiumSetup (HKLM-x32\...\{19EF99D1-7EE6-4B5E-ABEE-0B3825F703B0}) (Version: 1.00.0000 - SIX Networks GmbH)
Battlefield 2 (HKLM-x32\...\Steam App 24860) (Version:  - DICE)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.5.2.34169 - Electronic Arts)
Battlefield: Bad Company 2 (HKLM-x32\...\Steam App 24960) (Version:  - DICE)
Battlefield: Bad Company™ 2 (HKLM-x32\...\{3AC8457C-0385-4BEA-A959-E095F05D6D67}) (Version: 1.0.0.0 - Electronic Arts)
Battlefield™ Hardline (HKLM-x32\...\{CB4AC3DA-8CC1-4516-86DA-4078B57DB229}) (Version: 1.2.0.6 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.7.1 - EA Digital Illusions CE AB)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version:  - )
BattlEye Uninstall (HKLM-x32\...\BattlEye for A2) (Version:  - )
BinMake Uninstall (HKLM-x32\...\BinMake) (Version:  - )
BioShock Infinite (HKLM-x32\...\Steam App 8870) (Version:  - Irrational Games)
BI's Tools drive Uninstall (HKLM-x32\...\BI's Tools drive) (Version:  - )
BitRaider Web Client (HKLM-x32\...\BitRaider Web Client) (Version: 1.1.8.1 - BitRaider, LLC)
BitTorrent Sync (HKLM-x32\...\BitTorrent Sync) (Version: 1.4.83 - BitTorrent Inc.)
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
Black Tomato Mod version 0.5 (HKLM-x32\...\{C15DE3EF-E89E-40D7-B864-CEFDFEDB6683}_is1) (Version: 0.5 - Dan)
Blender (HKLM\...\Blender) (Version: 2.74 - Blender Foundation)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Borderlands 2 (HKLM-x32\...\Steam App 49520) (Version:  - Gearbox Software)
Build and Shoot Launcher 1.2 (HKLM-x32\...\Build and Shoot Launcher) (Version: 1.2 - Buld Then Snip, LLC)
Call of Duty Black Ops - Remote Console (HKLM-x32\...\Steam App 42720) (Version:  - Treyarch)
Call of Duty: Advanced Warfare - Multiplayer (HKLM-x32\...\Steam App 209660) (Version:  - Sledgehammer Games)
Call of Duty: Advanced Warfare (HKLM-x32\...\Steam App 209650) (Version:  - Sledgehammer Games)
Call of Duty: Black Ops - Multiplayer (HKLM-x32\...\Steam App 42710) (Version:  - Treyarch)
Call of Duty: Black Ops (HKLM-x32\...\Steam App 42700) (Version:  - Treyarch)
Call of Duty: Black Ops II - Multiplayer (HKLM-x32\...\Steam App 202990) (Version:  - Treyarch)
Call of Duty: Black Ops II - Zombies (HKLM-x32\...\Steam App 212910) (Version:  - )
Call of Duty: Black Ops II (HKLM-x32\...\Steam App 202970) (Version:  - Treyarch)
Call of Duty: Black Ops III Beta (HKLM-x32\...\Steam App 388520) (Version:  - Treyarch)
Call of Duty: Ghosts - Multiplayer (HKLM-x32\...\Steam App 209170) (Version:  - Infinity Ward)
Call of Duty: World at War (HKLM-x32\...\Steam App 10090) (Version:  - Treyarch)
CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden
Camtasia Studio 8 (HKLM-x32\...\{A7727F03-5311-4A12-9A63-2ACD20BA0497}) (Version: 8.2.1.1423 - TechSmith Corporation)
Castle Crashers (HKLM-x32\...\Steam App 204360) (Version:  - The Behemoth)
CCGLauncher version 0.0.0.9 (HKLM-x32\...\{78D51CE5-799C-4FCA-9635-6F61E19EA5E3}_is1) (Version: 0.0.0.9 - Custom Combat Gaming)
CCleaner (HKLM\...\CCleaner) (Version: 5.01 - Piriform)
Celtx (2.9.7) (HKLM-x32\...\Celtx (2.9.7)) (Version: 2.9.7 (en-US) - Greyfirst)
Cities XL Platinum (HKLM-x32\...\Steam App 231140) (Version:  - Focus Home Interactive)
Clownfish for Skype (HKLM-x32\...\Clownfish) (Version:  - )
Contagion (HKLM-x32\...\Steam App 238430) (Version:  - Monochrome LLC)
Counter-Strike: Global Offensive - SDK (HKLM-x32\...\Steam App 745) (Version:  - )
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version:  - Valve)
Crafty 1.0.2 (HKLM-x32\...\Crafty_is1) (Version:  - Ryan Gregg)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.1.0.0074 - Disc Soft Ltd)
DayZ (HKLM-x32\...\Steam App 221100) (Version:  - Bohemia Interactive)
DayZ Commander (HKLM-x32\...\{0B74EC0B-2A85-4542-A167-3DE2132E7DAA}) (Version: 0.92.85 - Dotjosh Studios)
DayZLauncher version 0.0.0.15 (HKLM-x32\...\{E31045B4-9DB5-9EBD-44DF-BD4E6CFD40DF}_is1) (Version: 0.0.0.15 - Maca134)
DayZLauncher version 0.0.0.7 (HKLM-x32\...\{E31045B4-9DB5-44DF-9EBD-BD4CFDE640FD}_is1) (Version: 0.0.0.7 - Maca134)
Dead Island Riptide (HKLM-x32\...\Steam App 216250) (Version:  - Techland)
Dead Space™ (HKLM-x32\...\{9789E33B-317A-44B2-AF9A-FF8708AD93E0}) (Version: 1.0.0.222 - Electronic Arts)
DefianceRuntimes (HKLM-x32\...\{79B1FF35-9EA8-48ED-98D6-19ABE004BE89}) (Version: 1.0.2 - Trion Worlds, Inc.)
Desura (HKLM-x32\...\Desura) (Version: 100.64 - Desura)
Dirty Bomb (HKLM-x32\...\Steam App 333930) (Version:  - Splash Damage®)
Dishonored (HKLM-x32\...\Steam App 205100) (Version:  - Arkane Studios)
Don't Starve (HKLM-x32\...\Steam App 219740) (Version:  - Klei Entertainment)
Don't Starve Together Beta (HKLM-x32\...\Steam App 322330) (Version:  - Klei Entertainment)
Dota 2 (HKLM-x32\...\Steam App 570) (Version:  - Valve)
Dragon Age: Origins (HKLM-x32\...\{AEC81925-9C76-4707-84A9-40696C613ED3}) (Version: 1.05.0.0 - Electronic Arts)
Dropbox (HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\Dropbox) (Version: 3.0.3 - Dropbox, Inc.)
Dungeon Defenders (HKLM-x32\...\Steam App 65800) (Version:  - Trendy Entertainment)
Dxtory version 2.0.132 (HKLM-x32\...\Dxtory2.0_is1) (Version: 2.0.132 - ExKode Co. Ltd.)
Epic Pen (HKLM-x32\...\Epic Pen_is1) (Version:  - Brian Hoary)
Epoch Launcher (HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\de6ddf4941177887) (Version: 0.0.1.12 - Epoch Mod Team)
erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
Everything 1.3.4.686 (x64) (HKLM\...\Everything) (Version:  - )
Facebook Messenger 2.1.4814.0 (HKLM-x32\...\{7204BDEE-1A48-4D95-A964-44A9250B439E}) (Version: 2.1.4814.0 - Facebook)
Farming Simulator 15 (HKLM-x32\...\FarmingSimulator2015INT_is1) (Version: 1.2.0.0 - GIANTS Software)
Fistful of Frags (HKLM-x32\...\Steam App 265630) (Version:  - Fistful of Frags Team)
Five Nights at Freddy's (HKLM-x32\...\Steam App 319510) (Version:  - Scott Cawthon)
FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version:  - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version:  - Image-Line)
foobar2000 v1.2.9 (HKLM-x32\...\foobar2000) (Version: 1.2.9 - Peter Pawlowski)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
Free Video Compressor (HKLM-x32\...\{01554C33-4131-4BC7-9E6D-AF85E02BDF4F}_is1) (Version:  - freevideocompressor.com)
FTL: Faster Than Light (HKLM-x32\...\Steam App 212680) (Version:  - Subset Games)
GameMaker-Studio 1.2 (HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\GameMaker-Studio12) (Version:  - YoYo Games Ltd.)
GameSpy Comrade (HKLM-x32\...\{894084B6-BC69-43B7-BF06-B93AECFEA520}) (Version: 2.1.1.214 - GameSpy)
GameTracker Lite (HKLM-x32\...\GameTracker Lite) (Version:  - ClanServers Hosting LLC.)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Facepunch Studios)
GCFScape 1.8.4 (HKLM\...\GCFScape_is1) (Version:  - Ryan Gregg)
Glyph (HKLM-x32\...\Glyph) (Version:  - Trion Worlds, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.101 - Google Inc.)
Google Drive (HKLM-x32\...\{CF772DD2-4767-49AE-B764-EACA6F6CD9AE}) (Version: 1.25.0286.7715 - Google, Inc.)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\Steam App 12210) (Version:  - Rockstar North)
Grand Theft Auto V (HKLM-x32\...\Steam App 271590) (Version:  - Rockstar North)
GRID 2 (HKLM-x32\...\Steam App 44350) (Version:  - Codemasters Racing)
H1Z1 (HKLM-x32\...\Steam App 295110) (Version:  - Sony Online Entertainment)
Hauppauge Capture (HKLM-x32\...\Hauppauge Capture) (Version: 1.0.32133 - Hauppauge Computer Works)
Heroes & Generals (HKLM-x32\...\Steam App 227940) (Version:  - Reto-Moto)
HP FWUpdateEDO2 (HKLM-x32\...\{415FA9AD-DA10-4ABE-97B6-5051D4795C90}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Officejet 6700 Basic Device Software (HKLM\...\{A1CFA587-90D4-4DE6-B200-68CC0F92252F}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Officejet 6700 Help (HKLM-x32\...\{E1AE0CB7-1333-4728-8520-CB3F88A252B4}) (Version: 140.0.2.2 - Hewlett Packard)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
HPDiagnosticAlert (x32 Version: 1.00.0000 - Microsoft) Hidden
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version:  - Image-Line)
Image Line FL Studio Producer Edition (HKLM-x32\...\Image Line FL Studio Producer Edition) (Version: 12.1.2 - Image Line FL Studio Producer Edition)
Infestation: Survivor Stories (HKLM-x32\...\Steam App 226700) (Version:  - OP Productions LLC)
Insurgency (HKLM-x32\...\Steam App 222880) (Version:  - New World Interactive)
Insurgency Dedicated Server (HKLM-x32\...\Steam App 237410) (Version:  - )
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel® Network Connections 17.2.154.0 (HKLM\...\PROSetDX) (Version: 17.2.154.0 - Intel)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.1.0.1006 - Intel Corporation)
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.5.235 - Intel Corporation)
Iron Europe (HKLM-x32\...\{3C262E00-3C8B-4774-83DB-6412EDFE9FB4}_is1) (Version: 1.2.1 - Iron Europe Development Team)
Iron Europe (HKLM-x32\...\{7735559E-F41A-480F-A5FC-174F8B9EB58E}_is1) (Version: 1.0.0 - Iron Europe Development Team)
Iron Europe (HKLM-x32\...\{957609F3-9CF1-4726-8F8F-1C1AAC063917}_is1) (Version: 1.1.0 - Iron Europe Development Team)
iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)
Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Just Cause 2 (HKLM-x32\...\Steam App 8190) (Version:  - Avalanche)
Just Cause 2: Multiplayer Mod (HKLM-x32\...\Steam App 259080) (Version:  - JC2-MP Team)
KeePass Password Safe 2.22 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version:  - Dominik Reichl)
Kerbal Space Program (HKLM-x32\...\Steam App 220200) (Version:  - Squad)
Lagarith Lossless Codec (1.3.27) (HKLM-x32\...\{F59AC46C-10C3-4023-882C-4212A92283B3}_is1) (Version:  - )
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
League of Legends (HKLM-x32\...\League of Legends 3.0.0) (Version: 3.0.0 - Riot Games)
League of Legends (x32 Version: 3.0.0 - Riot Games) Hidden
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version:  - Valve)
Logitech Gaming Software 8.46 (HKLM\...\Logitech Gaming Software) (Version: 8.46.27 - Logitech Inc.)
Logitech QuickCam Software (HKLM-x32\...\{C43048A9-742C-4DAD-90D2-E3B53C9DB825}) (Version: 8.47.0000 - Logitech, Inc.)
Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.291 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.291 - LogMeIn, Inc.) Hidden
Magicka (HKLM-x32\...\Steam App 42910) (Version:  - Arrowhead Game Studios)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE (HKLM-x32\...\{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}) (Version: 3.1.186.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{02BAAFC5-4E16-42E6-A9F6-8DDE0B7ED3B8}) (Version: 1.0.0.0 - Mojang)
mIRC (HKLM-x32\...\mIRC) (Version: 7.41 - mIRC Co. Ltd.)
MorphVOX Junior (HKLM-x32\...\{E6C7380F-15DD-445E-BA02-B7A180BA0A5A}) (Version: 2.8.1 - Screaming Bee)
Mount&Blade (HKLM-x32\...\Mount&Blade) (Version:  - )
Mount&Blade Warband (HKLM-x32\...\Mount&Blade Warband) (Version:  - )
Mount&Blade With Fire and Sword (HKLM-x32\...\Mount&Blade With Fire and Sword) (Version:  - )
Mount&Blade: Warband - Napoleonic Wars (HKLM-x32\...\Mount&Blade: Warband - Napoleonic Wars) (Version:  - )
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 39.0.3 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 39.0.3 (x86 en-US)) (Version: 39.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
Mozilla Thunderbird 24.0 (x86 en-US) (HKLM-x32\...\Mozilla Thunderbird 24.0 (x86 en-US)) (Version: 24.0 - Mozilla)
Mozilla Thunderbird 24.3.0 (x86 en-US) (HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\Mozilla Thunderbird 24.3.0 (x86 en-US)) (Version: 24.3.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Napoleonic Wars Enhancement Pack (HKLM-x32\...\{39FEF436-D526-4829-ACF9-014874ABEFAD}_is1) (Version: 5.1.0 - Parrot)
Nitro Reader 3 (HKLM\...\{9EA981E5-EE67-4662-86F1-58937D31FE07}) (Version: 3.5.6.5 - Nitro)
No More Room in [bleep] (HKLM-x32\...\Steam App 224260) (Version:  - No More Room in [bleep] Team)
North and South version 0.404 (HKLM-x32\...\{C0C24D7F-3B0D-4169-AC92-4999D18FB04D}_is1) (Version: 0.404 - Antietam Studios)
Norton Identity Safe (HKLM-x32\...\NST) (Version: 2014.7.11.42 - Symantec Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.1 - Notepad++ Team)
NVIDIA 3D Vision Controller Driver 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 355.98 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 355.98 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.5.14.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.14.5 - NVIDIA Corporation)
NVIDIA Graphics Driver 355.98 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.98 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
OBS Multiplatform (HKLM-x32\...\OBS Multiplatform) (Version: 0.11.4 - OBS Project)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OpenOffice 4.0.0 (HKLM-x32\...\{55E61709-D7D4-43C0-B45D-BFAF5C09A02D}) (Version: 4.00.9702 - Apache Software Foundation)
OpenRA (HKLM-x32\...\OpenRA) (Version:  - OpenRA developers)
Oracle VM VirtualBox 4.3.20 (HKLM\...\{DD8F7A7A-852F-4648-8A73-B8FC1DF5F082}) (Version: 4.3.20 - Oracle Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.3.7.2735 - Electronic Arts, Inc.)
Paintball2 Alpha build 40 (HKLM-x32\...\Paintball2) (Version: Alpha build 40 - Digital Paint)
PaintTool SAI Ver.1 (HKLM-x32\...\PaintToolSAI) (Version:  - )
Paronicon 2 - Uninstall (HKLM-x32\...\Paronicon 2 0.2.2.0) (Version: 0.2.2.0 - GSN Gaming)
Paronicon 2 (x32 Version: 0.2.2.0 - GSN Gaming) Hidden
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version:  - OVERKILL - a Starbreeze Studio.)
PAYDAY: The Heist (HKLM-x32\...\Steam App 24240) (Version:  - OVERKILL Software)
PBO Manager v.1.4 beta (HKLM\...\{127B5371-1802-4EDD-A25A-A43BF761D383}) (Version: 1.4.0 -  )
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Peggle (HKLM-x32\...\{715AD72D-887A-459E-988B-D4F3E87FA24B}) (Version: 1.04.0.0 - PopCap Games)
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
Pivot Animator version 4.1.10 (HKLM-x32\...\Pivot Animator_is1) (Version: 4.1.10 - Motus Software Ltd)
Plants vs. Zombies™ (HKLM-x32\...\{5E6536C2-E79A-49CF-83EA-817AD81F9FC8}) (Version: 1.2.0.1093 - Electronic Arts, Inc.)
Poker Night 2 (HKLM-x32\...\Steam App 234710) (Version:  - Telltale Games)
Poker Night at the Inventory (HKLM-x32\...\Steam App 31280) (Version:  - Telltale Games)
Portal (HKLM-x32\...\Steam App 400) (Version:  - Valve)
Portal 2 (HKLM-x32\...\Steam App 620) (Version:  - Valve)
PowerISO (HKLM-x32\...\PowerISO) (Version: 5.8 - Power Software Ltd)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
qBittorrent 3.1.11 (HKLM-x32\...\qbittorrent) (Version: 3.1.11 - The qBittorrent project)
Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{7D916FA5-DAE9-4A25-B089-655C70EAF607}) (Version: 3.0 - Qualcomm Atheros)
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
RaidCall (HKLM-x32\...\RaidCall) (Version: 7.3.6-1.0.12972.94 - raidcall.com)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
ROBLOX Player for Christian (HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version:  - ROBLOX Corporation)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.6.1 - Rockstar Games)
Rust (HKLM-x32\...\Steam App 252490) (Version:  - Facepunch Studios)
Sandboxie 4.14 (64-bit) (HKLM\...\Sandboxie) (Version: 4.14 - Sandboxie Holdings, LLC)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version:  - Microsoft) Hidden
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.14.5 - NVIDIA Corporation) Hidden
Sid Meier’s Ace Patrol: Pacific Skies (HKLM-x32\...\Steam App 244090) (Version:  - Firaxis)
Sid Meier's Ace Patrol (HKLM-x32\...\Steam App 244070) (Version:  - Firaxis Games)
Sid Meier's Civilization III: Complete (HKLM-x32\...\Steam App 3910) (Version:  - Firaxis Games)
Sid Meier's Civilization IV (HKLM-x32\...\Steam App 3900) (Version:  - Firaxis Games)
Sid Meier's Civilization IV: Beyond the Sword (HKLM-x32\...\Steam App 8800) (Version:  - Firaxis Games)
Sid Meier's Civilization IV: Colonization (HKLM-x32\...\Steam App 16810) (Version:  - Firaxis Games)
Sid Meier's Civilization IV: Warlords (HKLM-x32\...\Steam App 3990) (Version:  - Firaxis Games)
Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version:  - 2K Games, Inc.)
Sid Meier's Railroads! (HKLM-x32\...\Steam App 7600) (Version:  - Firaxis Games)
Six Updater (HKLM-x32\...\{AD42165D-FF3C-4975-A130-7AA2801AB5DD}) (Version: 2.09.7042 - Six Projects)
SketchUp 2013 (HKLM-x32\...\{B75BC01B-4586-43F8-9349-D250DB98F26F}) (Version: 13.0.4812 - Trimble Navigation Limited)
Skype™ 7.8 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.8.102 - Skype Technologies S.A.)
Smart Technology Programming Software 7.0.27.13 (HKLM\...\{BD90BC1C-115D-47E1-B85C-07AE182C3AB8}) (Version: 7.0.27.13 - Mad Catz)
Sniper Elite 3 (HKLM-x32\...\Steam App 238090) (Version:  - Rebellion)
Sniper Elite V2 (HKLM-x32\...\Steam App 63380) (Version:  - Rebellion)
Soundboard (HKLM-x32\...\Soundboard) (Version: 1.0.0 - UNKNOWN)
Soundboard (x32 Version: 1.0.0 - UNKNOWN) Hidden
Source SDK (HKLM-x32\...\Steam App 211) (Version:  - Valve)
Source SDK Base 2006 (HKLM-x32\...\Steam App 215) (Version:  - Valve)
Source SDK Base 2013 Multiplayer (HKLM-x32\...\Steam App 243750) (Version:  - )
South Park™: The Stick of Truth™ (HKLM-x32\...\Steam App 213670) (Version:  - Obsidian Entertainment)
Spotify (HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\Spotify) (Version: 1.0.14.124.g4dfabc51 - Spotify AB)
Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version: 7.0.0.6 - Bioware/EA)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
Stealth Inc 2 (HKLM-x32\...\Steam App 329380) (Version:  - Carbon)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version:  - Valve)
TeamSpeak 3 Client (HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\TeamSpeak 3 Client) (Version: 3.0.15.1 - TeamSpeak Systems GmbH)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.43879 - TeamViewer)
TexView 2 Uninstall (HKLM-x32\...\TexView 2) (Version:  - )
The Crew (Worldwide) (HKLM-x32\...\Uplay Install 413) (Version:  - Ubisoft)
The Elder Scrolls Online Beta (HKLM-x32\...\The Elder Scrolls Online Beta_is1) (Version: 0.3.4 - )
The Forest (HKLM-x32\...\Steam App 242760) (Version:  - Endnight Games Ltd)
The Stanley Parable (HKLM-x32\...\Steam App 221910) (Version:  - Galactic Cafe)
Tomb Raider (HKLM-x32\...\Steam App 203160) (Version:  - Crystal Dynamics)
ToneSync for Windows (HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\c2c9648a374f64d1) (Version: 1.2.3.309 - Zedge Europe AS)
Unity Web Player (HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Unturned (HKLM-x32\...\Steam App 304930) (Version:  - Nelson Sexton)
Uplay (HKLM-x32\...\Uplay) (Version: 4.9 - Ubisoft)
Vegas Pro 12.0 (64-bit) (HKLM\...\{BD422D00-5232-11E3-A6F3-F04DA23A5C58}) (Version: 12.0.770 - Sony)
Verdun (HKLM-x32\...\Steam App 242860) (Version:  - M2H)
Victoria 2 (HKLM-x32\...\{9C3B7F54-C6E2-4A74-9937-9C6EBA10C4A2}) (Version:  - )
Virtual Audio Cable 4.10 (HKLM\...\Virtual Audio Cable 4.10) (Version:  - )
VLC media player 2.0.7 (HKLM-x32\...\VLC media player) (Version: 2.0.7 - VideoLAN)
VMic (HKLM-x32\...\VMic) (Version:  - )
Volvo - The Game (HKLM-x32\...\Volvo - The Game_is1) (Version:  - SimBin)
VTFEdit 1.3.3 (HKLM\...\VTFEdit_is1) (Version:  - Neil Jedrzejewski & Ryan Gregg)
War Thunder (HKLM-x32\...\Steam App 236390) (Version:  - Gaijin Entertainment)
WinDirStat 1.1.2 (HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\WinDirStat) (Version:  - )
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Movie Maker 2.6 (HKLM-x32\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation)
Wing Commander III (HKLM-x32\...\{F96B9930-E22A-44D6-81B5-6C8E92C21B4B}) (Version: 2.0.0.2 - Electronic Arts)
WinRAR 5.00 beta 6 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.00.6 - win.rar GmbH)
WinSCP 5.1.5 (HKLM-x32\...\winscp3_is1) (Version: 5.1.5 - Martin Prikryl)
WS Launcher (HKLM-x32\...\{575E5E77-2C8E-405F-AB8E-9A7418B704CF}) (Version: 0.0.0.9 - Launcher)
Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org)
X-Mouse Button Control 2.11.1 (HKLM-x32\...\X-Mouse Button Control) (Version: 2.11.1 - Highresolution Enterprises)
XSplit (HKLM-x32\...\{24570B2F-3937-47F0-A16A-E82B480A7699}) (Version: 1.1.1210.3101 - SplitMediaLabs)
 
==================== Custom CLSID (Whitelisted): ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Christian\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2015\Inventor Server\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2015\Inventor Server\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{D45F043D-F17F-4e8a-8435-70971D9FA46D}\InprocServer32 -> C:\Program Files\Blender Foundation\Blender\BlendThumb64.dll ()
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{DEE03C2B-0C0C-41A9-9877-FD4B4D7B6EA3}\InprocServer32 -> C:\Users\Christian\AppData\Local\Roblox\Versions\version-957ce0cc47814d39\RobloxProxy64.dll (ROBLOX Corporation)
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2015\Inventor Server\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Christian\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Christian\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Christian\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Christian\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Christian\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Christian\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Christian\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Christian\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
 
==================== Restore Points =========================
 
30-09-2015 19:51:17 Windows Update
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2015-09-25 19:40 - 2015-09-25 19:40 - 00000076 ____A C:\WINDOWS\system32\Drivers\etc\hosts
0.0.0.0 pubads.g.doubleclick.net
0.0.0.0 securepubads.g.doubleclick.net
 
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {0019BEF5-5D67-4C9B-99E9-095E0A38A249} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2842136386-2703010871-4203806482-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe
Task: {02DBD956-1A64-4801-815B-4FD1AD3CCFA8} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {030EAF9C-2A21-4CC4-9670-E6B59F53F196} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {0EA2A80C-26EB-4859-819E-A7B5D192506F} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {0EA36A42-5297-489F-A7AA-DC10DFD540FA} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2842136386-2703010871-4203806482-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
Task: {138C57AB-A7CD-4D66-80D4-868E1E27625F} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-08-26] (Microsoft Corporation)
Task: {150BC3E0-6B9A-4E84-948B-153B97C8D824} - System32\Tasks\{56A68917-9FE8-415F-A4E1-24575FF34FD6} => pcalua.exe -a C:\Users\CHRIST~1\AppData\Local\Temp\$PowerISO$\install.exe -d E:\Users\Christian\Downloads\rzr-skrm
Task: {171BE514-AAE8-485E-AAAD-5BB7FC37089B} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {1A9A440C-279D-40F8-A73C-AA14E46C33DF} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {20AF6801-E267-4B73-B400-66A1E0BD8B34} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {20CCE052-DA99-4C58-838F-817A3AF6B0C6} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {2162D55C-72E0-44F3-9CBC-3E8F9EB3D218} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {253C4637-EF43-477A-8982-5C37BB3D484E} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {27A8C9CD-9C1C-48AF-AC09-DD4EF9255022} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {2AAFDAC5-9DC8-4241-B57C-5C1F85D5C071} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {2F2E2878-3F6C-4487-AF4C-148B55FAF5AD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {31DE5BD3-DCBD-4B06-B073-584464B1B596} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {3A8B6163-677E-46CF-865A-77C78D50D641} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {3B1912DE-41A6-4457-919F-EAD9B1B419E9} - System32\Tasks\ASUS\ASUS WiFi GO! Server Execute => C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFi GO! Server.exe [2012-07-12] (ASUSTeK Computer Inc.)
Task: {4048D3FE-68E9-43E9-9139-B31EBA2A9073} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {4B2F4186-F784-489B-BA4D-B4673BFF4C86} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {4D754DB5-89FD-4871-A60A-D554CA05C0FE} - System32\Tasks\{15DCDB01-AB91-4CB6-ACA5-99A968789279} => pcalua.exe -a C:\Users\Christian\Downloads\BP_Installer(2).exe -d C:\Users\Christian\Downloads
Task: {53DF64B4-578E-4DF9-B84B-70214BBACF11} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2842136386-2703010871-4203806482-1000Core => C:\Users\Christian\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-09-11] (Facebook Inc.)
Task: {5FBB1F28-C69D-4173-B220-101CEE852D93} - System32\Tasks\Norton Identity Safe\Norton Error Analyzer => C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\SymErr.exe
Task: {63459F8B-DE2E-4481-AEB3-71AD438FD6BC} - System32\Tasks\CCleanerSkipUAC => E:\Program Files\CCleaner\CCleaner.exe [2014-12-12] (Piriform Ltd)
Task: {6489AE90-C36A-45F7-BD6C-DC5DE3C0BBD1} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {6D748174-6583-4961-A5FE-614D69E05196} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {708A437E-BBB5-4756-8F72-C1BA40E8FEBD} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-10-01] (AVAST Software)
Task: {71D72724-8E78-47AF-A357-F768E14218E3} - System32\Tasks\GoogleUpdateTaskMachineCore1d041557696e34 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {721DAC04-C281-4AB3-B8D8-E555591FA5BE} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {7A11C935-1670-4B49-B693-E510607F5282} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {7A1D5B31-D82D-4DA9-9FAC-DCC6D7DB05D7} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {7C540B0C-4605-450C-82C6-E73735A403A7} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {80218F04-0F60-44FA-9D97-3CB837134488} - System32\Tasks\Norton Identity Safe\Norton Error Processor => C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\SymErr.exe
Task: {83F9CC54-AD9A-4A16-93F1-8503614821C8} - System32\Tasks\ASUS\ASUS AI Suite II Execute => C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2012-03-13] (ASUSTeK Computer Inc.)
Task: {85355830-C5C5-4626-9C0B-BFDDAFA69BF9} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2014-03-19] (Microsoft)
Task: {8BCADE15-B74D-47F2-B4E8-7FE014F3482C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {8BD56B63-FEA9-459B-950B-21004F5106BB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {8C014F5D-1F40-4542-A372-F1F90EED13A8} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-2842136386-2703010871-4203806482-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe
Task: {8F4C3A2F-D807-437E-BAA4-10DF9721ED47} - \Microsoft\Windows\File Classification Infrastructure\Property Definition Sync -> No File <==== ATTENTION
Task: {8F5CCF43-CE5E-425A-8D11-F5BC0D200ECA} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {8FCA3894-ECF2-44A0-AC5F-A845785447DB} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {96700324-2CA0-4E8F-B9FE-54D829B7AC0F} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {96985AB1-5DE0-49DA-8CF1-75EFCF32270B} - System32\Tasks\AdobeAAMUpdater-1.0-ChristianDeskPC-Christian => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-10-14] (Adobe Systems Incorporated)
Task: {96B828D6-5E17-4BC3-A0F9-B4137A659FF5} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2842136386-2703010871-4203806482-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
Task: {AB5450C0-06FC-4B7D-AC9C-0102185CE3FE} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2842136386-2703010871-4203806482-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe
Task: {B31042FF-CE33-458F-ABD8-977C649DD092} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {B980C206-8CF6-4D5F-B0A1-51CF2D5305C0} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {BE5D89F3-C282-443D-984D-7518B575CFDE} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {BF2BD0FC-31B1-4E27-97D0-A1DEE377AB2A} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2842136386-2703010871-4203806482-1000UA => C:\Users\Christian\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-09-11] (Facebook Inc.)
Task: {D905381F-EA74-4D3B-AB6F-BF2D28DFD351} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {DA39A95A-A466-4196-A764-FEEBDB29A6BF} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {DEBE52EC-3106-4F63-BB41-1E972F8F6A00} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {E253DAEC-B688-408F-8D21-396CE1405D7B} - System32\Tasks\{3D336034-F692-466F-B63E-703359D7A5D7} => pcalua.exe -a C:\Users\Christian\Downloads\x45_151205_64.exe -d C:\Users\Christian\Downloads
Task: {E5BC248A-7A33-4B4A-A532-2F509E9857EA} - System32\Tasks\GoogleUpdateTaskMachineUA1d041557818a6e => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {EA4FEA15-F40A-44C1-B8B8-CAFFF02CD4BE} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {ED54F4B6-75A7-43E1-BEFB-FCCAA0F96E9A} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {F0E95C6F-41F4-43B8-9820-4384CC8487E0} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {F14203A6-85AC-4168-B4FF-1FDCED0B432E} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {F6931CFB-24E2-4828-BF69-578C961AFD96} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {F69F6FE4-5806-4A8C-AA90-FB9C55FEEEC1} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {FBC4B584-59C9-4F60-A5E8-0D7EFEEA26BA} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {FF659939-9CFF-40F0-92A8-D461B00A9E5C} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2842136386-2703010871-4203806482-1000Core.job => C:\Users\Christian\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2842136386-2703010871-4203806482-1000UA.job => C:\Users\Christian\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d041557696e34.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d041557818a6e.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
 
==================== Loaded Modules (Whitelisted) ==============
 
2015-07-10 06:00 - 2015-07-10 06:00 - 00028160 _____ () C:\WINDOWS\SYSTEM32\efsext.dll
2015-08-04 12:26 - 2015-08-04 12:26 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2014-12-03 19:58 - 2015-09-13 17:04 - 00116528 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2012-06-01 04:42 - 2012-06-01 04:42 - 00920736 ____R () C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
2015-08-19 15:47 - 2015-08-11 04:14 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-08-06 11:33 - 2014-08-05 20:04 - 01441792 _____ () C:\Program Files\Everything\Everything.exe
2013-06-20 16:43 - 2015-08-31 16:06 - 00076152 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2015-09-30 19:29 - 2015-09-17 01:48 - 02494712 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-09-30 19:29 - 2015-09-17 01:48 - 02494712 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2013-09-05 01:17 - 2013-09-05 01:17 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2010-10-20 16:23 - 2010-10-20 16:23 - 08801632 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2015-09-30 19:30 - 2015-09-17 00:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-09-30 19:29 - 2015-09-17 00:44 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-09-30 19:29 - 2015-09-17 00:42 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-09-30 19:29 - 2015-09-17 00:42 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-09-30 19:29 - 2015-09-17 00:43 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-09-23 16:30 - 2015-09-23 16:30 - 00012288 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.922.11070.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2015-09-23 16:30 - 2015-09-23 16:30 - 10807296 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.922.11070.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2015-09-30 20:40 - 2015-09-30 20:40 - 08395776 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.9.25.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
2015-09-30 20:40 - 2015-09-30 20:40 - 02311680 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.9.25.0_x64__8wekyb3d8bbwe\MS.Entertainment.Common.Mobile.dll
2015-09-17 16:57 - 2015-09-17 16:57 - 03495936 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1509.14010.0_x64__8wekyb3d8bbwe\Calculator.exe
2014-07-31 12:16 - 2014-07-31 12:16 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-10-11 14:05 - 2014-10-11 14:05 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-06-16 17:17 - 2015-10-01 18:27 - 00030720 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\PEbiosinterface32.dll
2013-06-16 17:17 - 2010-06-28 21:58 - 00104448 ____R () C:\Program Files (x86)\ASUS\AXSP\1.00.19\ATKEX.dll
2015-07-05 08:52 - 2014-12-04 21:27 - 00055688 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\QtSolutions_Service-head.dll
2015-07-05 08:52 - 2014-12-04 21:27 - 00104328 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\qjson0.dll
2014-08-25 15:01 - 2014-08-25 15:01 - 00864856 _____ () c:\program files (x86)\real\realplayer\RPDS\Plugins\cldplin.dll
2015-03-30 16:20 - 2015-08-26 19:37 - 00011896 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-08-05 14:29 - 2015-08-05 14:29 - 00172032 _____ () C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\IsdiInterop\453e3f3a93aa5269710d60c5f7a19452\IsdiInterop.ni.dll
2013-06-16 17:18 - 2012-02-01 16:25 - 00059904 _____ () C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll
2015-09-30 20:22 - 2015-09-23 21:34 - 01501512 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.101\libglesv2.dll
2015-09-30 20:22 - 2015-09-23 21:34 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.101\libegl.dll
2015-10-01 08:58 - 2015-10-01 08:58 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-10-01 08:58 - 2015-10-01 08:58 - 00103376 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-10-01 08:58 - 2015-10-01 08:58 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2013-06-16 17:13 - 2012-06-25 10:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll
 
==================== Alternate Data Streams (Whitelisted) =========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
AlternateDataStreams: C:\ProgramData\TEMP:373E1720
AlternateDataStreams: C:\ProgramData\TEMP:B6418BC9
 
==================== Safe Mode (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
 
==================== EXE Association (Whitelisted) ===============
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 
IE trusted site: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\sony.com -> sony.com
 
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\Control Panel\Desktop\\Wallpaper -> I:\Images\Everything.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
(Currently there is no automatic fix for this section.)
 
HKLM\...\StartupApproved\StartupFolder: => "RealPlayer Cloud Service UI.lnk"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\StartupApproved\Run: => "Clownfish"
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_F95133299531DA24C7CB703BC8432DCE"
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\StartupApproved\Run: => "msnmsgr"
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\...\StartupApproved\Run: => "Realtek High Defention Control Panel"
 
==================== FirewallRules (Whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{2D0F1339-DA1B-4FD7-92DC-35CB74617F3F}] => (Allow) I:\SteamLibrary\steamapps\common\Anarchy Arcade\AArcade.exe
FirewallRules: [{AC94B733-F58A-4F6B-9B31-4D9E00CC8E6E}] => (Allow) I:\SteamLibrary\steamapps\common\Anarchy Arcade\AArcade.exe
FirewallRules: [{0551B0A1-FFDB-4702-B3B6-621053C1BC67}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{DD39F251-7FA1-4FDF-8F05-72C05D5D64EE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{42A31CA4-C4E7-45F9-ACB5-E73A79F6A759}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{C1DC25B7-0E08-466A-8134-171A83975F3E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{8F4E3467-6402-42A2-A604-CEB7FBDC7146}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{1B2C886F-88D7-4A7C-85E0-89C57DE9A9D4}] => (Allow) I:\SteamLibrary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{E9CFF488-5153-4418-AF3F-CF95373C067E}] => (Allow) I:\SteamLibrary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [UDP Query User{E04A2CB3-B554-45C8-BF9D-D30CF431FDF8}C:\program files (x86)\dayzlauncher\dayzlauncher.exe] => (Allow) C:\program files (x86)\dayzlauncher\dayzlauncher.exe
FirewallRules: [TCP Query User{978196C5-67E5-44DD-8DBD-88964BC67820}C:\program files (x86)\dayzlauncher\dayzlauncher.exe] => (Allow) C:\program files (x86)\dayzlauncher\dayzlauncher.exe
FirewallRules: [{0FCFC04D-551B-428F-A6F4-872DBF523F52}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{59818BDF-01DB-4024-AE3F-C7D25A6E453D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{8CB03426-8949-4799-9192-CBC9CC8E01D4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{8C18392B-0497-44FB-9E4B-A134BC3D03DB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{B54A519A-8B04-4BD6-AE3F-26B9B62A42A9}] => (Allow) C:\Program Files\Autodesk\3ds Max 2015\NVIDIA\Satellite\raysat_3dsmax2015_64.exe
FirewallRules: [{620B3677-1359-4807-B72D-9CD9EFBBB393}] => (Allow) C:\Program Files\Autodesk\3ds Max 2015\NVIDIA\Satellite\raysat_3dsmax2015_64.exe
FirewallRules: [{661D3406-33BC-49DD-9216-66DC0419153E}] => (Allow) C:\Program Files\Autodesk\3ds Max 2015\NVIDIA\Satellite\raysat_3dsmax2015_64server.exe
FirewallRules: [{5794C6EC-BE9B-4DA2-BD2F-565612EE1CF6}] => (Allow) C:\Program Files\Autodesk\3ds Max 2015\NVIDIA\Satellite\raysat_3dsmax2015_64server.exe
FirewallRules: [{D5DC8EA5-A7FA-401B-B3BE-E628370DC445}] => (Allow) I:\SteamLibrary\steamapps\common\Verdun\Verdun.exe
FirewallRules: [{38589CE4-1A6D-43C7-8F2E-4D0F54843071}] => (Allow) I:\SteamLibrary\steamapps\common\Verdun\Verdun.exe
FirewallRules: [{EB6144F7-D339-4CAA-A552-C5E2747F6D06}] => (Allow) E:\Program Files (x86)\Origin Games\BFH\bfh.exe
FirewallRules: [{BC3E07B0-4772-4F73-9125-0D21BD0E9567}] => (Allow) E:\Program Files (x86)\Origin Games\BFH\bfh.exe
FirewallRules: [UDP Query User{7AA0069F-132A-4B1D-BE9C-A2FE9399CD93}C:\users\christian\documents\aftermath\amlauncher.exe] => (Allow) C:\users\christian\documents\aftermath\amlauncher.exe
FirewallRules: [TCP Query User{EF4814AD-8969-40C9-89C6-D5585586C0E6}C:\users\christian\documents\aftermath\amlauncher.exe] => (Allow) C:\users\christian\documents\aftermath\amlauncher.exe
FirewallRules: [{17965463-F10A-4E79-9967-A2672E71281C}] => (Allow) I:\SteamLibrary\steamapps\common\Battlefield Bad Company 2\BFBC2Game.exe
FirewallRules: [{D32C8520-9AB0-40C6-B092-597C53B9CFC8}] => (Allow) I:\SteamLibrary\steamapps\common\Battlefield Bad Company 2\BFBC2Game.exe
FirewallRules: [{C2809041-5A88-4F61-9DF3-28D6459AF0D9}] => (Allow) I:\SteamLibrary\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{665C379A-4795-4638-91D9-E02403A68088}] => (Allow) I:\SteamLibrary\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{8F79BDD0-48D9-4421-A2B5-1B051CC3F878}] => (Allow) E:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [{1123D876-0AD9-422B-B1EA-D74845C932A4}] => (Allow) E:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [{6BD31786-2669-4FB2-B9DF-44DAA5F37311}] => (Allow) E:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{D411D493-8A32-4A6D-B1BD-3343CB7727F1}] => (Allow) E:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{38AB72F4-9BA5-4318-86E5-CB37BD5183C6}] => (Allow) I:\SteamLibrary\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{0740B37A-E32B-49E8-AAD1-94A6A239B4C8}] => (Allow) I:\SteamLibrary\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [UDP Query User{64D79F63-66AD-46FA-8CAF-6333979D2BD9}C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe
FirewallRules: [TCP Query User{678C614D-F0D6-4275-8B38-C20329EAD0D1}C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe
FirewallRules: [UDP Query User{9F407E81-EC45-40C3-BD34-4979D74C9823}C:\program files (x86)\razer\comms\razercomms.exe] => (Allow) C:\program files (x86)\razer\comms\razercomms.exe
FirewallRules: [TCP Query User{E1E3F141-6403-49C6-BB69-4D8214F1CA5F}C:\program files (x86)\razer\comms\razercomms.exe] => (Allow) C:\program files (x86)\razer\comms\razercomms.exe
FirewallRules: [{6D07FC7B-905C-4350-95FF-36FA0637E44A}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\legacy\rust.exe
FirewallRules: [{E13D17A3-37B9-4A97-A335-CBA7062DCB0A}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\legacy\rust.exe
FirewallRules: [{76DA0D22-1680-46FD-8BD1-B9A987384A6A}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty World at War\CoDWaWmp.exe
FirewallRules: [{FE2208DA-73C9-4382-A199-C31E62CE9AE1}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty World at War\CoDWaWmp.exe
FirewallRules: [{F6967FE9-BDFF-4713-BBA3-777E14FEEE87}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty World at War\CoDWaW.exe
FirewallRules: [{51DA8D36-48C0-4BC7-B04E-0318D069F7AC}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty World at War\CoDWaW.exe
FirewallRules: [{4CA90817-9AA9-4A28-BF01-49CC3346654E}] => (Allow) I:\SteamLibrary\steamapps\common\Arma 3 Tools\Publisher\Publisher.exe
FirewallRules: [{E08F54F4-2C98-4BF5-8DE9-360CE616EBE6}] => (Allow) I:\SteamLibrary\steamapps\common\Arma 3 Tools\Publisher\Publisher.exe
FirewallRules: [{9CF90A07-A37D-4E41-935B-C9BFAA49D1BE}] => (Allow) I:\SteamLibrary\steamapps\common\Arma 3 Tools\AddonBuilder\AddonBuilder.exe
FirewallRules: [{754CC947-A824-4B4C-AE0F-FE6A76F57443}] => (Allow) I:\SteamLibrary\steamapps\common\Arma 3 Tools\AddonBuilder\AddonBuilder.exe
FirewallRules: [{C73A1AB2-721A-4A2B-ACB7-33F5BF11C302}] => (Allow) I:\SteamLibrary\steamapps\common\Arma 3 Tools\starter.exe
FirewallRules: [{2D983E4C-7637-4910-AFC2-3934F9292C91}] => (Allow) I:\SteamLibrary\steamapps\common\Arma 3 Tools\starter.exe
FirewallRules: [{A35D9000-AAFE-4CE9-85A1-467DCD6BD23E}] => (Allow) I:\SteamLibrary\steamapps\common\Arma 3 Tools\Arma3Tools.exe
FirewallRules: [{32F7695E-10CE-4C5B-A4AC-F36F9C633AE0}] => (Allow) I:\SteamLibrary\steamapps\common\Arma 3 Tools\Arma3Tools.exe
FirewallRules: [{8C53F307-4C9B-4B63-9EAE-B31BB835F9BA}] => (Allow) I:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{8A91CF5C-D076-43BD-877C-AC3DEFCF9959}] => (Allow) I:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{85649953-721B-4FFA-B21D-6DC0EAEF4553}] => (Block) I:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{EE9B7B75-3550-4CD0-9889-CA1DF553BA87}] => (Block) I:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{BC57ACA6-C7D6-4A7B-AF73-7157EBC904F7}I:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) I:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{60DB3792-1A67-4FE0-B338-E931E9D9C36C}I:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) I:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{C7331429-FEF9-4420-852E-8CC982078E39}] => (Allow) I:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{E8E7091D-1929-48C3-97DA-92EB5E09D358}] => (Allow) I:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{FB673D0B-D310-440C-B109-ECA8408CE64D}] => (Allow) I:\SteamLibrary\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe
FirewallRules: [{77D8FF16-D0DB-4ACE-ABCE-09224F55BF1D}] => (Allow) I:\SteamLibrary\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe
FirewallRules: [{4942271E-DF34-4FB1-9EFB-D5F42B6B03CB}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty Black Ops II\t6sp.exe
FirewallRules: [{AA981EA0-A956-4135-9AAB-090DE7F8A979}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty Black Ops II\t6sp.exe
FirewallRules: [{2E55C175-879E-45F2-9139-4C606B849C66}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty Black Ops II\t6mp.exe
FirewallRules: [{48B33FB9-3851-4968-A6D0-DF012FDCE179}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty Black Ops II\t6mp.exe
FirewallRules: [{B6425EF5-8D43-4E84-9953-576B134C13B2}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty Black Ops II\t6zm.exe
FirewallRules: [{152AB625-83FE-490A-851A-7181ADEE6181}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty Black Ops II\t6zm.exe
FirewallRules: [UDP Query User{3DEB888C-DDC3-4605-AB4F-4543FD78B9BE}I:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) I:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe
FirewallRules: [TCP Query User{01BD8494-8581-47F6-832E-F8AF84F463A0}I:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) I:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe
FirewallRules: [UDP Query User{8AF6CB47-F63A-4C5C-8CFE-38750B75C58F}I:\steamlibrary\steamapps\common\garrysmod\hl2.exe] => (Allow) I:\steamlibrary\steamapps\common\garrysmod\hl2.exe
FirewallRules: [TCP Query User{675EC66B-51B2-406F-9491-8A275D5A8EB5}I:\steamlibrary\steamapps\common\garrysmod\hl2.exe] => (Allow) I:\steamlibrary\steamapps\common\garrysmod\hl2.exe
FirewallRules: [{5998F03F-1B5B-4661-97A1-7F864F7DBBB4}] => (Block) I:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [{37FE2385-20E2-44CD-9CEE-AD637FB0E101}] => (Block) I:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [UDP Query User{CC12BC42-CF43-4A83-AA1F-AF5D93701E63}I:\steamlibrary\steamapps\common\dayz\dayz.exe] => (Allow) I:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [TCP Query User{BA506788-AC90-4B29-AE89-42AFA8DB6371}I:\steamlibrary\steamapps\common\dayz\dayz.exe] => (Allow) I:\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [{1EAA1227-58C0-4F39-8A4E-E260559C9B73}] => (Allow) I:\SteamLibrary\steamapps\common\grid 2\grid2.exe
FirewallRules: [{2E9A2F67-B7BA-4FCF-BC5C-846D50AD5279}] => (Allow) I:\SteamLibrary\steamapps\common\grid 2\grid2.exe
FirewallRules: [{75DD1F8C-5A6E-4C37-B6E0-FC4C7B005F8B}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Battlefield 2\BF2.exe
FirewallRules: [{275EDF68-148A-4848-A9AF-D93CF1FE861C}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Battlefield 2\BF2.exe
FirewallRules: [{3337831B-98C1-45E4-B588-C2C8516061CF}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite V2\Launcher\SniperV2Launcher.exe
FirewallRules: [{3EABB4C7-08AD-413B-8CE8-1649C136B5E0}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite V2\Launcher\SniperV2Launcher.exe
FirewallRules: [{ABC5C933-EBA1-4657-83D1-4B42CB47A96D}] => (Allow) C:\Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\BFBC2Updater.exe
FirewallRules: [{6F458F7D-DE1C-4E01-A27E-69AB736DA31F}] => (Allow) C:\Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\BFBC2Updater.exe
FirewallRules: [{54D1AC76-C293-4F19-AD1D-774F4564DC0F}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Ghosts\iw6mp64_ship.exe
FirewallRules: [{EAA5D757-5781-4956-8EFB-7A3D9CCA98BC}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Ghosts\iw6mp64_ship.exe
FirewallRules: [{E434A91A-568B-4C5F-8E97-A536CC43B94B}] => (Block) I:\csgo-ds\srcds.exe
FirewallRules: [{AC3902C9-B06D-4E32-BFAE-0E7E32F70057}] => (Block) I:\csgo-ds\srcds.exe
FirewallRules: [UDP Query User{97145661-B04B-4BAB-BBB5-3513B2BB5B4D}I:\csgo-ds\srcds.exe] => (Allow) I:\csgo-ds\srcds.exe
FirewallRules: [TCP Query User{3BEEBE51-9B0D-488C-A684-2CBD9FEB6D83}I:\csgo-ds\srcds.exe] => (Allow) I:\csgo-ds\srcds.exe
FirewallRules: [{F19A3F06-88C3-4A28-B59A-9A5D81C41C00}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{C673E1D7-3B1A-4528-B1F7-F9B27F3C5F27}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{DA166FBF-F836-4084-91A4-34E97C52AC69}] => (Block) E:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe
FirewallRules: [{D4B0E399-7BA3-40F4-90B9-A4BB418430D8}] => (Block) E:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe
FirewallRules: [UDP Query User{EDCDFF7F-9A9A-41B4-A581-39FBAE484794}E:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe
FirewallRules: [TCP Query User{69DFB23D-23D7-4036-8FB2-5A1FF5459995}E:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe
FirewallRules: [{7BA9AC23-FDAD-41C6-A6C3-5D1621BC0147}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\H1Z1\LaunchPad.exe
FirewallRules: [{763A0ADC-D296-4ACD-B0CA-0B1E1985A967}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\H1Z1\LaunchPad.exe
FirewallRules: [{74BE7A51-C89D-4596-B302-E672DEEE7232}] => (Block) C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe
FirewallRules: [{749CF903-8449-4E90-AE60-B642698AD9A9}] => (Block) C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{95849F70-AD51-4C53-9B7B-E79A12F43C92}C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{E29886C2-35ED-426C-A707-6B60974751C9}C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe
FirewallRules: [{E1BC6CDE-B3BA-4479-BAD6-16AD70683D73}] => (Block) C:\users\christian\desktop\utb\ultimate twitch bot.exe
FirewallRules: [{21993303-43EC-4D0D-94BA-7E3BA79BAEF4}] => (Block) C:\users\christian\desktop\utb\ultimate twitch bot.exe
FirewallRules: [UDP Query User{004C9DAB-866F-49F9-ADC4-8E13B03BE269}C:\users\christian\desktop\utb\ultimate twitch bot.exe] => (Allow) C:\users\christian\desktop\utb\ultimate twitch bot.exe
FirewallRules: [TCP Query User{2585E77C-26C0-4E97-BD64-89C163C98B3B}C:\users\christian\desktop\utb\ultimate twitch bot.exe] => (Allow) C:\users\christian\desktop\utb\ultimate twitch bot.exe
FirewallRules: [{9F0FDE6D-3C94-4199-A516-C5F0FDA3F910}] => (Allow) E:\Program Files (x86)\Farming Simulator 2015\x64\FarmingSimulator2015Game.exe
FirewallRules: [{D1181254-3934-4774-91D0-F5C65810690A}] => (Allow) E:\Program Files (x86)\Farming Simulator 2015\x64\FarmingSimulator2015Game.exe
FirewallRules: [{41EB3386-3D42-4004-9023-DBFBF9763539}] => (Allow) E:\Program Files (x86)\Farming Simulator 2015\x86\FarmingSimulator2015Game.exe
FirewallRules: [{D3B5377B-E21C-45FE-B83D-7DB59C880841}] => (Allow) E:\Program Files (x86)\Farming Simulator 2015\x86\FarmingSimulator2015Game.exe
FirewallRules: [{36246D29-03FE-4157-8062-09EA2640DB1B}] => (Allow) E:\Program Files (x86)\Farming Simulator 2015\FarmingSimulator2015.exe
FirewallRules: [{2F192F0D-1244-4000-8627-D9A906EA1EFF}] => (Allow) E:\Program Files (x86)\Farming Simulator 2015\FarmingSimulator2015.exe
FirewallRules: [{8CDB0143-1D7F-45B9-A88A-FA89F3C22829}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{01D852C3-FF9E-441C-85B1-00E228780BAA}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{2D98EC2C-F1B3-4928-B75F-F3B592AD128E}] => (Block) C:\program files\icechat9\icechat2009.exe
FirewallRules: [{8EB4578C-8350-4FDA-92B6-5E8418438D9A}] => (Block) C:\program files\icechat9\icechat2009.exe
FirewallRules: [UDP Query User{048D8AFC-6BE5-4DFB-9D43-3B14CE530700}C:\program files\icechat9\icechat2009.exe] => (Allow) C:\program files\icechat9\icechat2009.exe
FirewallRules: [TCP Query User{DA672C43-B69C-49A8-967C-A49C46198EBC}C:\program files\icechat9\icechat2009.exe] => (Allow) C:\program files\icechat9\icechat2009.exe
FirewallRules: [{A7386F38-03A7-4866-9CE7-039A304BAD32}] => (Block) C:\program files\hexchat\hexchat.exe
FirewallRules: [{25DFB8D1-9FAA-4A69-AFC4-55FBB0F8F07F}] => (Block) C:\program files\hexchat\hexchat.exe
FirewallRules: [UDP Query User{6F1A0041-1A0E-48C9-A8CC-83FAEFDF5FBF}C:\program files\hexchat\hexchat.exe] => (Allow) C:\program files\hexchat\hexchat.exe
FirewallRules: [TCP Query User{446FD770-50E5-4729-8D96-075CDA104DEA}C:\program files\hexchat\hexchat.exe] => (Allow) C:\program files\hexchat\hexchat.exe
FirewallRules: [{9671F9C8-5F52-4EBE-9C7A-BB1A0C760FAD}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Advanced Warfare\s1_sp64_ship.exe
FirewallRules: [{5682F659-8A13-410B-8AB6-C1C88A906DF1}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Advanced Warfare\s1_sp64_ship.exe
FirewallRules: [{5756E3B3-3D7E-400E-B469-61354AC1F44D}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Advanced Warfare\s1_mp64_ship.exe
FirewallRules: [{82926819-3F81-43C6-93C2-E8FFA66EF8FC}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Advanced Warfare\s1_mp64_ship.exe
FirewallRules: [{1E665E35-9041-4AC2-8629-8074E43824DD}] => (Block) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{9002640C-E6B4-4090-A463-24D8AE5CC958}] => (Block) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{7B2E64F3-88BA-48BD-B538-44C7FBDA98D2}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{E088DEA5-55A6-42F6-A948-EC6D8D11BB58}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{B59D70FB-2C42-407E-87B5-FCBDEA50FD3B}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{61E419F6-DB3C-4488-8186-C05B7D84F926}] => (Block) E:\program files (x86)\a3launcher\a3launcher.exe
FirewallRules: [{1759DA14-DD51-4F0F-B4A2-74784AD8F9B2}] => (Block) E:\program files (x86)\a3launcher\a3launcher.exe
FirewallRules: [UDP Query User{EA8F3AB3-DA70-4F26-A0BC-B76A1547C2A9}E:\program files (x86)\a3launcher\a3launcher.exe] => (Allow) E:\program files (x86)\a3launcher\a3launcher.exe
FirewallRules: [TCP Query User{44BF10DF-52DB-4A21-B090-B26C854D404D}E:\program files (x86)\a3launcher\a3launcher.exe] => (Allow) E:\program files (x86)\a3launcher\a3launcher.exe
FirewallRules: [{C4269C85-B641-4172-9639-4C99CE8D515D}] => (Block) E:\program files (x86)\ubisoft\ubisoft game launcher\games\the crew (worldwide)\thecrew.exe
FirewallRules: [{1FCCF742-9CA2-44D4-B66A-77E27A4D963F}] => (Block) E:\program files (x86)\ubisoft\ubisoft game launcher\games\the crew (worldwide)\thecrew.exe
FirewallRules: [UDP Query User{3F6991A3-6DC9-4539-BA14-C02662E3F79B}E:\program files (x86)\ubisoft\ubisoft game launcher\games\the crew (worldwide)\thecrew.exe] => (Allow) E:\program files (x86)\ubisoft\ubisoft game launcher\games\the crew (worldwide)\thecrew.exe
FirewallRules: [TCP Query User{A4AC7037-6088-44E6-A2D3-E8B3E4A7FB2E}E:\program files (x86)\ubisoft\ubisoft game launcher\games\the crew (worldwide)\thecrew.exe] => (Allow) E:\program files (x86)\ubisoft\ubisoft game launcher\games\the crew (worldwide)\thecrew.exe
FirewallRules: [{E544B5CE-9368-4127-8D73-E4C62DFD26A3}] => (Allow) E:\Program Files (x86)\qBittorrent\qbittorrent.exe
FirewallRules: [{6F9FF2FD-72FE-4541-B629-04EC3D350E1F}] => (Allow) E:\Program Files (x86)\qBittorrent\qbittorrent.exe
FirewallRules: [{645716AA-4F80-4F4A-A038-CAD16D57DE99}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\The War Z\WarZlauncher.exe
FirewallRules: [{682F3E20-B78B-4E8C-979F-30E87ABFE181}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\The War Z\WarZlauncher.exe
FirewallRules: [{D2520F5C-6838-426B-BD25-554F19DA3E9E}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{F2F21E75-3F1E-450A-A7B3-1410B8FD58C4}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{F4AECD3D-2B4F-46DD-A3E5-02DC80AE6460}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{35DE0E45-2758-479D-ABA8-38A9BC52D8D2}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{B72644D2-D0CC-4817-84B1-841DCAF0FA02}] => (Block) E:\program files (x86)\steam\steamapps\common\sniper elite 3\bin\sniperelite3.exe
FirewallRules: [{1D65D144-A7EE-4802-AA27-C30C7E4E2B1C}] => (Block) E:\program files (x86)\steam\steamapps\common\sniper elite 3\bin\sniperelite3.exe
FirewallRules: [UDP Query User{A7083EAB-474D-4C48-8B4F-B47BA258DD5D}E:\program files (x86)\steam\steamapps\common\sniper elite 3\bin\sniperelite3.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\sniper elite 3\bin\sniperelite3.exe
FirewallRules: [TCP Query User{3F670A14-9CB6-4CE0-995E-CB4DCD97932E}E:\program files (x86)\steam\steamapps\common\sniper elite 3\bin\sniperelite3.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\sniper elite 3\bin\sniperelite3.exe
FirewallRules: [{4BDF2FC0-FB41-436E-811A-7A0F3D600951}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite 3\Launcher\Sniper3Launcher.exe
FirewallRules: [{4F32DAD1-109E-4FDC-8B31-37F0528C06E1}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite 3\Launcher\Sniper3Launcher.exe
FirewallRules: [{3E1B75ED-8206-4D03-83BF-A86DB4FC0980}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Evolve\Bin64_SteamRetail\StaticLauncher64.exe
FirewallRules: [{4A8B7D56-DF9D-4B40-91FD-3757CF9462A7}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Evolve\Bin64_SteamRetail\StaticLauncher64.exe
FirewallRules: [{914BD39D-636E-4091-AD86-B2D8BE0F5BC6}] => (Allow) %ProgramFiles% (x86)\OBS\OBS.exe
FirewallRules: [{7A971088-6B24-4876-90D0-C9520AE9F184}] => (Allow) %ProgramFiles% (x86)\OBS\OBS.exe
FirewallRules: [{E8B5E2CF-3018-4300-BC2B-CE9227447270}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Five Nights at Freddy's\FiveNightsatFreddys.exe
FirewallRules: [{68207FE2-B217-4752-B847-C48EF0F9C6EC}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Five Nights at Freddy's\FiveNightsatFreddys.exe
FirewallRules: [{53014FE9-0C98-4EEE-8C7A-5D65D324E14F}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\PAYDAY The Heist\payday_win32_release.exe
FirewallRules: [{4B29946B-825F-4FFA-B0A1-3FB8F40F9CA0}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\PAYDAY The Heist\payday_win32_release.exe
FirewallRules: [{FB875C72-A285-4428-9422-36B734E96E86}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Fistful of Frags\sdk\hl2.exe
FirewallRules: [{678EDA25-C4CE-49DF-96BA-D5A854E03868}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Fistful of Frags\sdk\hl2.exe
FirewallRules: [{F5EC08F4-F16C-4F49-B21D-983A9EE84213}] => (Block) C:\users\christian\appdata\local\apps\2.0\1l4n9v4t.pwg\v2tvjk7n.ohq\epoc..tion_0000000000000000_0000.0000_52a3e75d6f96edf6\epoch launcher.exe
FirewallRules: [{8566FCBE-AFF7-4191-8170-192D311625CD}] => (Block) C:\users\christian\appdata\local\apps\2.0\1l4n9v4t.pwg\v2tvjk7n.ohq\epoc..tion_0000000000000000_0000.0000_52a3e75d6f96edf6\epoch launcher.exe
FirewallRules: [UDP Query User{C1DA08BE-2395-4260-88FD-6793AD1D057D}C:\users\christian\appdata\local\apps\2.0\1l4n9v4t.pwg\v2tvjk7n.ohq\epoc..tion_0000000000000000_0000.0000_52a3e75d6f96edf6\epoch launcher.exe] => (Allow) C:\users\christian\appdata\local\apps\2.0\1l4n9v4t.pwg\v2tvjk7n.ohq\epoc..tion_0000000000000000_0000.0000_52a3e75d6f96edf6\epoch launcher.exe
FirewallRules: [TCP Query User{01275927-0605-47BA-A136-1F1D7A94F035}C:\users\christian\appdata\local\apps\2.0\1l4n9v4t.pwg\v2tvjk7n.ohq\epoc..tion_0000000000000000_0000.0000_52a3e75d6f96edf6\epoch launcher.exe] => (Allow) C:\users\christian\appdata\local\apps\2.0\1l4n9v4t.pwg\v2tvjk7n.ohq\epoc..tion_0000000000000000_0000.0000_52a3e75d6f96edf6\epoch launcher.exe
FirewallRules: [{7BA4D1D3-426E-49D1-917D-C6B97B6FCE0A}] => (Allow) E:\Program Files (x86)\Origin Games\Dragon Age\bin_ship\daorigins.exe
FirewallRules: [{38A7CA39-9EB2-4EEB-8C25-D6296B6D09CF}] => (Allow) E:\Program Files (x86)\Origin Games\Dragon Age\bin_ship\daorigins.exe
FirewallRules: [{D5636DF6-2088-4651-B0DE-00C64EE59BD8}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\nmrih\sdk\hl2.exe
FirewallRules: [{92BE24F5-5726-4299-9256-6A223DC54F77}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\nmrih\sdk\hl2.exe
FirewallRules: [{7616394D-F20D-4C7D-9FC9-AA3D12C9F6AF}] => (Allow) C:\Program Files (x86)\BitTorrent Sync\BTSync.exe
FirewallRules: [{C70DD2EE-6B98-4FED-A0EA-9EB8AE479C6E}] => (Allow) C:\Program Files (x86)\BitTorrent Sync\BTSync.exe
FirewallRules: [{C8EBAAE4-0988-4689-B670-B98F6ECBA2C0}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 3\arma3launcher.exe
FirewallRules: [{7BB5405C-0C3E-4AF0-8D42-8CF9B89B1FF2}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 3\arma3launcher.exe
FirewallRules: [{EF69FCF3-1E6F-4DAD-837A-80038F48F057}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 3\arma3.exe
FirewallRules: [{66F4DAAC-7BEC-4BF2-98C5-0BF4793FA8E0}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 3\arma3.exe
FirewallRules: [{8DB42447-9A26-4AD9-BA7E-629E650FFA09}] => (Allow) c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe
FirewallRules: [{543B84F1-8A98-472C-B3A5-B0155C552E5E}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Insurgency Dedicated Server\srcds.exe
FirewallRules: [{C4A2D824-6731-46D3-8D60-2420A938474C}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Insurgency Dedicated Server\srcds.exe
FirewallRules: [{C0050EB5-CEAB-458F-B258-68087DD23D08}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Source SDK Base 2013 Multiplayer\hl2.exe
FirewallRules: [{1CAB2B16-FA70-41BE-9524-E4857492AC92}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Source SDK Base 2013 Multiplayer\hl2.exe
FirewallRules: [{8D0B282B-4AEC-41A8-9B29-1C0EFF4C2DEE}] => (Allow) E:\Program Files (x86)\Origin Games\Wing Commander III\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{5E1A7DA1-072A-42D2-AB9E-D5F1F8836E4D}] => (Allow) E:\Program Files (x86)\Origin Games\Wing Commander III\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{612078B8-897B-4912-B99C-245922391B15}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Contagion\contagionds.exe
FirewallRules: [{98EF194A-3297-49BA-B29C-855F3C750D0B}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Contagion\contagionds.exe
FirewallRules: [{C5DD5A2B-148D-470B-A3CD-B2A2643F8162}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Contagion\contagion.exe
FirewallRules: [{6E01B8BF-09A1-46C8-A472-ABEACC4C1FB6}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Contagion\contagion.exe
FirewallRules: [{C5A2B965-4599-4A24-9800-AD1625A0D1B2}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Kerbal Space Program\KSP.exe
FirewallRules: [{C5C53A1A-AF87-4831-AC8B-0D71D05E97BE}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Kerbal Space Program\KSP.exe
FirewallRules: [{CC979E70-EE6D-450F-BB84-100C07764B9A}] => (Allow) E:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{68F1DF9E-23D5-4D47-BA5B-BB3F576CC5D7}] => (Allow) E:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{A2EE57E0-1C49-4156-A441-152178B2AAF7}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Unturned\Unturned.exe
FirewallRules: [{63359197-325D-4DE4-9993-38439F877E9F}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Unturned\Unturned.exe
FirewallRules: [{7511BD15-3673-4A58-9B60-6082B2D5D4D8}] => (Allow) E:\Program Files (x86)\Origin Games\Peggle Deluxe\Peggle.exe
FirewallRules: [{87CFAC63-0BEB-4F9B-A645-D9A4B3AA2388}] => (Allow) E:\Program Files (x86)\Origin Games\Peggle Deluxe\Peggle.exe
FirewallRules: [{3560DD03-0FD8-4920-8DBC-D25FC55B9F63}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA_BE.exe
FirewallRules: [{275925D9-9912-4D27-AF43-1DCFA3BDD062}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA_BE.exe
FirewallRules: [{DCF5D9BE-E795-477A-9AC0-C2C87EE88608}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{A09F7A11-1080-4EAD-9F30-EFFACA190E94}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{EF36D240-0BD1-444B-ACB1-3457090D68F6}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe
FirewallRules: [{2DA55597-BCF6-45FF-9DF1-79CFE8211B12}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe
FirewallRules: [{FFA24F43-C2EC-4B78-9D7D-D62099A0FFF6}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Tomb Raider\TombRaider.exe
FirewallRules: [{57A5F622-9975-4975-950D-1031AC229361}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Tomb Raider\TombRaider.exe
FirewallRules: [{487A90D4-F4B0-420E-B82F-5032F0F9343B}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\The Stanley Parable\stanley.exe
FirewallRules: [{2FDB4601-3FAC-4818-8BFA-24CAB763662C}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\The Stanley Parable\stanley.exe
FirewallRules: [{153E8E23-3347-4948-A3FA-EFD0E053E66E}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\The Forest\TheForest.exe
FirewallRules: [{82E3D6DF-430D-4A9D-9D8D-8B38FB051BDF}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\The Forest\TheForest.exe
FirewallRules: [{BDDC0E72-F8B5-4CE4-9142-2FAC834964B7}] => (Block) C:\users\christian\desktop\mirc.exe
FirewallRules: [{08D181D9-6761-425A-9D5A-7BCA23A3CE54}] => (Block) C:\users\christian\desktop\mirc.exe
FirewallRules: [UDP Query User{F013D7F4-0BC9-45E3-B664-9FB2CC90DC8E}C:\users\christian\desktop\mirc.exe] => (Allow) C:\users\christian\desktop\mirc.exe
FirewallRules: [TCP Query User{DB4A2D57-8658-4E56-B4EC-071A5A7B889A}C:\users\christian\desktop\mirc.exe] => (Allow) C:\users\christian\desktop\mirc.exe
FirewallRules: [{D66A4A87-0599-4416-87A2-CB1D17A2E0A4}] => (Block) C:\program files (x86)\trillian\plugins\skypekit.exe
FirewallRules: [{63D970FA-6CC7-4D0B-8599-9B20B35D3AEB}] => (Block) C:\program files (x86)\trillian\plugins\skypekit.exe
FirewallRules: [UDP Query User{E87B4ABA-CBD0-4CAE-A640-C56F02D96DD1}C:\program files (x86)\trillian\plugins\skypekit.exe] => (Allow) C:\program files (x86)\trillian\plugins\skypekit.exe
FirewallRules: [TCP Query User{B7C35EEE-59A7-46C4-BFC4-DE52267375EF}C:\program files (x86)\trillian\plugins\skypekit.exe] => (Allow) C:\program files (x86)\trillian\plugins\skypekit.exe
FirewallRules: [{39897C98-E207-4055-A668-BDDD3753399B}] => (Block) C:\program files (x86)\mirc\mirc.exe
FirewallRules: [{38F27F7C-C936-4E42-8EC0-0A51B8138707}] => (Block) C:\program files (x86)\mirc\mirc.exe
FirewallRules: [UDP Query User{CC5E5C3D-8605-45F4-8F05-B2346F113FA1}C:\program files (x86)\mirc\mirc.exe] => (Allow) C:\program files (x86)\mirc\mirc.exe
FirewallRules: [TCP Query User{8A6C500D-F18B-4544-A85E-1B354F36AD3B}C:\program files (x86)\mirc\mirc.exe] => (Allow) C:\program files (x86)\mirc\mirc.exe
FirewallRules: [{15776FE0-1E52-47BF-885C-19BE25DEE08F}] => (Block) C:\users\christian\documents\ccglauncher\beta_103718\arma2oa.exe
FirewallRules: [{FC966D16-D2AB-441B-9835-D71FEA43395E}] => (Block) C:\users\christian\documents\ccglauncher\beta_103718\arma2oa.exe
FirewallRules: [UDP Query User{4F95AA64-BE70-4EB1-BF4A-BF4D32AD2BA2}C:\users\christian\documents\ccglauncher\beta_103718\arma2oa.exe] => (Allow) C:\users\christian\documents\ccglauncher\beta_103718\arma2oa.exe
FirewallRules: [TCP Query User{1FE3E238-4138-476D-90C4-D05849CBE061}C:\users\christian\documents\ccglauncher\beta_103718\arma2oa.exe] => (Allow) C:\users\christian\documents\ccglauncher\beta_103718\arma2oa.exe
FirewallRules: [{6BA99BE4-DF0E-465B-80A7-1D21852ADD3E}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\diriptide\DeadIslandGame_x86_rwdi.exe
FirewallRules: [{9A13FC8B-2B67-48AB-83FD-8C5423B6DC98}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\diriptide\DeadIslandGame_x86_rwdi.exe
FirewallRules: [{6C8A7949-A880-4A72-82D6-2EAF16570E25}] => (Allow) C:\Users\Christian\AppData\Roaming\Spotify\spotify.exe
FirewallRules: [{E0E3356F-0986-40EE-BCA7-56B38C4CC48B}] => (Allow) C:\Users\Christian\AppData\Roaming\Spotify\spotify.exe
FirewallRules: [{3A49D075-8A8B-4973-89D1-11AB19135010}] => (Allow) E:\Program Files (x86)\Origin Games\Plants vs. Zombies\PlantsVsZombies.exe
FirewallRules: [{0AAA334C-1588-4C97-A8CC-33D82D8C7372}] => (Allow) E:\Program Files (x86)\Origin Games\Plants vs. Zombies\PlantsVsZombies.exe
FirewallRules: [{907DD1A3-EE9B-4E88-AC5D-CDF53CBD0D02}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\South Park - The Stick of Truth\South Park - The Stick of Truth.exe
FirewallRules: [{8555DB90-C8EE-405F-B548-92F163227B32}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\South Park - The Stick of Truth\South Park - The Stick of Truth.exe
FirewallRules: [{206382DC-307C-4869-9043-F603D4896945}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Source SDK Base\hl2.exe
FirewallRules: [{011B63DC-531F-498E-B814-D396967E2BD5}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Source SDK Base\hl2.exe
FirewallRules: [{3FFF5A96-F435-409B-ABD3-752711E61C92}] => (Allow) E:\Program Files (x86)\Origin Games\Dead Space\Dead Space.exe
FirewallRules: [{6C9F8237-7C58-4F61-BE3A-70E756F224B1}] => (Allow) E:\Program Files (x86)\Origin Games\Dead Space\Dead Space.exe
FirewallRules: [{7D454C6B-0944-4173-9D92-36C408711414}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\insurgency2\insurgency.exe
FirewallRules: [{71FEB999-FBC2-4EAC-8CDE-DAF959F74CF8}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\insurgency2\insurgency.exe
FirewallRules: [UDP Query User{5B7B95B0-335C-43A6-8B5A-B4FA43D2CD11}E:\games\paintball2\paintball2.exe] => (Allow) E:\games\paintball2\paintball2.exe
FirewallRules: [TCP Query User{312F4EFC-ACA7-44F5-82E3-E0B52C31C6B1}E:\games\paintball2\paintball2.exe] => (Allow) E:\games\paintball2\paintball2.exe
FirewallRules: [{A86B5671-E22E-4679-B63E-B99747320D79}] => (Block) E:\breaking point\breakingpoint.exe
FirewallRules: [{F2C6CCAD-BF88-4D11-9B56-ABC6AC0E5F22}] => (Block) E:\breaking point\breakingpoint.exe
FirewallRules: [UDP Query User{7167B965-612D-418D-90AC-511E92D64319}E:\breaking point\breakingpoint.exe] => (Allow) E:\breaking point\breakingpoint.exe
FirewallRules: [TCP Query User{E677FC83-0F35-4CD6-92FF-787BE6925872}E:\breaking point\breakingpoint.exe] => (Allow) E:\breaking point\breakingpoint.exe
FirewallRules: [{09DB1715-F680-45E6-BD79-2C99935D32D8}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{C740A35B-709F-4C23-8929-5969F03A621F}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{3690E4F7-2EC2-4C0D-B575-5B6E7F7970DC}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Pacific Skies\AcePatrol2.exe
FirewallRules: [{0EFCB97F-702C-4332-AF8E-8CF685C28D09}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Pacific Skies\AcePatrol2.exe
FirewallRules: [{C897C1A4-0CF5-4E13-BD9B-A10D949B4B7D}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization IV Warlords\Warlords\Civ4Warlords_PitBoss.exe
FirewallRules: [{3DE9425A-F819-47B3-B64F-4FE9697D4762}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization IV Warlords\Warlords\Civ4Warlords_PitBoss.exe
FirewallRules: [{1876C470-33B4-4A68-B706-D0262CF7F993}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization IV Warlords\Warlords\Civ4Warlords.exe
FirewallRules: [{7CC5D15A-A951-4D03-919B-0B3FAFEBBA83}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization IV Warlords\Warlords\Civ4Warlords.exe
FirewallRules: [{57BCE7A2-7CAD-4276-A213-51167C47B656}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Civilization IV Colonization\Colonization.exe
FirewallRules: [{BA6F286D-EBA1-4255-8CA7-8D15AAC13F70}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Civilization IV Colonization\Colonization.exe
FirewallRules: [{4BF50BF8-5539-46DE-86E3-C824F1C2290B}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization IV Beyond the Sword\Beyond the Sword\Civ4BeyondSword.exe
FirewallRules: [{D5D9AA7F-C9E8-45BE-A61B-A34ECBE3E364}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization IV Beyond the Sword\Beyond the Sword\Civ4BeyondSword.exe
FirewallRules: [{A0EDD696-E4DD-44D2-BC9B-E0D8C99FCEFF}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Ace Patrol\AcePatrol.exe
FirewallRules: [{22D0398F-4EED-4A71-9BAE-C4C247D4705A}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Ace Patrol\AcePatrol.exe
FirewallRules: [{22AADF9A-C352-49EC-85A3-85E2D823BCAE}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization III Complete\Conquests\Civ3Conquests.exe
FirewallRules: [{52577A5F-F4FD-4885-9E21-ECE740D26030}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization III Complete\Conquests\Civ3Conquests.exe
FirewallRules: [{B3BFF787-93FA-41BD-82FC-E092B85F4ED9}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization IV\Civilization4.exe
FirewallRules: [{6C04C940-71AB-4A1C-AD60-0460FE7F199E}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization IV\Civilization4.exe
FirewallRules: [{32A3DD0D-39BF-4643-851D-3BCFEE2E8321}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Railroads\RailRoads.exe
FirewallRules: [{E14C5CB0-2828-454F-9E79-A23F8AC65549}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Railroads\RailRoads.exe
FirewallRules: [{D273C666-E61C-4BD2-80C3-36869B13EB44}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{D5E9FF72-10FB-4A40-BB93-44784FC46443}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{08AD63A0-2C98-414A-A7B6-159D845BA84E}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{3A933C25-8FAE-42A1-BEAB-EC002F37D815}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{46FD8605-CFF7-4348-A914-D296D48EB8D9}] => (Allow) LPort=7935
FirewallRules: [{5918BA56-2422-4977-A0F9-305DC1091515}] => (Allow) E:\Program Files\Adobe Flash Builder 4.6\FlashBuilder.exe
FirewallRules: [{F849273C-32CF-4354-BB13-2BCB0C3B15E8}] => (Allow) E:\Program Files\Adobe Flash Builder 4.6\FlashBuilder.exe
FirewallRules: [{143A356A-1D30-4808-AD24-3313E5159D9C}] => (Block) E:\program files (x86)\paradox interactive\victoria 2\v2game.exe
FirewallRules: [{63E7B07D-D29E-4DD2-840D-E765A65A9C61}] => (Block) E:\program files (x86)\paradox interactive\victoria 2\v2game.exe
FirewallRules: [UDP Query User{F7CB4854-27F8-4F7C-B3F6-5E9B4246FEE8}E:\program files (x86)\paradox interactive\victoria 2\v2game.exe] => (Allow) E:\program files (x86)\paradox interactive\victoria 2\v2game.exe
FirewallRules: [TCP Query User{9A2DEF4F-4C4B-4C13-8BC2-CA99A2E2E0C6}E:\program files (x86)\paradox interactive\victoria 2\v2game.exe] => (Allow) E:\program files (x86)\paradox interactive\victoria 2\v2game.exe
FirewallRules: [{F9CCFE08-25BB-42FE-9AC6-8DBAAFFD3DF1}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\SourceSDK\bin\SDKLauncher.exe
FirewallRules: [{4BF263BB-6F96-4564-8D3A-597581022498}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\SourceSDK\bin\SDKLauncher.exe
FirewallRules: [{922F8E8E-7893-4E47-B883-6CBF5F6803FB}] => (Allow) LPort=8317
FirewallRules: [{C9F11037-8DD8-4156-886C-378131E6B6F3}] => (Block) E:\program files (x86)\steam\steamapps\common\war thunder\aces.exe
FirewallRules: [{DB715758-3CB3-4683-80CC-F04183F89BBC}] => (Block) E:\program files (x86)\steam\steamapps\common\war thunder\aces.exe
FirewallRules: [UDP Query User{26E89064-CAFD-44B9-AA9B-BD04EA3FCD4B}E:\program files (x86)\steam\steamapps\common\war thunder\aces.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\war thunder\aces.exe
FirewallRules: [TCP Query User{C8B936E8-E0CC-4F6E-82DB-B2A715D93292}E:\program files (x86)\steam\steamapps\common\war thunder\aces.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\war thunder\aces.exe
FirewallRules: [{EF4BFFDE-C39A-428C-BFEF-75D4FD05F155}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\War Thunder\launcher.exe
FirewallRules: [{3184E323-F483-4FED-A52F-0CB33E2B288F}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\War Thunder\launcher.exe
FirewallRules: [{329F7472-7C48-446D-AF6E-BC5639CB7A6F}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Portal\hl2.exe
FirewallRules: [{6D537511-3ADF-453B-9825-0762FABAC0E4}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Portal\hl2.exe
FirewallRules: [{01EBD104-D643-4E2C-AD9B-648D6FF30724}] => (Block) E:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe
FirewallRules: [{0F5B2CB5-DDCA-4984-B801-5A5DF6BB3654}] => (Block) E:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe
FirewallRules: [UDP Query User{C3F648C2-39EA-405F-8BDE-49A42BB5B5C3}E:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe
FirewallRules: [TCP Query User{B245CE42-05BF-4780-B023-225FAE7F8D2A}E:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe
FirewallRules: [{52998493-A823-4FA0-8560-403D3564975D}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe
FirewallRules: [{F9520F71-83B9-48D9-A250-B4AC0B99A16B}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe
FirewallRules: [{09DA31BA-F89D-4F2C-914E-4FD7897659F8}] => (Block) E:\program files (x86)\steam\steamapps\common\the war z\infestation.exe
FirewallRules: [{8672B3D0-D55F-4E25-B3D7-49B7746E9E40}] => (Block) E:\program files (x86)\steam\steamapps\common\the war z\infestation.exe
FirewallRules: [UDP Query User{A08387E5-BBA9-468E-BDB5-51AE8176EFC5}E:\program files (x86)\steam\steamapps\common\the war z\infestation.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\the war z\infestation.exe
FirewallRules: [TCP Query User{DCB62410-5A8C-40CB-B393-0C2DD37942D3}E:\program files (x86)\steam\steamapps\common\the war z\infestation.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\the war z\infestation.exe
FirewallRules: [{1BB17B44-17A0-4A92-ABA0-46394947D76E}] => (Allow) LPort=30033
FirewallRules: [{DF22C65E-3A9C-49D1-B187-031F5412C68D}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\dota.exe
FirewallRules: [{49D4B4C1-BBB0-4611-9AD2-6C9206F89C2E}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\dota.exe
FirewallRules: [{3C583985-605A-4EA0-BF00-0F5AB39D5FAB}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{C79CFFBC-FCEA-4DE0-80F1-6CC875D07A14}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{62413B64-C4F6-49B0-AD5D-B09B1B1D6692}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{EBFA8197-DFC9-4673-B1DB-A6361D7A2682}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{4FD79604-65B9-4C95-BF77-DB14D6C828BC}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{88360E76-2C16-4C5B-B466-FE463848908B}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{DDE01896-924A-4BC4-8558-C1A8510D658A}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Just Cause 2\JustCause2.exe
FirewallRules: [{A523ACC5-F48A-4055-861A-F092C64B21D0}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Just Cause 2\JustCause2.exe
FirewallRules: [{FBEC1B12-B0F2-49F4-99DB-51F45EC06090}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Poker Night 2\PokerNight2.exe
FirewallRules: [{95F9D666-F7CC-4230-8B4F-E2CDCC3F24B6}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Poker Night 2\PokerNight2.exe
FirewallRules: [{331C2191-D384-421C-A511-9F4111A9B841}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Poker Night at the Inventory\CelebrityPoker.exe
FirewallRules: [{463ECF8B-3D60-4D86-A1BA-4E4C2C0D0936}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Poker Night at the Inventory\CelebrityPoker.exe
FirewallRules: [{B469DAFC-C1FA-482E-AA90-D0F997BD00D0}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Just Cause 2 - Multiplayer Mod\JcmpLauncher.exe
FirewallRules: [{18BFAEEC-C5BE-4DB8-956B-41AE272D6B69}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Just Cause 2 - Multiplayer Mod\JcmpLauncher.exe
FirewallRules: [{D1F20684-6BFE-4849-A5D8-E492A6B6787B}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{A28DCCC5-7FFB-4728-8650-572CAF922715}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{4FA80281-8B0A-4430-A48E-5E834837929F}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{BA296C4C-5E82-43F8-97F2-5A7B159B8A83}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{849ADED2-7A6B-460D-BEC7-654270D256F0}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{5000D550-9413-4BC1-BA3F-9FC7FD84B043}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{92F55CA7-7C9B-4781-858B-8177F09E74AA}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{493AEE7E-58C5-4296-8253-7504464F7610}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{2675D07A-CFE1-4CDD-9005-A8E09686A8ED}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{370DC8D2-8D35-4A5F-AC04-FDA59E48B3F1}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{BBD83CD4-D50F-40D6-880C-06D9B3129AC0}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{CEBDEE9C-F559-4022-A7FE-0010BF0A5771}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{11506048-548C-4494-9AA7-48DBD7967768}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{C7374F3D-97CB-40B9-A621-C692CDBA1BD1}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{599C0F32-9E41-4D61-96D7-1E4515C0B973}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{DECA1E13-97C2-4F4B-A6E6-2E641536825C}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{8E5164C5-3B9C-4EDA-84F4-F59BEDDF960A}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{73F45CDF-E960-4518-803C-CC930DE32BBD}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{B88C6E36-5F9B-46F4-BB1F-DC86A8167C25}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{CCC99E9B-B055-4909-AFEF-84AA57C17741}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{A45D6167-BDBA-4956-AE41-4778B853CA08}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Portal 2\portal2.exe
FirewallRules: [{DCD8E182-B839-410D-B84A-AA3C56475E21}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Portal 2\portal2.exe
FirewallRules: [{008D8112-B18A-4860-A56A-BDC09D1F54B2}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{2B08C08E-971F-4B27-B3C6-96925BCA0075}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{D1F5F36C-F430-4686-ABCE-F605B408E782}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{F9CABDFC-0DBF-4615-A68B-034EF7B6B5FF}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{E1D4EC1C-D4DB-4169-B9F7-89D025EAB1C7}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{EB8C7038-3A1E-4E3F-8986-732A2F002198}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{4063916F-6C37-40D2-8F36-B39FA78A4A06}] => (Block) E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oaserver.exe
FirewallRules: [{5F071A74-3E33-4485-8770-B636CA4F5515}] => (Block) E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oaserver.exe
FirewallRules: [UDP Query User{9C8CE3A8-4BA2-4E3D-8A46-A1141336AF83}E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oaserver.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oaserver.exe
FirewallRules: [TCP Query User{8B2D6374-1F6D-4FDA-AD13-6FD8A022AAB5}E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oaserver.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\arma2oaserver.exe
FirewallRules: [{32FD03D1-F654-4CC4-8800-ED56E790FB4F}] => (Block) E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oaserver.exe
FirewallRules: [{49D85312-3E87-4E4A-A31E-FA8403CC155E}] => (Block) E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oaserver.exe
FirewallRules: [UDP Query User{C962B6B2-45C7-4CBA-A20C-2E5646E14DA4}E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oaserver.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oaserver.exe
FirewallRules: [TCP Query User{853F6EB9-CC7C-48AD-A3F6-FFCE334F45EA}E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oaserver.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oaserver.exe
FirewallRules: [{6799EBDF-3564-47EF-A6DD-99DFE49F2D31}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{4780A5BD-7C60-4654-941E-8BD4C5C8EEAA}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{4A5718E2-7868-4FE6-A7FD-DC64CED647CE}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 3 Server\arma3server_readme.txt
FirewallRules: [{87EFBE50-9FD6-4CF0-8BDC-ABCF8CFE949A}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 3 Server\arma3server_readme.txt
FirewallRules: [{CCD5D7E3-915C-4AAE-8DA8-7CA5B37E5DAC}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops Rcon\BlackOpsRcon.exe
FirewallRules: [{B792AB39-7844-4712-8DD1-1A0BDFAFFE84}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops Rcon\BlackOpsRcon.exe
FirewallRules: [{F937B0A8-887C-4DE7-82FB-75DD3D37D822}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{37337C8C-3B38-4EFD-8503-57CC1F5D3B39}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{BAB4A83C-6925-434E-9C8A-61CB727D38AB}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{C990A3DF-3505-4BFC-8F25-2E09F1CE1092}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{1177576B-228E-4F5A-8FCD-719525C1620D}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [{0FCFAD7D-6768-4698-9613-ECC5CCA343C9}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [{EB7EF4E2-8708-4AE3-8CB9-5D1FA50E02F9}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{FA3A7C39-83C9-4D33-A7ED-800E86FA0833}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{EF82017E-4458-4842-B15C-2A3F5FB42D4A}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{81116DED-8909-4AAE-A32D-7F31B85C89C4}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{F9D975EF-2918-4051-B730-A2A60E60457D}] => (Block) E:\program files (x86)\steam\steamapps\common\arma 3\arma3server.exe
FirewallRules: [{1B7AC9D8-5B4A-4755-BF29-2BC5E2801004}] => (Block) E:\program files (x86)\steam\steamapps\common\arma 3\arma3server.exe
FirewallRules: [UDP Query User{E688BBB4-9846-47DC-875E-838C765111CA}E:\program files (x86)\steam\steamapps\common\arma 3\arma3server.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\arma 3\arma3server.exe
FirewallRules: [TCP Query User{1B8A3C2B-994B-45E7-8D9C-63CDF993CBE2}E:\program files (x86)\steam\steamapps\common\arma 3\arma3server.exe] => (Allow) E:\program files (x86)\steam\steamapps\common\arma 3\arma3server.exe
FirewallRules: [{878D05F4-8CF9-46A6-B395-8F34D55BC1D1}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\dota.exe
FirewallRules: [{C7F3DFEB-2594-4EF0-BB94-E041D5942BEF}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\dota.exe
FirewallRules: [{E5F98A24-1088-49BB-A671-FD2EFFCA0C94}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Dungeon Defenders\Binaries\Win32\DungeonDefenders.exe
FirewallRules: [{42DD6C98-1334-42E6-B755-6D6D8B1D5011}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Dungeon Defenders\Binaries\Win32\DungeonDefenders.exe
FirewallRules: [{F61013F3-F635-423C-8FAB-B5EB3B722E84}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Magicka\Magicka.exe
FirewallRules: [{5D2202A0-1588-4F92-AA0C-DB4275B335EB}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Magicka\Magicka.exe
FirewallRules: [{2BCCB500-F629-49FD-806C-DDF412C0CA92}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\FTL Faster Than Light\FTLGame.exe
FirewallRules: [{B33626D6-6D58-4759-ABA9-A3AF984BDD77}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\FTL Faster Than Light\FTLGame.exe
FirewallRules: [{2509876C-237C-4146-BB1B-5EA18B1A744F}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{8AFCA206-D4C0-4388-8228-668D60C15795}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{C46A42D4-2A9E-483B-8AA3-41A77373ACCA}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Cities XL Platinum\CitiesXL_Platinum.exe
FirewallRules: [{4B7C4AB1-0446-468B-B516-1CACE7473C17}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Cities XL Platinum\CitiesXL_Platinum.exe
FirewallRules: [{8AF0B653-0D57-4237-AE9F-7CE5EB38FB01}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\CastleCrashers\castle.exe
FirewallRules: [{1DD1F6D1-4854-4208-8DA0-E470F30D701D}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\CastleCrashers\castle.exe
FirewallRules: [{38CED98B-6172-4658-A3CC-19F9B1D622EC}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{345FCC5F-5DD5-4A91-8483-2B45143C542B}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{39609370-7AE1-435A-B651-D96B20A99C98}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOpsMP.exe
FirewallRules: [{8BB6470C-274F-4A1F-B712-D1A0671F0809}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOpsMP.exe
FirewallRules: [{222482AE-3EE7-4004-ABAB-1D4CD383EF61}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{3E6DBB95-BC9F-4481-BDDF-B8B735784D7C}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{736A35CE-4052-433A-A5E5-536C5F420D70}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{980AFB78-53CF-4834-93D6-2501FDF681B0}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{756E8505-B62C-4AA2-9E75-378FA39436A2}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{D63B2D37-4B19-4312-A3A3-AD00EEB24C15}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{7CCCE7E9-2108-49A4-AC96-8B79384B0535}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{E813535E-D420-4DF3-A67F-9F8C27289C3C}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{58CBA23C-870C-4C77-A24B-0083E2111C7F}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{3E1A9506-1CF2-447D-805D-CA8F78DE1877}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{07C84C98-4BFD-44F6-A333-318C0F2B8FF5}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite V2\bin\SniperEliteV2.exe
FirewallRules: [{EA07F36F-BED3-40B7-9264-5ABA672CB492}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite V2\bin\SniperEliteV2.exe
FirewallRules: [{03ABE0BB-E3B9-4711-A1DC-210784F8C897}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{97BF1F8B-B840-4DE1-9312-577AE2CCDE76}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{D1556776-B56B-4AC2-A63F-16F240BBA515}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{4E2AD639-00D9-496D-BCFB-17B2676129FB}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{D132BD24-42EE-4DFA-9993-C5B929362750}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{34C21A3B-0F84-455E-AEB5-45D556572104}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{08B707F5-595F-4E8E-83C1-C76DD97A3F52}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{7F698FE6-EFBC-423B-8B3B-6EAA58D4E078}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{5C7074D4-8336-4224-9BF9-9AB4B5FCA991}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{AF092B50-58B1-42E3-876C-F130D73FAD3C}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{96A389C3-8927-4C4D-811D-38B20CBBE979}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{15A71C64-D704-4ACA-9E55-F76873522176}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{BB62DB5E-B286-4E77-8C91-379317E07177}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{C39E2BA5-4681-4A74-9C47-F8F3AB229A40}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{5129F014-B254-476F-A368-35F3ADE0FFF7}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{C19BB8CA-8666-44E4-9DC4-36D9BC166577}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{9C47D641-55E5-41EA-B1A9-7FE2F6E47705}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{AFD85689-C933-4D2E-B3A2-2E6D15167733}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{A71424E3-721D-4F2E-8118-9DDD2A0723F6}] => (Allow) E:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{B8DADE39-A88A-4CD3-A6F7-691EE1AC153C}] => (Allow) E:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{68A1F2B7-5EF5-4566-9591-02DD7F087F37}] => (Allow) E:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{145ECC7D-D8DE-47CC-B5E2-6E28283F1849}] => (Allow) E:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [UDP Query User{22B3EB1E-9899-4283-A059-ACA06C23412F}E:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) E:\program files (x86)\origin games\battlefield 4\bf4.exe
FirewallRules: [TCP Query User{A2452E32-E907-4D12-961B-032DD0F96698}E:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) E:\program files (x86)\origin games\battlefield 4\bf4.exe
FirewallRules: [UDP Query User{D9560B02-441E-415D-81EF-F33062DE85B0}C:\users\christian\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\christian\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{12CA7606-80F2-4534-82E8-E96C894FDF2A}C:\users\christian\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\christian\appdata\roaming\spotify\spotify.exe
FirewallRules: [{C7D5E27A-5711-49DF-A184-7C352B4E619F}] => (Allow) LPort=1900
FirewallRules: [{0E953FB2-6DC7-4C56-8761-CD97AE9CC267}] => (Allow) LPort=2869
FirewallRules: [{61BFA9C5-CE5F-4F37-912E-F4A77DB07025}] => (Allow) C:\Users\Christian\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{D6A0B5DA-251E-4482-9E8F-52AC1254CC91}] => (Allow) E:\users\christian\ts3\teamspeak3-server_win64\ts3server_win64.exe
FirewallRules: [{0AECA6A3-B46E-4C28-AD8C-C83A35551B52}] => (Allow) E:\users\christian\ts3\teamspeak3-server_win64\ts3server_win64.exe
FirewallRules: [UDP Query User{D5CD2566-9898-478F-AC8B-903D8DE0BF0A}E:\users\christian\ts3\teamspeak3-server_win64\ts3server_win64.exe] => (Allow) E:\users\christian\ts3\teamspeak3-server_win64\ts3server_win64.exe
FirewallRules: [TCP Query User{17AA43AE-5AD4-4FD4-8E9A-06908D891878}E:\users\christian\ts3\teamspeak3-server_win64\ts3server_win64.exe] => (Allow) E:\users\christian\ts3\teamspeak3-server_win64\ts3server_win64.exe
FirewallRules: [{34852B4B-BC4F-4CA7-B65D-E017137E8375}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{AE7A802B-0B12-4741-B1C1-0811C820EC15}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{2E1091DA-A5DD-4A61-ABD5-267BAEB9E457}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{1AA9F407-4D20-4A93-AEBC-69F5F70ACE9D}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [UDP Query User{8AB2C590-B872-4360-BEA1-E93783D26918}C:\users\christian\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\christian\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{5F59D164-7FBD-49B9-9CDC-A528F30908B4}C:\users\christian\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\christian\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{C08DBEAE-AE2C-4A3D-B1DF-3B10BB2E458C}] => (Allow) C:\Users\Christian\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{26C8119D-DC2E-466A-BBEE-8CD86AC38689}] => (Allow) C:\Users\Christian\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{31BED915-E6F4-423D-950F-CBD0C34853D6}] => (Allow) e:\Program Files (x86)\7DaysToDie-Alpha\7DaysToDie.exe
FirewallRules: [{4384AC3F-BFD6-466D-9432-626FF84F80A5}] => (Allow) e:\Program Files (x86)\7DaysToDie-Alpha\7DaysToDie.exe
FirewallRules: [UDP Query User{D4595A5B-94DB-4A24-A694-D7BCA91475B6}E:\program files (x86)\six projects\six updater\tools\bin\rsync.exe] => (Allow) E:\program files (x86)\six projects\six updater\tools\bin\rsync.exe
FirewallRules: [TCP Query User{FFA52CF7-F838-4C56-B5F0-3A5D18845036}E:\program files (x86)\six projects\six updater\tools\bin\rsync.exe] => (Allow) E:\program files (x86)\six projects\six updater\tools\bin\rsync.exe
FirewallRules: [UDP Query User{5B9C100E-CABC-4BE9-9F73-7B498958A21C}C:\users\christian\documents\arma 2\expansion\beta\arma2oa.exe] => (Allow) C:\users\christian\documents\arma 2\expansion\beta\arma2oa.exe
FirewallRules: [TCP Query User{F7925ECA-E196-430B-919D-2BF6567217AF}C:\users\christian\documents\arma 2\expansion\beta\arma2oa.exe] => (Allow) C:\users\christian\documents\arma 2\expansion\beta\arma2oa.exe
FirewallRules: [UDP Query User{3286DFC7-183D-48B5-9B75-ABE1C74D63A6}E:\users\christian\downloads\teamspeak3-server_win64-3.0.7.2\teamspeak3-server_win64\ts3server_win64.exe] => (Allow) E:\users\christian\downloads\teamspeak3-server_win64-3.0.7.2\teamspeak3-server_win64\ts3server_win64.exe
FirewallRules: [TCP Query User{980C42A6-571F-438B-B36F-4AF27D86A7CF}E:\users\christian\downloads\teamspeak3-server_win64-3.0.7.2\teamspeak3-server_win64\ts3server_win64.exe] => (Allow) E:\users\christian\downloads\teamspeak3-server_win64-3.0.7.2\teamspeak3-server_win64\ts3server_win64.exe
FirewallRules: [{4B13B6EA-B1A0-4352-91C4-B91A16D58716}] => (Allow) C:\Program Files\HP\HP Officejet 6700\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{6BFBECE6-90B5-4789-84EE-6D0F666C6741}] => (Allow) C:\Program Files\HP\HP Officejet 6700\Bin\HPNetworkCommunicator.exe
FirewallRules: [{FF98AFB3-D672-4FA8-A9DA-A7C0CD52A360}] => (Allow) C:\Program Files\HP\HP Officejet 6700\Bin\DeviceSetup.exe
FirewallRules: [{6C80D7D1-7D15-4ADE-9CE4-EE13A2A6BF5E}] => (Allow) C:\Program Files\HP\HP Officejet 6700\bin\SendAFax.exe
FirewallRules: [{F54D28A3-CBBA-4ABB-A7C4-6BE7D6E97DD4}] => (Allow) C:\Program Files\HP\HP Officejet 6700\bin\DigitalWizards.exe
FirewallRules: [{C7A73513-5A90-4F03-8FA4-750AD0AC06AA}] => (Allow) C:\Program Files\HP\HP Officejet 6700\bin\FaxApplications.exe
FirewallRules: [{C00748DC-5982-4F1B-8A85-14FEDC4A4B65}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{10434351-B094-447D-9A4B-70870489E17D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{43EFDC73-1AFA-4D21-A6D7-0D2E264E3A22}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{E69E325A-CFEB-49E1-9A6A-0C3955ACB26E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{AD4AB134-9D54-488F-9C2F-C0762EB20737}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{FDC4D5FF-C78C-40C1-AA4E-9FADA9B5B8F8}] => (Allow) C:\Program Files (x86)\Google\Google Talk\googletalk.exe
FirewallRules: [{92718C3E-EF26-4B35-AFFE-1B14342C4B15}] => (Allow) C:\Program Files (x86)\Google\Google Talk\googletalk.exe
FirewallRules: [{B7EA6D3E-63D2-46C4-B768-87C549839C48}] => (Allow) LPort=1900
FirewallRules: [{9FE23E7B-50B6-4322-B241-798EFFBE4198}] => (Allow) LPort=2869
FirewallRules: [{31980898-8C93-48BF-AC84-ABA185D50DDC}] => (Allow) LPort=1900
FirewallRules: [{45C839CB-A4AE-4AD5-A883-0E129E263558}] => (Allow) LPort=2869
FirewallRules: [{B2FB47D4-9FDE-4347-B8EC-5BCA3B76FEB3}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
FirewallRules: [{08A304F8-C46C-4DCB-9D25-8952BEEFF1E9}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
FirewallRules: [{AFA70EE5-6FA2-4E9B-8A91-A90C63285DED}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFi GO! Server.exe
FirewallRules: [{4AC6ED38-3ABA-4F6F-AB40-F9445CAE7CEE}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFi GO! Server.exe
FirewallRules: [{85A5403E-1493-4101-86AD-80A568B741BC}] => (Allow) I:\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [{A376BECC-1642-4357-BD8F-FF7E3F8B24AF}] => (Allow) I:\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [{B0EF6457-2677-4EA1-9CFA-302DF43B91E5}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{B7C50FB0-B82B-48B4-9902-19B0BE5E2884}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{33C5ADB7-479E-481A-8975-BF26A78AE04B}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty Black Ops III Beta\BlackOps3.exe
FirewallRules: [{2C2FD143-9626-44DF-BAA9-DF438F3DB56F}] => (Allow) I:\SteamLibrary\steamapps\common\Call of Duty Black Ops III Beta\BlackOps3.exe
FirewallRules: [{F5D2F0E2-034B-40CA-BB1D-559560CC2C89}] => (Allow) I:\SteamLibrary\steamapps\common\Stealth Inc 2\settings\settings.exe
FirewallRules: [{46AD5FAB-E133-4AD6-BC7C-F01B81EC1684}] => (Allow) I:\SteamLibrary\steamapps\common\Stealth Inc 2\settings\settings.exe
FirewallRules: [{612FB0B0-A6E3-4A50-9CAB-77DB8B78940E}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{D1C03DA4-482B-4229-B6E4-B17D07F3BA7E}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{259A80A5-9BCF-463D-A683-D0A4744A32C3}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{C15E3964-0B94-4714-B880-BEAFFC64B507}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{7A6A7746-3DE0-4E3A-8D64-6175D54A137D}] => (Allow) E:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{A9BFA494-27CE-4478-8FC1-AB788461A01D}] => (Allow) E:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{C2973967-11B5-434D-9299-D5A300224FA1}] => (Allow) I:\SteamLibrary\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{2453C9AB-8B36-46ED-9858-E2FAF403E555}] => (Allow) I:\SteamLibrary\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [TCP Query User{FF1AB6E5-C135-4839-B457-B710E2B14547}C:\program files (x86)\java\jre1.8.0_40\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_40\bin\java.exe
FirewallRules: [UDP Query User{13BA534A-F825-40D6-BE07-EFAF64540A2B}C:\program files (x86)\java\jre1.8.0_40\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_40\bin\java.exe
FirewallRules: [{9DE15098-C621-4274-8433-D76CB2397BA7}] => (Allow) E:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [{4B183D52-DD34-49C8-AE2A-743CE2B5A231}] => (Allow) E:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [{04BC63B0-A1F7-40C8-A7CC-89800ABFA26C}] => (Allow) E:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe
FirewallRules: [{ED6942BE-E3AE-442C-BD31-42ED1001FA16}] => (Allow) E:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe
FirewallRules: [{CBEC20CD-62E4-42D3-9D3B-3E6110335D51}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3FBBE953-13EA-42CF-BA47-CD93DAF67CDE}] => (Allow) E:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8A36B334-227D-4000-899E-585730BFAF81}] => (Allow) I:\SteamLibrary\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{0F36723F-0EEE-496B-AC0F-C664FA97236A}] => (Allow) I:\SteamLibrary\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{F5FC6412-141D-4032-8A27-F8DA75769563}] => (Allow) I:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\bin\SDKLauncher.exe
FirewallRules: [{FFDA4F49-31C7-4301-9B87-5ECF9D6D1907}] => (Allow) I:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\bin\SDKLauncher.exe
FirewallRules: [{22FC65F6-EA33-4484-ADCD-9BABDEE6DCA8}] => (Allow) E:\Program Files (x86)\Origin Games\BFH\BFHWebHelper.exe
FirewallRules: [{9A81B400-F604-4BEE-8923-6AE9FC1236F6}] => (Allow) E:\Program Files (x86)\Origin Games\BFH\BFHWebHelper.exe
FirewallRules: [{A83263E7-D276-4BD9-A60A-7B07CCBA1258}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (10/01/2015 06:27:23 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: CHRISTIANDESKPC)
Description: Activation of app Microsoft.XboxIdentityProvider_cw5n1h2txyewy!Microsoft.XboxIdentityProvider failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information.
 
Error: (10/01/2015 05:45:38 PM) (Source: MsiInstaller) (EventID: 11714) (User: NT AUTHORITY)
Description: Product: LogMeIn Hamachi -- Error 1714. The older version of LogMeIn Hamachi cannot be removed.  Contact your technical support group.  System Error 1612.
 
 
System errors:
=============
Error: (10/02/2015 03:23:25 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: The Xbox Live Auth Manager service terminated with the following service-specific error: 
%%0
 
Error: (10/01/2015 06:35:15 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: The Xbox Live Auth Manager service terminated with the following service-specific error: 
%%0
 
Error: (10/01/2015 06:27:59 PM) (Source: SbieSvc) (EventID: 9234) (User: )
Description: SBIE9234 Service startup error level 9153 status=C0000001 error=-1073741823
 
Error: (10/01/2015 06:27:56 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Net.Tcp Listener Adapter service depends on the Net.Tcp Port Sharing Service service which failed to start because of the following error: 
%%1058
 
Error: (10/01/2015 06:27:55 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Norton Identity Safe service failed to start due to the following error: 
%%5
 
Error: (10/01/2015 06:27:55 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The avnetflt service failed to start due to the following error: 
%%2
 
Error: (10/01/2015 06:27:54 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{22279AF5-03AE-4CAF-989D-2530918B2F1C}{0773CCD6-59A2-4D26-B235-19247767E645}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable
 
Error: (10/01/2015 06:27:54 PM) (Source: SbieDrv) (EventID: 1103) (User: )
Description: SBIE1103 Sandboxie driver (SbieDrv) version 4.14 failed to start
 
Error: (10/01/2015 06:27:54 PM) (Source: SbieDrv) (EventID: 1105) (User: )
Description: SBIE1105 Unknown operating system version:  10.0 (10240)
 
Error: (10/01/2015 06:27:54 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{22279AF5-03AE-4CAF-989D-2530918B2F1C}{0773CCD6-59A2-4D26-B235-19247767E645}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable
 
 
CodeIntegrity:
===================================
  Date: 2015-10-02 03:32:41.886
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-10-02 03:32:41.796
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-10-01 18:27:50.295
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vsnd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2015-10-01 18:22:37.340
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vsnd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2015-10-01 18:06:27.553
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-10-01 18:06:27.538
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-10-01 17:45:27.295
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vsnd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2015-10-01 11:24:48.450
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-10-01 11:24:48.435
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-10-01 11:17:04.231
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\vsnd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™ i7-3770K CPU @ 3.50GHz
Percentage of memory in use: 17%
Total physical RAM: 16328.42 MB
Available physical RAM: 13485.06 MB
Total Virtual: 32712.42 MB
Available Virtual: 29663.83 MB
 
==================== Drives ================================
 
Drive c: (SSD) (Fixed) (Total:237.94 GB) (Free:55.63 GB) NTFS
Drive d: (SCOOBYDOO_LIVE_ACTION) (CDROM) (Total:7.62 GB) (Free:0 GB) UDF
Drive e: (1TB HD) (Fixed) (Total:931.51 GB) (Free:58.54 GB) NTFS
Drive i: (4TB HD) (Fixed) (Total:3725.9 GB) (Free:2960.57 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 238.5 GB) (Disk ID: 80EA82DA)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=237.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
 
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 6990C34E)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
 
========================================================
Disk: 2 (Size: 3726 GB) (Disk ID: 2C3061ED)
 
Partition: GPT.
 
==================== End of Addition.txt ============================

  • 0

#20
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,025 posts
  • MVP

Uninstall Sandboxie 4.14.  It doesn't seem to work on Win 10.

 

 

Download the attached fixlist.txt to the same location as FRST
Run FRST and press Fix
A fix log will be generated please post that.  Run FRST again, check the Additions box and then Scan.  You will get two logs.  Post them both.

 

I see you now have TeamViewer and are trying to get rid of LogMeIn but it's not working.  Do you want me to kill off LogMeIn for you?

 

Get Process Explorer

http://live.sysinter...com/procexp.exe
Save it to your desktop then run it (Vista or Win7 - right click and Run As Administrator).  

View, Select Column, check Verified Signer, OK
Options, Verify Image Signatures


Click twice on the CPU column header  to sort things by CPU usage with the big hitters at the top.  

Wait a full minute then:

File, Save As, Save.  Open the file Procexp.txt on your desktop and copy and paste the text to a reply.
 

 

Get the free version of Speccy:

http://www.filehippo.com/download_speccy (Look in the upper right for the Download
Latest Version button  - Do NOT press the large Start Download button on the upper left!)  Download, Save and Install it.  

Close all browsers and open progrms before running Speccy.  Run Speccy.  When it finishes (the little icon in the bottom left will stop moving), File, Save as Text File,  (to your desktop) note the name it gives. OK.  Open the file in notepad and delete the line that gives the serial number of your Operating System.  (It will be near the top about 10 lines down.)  Save the file and close notepad  Attach the file to your next post as it is usually too large for the forum (Click on More Reply Options then Choose file, select the file, Open, Attach this File) Uninstall Speccy.

 

I've got to go on a trip today but should be back on line this evening. 

 


  • 0

#21
rockitout

rockitout

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 130 posts

I followed your instructions and the logs are listed below.  I forgot to rerun the FRST until the end, but I did run it and the logs are included.   As far as LogMeIn, I still use it.  Do you recommend I reinstall it?

 

Fix result of Farbar Recovery Scan Tool (x64) Version:03-10-2015
Ran by Christian (2015-10-03 18:04:32) Run:2
Running from C:\Users\Christian\Desktop
Loaded Profiles: Christian (Available Profiles: Christian & DefaultAppPool)
Boot Mode: Normal
==============================================
 
fixlist content:
*****************
BHO: Norton Identity Protection -> {AB4C7833-A6EC-433f-B9FE-6B14B1A2F836} -> C:\Program Files (x86)\Norton Identity Safe\Engine64\2014.7.11.42\coIEPlg.dll No File
BHO-x32: Norton Identity Protection -> {AB4C7833-A6EC-433f-B9FE-6B14B1A2F836} -> C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\coIEPlg.dll No File
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  No File
Toolbar: HKLM - Norton Identity Safe Toolbar - {A13C2648-91D4-4bf3-BC6D-0079707C4389} - C:\Program Files (x86)\Norton Identity Safe\Engine64\2014.7.11.42\coIEPlg.dll No File
Toolbar: HKLM-x32 - Norton Identity Safe Toolbar - {A13C2648-91D4-4bf3-BC6D-0079707C4389} - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\coIEPlg.dll No File
Toolbar: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
FF Plugin: @esn/npbattlelog,version=2.5.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.0\npbattlelogx64.dll [No File]
FF Plugin: @esn/npbattlelog,version=2.7.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.0\npbattlelogx64.dll [No File]
FF Plugin-x32: @esn/npbattlelog,version=2.5.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.0\npbattlelog.dll [No File]
FF Plugin-x32: @esn/npbattlelog,version=2.7.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.0\npbattlelog.dll [No File]
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Extension: No Name - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2015-09-25]
FF Extension: No Name - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] [2015-09-25] 
FF HKLM-x32\...\Firefox\Extensions: [{F04D2D30-776C-4d02-8627-8E4385ECA58D}] - C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2014.7.0.47\coFFPlgn => not found
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext => not found
CHR DefaultSearchURL: Default -> hxxps://safesearch.avira.com/#web/result?source=omnibar&q={searchTerms}
CHR DefaultSearchKeyword: Default -> Avira
CHR DefaultSuggestURL: Default -> hxxps://safesearch.avira.com/suggestions?q={searchTerms}&li=ff&hl=en
CHR Extension: (Norton Security Toolbar) - C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nppllibpnmahfaklnpggkibhkapjkeob [2014-06-13]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [khjilmcjipkeokomeekfnhkpbnhmgaje] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [nppllibpnmahfaklnpggkibhkapjkeob] - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\Exts\Chrome.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [khjilmcjipkeokomeekfnhkpbnhmgaje] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [nppllibpnmahfaklnpggkibhkapjkeob] - C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\Exts\Chrome.crx <not found>
S2 NCO; "C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\NST.exe" /s "NCO" /m "C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\diMaster.dll" /prefetch:1
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2015-09-01] (Avira Operations GmbH & Co. KG) 
R1 ccSet_NST; C:\Windows\system32\drivers\NSTx64\7DE070B0.02A\ccSetx64.sys [162392 2013-09-27] (Symantec Corporation)
S2 avgntflt; system32\DRIVERS\avgntflt.sys [X]
S1 avipbb; \SystemRoot\system32\DRIVERS\avipbb.sys [X]
S2 avnetflt; \SystemRoot\system32\DRIVERS\avnetflt.sys [X]
S2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [174600 2014-10-14] (Sandboxie Holdings, LLC)
U3 idsvc; no ImagePath
S3 VBoxNetFlt; \SystemRoot\system32\DRIVERS\VBoxNetFlt.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; no ImagePath
2015-09-30 19:11 - 2015-09-30 19:11 - 04559688 _____ (Avira Operations GmbH & Co. KG) C:\Users\Christian\Downloads\avira_en_av_5605c195aa733__ws (2).exe
2015-09-25 20:17 - 2015-09-01 17:09 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2015-09-25 20:09 - 2015-09-25 20:17 - 00000000 ____D C:\ProgramData\Avira
2015-09-25 20:09 - 2015-09-25 20:17 - 00000000 ____D C:\Program Files (x86)\Avira
2015-09-05 16:07 - 2015-09-05 16:07 - 0000006 ____S () C:\ProgramData\cfc4764f3bbfae7c2c155456e0ae08a61242b9ff
2015-08-04 09:30 - 2015-08-04 09:30 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-12-07 11:24 - 2014-12-07 11:24 - 0005045 _____ () C:\ProgramData\wmzddnmb.cix
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2015\Inventor Server\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2015\Inventor Server\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2015\Inventor Server\Bin\TestServer.dll => No File
Task: {20AF6801-E267-4B73-B400-66A1E0BD8B34} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {2162D55C-72E0-44F3-9CBC-3E8F9EB3D218} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {253C4637-EF43-477A-8982-5C37BB3D484E} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {27A8C9CD-9C1C-48AF-AC09-DD4EF9255022} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {2F2E2878-3F6C-4487-AF4C-148B55FAF5AD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {7A11C935-1670-4B49-B693-E510607F5282} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {7C540B0C-4605-450C-82C6-E73735A403A7} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {80218F04-0F60-44FA-9D97-3CB837134488} - System32\Tasks\Norton Identity Safe\Norton Error Processor => C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.11.42\SymErr.exe
Task: {8BCADE15-B74D-47F2-B4E8-7FE014F3482C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {8F4C3A2F-D807-437E-BAA4-10DF9721ED47} - \Microsoft\Windows\File Classification Infrastructure\Property Definition Sync -> No File <==== ATTENTION
Task: {DA39A95A-A466-4196-A764-FEEBDB29A6BF} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {ED54F4B6-75A7-43E1-BEFB-FCCAA0F96E9A} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {FF659939-9CFF-40F0-92A8-D461B00A9E5C} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
CMD: sc config NetTcpActivator start= disabled
 
 
 
 
 
 
 
 
*****************
 
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AB4C7833-A6EC-433f-B9FE-6B14B1A2F836}" => key removed successfully
"HKCR\CLSID\{AB4C7833-A6EC-433f-B9FE-6B14B1A2F836}" => key removed successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AB4C7833-A6EC-433f-B9FE-6B14B1A2F836}" => key removed successfully
"HKCR\Wow6432Node\CLSID\{AB4C7833-A6EC-433f-B9FE-6B14B1A2F836}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => value removed successfully
HKCR\CLSID\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => key not found. 
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{A13C2648-91D4-4bf3-BC6D-0079707C4389} => value removed successfully
"HKCR\CLSID\{A13C2648-91D4-4bf3-BC6D-0079707C4389}" => key removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{A13C2648-91D4-4bf3-BC6D-0079707C4389} => value removed successfully
"HKCR\Wow6432Node\CLSID\{A13C2648-91D4-4bf3-BC6D-0079707C4389}" => key removed successfully
HKU\S-1-5-21-2842136386-2703010871-4203806482-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => value removed successfully
HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => key not found. 
"HKLM\Software\MozillaPlugins\@esn/npbattlelog,version=2.5.0" => key removed successfully
"HKLM\Software\MozillaPlugins\@esn/npbattlelog,version=2.7.0" => key removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@esn/npbattlelog,version=2.5.0" => key removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@esn/npbattlelog,version=2.7.0" => key removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@pandonetworks.com/PandoWebPlugin" => key removed successfully
C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] => moved successfully
C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\Extensions\[email protected] => moved successfully
HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\{F04D2D30-776C-4d02-8627-8E4385ECA58D} => value removed successfully
HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758} => value removed successfully
Chrome DefaultSearchURL removed successfully
Chrome DefaultSearchKeyword removed successfully
Chrome DefaultSuggestURL removed successfully
C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nppllibpnmahfaklnpggkibhkapjkeob => moved successfully
"HKLM\SOFTWARE\Google\Chrome\Extensions\flliilndjeohchalpbbcdekjklbdgfkk" => key removed successfully
"HKLM\SOFTWARE\Google\Chrome\Extensions\iikflkcanblccfahdhdonehdalibjnif" => key removed successfully
"HKLM\SOFTWARE\Google\Chrome\Extensions\khjilmcjipkeokomeekfnhkpbnhmgaje" => key removed successfully
"HKLM\SOFTWARE\Google\Chrome\Extensions\nppllibpnmahfaklnpggkibhkapjkeob" => key removed successfully
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\flliilndjeohchalpbbcdekjklbdgfkk" => key removed successfully
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\iikflkcanblccfahdhdonehdalibjnif" => key removed successfully
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\khjilmcjipkeokomeekfnhkpbnhmgaje" => key removed successfully
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\nppllibpnmahfaklnpggkibhkapjkeob" => key removed successfully
NCO => service removed successfully
avkmgr => Unable to stop service.
avkmgr => service removed successfully
ccSet_NST => Unable to stop service.
ccSet_NST => service removed successfully
avgntflt => service removed successfully
avipbb => service removed successfully
avnetflt => service removed successfully
SbieSvc => service not found.
idsvc => service removed successfully
VBoxNetFlt => service removed successfully
wfpcapture => service removed successfully
wpcsvc => service removed successfully
C:\Users\Christian\Downloads\avira_en_av_5605c195aa733__ws (2).exe => moved successfully
C:\WINDOWS\system32\Drivers\avkmgr.sys => moved successfully
C:\ProgramData\Avira => moved successfully
C:\Program Files (x86)\Avira => moved successfully
C:\ProgramData\cfc4764f3bbfae7c2c155456e0ae08a61242b9ff => moved successfully
C:\ProgramData\DP45977C.lfl => moved successfully
C:\ProgramData\wmzddnmb.cix => moved successfully
"HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}" => key removed successfully
"HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}" => key removed successfully
"HKU\S-1-5-21-2842136386-2703010871-4203806482-1000_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{20AF6801-E267-4B73-B400-66A1E0BD8B34}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{20AF6801-E267-4B73-B400-66A1E0BD8B34}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2162D55C-72E0-44F3-9CBC-3E8F9EB3D218}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2162D55C-72E0-44F3-9CBC-3E8F9EB3D218}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{253C4637-EF43-477A-8982-5C37BB3D484E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{253C4637-EF43-477A-8982-5C37BB3D484E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{27A8C9CD-9C1C-48AF-AC09-DD4EF9255022}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{27A8C9CD-9C1C-48AF-AC09-DD4EF9255022}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2F2E2878-3F6C-4487-AF4C-148B55FAF5AD}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2F2E2878-3F6C-4487-AF4C-148B55FAF5AD}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7A11C935-1670-4B49-B693-E510607F5282}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7A11C935-1670-4B49-B693-E510607F5282}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{7C540B0C-4605-450C-82C6-E73735A403A7}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7C540B0C-4605-450C-82C6-E73735A403A7}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{80218F04-0F60-44FA-9D97-3CB837134488}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{80218F04-0F60-44FA-9D97-3CB837134488}" => key removed successfully
C:\WINDOWS\System32\Tasks\Norton Identity Safe\Norton Error Processor => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Norton Identity Safe\Norton Error Processor" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8BCADE15-B74D-47F2-B4E8-7FE014F3482C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8BCADE15-B74D-47F2-B4E8-7FE014F3482C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8F4C3A2F-D807-437E-BAA4-10DF9721ED47}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8F4C3A2F-D807-437E-BAA4-10DF9721ED47}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\File Classification Infrastructure\Property Definition Sync" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DA39A95A-A466-4196-A764-FEEBDB29A6BF}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DA39A95A-A466-4196-A764-FEEBDB29A6BF}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{ED54F4B6-75A7-43E1-BEFB-FCCAA0F96E9A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ED54F4B6-75A7-43E1-BEFB-FCCAA0F96E9A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FF659939-9CFF-40F0-92A8-D461B00A9E5C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FF659939-9CFF-40F0-92A8-D461B00A9E5C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => key removed successfully
C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => moved successfully
 
=========  sc config NetTcpActivator start= disabled =========
 
[SC] ChangeServiceConfig SUCCESS
 
========= End of CMD: =========
 
 
 
The system needed a reboot.. 
 
==== End of Fixlog 18:04:43 ====
 
 
Process CPU Private Bytes Working Set PID Description Company Name Verified Signer
System Idle Process 95.63 0 K 4 K 0
procexp64.exe 1.70 28,784 K 62,084 K 11536 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Microsoft Corporation
dwm.exe 0.47 47,176 K 33,084 K 1080
Interrupts 0.44 0 K 0 K n/a Hardware Interrupts and DPCs
csrss.exe 0.18 2,204 K 6,460 K 884
System 0.22 256 K 66,548 K 4
explorer.exe 0.58 64,792 K 123,920 K 5464 Windows Explorer Microsoft Corporation (Verified) Microsoft Windows
XMouseButtonControl.exe 0.10 2,644 K 11,488 K 8140
GSInGameService.exe 0.05 5,264 K 10,476 K 2512 GSInGameService ClanServers Hosting LLC (Verified) Clan Servers Hosting LLC
NvStreamNetworkService.exe 0.03 7,268 K 15,552 K 4456
MsMpEng.exe 0.06 181,580 K 260,060 K 3896 Antimalware Service Executable Microsoft Corporation (Verified) Microsoft Corporation
NvStreamUserAgent.exe 0.02 6,848 K 17,916 K 5620
LCDClock.exe 0.01 4,312 K 10,116 K 7508 Logitech LCD Clock/Performance Monitor Logitech Inc. (Verified) Logitech
svchost.exe 0.01 5,068 K 15,428 K 1272 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
IAStorDataMgrSvc.exe 0.01 17,652 K 20,104 K 9792 IAStorDataSvc Intel Corporation (Verified) Intel Corporation
LMS.exe 0.01 1,480 K 5,504 K 10148 Local Manageability Service Intel Corporation (Verified) Intel Corporation
rpdsvc.exe 0.02 50,900 K 24,092 K 3464 RealPlayer Cloud Service RealNetworks, Inc. (Verified) RealNetworks
LCore.exe 0.02 56,768 K 56,952 K 7200
svchost.exe 0.03 4,304 K 9,308 K 8 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
NvStreamService.exe 0.01 3,100 K 12,376 K 3204 NVIDIA Streamer Service NVIDIA Corporation (Verified) NVIDIA Corporation
LCDMedia.exe < 0.01 3,676 K 12,056 K 7504 Logitech G-series Media Display Logitech Inc. (Verified) Logitech
NvBackend.exe < 0.01 12,740 K 21,744 K 5668 NVIDIA Backend NVIDIA Corporation (Verified) NVIDIA Corporation
svchost.exe < 0.01 11,476 K 31,684 K 1396 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
AppleMobileDeviceService.exe < 0.01 3,244 K 11,156 K 2412 MobileDeviceService Apple Inc. (Verified) Apple Inc.
svchost.exe < 0.01 24,016 K 35,000 K 1320 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe < 0.01 6,104 K 18,308 K 404 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
PnkBstrA.exe < 0.01 1,276 K 5,920 K 3432 (Verified) Even Balance
AvastUI.exe < 0.01 17,308 K 23,208 K 7704
hamachi-2.exe < 0.01 2,580 K 11,620 K 2792 Hamachi Client Tunneling Engine LogMeIn Inc. (Verified) LogMeIn
svchost.exe 26,564 K 55,304 K 1040 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
LCDPOP3.exe < 0.01 3,268 K 10,288 K 7496 Logitech G-series POP3 Monitor Logitech Inc. (Verified) Logitech
ProfilerU.exe < 0.01 1,616 K 6,908 K 7656 Saitek SST Profile Launcher Saitek (No signature was present in the subject) Saitek
nvvsvc.exe < 0.01 4,612 K 13,372 K 1456
MpCmdRun.exe 3,972 K 11,516 K 7068
LMIGuardianSvc.exe < 0.01 1,504 K 7,108 K 2848
svchost.exe 0.02 14,348 K 29,012 K 2452 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
WmiPrvSE.exe 5,560 K 13,228 K 3596
WmiPrvSE.exe 2,272 K 7,708 K 11640
WinStore.Mobile.exe Suspended 50,796 K 59,504 K 18948 Store Microsoft Corporation (No signature was present in the subject) Microsoft Corporation
winlogon.exe 1,960 K 9,164 K 940
wininit.exe 1,040 K 4,708 K 876
Video.UI.exe Suspended 32,480 K 56,944 K 19108 Video Application Microsoft Corporation (Verified) Microsoft Corporation
unsecapp.exe 1,552 K 7,416 K 8324
UNS.exe 3,148 K 12,800 K 4228 User Notification Service Intel Corporation (Verified) Intel Corporation
UMVPFSrv.exe 1,436 K 5,728 K 1732 Logitech User mode UMVPF service Logitech Inc. (Verified) Logitech
TeamViewer_Service.exe 5,488 K 15,724 K 3652 TeamViewer 10 TeamViewer GmbH (Verified) TeamViewer
taskhostw.exe < 0.01 14,344 K 23,528 K 5220 Host Process for Windows Tasks Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 11,128 K 29,108 K 1096 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 19,584 K 29,556 K 2256 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,356 K 5,768 K 5180 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 6,864 K 17,004 K 1484 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3,608 K 9,556 K 2880 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 11,704 K 16,896 K 5516 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 3,144 K 9,220 K 2368 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 5,400 K 18,680 K 3644 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 2,732 K 10,908 K 3480 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 5,108 K 22,848 K 8304 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
svchost.exe 1,400 K 6,172 K 4024 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows Publisher
spoolsv.exe 5,872 K 16,220 K 2196 Spooler SubSystem App Microsoft Corporation (Verified) Microsoft Windows
SMSvcHost.exe 20,848 K 13,872 K 4068 SMSvcHost.exe Microsoft Corporation (Verified) Microsoft Corporation
SMSvcHost.exe 22,996 K 22,572 K 3412 SMSvcHost.exe Microsoft Corporation (Verified) Microsoft Corporation
smss.exe 388 K 1,184 K 560
sihost.exe 4,684 K 19,120 K 5204 Shell Infrastructure Host Microsoft Corporation (Verified) Microsoft Windows
ShellExperienceHost.exe Suspended 44,820 K 75,960 K 6032 Windows Shell Experience Host Microsoft Corporation (Verified) Microsoft Windows
SettingSyncHost.exe 13,496 K 20,088 K 7208 Host Process for Setting Synchronization Microsoft Corporation (Verified) Microsoft Windows
services.exe < 0.01 3,604 K 7,332 K 980
SearchUI.exe Suspended 47,260 K 83,060 K 920 Search and Cortana application Microsoft Corporation (Verified) Microsoft Windows
SearchIndexer.exe 0.05 32,248 K 35,908 K 5888 Microsoft Windows Search Indexer Microsoft Corporation (Verified) Microsoft Windows
SaiMfd.exe 1,304 K 5,600 K 7748 Saitek MFD File System Driver Saitek (No signature was present in the subject) Saitek
RuntimeBroker.exe 24,232 K 54,116 K 5580 Runtime Broker Microsoft Corporation (Verified) Microsoft Windows
RtkNGUI64.exe 4,228 K 12,056 K 7868 Realtek HD Audio Manager Realtek Semiconductor (Verified) Realtek Semiconductor Corp
RAVBg64.exe 5,768 K 12,980 K 7960 HD Audio Background Process Realtek Semiconductor (Verified) Realtek Semiconductor Corp
procexp.exe 2,980 K 9,428 K 11588 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Microsoft Corporation
nvxdsync.exe 8,456 K 21,084 K 1448
nvvsvc.exe 2,340 K 9,204 K 1208 NVIDIA Driver Helper Service, Version 355.98 NVIDIA Corporation (Verified) NVIDIA Corporation
nvtray.exe 3,340 K 11,472 K 4156 NVIDIA Settings NVIDIA Corporation (Verified) NVIDIA Corporation
nvSCPAPISvr.exe 2,864 K 7,324 K 1248 Stereo Vision Control Panel API Server NVIDIA Corporation (Verified) NVIDIA Corporation
NvNetworkService.exe 3,772 K 10,604 K 3188 NVIDIA Network Service NVIDIA Corporation (Verified) NVIDIA Corporation
NitroPDFReaderDriverService3x64.exe 1,100 K 4,804 K 2972 Nitro PDF Spool Service Nitro PDF Software (Verified) Nitro PDF Software
NisSrv.exe < 0.01 10,704 K 3,492 K 4704 Microsoft Network Realtime Inspection Service Microsoft Corporation (Verified) Microsoft Corporation
mqsvc.exe 5,528 K 12,468 K 2740 Message Queuing Service Microsoft Corporation (Verified) Microsoft Windows
Microsoft.Photos.exe Suspended 68,692 K 49,428 K 17972 Microsoft Photos (No signature was present in the subject) 
mDNSResponder.exe 1,512 K 5,948 K 2376 Bonjour Service Apple Inc. (Verified) Apple Inc.
lsass.exe 0.01 5,908 K 16,684 K 988 Local Security Authority Process Microsoft Corporation (Verified) Microsoft Windows Publisher
LCDRSS.exe 5,328 K 17,136 K 7484 Logitech G-series LCD RSS Logitech Inc. (Verified) Logitech
LCDCountdown.exe 4,600 K 10,648 K 7516 Logitech G-series LCD Countdown Timer Logitech Inc. (Verified) Logitech
Jhi_service.exe 1,240 K 5,844 K 2608 Intel® Dynamic Application Loader Host Interface Intel Corporation (Verified) Intel Corporation
IPROSetMonitor.exe 936 K 4,892 K 2556 Intel® PROSet Monitoring Service Intel Corporation (Verified) Intel Corporation
HeciServer.exe 1,380 K 7,048 K 2548 Intel® Capability Licensing Service Interface Intel® Corporation (Verified) Intel® Upgrade Service
GoogleCrashHandler64.exe 1,524 K 952 K 6708
GoogleCrashHandler.exe 1,624 K 1,680 K 6584
GfExperienceService.exe 3,880 K 12,736 K 2620 NVIDIA GeForce ExperienceService NVIDIA Corporation (Verified) NVIDIA Corporation
fontdrvhost.exe 828 K 3,088 K 8020
Everything.exe 1,284 K 5,584 K 2504 Everything (No signature was present in the subject)
DTSU2PAuSrv64.exe < 0.01 1,772 K 7,024 K 2492 DTS Audio Service DTS, Inc (Verified) DTS
dllhost.exe 2,772 K 10,704 K 6288 COM Surrogate Microsoft Corporation (Verified) Microsoft Windows
dasHost.exe 3,532 K 13,564 K 2076
csrss.exe 0.01 1,444 K 4,316 K 788
conhost.exe 972 K 4,508 K 5632
conhost.exe 10,208 K 8,028 K 4464
Calculator.exe Suspended 20,112 K 32,332 K 17608 (No signature was present in the subject)
atkexComSvc.exe 7,304 K 7,764 K 2392 (Verified) ASUSTeK Computer Inc.
AsSysCtrlService.exe 1,080 K 4,648 K 2400 AsSysCtr Application ASUSTeK Computer Inc. (Verified) ASUSTeK Computer Inc.
ApplicationFrameHost.exe 33,072 K 33,336 K 17712 Application Frame Host Microsoft Corporation (Verified) Microsoft Windows
AdAppMgrSvc.exe 2,040 K 10,760 K 2420 Autodesk Application Manager Autodesk Inc. (Verified) Autodesk
ACService.exe 1,204 K 5,496 K 2384 ArcSoft Connect Service ArcSoft Inc. (Verified) ArcSoft
aaHMSvc.exe 3,020 K 7,716 K 2428 ASUSTeK Computer Inc. (Verified) ASUSTeK Computer Inc.
SearchProtocolHost.exe 0.15 1,248 K 5,632 K 2632
SearchFilterHost.exe 0.12 1,316 K 5,804 K 13972
 
Attached File  FRST.txt   80.3KB   35 downloads
Attached File  Addition.txt   135.51KB   135 downloads
Attached File  CHRISTIANDESKPC.txt   121.19KB   250 downloads
 

 


  • 0

#22
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,025 posts
  • MVP

About LogMeIn:  I saw this error:

 

Error: (10/01/2015 05:45:38 PM) (Source: MsiInstaller) (EventID: 11714) (User: NT AUTHORITY)
Description: Product: LogMeIn Hamachi -- Error 1714. The older version of LogMeIn Hamachi cannot be removed.  Contact your technical support group.  System Error 1612.

 

 

So thought since you now had teamviewer that you had tried to remove it.

 

I'm not seeing anything wrong in your logs.  Your Speccy log looks very good.  Low temps, no errors in the hard drive.  Process Explorer is also looking good.  Very high System Idle and low Interrupts.  Nothing odd running other than Calculator which is suspended for some reason.

 

I wonder if aswMBR will run:

 

Download aswMBR.exe  to your desktop.

Right click the aswMBR.exe and select Run As Administrator to run it

Click the "Scan" button to start scan
aswMBR1.png

On completion of the scan (Note if the Fix button is enabled and tell me) click save log, save it to your desktop and post in your next reply
aswMBR2.png
 

 

You might try ESET's free online scan.  See if it finds anything.

 

Use IE and go to http://eset.com/onlinescan and click on ESET online Scanner.  Accept the terms then press Start (If you get a warning from your browser tell it you want to run it).  

# Check Scan Archives
# Push the Start button.
# ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
# When the scan completes, push LIST OF THREATS FOUND
# Push EXPORT TO TEXT FILE , and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
# Push the BACK button.
# Push Finish
# Once the scan is completed, you may close the window.
# Use Notepad to open the logfile located at C:\Program Files\EsetOnlineScanner\log.txt
# Copy and paste that log as a reply.


Let's also try the bitdefender quickscan.

http://quickscan.bitdefender.com/

When it finishes there is a View Report option at the bottom.  Click on it and copy and paste the report (even if it says nothing found).
 


  • 0

#23
rockitout

rockitout

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 130 posts

Scans completed.  The Fix button did not enable after the aswMBR scan.  Here are the logs:

 

aswMBR version 1.0.1.2290 Copyright© 2014 AVAST Software
Run date: 2015-10-04 07:31:28
-----------------------------
07:31:28.843    OS Version: Windows x64 6.2.9200 
07:31:28.843    Number of processors: 8 586 0x3A09
07:31:28.843    ComputerName: CHRISTIANDESKPC  UserName: Christian
07:31:29.311    Initialize success
07:31:31.897    VM: initialized successfully
07:31:31.897    VM: Intel CPU BiosDisabled 
07:31:35.742    AVAST engine defs: 15091702
07:31:44.512    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
07:31:44.512    Disk 0 Vendor: Samsung_ DXM0 Size: 244198MB BusType: 3
07:31:44.512    Disk 1  \Device\Harddisk1\DR1 -> \Device\Ide\IAAStorageDevice-2
07:31:44.512    Disk 1 Vendor: WDC_WD10 80.0 Size: 953869MB BusType: 3
07:31:44.527    Disk 2  \Device\Harddisk2\DR2 -> \Device\Ide\IAAStorageDevice-3
07:31:44.527    Disk 2 Vendor: WDC_WD40 01.0 Size: 3815447MB BusType: 3
07:31:44.538    Disk 0 MBR read successfully
07:31:44.540    Disk 0 MBR scan
07:31:44.572    Disk 0 Windows 7 default MBR code
07:31:44.574    Disk 0 Partition 1 80 (A) 07      HPFS/NTFS NTFS          100 MB offset 2048
07:31:44.586    Disk 0 Partition 2 00     07      HPFS/NTFS NTFS       243646 MB offset 206848
07:31:44.591    Disk 0 Partition 3 00     27 Hidden NTFS WinRE NTFS          450 MB offset 499193856
07:31:44.606    Disk 0 scanning C:\WINDOWS\system32\drivers
07:31:46.656    Service scanning
07:31:51.975    Modules scanning
07:31:51.975    Disk 0 trace - called modules:
07:31:51.975    ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys iaStor.sys hal.dll 
07:31:51.991    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xffffe000ea04e060]
07:31:52.002    3 CLASSPNP.SYS[fffff801c18a46c5] -> nt!IofCallDriver -> [0xffffe000e9f8ee40]
07:31:52.006    5 ACPI.sys[fffff801c1091361] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xffffe000e7e49050]
07:31:52.382    AVAST engine scan C:\WINDOWS
07:31:52.863    AVAST engine scan C:\WINDOWS\system32
07:32:57.013    AVAST engine scan C:\WINDOWS\system32\drivers
07:33:04.696    AVAST engine scan C:\Users\Christian
08:01:27.954    AVAST engine scan C:\ProgramData
08:02:31.030    Disk 0 statistics 8447755/0/0 @ 2.95 MB/s
08:02:31.030    Scan finished successfully
08:32:23.991    Disk 0 MBR has been saved successfully to "C:\Users\Christian\Desktop\MBR.dat"
08:32:24.007    The log file has been saved successfully to "C:\Users\Christian\Desktop\aswMBR.txt"
 
 
 
C:\AdwCleaner\Quarantine\C\Users\Christian\AppData\Local\FilesFrog Update Checker\update_checker.exe.vir a variant of Win32/Somoto.D potentially unwanted application cleaned by deleting - quarantined
C:\Program Files (x86)\Image Line FL Studio Producer Edition\flstudio_12.1.2.exe a variant of Win32/OpenCandy.C potentially unsafe application deleted - quarantined
C:\Program Files (x86)\PSeMu3\PSeMu3.exe a variant of MSIL/Hoax.Agent.NAP application cleaned by deleting - quarantined
C:\Users\Christian\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\13.00\agent\stub_data\askrt_en.cab a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application deleted - quarantined
C:\Users\Christian\Desktop\spsetup128.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
E:\Program Files (x86)\PSeMu3\PSeMu3.exe a variant of MSIL/Hoax.Agent.NAP application cleaned by deleting - quarantined
I:\Christian\Downloads\AdvancedFix_Setup.exe a variant of Win32/RegistryNuke application cleaned by deleting - quarantined
I:\Christian\Downloads\DTLite4481-0347.exe Win32/DownWare.L potentially unwanted application deleted - quarantined
I:\Christian\Downloads\PowerISO5-x64.exe Win32/Toolbar.Conduit.R potentially unwanted application deleted - quarantined
I:\Christian\Downloads\PSeMu3_BIOS_Installer.zip Win32/DownWare.L potentially unwanted application deleted - quarantined
I:\Christian\Downloads\PSeMu3_Setup.zip multiple threats deleted - quarantined
I:\Christian\Downloads\SoftonicDownloader_for_camtasia-studio.exe a variant of Win32/SoftonicDownloader.F potentially unwanted application cleaned by deleting - quarantined
I:\Christian\Downloads\utorrent.exe a variant of Win32/AdkDLLWrapper.A potentially unwanted application cleaned by deleting - quarantined
I:\Christian\flashdrive\Images\Downloads\ccsetup320.exe Win32/Bundled.Toolbar.Google.E potentially unsafe application deleted - quarantined
I:\Christian\flashdrive\Images\Downloads\ccsetup322.exe Win32/Bundled.Toolbar.Google.E potentially unsafe application deleted - quarantined
I:\Christian\flashdrive\Images\Downloads\SoftonicDownloader_for_cyberlink-powerdirector-11.exe Win32/SoftonicDownloader.E potentially unwanted application cleaned by deleting - quarantined
I:\Christian\flashdrive\Images\Downloads\SoftonicDownloader_for_funny-voice.exe Win32/SoftonicDownloader.E potentially unwanted application cleaned by deleting - quarantined
I:\Christian\flashdrive\Images\Downloads\SoftonicDownloader_for_slender-the-eight-pages.exe Win32/SoftonicDownloader.E potentially unwanted application cleaned by deleting - quarantined
I:\Christian\flashdrive\Images\Downloads\SoftonicDownloader_for_slendermans-shadow-sanatorium.exe Win32/SoftonicDownloader.E potentially unwanted application cleaned by deleting - quarantined
I:\Christian\flashdrive\Images\Downloads\windows-movie-maker.exe Win32/Somoto.F potentially unwanted application deleted - quarantined
I:\Christian\flashdrive\Images\Downloads\xfire_installer_44598.exe a variant of Win32/Toolbar.Conduit.AI potentially unwanted application deleted - quarantined
I:\Stuff\Sony Vegas Pro 12 Build 770 (64 bit) (patch-keygen DI) [ChingLiu]\patch - keygen DI\Keygen.exe a variant of Win32/Keygen.HU potentially unsafe application cleaned by deleting - quarantined
I:\Videos Flashdrive\installer_sony_vegas_pro.exe Win32/Toggle potentially unwanted application deleted - quarantined
 
 
 
 
QuickScan 32-bitv0.9.9.147
--------------------------
Scan date:  Sun Oct 04 12:44:50 2015
Machine ID: 1473D107
 
 
 
No infection found.
-------------------
 
 
 
Processes
---------
(unsigned)  chromeqs.exe                             5476    C:\Users\Christian\AppData\Roaming\QuickScan\chromeqs.exe
(unsigned)  chromeqs.exe                             6056    C:\Users\Christian\AppData\Roaming\QuickScan\chromeqs.exe
 
(verified)  Google Chrome                            2912    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(verified)  Google Chrome                            3616    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(verified)  Google Chrome                            9772    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(verified)  Google Chrome                           13996    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(verified)  Google Chrome                           17224    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(verified)  Logitech GamePanel Software              7504    C:\Program Files\Logitech Gaming Software\Applets\LCDMedia.exe
(verified)  Microsoft® Windows® Operating System     6544    C:\Windows\SysWOW64\cmd.exe
(verified)  Microsoft® Windows® Operating System    19248    C:\Windows\SysWOW64\cmd.exe
(verified)  NVIDIA Backend                           5668    C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
 
 
Network activity
----------------
Process chromeqs.exe (5476) connected on port 80 (HTTP) --> 81.161.59.60
Process chrome.exe (17224) connected on port 80 (HTTP) --> 173.194.46.77
Process chrome.exe (17224) connected on port 80 (HTTP) --> 216.58.216.110
Process chrome.exe (17224) connected on port 443 (HTTP over SSL) --> 173.194.46.77
Process chrome.exe (17224) connected on port 443 (HTTP over SSL) --> 173.194.46.72
Process chrome.exe (17224) connected on port 443 (HTTP over SSL) --> 216.58.216.226
Process chrome.exe (17224) connected on port 443 (HTTP over SSL) --> 216.58.219.68
Process chrome.exe (17224) connected on port 443 (HTTP over SSL) --> 216.58.216.238
Process chrome.exe (17224) connected on port 80 (HTTP) --> 216.58.216.110
Process chrome.exe (17224) connected on port 80 (HTTP) --> 216.58.216.110
Process chrome.exe (17224) connected on port 443 (HTTP over SSL) --> 216.58.216.225
Process chrome.exe (17224) connected on port 443 (HTTP over SSL) --> 216.58.216.74
Process chrome.exe (17224) connected on port 443 (HTTP over SSL) --> 216.58.216.110
Process chrome.exe (17224) connected on port 443 (HTTP over SSL) --> 74.125.225.12
Process chrome.exe (17224) connected on port 443 (HTTP over SSL) --> 74.125.225.14
Process chrome.exe (17224) connected on port 80 (HTTP) --> 37.59.67.149
Process chrome.exe (17224) connected on port 80 (HTTP) --> 37.59.67.149
Process chrome.exe (17224) connected on port 80 (HTTP) --> 37.59.67.149
Process chrome.exe (17224) connected on port 80 (HTTP) --> 66.235.141.145
Process chrome.exe (17224) connected on port 80 (HTTP) --> 66.235.141.145
Process chrome.exe (17224) connected on port 80 (HTTP) --> 66.235.141.145
Process chrome.exe (17224) connected on port 80 (HTTP) --> 72.5.205.25
Process chrome.exe (17224) connected on port 80 (HTTP) --> 72.5.205.25
Process chrome.exe (17224) connected on port 80 (HTTP) --> 72.5.205.60
Process chrome.exe (17224) connected on port 80 (HTTP) --> 72.5.205.60
Process chrome.exe (17224) connected on port 80 (HTTP) --> 72.5.205.60
Process chrome.exe (17224) connected on port 80 (HTTP) --> 173.194.46.73
Process chrome.exe (17224) connected on port 80 (HTTP) --> 216.58.216.98
Process chrome.exe (17224) connected on port 80 (HTTP) --> 216.58.216.98
 
 
 
Autoruns and critical files
---------------------------
(verified)  Avast Antivirus                          C:\Program Files\AVAST Software\Avast\AvastUI.exe
(verified)  Facebook Update                          C:\Users\Christian\AppData\Local\Facebook\Update\FacebookUpdate.exe
(verified)  Google Chrome                            C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(verified)  Microsoft Office 2010                    c:\program files (x86)\microsoft office\Office14\GROOVEEX.DLL
(verified)  Microsoft® Windows® Operating System     C:\Windows\System32\userinit.exe
(verified)  RealPlayer Cloud                         C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe
 
 
Browser plugins
---------------
(unsigned)  Adobe Content Decryption Module for Fir  C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\gmp-eme-adobe\12\eme-adobe.dll
(unsigned)  Battlefield Play4Free Updater            C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\extensions\[email protected]\plugins\npBP4FUpdater.dll
(unsigned)  chromeqs.exe                             C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdnkcidphdcakpkheohlhocaicfamjie\0.9.9.153_0\chromeqs.exe
(unsigned)  gmpopenh264.dll                          C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\gmp-gmpopenh264\1.1\gmpopenh264.dll
(unsigned)  gmpopenh264.dll                          C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\gmp-gmpopenh264\1.4\gmpopenh264.dll
(unsigned)  NVIDIA 3D Vision                         C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
(unsigned)  NVIDIA 3D VISION                         C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
(unsigned)  QuickTime Plug-in 7.7.6                  C:\Program Files\Internet Explorer\Plugins\npqtplugin.dll
(unsigned)  QuickTime Plug-in 7.7.6                  C:\Program Files\Internet Explorer\Plugins\npqtplugin2.dll
(unsigned)  QuickTime Plug-in 7.7.6                  C:\Program Files\Internet Explorer\Plugins\npqtplugin3.dll
(unsigned)  QuickTime Plug-in 7.7.6                  C:\Program Files\Internet Explorer\Plugins\npqtplugin4.dll
(unsigned)  QuickTime Plug-in 7.7.6                  C:\Program Files\Internet Explorer\Plugins\npqtplugin5.dll
(unsigned)  Raidcall plugin                          C:\Users\Christian\AppData\Roaming\raidcall\plugins\nprcplugin.dll
(unsigned)  Roblox Launcher Plugin                   C:\Users\Christian\AppData\Local\Roblox\Versions\version-957ce0cc47814d39\\NPRobloxProxy64.dll
(unsigned)  VLC Web Plugin                           C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
 
(verified)  AcroIEHelperShim Library                 c:\program files (x86)\common files\Adobe\Acrobat\ActiveX\acroiehelpershim.dll
(verified)  Adobe Acrobat                            E:\Program Files\Acrobat 10.0\Acrobat\Air\nppdf32.dll
(verified)  Adobe PDF Toolbar for IE                 c:\program files (x86)\common files\Adobe\Acrobat\ActiveX\acroiefavclient.dll
(verified)  AdobeExManDetect                         E:\Program Files\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll
(verified)  Battlefield Play4Free Updater            C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\extensions\[email protected]\plugins\BP4FUpdater.exe
(verified)  Battlelog Game Launcher                  C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll
(verified)  Bonjour                                  C:\Program Files (x86)\Bonjour\mdnsNSP.dll
(verified)  Bonjour                                  C:\Program Files\Bonjour\mdnsNSP.dll
(verified)  Facebook Desktop                         C:\Users\Christian\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll
(verified)  Google Earth Plugin                      C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
(verified)  Google Update                            C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll
(verified)  IE Webrep plugin                         c:\program files\avast software\Avast\aswwebrepie.dll
(verified)  Intel® Identity Protection Technology    C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll
(verified)  Intel® Identity Protection Technology    C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll
(verified)  Internet Explorer                        c:\Windows\SysWOW64\ieframe.dll
(verified)  Java Deployment Toolkit 8.0.400.26       C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll
(verified)  Java™ Platform SE 8 U40               c:\program files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll
(verified)  Java™ Platform SE 8 U40               C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll
(verified)  Java™ Platform SE 8 U40               c:\program files (x86)\Java\jre1.8.0_40\bin\ssv.dll
(verified)  Microsoft Office 2010                    c:\program files (x86)\microsoft office\Office14\GROOVEEX.DLL
(verified)  Microsoft Office 2010                    C:\Program Files (x86)\Microsoft Office\Office14\NPAUTHZ.DLL
(verified)  Microsoft Office 2010                    C:\Program Files (x86)\Microsoft Office\Office14\NPSPWRAP.DLL
(verified)  Microsoft Office 2010                    c:\program files (x86)\microsoft office\Office14\URLREDIR.DLL
(verified)  Microsoft® Windows® Operating System     C:\Windows\System32\mswsock.dll
(verified)  Microsoft® Windows® Operating System     C:\Windows\System32\NapiNSP.dll
(verified)  Microsoft® Windows® Operating System     C:\Windows\System32\nlaapi.dll
(verified)  Microsoft® Windows® Operating System     C:\Windows\System32\pnrpnsp.dll
(verified)  Microsoft® Windows® Operating System     C:\Windows\System32\winrnr.dll
(verified)  nativeqs.dll                             C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdnkcidphdcakpkheohlhocaicfamjie\0.9.9.153_0\nativeqs.dll
(verified)  Nitro PDF plugin for Firefox and Chrome  C:\Program Files (x86)\Nitro\Reader 3\npnitromozilla.dll
(verified)  npitunes.dll                             C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
(verified)  NPSWF32_16_0_0_287.dll                   C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_287.dll
(verified)  Photo Gallery                            C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
(verified)  qsinstaller.exe                          C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdnkcidphdcakpkheohlhocaicfamjie\0.9.9.153_0\qsinstaller.exe
(verified)  Roblox Launcher Plugin                   C:\Users\Christian\AppData\Local\Roblox\Versions\version-957ce0cc47814d39\\NPRobloxProxy.dll
(verified)  Silverlight Plug-In                      C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll
(verified)  Unity Player                             C:\Users\Christian\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
 
 
Scan
----
MD5: 8b46d5a1d3ef08232c04d0eafb871fb2  C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
MD5: f577910a133a592234ebaad3f3afa258  C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
MD5: fa2e097f958575b65e9e30fd9c419db1  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
MD5: 46f9aa1cd841bcab0c009426a29ea553  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
MD5: 43cebdfa8b91beb5febd4f9e6768aef2  C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
MD5: 0af89452a8ce3928168f4e5b2208c68b  C:\Program Files\Autodesk\3ds Max 2015\NVIDIA\Satellite\raysat_3dsmax2015_64server.exe
MD5: fe18ddea98d90dbf850afca0158abec8  C:\Program Files\Everything\Everything.exe
MD5: d937a4645eff8cb4f123e3c899c052b2  C:\Program Files\Internet Explorer\Plugins\npqtplugin.dll
MD5: d937a4645eff8cb4f123e3c899c052b2  C:\Program Files\Internet Explorer\Plugins\npqtplugin2.dll
MD5: d937a4645eff8cb4f123e3c899c052b2  C:\Program Files\Internet Explorer\Plugins\npqtplugin3.dll
MD5: d937a4645eff8cb4f123e3c899c052b2  C:\Program Files\Internet Explorer\Plugins\npqtplugin4.dll
MD5: d937a4645eff8cb4f123e3c899c052b2  C:\Program Files\Internet Explorer\Plugins\npqtplugin5.dll
MD5: 52280685dfe27121b9b2b3af3016f205  C:\Users\Christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdnkcidphdcakpkheohlhocaicfamjie\0.9.9.153_0\chromeqs.exe
MD5: 8e3e1a9304fccfc6805c70e893a68231  C:\Users\Christian\AppData\Local\Roblox\Versions\version-957ce0cc47814d39\\NPRobloxProxy64.dll
MD5: ae358aa704ed7bd4a592053426237065  C:\Users\Christian\AppData\Local\Temp\aswMBR.sys
MD5: 045dcec5bbf3c9f4a0788fdf90b1dede  C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\extensions\[email protected]\plugins\npBP4FUpdater.dll
MD5: 5629aff30e7c536382ca33e270b9a9db  C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\gmp-eme-adobe\12\eme-adobe.dll
MD5: 7cc4965741508bb6ac40e366f5190cf0  C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\gmp-gmpopenh264\1.1\gmpopenh264.dll
MD5: c012f71d06b0e4914ccf98c1125e688e  C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\fq9fv6zw.default\gmp-gmpopenh264\1.4\gmpopenh264.dll
MD5: 52280685dfe27121b9b2b3af3016f205  C:\Users\Christian\AppData\Roaming\QuickScan\chromeqs.exe
MD5: 3c39b899eb79c85746124abf44b83587  C:\Users\Christian\AppData\Roaming\raidcall\plugins\nprcplugin.dll
MD5: 71c2cb12d371216910700ac9bf566f87  C:\Windows\SysWOW64\nvspcap.dll
 
 
No file uploaded.
 
Scan finished - communication took 0 sec
Total traffic - 0.00 MB sent, 0.08 KB recvd
Scanned 309 files and modules - 2 seconds
 
==============================================================================
 

  • 0

#24
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,025 posts
  • MVP

I don't see anything active that would have stopped Avast from running.  See if you can download the free trial of kaspersky:

 

http://usa.kaspersky...n=kaspersky.com

 

Uninstall Avast, reboot then install the Kaspersky trial.


  • 0

#25
rockitout

rockitout

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 130 posts

I followed your instructions and also ran a full scan with Kaspersky.  It completed with no threats detected


  • 0

Advertisements


#26
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,025 posts
  • MVP

If Kaspersky says its clean then there is probably a permission problem somewhere.  You can try downloading the free AVG and see if that will run for you.  Same procedure as before, download the installer, uninstall Kaspersky then reboot and install AVG (I always right click and run as admin.)


  • 0

#27
rockitout

rockitout

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 130 posts

I'm still here, just trying to find time to complete the task.  I will post back later.


  • 0

#28
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,025 posts
  • MVP

No problem.  I don't keep track.


  • 0

#29
rockitout

rockitout

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 130 posts

OK, I uninstalled Kaspersky and installed AVG.  I ran a scan with AVG and it found and removed 3 threats.  If you want a log you will have to walk me through it.  I tried to save a log file, but couldn't figure out how.


  • 0

#30
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,025 posts
  • MVP

Mainly just wanted to make sure you could install one of the free anti-viruses.  I think you are clean and can clean up now unless you have other issues.

 

You can remove any programs we had you download and their logs.  FRST creates a folder C"\FRST which you can delete.  

 

You should also delete all but the most recent restore point.   See:  http://windows.micro...t#1TC=windows-7 Hopefully it's about the same on 10.


  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP