Hello, I have come over to this forum as on my previous thread the person helping told me to come here as I could have a possible malware infection, I've done a quick FRST scan...
FRST.txt 39.41KB
236 downloads
and the addition
Addition.txt 87.96KB
260 downloads
The problem is that I cannot seem to update my windows with the new security updates and its been going on for more than a month... Thank you for any reply
Edit: Here is the link to my previous thread for note about what has been done so far: http://www.geekstogo...tter-what-i-do/
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17-09-2017
Ran by Administrato (administrator) on USER-PC (17-09-2017 19:41:58)
Running from C:\Users\Zac\Downloads
Loaded Profiles: Zac & Administrato (Available Profiles: Zac & Administrato)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuardNetworkScanner.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuard.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Wargaming.net) C:\Games\World_of_Warships\WargamingGameUpdater.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuardTray.exe
(Flux Software LLC) C:\Users\Zac\AppData\Local\FluxSoftware\Flux\flux.exe
(Gaijin Entertainment) C:\Users\Zac\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Discord Inc.) C:\Users\Zac\AppData\Local\Discord\app-0.0.298\Discord.exe
(Discord Inc.) C:\Users\Zac\AppData\Local\Discord\app-0.0.298\Discord.exe
(Discord Inc.) C:\Users\Zac\AppData\Local\Discord\app-0.0.298\Discord.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Paradox Interactive) C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis IV\eu4.exe
(Valve Corporation) C:\Program Files (x86)\Steam\GameOverlayUI.exe
(Tweaking.com) C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ismagent.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672304 2014-03-21] (Realtek Semiconductor)
HKLM\...\Run: [BullGuard] => C:\Program Files\BullGuard Ltd\BullGuard\BullGuard.exe [1710360 2017-08-23] (BullGuard Ltd.)
HKLM\...\Run: [MouseDriver] => C:\Windows\system32\TiltWheelMouse.exe [241152 2012-12-19] (Pixart Imaging Inc)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2013-04-11] (Intel Corporation)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [3487032 2017-09-14] (Dropbox, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-07-12] (Oracle Corporation)
HKLM\...\Policies\Explorer: [NoDrives] 65536
HKU\S-1-5-21-1031213751-2141322334-938452745-1002\...\Run: [Discord] => C:\Users\Zac\AppData\Local\Discord\app-0.0.298\Discord.exe [57477112 2017-08-08] (Discord Inc.)
HKU\S-1-5-21-1031213751-2141322334-938452745-1002\...\Run: [Skype] => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
HKU\S-1-5-21-1031213751-2141322334-938452745-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3071776 2017-09-07] (Valve Corporation)
HKU\S-1-5-21-1031213751-2141322334-938452745-1002\...\Run: [World of Warships] => C:\Games\World_of_Warships\WargamingGameUpdater.exe [3136264 2017-09-11] (Wargaming.net)
HKU\S-1-5-21-1031213751-2141322334-938452745-1002\...\Run: [f.lux] => C:\Users\Zac\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-23] (Flux Software LLC)
HKU\S-1-5-21-1031213751-2141322334-938452745-1002\...\Run: [EADM] => "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
HKU\S-1-5-21-1031213751-2141322334-938452745-1002\...\Run: [Gaijin.Net Agent] => C:\Users\Zac\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2010056 2017-06-27] (Gaijin Entertainment)
HKU\S-1-5-21-1031213751-2141322334-938452745-1002\...\MountPoints2: {5e39c27f-75d8-11e6-a1b9-d05099988926} - F:\setup.exe
HKU\S-1-5-21-1031213751-2141322334-938452745-1002\...\MountPoints2: {f74c09c8-6fb8-11e6-86c9-806e6f6e6963} - D:\Setup.now.exe
HKU\S-1-5-21-1031213751-2141322334-938452745-1003\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4299968 2016-08-29] (Disc Soft Ltd)
HKU\S-1-5-21-1031213751-2141322334-938452745-1003\...\Run: [Akamai NetSession Interface] => C:\Users\Administrato\AppData\Local\Akamai\netsession_win.exe [4490200 2017-01-03] (Akamai Technologies, Inc.)
HKU\S-1-5-21-1031213751-2141322334-938452745-1003\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9832152 2017-08-03] (Piriform Ltd)
HKU\S-1-5-18\...\Run: [~Resuming Profile - Removable device] => C:\program files\bullguard ltd\bullguard\BgScan.exe [505112 2017-08-23] (BullGuard Ltd.)
HKU\S-1-5-18\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-18\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKU\S-1-5-18\...\Policies\Explorer: [NoResolveSearch] 1
HKU\S-1-5-18\...\Policies\Explorer: [NoInternetOpenWith] 1
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5-x64 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL => No File
Winsock: Catalog5-x64 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL => No File
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{7F88570A-BF92-4392-9C5D-CAB300B002D5}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKU\S-1-5-21-1031213751-2141322334-938452745-1002\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/en-gb/?ocid=iehp
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_141\bin\ssv.dll [2017-07-18] (Oracle Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_141\bin\jp2ssv.dll [2017-07-18] (Oracle Corporation)
FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [antiphishing@bullguard] - C:\Program Files\BullGuard Ltd\BullGuard\Files32\Antiphishing\FF\antiphishing@bullguard => not found
FF Plugin: @java.com/DTPlugin,version=11.141.2 -> C:\Program Files\Java\jre1.8.0_141\bin\dtplugin\npDeployJava1.dll [2017-07-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.141.2 -> C:\Program Files\Java\jre1.8.0_141\bin\plugin2\npjp2.dll [2017-07-18] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-03] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-03] (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2011-04-05] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-07-18] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-07-18] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-08-10] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1031213751-2141322334-938452745-1002: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2017-03-21] ()
Chrome:
=======
CHR Profile: C:\Users\Administrato\AppData\Local\Google\Chrome\User Data\Default [2017-09-16]
CHR Extension: (Google Slides) - C:\Users\Administrato\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-10-31]
CHR Extension: (Google Docs) - C:\Users\Administrato\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-15]
CHR Extension: (Google Drive) - C:\Users\Administrato\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-15]
CHR Extension: (YouTube) - C:\Users\Administrato\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-15]
CHR Extension: (Adobe Acrobat) - C:\Users\Administrato\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-07-07]
CHR Extension: (Google Sheets) - C:\Users\Administrato\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-10-31]
CHR Extension: (Google Docs Offline) - C:\Users\Administrato\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-15]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Administrato\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-07-07]
CHR Extension: (Gmail) - C:\Users\Administrato\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-15]
CHR Extension: (Chrome Media Router) - C:\Users\Administrato\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-09-16]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1494024 2017-02-25] ()
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [746648 2016-11-12] (BitRaider, LLC)
S2 BsBackup; C:\Program Files\BullGuard Ltd\BullGuard\BsBackup.dll [1574680 2017-08-23] (BullGuard Ltd.)
R2 BsBhvScan; C:\Program Files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe [673560 2017-08-23] (BullGuard Ltd.)
R2 BsCache; C:\Program Files\BullGuard Ltd\BullGuard\BsCache.dll [185624 2017-08-23] (BullGuard Ltd.)
R2 BsFileScan; c:\program files\bullguard ltd\bullguard\BsFileScan.dll [508184 2017-08-23] (BullGuard Ltd.)
R2 BsMailProxy; c:\program files\bullguard ltd\bullguard\BsMailProxy\BsMailProxy.dll [6014232 2017-08-23] (BullGuard Ltd.)
R2 BsMain; C:\Program Files\BullGuard Ltd\BullGuard\BsMain.dll [834328 2017-08-23] (BullGuard Ltd.)
R2 BsNet; C:\Program Files\BullGuard Ltd\BullGuard\BsNet.dll [635160 2017-09-08] (BullGuard Ltd.)
R2 BsNetworkScanner; C:\Program Files\BullGuard Ltd\BullGuard\BullGuardNetworkScanner.exe [553752 2017-08-23] (BullGuard Ltd.)
R2 BsScanner; C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe [326936 2017-08-23] (BullGuard Ltd.)
R2 BsUpdate; C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe [439064 2017-09-08] (BullGuard Ltd.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-07] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-07] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [49992 2017-09-14] (Dropbox, Inc.)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-08-29] (Disc Soft Ltd)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [400656 2017-06-27] (EasyAntiCheat Ltd)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel® Corporation)
R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-03] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-09-03] (Intel Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-07-26] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-07-26] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-07-18] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [449984 2017-07-26] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2017-08-25] ()
R2 Themes; C:\Windows\system32\themeservice.dll [44544 2016-09-13] (Microsoft Corporation) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 BdAgent; C:\Windows\System32\DRIVERS\BdAgent.sys [174744 2016-09-20] (BullGuard Ltd.)
R0 BdNet; C:\Windows\System32\DRIVERS\BdNet.sys [152664 2017-07-06] (BullGuard Ltd.)
R1 BdSpy; C:\Windows\System32\drivers\BdSpy.sys [76728 2016-01-13] (BullGuard Ltd.)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-09-08] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-09-08] (Disc Soft Ltd)
S3 HP8207_8307; C:\Windows\System32\DRIVERS\HP8207_8307.sys [15360 2010-02-04] (Windows ® Win 7 DDK provider)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-09-03] (Intel Corporation)
R1 NovaShieldFilterDriver; C:\Windows\System32\DRIVERS\NSKernel.sys [325752 2016-09-01] (BullGuard Ltd.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-07-26] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [48064 2017-07-26] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [57792 2017-05-18] (NVIDIA Corporation)
R3 Sftfs; C:\Windows\System32\DRIVERS\Sftfswin7.sys [767648 2014-10-08] (Microsoft Corporation)
R3 Sftplay; C:\Windows\System32\DRIVERS\Sftplaywin7.sys [273576 2014-10-08] (Microsoft Corporation)
R3 Sftredir; C:\Windows\System32\DRIVERS\Sftredirwin7.sys [29864 2014-10-08] (Microsoft Corporation)
R3 Sftvol; C:\Windows\System32\DRIVERS\Sftvolwin7.sys [23208 2014-10-08] (Microsoft Corporation)
R3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [485512 2016-03-31] (BitDefender S.R.L.)
S3 t_mouse.sys; C:\Windows\System32\DRIVERS\t_mouse.sys [6144 2012-12-19] ()
S3 BRDriver64_1_4_0_5C00A8AF; \??\C:\ProgramData\Bitraider\support\1.4.0\5C00A8AF\BRDriver64.sys [X]
S3 cpuz143; \??\C:\Users\ADMINI~1\AppData\Local\Temp\cpuz143\cpuz143_x64.sys [X] <==== ATTENTION
S3 dbx; system32\DRIVERS\dbx.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-09-17 19:41 - 2017-09-17 19:43 - 000021539 _____ C:\Users\Zac\Downloads\FRST.txt
2017-09-17 19:41 - 2017-09-17 19:41 - 002399744 _____ (Farbar) C:\Users\Zac\Downloads\FRST64.exe
2017-09-17 19:33 - 2017-09-17 19:41 - 000000000 ____D C:\FRST
2017-09-17 15:52 - 2017-09-17 15:54 - 000034448 _____ C:\Users\Zac\Downloads\MTB.txt
2017-09-17 15:51 - 2017-09-17 15:51 - 000892416 _____ (Farbar) C:\Users\Zac\Downloads\MiniToolBox.exe
2017-09-16 22:26 - 2017-09-16 22:26 - 001076570 _____ C:\Users\Zac\Downloads\FV432.rbxmx
2017-09-16 22:00 - 2017-09-16 22:00 - 000028666 _____ C:\Users\Zac\Downloads\British Universal Carrier (2).zip
2017-09-16 21:18 - 2017-09-16 21:18 - 000000207 _____ C:\Windows\tweaking.com-regbackup-USER-PC-Windows-7-Home-Premium-(64-bit).dat
2017-09-16 21:18 - 2017-09-16 21:18 - 000000000 ____D C:\RegBackup
2017-09-16 19:33 - 2017-09-16 19:33 - 000061114 _____ C:\Users\Zac\Downloads\31.05.2017_13.28.01.7z
2017-09-16 19:33 - 2017-09-16 19:33 - 000000000 ____D C:\Users\Zac\Downloads\31.05.2017_13.28.01
2017-09-16 15:35 - 2017-09-16 15:35 - 000000000 _____ C:\Windows\SysWOW64\shoD651.tmp
2017-09-16 15:13 - 2017-09-16 15:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-09-16 14:55 - 2017-09-16 14:55 - 000313366 _____ C:\Users\Zac\Downloads\WindowsUpdate.diagcab
2017-09-15 19:23 - 2017-07-18 23:38 - 000135800 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2017-09-15 19:23 - 2017-03-10 22:17 - 000536864 _____ C:\Windows\system32\vulkan-1.dll
2017-09-15 19:23 - 2017-03-10 22:17 - 000525600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2017-09-15 19:23 - 2017-03-10 22:17 - 000254240 _____ C:\Windows\system32\vulkaninfo.exe
2017-09-15 19:23 - 2017-03-10 22:17 - 000233760 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2017-09-14 22:41 - 2017-09-14 22:41 - 000049992 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2017-09-14 22:41 - 2017-09-14 22:41 - 000045672 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2017-09-14 22:41 - 2017-09-14 22:41 - 000045640 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2017-09-14 22:41 - 2017-09-14 22:41 - 000045640 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2017-09-12 23:07 - 2017-09-12 23:07 - 005299765 _____ C:\Users\Zac\Documents\Ooarai School.zip
2017-09-12 17:21 - 2017-09-12 17:21 - 004856651 _____ C:\Users\Zac\Downloads\sigh Ooarai.zip
2017-09-12 17:21 - 2017-09-12 17:21 - 000045613 _____ C:\Users\Zac\Downloads\149abdc01e0b2cdbb6009836f436c763
2017-09-08 21:36 - 2017-09-08 21:36 - 009730126 _____ C:\Users\Zac\Documents\Ooarai School.rbxl
2017-09-08 21:10 - 2017-09-13 19:30 - 000030412 _____ C:\Users\Zac\Desktop\History of GUP.graphml
2017-09-05 19:09 - 2017-09-05 19:09 - 000000222 _____ C:\Users\Zac\Desktop\XCOM 2.url
2017-08-31 21:55 - 2017-08-31 21:55 - 000002802 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2017-08-31 21:55 - 2017-08-31 21:55 - 000000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-08-31 21:55 - 2017-08-31 21:55 - 000000000 ____D C:\Program Files\CCleaner
2017-08-31 21:53 - 2017-08-31 21:54 - 009791816 _____ (Piriform Ltd) C:\Users\Zac\Downloads\ccsetup533.exe
2017-08-31 20:03 - 2017-08-31 20:03 - 000504444 _____ C:\Users\Zac\Downloads\For Kei.rbxl
2017-08-31 19:54 - 2017-08-31 19:54 - 000172175 _____ C:\Users\Zac\Downloads\For_Zac (1).rbxl
2017-08-30 20:08 - 2017-08-30 20:08 - 000000000 ____D C:\Users\Zac\AppData\Local\TempSWBackupDirectory
2017-08-30 20:07 - 2017-08-30 20:35 - 000000000 ____D C:\Users\Administrato\AppData\Local\Autodesk
2017-08-30 19:59 - 2017-08-30 20:07 - 000000000 ____D C:\Users\Administrato\AppData\Roaming\Autodesk
2017-08-30 19:59 - 2017-08-30 19:59 - 000000000 ____D C:\Users\Administrato\Documents\3dsMax
2017-08-30 19:56 - 2017-08-31 17:55 - 000000000 ____D C:\Program Files (x86)\Autodesk
2017-08-30 19:40 - 2017-08-30 19:40 - 000000000 ____D C:\Program Files\Autodesk
2017-08-30 19:21 - 2017-08-30 19:23 - 000262144 _____ C:\Users\Public\SWInstallRegSOLIDWORKS 2015.swdat
2017-08-30 19:10 - 2017-08-30 20:18 - 000000000 ____D C:\Program Files\Common Files\Autodesk Shared
2017-08-30 18:50 - 2017-08-30 20:35 - 000000000 ____D C:\ProgramData\Autodesk
2017-08-30 18:49 - 2017-08-30 18:49 - 000000000 ____D C:\Users\Administrato\AppData\Local\Akamai
2017-08-30 18:48 - 2017-08-30 20:39 - 000000000 ____D C:\Autodesk
2017-08-30 18:48 - 2017-08-30 19:24 - 011563008 _____ C:\Users\Zac\Downloads\Autodesk_3ds_Max_2018_EFGJKPS_Win_64bit_wi_en-US_Setup.exe
2017-08-30 18:47 - 2017-08-30 18:47 - 000377824 _____ (Autodesk Inc.) C:\Users\Zac\Downloads\Autodesk_3ds_Max_2018_EFGJKPS_Win_64bit_wi_en-US_Setup_webinstall.exe
2017-08-30 18:31 - 2017-08-30 18:31 - 053043545 _____ C:\Users\Zac\Downloads\covenanter3.stl.obj
2017-08-30 18:27 - 2017-08-30 18:27 - 000000000 ____D C:\Users\Zac\AppData\Roaming\SolidWorks
2017-08-30 18:27 - 2017-08-30 18:27 - 000000000 ____D C:\Users\Zac\AppData\Local\SolidWorks
2017-08-30 18:23 - 2017-08-30 18:23 - 012027784 _____ C:\Users\Zac\Downloads\covenanter3.stl
2017-08-30 18:20 - 2017-08-30 18:21 - 041018484 _____ C:\Users\Zac\Downloads\covenanter7.stl
2017-08-30 14:18 - 2017-08-30 14:18 - 000000220 _____ C:\Users\Zac\Desktop\The Ship.url
2017-08-30 13:23 - 2017-08-30 13:23 - 000993632 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll
2017-08-30 13:23 - 2017-08-30 13:23 - 000987840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr120_clr0400.dll
2017-08-30 13:23 - 2017-08-30 13:23 - 000690008 _____ (Microsoft Corporation) C:\Windows\system32\msvcp120_clr0400.dll
2017-08-30 13:23 - 2017-08-30 13:23 - 000485576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp120_clr0400.dll
2017-08-30 12:10 - 2017-08-30 12:11 - 002225349 _____ C:\Users\Zac\Downloads\Type-3_Ka-Chi.rbxmx
2017-08-30 01:56 - 2017-08-30 01:56 - 000306445 _____ C:\Users\Zac\Downloads\Type-95_Meme-Go.rbxmx
2017-08-30 00:09 - 2017-08-30 00:09 - 000028666 _____ C:\Users\Zac\Downloads\British Universal Carrier (1).zip
2017-08-29 23:10 - 2000-01-01 00:01 - 007575566 ____R C:\Users\Zac\Desktop\BT5.obj
2017-08-29 23:09 - 2017-08-29 23:09 - 001883077 _____ C:\Users\Zac\Downloads\Tank BT5.7z
2017-08-29 22:11 - 2015-07-07 18:25 - 007008768 _____ C:\Users\Zac\Desktop\WoT_Model_Editor_B26.msi
2017-08-29 22:10 - 2017-08-29 22:10 - 006642179 _____ C:\Users\Zac\Downloads\WoT_Model_Editor_B26.zip
2017-08-29 22:02 - 2017-08-29 22:03 - 008925871 _____ (Alexander Gessler) C:\Users\Zac\Downloads\open3mod_1_1_setup.exe
2017-08-28 23:58 - 2017-08-28 23:58 - 000527246 _____ C:\Users\Zac\Downloads\Pz._II_Luchs.rbxl
2017-08-28 20:50 - 2017-08-29 23:10 - 000097816 _____ C:\Users\Zac\Downloads\ucarrier.3ds
2017-08-28 20:49 - 2017-08-28 20:49 - 000028666 _____ C:\Users\Zac\Downloads\British Universal Carrier.zip
2017-08-27 21:35 - 2017-08-27 21:35 - 000309385 _____ C:\Users\Zac\Downloads\cadnav-1F421133939.rar
2017-08-27 21:35 - 2017-08-27 21:35 - 000000000 ____D C:\Users\Zac\Desktop\PantherD
2017-08-27 20:19 - 2017-08-27 21:06 - 000000000 ____D C:\Users\Zac\Desktop\KimomenDemoHaremGuild
2017-08-27 20:06 - 2017-08-27 20:11 - 000000000 ____D C:\Users\Zac\Downloads\Madness
2017-08-27 16:01 - 2017-08-27 22:15 - 008992555 _____ C:\Users\Zac\Downloads\sigh Ooarai.rbxl
2017-08-27 15:44 - 2017-08-27 15:56 - 182271560 _____ C:\Users\Zac\Downloads\KimomenDemoHaremGuild.part3.rar
2017-08-27 15:31 - 2017-08-27 15:45 - 209715200 _____ C:\Users\Zac\Downloads\KimomenDemoHaremGuild.part2.rar
2017-08-27 15:18 - 2017-08-27 15:33 - 209715200 _____ C:\Users\Zac\Downloads\KimomenDemoHaremGuild.part1.rar
2017-08-25 22:26 - 2017-08-26 02:04 - 000001574 _____ C:\Users\Zac\Downloads\Staff_Application.txt
2017-08-25 18:30 - 2017-08-25 18:30 - 001452787 _____ C:\Users\Zac\Downloads\Meme.rbxl
2017-08-25 18:25 - 2017-08-25 18:25 - 000734284 _____ C:\Users\Zac\Downloads\Type-97_Chi-Ha_CLASSIFIED_TECH_YOW.rbxmx
2017-08-24 17:25 - 2017-08-28 14:49 - 000281032 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2017-08-24 17:25 - 2017-08-24 17:25 - 000000000 ____D C:\Users\Zac\AppData\Local\PunkBuster
2017-08-24 17:22 - 2017-08-24 17:22 - 000000000 ____D C:\Program Files (x86)\Microsoft Chart Controls
2017-08-24 15:52 - 2017-08-24 15:52 - 001437928 _____ C:\Users\Zac\Downloads\Flans Mod 5.0 for MC 1.8 Apocalypse 1.0.zip
2017-08-24 15:22 - 2017-08-24 15:22 - 003719516 _____ C:\Users\Zac\Downloads\forge-1.8-11.14.4.1563-installer-win.exe
2017-08-24 15:21 - 2017-08-24 15:21 - 001608681 _____ C:\Users\Zac\Downloads\Flans Mod 5.3 for MC 1.8 FM Apocalypse 1.0.zip
2017-08-24 02:00 - 2017-08-24 02:00 - 000000221 _____ C:\Users\Zac\Desktop\Rising StormRed Orchestra 2 Multiplayer.url
2017-08-23 22:33 - 2017-08-23 22:33 - 000000000 ____D C:\Users\Zac\.mputils
2017-08-23 22:14 - 2017-08-23 22:16 - 000000000 ____D C:\Users\Zac\AppData\Roaming\.technic
2017-08-23 22:13 - 2017-08-23 22:14 - 004734784 _____ () C:\Users\Zac\Downloads\TechnicLauncher.exe
2017-08-23 22:08 - 2017-08-23 22:08 - 002357299 _____ C:\Users\Zac\Downloads\mystcraft-1.11.2-0.13.2.00.jar
2017-08-23 21:36 - 2017-08-23 21:36 - 000000000 ____D C:\Users\Zac\AppData\Roaming\.atlauncher
2017-08-23 21:35 - 2017-08-23 21:35 - 000000000 ____D C:\Users\Zac\Downloads\New folder (2)
2017-08-23 20:50 - 2017-08-23 20:50 - 000162403 _____ C:\Users\Zac\Downloads\the Mecha Musume Wallpaper Mecha Musume iPhone Wallpaper Mecha ....jpeg
2017-08-23 19:50 - 2017-08-24 23:55 - 000102482 _____ C:\Users\Zac\Desktop\USCA.graphml
2017-08-23 14:22 - 2017-08-23 14:22 - 000171192 _____ (BullGuard Ltd.) C:\Windows\system32\BgGamingMonitor.dll
2017-08-23 14:22 - 2017-08-23 14:22 - 000152640 _____ (BullGuard Ltd.) C:\Windows\SysWOW64\BgGamingMonitor.dll
2017-08-23 14:22 - 2017-08-23 14:22 - 000076568 _____ (BullGuard Ltd.) C:\Windows\system32\BGLsp.dll
2017-08-23 14:22 - 2017-08-23 14:22 - 000061720 _____ (BullGuard Ltd.) C:\Windows\SysWOW64\BGLsp.dll
2017-08-23 02:31 - 2017-08-23 02:31 - 000144661 _____ C:\Users\Zac\Downloads\vector-misc-gold-crown-and-shi.zip
2017-08-23 02:27 - 2017-08-23 02:27 - 001199228 _____ C:\Users\Zac\Downloads\4_09.zip
2017-08-23 00:18 - 2017-08-24 00:31 - 000125866 _____ C:\Users\Zac\Desktop\UKA.graphml
2017-08-21 15:32 - 2017-08-21 15:32 - 000000000 ____D C:\ProgramData\Unknown Worlds
2017-08-20 16:35 - 2017-08-20 16:35 - 000000000 ____D C:\Users\Zac\AppData\Local\Funcom
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-09-17 19:41 - 2016-08-31 17:18 - 000000000 ____D C:\ProgramData\BullGuard
2017-09-17 19:28 - 2016-09-07 16:48 - 000000000 ____D C:\Program Files (x86)\Steam
2017-09-17 19:21 - 2016-11-02 02:25 - 000067480 _____ C:\Users\Administrato\AppData\Local\GDIPFONTCACHEV1.DAT
2017-09-17 19:21 - 2009-07-14 05:45 - 000016112 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-09-17 19:21 - 2009-07-14 05:45 - 000016112 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-09-17 19:14 - 2009-07-14 06:13 - 000778180 _____ C:\Windows\system32\PerfStringBackup.INI
2017-09-17 19:14 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2017-09-17 19:12 - 2016-09-07 16:49 - 000000902 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2017-09-17 19:11 - 2016-08-31 16:02 - 000000000 ____D C:\ProgramData\NVIDIA
2017-09-17 19:09 - 2016-09-07 16:49 - 000000898 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2017-09-17 19:09 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-09-17 16:57 - 2016-09-09 19:46 - 000000000 ____D C:\Users\Zac\AppData\Local\Roblox
2017-09-17 10:22 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\NDF
2017-09-17 09:11 - 2016-09-07 16:43 - 000000000 ____D C:\Users\Zac\AppData\Roaming\discord
2017-09-16 22:13 - 2016-09-07 16:30 - 000067480 _____ C:\Users\Zac\AppData\Local\GDIPFONTCACHEV1.DAT
2017-09-16 21:40 - 2009-07-14 05:45 - 000287744 _____ C:\Windows\system32\FNTCACHE.DAT
2017-09-16 21:34 - 2017-05-31 13:54 - 000003160 _____ C:\Windows\System32\Tasks\SidebarExecute
2017-09-16 21:32 - 2017-07-11 23:23 - 000000000 ____D C:\Users\Zac\Documents\Reliant NCC 1864
2017-09-16 21:31 - 2009-07-14 03:34 - 000000439 _____ C:\Windows\win.ini
2017-09-16 15:24 - 2016-09-08 18:06 - 000000000 ____D C:\Users\Administrato
2017-09-16 15:14 - 2016-09-07 16:48 - 000000000 ____D C:\Program Files (x86)\Dropbox
2017-09-16 14:27 - 2009-07-14 06:08 - 000032620 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-09-15 19:24 - 2017-05-31 21:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-09-15 19:24 - 2016-08-31 16:01 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2017-09-15 19:23 - 2016-08-31 16:01 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2017-09-13 18:07 - 2016-09-09 19:47 - 000001345 _____ C:\Users\Zac\Desktop\Roblox Player.lnk
2017-09-13 18:07 - 2016-09-09 19:47 - 000001164 _____ C:\Users\Zac\Desktop\Roblox Studio.lnk
2017-09-13 18:07 - 2016-09-09 19:47 - 000000000 ____D C:\Users\Zac\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2017-09-13 00:53 - 2016-05-02 22:10 - 000000000 ____D C:\Windows\system32\MRT
2017-09-13 00:48 - 2016-05-02 22:10 - 138202976 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-09-13 00:45 - 2016-05-02 17:01 - 000763278 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2017-09-12 23:29 - 2017-07-08 14:18 - 000004468 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-09-12 23:29 - 2016-05-03 07:56 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-09-12 23:29 - 2016-05-03 07:56 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-09-12 23:29 - 2016-05-03 07:56 - 000004312 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-09-12 23:29 - 2016-05-03 07:56 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2017-09-12 23:29 - 2016-05-03 07:56 - 000000000 ____D C:\Windows\system32\Macromed
2017-09-11 22:16 - 2016-09-15 21:39 - 000000000 ____D C:\Users\Zac\AppData\Local\CrashDumps
2017-09-08 18:49 - 2017-07-17 15:31 - 000000000 ____D C:\Users\Zac\Desktop\HighJinx-0.29-pc
2017-09-08 18:49 - 2016-09-17 19:02 - 000000000 ____D C:\Users\Zac\AppData\Roaming\RenPy
2017-09-05 20:58 - 2016-10-15 00:16 - 000000000 ____D C:\Users\Zac\AppData\Roaming\vlc
2017-08-31 21:59 - 2016-11-16 21:28 - 000000000 ____D C:\Users\Administrato\AppData\Local\CrashDumps
2017-08-31 21:52 - 2016-12-14 22:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics
2017-08-30 22:22 - 2017-06-16 17:19 - 000000000 ____D C:\Users\Zac\Downloads\Formby
2017-08-30 21:48 - 2016-09-18 14:07 - 000000000 ____D C:\Users\Zac\Documents\ROBLOX
2017-08-30 19:19 - 2017-02-28 18:49 - 000000000 ____D C:\Program Files\SOLIDWORKS Corp
2017-08-30 19:16 - 2017-02-28 18:23 - 000000000 ____D C:\Users\Administrato\Documents\SOLIDWORKS Downloads
2017-08-30 18:58 - 2016-08-31 16:00 - 000000000 ____D C:\ProgramData\Package Cache
2017-08-30 15:33 - 2016-05-03 07:55 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-08-29 17:56 - 2016-09-08 18:17 - 000000000 ____D C:\Users\Zac\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2017-08-28 20:41 - 2017-06-01 00:53 - 000002195 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-08-28 20:41 - 2017-06-01 00:53 - 000002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-08-28 14:49 - 2017-01-24 18:13 - 000281032 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2017-08-28 12:12 - 2017-01-24 18:13 - 000281032 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2017-08-26 22:39 - 2017-07-25 20:35 - 000001272 _____ C:\Users\Zac\Desktop\nativelog.txt
2017-08-26 22:39 - 2016-09-14 18:26 - 000000000 ____D C:\Users\Zac\AppData\Roaming\.minecraft
2017-08-26 22:37 - 2017-05-31 16:23 - 000000000 ____D C:\Users\Zac\Desktop\Games
2017-08-25 19:14 - 2017-01-24 18:13 - 000076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2017-08-24 17:20 - 2016-09-07 23:28 - 000000000 ____D C:\Users\Zac\Documents\My Games
2017-08-23 22:33 - 2016-09-06 17:19 - 000000000 ____D C:\Users\Zac
2017-08-23 22:29 - 2016-09-24 12:51 - 000000000 ____D C:\Games
2017-08-23 22:27 - 2017-07-06 20:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microprose
2017-08-23 22:27 - 2017-07-06 20:03 - 000000000 ____D C:\botf
2017-08-23 20:12 - 2017-02-20 00:38 - 000000000 ____D C:\Users\Zac\AppData\Roaming\Factorio
2017-08-21 13:09 - 2017-08-13 16:35 - 000214085 _____ C:\Users\Zac\Desktop\British Tree.graphml
2017-08-20 16:35 - 2016-10-21 22:37 - 000000000 ___HD C:\Windows\msdownld.tmp
2017-08-20 16:35 - 2016-10-21 22:37 - 000000000 ____D C:\Windows\SysWOW64\directx
2017-08-20 02:38 - 2017-08-12 23:57 - 000133279 _____ C:\Users\Zac\Desktop\Belgian Treee.graphml
==================== Files in the root of some directories =======
2017-01-24 18:15 - 2017-01-24 18:15 - 000000000 ___SH () C:\ProgramData\.rdata
2016-08-31 21:43 - 2016-08-31 21:43 - 000000000 ____H () C:\ProgramData\DP45977C.lfl
2016-10-02 23:13 - 2016-10-02 23:13 - 000000123 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-06-26 13:43
==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-09-2017
Ran by Administrato (17-09-2017 19:43:53)
Running from C:\Users\Zac\Downloads
Windows 7 Home Premium Service Pack 1 (X64) (2016-08-31 20:31:31)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrato (S-1-5-21-1031213751-2141322334-938452745-1003 - Administrator - Enabled) => C:\Users\Administrato
Administrator (S-1-5-21-1031213751-2141322334-938452745-500 - Administrator - Disabled)
Guest (S-1-5-21-1031213751-2141322334-938452745-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1031213751-2141322334-938452745-1005 - Limited - Enabled)
Zac (S-1-5-21-1031213751-2141322334-938452745-1002 - Limited - Enabled) => C:\Users\Zac
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: BullGuard Antivirus (Enabled - Up to date) {13E9CAA5-762A-794E-2DA9-245D5622A105}
AS: BullGuard Antispyware (Enabled - Up to date) {A8882B41-5010-76C0-1719-1F2F2DA5EBB8}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: BullGuard Firewall (Enabled) {2BD24B80-3C45-7816-06F6-8D68A8F1E67E}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 16.02 (x64) (HKLM\...\7-Zip) (Version: 16.02 - Igor Pavlov)
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 17.012.20098 - Adobe Systems Incorporated)
Adobe Flash Player 27 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 27.0.0.130 - Adobe Systems Incorporated)
Adobe Flash Player 27 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 27.0.0.130 - Adobe Systems Incorporated)
Age of Empires® III: Complete Collection (HKLM\...\Steam App 105450) (Version: - Ensemble Studios)
Akamai NetSession Interface (HKU\S-1-5-21-1031213751-2141322334-938452745-1003\...\Akamai) (Version: - Akamai Technologies, Inc)
Aliens vs. Predator (HKLM\...\Steam App 10680) (Version: - Rebellion)
All The Ages mod (HKLM-x32\...\{18C94B21-9C7B-11D0-933A-10312CEA7318}_is1) (Version: 1.0.0 - microprose)
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 384.94 - NVIDIA Corporation) Hidden
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.12.0 - Asmedia Technology)
ASRock App Charger v1.0.6 (HKLM\...\ASRock App Charger_is1) (Version: 1.0.6 - ASRock Inc.)
Aura Kingdom (HKLM\...\Steam App 268420) (Version: - X-Legend)
AutoREALM Version 2.2.1 (HKLM-x32\...\AutoREALM_is1) (Version: - )
Balance of Power (HKLM-x32\...\{18C94B21-9C7B-11D0-933A-10311CEA7318}_is1) (Version: 1.2.0 - microprose)
Banished (HKLM\...\Steam App 242920) (Version: - Shining Rock Software LLC)
Battlestar Galactica Online (HKLM-x32\...\Battlestar Galactica Online_is1) (Version: 1.0 - Bigpoint GmbH)
Birth of the Federation (HKLM-x32\...\{18C94B21-9C7B-11D0-933A-10308CEA7318}_is1) (Version: 1.0.3 - microprose)
Black Mesa (HKLM\...\Steam App 362890) (Version: - Crowbar Collective)
Borg Incursion Mod (HKLM-x32\...\{18C94B21-9C7B-11D0-933A-10323CEA7318}_is1) (Version: 2.0.0 - microprose)
BOTF Tools (HKLM-x32\...\{18C94B21-9C7B-11D0-933A-10307CEA7318}_is1) (Version: 1.0.0 - microprose)
BullGuard Internet Security (HKLM\...\BullGuard) (Version: 17.1 - BullGuard Ltd.)
Call of Duty 2 (HKLM\...\Steam App 2630) (Version: - Infinity Ward)
CCleaner (HKLM\...\CCleaner) (Version: 5.33 - Piriform)
Colony Survival (HKLM\...\Steam App 366090) (Version: - Pipliz)
Company of Heroes (New Steam Version) (HKLM\...\Steam App 228200) (Version: - Relic)
Company of Heroes: Eastern Front (HKLM\...\Steam App 317600) (Version: - Archaic Entertainment)
Company of Heroes: Europe at War (HKLM\...\Steam App 342370) (Version: - Relic Entertainment)
Company of Heroes: Far East War (HKLM\...\Steam App 547180) (Version: - Far East War Development Team)
Company of Heroes: The Great War 1918 (HKLM\...\Steam App 314420) (Version: - Relic Entertainment)
Crash Dive (HKLM\...\Steam App 365260) (Version: - Panic Ensues Software)
Crush Crush (HKLM\...\Steam App 459820) (Version: - Sad Panda Studios)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.4.0.0195 - Disc Soft Ltd)
Dawn of Andromeda (HKLM\...\Steam App 427570) (Version: - Grey Wolf Entertainment)
Day of Infamy (HKLM\...\Steam App 447820) (Version: - New World Interactive)
Delta Quadrant Mod (HKLM-x32\...\{18C94B21-9C7B-11D0-933A-10327CEA7318}_is1) (Version: 3.0.0 - microprose)
Dirty Bomb (HKLM\...\Steam App 333930) (Version: - Splash Damage®)
Discord (HKU\S-1-5-21-1031213751-2141322334-938452745-1002\...\Discord) (Version: 0.0.298 - Discord Inc.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 34.4.22 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.59.1 - Dropbox, Inc.) Hidden
Europa Universalis IV (HKLM\...\Steam App 236850) (Version: - Paradox Development Studio)
Evil Genius (HKLM\...\Steam App 3720) (Version: - Elixir Studios)
f.lux (HKU\S-1-5-21-1031213751-2141322334-938452745-1002\...\Flux) (Version: - )
Factorio (HKLM\...\Steam App 427520) (Version: - Wube Software LTD.)
Fallout Mod Manager 0.13.21 (HKLM-x32\...\Generic Mod Manager_is1) (Version: - Q, Timeslip)
Foxhole (HKLM\...\Steam App 505460) (Version: - Clapfoot)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 60.0.3112.113 - Google Inc.)
Google Drive (HKLM-x32\...\{A90339B3-2C3F-492E-B3A7-0BDFC691E526}) (Version: 2.34.6425.2548 - Google, Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Half-Life Deathmatch: Source (HKLM\...\Steam App 360) (Version: - Valve)
Hearts of Iron IV (HKLM\...\Steam App 394360) (Version: - Paradox Development Studio)
Hegemony III: Clash of the Ancients (HKLM\...\Steam App 308173) (Version: - Longbow Games)
Hyperdimension Neptunia Re;Birth1 (HKLM\...\Steam App 282900) (Version: - IDEA FACTORY Co., Ltd.)
Hyperdimension Neptunia Re;Birth2 Sisters Generation (HKLM\...\Steam App 351710) (Version: - Idea Factory)
ILLUSION RapeLay (HKLM-x32\...\{D1E1F028-1953-43A3-BFD8-D2A00EC06E36}) (Version: 1.00.0000 - ILLUSION)
Intel® Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{0EC7F9CC-4741-45AE-9F55-6E9343F726F5}) (Version: 1.1.0.36960 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.0.0.102 - Intel Corporation)
Java 8 Update 141 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180141F0}) (Version: 8.0.1410.15 - Oracle Corporation)
Manga maker ComiPo! (HKLM\...\Steam App 262490) (Version: - ComiPo! LLP)
MAXtoA for 3ds Max 2018 (HKLM\...\{471069C7-09E2-4289-8EB7-852237FD867E}) (Version: 1.0.712.0 - Solid Angle)
Men of War: Assault Squad 2 (HKLM\...\Steam App 244450) (Version: - Digitalmindsoft)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation)
Microsoft Office 2003 Web Components (HKLM-x32\...\{90120000-00A4-0409-0000-0000000FF1CE}) (Version: 12.0.6213.1000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.6122.5000 - Microsoft Corporation)
Microsoft Office Starter 2010 - English (HKLM-x32\...\{90140011-0066-0409-0000-0000000FF1CE}) (Version: 14.0.7168.5000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25008 (HKLM-x32\...\{f1e7e313-06df-4c56-96a9-99fdfd149c51}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU (HKLM\...\Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU) (Version: - Microsoft Corporation)
Microsoft Visual Studio 2005 Tools for Applications - ENU (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Applications - ENU) (Version: - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Mini Metro (HKLM\...\Steam App 287980) (Version: - Dinosaur Polo Club)
Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
My Game Long Name (HKLM\...\UDK-0a86a122-9e8d-4905-8c77-f45bf2706cc5) (Version: - Epic Games, Inc.)
My Game Long Name (HKLM\...\UDK-2a2728e4-e944-4b09-b326-3291242fbab8) (Version: - Epic Games, Inc.)
My Game Long Name (HKLM\...\UDK-7b518fd4-4cd7-48fd-b89a-ba0544e6862d) (Version: - Epic Games, Inc.)
My Game Long Name (HKLM\...\UDK-9faedfef-aaf5-4a42-9738-fbcd04ed7d31) (Version: - Epic Games, Inc.)
My Game Long Name (HKLM\...\UDK-e3deeaa7-02e5-43b2-a93e-be1de0f680b7) (Version: - Epic Games, Inc.)
Northgard (HKLM\...\Steam App 466560) (Version: - Shiro Games)
NVIDIA 3D Vision Controller Driver 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 384.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 384.94 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.8.0.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.8.0.89 - NVIDIA Corporation)
NVIDIA Graphics Driver 384.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 384.94 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.27 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{7B5AA67E-FEA0-40BB-BAB5-CA56645A589C}) (Version: 9.13.0725 - NVIDIA Corporation)
NVIDIA PhysX (Legacy) (HKLM-x32\...\{6F9D5A0B-202C-4161-BC7F-0664EA39E7E7}) (Version: 9.12.1031 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
paint.net (HKLM\...\{02D89175-E08F-401B-BA30-8B7512B57724}) (Version: 4.0.17 - dotPDN LLC)
Panzer Vor Launcher (HKLM-x32\...\Panzer Vor Launcher) (Version: 1.1.0 - Oriko Industries)
Pirates Of The Burning Sea (HKLM-x32\...\potbs) (Version: 1.0.0.32 - )
Prison Architect (HKLM\...\Steam App 233450) (Version: - Introversion Software)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.992 - Even Balance, Inc.)
Rags Suite (HKLM-x32\...\{E50D4D29-C7B5-4136-AADE-D85794926840}) (Version: 2.4.0 - RagsGame)
Rags Suite 3.0.60 (HKU\S-1-5-21-1031213751-2141322334-938452745-1003\...\Rags Suite 3.0.60) (Version: - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.86.508.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7209 - Realtek Semiconductor Corp.)
Rising Storm/Red Orchestra 2 Multiplayer (HKLM\...\Steam App 35450) (Version: - Tripwire Interactive)
Roblox Player for Zac (HKU\S-1-5-21-1031213751-2141322334-938452745-1002\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - Roblox Corporation)
Roblox Studio for Zac (HKU\S-1-5-21-1031213751-2141322334-938452745-1002\...\{2922D6F1-2865-4EFA-97A9-94EEAB3AFA14}) (Version: - Roblox Corporation)
Robocraft (HKLM\...\Steam App 301520) (Version: - Freejam)
Shockwave (HKLM-x32\...\Shockwave) (Version: - )
Sid Meier's Civilization IV Colonization (HKU\S-1-5-21-1031213751-2141322334-938452745-1003\...\{EF36A836-BF89-4A4F-B079-057B0C68C1E0}) (Version: 1.00 - Firaxis Games)
Sid Meier's Civilization V (HKLM\...\Steam App 8930) (Version: - Firaxis Games)
Sid Meier's Civilization V (HKLM-x32\...\steam app 8930) (Version: - 2K Games, Inc.)
Sid Meier's Railroads! (HKLM\...\Steam App 7600) (Version: - Firaxis Games)
Sins of a Solar Empire: Rebellion (HKLM\...\Steam App 204880) (Version: - Ironclad Games)
Speccy (HKLM\...\Speccy) (Version: 1.30 - Piriform)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Star Trek Online (HKLM\...\Steam App 9900) (Version: - Cryptic Studios)
Star Trek Voyager Elite Force (HKLM-x32\...\Star Trek Voyager Elite Force) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Subnautica (HKLM\...\Steam App 264710) (Version: - Unknown Worlds Entertainment)
Sunless Sea (HKLM\...\Steam App 304650) (Version: - Failbetter Games)
SurvHive (HKLM\...\Steam App 499230) (Version: - Rocking Hamster)
SurvHive (HKLM\...\UDK-cfce8cda-403f-419a-af2e-53ce70521351) (Version: - Epic Games, Inc.)
The Ship (HKLM\...\Steam App 2400) (Version: - Outerlight Ltd.)
Theme Park Inc (HKLM-x32\...\{094FABA0-4865-11D4-95B6-000103485DB6}) (Version: - )
Theme Park World (HKLM-x32\...\Theme Park World) (Version: - )
Theme Park World Fix (HKLM-x32\...\{42082D6A-7C60-4CD9-B6FC-81E6F1FA96EF}) (Version: 1.0.0 - Adam Hearn)
Tweaking.com - Windows Repair (HKLM-x32\...\Tweaking.com - Windows Repair) (Version: 3.9.32 - Tweaking.com)
TyranoBuilder Visual Novel Studio (HKLM\...\Steam App 345370) (Version: - STRIKEWORKS)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
UE4 Prerequisites (x64) (HKLM\...\{36EAD5CF-44EF-4FCF-8BE1-D96C4835D7A4}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{2890ae6b-90e9-448d-b3e6-97e43c21e2fd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
Ultimate Mod 5 (HKLM-x32\...\{18C94B21-9C7B-11D0-933A-10313CEA7318}_is1) (Version: 2.5.0 - microprose)
Valkyria Chronicles™ (HKLM\...\Steam App 294860) (Version: - SEGA)
Verdun (HKLM\...\Steam App 242860) (Version: - M2H)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.6 - VideoLAN)
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.)
War Thunder (HKLM\...\Steam App 236390) (Version: - Gaijin Entertainment)
We Happy Few (HKLM\...\Steam App 320240) (Version: - Compulsion Games)
Windows Driver Package - Realtek (RTL8167) Net (07/16/2014 7.089.0716.2014) (HKLM\...\8776E507C4538E1DB47E7B5F7CA62972C8B8CA8D) (Version: 07/16/2014 7.089.0716.2014 - Realtek)
Windows Movie Maker 2016 (HKLM-x32\...\{3CC29C1A-B5FE-457B-8F22-32A2videowin}}_is1) (Version: - videowinsoft.com)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
World of Tanks Blitz (HKLM\...\Steam App 444200) (Version: - Wargaming Group Limited)
World of Warships (HKU\S-1-5-21-1031213751-2141322334-938452745-1002\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814eu}_is1) (Version: - Wargaming.net)
XCOM 2 (HKLM\...\Steam App 268500) (Version: - Firaxis)
yEd Graph Editor 3.16.2.1 (HKLM\...\3309-7404-0599-8908) (Version: 3.16.2.1 - yWorks GmbH)
yEd Graph Editor 3.17 (HKLM-x32\...\3309-7404-0599-8908) (Version: 3.17 - yWorks GmbH)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1031213751-2141322334-938452745-1003_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2018\Inventor Server\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-1031213751-2141322334-938452745-1003_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2018\Inventor Server\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-1031213751-2141322334-938452745-1003_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2018\Inventor Server\Bin\TestServer.dll => No File
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-08-04] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-08-04] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-08-04] (Google)
ShellIconOverlayIdentifiers: [BackupOverlayErr] -> {8749448C-D907-45BF-A842-4D3898894AC8} => C:\Program Files\BullGuard Ltd\BullGuard\BackupShellHook.dll [2017-08-23] (BullGuard Ltd.)
ShellIconOverlayIdentifiers: [BackupOverlayInProgress] -> {3FFBF330-7839-476B-BE14-2C8597CE11B6} => C:\Program Files\BullGuard Ltd\BullGuard\BackupShellHook.dll [2017-08-23] (BullGuard Ltd.)
ShellIconOverlayIdentifiers: [BackupOverlaySynced] -> {C62CF4DB-48CB-4B03-BFD0-30A29125FA49} => C:\Program Files\BullGuard Ltd\BullGuard\BackupShellHook.dll [2017-08-23] (BullGuard Ltd.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-08-04] (Google)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-08-04] (Google)
ContextMenuHandlers4: [MSSE] -> {0365FE2C-F183-4091-AC82-BFC39FB75C49} => -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-09-14] (Dropbox, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2017-07-19] (NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov)
ContextMenuHandlers6: [bgshellext] -> {F4BF1657-195F-4A0F-ACA2-9AE99D65BC0E} => C:\Program Files\BullGuard Ltd\BullGuard\BgShellExt.dll [2017-08-23] (BullGuard Ltd.)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {04E7BFC9-0BCB-4710-852E-8EC3CBFCCC2D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-07] (Google Inc.)
Task: {2FCB583B-4445-4F3C-A1E6-BDDA0041CFF4} - System32\Tasks\Tweaking.com - Windows Repair Tray Icon => C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe [2015-03-12] (Tweaking.com)
Task: {3185840D-8AC0-499A-8E5E-713B591DE418} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-07-26] (NVIDIA Corporation)
Task: {33987E10-AF68-4EFB-AB93-C6DC120CD89F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-07] (Google Inc.)
Task: {460B3CD8-9C46-4CF6-A113-E53FA6B53CFB} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_27_0_0_130_pepper.exe [2017-09-12] (Adobe Systems Incorporated)
Task: {4A52EE4B-64F0-4FE4-9969-76BA12D0AD5A} - System32\Tasks\Games\UpdateCheck_S-1-5-21-1031213751-2141322334-938452745-1002
Task: {58CCF945-8BD8-49A9-8B52-1E49DA007C6F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-08-03] (Piriform Ltd)
Task: {6126E2E8-9936-4475-A9CF-7FB31C7A7921} - System32\Tasks\BullGuard\BullGuardUpdate2 => C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate2.exe [2017-08-23] (BullGuard Ltd.)
Task: {689530A6-6DEA-4FC4-A1A6-ED789225E07F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated)
Task: {724975B0-AC31-4CBB-891A-09C950665493} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-07-26] (NVIDIA Corporation)
Task: {7C78359B-DDC7-410C-A2EF-9CECD74205A4} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-07-26] (NVIDIA Corporation)
Task: {A6F1D5C8-BE73-435D-A42C-C9230914F832} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-07-26] (NVIDIA Corporation)
Task: {A7AAC3C0-371A-45A8-BB5D-C7440338FF1A} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-09-07] (Dropbox, Inc.)
Task: {B354004E-0786-4193-935D-7C6A7ABDBBAB} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-09-12] (Adobe Systems Incorporated)
Task: {B4E4A819-1C1A-486D-A274-6BF835153AD5} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20] (Microsoft Corporation)
Task: {BBB9593A-163C-4A29-A663-41D974840E74} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-07-26] (NVIDIA Corporation)
Task: {C6A7E549-F3B5-4AE5-8E8B-6FBF18C29D1E} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe [2013-03-07] (Intel Corporation)
Task: {CBF47FAA-A0AD-4533-8804-43C928981B3E} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-07-26] (NVIDIA Corporation)
Task: {D76ADEAC-46DD-46BD-92BF-944A1958EAD3} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-07-26] (NVIDIA Corporation)
Task: {D8F2A1FA-362D-4E73-9514-B2F754DEA72A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-07-26] (NVIDIA Corporation)
Task: {E063CAC4-3B04-4C27-AF45-700C6E746A7C} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-09-07] (Dropbox, Inc.)
Task: {E889BA15-B7D3-4C68-8D0A-CC790B00E19B} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe [2013-03-07] (Intel Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2017-08-23 14:22 - 2017-08-23 14:22 - 000727320 _____ () c:\program files\bullguard ltd\bullguard\SQLite.dll
2017-08-23 14:22 - 2017-08-23 14:22 - 000084248 _____ () c:\program files\bullguard ltd\bullguard\zlib1.dll
2017-08-23 14:22 - 2017-08-23 14:22 - 000644888 _____ () c:\program files\bullguard ltd\bullguard\LibXml2.dll
2017-08-23 14:22 - 2017-08-23 14:22 - 000064792 _____ () C:\Program Files\BullGuard Ltd\BullGuard\LIBBZ2.dll
2017-05-31 21:51 - 2017-07-26 18:09 - 001267136 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-01-24 18:13 - 2017-08-25 19:14 - 000076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2017-08-28 20:41 - 2017-08-23 09:48 - 002692952 _____ () C:\Program Files (x86)\Google\Chrome\Application\60.0.3112.113\swiftshader\libglesv2.dll
2017-08-28 20:41 - 2017-08-23 09:48 - 000137048 _____ () C:\Program Files (x86)\Google\Chrome\Application\60.0.3112.113\swiftshader\libegl.dll
2016-09-07 16:49 - 2017-08-04 22:19 - 000678176 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2016-09-07 16:49 - 2016-09-01 02:02 - 004969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2016-09-07 16:49 - 2016-09-01 02:02 - 001563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2016-09-07 16:49 - 2016-09-01 02:02 - 001195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2016-09-07 16:49 - 2017-09-07 05:51 - 002505504 _____ () C:\Program Files (x86)\Steam\video.dll
2016-09-07 16:49 - 2016-01-27 08:49 - 002549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2016-09-07 16:49 - 2016-01-27 08:49 - 000442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2016-09-07 16:49 - 2016-01-27 08:49 - 000491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2016-09-07 16:49 - 2016-01-27 08:49 - 000332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2016-09-07 16:49 - 2016-01-27 08:49 - 000485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2016-09-07 16:49 - 2017-09-07 05:51 - 000885024 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-09-07 16:49 - 2016-07-04 23:17 - 000266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2017-09-16 15:12 - 2017-09-14 22:41 - 000771392 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_watchdog.dll
2017-09-16 15:12 - 2017-09-14 22:41 - 001804608 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_crashpad.dll
2017-09-16 15:12 - 2017-09-14 22:40 - 000100296 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2017-09-16 15:12 - 2017-09-14 22:40 - 000018888 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2017-09-16 15:12 - 2017-09-14 22:43 - 000020800 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2017-09-16 15:12 - 2017-09-14 22:40 - 000035792 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2017-09-16 15:12 - 2017-09-14 22:42 - 000021848 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2017-09-16 15:12 - 2017-09-14 22:40 - 000125904 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2017-09-16 15:12 - 2017-09-14 22:40 - 000694224 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2017-09-16 15:12 - 2017-09-14 22:42 - 001862992 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2017-09-16 15:12 - 2017-09-14 22:42 - 000022864 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2017-09-16 15:12 - 2017-09-14 22:40 - 000145864 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2017-09-16 15:12 - 2017-09-14 22:41 - 000116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2017-09-16 15:12 - 2017-09-14 22:40 - 000105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2017-09-16 15:12 - 2017-09-14 22:43 - 000022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.crt.compiled._winffi_crt.pyd
2017-09-16 15:12 - 2017-09-14 22:42 - 000062784 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2017-09-16 15:12 - 2017-09-14 22:40 - 000024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2017-09-16 15:12 - 2017-09-14 22:42 - 000040248 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2017-09-16 15:12 - 2017-09-14 22:40 - 000020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2017-09-16 15:12 - 2017-09-14 22:40 - 000124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2017-09-16 15:12 - 2017-09-14 22:40 - 000116176 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2017-09-16 15:12 - 2017-09-14 22:41 - 000392656 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2017-09-16 15:12 - 2017-09-14 22:43 - 000392512 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2017-09-16 15:12 - 2017-09-14 22:43 - 000026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.pyd
2017-09-16 15:12 - 2017-09-14 22:40 - 000024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2017-09-16 15:12 - 2017-09-14 22:40 - 000175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2017-09-16 15:12 - 2017-09-14 22:40 - 000030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2017-09-16 15:12 - 2017-09-14 22:40 - 000043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2017-09-16 15:12 - 2017-09-14 22:40 - 000048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2017-09-16 15:12 - 2017-09-14 22:40 - 000057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd
2017-09-16 15:12 - 2017-09-14 22:42 - 000022336 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2017-09-16 15:12 - 2017-09-14 22:43 - 000023368 _____ () C:\Program Files (x86)\Dropbox\Client\winshell.compiled._winshell.pyd
2017-09-16 15:12 - 2017-09-14 22:43 - 000082264 _____ () C:\Program Files (x86)\Dropbox\Client\winenumhandles.compiled._WinEnumHandles.pyd
2017-09-16 15:12 - 2017-09-14 22:43 - 000025432 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2017-09-16 15:12 - 2017-09-14 22:40 - 000028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2017-09-16 15:12 - 2017-09-14 22:40 - 000024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2017-09-16 15:12 - 2017-09-14 22:42 - 001826104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2017-09-16 15:12 - 2017-09-14 22:40 - 000083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2017-09-16 15:12 - 2017-09-14 22:42 - 001972024 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2017-09-16 15:12 - 2017-09-14 22:42 - 003928896 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2017-09-16 15:12 - 2017-09-14 22:42 - 000171336 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.pyd
2017-09-16 15:12 - 2017-09-14 22:42 - 000042816 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.pyd
2017-09-16 15:12 - 2017-09-14 22:42 - 000531264 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2017-09-16 15:12 - 2017-09-14 22:42 - 000133432 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2017-09-16 15:12 - 2017-09-14 22:42 - 000224064 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2017-09-16 15:12 - 2017-09-14 22:42 - 000207680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2017-09-16 15:12 - 2017-09-14 22:40 - 000060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd
2017-09-16 15:12 - 2017-09-14 22:43 - 000054608 _____ () C:\Program Files (x86)\Dropbox\Client\winrpcserver.compiled._RPCServer.pyd
2017-09-16 15:12 - 2017-09-14 22:43 - 000022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32.compiled._winffi_user32.pyd
2017-09-16 15:12 - 2017-09-14 22:43 - 000022872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi.compiled._winffi_iphlpapi.pyd
2017-09-16 15:12 - 2017-09-14 22:43 - 000021848 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror.compiled._winffi_winerror.pyd
2017-09-16 15:12 - 2017-09-14 22:43 - 000022872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet.compiled._winffi_wininet.pyd
2017-09-16 15:12 - 2017-09-14 22:42 - 000027488 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd
2017-09-16 15:12 - 2017-09-14 22:40 - 000349128 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2017-09-16 15:12 - 2017-09-14 22:43 - 000023896 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd
2017-09-16 15:12 - 2017-09-14 22:42 - 000025936 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2017-09-16 15:12 - 2017-09-14 22:41 - 000036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2017-09-16 15:12 - 2017-09-14 22:42 - 000181056 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2017-09-16 15:12 - 2017-09-14 22:43 - 000030536 _____ () C:\Program Files (x86)\Dropbox\Client\wind3d11.compiled._wind3d11.pyd
2017-09-16 15:12 - 2017-09-14 22:42 - 000024368 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.dll
2017-09-16 15:12 - 2017-09-14 22:42 - 001637688 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
2017-09-16 15:12 - 2017-09-14 22:43 - 000026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.pyd
2017-09-16 15:12 - 2017-09-14 22:43 - 000023368 _____ () C:\Program Files (x86)\Dropbox\Client\wincrashpad.compiled._Crashpad.pyd
2017-09-16 15:12 - 2017-09-14 22:42 - 000546104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd
2017-09-16 15:12 - 2017-09-14 22:42 - 000357688 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd
2017-05-31 21:51 - 2017-07-26 18:09 - 001040320 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-12-12 23:55 - 2017-07-17 23:50 - 073115424 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
2017-06-09 10:58 - 2017-05-17 02:54 - 000678176 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\SDL2.dll
2016-09-07 16:49 - 2015-09-25 00:52 - 000119208 _____ () C:\Program Files (x86)\Steam\winh264.dll
2016-08-31 21:44 - 2013-09-03 16:52 - 001242584 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll
2017-08-09 00:51 - 2017-08-08 15:13 - 001893880 _____ () C:\Users\Zac\AppData\Local\Discord\app-0.0.298\ffmpeg.dll
2017-08-09 00:51 - 2017-08-08 15:13 - 001938424 _____ () C:\Users\Zac\AppData\Local\Discord\app-0.0.298\libglesv2.dll
2017-08-09 00:51 - 2017-08-08 15:13 - 000095736 _____ () C:\Users\Zac\AppData\Local\Discord\app-0.0.298\libegl.dll
2017-08-09 17:04 - 2017-08-31 13:46 - 009622008 _____ () \\?\C:\Users\Zac\AppData\Roaming\discord\0.0.298\modules\discord_voice\discord_voice.node
2017-08-09 17:04 - 2017-08-09 17:04 - 001440248 _____ () \\?\C:\Users\Zac\AppData\Roaming\discord\0.0.298\modules\discord_utils\discord_utils.node
2017-08-14 11:52 - 2017-08-14 11:52 - 000148992 _____ () \\?\C:\Users\Zac\AppData\Local\Discord\app-0.0.298\resources\app\node_modules\erlpack\build\Release\erlpack.node
2017-08-09 17:02 - 2017-08-09 17:02 - 002658296 _____ () \\?\C:\Users\Zac\AppData\Roaming\discord\0.0.298\modules\discord_rpc\discord_rpc.node
2017-08-09 17:08 - 2017-08-09 17:08 - 002673656 _____ () \\?\C:\Users\Zac\AppData\Roaming\discord\0.0.298\modules\discord_contact_import\discord_contact_import.node
2017-02-23 01:18 - 2017-02-23 01:18 - 000111104 _____ () C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis IV\pdx_online.dll
2017-02-23 01:12 - 2017-02-23 01:18 - 000583680 _____ () C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis IV\pops_api.dll
2016-09-07 16:49 - 2017-07-19 02:53 - 000384288 _____ () C:\Program Files (x86)\Steam\steam.dll
2010-12-17 12:56 - 2010-12-17 12:56 - 002603520 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtCore4.dll
2010-12-17 12:56 - 2010-12-17 12:56 - 000382464 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtXml4.dll
2010-01-12 16:55 - 2010-01-12 16:55 - 000400384 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\sqlite3.dll
2010-01-12 16:55 - 2010-01-12 16:55 - 000322048 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\log4cplus.dll
2013-03-07 12:53 - 2013-03-07 12:53 - 000015872 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\featureController.dll
2010-12-17 12:56 - 2010-12-17 12:56 - 001006592 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtNetwork4.dll
2010-12-16 12:16 - 2010-12-16 12:16 - 000195584 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\libgsoap.dll
2010-01-17 23:34 - 2010-01-17 23:34 - 000062464 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\zlib1.dll
2013-03-07 12:55 - 2013-03-07 12:55 - 000472576 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\DeviceProfile.dll
2013-03-07 12:58 - 2013-03-07 12:58 - 000499488 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\PServerPlugin.dll
2013-03-07 12:54 - 2013-03-07 12:54 - 000013824 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\eventsSender.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\Zac:Heroes & Generals [38]
AlternateDataStreams: C:\ProgramData\.rdata:X [526]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0]
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsScanner => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsScanner => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsUpdate => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2017-09-16 21:31 - 000000855 _____ C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1031213751-2141322334-938452745-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Zac\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
HKU\S-1-5-21-1031213751-2141322334-938452745-1003\Control Panel\Desktop\\Wallpaper -> C:\Users\Administrato\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
MSCONFIG\startupreg: Dropbox => "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
MSCONFIG\startupreg: Wondershare Helper Compact.exe => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [VirtualPC-In-UDP-1] => (Allow) %SystemRoot%\System32\vpc.exe
FirewallRules: [VirtualPC-In-UDP-2] => (Allow) %SystemRoot%\System32\vpc.exe
FirewallRules: [VirtualPC-In-TCP-1] => (Allow) %SystemRoot%\System32\vpc.exe
FirewallRules: [{D679A5B9-468B-4CE0-A92D-892AC2F8F132}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{E114E1F4-2156-485C-8871-C82386FD7EA1}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{E51C5DAD-0DC4-4F18-A7F9-E152D0B76919}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{028E0FE0-9E54-44BB-B3E2-A400BDFB57DB}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{A7BE29B2-AA4F-472F-B526-502DFC430484}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe
FirewallRules: [{1CF27AF0-A0C5-4343-863C-BA6A058DD5A7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe
FirewallRules: [TCP Query User{A2816B81-83DA-468C-A1FE-BF38C375DD37}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe
FirewallRules: [UDP Query User{FFFCE239-7CC7-4701-8A99-EDC0C0F86F44}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe
FirewallRules: [{2A5016D1-5081-418C-BBB3-240782F81D41}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sins of a Solar Empire Rebellion\Sins of a Solar Empire Rebellion.exe
FirewallRules: [{EE67D270-F4B6-445C-B9DD-D0E4835F2FB4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sins of a Solar Empire Rebellion\Sins of a Solar Empire Rebellion.exe
FirewallRules: [{E9AD4F6B-4397-41D3-BA11-581DCA083CF0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes Relaunch\RelicCOH.exe
FirewallRules: [{7B851DB5-7A17-4D17-84D4-E06942C070CF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes Relaunch\RelicCOH.exe
FirewallRules: [TCP Query User{90B4B04D-04AF-4ADE-8D0E-CB59CC197FC0}C:\program files (x86)\steam\steamapps\common\xcom-enemy-unknown\xew\binaries\win32\xcomew.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\xcom-enemy-unknown\xew\binaries\win32\xcomew.exe
FirewallRules: [UDP Query User{EEF34110-5064-40ED-A374-A65D575FD201}C:\program files (x86)\steam\steamapps\common\xcom-enemy-unknown\xew\binaries\win32\xcomew.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\xcom-enemy-unknown\xew\binaries\win32\xcomew.exe
FirewallRules: [{2C003377-E669-4ECC-81AC-2972CD01461E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Star Trek Online\Star Trek Online.exe
FirewallRules: [{EF291A60-DCEC-4183-A338-B72AFADD7C2D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Star Trek Online\Star Trek Online.exe
FirewallRules: [TCP Query User{FAE89C94-6D2A-4686-8F3A-2F455BBF801B}C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe
FirewallRules: [UDP Query User{D68775B8-0F6D-48FC-B6E9-9EB8E37B4F7F}C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe
FirewallRules: [{AB6DE4B6-A22B-4EDE-AF45-75F5B3BA029A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life 1 Source Deathmatch\hl2.exe
FirewallRules: [{B47FE66C-1EF2-4B63-9627-99841F662CA4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life 1 Source Deathmatch\hl2.exe
FirewallRules: [{9629C626-99D4-4FAB-BF45-F7DC86616605}] => (Allow) C:\Games\World_of_Warships\WoWSLauncher.exe
FirewallRules: [{9B7EF0EE-B182-419D-990E-B2D2D8BFCC0A}] => (Allow) C:\Games\World_of_Warships\WoWSLauncher.exe
FirewallRules: [{BCB9BD86-7522-4EB3-966D-968736C9AE91}] => (Allow) C:\Games\World_of_Warships\worldofwarships.exe
FirewallRules: [{8A260B40-5F30-48E4-8381-BC259E49731C}] => (Allow) C:\Games\World_of_Warships\worldofwarships.exe
FirewallRules: [{742BC669-B07B-49FD-8478-15B5719AC702}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hearts of Iron IV\hoi4.exe
FirewallRules: [{A21CC790-D6C5-47A8-8F6B-2EF15321F11A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hearts of Iron IV\hoi4.exe
FirewallRules: [TCP Query User{D93E792D-A688-4BB7-A328-BAA28F3E2EA4}C:\program files (x86)\xcom 2\binaries\win64\xcom2.exe] => (Allow) C:\program files (x86)\xcom 2\binaries\win64\xcom2.exe
FirewallRules: [UDP Query User{72DAB633-854F-4DEB-898D-1A0F144CDEE2}C:\program files (x86)\xcom 2\binaries\win64\xcom2.exe] => (Allow) C:\program files (x86)\xcom 2\binaries\win64\xcom2.exe
FirewallRules: [TCP Query User{399E4A39-2DDB-410D-A9AD-1D44FA479032}C:\games\wolfram\system\wolfram.exe] => (Allow) C:\games\wolfram\system\wolfram.exe
FirewallRules: [UDP Query User{323348A7-D0AA-46CD-A071-523DA4EF7E78}C:\games\wolfram\system\wolfram.exe] => (Allow) C:\games\wolfram\system\wolfram.exe
FirewallRules: [TCP Query User{D3F5F1BC-5CED-49D7-8813-93FB10F26A64}C:\users\zac\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\zac\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [UDP Query User{1BDB2F2C-7386-4E73-9053-6477F45B96AE}C:\users\zac\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\zac\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [TCP Query User{C05993F2-F71A-45C3-AE26-8A7183000A48}C:\mygames\armored warfare mycom\bin64\armoredwarfare.exe] => (Allow) C:\mygames\armored warfare mycom\bin64\armoredwarfare.exe
FirewallRules: [UDP Query User{92036EB2-AA31-42A0-98F9-450EA2965F34}C:\mygames\armored warfare mycom\bin64\armoredwarfare.exe] => (Allow) C:\mygames\armored warfare mycom\bin64\armoredwarfare.exe
FirewallRules: [TCP Query User{FC2C8A44-A9C6-485A-8855-BED2F21508E2}C:\users\zac\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\zac\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [UDP Query User{2CF467C3-97C1-40ED-AD4B-3AD3F0863E04}C:\users\zac\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\zac\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [TCP Query User{1E38AFB8-79AE-42DE-B860-3A3947748437}C:\program files (x86)\steam\steamapps\common\xcom 2\binaries\win64\xcom2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\xcom 2\binaries\win64\xcom2.exe
FirewallRules: [UDP Query User{8758918C-2504-4623-AE87-B570CB395424}C:\program files (x86)\steam\steamapps\common\xcom 2\binaries\win64\xcom2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\xcom 2\binaries\win64\xcom2.exe
FirewallRules: [{BD1024AD-D160-4A7B-AD91-39FE339B9498}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SurvHive\SurvHive.exe
FirewallRules: [{8CE56E74-8103-4E63-929B-ED15D0869393}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SurvHive\SurvHive.exe
FirewallRules: [TCP Query User{6B7E7C01-D172-4A83-B7AB-60F615615A91}C:\program files (x86)\steam\steamapps\common\survhive\binaries\win32\udk.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\survhive\binaries\win32\udk.exe
FirewallRules: [UDP Query User{5224A1E8-692E-4B77-8BBB-56CAE89800BF}C:\program files (x86)\steam\steamapps\common\survhive\binaries\win32\udk.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\survhive\binaries\win32\udk.exe
FirewallRules: [{694C3E76-0104-4562-AE14-9B4C2EE8F2E3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Neptunia Rebirth1\NeptuniaReBirth1.exe
FirewallRules: [{85A0CA27-D8B9-4D54-A1DB-05BE36558D8E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Neptunia Rebirth1\NeptuniaReBirth1.exe
FirewallRules: [{569403A1-D4ED-47E3-9ADE-40F0505D0619}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SunlessSea\Sunless Sea.exe
FirewallRules: [{DAD7DFCF-6151-4683-9794-224A95FFEA3F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SunlessSea\Sunless Sea.exe
FirewallRules: [{EE6AFF2D-0925-4698-84B5-3DE280FCA8AD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Manga Maker Comipo\ComiPo.exe
FirewallRules: [{96C41C54-2864-4F43-BDBA-28A0C687570A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Manga Maker Comipo\ComiPo.exe
FirewallRules: [TCP Query User{53FD4CB3-94C7-4EE3-A234-2A13D144852B}C:\program files (x86)\steam\steamapps\common\stay close\migrate\binaries\win64\migrate-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\stay close\migrate\binaries\win64\migrate-win64-shipping.exe
FirewallRules: [UDP Query User{CC0F5770-B34C-4E15-9C7C-A6CC683AECEA}C:\program files (x86)\steam\steamapps\common\stay close\migrate\binaries\win64\migrate-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\stay close\migrate\binaries\win64\migrate-win64-shipping.exe
FirewallRules: [{61A3A3B5-7E0C-44CC-8608-A764CD043808}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Banished\Application-steam-x64.exe
FirewallRules: [{DA164387-06A4-4220-B32A-DD2A991CCA56}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Banished\Application-steam-x64.exe
FirewallRules: [{008424CD-ADDA-43BE-9816-21FF40F0F503}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PWI\patcher\patcher.exe
FirewallRules: [{7847D9BE-12E8-4B03-A62A-E39ACB13353A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PWI\patcher\patcher.exe
FirewallRules: [{F648234D-AE39-4D7D-9B22-D3737D9C9041}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CrushCrush\CrushCrush.exe
FirewallRules: [{FE49F8E7-D378-4432-81BE-A21FCF1B97EC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CrushCrush\CrushCrush.exe
FirewallRules: [{61A577B6-2244-456D-8963-0DAA1E06132F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{76FB5FF0-3306-4124-9834-DAA1C7C857C7}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{5895378E-B54D-412C-9657-90DFF4A335A2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MiniMetro\MiniMetro.exe
FirewallRules: [{C56FF795-F76F-49CF-8A26-EA477A28EE63}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MiniMetro\MiniMetro.exe
FirewallRules: [{6B6DD910-1C57-468A-BE93-14BAF88C69FE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Verdun\Verdun.exe
FirewallRules: [{1A386AB2-B06B-4F96-B779-13BC1E858B0D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Verdun\Verdun.exe
FirewallRules: [{5FA23934-AC61-4B7A-B0F2-0D138C9F3F6D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Neptunia Rebirth2\NeptuniaReBirth2.exe
FirewallRules: [{A7BAFCF2-9946-42B0-9C9B-B18C125D4E09}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Neptunia Rebirth2\NeptuniaReBirth2.exe
FirewallRules: [{B0D4C660-54C2-43DE-8210-3F7B02B1FF6C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Valkyria Chronicles\Launcher.exe
FirewallRules: [{D025A8BF-E453-4C6D-85CB-EBDFE0E27146}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Valkyria Chronicles\Launcher.exe
FirewallRules: [{DA1AACCC-7B9A-4592-A947-4C1AF8D862F4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\workshop\Workshop.exe
FirewallRules: [{15306FEE-0DA8-49FA-A652-008ED0C311CC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\workshop\Workshop.exe
FirewallRules: [{5050D2A3-5C0C-4C60-9F3E-583BFB842688}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Men of War Assault Squad 2\mowas_2.exe
FirewallRules: [{1E417AED-2737-4F02-9DE5-A59936AAA5AF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Men of War Assault Squad 2\mowas_2.exe
FirewallRules: [{EB747C6B-7B55-4AA5-982B-50B644E015C2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Men of War Assault Squad 2\mowas_2_ed.exe
FirewallRules: [{663D4DF6-3F01-4FF3-8160-413927CBCB30}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Men of War Assault Squad 2\mowas_2_ed.exe
FirewallRules: [{E781DBCF-3547-4A26-8B58-E0A6384FA09A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{44A60164-5CAE-42E6-A3AA-E81D71CCBCDC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [TCP Query User{F3417C21-1C08-411F-9709-51BED18F1713}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{6701E3C7-964F-47EC-9D27-47AF1FEBFBEB}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{38ED1FDF-A31A-4460-81A1-8A7924329221}] => (Allow) C:\Program Files (x86)\Project Reality\Project Reality BF2\prbf2.exe
FirewallRules: [{B65E848C-4DA7-41EE-93B4-C65CD7754826}] => (Allow) C:\Program Files (x86)\Project Reality\Project Reality BF2\mods\pr\bin\PRLauncher.exe
FirewallRules: [{CDBD8811-68D2-4803-B599-2EC8352CD07E}] => (Allow) C:\Program Files (x86)\Project Reality\Project Reality BF2\mods\pr\bin\PRUpdater.exe
FirewallRules: [{643C7A91-4B96-44BB-86B1-4581579412A4}] => (Allow) C:\Program Files (x86)\Project Reality\Project Reality BF2\mods\pr\bin\PRMumble\PRMumble.exe
FirewallRules: [{B873F3E7-7AC4-43F7-A1DE-CDA6C0865A99}] => (Allow) C:\Program Files (x86)\2K Games\Firaxis Games\Sid Meier's Civilization IV Colonization\Colonization.exe
FirewallRules: [{66A20C45-5FC2-46EA-8F64-5ECFB0E5B138}] => (Allow) C:\Program Files (x86)\2K Games\Firaxis Games\Sid Meier's Civilization IV Colonization\Colonization.exe
FirewallRules: [{D0AB3298-D5B6-46EB-98B5-8AD55084EA9E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\sfm.exe
FirewallRules: [{A65FEB50-E881-4A94-839E-77557ECD4843}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\sfm.exe
FirewallRules: [{A02FFA92-54BD-4F57-A2F7-EA09D63322FE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\qsdklauncher.exe
FirewallRules: [{368A9156-8092-42ED-B417-3109D968152B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SourceFilmmaker\game\bin\qsdklauncher.exe
FirewallRules: [{EF81F51D-9A9D-47E6-AD82-4A88B79ED874}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis IV\eu4.exe
FirewallRules: [{F290C9BC-A53B-4D21-B85D-6CE663F1CD43}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis IV\eu4.exe
FirewallRules: [{8261F2C3-8B0A-410E-8C82-4B1E7E1DB6AA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fog of War\Battalion_Beta\Binaries\Win64\Battalion_Beta.exe
FirewallRules: [{14722516-9AB0-4377-9B10-CE954B660C6C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fog of War\Battalion_Beta\Binaries\Win64\Battalion_Beta.exe
FirewallRules: [{87821078-02AA-4BBC-B8F0-E975FECD9449}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dayofinfamy\dayofinfamy_BE.exe
FirewallRules: [{002087DB-9FD4-4C04-A7FB-831D812C9528}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dayofinfamy\dayofinfamy_BE.exe
FirewallRules: [TCP Query User{15F8EF69-28D2-4BA5-AD75-C2268CD80170}C:\program files (x86)\steam\steamapps\common\dayofinfamy\dayofinfamy.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dayofinfamy\dayofinfamy.exe
FirewallRules: [UDP Query User{2F2741C2-A496-4DE3-8AF2-714357722671}C:\program files (x86)\steam\steamapps\common\dayofinfamy\dayofinfamy.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dayofinfamy\dayofinfamy.exe
FirewallRules: [{05965A43-6478-4E1C-A8B3-6FA025319676}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hegemony III\Hegemony III Launcher.exe
FirewallRules: [{498902D2-13B6-40D9-9B3D-96B4F013EE4A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hegemony III\Hegemony III Launcher.exe
FirewallRules: [TCP Query User{E80635FE-9342-417D-90C5-34CB588EABD8}C:\gog games\we happy few\glimpsegame\binaries\win64\glimpsegame.exe] => (Allow) C:\gog games\we happy few\glimpsegame\binaries\win64\glimpsegame.exe
FirewallRules: [UDP Query User{FFC24C24-2BAC-42E7-B836-3A19F69B2F4A}C:\gog games\we happy few\glimpsegame\binaries\win64\glimpsegame.exe] => (Allow) C:\gog games\we happy few\glimpsegame\binaries\win64\glimpsegame.exe
FirewallRules: [{3EAAA74D-0AC2-4B81-B30A-EDC6DF1EAC49}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{B9DC80D9-6BC7-43B6-A891-217A3CE10F15}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{A19EC27B-504B-42CE-95B9-EF57B1AB7BC4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Robocraft\Robocraft.exe
FirewallRules: [{7AF0E45D-A98C-4EA3-897D-3E26CABEBC57}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Robocraft\Robocraft.exe
FirewallRules: [{D6A71A77-BCAE-454C-8A1B-99D82B3D6DF8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TyranoBuilder\tyranobuilder.exe
FirewallRules: [{71470EB1-99D3-491D-AB2A-9BEADB9770F3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TyranoBuilder\tyranobuilder.exe
FirewallRules: [{F1ABFA48-6CFA-479F-BE7B-5FCC0B3DCEF1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dawn of Andromeda\Dawn of Andromeda.exe
FirewallRules: [{EB59AA7A-F81B-4C8E-8FAC-F5BD7D7934B4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dawn of Andromeda\Dawn of Andromeda.exe
FirewallRules: [{8A3A04B2-F8B0-40B9-9756-89FC55BF99C3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Aliens vs Predator\AvP_Launcher.exe
FirewallRules: [{4BD9FEF2-ABCA-46C6-B7BA-DC3E1F38C6D9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Aliens vs Predator\AvP_Launcher.exe
FirewallRules: [{A26F24BB-B508-4E86-8D41-9B559E91551C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Aliens vs Predator\AvP_DX11.exe
FirewallRules: [{63A8BA8F-21DE-4C09-8D24-A6BF4E930B26}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Aliens vs Predator\AvP_DX11.exe
FirewallRules: [{64CE076D-542C-4EB6-81C4-51F8786BC406}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Aliens vs Predator\AvP.exe
FirewallRules: [{2CE85465-B523-4F3A-A45A-12CA78437C0C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Aliens vs Predator\AvP.exe
FirewallRules: [{A92BCE2B-AA65-4B4C-87D5-FC727A84012B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{BCDD4102-EFEF-49B9-8311-F3540C6843C7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{D4AB5718-CED4-432E-8A07-854DA4DF1F14}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{1DD2D2CB-3389-42C0-87F4-83C97B06786A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{030EADA1-128E-44DB-929F-3F34C92A8215}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{4E2D8899-8271-4118-A075-F1D348C51886}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes Relaunch\CoHFEW.exe
FirewallRules: [{F3EE8AE6-DEDC-49C4-BA29-182B215B5B54}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes Relaunch\CoHFEW.exe
FirewallRules: [TCP Query User{81DA7D3F-39F4-4C5E-B231-7D72C36CC24C}C:\program files (x86)\bsgo\launcher\launcher.exe] => (Allow) C:\program files (x86)\bsgo\launcher\launcher.exe
FirewallRules: [UDP Query User{2C08D129-3DEE-4C5E-A043-22DAC9241523}C:\program files (x86)\bsgo\launcher\launcher.exe] => (Allow) C:\program files (x86)\bsgo\launcher\launcher.exe
FirewallRules: [{DBE4D7E2-80F8-4D25-B9FD-6523AA3EBD0A}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{3D11BAD0-09B0-4600-BB66-281E37015062}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{B4D2102B-D211-4BA4-943F-34118599B7A8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty 2\CoD2SP_s.exe
FirewallRules: [{56571994-1A09-4ECA-8F0D-BA8624D57CB0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty 2\CoD2SP_s.exe
FirewallRules: [{4FF8B739-8583-4618-8651-BACE8F7F348B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty 2\CoD2MP_s.exe
FirewallRules: [{B2E456F6-6F2D-406B-A36F-8A90611A495D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty 2\CoD2MP_s.exe
FirewallRules: [{183EF34E-72C6-4CF6-B640-399E7FC2251D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Northgard\Northgard.exe
FirewallRules: [{A147D06C-C6E2-4D15-ADE3-C6E2A726C7DB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Northgard\Northgard.exe
FirewallRules: [{D72EFD72-7227-4477-A130-799BEB33DFBD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sins of a Solar Empire Rebellion\StardockLauncher.exe
FirewallRules: [{A14839B0-A65F-4701-8C44-B8C6DF989725}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sins of a Solar Empire Rebellion\StardockLauncher.exe
FirewallRules: [{7E2D0B90-0DFA-4EF6-AFF5-04072963033C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age Of Empires 3\bin\age3.exe
FirewallRules: [{B38D045E-FE03-401A-80C8-681CA83F17ED}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age Of Empires 3\bin\age3.exe
FirewallRules: [{15174FFE-01BB-4D30-A37A-688DB34D1BFF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age Of Empires 3\bin\age3x.exe
FirewallRules: [{8BC407B6-D28F-44DE-B613-90701B37430B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age Of Empires 3\bin\age3x.exe
FirewallRules: [{A4FB3B4B-18CA-43B3-9D8B-0A6283BAE9F9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age Of Empires 3\bin\age3y.exe
FirewallRules: [{B97284AD-BE84-4E00-8B1B-C5636F6D624A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age Of Empires 3\bin\age3y.exe
FirewallRules: [{E369F78A-4648-4A64-8E38-6EE3A115EB3B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Subnautica\Subnautica.exe
FirewallRules: [{EF7033C0-5736-457A-844B-40F52B9C5B39}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Subnautica\Subnautica.exe
FirewallRules: [{D7144AB3-AC22-4569-AC7E-9031EDE50E63}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dirty Bomb\DirtyBombLauncher.exe
FirewallRules: [{2464B846-82E4-429A-90A5-A0883E8E6FCA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dirty Bomb\DirtyBombLauncher.exe
FirewallRules: [TCP Query User{1544B4B3-B815-4A21-B951-3EA843C3763D}C:\program files (x86)\steam\steamapps\common\dirty bomb\binaries\win32\shootergame-win32-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dirty bomb\binaries\win32\shootergame-win32-shipping.exe
FirewallRules: [UDP Query User{C3CA18A8-B5C5-4FFB-B238-C445401D555D}C:\program files (x86)\steam\steamapps\common\dirty bomb\binaries\win32\shootergame-win32-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dirty bomb\binaries\win32\shootergame-win32-shipping.exe
FirewallRules: [TCP Query User{81781052-0416-40B5-8300-12F433655405}C:\program files (x86)\steam\steamapps\common\survhive\binaries\win32\udk.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\survhive\binaries\win32\udk.exe
FirewallRules: [UDP Query User{D9D1B88B-B8F2-4CFB-9F08-1C1D19249B6B}C:\program files (x86)\steam\steamapps\common\survhive\binaries\win32\udk.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\survhive\binaries\win32\udk.exe
FirewallRules: [{841ED260-3071-471C-9AB8-3A300B7A2E83}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect.exe
FirewallRules: [{26C8214E-22D9-4406-AC46-3EE75F149B78}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect.exe
FirewallRules: [TCP Query User{CBCAFA04-FB53-4611-852B-53D39E904703}C:\program files (x86)\qbittorrent\qbittorrent.exe] => (Allow) C:\program files (x86)\qbittorrent\qbittorrent.exe
FirewallRules: [UDP Query User{EA7DC921-0997-4440-8651-D03471EA390F}C:\program files (x86)\qbittorrent\qbittorrent.exe] => (Allow) C:\program files (x86)\qbittorrent\qbittorrent.exe
FirewallRules: [{7463ABDF-B531-444E-9A8A-167ED252BF07}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes Relaunch\EF_Bin\CoHEF.exe
FirewallRules: [{B6E33AA1-526D-44C9-BABF-CCCA0BDFDE04}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes Relaunch\EF_Bin\CoHEF.exe
FirewallRules: [{E29AC8E2-7507-4F11-9A58-8A71F04AFDD8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{C9B16513-83EB-4CE6-98C4-D284735B5B5A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [TCP Query User{95EBD83E-D924-43E9-8601-D1119A29344D}C:\program files (x86)\steam\steamapps\common\dayofinfamy\dayofinfamy.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dayofinfamy\dayofinfamy.exe
FirewallRules: [UDP Query User{5041F673-5B7C-4A5E-9834-25522A1ACFE9}C:\program files (x86)\steam\steamapps\common\dayofinfamy\dayofinfamy.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dayofinfamy\dayofinfamy.exe
FirewallRules: [TCP Query User{86DC05E6-2276-460A-BFFD-D4A548D700D9}C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe
FirewallRules: [UDP Query User{F4F52F51-83EB-479E-8A8E-D1154CEDF831}C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe
FirewallRules: [{73156F06-A849-4679-9BAD-8DD286400D9B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Railroads\RailRoads.exe
FirewallRules: [{BEB04D42-DFC9-4A58-B5C8-68AEACE544CA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Railroads\RailRoads.exe
FirewallRules: [{C2FD3A17-F630-436A-AE4F-B856EFC2CCC1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Factorio\bin\x64\factorio.exe
FirewallRules: [{90E40CA0-50BA-429F-BB6D-783BE22A6574}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Factorio\bin\x64\factorio.exe
FirewallRules: [{949906B6-8552-4B59-9448-6F1B6857D591}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization VI\Base\Binaries\Win64Steam\CivilizationVI.exe
FirewallRules: [{5CF60719-BAC3-4D4C-A0AC-50A95CA708AC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization VI\Base\Binaries\Win64Steam\CivilizationVI.exe
FirewallRules: [{D8592637-067E-4D5E-BB91-F4BD6FE2AF5C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization VI\Base\Binaries\Win64Steam\CivilizationVI_DX12.exe
FirewallRules: [{F95672A9-07B0-4F95-BF48-24667A28DCA5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization VI\Base\Binaries\Win64Steam\CivilizationVI_DX12.exe
FirewallRules: [{B8214759-717B-440B-9C67-896516E360A1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Evil Genius\EvilGeniusLauncher.exe
FirewallRules: [{6A1B58AC-37C0-4720-B538-B5E5E5C1D84E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Evil Genius\EvilGeniusLauncher.exe
FirewallRules: [{84400C04-99FE-4E3D-B6F6-780B04E31AF9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Foxhole\War.exe
FirewallRules: [{2A225157-C7BC-49B8-9B7A-DB8736B8CCE5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Foxhole\War.exe
FirewallRules: [TCP Query User{16973F16-94D2-4CE4-BD6D-4649CD998B67}C:\program files (x86)\steam\steamapps\common\foxhole\war\binaries\win64\war-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\foxhole\war\binaries\win64\war-win64-shipping.exe
FirewallRules: [UDP Query User{F0D22764-1A6F-47B8-A054-1E5B2057A7D8}C:\program files (x86)\steam\steamapps\common\foxhole\war\binaries\win64\war-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\foxhole\war\binaries\win64\war-win64-shipping.exe
FirewallRules: [{5E8D5BC1-C47A-4C05-9696-F86918A6A5E0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Aura Kingdom\Launcher.exe
FirewallRules: [{26600867-6DFB-4988-943D-1612AEBDF079}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Aura Kingdom\Launcher.exe
FirewallRules: [{EA6F6455-6FCE-48E9-8F6D-9371CF3A305C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Aura Kingdom\game.bin
FirewallRules: [{ED345084-0F4A-44BC-8D9E-2F77D2CF9574}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Aura Kingdom\game.bin
FirewallRules: [{43F37270-6176-4400-9AF2-FC99C160F3B5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Colony Survival\colonyclient.exe
FirewallRules: [{0080C645-2B8F-451B-8CEE-1A7D5A8F2218}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Colony Survival\colonyclient.exe
FirewallRules: [{0B329396-78DE-41C7-8B9C-0C66A0B542B5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\World of Tanks Blitz\wotblitz.exe
FirewallRules: [{0328B737-8330-4C6E-8100-34757344D6A7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\World of Tanks Blitz\wotblitz.exe
FirewallRules: [{D42FDAE7-66DF-42B5-9E8E-4D49937AB995}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [{D4FE2570-5A2D-4BF4-8382-32E6F4490EE1}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [{531B46AF-CE00-48F6-9780-F245538AEB5C}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [{96D9B7F3-E559-433E-821D-3FC35B63ADFE}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [{D931AB30-7CFC-4206-A3D0-9B2052CC6183}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hegemony III\x64\Hegemony III.exe
FirewallRules: [{FF9DAA8C-65CC-45BC-B233-23B8BE4E665B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hegemony III\x64\Hegemony III.exe
FirewallRules: [{C7FC37A7-FDAB-4AF5-9520-58D85384DDDE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{596835EC-F541-4134-8198-DCE387336D8D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{C4E0725F-FC1C-4F91-B2F0-95E8ED3CA26F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{3A18941A-A6DC-4CA4-B915-594A5117E3C8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{E920BB41-0B19-4E18-9F1A-DA9BCF1C2C64}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{35455FB8-85EE-4629-8166-F601DCE43880}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Mesa\bms.exe
FirewallRules: [{C854D8EA-C7A6-413B-BFF6-E5F9F15B8163}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Mesa\bms.exe
FirewallRules: [{C55168DD-650C-41D6-9D84-5B16A8EFF495}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Factorio\bin\x64\factorio.exe
FirewallRules: [{1FA63B2B-F60B-4493-92BA-D27A96DE3868}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Factorio\bin\x64\factorio.exe
FirewallRules: [TCP Query User{A9D76D2A-42A5-446E-BA83-89CFAB7CDA30}C:\program files\java\jre1.8.0_141\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_141\bin\javaw.exe
FirewallRules: [UDP Query User{322D2F88-8C5F-4E12-8B68-D7608EDDE40C}C:\program files\java\jre1.8.0_141\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_141\bin\javaw.exe
FirewallRules: [{8C4D71FD-6A6C-492B-80FC-94FCA73FF8C6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Red Orchestra 2\Binaries\Win32\ROGame.exe
FirewallRules: [{2D454E08-7501-4BBB-B1BB-1B43058D3307}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Red Orchestra 2\Binaries\Win32\ROGame.exe
FirewallRules: [{01089073-547D-4406-9F0F-64BB8C9CA124}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{3AB8417F-9578-428D-B4B0-9968A1456769}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{D0B1D211-92DE-4FB0-B92C-7D2590F9EC37}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{424EA691-68B7-4CCB-B5EF-55E834FD80BE}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{2E40AD7A-554E-4690-9BD5-BF45838E9ACB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{C85CAAB1-81D1-4A39-9413-C7A8F842A62B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\WeHappyFew\GlimpseGame\Binaries\Win64\GlimpseGame.exe
FirewallRules: [{AE33E47F-DF72-4354-9871-61B875EE697B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\WeHappyFew\GlimpseGame\Binaries\Win64\GlimpseGame.exe
FirewallRules: [{FBADBAED-FA9E-4F14-8E68-DBD78A2CCA32}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Ship\ship.exe
FirewallRules: [{5B3633F9-5FF3-4C50-9AE3-0492E347F21C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Ship\ship.exe
FirewallRules: [TCP Query User{7BAD58F0-0B8E-49BA-B293-14D7793B6279}C:\users\administrato\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\administrato\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{12437518-4C5B-4101-AD76-BD58597C085A}C:\users\administrato\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\administrato\appdata\local\akamai\netsession_win.exe
FirewallRules: [{45D49CA6-0BC3-4C38-9BC1-D1DF0653B5AE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\XCOM 2\Binaries\Win64\Launcher\ModLauncherWPF.exe
FirewallRules: [{F3F5AC95-B4B0-4A9D-8A51-28ED866500E9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\XCOM 2\Binaries\Win64\Launcher\ModLauncherWPF.exe
FirewallRules: [{00FF623B-880D-4537-A407-85EA2636321D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Verdun\1914-1918 Series.exe
FirewallRules: [{06A08AF3-EBD3-42DC-A0B0-45C0839AC581}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Verdun\1914-1918 Series.exe
FirewallRules: [{5E905906-1019-4959-B853-546AE3434564}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes Relaunch\EF_Bin\CoHEF.exe
FirewallRules: [{1A15705A-A747-4612-A8FC-CEDD69FF8E3C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes Relaunch\EF_Bin\CoHEF.exe
FirewallRules: [{CB1CCB77-D74F-4EC4-99F4-FCD6EB700453}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
==================== Restore Points =========================
15-09-2017 19:19:18 Windows Update
15-09-2017 21:02:56 Windows Update
16-09-2017 14:50:48 Windows Update
16-09-2017 15:34:22 Windows Update
16-09-2017 15:49:32 Windows Update
16-09-2017 18:13:40 Windows Update
16-09-2017 22:51:03 Windows Update
16-09-2017 22:54:45 Windows Update
17-09-2017 02:27:35 Windows Update
17-09-2017 16:59:08 Windows Update
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (09/16/2017 09:43:30 PM) (Source: .NET Runtime Optimization Service) (EventID: 1103) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32) - Tried to start a service that wasn't the latest version of CLR Optimization service. Will shutdown
Error: (09/16/2017 09:43:27 PM) (Source: .NET Runtime Optimization Service) (EventID: 1103) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v2.0.50727_64) - Tried to start a service that wasn't the latest version of CLR Optimization service. Will shutdown
Error: (09/16/2017 09:40:49 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: The Cryptographic Services service failed to initialize the Catalog Database. The ESENT error was: -528.
Error: (09/16/2017 09:40:48 PM) (Source: ESENT) (EventID: 455) (User: )
Description: Catalog Database (1324) Catalog Database: Error -1811 (0xfffff8ed) occurred while opening logfile C:\Windows\system32\CatRoot2\edb.log.
Error: (09/16/2017 09:37:55 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3009) (User: User-PC)
Description: Installing the performance counter strings for service .NET Data Provider for Oracle () failed. The first DWORD in the Data section contains the error code.
Error: (09/16/2017 09:28:25 PM) (Source: WinMgmt) (EventID: 4) (User: )
Description: Error 0x8004401e encountered when trying to load MOF C:\WINDOWS\SYSTEM32\WBEM\EN-US\AACLIENT.MFL while recovering .MOF file marked with autorecover.
Error: (09/16/2017 09:27:47 PM) (Source: WinMgmt) (EventID: 4) (User: )
Description: Error 0x8004401e encountered when trying to load MOF C:\WINDOWS\SYSTEM32\WBEM\AACLIENT.MOF while recovering .MOF file marked with autorecover.
Error: (09/16/2017 03:35:01 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x80070013, The media is write protected.
.
Error: (09/16/2017 03:35:01 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x80070013, The media is write protected.
]
Error: (09/11/2017 06:18:38 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program RobloxStudioBeta.exe version 0.306.0.16614 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: 235c
Start Time: 01d32b1bc1e8bc1d
Termination Time: 183
Application Path: C:\Users\Zac\AppData\Local\Roblox\Versions\version-54a34f6a5393472d\RobloxStudioBeta.exe
Report Id: 39e8c485-9715-11e7-ba5d-d05099988926
System errors:
=============
Error: (09/17/2017 07:12:27 PM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: Service 'WMPNetworkSvc' did not start correctly because CoCreateInstance(CLSID_UPnPDeviceFinder) encountered error '0x80004005'. Verify that the UPnPHost service is running and that the UPnPHost component of Windows is installed properly.
Error: (09/17/2017 07:08:49 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 16:59:40 on 17/09/2017 was unexpected.
Error: (09/17/2017 09:40:12 AM) (Source: bowser) (EventID: 8003) (User: )
Description: The master browser has received a server announcement from the computer BOOTCAMP-IMAC
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{7F88570A-BF92-4392-9C5D-CAB300B002D5}.
The master browser is stopping or an election is being forced.
Error: (09/17/2017 09:05:10 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: The Intel® Management and Security Application Local Management Service service hung on starting.
Error: (09/17/2017 09:00:18 AM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: Service 'WMPNetworkSvc' did not start correctly because CoCreateInstance(CLSID_UPnPDeviceFinder) encountered error '0x80004005'. Verify that the UPnPHost service is running and that the UPnPHost component of Windows is installed properly.
Error: (09/17/2017 08:56:48 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 02:28:57 on 17/09/2017 was unexpected.
Error: (09/17/2017 02:29:28 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x800736b3: 2017-09 Security and Quality Rollup for .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7 on Windows 7 and Server 2008 R2 for x64 (KB4041083).
Error: (09/16/2017 10:58:05 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x800736b3: 2017-09 Security and Quality Rollup for .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7 on Windows 7 and Server 2008 R2 for x64 (KB4041083).
Error: (09/16/2017 10:58:05 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x800736b3: 2017-09 Security and Quality Rollup for .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7 on Windows 7 and Server 2008 R2 for x64 (KB4041083).
Error: (09/16/2017 09:49:59 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: The Windows Update service hung on starting.
==================== Memory info ===========================
Processor: Intel® Core™ i5-4460 CPU @ 3.20GHz
Percentage of memory in use: 84%
Total physical RAM: 8130.38 MB
Available physical RAM: 1241.82 MB
Total Virtual: 16258.95 MB
Available Virtual: 8603.93 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:931.41 GB) (Free:357.52 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: F2A35A49)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
Edited by RKinner, 18 September 2017 - 02:10 PM.
Sign In
Create Account
