Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

I'm pretty sure I got malware/virus/e.t.c! Help please!

Started by loganelroy , Oct 13 2018 06:50 PM

  • Please log in to reply

#1
loganelroy
Posted 13 October 2018 - 06:50 PM

loganelroy

    New Member

  • Member
  • Pip
  • 1 posts

Hello, I'm Logan. While in Discord, a friend linked us a website where he downloaded a game. Unfortunately (and much to my regret,) it messed with my computer. I get major FPS drops and stutters. When I try started up my computer from the SSD it crashes every single time. But for some reason when I pick a Raedon R7 something as the boot it doesn't crash? Also I have a nasty Windows System 32 Manager sucking up my memory now. Thank you so much for checking out my problem!

Edit : Sorry for the long post

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 10.10.2018
Ran by user (administrator) on DESKTOP-TFAE76P (13-10-2018 19:38:38)
Running from C:\Users\user\Desktop\FRST64
Loaded Profiles: user (Available Profiles: user)
Platform: Windows 10 Home Version 1803 17134.345 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Microsoft Corporation) C:\Windows\System32\spaceman.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Popcorn Time) C:\Program Files (x86)\Popcorn Time\Updater.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(SUPERAntiSpyware.com) D:\SUPERAntiSpyware\SASCore64.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(LogMeIn Inc.) D:\hamachi\x64\hamachi-2.exe
() C:\Program Files (x86)\Lugar\flacks.exe
(Malwarebytes) D:\Anti-Malware\MBAMService.exe
(Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(LogMeIn, Inc.) D:\hamachi\x64\LMIGuardianSvc.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(LogMeIn Inc.) D:\hamachi\hamachi-2-ui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(LogMeIn, Inc.) D:\hamachi\LMIGuardianSvc.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.30.98.1000_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.10311.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Malwarebytes) D:\Anti-Malware\mbamtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Discord Inc.) C:\Users\user\AppData\Local\Discord\app-0.0.301\Discord.exe
(Discord Inc.) C:\Users\user\AppData\Local\Discord\app-0.0.301\Discord.exe
(Discord Inc.) C:\Users\user\AppData\Local\Discord\app-0.0.301\Discord.exe
() C:\Program Files (x86)\Lugar\flacks.exe
(Valve Corporation) D:\steam\Steam.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\Overwolf.exe
(Nota Inc.) C:\Program Files (x86)\Gyazo\GyStation.exe
(Epic Games, Inc.) D:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\0.118.3.8\OverwolfBrowser.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\0.118.3.8\OverwolfBrowser.exe
(SUPERAntiSpyware) D:\SUPERAntiSpyware\SUPERAntiSpyware.exe
(Mega Limited) C:\Users\user\AppData\Local\MEGAsync\MEGAsync.exe
(Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.118.3.8\OverwolfHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.118.3.8\OverwolfHelper64.exe
(Spotify Ltd) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.91.183.0_x86__zpdnekdrzrea0\Spotify.exe
(Spotify Ltd) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.91.183.0_x86__zpdnekdrzrea0\Spotify.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Spotify Ltd) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.91.183.0_x86__zpdnekdrzrea0\Spotify.exe
(Spotify Ltd) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.91.183.0_x86__zpdnekdrzrea0\Spotify.exe
(Valve Corporation) D:\steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve Corporation) D:\steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) D:\steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve Corporation) D:\steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve Corporation) D:\steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Spotify Ltd) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.91.183.0_x86__zpdnekdrzrea0\Spotify.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-11] (Microsoft Corporation)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2670056 2018-09-10] (Adobe Systems, Incorporated)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => D:\hamachi\hamachi-2-ui.exe [5885352 2018-05-30] (LogMeIn Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-11] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-11] (Microsoft Corporation)
HKU\S-1-5-21-2740511448-4270186098-299372889-1001\...\Run: [Discord] => C:\Users\user\AppData\Local\Discord\app-0.0.301\Discord.exe [57816920 2018-04-30] (Discord Inc.)
HKU\S-1-5-21-2740511448-4270186098-299372889-1001\...\Run: [Steam] => D:\steam\steam.exe [3208992 2018-10-12] (Valve Corporation)
HKU\S-1-5-21-2740511448-4270186098-299372889-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1504584 2018-10-07] (Overwolf Ltd.)
HKU\S-1-5-21-2740511448-4270186098-299372889-1001\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [1384840 2018-10-04] (Nota Inc.)
HKU\S-1-5-21-2740511448-4270186098-299372889-1001\...\Run: [EpicGamesLauncher] => D:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [34884496 2018-10-09] (Epic Games, Inc.)
HKU\S-1-5-21-2740511448-4270186098-299372889-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [18385368 2018-06-24] (Piriform Ltd)
HKU\S-1-5-21-2740511448-4270186098-299372889-1001\...\Run: [SUPERAntiSpyware] => D:\SUPERAntiSpyware\SUPERAntiSpyware.exe [8893360 2018-09-11] (SUPERAntiSpyware)
Startup: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2018-09-01]
ShortcutTarget: MEGAsync.lnk -> C:\Users\user\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{26c13bd1-538a-4ddf-b465-19a404db11ad}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4d4b88dd-58ff-42bf-bd2b-e29d039b27b3}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-2740511448-4270186098-299372889-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://bing.com/
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> D:\Java\bin\ssv.dll [2018-10-06] (Oracle Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> D:\Java\bin\jp2ssv.dll [2018-10-06] (Oracle Corporation)

FireFox:
========
FF DefaultProfile: fb4c33io.default-1539455648917
FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fb4c33io.default-1539455648917 [2018-10-13]
FF Extension: (Telemetry coverage) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fb4c33io.default-1539455648917\features\{a2e36523-2155-48f7-b423-f48c1b442d1a}\[email protected] [2018-10-13] [Legacy]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_31_0_0_122.dll [2018-10-09] ()
FF Plugin: @java.com/DTPlugin,version=11.181.2 -> D:\Java\bin\dtplugin\npDeployJava1.dll [2018-10-06] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.181.2 -> D:\Java\bin\plugin2\npjp2.dll [2018-10-06] (Oracle Corporation)
FF Plugin: @unity3d.com/UnityPlayer64,version=1.0 -> C:\Program Files\Unity\WebPlayer64\loader-x64\npUnity3D64.dll [2015-06-08] (Unity Technologies ApS)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_31_0_0_122.dll [2018-10-09] ()
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-09-05] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-09-05] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [No File]
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [No File]
FF Plugin HKU\S-1-5-21-2740511448-4270186098-299372889-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\user\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2018-08-06] (Unity Technologies ApS)

Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1 [2018-10-12]
CHR Extension: (Google Slides) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-09-03]
CHR Extension: (Google Docs) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2017-09-03]
CHR Extension: (Google Drive) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-09-03]
CHR Extension: (YouTube) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-09-03]
CHR Extension: (Google Sheets) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-09-03]
CHR Extension: (Google Docs Offline) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-09-03]
CHR Extension: (Chrome Web Store Payments) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-09-03]
CHR Extension: (Gmail) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-09-03]
CHR Extension: (Chrome Media Router) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-09-03]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 !SASCORE; D:\SUPERAntiSpyware\SASCORE64.EXE [173472 2017-01-30] (SUPERAntiSpyware.com)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2910696 2018-09-10] (Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2704872 2018-09-10] (Adobe Systems, Incorporated)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [7252656 2018-09-29] ()
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [782976 2018-09-16] (EasyAntiCheat Ltd)
R2 Hamachi2Svc; D:\hamachi\x64\hamachi-2.exe [3346856 2018-05-30] (LogMeIn Inc.)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [365040 2017-10-20] (Intel Corporation)
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [21312 2017-06-13] (Microsoft Corporation)
R2 MBAMService; D:\Anti-Malware\mbamservice.exe [6347056 2018-09-19] (Malwarebytes)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [773328 2018-09-12] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [773328 2018-09-12] (NVIDIA Corporation)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2308424 2018-10-07] (Overwolf LTD)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-02-28] (Riverbed Technology, Inc.)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
S3 Te.Service; C:\Program Files (x86)\Windows Kits\10\Testing\Runtimes\TAEF\Wex.Services.exe [185344 2017-02-03] (Microsoft Corporation) [File not signed]
R2 Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [339968 2016-08-26] (Popcorn Time) [File not signed]
S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [129144 2017-08-17] (Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1809.2-0\NisSrv.exe [3847376 2018-09-26] (Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1809.2-0\MsMpEng.exe [114200 2018-09-26] (Microsoft Corporation)
R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [1764296 2017-12-13] (Wacom Technology, Corp.)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [152688 2018-09-11] (Malwarebytes)
S3 EvolveVirtualAdapter; C:\WINDOWS\System32\drivers\evolve.sys [21656 2018-08-25] (Echobit, LLC)
S3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [45680 2018-05-30] (LogMeIn Inc.)
R3 KillerEth; C:\WINDOWS\System32\drivers\e2xw10x64.sys [145920 2018-04-11] (Qualcomm Atheros, Inc.)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [200232 2018-10-12] (Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [118584 2018-10-13] (Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [58400 2018-10-13] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [260384 2018-10-13] (Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [110424 2018-10-13] (Malwarebytes)
S3 netr28ux; C:\WINDOWS\System32\drivers\netr28ux.sys [2224128 2018-04-11] (MediaTek Inc.)
S3 NPF; C:\WINDOWS\System32\drivers\npf.sys [36600 2013-02-28] (Riverbed Technology, Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_desktop_ref4i.inf_amd64_42d51a50e7fafe83\nvlddmkm.sys [17213832 2018-09-06] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30792 2018-08-21] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69544 2018-06-07] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [65792 2018-04-24] (NVIDIA Corporation)
S3 RTCore64; D:\MSI Afterburner\RTCore64.sys [14024 2017-08-27] ()
S3 rzbtendpt; C:\WINDOWS\System32\drivers\rzbtendpt.sys [52240 2016-10-30] (Razer Inc)
S3 rzdaendpt; C:\WINDOWS\System32\drivers\rzdaendpt.sys [42000 2016-10-30] (Razer Inc)
S3 rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [52240 2016-10-30] (Razer Inc)
S3 rzhnet; C:\WINDOWS\System32\Drivers\rzhnet.sys [29712 2016-10-30] (Razer Inc)
S3 rzjstk; C:\WINDOWS\System32\drivers\rzjstk.sys [36376 2016-10-30] (Razer Inc)
S3 rzkeypadendpt; C:\WINDOWS\System32\drivers\rzkeypadendpt.sys [45592 2016-10-30] (Razer Inc)
S3 rzmpos; C:\WINDOWS\System32\drivers\rzmpos.sys [48144 2016-10-30] (Razer Inc)
S3 rzp1endpt; C:\WINDOWS\System32\drivers\rzp1endpt.sys [52240 2016-10-30] (Razer Inc)
S3 rzvkeyboard; C:\WINDOWS\System32\drivers\rzvkeyboard.sys [44048 2016-10-30] (Razer Inc)
S3 rzvmouse; C:\WINDOWS\System32\drivers\rzvmouse.sys [44048 2016-10-30] (Razer Inc)
R1 SASDIFSV; D:\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; D:\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [46408 2017-06-01] (SteelSeries ApS)
S3 ssudcdf; C:\WINDOWS\System32\drivers\ssudcdf.sys [36608 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssuddmgr; C:\WINDOWS\System32\drivers\ssuddmgr.sys [206080 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssudobex; C:\WINDOWS\System32\drivers\ssudobex.sys [206080 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64640 2016-09-05] (QUALCOMM Incorporated)
S3 ssudrmnet; C:\WINDOWS\System32\drivers\ssudrmnet.sys [70400 2014-01-22] (DEVGURU Co., LTD.)
S3 ssudserd; C:\WINDOWS\System32\drivers\ssudserd.sys [206080 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ss_conn_usb_driver; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver.sys [26368 2014-01-22] (DEVGURU Co., LTD.)
R3 WacHidRouterPro; C:\WINDOWS\System32\drivers\wachidrouter.sys [115192 2017-11-21] (Wacom Technology, Corp.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46184 2018-09-26] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [352424 2018-09-26] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [60584 2018-09-26] (Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [47096 2018-02-10] (Wellbia.com Co., Ltd.)
R3 XtuAcpiDriver; C:\WINDOWS\System32\drivers\XtuAcpiDriver.sys [63840 2015-06-06] (Intel Corporation)
S4 lhuenodv; System32\drivers\cgkzsdev.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-10-13 19:22 - 2018-10-13 19:22 - 000260384 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2018-10-13 19:22 - 2018-10-13 19:22 - 000118584 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2018-10-13 19:22 - 2018-10-13 19:22 - 000110424 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2018-10-13 19:22 - 2018-10-13 19:22 - 000058400 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2018-10-13 19:22 - 2018-10-13 19:22 - 000000000 ___HD C:\OneDriveTemp
2018-10-13 18:25 - 2018-10-13 19:38 - 000000000 ____D C:\Users\user\Desktop\FRSTBACKUP
2018-10-13 18:22 - 2018-10-13 18:22 - 000726604 _____ C:\WINDOWS\Minidump\101318-102718-01.dmp
2018-10-13 17:51 - 2018-10-13 17:51 - 000000000 ____D C:\Users\user\AppData\Local\iabgmrd
2018-10-13 16:25 - 2018-10-13 19:38 - 000000000 ____D C:\Users\user\Desktop\FRST64
2018-10-13 16:20 - 2018-10-13 19:38 - 000000000 ____D C:\FRST
2018-10-13 15:53 - 2018-10-13 15:53 - 000001817 _____ C:\Users\Public\Desktop\Reset Browser Settings.lnk
2018-10-13 15:53 - 2018-10-13 15:53 - 000000949 _____ C:\Users\Public\Desktop\Trojan Killer.lnk
2018-10-13 15:52 - 2018-10-13 15:53 - 000000000 ____D C:\Users\user\Trojan Killer
2018-10-13 15:52 - 2018-10-13 15:52 - 001786768 _____ (GridinSoft LLC) C:\Users\user\Downloads\TrojanKiller-Setup.exe
2018-10-13 15:00 - 2018-10-13 15:00 - 000000000 ____D C:\SUPERDelete
2018-10-13 14:58 - 2018-10-13 18:06 - 000000484 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task fada3000-4bad-4c5b-9577-5027ce4f30fd.job
2018-10-13 14:58 - 2018-10-13 18:06 - 000000484 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 25a09b37-9bcb-4309-b86f-1ec3e70fa147.job
2018-10-13 14:58 - 2018-10-13 14:58 - 000003722 _____ C:\WINDOWS\System32\Tasks\SUPERAntiSpyware Scheduled Task fada3000-4bad-4c5b-9577-5027ce4f30fd
2018-10-13 14:58 - 2018-10-13 14:58 - 000003640 _____ C:\WINDOWS\System32\Tasks\SUPERAntiSpyware Scheduled Task 25a09b37-9bcb-4309-b86f-1ec3e70fa147
2018-10-13 14:58 - 2018-10-13 14:58 - 000000755 _____ C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
2018-10-13 14:58 - 2018-10-13 14:58 - 000000000 ____D C:\Users\user\AppData\Roaming\SUPERAntiSpyware.com
2018-10-13 14:58 - 2018-10-13 14:58 - 000000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2018-10-13 14:58 - 2018-10-13 14:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2018-10-13 14:57 - 2018-10-13 14:57 - 035808920 _____ (SUPERAntiSpyware) C:\Users\user\Downloads\SUPERAntiSpyware.exe
2018-10-13 13:34 - 2018-10-13 13:34 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-10-13 13:34 - 2018-10-13 13:34 - 000000993 _____ C:\Users\Public\Desktop\Firefox.lnk
2018-10-13 13:34 - 2018-10-13 13:34 - 000000000 ____D C:\Users\user\Desktop\Old Firefox Data
2018-10-13 13:10 - 2018-10-13 13:10 - 000000000 ___HD C:\$SysReset
2018-10-13 13:10 - 2018-10-13 13:10 - 000000000 ____D C:\$Windows.~BT
2018-10-12 20:18 - 2018-10-12 20:18 - 000200232 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2018-10-12 20:18 - 2018-10-12 20:18 - 000000649 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2018-10-12 20:18 - 2018-10-12 20:18 - 000000000 ____D C:\Users\user\AppData\Local\mbamtray
2018-10-12 20:18 - 2018-10-12 20:18 - 000000000 ____D C:\Users\user\AppData\Local\mbam
2018-10-12 20:18 - 2018-10-12 20:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2018-10-12 20:18 - 2018-10-12 20:18 - 000000000 ____D C:\ProgramData\Malwarebytes
2018-10-12 20:18 - 2018-09-11 13:18 - 000152688 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2018-10-12 20:17 - 2018-10-12 20:17 - 081176816 _____ (Malwarebytes ) C:\Users\user\Downloads\mb3-setup-consumer-3.6.1.2711-1.0.463-1.0.7197.exe
2018-10-12 20:14 - 2018-10-13 18:02 - 000000000 ____D C:\Users\user\AppData\Local\dssergu
2018-10-12 20:11 - 2018-10-13 21:17 - 000000000 ____D C:\Users\user\AppData\Local\cgibwlu
2018-10-12 20:10 - 2018-10-13 18:08 - 002921984 _____ C:\WINDOWS\system32\sesvgxasvc.exe
2018-10-12 20:01 - 2018-10-12 20:14 - 000000000 ____D C:\WINDOWS\system32\svaukmb
2018-10-12 20:01 - 2018-10-12 20:01 - 000003410 _____ C:\WINDOWS\System32\Tasks\AGProxyCheck
2018-10-12 20:01 - 2018-10-12 20:01 - 000000000 ____D C:\WINDOWS\SysWOW64\svaukmb
2018-10-12 19:57 - 2018-10-12 19:57 - 000000000 ____D C:\Users\user\AppData\Local\Turbo.net
2018-10-12 19:56 - 2018-10-12 20:24 - 000000000 ___HD C:\Program Files (x86)\Telecomm
2018-10-12 19:56 - 2018-10-12 20:24 - 000000000 ___HD C:\Program Files (x86)\mystere
2018-10-12 19:56 - 2018-10-12 20:23 - 000000000 ____D C:\ProgramData\Bet
2018-10-12 19:56 - 2018-10-12 20:23 - 000000000 ____D C:\Program Files (x86)\rifkind
2018-10-12 19:56 - 2018-10-12 20:23 - 000000000 ____D C:\Program Files (x86)\lifters
2018-10-12 19:56 - 2018-10-12 20:23 - 000000000 ____D C:\Program Files (x86)\Incorporates
2018-10-12 19:56 - 2018-10-12 19:56 - 000004060 _____ C:\WINDOWS\System32\Tasks\highlighting
2018-10-12 19:56 - 2018-10-12 19:56 - 000003928 _____ C:\WINDOWS\System32\Tasks\highlightinghighlighting
2018-10-12 19:56 - 2018-10-12 19:56 - 000000012 _____ C:\WINDOWS\b81564443
2018-10-12 19:56 - 2018-10-12 19:56 - 000000000 ____D C:\Program Files (x86)\Lugar
2018-10-12 19:51 - 2018-10-12 19:51 - 000000000 ____D C:\WINDOWS\Panther
2018-10-12 15:09 - 2018-10-12 15:09 - 007137829 _____ C:\Users\user\Desktop\3.mp4
2018-10-12 15:08 - 2018-10-12 15:08 - 006570548 _____ C:\Users\user\Desktop\1st.mp4
2018-10-12 15:08 - 2018-10-12 15:08 - 003596936 _____ C:\Users\user\Desktop\2nd.mp4
2018-10-12 15:07 - 2018-10-12 15:07 - 023055594 _____ C:\Users\user\Desktop\2018_10_12_14_58_27_Trim.mp4
2018-10-12 15:07 - 2018-10-12 15:07 - 023055594 _____ C:\Users\user\Desktop\2018_10_12_14_58_27_Trim - Copy.mp4
2018-10-12 15:05 - 2018-10-12 15:05 - 073478764 _____ C:\Users\user\Downloads\2018_10_12_14_58_27.mp4
2018-10-12 14:14 - 2018-10-12 14:47 - 000000000 ____D C:\Users\user\Desktop\The Binding of Isaac
2018-10-12 09:55 - 2018-10-12 09:55 - 000000000 ____D C:\Users\user\Downloads\codex-forza.horizon.3
2018-10-09 18:57 - 2018-09-20 23:09 - 002253696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-10-09 18:57 - 2018-09-20 23:09 - 000129088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2018-10-09 18:57 - 2018-09-20 23:08 - 002765344 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-10-09 18:57 - 2018-09-20 23:08 - 000709936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-10-09 18:57 - 2018-09-20 23:08 - 000261008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2018-10-09 18:57 - 2018-09-20 23:08 - 000170808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2018-10-09 18:57 - 2018-09-20 23:07 - 000604664 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2018-10-09 18:57 - 2018-09-20 22:57 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2018-10-09 18:57 - 2018-09-20 22:42 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2018-10-09 18:57 - 2018-09-20 22:40 - 002368000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2018-10-09 18:57 - 2018-09-20 22:39 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2018-10-09 18:57 - 2018-09-20 22:38 - 001551360 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-10-09 18:57 - 2018-09-20 22:37 - 000604160 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2018-10-09 18:57 - 2018-09-20 04:19 - 001121792 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2018-10-09 18:57 - 2018-09-20 03:29 - 002891776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-10-09 18:57 - 2018-09-20 03:29 - 001586176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2018-10-09 18:57 - 2018-09-19 23:29 - 001989232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2018-10-09 18:57 - 2018-09-19 23:28 - 000581792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2018-10-09 18:57 - 2018-09-19 23:13 - 003711488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-10-09 18:57 - 2018-09-19 23:11 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2018-10-09 18:57 - 2018-09-19 23:11 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-10-09 18:57 - 2018-09-19 23:09 - 007520096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-10-09 18:57 - 2018-09-19 23:09 - 000793088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2018-10-09 18:57 - 2018-09-19 23:09 - 000412984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2018-10-09 18:57 - 2018-09-19 22:42 - 000433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2018-10-09 18:57 - 2018-09-19 22:41 - 000898560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-10-09 18:57 - 2018-09-19 22:41 - 000319488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2018-10-09 18:57 - 2018-09-19 22:40 - 003090432 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2018-10-09 18:57 - 2018-09-19 22:40 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-10-09 18:57 - 2018-09-08 01:59 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.XamlHost.dll
2018-10-09 18:57 - 2018-09-07 22:59 - 000433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2018-10-09 18:57 - 2018-09-07 22:29 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys
2018-10-09 18:57 - 2018-09-07 22:29 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2018-10-09 18:57 - 2018-09-07 22:26 - 000471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2018-10-09 18:57 - 2018-09-07 22:26 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2018-10-09 18:57 - 2018-09-07 22:25 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2018-10-09 18:57 - 2018-09-07 22:24 - 001457664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2018-10-09 18:56 - 2018-09-21 04:18 - 021386888 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-10-09 18:56 - 2018-09-21 04:01 - 000171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\itss.dll
2018-10-09 18:56 - 2018-09-21 03:22 - 020381784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2018-10-09 18:56 - 2018-09-21 03:12 - 000150016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itss.dll
2018-10-09 18:56 - 2018-09-20 23:14 - 000661056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2018-10-09 18:56 - 2018-09-20 23:13 - 000480568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2018-10-09 18:56 - 2018-09-20 23:12 - 001035256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-10-09 18:56 - 2018-09-20 23:11 - 000753056 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2018-10-09 18:56 - 2018-09-20 23:09 - 004790160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2018-10-09 18:56 - 2018-09-20 23:09 - 001427968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2018-10-09 18:56 - 2018-09-20 23:09 - 001062920 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2018-10-09 18:56 - 2018-09-20 23:08 - 004404720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2018-10-09 18:56 - 2018-09-20 23:08 - 001566720 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2018-10-09 18:56 - 2018-09-20 23:08 - 001456720 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-10-09 18:56 - 2018-09-20 23:08 - 001257864 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-10-09 18:56 - 2018-09-20 23:08 - 001140672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-10-09 18:56 - 2018-09-20 23:08 - 000982600 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-10-09 18:56 - 2018-09-20 22:58 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2018-10-09 18:56 - 2018-09-20 22:57 - 002900992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2018-10-09 18:56 - 2018-09-20 22:56 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2018-10-09 18:56 - 2018-09-20 22:54 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2018-10-09 18:56 - 2018-09-20 22:53 - 001006080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2018-10-09 18:56 - 2018-09-20 22:43 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2018-10-09 18:56 - 2018-09-20 22:41 - 003396096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-10-09 18:56 - 2018-09-20 22:39 - 003320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-10-09 18:56 - 2018-09-20 22:39 - 001535488 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-10-09 18:56 - 2018-09-20 22:39 - 000625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-10-09 18:56 - 2018-09-20 22:38 - 002172928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-10-09 18:56 - 2018-09-20 22:37 - 002904064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-10-09 18:56 - 2018-09-20 22:37 - 002236928 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-10-09 18:56 - 2018-09-20 22:37 - 001211904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2018-10-09 18:56 - 2018-09-20 22:36 - 001159680 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2018-10-09 18:56 - 2018-09-20 22:36 - 001034240 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2018-10-09 18:56 - 2018-09-20 22:36 - 000932352 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2018-10-09 18:56 - 2018-09-20 22:36 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-10-09 18:56 - 2018-09-20 22:36 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2018-10-09 18:56 - 2018-09-20 04:40 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2018-10-09 18:56 - 2018-09-20 04:37 - 001634944 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2018-10-09 18:56 - 2018-09-20 04:23 - 006602240 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2018-10-09 18:56 - 2018-09-20 04:22 - 013572096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2018-10-09 18:56 - 2018-09-20 04:18 - 003649024 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-10-09 18:56 - 2018-09-20 04:18 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-10-09 18:56 - 2018-09-20 04:17 - 002874368 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2018-10-09 18:56 - 2018-09-20 04:17 - 001856000 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2018-10-09 18:56 - 2018-09-20 04:17 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2018-10-09 18:56 - 2018-09-20 04:16 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2018-10-09 18:56 - 2018-09-20 03:46 - 001454440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2018-10-09 18:56 - 2018-09-20 03:35 - 005669888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2018-10-09 18:56 - 2018-09-20 03:34 - 012500992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2018-10-09 18:56 - 2018-09-20 03:30 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2018-10-09 18:56 - 2018-09-20 03:29 - 002824704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
2018-10-09 18:56 - 2018-09-20 03:28 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpshell.dll
2018-10-09 18:56 - 2018-09-20 01:43 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2018-10-09 18:56 - 2018-09-20 00:52 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2018-10-09 18:56 - 2018-09-19 23:29 - 006569856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-10-09 18:56 - 2018-09-19 23:29 - 006039368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2018-10-09 18:56 - 2018-09-19 23:29 - 001513032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2018-10-09 18:56 - 2018-09-19 23:29 - 000357056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2018-10-09 18:56 - 2018-09-19 23:28 - 001129544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2018-10-09 18:56 - 2018-09-19 23:28 - 000567256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2018-10-09 18:56 - 2018-09-19 23:21 - 022013440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2018-10-09 18:56 - 2018-09-19 23:17 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2018-10-09 18:56 - 2018-09-19 23:15 - 019404288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-10-09 18:56 - 2018-09-19 23:12 - 004529664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsDesktopEngine.exe
2018-10-09 18:56 - 2018-09-19 23:12 - 000272200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll
2018-10-09 18:56 - 2018-09-19 23:12 - 000269128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2018-10-09 18:56 - 2018-09-19 23:11 - 005777920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2018-10-09 18:56 - 2018-09-19 23:11 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2018-10-09 18:56 - 2018-09-19 23:11 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2018-10-09 18:56 - 2018-09-19 23:10 - 002719032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-10-09 18:56 - 2018-09-19 23:10 - 001221128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2018-10-09 18:56 - 2018-09-19 23:10 - 001029432 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2018-10-09 18:56 - 2018-09-19 23:10 - 000566800 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2018-10-09 18:56 - 2018-09-19 23:10 - 000500536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2018-10-09 18:56 - 2018-09-19 23:10 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2018-10-09 18:56 - 2018-09-19 23:10 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2018-10-09 18:56 - 2018-09-19 23:10 - 000076088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2018-10-09 18:56 - 2018-09-19 23:09 - 009089848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-10-09 18:56 - 2018-09-19 23:09 - 007432136 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-10-09 18:56 - 2018-09-19 23:09 - 002825232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-10-09 18:56 - 2018-09-19 23:09 - 002462888 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2018-10-09 18:56 - 2018-09-19 23:09 - 002421248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2018-10-09 18:56 - 2018-09-19 23:09 - 001767096 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2018-10-09 18:56 - 2018-09-19 23:09 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2018-10-09 18:56 - 2018-09-19 23:09 - 001097744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2018-10-09 18:56 - 2018-09-19 23:09 - 000885952 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2018-10-09 18:56 - 2018-09-19 23:09 - 000713472 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2018-10-09 18:56 - 2018-09-19 23:08 - 004191232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-10-09 18:56 - 2018-09-19 23:08 - 001627648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2018-10-09 18:56 - 2018-09-19 22:53 - 025851392 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-10-09 18:56 - 2018-09-19 22:46 - 022715392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-10-09 18:56 - 2018-09-19 22:44 - 008188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-10-09 18:56 - 2018-09-19 22:44 - 004383744 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2018-10-09 18:56 - 2018-09-19 22:43 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsProxyStub.dll
2018-10-09 18:56 - 2018-09-19 22:43 - 000052736 _____ C:\WINDOWS\system32\runexehelper.exe
2018-10-09 18:56 - 2018-09-19 22:42 - 004866560 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-10-09 18:56 - 2018-09-19 22:42 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2018-10-09 18:56 - 2018-09-19 22:41 - 007577088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-10-09 18:56 - 2018-09-19 22:41 - 005746688 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsDesktopEngine.exe
2018-10-09 18:56 - 2018-09-19 22:41 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-10-09 18:56 - 2018-09-19 22:41 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-10-09 18:56 - 2018-09-19 22:40 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-10-09 18:56 - 2018-09-19 22:38 - 001724416 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2018-10-09 18:56 - 2018-09-19 22:38 - 000433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2018-10-09 18:56 - 2018-09-19 22:37 - 004615680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-10-09 18:56 - 2018-09-19 22:37 - 001804288 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-10-09 18:56 - 2018-09-19 22:36 - 001375232 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2018-10-09 18:56 - 2018-09-19 21:21 - 000001312 _____ C:\WINDOWS\system32\tcbres.wim
2018-10-09 18:56 - 2018-09-19 20:28 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2018-10-09 18:56 - 2018-09-08 03:12 - 000452112 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2018-10-09 18:56 - 2018-09-08 03:07 - 002868536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2018-10-09 18:56 - 2018-09-08 03:07 - 001610552 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2018-10-09 18:56 - 2018-09-08 03:07 - 000792376 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2018-10-09 18:56 - 2018-09-08 03:07 - 000689464 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2018-10-09 18:56 - 2018-09-08 03:07 - 000612360 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2018-10-09 18:56 - 2018-09-08 03:07 - 000309560 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2018-10-09 18:56 - 2018-09-08 03:07 - 000144696 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2018-10-09 18:56 - 2018-09-08 03:07 - 000069944 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2018-10-09 18:56 - 2018-09-08 03:02 - 000645112 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2018-10-09 18:56 - 2018-09-08 03:02 - 000540984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2018-10-09 18:56 - 2018-09-08 02:58 - 001639352 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2018-10-09 18:56 - 2018-09-08 02:58 - 001520744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2018-10-09 18:56 - 2018-09-08 02:57 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
2018-10-09 18:56 - 2018-09-08 02:44 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdBth.dll
2018-10-09 18:56 - 2018-09-08 02:43 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\INETRES.dll
2018-10-09 18:56 - 2018-09-08 02:43 - 000047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardBi.dll
2018-10-09 18:56 - 2018-09-08 02:42 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
2018-10-09 18:56 - 2018-09-08 02:42 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2018-10-09 18:56 - 2018-09-08 02:42 - 000169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.XamlHost.dll
2018-10-09 18:56 - 2018-09-08 02:42 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthci.dll
2018-10-09 18:56 - 2018-09-08 02:41 - 000258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardSvr.dll
2018-10-09 18:56 - 2018-09-08 02:40 - 001724928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2018-10-09 18:56 - 2018-09-08 02:40 - 000677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2018-10-09 18:56 - 2018-09-08 02:40 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2018-10-09 18:56 - 2018-09-08 02:40 - 000522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2018-10-09 18:56 - 2018-09-08 02:40 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2018-10-09 18:56 - 2018-09-08 02:40 - 000249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2018-10-09 18:56 - 2018-09-08 02:39 - 005505024 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2018-10-09 18:56 - 2018-09-08 02:39 - 002052096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2018-10-09 18:56 - 2018-09-08 02:39 - 001787904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2018-10-09 18:56 - 2018-09-08 02:39 - 000615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2018-10-09 18:56 - 2018-09-08 02:38 - 001288192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2018-10-09 18:56 - 2018-09-08 02:38 - 001004544 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2018-10-09 18:56 - 2018-09-08 02:38 - 000986112 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2018-10-09 18:56 - 2018-09-08 02:38 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2018-10-09 18:56 - 2018-09-08 02:38 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2018-10-09 18:56 - 2018-09-08 02:37 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2018-10-09 18:56 - 2018-09-08 02:16 - 000482080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2018-10-09 18:56 - 2018-09-08 02:14 - 001328056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2018-10-09 18:56 - 2018-09-08 02:13 - 001626656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2018-10-09 18:56 - 2018-09-08 02:13 - 000181288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\basecsp.dll
2018-10-09 18:56 - 2018-09-08 02:03 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\INETRES.dll
2018-10-09 18:56 - 2018-09-08 02:03 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdBth.dll
2018-10-09 18:56 - 2018-09-08 02:02 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scksp.dll
2018-10-09 18:56 - 2018-09-08 02:00 - 000548864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2018-10-09 18:56 - 2018-09-08 01:59 - 001530368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2018-10-09 18:56 - 2018-09-08 01:59 - 001452544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2018-10-09 18:56 - 2018-09-08 01:59 - 000485376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2018-10-09 18:56 - 2018-09-08 01:58 - 001308672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2018-10-09 18:56 - 2018-09-08 01:58 - 000897536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2018-10-09 18:56 - 2018-09-08 01:58 - 000775680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2018-10-09 18:56 - 2018-09-08 01:57 - 005391360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2018-10-09 18:56 - 2018-09-08 01:57 - 000625664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2018-10-09 18:56 - 2018-09-08 01:57 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2018-10-09 18:56 - 2018-09-08 01:57 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2018-10-09 18:56 - 2018-09-08 01:56 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2018-10-09 18:56 - 2018-09-07 23:08 - 000462880 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2018-10-09 18:56 - 2018-09-07 22:59 - 000361544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2018-10-09 18:56 - 2018-09-07 22:58 - 000744976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2018-10-09 18:56 - 2018-09-07 22:58 - 000376120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2018-10-09 18:56 - 2018-09-07 22:58 - 000368440 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2018-10-09 18:56 - 2018-09-07 22:57 - 002571128 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2018-10-09 18:56 - 2018-09-07 22:57 - 001016984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2018-10-09 18:56 - 2018-09-07 22:57 - 000930616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2018-10-09 18:56 - 2018-09-07 22:57 - 000482384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2018-10-09 18:56 - 2018-09-07 22:57 - 000368448 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2018-10-09 18:56 - 2018-09-07 22:57 - 000267576 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2018-10-09 18:56 - 2018-09-07 22:51 - 000380728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2018-10-09 18:56 - 2018-09-07 22:45 - 000295416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2018-10-09 18:56 - 2018-09-07 22:45 - 000286824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2018-10-09 18:56 - 2018-09-07 22:44 - 001980984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2018-10-09 18:56 - 2018-09-07 22:44 - 000829752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2018-10-09 18:56 - 2018-09-07 22:43 - 001174448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2018-10-09 18:56 - 2018-09-07 22:43 - 000269104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2018-10-09 18:56 - 2018-09-07 22:32 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dumpstorport.sys
2018-10-09 18:56 - 2018-09-07 22:31 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe
2018-10-09 18:56 - 2018-09-07 22:31 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Proxy.dll
2018-10-09 18:56 - 2018-09-07 22:30 - 003601920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2018-10-09 18:56 - 2018-09-07 22:30 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2018-10-09 18:56 - 2018-09-07 22:30 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2018-10-09 18:56 - 2018-09-07 22:30 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2018-10-09 18:56 - 2018-09-07 22:30 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2018-10-09 18:56 - 2018-09-07 22:29 - 004771840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2018-10-09 18:56 - 2018-09-07 22:29 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2018-10-09 18:56 - 2018-09-07 22:29 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2018-10-09 18:56 - 2018-09-07 22:28 - 000481280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2018-10-09 18:56 - 2018-09-07 22:28 - 000473088 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2018-10-09 18:56 - 2018-09-07 22:28 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2018-10-09 18:56 - 2018-09-07 22:28 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2018-10-09 18:56 - 2018-09-07 22:28 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Bluetooth.Proxy.dll
2018-10-09 18:56 - 2018-09-07 22:27 - 003348992 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2018-10-09 18:56 - 2018-09-07 22:27 - 000983040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2018-10-09 18:56 - 2018-09-07 22:27 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2018-10-09 18:56 - 2018-09-07 22:27 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcfile.dll
2018-10-09 18:56 - 2018-09-07 22:27 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProximityService.dll
2018-10-09 18:56 - 2018-09-07 22:27 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2018-10-09 18:56 - 2018-09-07 22:26 - 002328064 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmsipc.dll
2018-10-09 18:56 - 2018-09-07 22:26 - 000814592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2018-10-09 18:56 - 2018-09-07 22:26 - 000784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2018-10-09 18:56 - 2018-09-07 22:26 - 000387584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2018-10-09 18:56 - 2018-09-07 22:26 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winipcfile.dll
2018-10-09 18:56 - 2018-09-07 22:26 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2018-10-09 18:56 - 2018-09-07 22:25 - 003553792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2018-10-09 18:56 - 2018-09-07 22:25 - 002789376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2018-10-09 18:56 - 2018-09-07 22:25 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcsecproc.dll
2018-10-09 18:56 - 2018-09-07 22:25 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2018-10-09 18:56 - 2018-09-07 22:25 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Proximity.dll
2018-10-09 18:56 - 2018-09-07 22:24 - 000899072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2018-10-09 18:56 - 2018-09-07 22:24 - 000845824 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2018-10-09 18:56 - 2018-09-07 22:24 - 000463360 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2018-10-09 18:56 - 2018-09-07 22:23 - 001655296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmsipc.dll
2018-10-09 18:56 - 2018-09-07 22:23 - 000807936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winipcsecproc.dll
2018-10-09 18:56 - 2018-09-07 22:23 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2018-10-09 18:56 - 2018-09-07 22:23 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Proximity.dll
2018-10-09 18:56 - 2018-09-07 22:22 - 000778240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2018-10-06 19:55 - 2018-10-06 19:55 - 000110968 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2018-10-06 19:55 - 2018-10-06 19:55 - 000000000 ____D C:\Users\user\AppData\Roaming\Sun
2018-10-06 19:55 - 2018-10-06 19:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2018-10-06 19:53 - 2018-10-06 19:53 - 071792504 _____ (Oracle Corporation) C:\Users\user\Downloads\jre-8u181-windows-x64.exe
2018-10-06 19:28 - 2018-10-06 19:28 - 000001148 _____ C:\Users\user\Desktop\nativelog.txt
2018-10-06 19:26 - 2018-10-06 19:28 - 000000000 ____D C:\Users\user\AppData\Roaming\.minecraft
2018-10-06 19:25 - 2018-10-06 19:25 - 000000645 _____ C:\Users\Public\Desktop\Minecraft.lnk
2018-10-06 19:23 - 2018-10-06 19:23 - 039260160 _____ C:\Users\user\Downloads\MinecraftInstaller(1).msi
2018-10-06 18:56 - 2018-10-06 18:56 - 001902968 _____ (Oracle Corporation) C:\Users\user\Downloads\JavaSetup8u181(3).exe
2018-10-06 18:29 - 2018-10-06 18:29 - 000000000 ____D C:\Users\user\Documents\Diablo III
2018-10-06 18:22 - 2018-10-06 18:22 - 000000567 _____ C:\Users\Public\Desktop\Diablo III.lnk
2018-10-06 18:22 - 2018-10-06 18:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III
2018-10-06 17:47 - 2018-10-06 17:47 - 000000000 ____D C:\Users\user\Documents\Lycanic Studios
2018-10-06 17:47 - 2018-10-06 17:47 - 000000000 ____D C:\Users\user\AppData\LocalLow\Lycanic Studios
2018-10-06 17:45 - 2018-10-06 17:45 - 000000000 ____D C:\Users\user\Documents\BlackSquad
2018-10-06 17:33 - 2018-10-06 17:33 - 000000000 ____D C:\Users\user\AppData\LocalLow\Creaky Corpse Ltd
2018-10-06 16:29 - 2018-10-06 16:29 - 000000202 _____ C:\Users\user\Desktop\Rocket League.url
2018-09-29 22:52 - 2018-09-29 22:52 - 000000202 _____ C:\Users\user\Desktop\Dead Frontier 2.url
2018-09-29 22:50 - 2018-09-29 22:50 - 000000202 _____ C:\Users\user\Desktop\Black Squad.url
2018-09-29 22:48 - 2018-09-29 22:48 - 000000202 _____ C:\Users\user\Desktop\Zeal.url
2018-09-29 21:04 - 2018-09-29 22:12 - 000000000 ____D C:\Users\user\BrawlhallaReplays
2018-09-29 21:04 - 2018-09-29 21:04 - 000000000 ____D C:\Users\user\AppData\Roaming\BrawlhallaAir
2018-09-29 21:02 - 2018-09-29 21:02 - 000000202 _____ C:\Users\user\Desktop\Brawlhalla.url
2018-09-28 19:35 - 2018-09-28 19:35 - 000001223 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FusionFall Universe.lnk
2018-09-28 19:35 - 2018-09-28 19:35 - 000000000 ____D C:\Program Files (x86)\FusionFall Universe
2018-09-28 16:00 - 2018-09-05 20:27 - 000132408 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2018-09-27 13:40 - 2018-09-27 13:40 - 000000257 _____ C:\Users\user\Desktop\httpsphotos.google.comphotoAF1QipML3app22vXrlT0NRKI4iyRLHp0wjMHQ5owKZUt.URL
2018-09-23 15:29 - 2018-09-23 15:30 - 000002318 _____ C:\Users\user\Downloads\kevpert---car-control.zip
2018-09-19 19:31 - 2018-09-19 19:31 - 000001307 _____ C:\Users\user\Desktop\RocketLeagueTrainer - Shortcut.lnk
2018-09-19 19:12 - 2018-09-19 19:12 - 000006956 _____ C:\Users\user\Downloads\masonrl90s-wall-aerial-pack.zip
2018-09-16 22:02 - 2018-09-16 22:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
2018-09-16 22:02 - 2018-09-16 22:02 - 000000000 ____D C:\Program Files (x86)\WinPcap
2018-09-16 22:01 - 2018-09-16 22:01 - 000915128 _____ (Riverbed Technology, Inc.) C:\Users\user\Downloads\WinPcap_4_1_3.exe
2018-09-16 21:57 - 2018-09-16 21:57 - 000000000 ____D C:\Users\user\AppData\Local\RocketLauncher_GUI
2018-09-16 21:56 - 2018-09-16 21:56 - 009154560 _____ C:\Users\user\Downloads\hamachi(1).msi
2018-09-16 21:55 - 2018-09-16 21:55 - 000000000 ____D C:\Users\user\Desktop\New folder
2018-09-16 21:50 - 2018-09-16 21:50 - 001106934 _____ C:\Users\user\Downloads\Rocket-Launcher.zip
2018-09-16 21:46 - 2018-09-16 21:46 - 014408752 _____ (Microsoft Corporation) C:\Users\user\Downloads\vc_redist.x86.exe
2018-09-16 21:46 - 2018-09-16 21:46 - 001426720 _____ (Microsoft Corporation) C:\Users\user\Downloads\NDP47-KB3186500-Web.exe

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-10-13 19:38 - 2018-04-11 18:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-10-13 19:34 - 2017-09-03 15:49 - 000000000 ____D C:\Users\user\AppData\LocalLow\Mozilla
2018-10-13 19:28 - 2018-08-09 21:27 - 000495858 _____ C:\WINDOWS\system32\perfh012.dat
2018-10-13 19:28 - 2018-08-09 21:27 - 000132286 _____ C:\WINDOWS\system32\perfc012.dat
2018-10-13 19:28 - 2018-05-13 13:40 - 001457844 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-10-13 19:28 - 2018-04-11 18:36 - 000000000 ____D C:\WINDOWS\INF
2018-10-13 19:24 - 2018-08-24 15:19 - 000000000 ____D C:\ProgramData\NVIDIA
2018-10-13 19:23 - 2018-08-25 00:38 - 000000000 ____D C:\Users\user\AppData\Local\LogMeIn Hamachi
2018-10-13 19:23 - 2017-09-10 10:38 - 000000000 ____D C:\Users\user\AppData\Local\CrashDumps
2018-10-13 19:23 - 2017-09-06 21:35 - 000000000 ____D C:\Users\user\AppData\Local\Overwolf
2018-10-13 19:23 - 2017-09-03 17:05 - 000000000 ____D C:\Users\user\AppData\Roaming\WTablet
2018-10-13 19:22 - 2018-05-13 13:36 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-10-13 19:22 - 2017-08-07 11:26 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2018-10-13 19:22 - 2017-08-07 09:32 - 000000000 ___RD C:\Users\user\OneDrive
2018-10-13 19:22 - 2017-08-07 09:31 - 000000000 __SHD C:\Users\user\IntelGraphicsProfiles
2018-10-13 18:50 - 2018-04-11 16:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2018-10-13 18:26 - 2018-06-07 01:33 - 000004164 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{A3B859D0-19D2-4535-89FE-C09626D240EA}
2018-10-13 18:22 - 2018-05-15 21:42 - 000000000 ____D C:\WINDOWS\Minidump
2018-10-13 18:20 - 2018-05-13 13:31 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-10-13 18:07 - 2018-05-13 15:11 - 000000000 ____D C:\Users\user\AppData\Local\D3DSCache
2018-10-13 18:07 - 2018-04-11 16:04 - 020709376 _____ C:\WINDOWS\system32\config\HARDWARE
2018-10-13 13:34 - 2017-09-03 15:49 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-10-13 13:34 - 2017-09-03 15:49 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-10-13 10:26 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-10-12 20:11 - 2018-04-11 18:38 - 000000000 ___HD C:\Program Files\WindowsApps
2018-10-12 20:11 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-10-12 20:11 - 2017-08-17 20:35 - 000000000 ____D C:\Users\user\AppData\Roaming\discord
2018-10-12 19:52 - 2018-09-04 17:19 - 000000000 ____D C:\Users\user\AppData\LocalLow\uTorrent
2018-10-12 19:52 - 2018-04-11 18:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-10-12 15:06 - 2018-02-05 19:10 - 000000000 ____D C:\Users\user\Desktop\songs
2018-10-12 08:47 - 2017-09-04 07:48 - 000001428 _____ C:\Users\user\Desktop\Roblox Player.lnk
2018-10-12 08:47 - 2017-09-04 07:40 - 000001243 _____ C:\Users\user\Desktop\Roblox Studio.lnk
2018-10-12 08:47 - 2017-09-04 07:40 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2018-10-11 18:29 - 2017-11-19 18:40 - 000000000 ___RD C:\Users\user\3D Objects
2018-10-11 18:29 - 2017-08-07 09:31 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-10-11 18:28 - 2018-05-13 13:31 - 000250128 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-10-11 18:25 - 2018-04-11 18:38 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2018-10-11 18:25 - 2018-04-11 18:38 - 000000000 ___RD C:\Program Files\Windows Defender
2018-10-11 18:25 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\TextInput
2018-10-11 18:25 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2018-10-11 18:25 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2018-10-11 18:25 - 2018-04-11 18:38 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2018-10-09 19:09 - 2018-05-13 13:36 - 000003540 _____ C:\WINDOWS\System32\Tasks\GyazoUpdateTaskMachineDaily
2018-10-09 19:09 - 2018-05-13 13:36 - 000003404 _____ C:\WINDOWS\System32\Tasks\GyazoUpdateTaskMachine
2018-10-09 19:09 - 2017-10-08 23:02 - 000000000 ____D C:\Program Files (x86)\Gyazo
2018-10-09 19:00 - 2017-08-18 08:21 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-10-09 18:58 - 2017-08-18 08:21 - 136745976 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-10-09 18:57 - 2018-08-16 09:27 - 000158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2018-10-09 18:57 - 2018-04-11 18:34 - 000494400 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2018-10-09 18:57 - 2018-04-11 18:34 - 000035232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2018-10-09 18:49 - 2018-05-13 13:36 - 000004586 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-10-09 18:49 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-10-09 18:49 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-10-09 18:49 - 2017-09-06 21:37 - 000000000 ____D C:\Program Files (x86)\Overwolf
2018-10-06 19:25 - 2017-09-07 22:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft
2018-10-06 18:49 - 2018-02-20 12:48 - 004734928 _____ () C:\Users\user\Desktop\TechnicLauncher(1).exe
2018-10-06 18:46 - 2018-02-22 22:04 - 000000000 ____D C:\Users\user\AppData\Local\Battle.net
2018-10-06 17:45 - 2018-06-08 19:40 - 000000000 ____D C:\Users\user\AppData\Local\BattlEye
2018-10-05 17:55 - 2018-06-14 09:39 - 000000000 ____D C:\ProgramData\Packages
2018-10-02 15:13 - 2018-04-11 18:41 - 000835152 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-10-02 15:13 - 2018-04-11 18:41 - 000179792 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-09-29 23:04 - 2018-08-13 23:18 - 000000000 ____D C:\Users\user\AppData\Roaming\EasyAntiCheat
2018-09-29 22:04 - 2018-08-29 23:32 - 000001443 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2018-09-29 22:04 - 2018-08-24 15:47 - 000000000 ____D C:\Users\user\AppData\Local\NVIDIA Corporation
2018-09-29 22:04 - 2018-08-24 15:19 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2018-09-29 22:03 - 2018-08-24 15:19 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2018-09-29 22:03 - 2018-08-24 15:19 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2018-09-29 22:03 - 2018-06-05 08:24 - 000004106 _____ C:\WINDOWS\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-09-29 22:03 - 2018-06-05 08:24 - 000003976 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-09-29 22:03 - 2018-06-05 08:24 - 000003940 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-09-29 22:03 - 2018-06-05 08:24 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-09-29 22:03 - 2018-06-05 08:24 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-09-29 22:03 - 2018-06-05 08:24 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-09-29 22:03 - 2018-05-13 13:36 - 000004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-09-29 22:03 - 2018-05-13 13:36 - 000003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-09-29 22:03 - 2018-05-13 13:36 - 000003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-09-29 22:03 - 2018-05-13 13:36 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-09-29 22:03 - 2018-05-13 13:36 - 000003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-09-29 19:02 - 2018-08-22 09:00 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2018-09-28 23:43 - 2018-08-24 15:46 - 000000000 ____D C:\Users\user\AppData\Local\NVIDIA
2018-09-28 20:39 - 2017-11-18 09:45 - 000000000 ____D C:\Users\user\Desktop\crap compost
2018-09-28 19:35 - 2018-08-06 13:39 - 000000000 ____D C:\Users\user\AppData\Roaming\FusionFall Universe
2018-09-28 19:35 - 2018-08-06 13:37 - 000001193 _____ C:\Users\user\Desktop\FusionFall Universe.lnk
2018-09-28 16:01 - 2018-08-24 15:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2018-09-28 16:00 - 2018-08-24 15:43 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2018-09-28 15:47 - 2018-04-11 18:38 - 000000000 ____D C:\PerfLogs
2018-09-26 18:23 - 2018-03-01 17:09 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2018-09-23 15:30 - 2018-09-03 03:57 - 000000000 ____D C:\Users\user\Desktop\RocketLeagueTrainer_v0_7_7
2018-09-23 14:32 - 2018-09-01 11:21 - 000000000 ____D C:\Users\user\AppData\Local\MEGAsync
2018-09-21 16:47 - 2018-05-13 13:36 - 000003374 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2740511448-4270186098-299372889-1001
2018-09-21 16:47 - 2018-05-13 13:33 - 000002360 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-09-19 23:29 - 2015-10-30 03:13 - 000407254 __RSH C:\bootmgr
2018-09-17 14:14 - 2018-08-20 01:51 - 000004210 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2018-09-16 21:57 - 2018-08-25 00:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2018-09-14 18:16 - 2017-11-19 18:25 - 000000000 ____D C:\Users\user\AppData\Local\Packages

==================== Files in the root of some directories =======

2017-08-31 12:48 - 2017-08-31 12:48 - 000000720 _____ () C:\Users\user\AppData\Roaming\BF1.txt
2017-09-30 14:17 - 2017-09-30 14:17 - 000000063 _____ () C:\Users\user\AppData\Local\emaildefaults
2018-08-24 15:58 - 2018-08-24 15:58 - 001065984 _____ () C:\Users\user\AppData\Local\file__0.localstorage
2017-11-14 23:46 - 2017-11-14 23:46 - 000015832 _____ () C:\Users\user\AppData\Local\kritacrash.log
2018-08-24 15:47 - 2018-08-24 15:47 - 000000109 _____ () C:\Users\user\AppData\Local\kritadisplayrc
2017-09-30 12:13 - 2018-08-24 15:47 - 000032146 _____ () C:\Users\user\AppData\Local\kritarc
2017-09-30 14:25 - 2017-11-16 17:52 - 000000339 _____ () C:\Users\user\AppData\Local\kritashortcutsrc
2018-09-27 19:02 - 2018-09-27 19:02 - 000000000 _____ () C:\Users\user\AppData\Local\oobelibMkey.log
2017-08-18 14:24 - 2017-08-18 14:24 - 000000218 _____ () C:\Users\user\AppData\Local\recently-used.xbel
2018-01-28 01:26 - 2018-01-28 01:26 - 000007606 _____ () C:\Users\user\AppData\Local\Resmon.ResmonCfg

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-05-13 13:31

==================== End of FRST.txt ============================

 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 10.10.2018
Ran by user (13-10-2018 19:38:59)
Running from C:\Users\user\Desktop\FRST64
Windows 10 Home Version 1803 17134.345 (X64) (2018-05-13 18:36:54)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2740511448-4270186098-299372889-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2740511448-4270186098-299372889-503 - Limited - Disabled)
Guest (S-1-5-21-2740511448-4270186098-299372889-501 - Limited - Disabled)
user (S-1-5-21-2740511448-4270186098-299372889-1001 - Administrator - Enabled) => C:\Users\user
WDAGUtilityAccount (S-1-5-21-2740511448-4270186098-299372889-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

A3Launcher version 0.1.6.2 (HKLM-x32\...\{1E29A86E-9AE2-4CD8-74C8-6B170ED3C4D2}_is1) (Version: 0.1.6.2 - Maca134)
Adobe Flash Player 31 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 31.0.0.122 - Adobe Systems Incorporated)
Adobe Photoshop (HKLM\...\{9B08B2EC-C82E-4D24-A3E0-57646E2CE480}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden
Albion Online (HKLM-x32\...\SandboxAlbionOnline) (Version:  - Sandbox Interactive GmbH)
Application Verifier x64 External Package (HKLM\...\{2D7C1671-6F3D-2AA7-DAA3-91C96B60B919}) (Version: 10.1.15063.468 - Microsoft) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Black Desert Online (HKLM-x32\...\{C1F96C92-7B8C-485F-A9CD-37A0708A2A60}) (Version: 1.0.0.7 - Kakao Games Europe B.V.)
CCleaner (HKLM\...\CCleaner) (Version: 5.44 - Piriform)
ClickOnce Bootstrapper Package for Microsoft .NET Framework (HKLM-x32\...\{E598B692-764A-413C-8530-59163D6B4AE3}) (Version: 4.6.01590 - Microsoft Corporation) Hidden
Clownfish Voice Changer (HKLM\...\ClownfishVoiceChanger) (Version:  - )
Crossout Launcher 1.0.3.63 (HKLM-x32\...\CrossOutLauncher_is1) (Version:  - )
Dauntless (HKLM\...\{03AFDFA7-7A23-41B1-AAC2-3898591127D3}) (Version: 1.00.0000 - Phoenix Labs)
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
DiagnosticsHub_CollectionService (HKLM\...\{37385261-BB10-4DE0-8822-84E1C4997ED2}) (Version: 15.0.26730 - Microsoft Corporation) Hidden
Discord (HKU\S-1-5-21-2740511448-4270186098-299372889-1001\...\Discord) (Version: 0.0.301 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 399.24 - NVIDIA Corporation) Hidden
Dragonball Online Global version 2.0 (HKLM-x32\...\{A924B64B-8850-4410-8E91-B8FE16A8AFC6}_is1) (Version: 2.0 - DBOG)
Drawpile 2.0.10 (HKLM\...\{DC47B534-E365-4054-85F0-2E7C6CCB76CC}_is1) (Version: 2.0.10 - )
Entity Framework 6.1.3 Tools  for Visual Studio 15 (HKLM-x32\...\{F8C0447E-D45C-4E52-94E8-C6340AAC9DB8}) (Version: 6.1.60104.0 - Microsoft Corporation) Hidden
Epic Games Launcher (HKLM-x32\...\{FE3CD7B8-14D4-46E9-A206-2C8F2C0E6F1F}) (Version: 1.1.139.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
FamilyWeekend (HKU\S-1-5-21-2740511448-4270186098-299372889-1001\...\FamilyWeekend) (Version:  - Alt0C10ud)
FINAL FANTASY XIV ONLINE (HKLM-x32\...\{2B41E132-07DF-4925-A3D3-F2D1765CCDFE}) (Version: 1.0.0000 - SQUARE ENIX CO., LTD.)
Forza Horizon 3 [FULL REMOVAL] (HKU\S-1-5-21-2740511448-4270186098-299372889-1001\...\{2BF89276-C6E6-4E56-AF93-633A36F02D58}_is1) (Version: 1.0.119.1002 - Microsoft Studios)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
FusionFall Universe (HKU\S-1-5-21-2740511448-4270186098-299372889-1001\...\FusionFall Universe) (Version: 0.0.0.0 - FusionFall Universe)
FusionFall Universe Launcher (HKLM-x32\...\FusionFall Universe Launcher) (Version: 1.0.4 - FusionFall Universe)
Google Chrome (HKLM\...\{60C02A0E-51D2-3127-B4F1-2B92404692AF}) (Version: 63.0.3239.132 - Google, Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
GPU Temp version 1.0 (HKLM-x32\...\{8C8711FD-0FC8-4801-B33E-ED19BB0350B1}_is1) (Version: 1.0 - gputemp.com)
Grammarly (HKU\S-1-5-21-2740511448-4270186098-299372889-1001\...\GrammarlyForWindows) (Version: 1.5.37 - Grammarly)
Guild Wars 2 (HKLM\...\Guild Wars 2) (Version:  - NCsoft Corporation, Ltd.)
Gyazo 3.4.1.0 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version:  - Nota Inc.)
Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.)
icecap_collection_neutral (HKLM-x32\...\{743913D7-41D9-48C0-977D-FC87743A9BEC}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
icecap_collection_x64 (HKLM\...\{6BC73140-3CB6-486A-8350-BF35F54EFA19}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
icecap_collectionresources (HKLM-x32\...\{67941F0C-2930-4C3F-983C-1089D2759B42}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
icecap_collectionresourcesx64 (HKLM-x32\...\{304B71E2-BA3A-419C-B632-3DFBB4AFE42B}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4835 - Intel Corporation)
Intellisense Lang Pack Mobile Extension SDK 10.0.15063.0 (HKLM-x32\...\{955DB066-D013-43F3-908C-CBC851E3D4FF}) (Version: 10.1.15063.468 - Microsoft Corporation) Hidden
IntelliTraceProfilerProxy (HKLM-x32\...\{0A2EDF2C-9A71-43D7-964A-696BB7CEAC65}) (Version: 15.0.25.0 - Microsoft Corporation) Hidden
Java 8 Update 181 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180181F0}) (Version: 8.0.1810.13 - Oracle Corporation)
Kits Configuration Installer (HKLM-x32\...\{1704C439-1501-3446-7932-33DA822E8597}) (Version: 10.1.15063.468 - Microsoft) Hidden
Krita (x64) 4.0.1 (HKLM\...\Krita_x64) (Version: 4.0.1.100 - Krita Foundation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\{E80C09B5-A296-47E9-BD4B-BCCF2FDCA13E}) (Version: 4.1.2 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 4.1.2) (Version: 4.1.2 - Riot Games)
LogMeIn Hamachi (HKLM-x32\...\{892DB406-ADF8-4C30-9840-8438AF5B8763}) (Version: 2.2.0.607 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.607 - LogMeIn, Inc.)
Malwarebytes version 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes)
MediBang Paint Pro 12.1 (64-bit) (HKLM\...\MediBang Paint Pro_is1) (Version: 12.1 - Medibang)
MEGAsync (HKLM-x32\...\MEGAsync) (Version:  - Mega Limited)
Microsoft DirectX SDK (June 2010) (HKLM-x32\...\Microsoft DirectX SDK (June 2010)) (Version: 9.29.1962.0 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2740511448-4270186098-299372889-1001\...\OneDriveSetup.exe) (Version: 18.151.0729.0012 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2017 CTP2.1 (HKLM\...\{9BAD8F82-A221-42CE-AFF0-7CAB825790C9}) (Version: 14.0.600.250 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2017 CTP2.1 (HKLM-x32\...\{F0DD1AA8-44D7-4ACE-AF65-7378EA5D884C}) (Version: 14.0.600.250 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual Studio 2017 (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 1.11.33284.727 - Microsoft Corporation)
Microsoft Visual Studio Code (HKLM-x32\...\{F8A2A208-72B3-4D61-95FC-8A65D340689B}_is1) (Version: 1.15.1 - Microsoft Corporation)
Microsoft Visual Studio Code (User) (HKU\S-1-5-21-2740511448-4270186098-299372889-1001\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.26.1 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{756E195A-CB58-4B99-917F-0DDA0D881204}) (Version: 1.0.4.0 - Mojang)
Mozilla Firefox 62.0.3 (x64 en-US) (HKLM\...\Mozilla Firefox 62.0.3 (x64 en-US)) (Version: 62.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 62.0.3 - Mozilla)
MSI Afterburner 4.5.0 (HKLM-x32\...\Afterburner) (Version: 4.5.0 - MSI Co., LTD)
MSI Development Tools (HKLM-x32\...\{E45B775D-8842-EC86-ED84-B740D52E6462}) (Version: 10.1.15063.468 - Microsoft Corporation) Hidden
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.5.8 - Notepad++ Team)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.11 - NVIDIA Corporation) Hidden
NVIDIA 3D Vision Controller Driver 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 399.24 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 399.24 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.15.0.164 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.15.0.164 - NVIDIA Corporation)
NVIDIA Graphics Driver 399.24 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 399.24 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.37.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.4 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 22.0.1 - OBS Project)
osu! (HKLM-x32\...\{44061ca7-d497-496c-a486-8b5816eeacdc}) (Version: latest - ppy Pty Ltd)
Overwatch (HKLM-x32\...\Overwatch) (Version:  - Blizzard Entertainment)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.118.3.8 - Overwolf Ltd.)
oZone3D.Net FurMark v1.8.2 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version:  - oZone3D.Net)
Python 2.7.13 (HKLM-x32\...\{4A656C6C-D24A-473F-9747-3A8D00907A03}) (Version: 2.7.13150 - Python Software Foundation)
Python 3.6.5 (Anaconda3 5.2.0 64-bit) (HKU\S-1-5-21-2740511448-4270186098-299372889-1001\...\Python 3.6.5 (Anaconda3 5.2.0 64-bit)) (Version: 5.2.0 - Anaconda, Inc.)
Python 3.7.0 (32-bit) (HKU\S-1-5-21-2740511448-4270186098-299372889-1001\...\{ece37911-ffeb-4f29-95d6-abcf555d7364}) (Version: 3.7.150.0 - Python Software Foundation)
Python 3.7.0 Core Interpreter (32-bit) (HKLM-x32\...\{13BB06D9-FD38-47E5-946E-C2606C554030}) (Version: 3.7.150.0 - Python Software Foundation) Hidden
Python 3.7.0 Development Libraries (32-bit) (HKLM-x32\...\{B424BE74-3C96-4974-8754-9D6442286112}) (Version: 3.7.150.0 - Python Software Foundation) Hidden
Python 3.7.0 Documentation (32-bit) (HKLM-x32\...\{ABEE159E-FE5B-4E58-BDD7-1DED2F10AAEB}) (Version: 3.7.150.0 - Python Software Foundation) Hidden
Python 3.7.0 Executables (32-bit) (HKLM-x32\...\{4642A126-F999-4407-801B-C1C89BDA58C5}) (Version: 3.7.150.0 - Python Software Foundation) Hidden
Python 3.7.0 pip Bootstrap (32-bit) (HKLM-x32\...\{69CFC76B-3434-4919-8885-BA7960725137}) (Version: 3.7.150.0 - Python Software Foundation) Hidden
Python 3.7.0 Standard Library (32-bit) (HKLM-x32\...\{09160A5D-8B99-4A89-9E9D-8A6D8E9C7EC1}) (Version: 3.7.150.0 - Python Software Foundation) Hidden
Python 3.7.0 Tcl/Tk Support (32-bit) (HKLM-x32\...\{8A09EA6B-C86C-4ECA-8742-C4C1BCA96845}) (Version: 3.7.150.0 - Python Software Foundation) Hidden
Python 3.7.0 Test Suite (32-bit) (HKLM-x32\...\{717DB3B4-C457-447B-A8A6-6921A4D917EF}) (Version: 3.7.150.0 - Python Software Foundation) Hidden
Python 3.7.0 Utility Scripts (32-bit) (HKLM-x32\...\{FC756D1E-1252-406E-8414-E11FAF97F3C7}) (Version: 3.7.150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{D6BDDB48-938A-4384-A7BE-2B4E4931B111}) (Version: 3.7.6386.0 - Python Software Foundation)
Rake (HKLM-x32\...\Rake_is1) (Version:  - )
Replay HUD (HKU\S-1-5-21-2740511448-4270186098-299372889-1001\...\Overwolf_hffhbjnafafjnehejohpkfhjdenpifhihebpkhni) (Version: 118.1.5 - Overwolf app)
RivaTuner Statistics Server 7.1.0 (HKLM-x32\...\RTSS) (Version: 7.1.0 - Unwinder)
Roblox Player for user (HKU\S-1-5-21-2740511448-4270186098-299372889-1001\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version:  - Roblox Corporation)
Roblox Player for user (HKU\S-1-5-21-2740511448-4270186098-299372889-1001\...\roblox-player) (Version:  - Roblox Corporation)
Roblox Studio for user (HKU\S-1-5-21-2740511448-4270186098-299372889-1001\...\{2922D6F1-2865-4EFA-97A9-94EEAB3AFA14}) (Version:  - Roblox Corporation)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1264 - SUPERAntiSpyware.com)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.14.1 - Synaptics Incorporated)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.6 - TeamSpeak Systems GmbH)
The Elder Scrolls Online (HKLM-x32\...\The Elder Scrolls Online) (Version: 2.6.3.0 - Zenimax Online Studios)
Tom Clancy's Rainbow Six Siege (HKLM-x32\...\Uplay Install 635) (Version:  - Ubisoft Montreal)
Trojan Killer (HKLM\...\GridinSoft Trojan Killer) (Version: 2.0.68 - Gridinsoft LLC)
Twitch (HKU\S-1-5-21-2740511448-4270186098-299372889-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 7.0.0.0 - Twitch Interactive, Inc.)
TypeScript SDK (HKLM-x32\...\{CFA1F87E-EF2B-4785-812C-4BEEA22CFD06}) (Version: 2.3.5.0 - Microsoft Corporation) Hidden
Unity Web Player (HKU\S-1-5-21-2740511448-4270186098-299372889-1001\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Unity Web Player (x64) (All users) (HKLM\...\UnityWebPlayer) (Version: 4.6.6f2 - Unity Technologies ApS)
Universal CRT Extension SDK (HKLM-x32\...\{D23DC9CD-5870-9D26-5DE9-6273CAC7DD5B}) (Version: 10.1.15063.468 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (HKLM-x32\...\{51523D5B-FC32-CAB4-E54E-E41C0E4C1726}) (Version: 10.1.15063.468 - Microsoft Corporation) Hidden
Universal CRT Redistributable (HKLM-x32\...\{573C4B4F-B9B9-28DA-0243-D118DD3EE574}) (Version: 10.1.15063.468 - Microsoft Corporation) Hidden
Universal CRT Tools x64 (HKLM\...\{3C75FFD3-00CF-1974-2935-7BED20381899}) (Version: 10.1.15063.468 - Microsoft Corporation) Hidden
Universal CRT Tools x86 (HKLM-x32\...\{812954B8-9658-EFE2-FB5F-B422048AA053}) (Version: 10.1.15063.468 - Microsoft Corporation) Hidden
Universal General MIDI DLS Extension SDK (HKLM-x32\...\{05086CEC-62C1-B12C-2FEC-C58E166FA7E8}) (Version: 10.1.15063.468 - Microsoft Corporation) Hidden
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 64.0 - Ubisoft)
vcpp_crt.redist.clickonce (HKLM-x32\...\{C36E80D0-EED5-481F-9852-1EBB0DD122B6}) (Version: 14.11.25325 - Microsoft Corporation) Hidden
VS Immersive Activate Helper (HKLM-x32\...\{FD1039C3-228B-43BB-820A-ACAED580A9D5}) (Version: 16.0.71.0 - Microsoft Corporation) Hidden
VS JIT Debugger (HKLM\...\{75068E51-7C37-4003-84C2-C67461C8D60A}) (Version: 16.0.71.0 - Microsoft Corporation) Hidden
VS Script Debugging Common (HKLM\...\{A9ED1B56-3819-4B14-A929-89DD3E16E216}) (Version: 16.0.71.0 - Microsoft Corporation) Hidden
vs_BlendMsi (HKLM-x32\...\{028492D7-855B-4018-B0A8-B5411EED541A}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_clickoncebootstrappermsi (HKLM-x32\...\{DCAD4F0C-21F2-4955-9C0A-2B7CEA610A74}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_clickoncebootstrappermsires (HKLM-x32\...\{C32010D8-3E5A-4E2F-874E-9AAEB2384006}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_clickoncesigntoolmsi (HKLM-x32\...\{440B670C-9862-487A-A381-57173D344039}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_communitymsi (HKLM-x32\...\{52100697-9C66-44F3-BA20-68F8148CDF9B}) (Version: 15.0.26711 - Microsoft Corporation) Hidden
vs_communitymsires (HKLM-x32\...\{40040E64-50EB-4FCF-B209-DA0B20821759}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_devenvmsi (HKLM-x32\...\{BFFA2FFB-1095-4ADD-A352-368806D2412B}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_filehandler_amd64 (HKLM-x32\...\{DDEF2BD0-F728-4D04-A085-B5ACC9ADC311}) (Version: 15.0.26711 - Microsoft Corporation) Hidden
vs_filehandler_x86 (HKLM-x32\...\{2512A3CE-E1E4-46D5-8B40-28DA3AE2261E}) (Version: 15.0.26711 - Microsoft Corporation) Hidden
vs_FileTracker_Singleton (HKLM-x32\...\{384F31FB-B99D-48A7-9D72-E1FEBEC2201A}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_Graphics_Singletonx64 (HKLM\...\{134E1F55-10CB-4837-9F43-C8145933AA3E}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_Graphics_Singletonx86 (HKLM-x32\...\{5A528FAB-6AD3-4F9A-9A1C-566A5C02C3D6}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_minshellinteropmsi (HKLM-x32\...\{D0772A03-7FC2-4B20-AC1F-B278299AA9C7}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_minshellmsi (HKLM-x32\...\{0F2742A7-6A64-46A2-94AE-22F19808BE2F}) (Version: 15.0.26711 - Microsoft Corporation) Hidden
vs_minshellmsires (HKLM-x32\...\{6DFE6F8D-B61D-4348-AB70-4ABF1210DFD5}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_SQLClickOnceBootstrappermsi (HKLM-x32\...\{5C682D5E-7168-47C6-87CD-53E2103B08AC}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_tipsmsi (HKLM-x32\...\{032E21D1-556F-49D6-9518-CF53202AF63B}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.3.27-2 - Wacom Technology Corp.)
WinAppDeploy (HKLM-x32\...\{1AD35036-0E71-1C38-E4F8-14F6ED75EA98}) (Version: 10.1.15063.468 - Microsoft Corporation) Hidden
Windows SDK AddOn (HKLM-x32\...\{E1C6F438-7C50-41F5-8B47-3CC96D397CA3}) (Version: 10.1.0.0 - Microsoft Corporation)
Windows Software Development Kit - Windows 10.0.15063.468 (HKLM-x32\...\{0a829ae9-ca13-4f58-a168-648e80cf6739}) (Version: 10.1.15063.468 - Microsoft Corporation)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
WinRT Intellisense Desktop - en-us (HKLM-x32\...\{3E1718A0-E5A4-04EB-E85C-DF94790FCCF4}) (Version: 10.1.15063.468 - Microsoft Corporation) Hidden
WinRT Intellisense Desktop - Other Languages (HKLM-x32\...\{26FD6F7E-30DF-16AB-9F3B-2EC665C36498}) (Version: 10.1.15063.468 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - en-us (HKLM-x32\...\{B3E6FE24-A4E4-0454-5004-D8A3CCC9B0F6}) (Version: 10.1.15063.468 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - Other Languages (HKLM-x32\...\{CC57D696-D6B5-DB4D-7ABC-C373CF7E6D73}) (Version: 10.1.15063.468 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - en-us (HKLM-x32\...\{891DDA6A-C9D4-9C57-BC4E-B77CE28BAFC3}) (Version: 10.1.15063.468 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - Other Languages (HKLM-x32\...\{C22B0226-A0C4-B973-C0BF-24A3D66B8C3E}) (Version: 10.1.15063.468 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - en-us (HKLM-x32\...\{F3F1C906-9349-1B25-3680-65015218BD99}) (Version: 10.1.15063.468 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - Other Languages (HKLM-x32\...\{CB8253BF-62B4-A504-7E06-BA102F48C02B}) (Version: 10.1.15063.468 - Microsoft Corporation) Hidden
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version:  - Blizzard Entertainment)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\user\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\user\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\user\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\user\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\user\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\user\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => D:\Notepad++\NppShell_06.dll [2018-07-22] ()
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\user\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\user\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => D:\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\user\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ContextMenuHandlers4: [Convert] -> {9f95ca1a-e80e-4c0f-acd1-4c9b7900b982} => C:\Program Files (x86)\Microsoft DirectX SDK (June 2010)\Utilities\bin\x64\TxView.dll [2010-06-02] (Microsoft Corporation)
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\user\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-10-20] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-09-05] (NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => D:\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00D1B9FE-6151-4A3B-A114-2186C14D8D8C} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-2740511448-4270186098-299372889-1001 => C:\Users\user\AppData\Local\MEGAsync\MEGAupdater.exe [2018-01-15] (Mega Limited)
Task: {043E3A7B-C127-4D64-B330-818BBBEAA86A} - System32\Tasks\sweepsies => c:\Windows\System32\shutdown.exe [2018-04-11] (Microsoft Corporation)
Task: {04A878BF-0AE9-4205-8863-1DDAABE45131} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-09-12] (NVIDIA Corporation)
Task: {078FEC85-1976-4ECB-B9FD-3D4F863C4E9E} - System32\Tasks\highlightinghighlighting => C:\Program Files (x86)\Lugar\flacks.exe [2018-10-12] ()
Task: {081EBBBB-FA00-4639-A5B1-CE98CA2FB43E} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2018-10-04] (Nota Inc.)
Task: {0D590864-9C86-421F-A87F-8C1F13A13E4F} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-09-12] (NVIDIA Corporation)
Task: {1404B865-07B8-45EC-A4FB-48624095C2A8} - System32\Tasks\SUPERAntiSpyware Scheduled Task fada3000-4bad-4c5b-9577-5027ce4f30fd => D:\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
Task: {1A713251-0E0C-4D48-A8C6-B8F2DBBCF5C1} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-06-24] (Piriform Ltd)
Task: {222B68C9-D18D-446D-B48D-8E662634E43A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-06-24] (Piriform Ltd)
Task: {25468693-9B98-4440-97A8-2621296C6AC6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1809.2-0\MpCmdRun.exe [2018-09-26] (Microsoft Corporation)
Task: {25A5FEB4-50EF-44A1-8CCE-00D9841331C2} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_122_Plugin.exe [2018-10-09] (Adobe Systems Incorporated)
Task: {26AEF9F2-67B5-4B4D-B620-05E20063A49A} - System32\Tasks\AGProxyCheck => C:\Program [Argument = Files (x86)\AnonymizerGadget\AGService.exe /recove]
Task: {34FA189F-BC4E-4660-963A-7761205F052C} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2018-10-07] (Overwolf LTD)
Task: {497C8514-B2E1-4762-97A5-09AEB858638E} - System32\Tasks\SUPERAntiSpyware Scheduled Task 25a09b37-9bcb-4309-b86f-1ec3e70fa147 => D:\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
Task: {4A82B38D-E60A-421C-AF96-19745C14097B} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-09-12] (NVIDIA Corporation)
Task: {57F89D69-D8F0-46F6-9B9E-B0C90723AD81} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-09-12] (NVIDIA Corporation)
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-11] ()
Task: {67C1A499-51FB-4A42-B594-F38E007CBB97} - System32\Tasks\highlighting => C:\Program Files (x86)\Lugar\flacks.exe [2018-10-12] ()
Task: {77511BB2-0C66-4F3C-A852-596411125B74} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1809.2-0\MpCmdRun.exe [2018-09-26] (Microsoft Corporation)
Task: {7D9301FD-3AA9-4505-B855-8B47D9CC9618} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-09-12] (NVIDIA Corporation)
Task: {80B5CA34-AC79-43A8-BC1E-90D99ED2E2A6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {8A533E26-C1C6-45A6-A0DC-75E3A276067E} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-09-12] (NVIDIA Corporation)
Task: {992A93C4-3DCF-46A4-BF71-6235FD59CC9D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1809.2-0\MpCmdRun.exe [2018-09-26] (Microsoft Corporation)
Task: {9B27B7BF-243E-4BD6-90E9-FCB7A277BF55} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-10-09] (Adobe Systems Incorporated)
Task: {A0487DFA-4658-4D47-87C5-48DE7B79C536} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-09-12] (NVIDIA Corporation)
Task: {A07E0E07-039C-4015-B9D7-1A2D23AEE8C2} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-09-12] (NVIDIA Corporation)
Task: {A746CA71-0F56-4898-9C0C-9606EBED1FDB} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-09-12] (NVIDIA Corporation)
Task: {B282D976-D80F-4596-BFB0-80A0246C8861} - System32\Tasks\AdobeAAMUpdater-1.0-DESKTOP-TFAE76P-user => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
Task: {DAD244B5-C96A-4D66-8C4C-26AA604124B1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {E5B08940-C3E6-4516-AE04-531726726CF4} - System32\Tasks\[email protected] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-09-10] (Adobe Systems, Incorporated)
Task: {EFD4B135-0B4B-4A3A-A36A-083711F7B675} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1809.2-0\MpCmdRun.exe [2018-09-26] (Microsoft Corporation)
Task: {F78E8C43-ECA9-4374-BB31-548AF48961FD} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-09-12] (NVIDIA Corporation)
Task: {FCAD7FF3-25C3-492E-8F1F-D2FED304C462} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2018-10-04] (Nota Inc.)
Task: {FD2C9A09-DA27-4E6E-B417-1DD3CAC4958A} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-09-12] (NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 25a09b37-9bcb-4309-b86f-1ec3e70fa147.job => D:\SUPERAntiSpyware\SASTask.exeVD:\SUPERAntiSpyware\SUPERAntiSpyware.exe
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task fada3000-4bad-4c5b-9577-5027ce4f30fd.job => D:\SUPERAntiSpyware\SASTask.exeVD:\SUPERAntiSpyware\SUPERAntiSpyware.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


ShortcutWithArgument: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda3 (64-bit)\Anaconda Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> "/K" D:\Anaconda\Scripts\activate.bat D:\Anaconda

==================== Loaded Modules (Whitelisted) ==============

2018-08-29 23:32 - 2018-09-12 06:45 - 001315024 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2018-10-12 12:18 - 2018-10-12 12:18 - 000061434 _____ () C:\Program Files (x86)\Lugar\flacks.exe
2018-10-12 20:18 - 2018-09-12 17:57 - 002785784 _____ () D:\ANTI-MALWARE\MwacLib.dll
2018-10-12 20:18 - 2018-09-12 11:35 - 002701064 _____ () D:\ANTI-MALWARE\SelfProtectionSdk.dll
2018-04-11 18:34 - 2018-04-11 18:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll
2017-10-18 16:51 - 2017-10-18 16:51 - 000598528 _____ () C:\Users\user\AppData\Local\MEGAsync\ShellExtX64.dll
2018-04-11 18:34 - 2018-04-11 18:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-11 18:34 - 2018-04-11 18:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2017-09-03 17:03 - 2017-12-13 13:49 - 002288072 _____ () C:\Program Files\Tablet\Wacom\libxml2.dll
2018-10-09 18:56 - 2018-09-19 22:38 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-10-03 20:52 - 2018-10-03 20:52 - 000181248 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.30.98.1000_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
2018-10-03 20:52 - 2018-10-03 20:52 - 000019456 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.30.98.1000_x64__kzf8qxf38zg5c\SkypeProxiesAndStubs.dll
2018-09-11 21:58 - 2018-09-11 21:58 - 035124736 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.10311.0_x64__8wekyb3d8bbwe\Video.UI.exe
2018-09-11 21:58 - 2018-09-11 21:58 - 000290816 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.10311.0_x64__8wekyb3d8bbwe\SharedUI.dll
2018-09-11 21:58 - 2018-09-11 21:58 - 006417408 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.10311.0_x64__8wekyb3d8bbwe\EntCommon.dll
2017-09-25 21:26 - 2017-09-25 21:27 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.10311.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-09-11 21:58 - 2018-09-11 21:58 - 009010176 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.10311.0_x64__8wekyb3d8bbwe\EntPlat.dll
2018-08-29 23:32 - 2018-09-12 06:45 - 101252304 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2018-10-07 08:30 - 2018-10-07 08:30 - 097136968 _____ () C:\Program Files (x86)\Overwolf\0.118.3.8\libcef.DLL
2018-01-29 21:01 - 2018-01-29 21:02 - 098275328 _____ () D:\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libcef.dll
2018-01-29 21:02 - 2018-01-29 21:02 - 003922432 _____ () D:\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libGLESv2.dll
2018-01-29 21:02 - 2018-01-29 21:02 - 000092672 _____ () D:\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libEGL.dll
2018-10-07 08:30 - 2018-10-07 08:30 - 004457800 _____ () C:\Program Files (x86)\Overwolf\0.118.3.8\libglesv2.dll
2018-10-07 08:30 - 2018-10-07 08:30 - 000099656 _____ () C:\Program Files (x86)\Overwolf\0.118.3.8\libegl.dll
2018-08-29 23:32 - 2018-09-12 06:45 - 002673360 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\swiftshader\libglesv2.dll
2018-08-29 23:32 - 2018-09-12 06:45 - 000138960 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\swiftshader\libegl.dll
2018-10-11 18:52 - 2018-09-22 19:00 - 102804768 _____ () D:\steam\bin\cef\cef.win7x64\libcef.dll
2018-10-11 18:52 - 2018-10-09 23:17 - 001056032 _____ () D:\steam\bin\cef\cef.win7x64\SDL2.dll
2018-10-11 18:52 - 2018-09-22 19:00 - 004866336 _____ () D:\steam\bin\cef\cef.win7x64\libglesv2.dll
2018-10-11 18:52 - 2018-09-22 19:00 - 000116000 _____ () D:\steam\bin\cef\cef.win7x64\libegl.dll
2018-10-09 18:52 - 2018-10-09 18:52 - 004389888 _____ () C:\Program Files\WindowsApps\Microsoft.OneConnect_5.1809.2571.0_x64__8wekyb3d8bbwe\OneConnect.dll
2018-08-29 23:32 - 2018-09-12 06:45 - 001032912 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2018-05-01 19:22 - 2018-04-30 23:01 - 001891672 _____ () C:\Users\user\AppData\Local\Discord\app-0.0.301\ffmpeg.dll
2018-05-01 19:22 - 2018-04-30 23:01 - 001937752 _____ () C:\Users\user\AppData\Local\Discord\app-0.0.301\libglesv2.dll
2018-05-01 19:22 - 2018-04-30 23:01 - 000095576 _____ () C:\Users\user\AppData\Local\Discord\app-0.0.301\libegl.dll
2018-05-01 19:22 - 2018-08-29 19:15 - 011321176 _____ () \\?\C:\Users\user\AppData\Roaming\discord\0.0.301\modules\discord_voice\discord_voice.node
2018-05-01 19:22 - 2018-09-13 15:44 - 001615704 _____ () \\?\C:\Users\user\AppData\Roaming\discord\0.0.301\modules\discord_utils\discord_utils.node
2018-05-01 19:22 - 2018-05-01 19:22 - 001910104 _____ () \\?\C:\Users\user\AppData\Roaming\discord\0.0.301\modules\discord_spellcheck\node_modules\cld\build\Release\cld.node
2018-05-01 19:22 - 2018-05-01 19:22 - 000422744 _____ () \\?\C:\Users\user\AppData\Roaming\discord\0.0.301\modules\discord_spellcheck\node_modules\spellchecker\build\Release\spellchecker.node
2018-05-01 19:22 - 2018-05-01 19:22 - 000145240 _____ () \\?\C:\Users\user\AppData\Roaming\discord\0.0.301\modules\discord_spellcheck\node_modules\keyboard-layout\build\Release\keyboard-layout-manager.node
2018-05-01 19:22 - 2018-05-01 19:22 - 000512856 _____ () \\?\C:\Users\user\AppData\Roaming\discord\0.0.301\modules\discord_erlpack\discord_erlpack.node
2018-05-01 19:22 - 2018-08-10 21:31 - 001641304 _____ () \\?\C:\Users\user\AppData\Roaming\discord\0.0.301\modules\discord_game_utils\discord_game_utils.node
2018-10-01 18:45 - 2018-10-11 18:29 - 009621848 _____ () \\?\C:\Users\user\AppData\Roaming\discord\0.0.301\modules\discord_cloudsync\discord_cloudsync.node
2018-05-01 19:22 - 2018-05-01 19:22 - 002722648 _____ () \\?\C:\Users\user\AppData\Roaming\discord\0.0.301\modules\discord_rpc\discord_rpc.node
2018-08-10 21:31 - 2018-10-05 17:51 - 001253720 _____ () \\?\C:\Users\user\AppData\Roaming\discord\0.0.301\modules\discord_modules\discord_modules.node
2018-08-10 21:31 - 2018-10-13 14:53 - 024909144 _____ () \\?\C:\Users\user\AppData\Roaming\discord\0.0.301\modules\discord_dispatch\discord_dispatch.node
2018-05-01 19:22 - 2018-05-01 19:22 - 001249112 _____ () \\?\C:\Users\user\AppData\Roaming\discord\0.0.301\modules\discord_vigilante\discord_vigilante.node
2018-10-11 18:52 - 2018-10-09 23:17 - 000878880 _____ () D:\steam\SDL2.dll
2018-10-13 13:27 - 2018-10-12 20:59 - 002647840 _____ () D:\steam\video.dll
2018-09-01 13:02 - 2016-08-31 20:02 - 004969248 _____ () D:\steam\v8.dll
2018-09-01 13:02 - 2017-12-19 20:43 - 000695584 _____ () D:\steam\libavformat-57.dll
2018-09-01 13:02 - 2017-12-19 20:43 - 000351520 _____ () D:\steam\libavresample-3.dll
2018-09-01 13:02 - 2017-12-19 20:43 - 000847136 _____ () D:\steam\libavutil-55.dll
2018-09-01 13:02 - 2017-12-19 20:43 - 005137696 _____ () D:\steam\libavcodec-57.dll
2018-09-01 13:02 - 2017-12-19 20:43 - 000783648 _____ () D:\steam\libswscale-4.dll
2018-09-01 13:02 - 2016-08-31 20:02 - 001563936 _____ () D:\steam\icui18n.dll
2018-09-01 13:02 - 2016-08-31 20:02 - 001195296 _____ () D:\steam\icuuc.dll
2018-10-13 13:27 - 2018-10-12 20:59 - 001023776 _____ () D:\steam\bin\chromehtml.DLL
2018-09-01 13:02 - 2016-07-04 17:17 - 000266560 _____ () D:\steam\openvr_api.dll
2017-09-10 15:51 - 2017-09-10 15:51 - 000798208 _____ () C:\Users\user\AppData\Local\MEGAsync\libsodium.dll
2018-10-12 20:00 - 2018-10-12 20:01 - 085383400 _____ () C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.91.183.0_x86__zpdnekdrzrea0\libcef.dll
2018-10-12 20:00 - 2018-10-12 20:01 - 004078312 _____ () C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.91.183.0_x86__zpdnekdrzrea0\libglesv2.dll
2018-10-12 20:00 - 2018-10-12 20:01 - 000097512 _____ () C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.91.183.0_x86__zpdnekdrzrea0\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Public\AppData:CSM [466]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [478]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-08-07 12:17 - 2018-10-12 20:23 - 000000850 _____ C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2740511448-4270186098-299372889-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\user\AppData\Roaming\Mozilla\Firefox\Desktop Background.bmp
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{5350587D-DD97-416D-A060-1F0BB36496FE}] => (Allow) D:\SteamLibrary\steamapps\common\The Walking Dead\WalkingDead101.exe
FirewallRules: [{7AB2545B-FD74-4893-AF58-DC61427ACBA4}] => (Allow) D:\SteamLibrary\steamapps\common\The Walking Dead\WalkingDead101.exe
FirewallRules: [UDP Query User{8336D95B-B389-41B4-8AE2-7DD448FC47BE}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe
FirewallRules: [TCP Query User{2DCE1552-1031-467B-A408-7AA8E464638E}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe
FirewallRules: [UDP Query User{96949437-BF00-4291-8A92-F2742929D806}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe
FirewallRules: [TCP Query User{D6B36C4B-54BC-41DB-AEC4-11078EA124A8}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe
FirewallRules: [{00195838-28CF-4746-8908-240F1BFE4484}] => (Allow) D:\SteamLibrary\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{4BBC0E10-354F-4C25-B81F-135483A16DC6}] => (Allow) D:\SteamLibrary\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [UDP Query User{E8EF5966-E69D-453B-8151-17269B112D50}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe
FirewallRules: [TCP Query User{DC333EBC-0522-4643-8082-B3C6F2A2C245}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe
FirewallRules: [UDP Query User{1499E21F-BD15-4AEB-A886-719DD4F691B6}D:\steamlibrary\steamapps\common\pubg_closed_experimental\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steamlibrary\steamapps\common\pubg_closed_experimental\tslgame\binaries\win64\tslgame.exe
FirewallRules: [TCP Query User{D26EDA19-A263-4955-9C54-04EBC0C30C2E}D:\steamlibrary\steamapps\common\pubg_closed_experimental\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steamlibrary\steamapps\common\pubg_closed_experimental\tslgame\binaries\win64\tslgame.exe
FirewallRules: [UDP Query User{CB677B26-FACD-4A8F-95D7-B59D0F2824DD}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe
FirewallRules: [TCP Query User{AE725A90-CFA8-4A20-908D-7050F602D7F6}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe
FirewallRules: [{635190E3-39DE-4CBF-8471-D645945FF491}] => (Block) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.134\deploy\leagueclient.exe
FirewallRules: [{92BE0032-30AE-4D85-B66B-B617D5470ECE}] => (Block) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.134\deploy\leagueclient.exe
FirewallRules: [UDP Query User{31184F00-461C-4D10-BF36-06DE0407F4D0}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.134\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.134\deploy\leagueclient.exe
FirewallRules: [TCP Query User{8A575A7F-4AC0-4129-8F20-61F4650B0DC0}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.134\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.134\deploy\leagueclient.exe
FirewallRules: [{98FCB218-A897-4454-B51F-896DECA9D5A0}] => (Allow) D:\SteamLibrary\steamapps\common\Warhammer Vermintide 2\launcher\Launcher.exe
FirewallRules: [{42E36DDC-4A4C-4618-91C8-ECF7255096E1}] => (Allow) D:\SteamLibrary\steamapps\common\Warhammer Vermintide 2\launcher\Launcher.exe
FirewallRules: [{9E6D499D-5E77-4FD4-9B3C-9BC3191AB1E5}] => (Block) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe
FirewallRules: [{A71ED90F-3CD3-447A-9888-3EDB46B2601A}] => (Block) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe
FirewallRules: [UDP Query User{DDB67459-16D9-4FA9-8023-3F5939D010D4}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe
FirewallRules: [TCP Query User{F3862C66-341C-4AF1-BBAB-9A19120D289D}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe
FirewallRules: [UDP Query User{53F61414-3884-414D-BBE9-EC96C6C5490D}C:\users\user\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\user\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{9D71A7CC-8583-41C3-8DE0-5D22104C8AE9}C:\users\user\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\user\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{CF9D54E4-9F13-46A9-A41D-C1DFCBF261A1}D:\battle.net\overwatch\overwatch.exe] => (Allow) D:\battle.net\overwatch\overwatch.exe
FirewallRules: [TCP Query User{4263B800-DA0C-4CBB-B2C2-2EF718EB7A34}D:\battle.net\overwatch\overwatch.exe] => (Allow) D:\battle.net\overwatch\overwatch.exe
FirewallRules: [{C39410E9-4A8D-4368-A38A-5E2321BA179B}] => (Allow) D:\SteamLibrary\steamapps\common\Realm of the Mad God\Realm of the Mad God.exe
FirewallRules: [{429917F7-C6BB-4AE2-83B2-F605E6E22C18}] => (Allow) D:\SteamLibrary\steamapps\common\Realm of the Mad God\Realm of the Mad God.exe
FirewallRules: [{187CE092-379E-4E48-A448-5AD8C5885219}] => (Allow) D:\SteamLibrary\steamapps\common\Battalion 1944\Launcher\BattalionLauncher.exe
FirewallRules: [{05BCD47B-F292-4A2C-8002-08915F7383D3}] => (Allow) D:\SteamLibrary\steamapps\common\Battalion 1944\Launcher\BattalionLauncher.exe
FirewallRules: [{C6B0B4E9-6D0A-4635-9653-50827F9E2C0B}] => (Block) D:\steamlibrary\steamapps\common\black desert online\bin64\blackdesert64.exe
FirewallRules: [{6DB5C8B4-4B39-49BB-8D59-785A4ABA71AB}] => (Block) D:\steamlibrary\steamapps\common\black desert online\bin64\blackdesert64.exe
FirewallRules: [UDP Query User{82625B7C-06AC-42AE-BDF5-EF1975C6AFDE}D:\steamlibrary\steamapps\common\black desert online\bin64\blackdesert64.exe] => (Allow) D:\steamlibrary\steamapps\common\black desert online\bin64\blackdesert64.exe
FirewallRules: [TCP Query User{5C85D52A-A276-4985-A97A-A3CBFA503F9F}D:\steamlibrary\steamapps\common\black desert online\bin64\blackdesert64.exe] => (Allow) D:\steamlibrary\steamapps\common\black desert online\bin64\blackdesert64.exe
FirewallRules: [{677A6AC1-5E8C-4F80-8DD3-C7EC6910F75A}] => (Allow) C:\Users\user\Downloads\BlackDesert_Downloader.exe
FirewallRules: [{E87766B3-B518-4D54-BFD1-A6D309AE06FE}] => (Allow) C:\Users\user\Downloads\BlackDesert_Launcher.exe
FirewallRules: [{0819624B-0EF7-4EAF-BB19-DB327C28DAFC}] => (Allow) C:\Users\user\Downloads\bin64\BlackDesert64.exe
FirewallRules: [{DA312525-7236-4AA4-9D85-84CFEE0755DB}] => (Allow) C:\Users\user\Downloads\bin\BlackDesert32.exe
FirewallRules: [{C9AE024B-745C-4DF5-956F-D70C0D7C110A}] => (Block) D:\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [{0C833ACC-0AE6-4E43-AF66-FE4B24417C32}] => (Block) D:\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [UDP Query User{5C748CDD-6DF5-40BF-A623-7C12B66DE8C4}D:\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [TCP Query User{A53125A4-A946-4621-89D9-FAE054168252}D:\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [UDP Query User{182D83F1-00EC-46FC-9D5F-07FC26A09AB5}D:\steamlibrary\steamapps\common\battalion 1944\battalion\binaries\win64\battalion.exe] => (Allow) D:\steamlibrary\steamapps\common\battalion 1944\battalion\binaries\win64\battalion.exe
FirewallRules: [TCP Query User{D6A5E0B3-005B-46E0-A997-EA421E483D56}D:\steamlibrary\steamapps\common\battalion 1944\battalion\binaries\win64\battalion.exe] => (Allow) D:\steamlibrary\steamapps\common\battalion 1944\battalion\binaries\win64\battalion.exe
FirewallRules: [UDP Query User{AACA8C6F-6391-4629-8C38-FFFF9E6E8774}D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [TCP Query User{D23AEFDA-43C3-496F-ACA9-22BFBA83D3A8}D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [{E4AE2EF7-7550-4797-BF97-65D224F1D0BF}] => (Block) D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [{D6B5D8F8-85B4-4714-8C20-F232860ECE70}] => (Block) D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [UDP Query User{D7718E46-7320-46EB-BB92-31A2D1CAF57A}D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [TCP Query User{E46095BB-60DD-4ACD-ADE3-07410C5A14B3}D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [UDP Query User{8D0983B0-B471-45FD-B83C-366E6CB103D4}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{37740E0A-BA79-48BE-86B9-33443C8279EF}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [{64D62B7F-1EA2-4499-B671-9DBB2EFCBB9F}] => (Allow) D:\SteamLibrary\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{71B51D33-893C-4C3E-86DE-AB775E0E2ABE}] => (Allow) D:\SteamLibrary\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{80F480E7-307F-4080-930F-11A531A992DB}] => (Allow) D:\Guild Wars 2\Gw2-64.exe
FirewallRules: [{BAA08103-7B52-484D-A9A5-D881F4B647C3}] => (Allow) D:\Guild Wars 2\Gw2-64.exe
FirewallRules: [{577AD7F1-DDD3-4E99-B3E6-CE751298D7AC}] => (Allow) D:\Guild Wars 2\Gw2-64.exe
FirewallRules: [{F857B541-0FB3-4061-9D7A-6242DAD2B1A0}] => (Allow) D:\Guild Wars 2\Gw2-64.exe
FirewallRules: [UDP Query User{2841CF22-289E-4746-A1E9-7D7FE36CA666}C:\program files\java\jre1.8.0_144\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_144\bin\javaw.exe
FirewallRules: [TCP Query User{B0E40D83-3629-44D4-9F33-DAEB1E8D6D93}C:\program files\java\jre1.8.0_144\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_144\bin\javaw.exe
FirewallRules: [{54D2A3A0-FF4B-4515-B88B-28D62D7341DC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{8E2918E3-3022-47F4-8C5B-75B2602DFEC6}] => (Block) C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe
FirewallRules: [{27620230-111B-4733-9A6D-9E687A69C782}] => (Block) C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe
FirewallRules: [UDP Query User{8E2D4C67-6183-47CC-A97E-D02054D1249D}C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe
FirewallRules: [TCP Query User{FC19D68E-1C75-4D1C-A1C2-93F9A19940E8}C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe
FirewallRules: [{7ED8EB0D-1A8C-436B-8165-B222ECC22626}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{C551779D-20DD-4B50-A796-D3173C8ED43A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{E6405A5C-1CCD-42FC-AE1B-5F9480503A92}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{19CB5173-9932-48EC-846E-4AB7C46232AE}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [TCP Query User{C14A11B1-4933-4810-BBFD-0EA4B716C4CF}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe
FirewallRules: [UDP Query User{48F992E4-B4F4-4F34-944C-AF723452EC62}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe
FirewallRules: [TCP Query User{6D1D0EA5-52DE-4296-9345-0565549D2EFC}C:\program files (x86)\steam\steamapps\common\war thunder\win32\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win32\aces.exe
FirewallRules: [UDP Query User{8837150F-C3C0-4270-8F02-A1A9FC989862}C:\program files (x86)\steam\steamapps\common\war thunder\win32\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win32\aces.exe
FirewallRules: [TCP Query User{D8EAB94C-5128-489C-8D2D-E7D99E9771F6}C:\program files (x86)\deluge\deluge.exe] => (Allow) C:\program files (x86)\deluge\deluge.exe
FirewallRules: [UDP Query User{14163E21-35EE-415B-84C1-190A1583897A}C:\program files (x86)\deluge\deluge.exe] => (Allow) C:\program files (x86)\deluge\deluge.exe
FirewallRules: [{187147F2-1F72-44E4-902B-1B13D1B05BD6}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [{F3A05162-360D-40D9-BD25-6F9D05B5A92C}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [TCP Query User{07F2DADC-659C-4DFD-BFB6-9C30845C6287}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe
FirewallRules: [UDP Query User{80918BD0-DA44-42E3-9078-4A820A4FC97F}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe
FirewallRules: [TCP Query User{3FDAC11A-26A1-4A3C-879D-D80B06775E82}C:\users\user\downloads\anydesk.exe] => (Allow) C:\users\user\downloads\anydesk.exe
FirewallRules: [UDP Query User{E447176A-387D-4F67-8FF5-A85F9EAB4E58}C:\users\user\downloads\anydesk.exe] => (Allow) C:\users\user\downloads\anydesk.exe
FirewallRules: [{9E58C50C-E376-4182-A750-22B74330C02F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{1BC7455E-A8C1-4374-9510-F61832E52A4A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{9DE3673C-18FA-4712-9F68-B39A7818340B}C:\program files (x86)\steam\steamapps\common\arma 3\arma3_x64.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\arma 3\arma3_x64.exe
FirewallRules: [UDP Query User{A687A662-6284-4A27-8318-DB7AEB5D03C2}C:\program files (x86)\steam\steamapps\common\arma 3\arma3_x64.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\arma 3\arma3_x64.exe
FirewallRules: [{D3D4E257-35A6-466D-BE76-614B26463718}] => (Block) C:\program files (x86)\steam\steamapps\common\arma 3\arma3_x64.exe
FirewallRules: [{0F126A52-C93A-4389-8191-09F3F82D8FE0}] => (Block) C:\program files (x86)\steam\steamapps\common\arma 3\arma3_x64.exe
FirewallRules: [{DB52DEF1-C357-48BB-A09E-4C003CFB5751}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{AAD8A339-2B8D-414A-8893-D20D19EE4142}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{A2290A03-41EA-41E8-BE79-107E9E4878DA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{BC5E5AD7-65C2-4764-8D8B-36C23FD10DC2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [TCP Query User{05E8F166-2B19-4BC3-A2F1-2BFBE1AAF201}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{2EBBED10-92BC-41D6-A22C-CCAEE4CE8A23}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{27A38C55-C9D2-4823-840D-46E1B6DD1472}] => (Block) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{8EC770D2-25F9-41A6-9A47-DEF33D45EC8D}] => (Block) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{52DDABFD-01B7-4677-870B-5ED7D694B634}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe
FirewallRules: [{34196BA3-0D69-4807-A59B-1775C06E55EF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe
FirewallRules: [TCP Query User{0C6A7351-1151-433D-80E2-6576D88ED5AD}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [UDP Query User{D67A044E-43C6-4EF5-9D01-122461069B2C}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [TCP Query User{5AF2D7A3-C133-4BEE-A435-B81CDAA763C7}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [UDP Query User{95BE9664-BA01-4BF0-9A6C-8B962C9A0531}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [{76F95EE5-83AE-4DCB-B0C7-8E5E7E1ED529}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty WWII Beta\s2_mp64_ship.exe
FirewallRules: [{F9A1A8BE-B90C-48FF-971C-63B371283844}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty WWII Beta\s2_mp64_ship.exe
FirewallRules: [TCP Query User{65A67B31-A9A0-4D15-9E82-AAC8D813F58F}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [UDP Query User{D5284E33-E45E-4164-AA94-11857E90F6AF}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [TCP Query User{BA5A59B8-52D1-484B-8450-C9E43EEBD4B1}C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe
FirewallRules: [UDP Query User{F908C7A6-AEBD-47BD-B42F-65881EAEB36A}C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe
FirewallRules: [{F91887A1-2A4C-47B5-9233-34810504B3F9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\South Park - The Stick of Truth\South Park - The Stick of Truth.exe
FirewallRules: [{4D64FED9-A5E1-4D74-9183-483A981C86A5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\South Park - The Stick of Truth\South Park - The Stick of Truth.exe
FirewallRules: [{F0E117F9-7D55-4FD1-9B64-6EE06AEFABB0}] => (Allow) D:\SteamLibrary\steamapps\common\The Walking Dead Season Two\TheWalkingDead2.exe
FirewallRules: [{C75CE04F-0C95-4FE9-BAA3-194B41B5F71E}] => (Allow) D:\SteamLibrary\steamapps\common\The Walking Dead Season Two\TheWalkingDead2.exe
FirewallRules: [{047C6242-9DD6-4793-9761-DF1E202DB923}] => (Allow) D:\SteamLibrary\steamapps\common\The Walking Dead - A New Frontier (Season 3)\WalkingDead3.exe
FirewallRules: [{B9719BBA-ED6C-468C-9FF5-6C0E6F9203E4}] => (Allow) D:\SteamLibrary\steamapps\common\The Walking Dead - A New Frontier (Season 3)\WalkingDead3.exe
FirewallRules: [{25209C66-F4E4-4D0E-BDB2-8E45E6374932}] => (Allow) D:\SteamLibrary\steamapps\common\7 Days To Die\7dLauncher.exe
FirewallRules: [{CE36CB26-4A55-4820-9BD2-46C49D0BA630}] => (Allow) D:\SteamLibrary\steamapps\common\7 Days To Die\7dLauncher.exe
FirewallRules: [TCP Query User{5079A21F-4F18-4420-80E9-193519B00F01}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.150\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.150\deploy\leagueclient.exe
FirewallRules: [UDP Query User{8970F62A-E70A-4755-BB56-B61C75313635}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.150\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.150\deploy\leagueclient.exe
FirewallRules: [{46CB7F67-A26C-4EF0-8A7C-2292238AB112}] => (Allow) D:\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [{526EE1E1-3A76-4C81-B2E0-ED0AB9BFE92E}] => (Allow) D:\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [TCP Query User{5C59BBF3-C167-44E6-B5B7-05457613D87A}D:\steamlibrary\steamapps\common\dayz\dayz_x64.exe] => (Allow) D:\steamlibrary\steamapps\common\dayz\dayz_x64.exe
FirewallRules: [UDP Query User{8F215020-0CCD-496D-A0F8-7066C83CAAE7}D:\steamlibrary\steamapps\common\dayz\dayz_x64.exe] => (Allow) D:\steamlibrary\steamapps\common\dayz\dayz_x64.exe
FirewallRules: [TCP Query User{77CF440A-3493-4615-954F-5D7DC508296F}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe
FirewallRules: [UDP Query User{40635DB4-BDA5-4A3E-8DF0-6BB95CAA79BA}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe
FirewallRules: [{2C9E02E9-2900-4CF5-B264-75AD70A555E7}] => (Block) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe
FirewallRules: [{E515BA14-2611-4CFD-9C3C-21E8A1165D8E}] => (Block) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe
FirewallRules: [{4E11B04B-97CD-4E8F-8B4A-32F455002E3A}] => (Allow) D:\SteamLibrary\steamapps\common\Rust\Rust.exe
FirewallRules: [{190418A7-7226-484F-AB0A-C5E6D293F5A6}] => (Allow) D:\SteamLibrary\steamapps\common\Rust\Rust.exe
FirewallRules: [TCP Query User{605D39E2-AC05-4321-A761-A3AAE4AC24AA}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.153\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.153\deploy\leagueclient.exe
FirewallRules: [UDP Query User{D32EFC3B-9EE2-4E26-9C3D-D67918FE38C1}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.153\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.153\deploy\leagueclient.exe
FirewallRules: [TCP Query User{3B08B4E9-AAD7-4FF8-8006-481CCABF043A}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe
FirewallRules: [UDP Query User{ED9DEF4F-6A35-4C4B-92E3-76A2810152EA}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe
FirewallRules: [{6400E46D-DA64-436F-80ED-0607C2DF09A3}] => (Allow) D:\SteamLibrary\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{31947C0B-C6CA-4072-A256-49740B5C1A50}] => (Allow) D:\SteamLibrary\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{25526A4A-F062-4640-A02A-00129C7AC708}] => (Allow) D:\SteamLibrary\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{7CB2FD4E-4E7E-463E-9A71-1B03B90A8629}] => (Allow) D:\SteamLibrary\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{22B9978E-DA8B-4AB9-A890-E100FFDECBDE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{772579F9-4783-4464-9987-8103E526B51D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [TCP Query User{53CBCD35-1B8C-4720-83E6-88605500AAD7}D:\steamlibrary\steamapps\common\islands of nyne battle royale\ionbranch\binaries\win64\ionbranch.exe] => (Allow) D:\steamlibrary\steamapps\common\islands of nyne battle royale\ionbranch\binaries\win64\ionbranch.exe
FirewallRules: [UDP Query User{7688F82C-D612-4649-9328-56A7BFEC5472}D:\steamlibrary\steamapps\common\islands of nyne battle royale\ionbranch\binaries\win64\ionbranch.exe] => (Allow) D:\steamlibrary\steamapps\common\islands of nyne battle royale\ionbranch\binaries\win64\ionbranch.exe
FirewallRules: [TCP Query User{2A96BCA6-D672-44EE-8CA7-FD080ACC237F}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe
FirewallRules: [UDP Query User{3A40068B-01B0-4A61-A3A8-28D61EBEBE97}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe
FirewallRules: [{53724C66-28F3-48E3-9019-F9E270C42EFF}] => (Allow) D:\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe
FirewallRules: [{D200EE9E-7868-46A1-BB99-5D0DF5BE358D}] => (Allow) D:\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe
FirewallRules: [{4D1A9418-D55B-41C7-B840-6CC0B2B683EE}] => (Allow) D:\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe
FirewallRules: [{84608AE9-3BAE-4C29-95BB-FFC28982EB61}] => (Allow) D:\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe
FirewallRules: [TCP Query User{D1CE80A2-84AD-4B1F-9771-BE46A471D518}D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [UDP Query User{EF069CDF-248E-483C-A451-BB5711FD9631}D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [{C9A35F5E-5630-4DFD-86A8-79C2F3376709}] => (Allow) D:\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe
FirewallRules: [{FD7F0BA3-FBF2-42D2-939E-1396E937DF5D}] => (Allow) D:\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe
FirewallRules: [{837A2B55-28EE-49FA-9D62-EDC49B8C1D32}] => (Allow) D:\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivlauncher.exe
FirewallRules: [{896889EE-FE7C-43A6-AB02-3BC476BFC72E}] => (Allow) D:\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivlauncher.exe
FirewallRules: [TCP Query User{D32E0563-BB29-45B2-909C-1B25A9856F9F}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.155\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.155\deploy\leagueclient.exe
FirewallRules: [UDP Query User{ACCD49A4-DC14-4C27-9FE0-64C70697A12A}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.155\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.155\deploy\leagueclient.exe
FirewallRules: [TCP Query User{6C3EEF1C-0689-48FB-8DC4-00F3F266A741}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.156\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.156\deploy\leagueclient.exe
FirewallRules: [UDP Query User{79A3CAB4-EAD6-4FF7-9CF6-56F912BFC168}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.156\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.156\deploy\leagueclient.exe
FirewallRules: [{C9B0CDC7-A482-462B-B28A-6F8CAF276D3D}] => (Allow) D:\SteamLibrary\steamapps\common\War Thunder\launcher.exe
FirewallRules: [{4C0D78F6-F35C-443C-BD85-C889EFEED76D}] => (Allow) D:\SteamLibrary\steamapps\common\War Thunder\launcher.exe
FirewallRules: [TCP Query User{E0D2ED9F-DC02-4B76-85F3-4FA52AFA9050}D:\steamlibrary\steamapps\common\war thunder\win64\aces.exe] => (Allow) D:\steamlibrary\steamapps\common\war thunder\win64\aces.exe
FirewallRules: [UDP Query User{63A5C4D5-6E39-4831-8173-467528C3A43F}D:\steamlibrary\steamapps\common\war thunder\win64\aces.exe] => (Allow) D:\steamlibrary\steamapps\common\war thunder\win64\aces.exe
FirewallRules: [{E7B9279B-A994-411B-B941-62DEB02740A1}] => (Allow) D:\SteamLibrary\steamapps\common\Islands of Nyne Battle Royale\IONBranch\Binaries\Win64\IONBranch_BE.exe
FirewallRules: [{53394356-F6A4-431E-BAC7-BE1A7A9A19FD}] => (Allow) D:\SteamLibrary\steamapps\common\Islands of Nyne Battle Royale\IONBranch\Binaries\Win64\IONBranch_BE.exe
FirewallRules: [{10FC52D2-5995-4647-8E7C-04860E0F622B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{94E6A59A-7288-478B-84D8-971E5E97280D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [TCP Query User{BF1793B1-D7EE-4B88-A398-47A7CACABF3C}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.157\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.157\deploy\leagueclient.exe
FirewallRules: [UDP Query User{26D93927-B105-48D4-8473-FF97CB133DC3}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.157\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.157\deploy\leagueclient.exe
FirewallRules: [{3AE944F1-A2FB-4D4F-9C10-907474DF2593}] => (Allow) D:\SteamLibrary\steamapps\common\H1Z1\H1Z1_BE.exe
FirewallRules: [{2E1ECF58-0C8E-4513-AD49-38816C04837E}] => (Allow) D:\SteamLibrary\steamapps\common\H1Z1\H1Z1_BE.exe
FirewallRules: [TCP Query User{654F003D-1745-4A50-89FA-885EEF7CE6BC}D:\steamlibrary\steamapps\common\islands of nyne battle royale\ionbranch\binaries\win64\ionbranch.exe] => (Allow) D:\steamlibrary\steamapps\common\islands of nyne battle royale\ionbranch\binaries\win64\ionbranch.exe
FirewallRules: [UDP Query User{3DAA3CE4-C8E1-4D79-BED5-F8D62CD56FF8}D:\steamlibrary\steamapps\common\islands of nyne battle royale\ionbranch\binaries\win64\ionbranch.exe] => (Allow) D:\steamlibrary\steamapps\common\islands of nyne battle royale\ionbranch\binaries\win64\ionbranch.exe
FirewallRules: [TCP Query User{77C50551-5F96-441C-AFBE-3323C5789DFA}D:\ubisoft game launcher\games\tom clancy's rainbow six siege\rainbowsix.exe] => (Allow) D:\ubisoft game launcher\games\tom clancy's rainbow six siege\rainbowsix.exe
FirewallRules: [UDP Query User{35AFD194-E8C4-4CC7-9471-28BC0051DD21}D:\ubisoft game launcher\games\tom clancy's rainbow six siege\rainbowsix.exe] => (Allow) D:\ubisoft game launcher\games\tom clancy's rainbow six siege\rainbowsix.exe
FirewallRules: [TCP Query User{5329CA8E-1D19-428B-A4F7-02A44436E111}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.157\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.157\deploy\leagueclient.exe
FirewallRules: [UDP Query User{DD00F38A-262C-4B37-88C2-10A061CC71CE}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.157\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.157\deploy\leagueclient.exe
FirewallRules: [TCP Query User{EF373535-6E3C-4671-9738-D7781F236FFC}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe
FirewallRules: [UDP Query User{25327EBA-4880-49AE-BCD5-6FE2232200AA}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe
FirewallRules: [{83C5F3AB-A2D2-4E27-BAF5-9A4681CD90E9}] => (Allow) D:\SteamLibrary\steamapps\common\DIRDE\DeadIslandRiptideGame.exe
FirewallRules: [{F2524E11-C262-4E52-936E-08F1854FC029}] => (Allow) D:\SteamLibrary\steamapps\common\DIRDE\DeadIslandRiptideGame.exe
FirewallRules: [{517220A6-8B17-44BE-8605-17B1E6E1E1ED}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DIRDE\DeadIslandRiptideGame.exe
FirewallRules: [{D121266B-570E-48C5-89A0-A8087052BD4F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DIRDE\DeadIslandRiptideGame.exe
FirewallRules: [TCP Query User{1ADE7227-1039-4ADE-825C-FBFF9EF6587F}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe
FirewallRules: [UDP Query User{B0D89231-D8A4-40A0-978E-B4B2EC794170}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe
FirewallRules: [{450E3177-1BAD-4456-AC5A-105921C8D21E}] => (Allow) D:\SteamLibrary\steamapps\common\Hunt Showdown\hunt.exe
FirewallRules: [{9561A3C7-22F7-41D5-AF5D-ED579FE16AE1}] => (Allow) D:\SteamLibrary\steamapps\common\Hunt Showdown\hunt.exe
FirewallRules: [TCP Query User{3BA86272-3C14-44D4-8B49-094A3A4964F0}D:\steamlibrary\steamapps\common\hunt showdown\bin\win_x64\huntgame.exe] => (Allow) D:\steamlibrary\steamapps\common\hunt showdown\bin\win_x64\huntgame.exe
FirewallRules: [UDP Query User{B030DC65-0D2E-4201-BAC7-44871023E1FD}D:\steamlibrary\steamapps\common\hunt showdown\bin\win_x64\huntgame.exe] => (Allow) D:\steamlibrary\steamapps\common\hunt showdown\bin\win_x64\huntgame.exe
FirewallRules: [{C3A4B6E8-1B9E-4C7A-B4A1-089A3D6D7E63}] => (Allow) D:\SteamLibrary\steamapps\common\Unturned\Unturned_BE.exe
FirewallRules: [{25354A35-9F93-4BE7-89C4-54FB07E0D2D5}] => (Allow) D:\SteamLibrary\steamapps\common\Unturned\Unturned_BE.exe
FirewallRules: [{1B8476D4-9AF2-4DAB-A74C-4E6B8281782C}] => (Allow) D:\SteamLibrary\steamapps\common\Unturned\Unturned.exe
FirewallRules: [{44EA2937-F2EE-42DB-875A-FA4F184F95D5}] => (Allow) D:\SteamLibrary\steamapps\common\Unturned\Unturned.exe
FirewallRules: [{B8CF6957-0309-461C-80D8-2A35E1A3CEC1}] => (Allow) D:\SteamLibrary\steamapps\common\EasyAntiCheat\EasyAntiCheat.exe
FirewallRules: [{085EEB7C-E2A7-40A8-BC33-8DE821D578DE}] => (Allow) D:\SteamLibrary\steamapps\common\EasyAntiCheat\EasyAntiCheat.exe
FirewallRules: [{A0B815E0-D0B5-4B4E-A9A2-250F69352C78}] => (Allow) D:\SteamLibrary\steamapps\common\The Walking Dead The Final Season\WalkingDead4.exe
FirewallRules: [{CA842D76-F04C-415B-90C9-38275F81BCA3}] => (Allow) D:\SteamLibrary\steamapps\common\The Walking Dead The Final Season\WalkingDead4.exe
FirewallRules: [{A9498EAF-9CB6-48A5-A253-EA27C9456F75}] => (Allow) D:\SteamLibrary\steamapps\common\Black Desert Online\Black Desert Online Steam Launcher.exe
FirewallRules: [{464F5361-FB9F-456B-8E07-8D5955ED38CB}] => (Allow) D:\SteamLibrary\steamapps\common\Black Desert Online\Black Desert Online Steam Launcher.exe
FirewallRules: [{11D76CC3-B3F4-4402-87E5-BD0695B16C6F}] => (Allow) D:\SteamLibrary\steamapps\common\TERA\TERA-Launcher.exe
FirewallRules: [{10508799-29E3-426B-8EFF-14E3DA88E676}] => (Allow) D:\SteamLibrary\steamapps\common\TERA\TERA-Launcher.exe
FirewallRules: [{7482D213-94F6-4852-AE52-5ECA3C66F75E}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{BAABE69E-1EAA-4756-8E83-7A5E85BACBCE}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [TCP Query User{71DC1B1A-6CF2-4DEC-A33F-0724BB66A762}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe
FirewallRules: [UDP Query User{E52E19B1-6368-4B29-816C-8B0DF02EE000}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe
FirewallRules: [TCP Query User{9EF64E81-942B-43B5-B554-64583BABAA44}D:\battle.net\overwatch\overwatch.exe] => (Allow) D:\battle.net\overwatch\overwatch.exe
FirewallRules: [UDP Query User{2C428DD1-C9EA-45C2-BEFA-E7BCCBF72907}D:\battle.net\overwatch\overwatch.exe] => (Allow) D:\battle.net\overwatch\overwatch.exe
FirewallRules: [TCP Query User{F9161E28-9437-4B6F-8F27-B8DF6B81B9B3}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe
FirewallRules: [UDP Query User{DA8F5B94-10D2-4DC0-8FF9-1B2E24F582F2}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe
FirewallRules: [TCP Query User{2DB97DA7-CB9D-4011-8D28-9AF3385D3A60}C:\program files (x86)\steam\steamapps\common\newz\newzlauncher.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\newz\newzlauncher.exe
FirewallRules: [UDP Query User{F09D6236-76E2-4794-8BE2-A1DF930E7169}C:\program files (x86)\steam\steamapps\common\newz\newzlauncher.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\newz\newzlauncher.exe
FirewallRules: [TCP Query User{5D9B0565-6BCC-45A3-8A99-BC5FE4C1D0CB}C:\program files (x86)\steam\steamapps\common\newz\thenewz.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\newz\thenewz.exe
FirewallRules: [UDP Query User{576060B8-4EE8-4741-A863-23CB1F4BE297}C:\program files (x86)\steam\steamapps\common\newz\thenewz.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\newz\thenewz.exe
FirewallRules: [{02D02F0F-1830-4290-BF3E-9D444D63AD1C}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{322F8ED8-1CA5-4034-9432-EEACE09F10C6}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [TCP Query User{4A570667-A729-4F0A-89CA-CF9E7441C178}D:\steamlibrary\steamapps\common\for honor\forhonor.exe] => (Allow) D:\steamlibrary\steamapps\common\for honor\forhonor.exe
FirewallRules: [UDP Query User{7D20A6EA-65C9-4BDE-BDEC-B40D80AF1A9F}D:\steamlibrary\steamapps\common\for honor\forhonor.exe] => (Allow) D:\steamlibrary\steamapps\common\for honor\forhonor.exe
FirewallRules: [TCP Query User{4D697FC6-BC0B-4838-8A5F-D261A5499F65}D:\steamlibrary\steamapps\common\h1z1\h1z1.exe] => (Allow) D:\steamlibrary\steamapps\common\h1z1\h1z1.exe
FirewallRules: [UDP Query User{9FFD2362-A89D-4144-80A6-061B98EB8F14}D:\steamlibrary\steamapps\common\h1z1\h1z1.exe] => (Allow) D:\steamlibrary\steamapps\common\h1z1\h1z1.exe
FirewallRules: [{A0E5090A-7D73-473B-876D-4F5825D12ABF}] => (Allow) D:\SteamLibrary\steamapps\common\Zenimax Online\zosSteamStarter.exe
FirewallRules: [{3228C0C4-E4FB-43D8-A3AA-1C06C223A625}] => (Allow) D:\SteamLibrary\steamapps\common\Zenimax Online\zosSteamStarter.exe
FirewallRules: [TCP Query User{51BC1534-36B2-47D6-BDD1-B66C5F0B3DF2}C:\users\user\desktop\bigfoot.v2.0\findingbigfootcontent\bigfootp19\binaries\win64\bigfootp19-win64-shipping.exe] => (Allow) C:\users\user\desktop\bigfoot.v2.0\findingbigfootcontent\bigfootp19\binaries\win64\bigfootp19-win64-shipping.exe
FirewallRules: [UDP Query User{F5BCC5C1-51EA-47BA-834C-1EC0A5FD2FCF}C:\users\user\desktop\bigfoot.v2.0\findingbigfootcontent\bigfootp19\binaries\win64\bigfootp19-win64-shipping.exe] => (Allow) C:\users\user\desktop\bigfoot.v2.0\findingbigfootcontent\bigfootp19\binaries\win64\bigfootp19-win64-shipping.exe
FirewallRules: [TCP Query User{395EBB21-99B6-406D-A748-2530000E50A0}C:\users\user\desktop\gang.beasts.v1.0.5\gang beasts.exe] => (Allow) C:\users\user\desktop\gang.beasts.v1.0.5\gang beasts.exe
FirewallRules: [UDP Query User{0D1D3A2A-7B05-44D4-A367-AD2FB86203CC}C:\users\user\desktop\gang.beasts.v1.0.5\gang beasts.exe] => (Allow) C:\users\user\desktop\gang.beasts.v1.0.5\gang beasts.exe
FirewallRules: [TCP Query User{6C310182-7D4E-44AF-A2E7-E26441657BD5}C:\users\user\desktop\project.zomboid.v41.2\jre64\bin\java.exe] => (Allow) C:\users\user\desktop\project.zomboid.v41.2\jre64\bin\java.exe
FirewallRules: [UDP Query User{1D835FDC-E031-443A-A1C3-C6440C2B9636}C:\users\user\desktop\project.zomboid.v41.2\jre64\bin\java.exe] => (Allow) C:\users\user\desktop\project.zomboid.v41.2\jre64\bin\java.exe
FirewallRules: [TCP Query User{CB61AC3B-BBB2-49A4-9780-DF0F2C0DEAB4}C:\users\user\desktop\project.zomboid.v41.2\projectzomboid64.exe] => (Allow) C:\users\user\desktop\project.zomboid.v41.2\projectzomboid64.exe
FirewallRules: [UDP Query User{650A5920-2EA4-48A9-BFA1-F2C51D26536F}C:\users\user\desktop\project.zomboid.v41.2\projectzomboid64.exe] => (Allow) C:\users\user\desktop\project.zomboid.v41.2\projectzomboid64.exe
FirewallRules: [{6AD2AC24-F1F4-4205-A2D6-6C94FF71B027}] => (Allow) C:\Program Files\Echobit\Evolve\EvoSvc.exe
FirewallRules: [{274F9C1C-5332-4B31-89BB-9B2B548A2E94}] => (Allow) C:\Program Files\Echobit\Evolve\EvolveClient.exe
FirewallRules: [TCP Query User{AEAAFDB6-27B1-4DC9-A391-A277CDEB0A29}C:\users\user\desktop\golf.with.your.friends.v1.106.0\golf with your friends\golf with your friends.exe] => (Allow) C:\users\user\desktop\golf.with.your.friends.v1.106.0\golf with your friends\golf with your friends.exe
FirewallRules: [UDP Query User{DE62EF88-8610-451C-8B3C-BF383E15CF2C}C:\users\user\desktop\golf.with.your.friends.v1.106.0\golf with your friends\golf with your friends.exe] => (Allow) C:\users\user\desktop\golf.with.your.friends.v1.106.0\golf with your friends\golf with your friends.exe
FirewallRules: [TCP Query User{08035494-2791-47A3-BD16-D1104D1E5612}D:\steamlibrary\steamapps\common\arma 3\arma3_x64.exe] => (Allow) D:\steamlibrary\steamapps\common\arma 3\arma3_x64.exe
FirewallRules: [UDP Query User{FB431472-8EE0-41FE-BC7E-B8106FCD5924}D:\steamlibrary\steamapps\common\arma 3\arma3_x64.exe] => (Allow) D:\steamlibrary\steamapps\common\arma 3\arma3_x64.exe
FirewallRules: [{2D0B02CF-7F6A-41AA-85E9-769BC4D1DF32}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [{8941E6F0-59B7-4171-AD83-D35A3D1895C9}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [{5EA26DB8-46A7-4134-8BF9-25F9C7C4677B}] => (Allow) D:\SteamLibrary\steamapps\common\SCUM\SCUM\Binaries\Win64\SCUM.exe
FirewallRules: [{47F49C7D-6BE6-4BA5-B082-C058F99EE500}] => (Allow) D:\SteamLibrary\steamapps\common\SCUM\SCUM\Binaries\Win64\SCUM.exe
FirewallRules: [{42BE2014-C67A-44DE-80B4-4A424F6AD04F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{7CF1652E-1167-4056-9111-308E5EE5571C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{DB7D8BA0-68F5-431B-8072-57F879FE29C3}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{AFB1A95E-CB5A-4627-A472-0868A5E387E2}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{A5C50B31-0391-4098-A8D6-8D9D2EF87D06}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{8ADA1F34-0D68-41BF-B3BD-770195E5AC44}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [TCP Query User{CEF85786-C21D-4D1C-AF21-179EEB9CC300}D:\battle.net\battle.net.exe] => (Allow) D:\battle.net\battle.net.exe
FirewallRules: [UDP Query User{351B9B6E-5605-48A2-A2CD-5C334FE4DD41}D:\battle.net\battle.net.exe] => (Allow) D:\battle.net\battle.net.exe
FirewallRules: [{4C2BB99C-F865-4C42-BDD9-06D952D8A0A4}] => (Allow) D:\steam\Steam.exe
FirewallRules: [{79A0E201-90B0-4BF1-B386-C25EECBC6C6F}] => (Allow) D:\steam\Steam.exe
FirewallRules: [{5D83F1B7-E10C-4F26-9C1D-809CC15495D4}] => (Allow) D:\steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{85BC22BF-FB89-43CE-8CC1-79EFFBC22260}] => (Allow) D:\steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{622ED86D-204C-419E-A6FD-4992FAFEEC7D}] => (Allow) D:\steam\steamapps\common\SCUM\SCUM\Binaries\Win64\SCUM.exe
FirewallRules: [{A231406E-E807-4E3B-A7E9-9C4A3528ABC6}] => (Allow) D:\steam\steamapps\common\SCUM\SCUM\Binaries\Win64\SCUM.exe
FirewallRules: [{E3123543-AB5A-4D48-8F20-0A0403599D55}] => (Allow) D:\steam\steamapps\common\Warhammer Vermintide 2\launcher\Launcher.exe
FirewallRules: [{298993C3-A620-4384-94B4-DD3B7E9C9FB7}] => (Allow) D:\steam\steamapps\common\Warhammer Vermintide 2\launcher\Launcher.exe
FirewallRules: [{4B29AF7F-EEF6-4020-8812-48399FF01FD9}] => (Allow) D:\steam\steamapps\common\The Walking Dead The Final Season\WalkingDead4.exe
FirewallRules: [{02E8A65E-9999-4D4C-89EC-FECB11074B21}] => (Allow) D:\steam\steamapps\common\The Walking Dead The Final Season\WalkingDead4.exe
FirewallRules: [{4452B257-7937-4A9C-81B7-648F26D7357B}] => (Allow) D:\steam\steamapps\common\7 Days To Die\7dLauncher.exe
FirewallRules: [{DEEEDD27-91A2-406D-907B-D66C5AD16C95}] => (Allow) D:\steam\steamapps\common\7 Days To Die\7dLauncher.exe
FirewallRules: [{3FFFFB05-5AC1-4BC4-868C-7230BD783BF7}] => (Allow) D:\steam\steamapps\common\Zenimax Online\zosSteamStarter.exe
FirewallRules: [{4606F865-58C9-4AED-9EF6-90FAB31FAC94}] => (Allow) D:\steam\steamapps\common\Zenimax Online\zosSteamStarter.exe
FirewallRules: [TCP Query User{26457801-B6DA-40CA-B0E2-3D1861814FB5}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe
FirewallRules: [UDP Query User{F9468EBF-D97B-47DD-B2A7-624CED6DBA7F}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe
FirewallRules: [TCP Query User{4315EB1E-32EA-4AD5-B780-8B7E2C7412B1}D:\program files (x86)\pycharm community edition 2018.2.2\bin\pycharm64.exe] => (Allow) D:\program files (x86)\pycharm community edition 2018.2.2\bin\pycharm64.exe
FirewallRules: [UDP Query User{947810A1-32B0-47D2-8753-BC950B4D3C22}D:\program files (x86)\pycharm community edition 2018.2.2\bin\pycharm64.exe] => (Allow) D:\program files (x86)\pycharm community edition 2018.2.2\bin\pycharm64.exe
FirewallRules: [{62AB8608-D654-4164-A072-BEC5A48F3F41}] => (Allow) D:\steam\steamapps\common\SCUM\SCUM_Launcher.exe
FirewallRules: [{F38CECF1-3E10-4EB6-8DCF-C6C25B64F59E}] => (Allow) D:\steam\steamapps\common\SCUM\SCUM_Launcher.exe
FirewallRules: [{9F6DFCC8-7AAF-4432-861B-30D61D0E30B8}] => (Allow) D:\steam\steamapps\common\Unturned\Unturned_BE.exe
FirewallRules: [{6C2A09E5-68B8-4EA3-8A63-35647E3B23E9}] => (Allow) D:\steam\steamapps\common\Unturned\Unturned_BE.exe
FirewallRules: [{05E8B2F3-C311-4278-87D4-0EC4267AAFFD}] => (Allow) D:\steam\steamapps\common\Unturned\Unturned.exe
FirewallRules: [{18CCD54E-A938-4B2D-8B7C-32B5DCD80F87}] => (Allow) D:\steam\steamapps\common\Unturned\Unturned.exe
FirewallRules: [{7E002F40-0418-4463-9B8A-B27BBB170F08}] => (Allow) D:\steam\steamapps\common\Black Desert Online\Black Desert Online Steam Launcher.exe
FirewallRules: [{E7A0F363-4445-4990-9682-A244B7748E09}] => (Allow) D:\steam\steamapps\common\Black Desert Online\Black Desert Online Steam Launcher.exe
FirewallRules: [{09226306-2A2B-44E3-9919-3F0EC72EF930}] => (Allow) D:\steam\steamapps\common\Rust\Rust.exe
FirewallRules: [{92BEE813-B273-41BE-9DEA-A61313E9CA32}] => (Allow) D:\steam\steamapps\common\Rust\Rust.exe
FirewallRules: [{E1834944-9FBB-4DEE-A736-996D781CC605}] => (Allow) D:\steam\steamapps\common\H1Z1\H1Z1_BE.exe
FirewallRules: [{BB101905-0E63-401C-92B7-32721D2E13F0}] => (Allow) D:\steam\steamapps\common\H1Z1\H1Z1_BE.exe
FirewallRules: [{6A17F0A3-7162-4DF2-97A4-6A3C4A129617}] => (Allow) D:\steam\steamapps\common\Realm Royale\Binaries\Win64\RealmEAC.exe
FirewallRules: [{7A10ECC0-C1F5-44DD-9285-336EDB45C718}] => (Allow) D:\steam\steamapps\common\Realm Royale\Binaries\Win64\RealmEAC.exe
FirewallRules: [TCP Query User{E9F87596-E15B-41E5-9CC3-5449C784377B}D:\steam\steamapps\common\realm royale\binaries\win64\realm.exe] => (Allow) D:\steam\steamapps\common\realm royale\binaries\win64\realm.exe
FirewallRules: [UDP Query User{9C54A142-BDA0-4C5F-B0E9-1610F8FC04F8}D:\steam\steamapps\common\realm royale\binaries\win64\realm.exe] => (Allow) D:\steam\steamapps\common\realm royale\binaries\win64\realm.exe
FirewallRules: [{B865538A-6CB6-40C1-93C6-02BAC1A2A912}] => (Allow) D:\steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{6EAD2326-8EC5-4184-BF26-7C8AD84C8257}] => (Allow) D:\steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{89443ED3-1C56-4AE2-AC76-B7FF9A7F21CE}] => (Allow) D:\steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [{635DBE50-470D-404A-AF01-4472DF8D8A5C}] => (Allow) D:\steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [TCP Query User{8BD08C3F-7632-492B-9E8E-8BAAB73B3064}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe
FirewallRules: [UDP Query User{D78DFF9A-B4AC-4A26-9926-404C5E7878E1}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe
FirewallRules: [{9FDD4086-3CFC-4770-9D66-22DC9760596F}] => (Allow) D:\steam\steamapps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{A1839212-6E4A-427F-860A-CB2EA8900757}] => (Allow) D:\steam\steamapps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{4ACA605F-0B3C-48E9-99D9-B2E2FEB7D8EA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{D948FBBC-169B-4116-A080-B226474EAF1E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{38315CC2-63CE-4EB2-BECD-B92D849E852E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{BD973C91-A4FD-44CB-8609-5F4844B7B8D8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0C9ABA7F-A88E-47CA-9D43-068A396E1615}] => (Allow) D:\steam\steamapps\common\Zeal\client.exe
FirewallRules: [{4EE2155D-158F-428A-A498-E0E0E11B5F98}] => (Allow) D:\steam\steamapps\common\Zeal\client.exe
FirewallRules: [{AAFAC21F-63CA-4AC7-8BA2-D311498D3A19}] => (Allow) D:\steam\steamapps\common\Black Squad\binaries\win32\SteamLauncher.exe
FirewallRules: [{7FC5DCDB-A817-4EF0-8DCF-EB2217FB9B63}] => (Allow) D:\steam\steamapps\common\Black Squad\binaries\win32\SteamLauncher.exe
FirewallRules: [{FC2EA607-9ECA-4C58-BAAA-6B9F599890BC}] => (Allow) D:\steam\steamapps\common\Dead Frontier 2\DeadFrontier2.exe
FirewallRules: [{96FFB569-9294-441C-B40E-EEB4D2AB602A}] => (Allow) D:\steam\steamapps\common\Dead Frontier 2\DeadFrontier2.exe
FirewallRules: [{2F18DD2F-67BF-4B52-A068-2129DE3C469A}] => (Allow) D:\steam\steamapps\common\EasyAntiCheat\EasyAntiCheat.exe
FirewallRules: [{2C4455AF-21DF-483C-973A-22B1D61C5143}] => (Allow) D:\steam\steamapps\common\EasyAntiCheat\EasyAntiCheat.exe
FirewallRules: [{4350E0A7-038A-4C39-ADC6-9D50252B79A4}] => (Allow) D:\steam\steamapps\common\Islands of Nyne Battle Royale\IONBranch\Binaries\Win64\IONBranch_BE.exe
FirewallRules: [{22B35E18-3D3B-48E2-BB43-1A71445F9E1B}] => (Allow) D:\steam\steamapps\common\Islands of Nyne Battle Royale\IONBranch\Binaries\Win64\IONBranch_BE.exe
FirewallRules: [{DCC9B1A5-4B33-4BDE-B71B-9E1BF1688EAE}] => (Allow) D:\steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{0174B6ED-F0AA-4947-8494-6E1242B28FB4}] => (Allow) D:\steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{F027CE40-5A0D-46A4-ADEE-B35519F52D89}] => (Allow) D:\steam\steamapps\common\Black Squad\binaries\win32\BlackSquadGame.exe
FirewallRules: [{F25C0DA4-DD49-45E4-BCA1-8DA546E76E2D}] => (Allow) D:\steam\steamapps\common\Black Squad\binaries\win32\BlackSquadGame.exe
FirewallRules: [TCP Query User{A91475E9-3FD3-45B2-8EF7-CEB54EB89E8F}D:\battle.net\diablo iii\x64\diablo iii64.exe] => (Allow) D:\battle.net\diablo iii\x64\diablo iii64.exe
FirewallRules: [UDP Query User{24E608E3-BCEF-456C-BD7E-CB79C16EC445}D:\battle.net\diablo iii\x64\diablo iii64.exe] => (Allow) D:\battle.net\diablo iii\x64\diablo iii64.exe
FirewallRules: [{41E048CD-0B44-4C69-88AD-44E49E215E93}] => (Allow) D:\steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{F5691616-0167-432A-B4A3-0F6E708A9F95}] => (Allow) D:\steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{FE878E2C-E0AA-400F-8649-F830763E4D6B}] => (Allow) C:\WINDOWS\system32\rundll32.exe
FirewallRules: [{16E48D31-0432-4714-A2CF-123F77C0B34F}] => (Allow) C:\Program Files (x86)\Incorporates\Micrografx.exe
FirewallRules: [{9737DCC6-35B6-4889-B771-E3AA7150B479}] => (Allow) C:\Program Files (x86)\Telecomm\Micrografx.exe
FirewallRules: [{223AEC95-5467-466F-AEEF-620849DAF8D2}] => (Allow) C:\Program Files (x86)\lifters\Redesignating.exe
FirewallRules: [{65F30FB9-E38C-4148-92A4-E23E1F0F44C9}] => (Allow) C:\Program Files (x86)\Telecomm\Redesignating.exe
FirewallRules: [{C5DD4578-8338-4C0E-820E-2CFB118B9A98}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.91.183.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{2C54F7F0-5F05-4396-98D2-C3971997ECA1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.91.183.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{0EBB8F36-8FA6-4FC4-9959-6670661982E3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.91.183.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{4958AF3C-06F0-4A54-8340-4215F52DA150}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.91.183.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{B448A875-69B0-485C-9085-5389E2C2B3B0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.91.183.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{6AAD446F-293B-4346-8597-4DCFB9FDE7BE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.91.183.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{0D616712-1592-4FA1-A293-B3FF172DD0FC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.91.183.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{65028CE4-1D3D-4DB1-BBE4-D8C13A9D28D8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.91.183.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{C4DBD78F-F92E-45F5-A094-DE8AD32B4814}] => (Allow) C:\Users\user\AppData\Local\iabgmrd\tiklova.exe
FirewallRules: [{9A1CFFDF-9BA7-4EA0-BD62-4FF1E5738300}] => (Allow) C:\Users\user\AppData\Local\iabgmrd\tiklova.exe

==================== Restore Points =========================


==================== Faulty Device Manager Devices =============

Name: LogMeIn Hamachi Virtual Ethernet Adapter
Description: LogMeIn Hamachi Virtual Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: LogMeIn Inc.
Service: Hamachi
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (10/13/2018 07:23:18 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "WmiApRpl" in DLL "C:\WINDOWS\system32\wbem\wmiaprpl.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.

Error: (10/13/2018 07:23:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: SkypeApp.exe, version: 8.30.0.98, time stamp: 0x5bac18cf
Faulting module name: twinapi.appcore.dll, version: 10.0.17134.137, time stamp: 0xb5d50228
Exception code: 0xc000027b
Fault offset: 0x000000000009cad5
Faulting process id: 0x2398
Faulting application start time: 0x01d463540812b484
Faulting application path: C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.30.98.1000_x64__kzf8qxf38zg5c\SkypeApp.exe
Faulting module path: C:\WINDOWS\SYSTEM32\twinapi.appcore.dll
Report Id: c398ceef-f47f-4ede-825b-8ea3a37007db
Faulting package full name: Microsoft.SkypeApp_14.30.98.1000_x64__kzf8qxf38zg5c
Faulting package-relative application ID: App

Error: (10/13/2018 07:23:08 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.

Error: (10/13/2018 07:23:08 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "MSDTC" in DLL "C:\WINDOWS\system32\msdtcuiu.DLL" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.

Error: (10/13/2018 07:23:08 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "Lsa" in DLL "C:\Windows\System32\Secur32.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.

Error: (10/13/2018 07:23:08 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "BITS" in DLL "C:\Windows\System32\bitsperf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.

Error: (10/13/2018 07:22:55 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0x8007232B
Command-line arguments:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (10/13/2018 07:22:52 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0x8007232B
Command-line arguments:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=UserLogon;SessionId=1


System errors:
=============
Error: (10/13/2018 07:23:41 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-TFAE76P)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user DESKTOP-TFAE76P\user SID (S-1-5-21-2740511448-4270186098-299372889-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (10/13/2018 07:23:21 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
Windows.SecurityCenter.WscBrokerManager
 and APPID
Unavailable
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (10/13/2018 07:23:17 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-TFAE76P)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user DESKTOP-TFAE76P\user SID (S-1-5-21-2740511448-4270186098-299372889-1001) from address LocalHost (Using LRPC) running in the application container SpotifyAB.SpotifyMusic_1.91.183.0_x86__zpdnekdrzrea0 SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (10/13/2018 07:22:58 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-TFAE76P)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
Windows.SecurityCenter.WscCloudBackupProvider
 and APPID
Unavailable
 to the user DESKTOP-TFAE76P\user SID (S-1-5-21-2740511448-4270186098-299372889-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (10/13/2018 06:50:26 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-TFAE76P)
Description: The server {D63B10C5-BB46-4990-A94F-E40B9D520160} did not register with DCOM within the required timeout.

Error: (10/13/2018 06:36:57 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-TFAE76P)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user DESKTOP-TFAE76P\user SID (S-1-5-21-2740511448-4270186098-299372889-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (10/13/2018 06:36:29 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
Windows.SecurityCenter.WscBrokerManager
 and APPID
Unavailable
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (10/13/2018 06:36:25 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-TFAE76P)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user DESKTOP-TFAE76P\user SID (S-1-5-21-2740511448-4270186098-299372889-1001) from address LocalHost (Using LRPC) running in the application container SpotifyAB.SpotifyMusic_1.91.183.0_x86__zpdnekdrzrea0 SID (Unavailable). This security permission can be modified using the Component Services administrative tool.


Windows Defender:
===================================
Date: 2018-10-12 20:03:12.769
Description:
Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft...56&enterprise=0
Name: Trojan:Win32/Fuerboos.E!cl
ID: 2147723656
Severity: Severe
Category: Trojan
Path: file:_E:\Forza Horizon 4 Downloader.exe; process:_pid:16104,ProcessStart:131838656643532508; process:_pid:16584,ProcessStart:131838658063074665
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: System
Process Name: Unknown
Signature Version: AV: 1.277.1025.0, AS: 1.277.1025.0, NIS: 0.0.0.0
Engine Version: AM: 1.1.15300.6, NIS: 0.0.0.0

Date: 2018-10-12 20:01:26.587
Description:
Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft...76&enterprise=0
Name: Trojan:Win64/Detrahere.S
ID: 2147726076
Severity: Severe
Category: Trojan
Path: file:_C:\Windows\System32\drivers\sprdawkb.sys
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Windows\System32\svchost.exe
Signature Version: AV: 1.277.1025.0, AS: 1.277.1025.0, NIS: 0.0.0.0
Engine Version: AM: 1.1.15300.6, NIS: 0.0.0.0

Date: 2018-10-12 20:01:20.581
Description:
Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft...76&enterprise=0
Name: Trojan:Win64/Detrahere.S
ID: 2147726076
Severity: Severe
Category: Trojan
Path: file:_C:\Windows\System32\drivers\sprdawkb.sys
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Windows\System32\svchost.exe
Signature Version: AV: 1.277.1025.0, AS: 1.277.1025.0, NIS: 0.0.0.0
Engine Version: AM: 1.1.15300.6, NIS: 0.0.0.0

Date: 2018-10-12 19:53:36.771
Description:
Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft...56&enterprise=0
Name: Trojan:Win32/Fuerboos.E!cl
ID: 2147723656
Severity: Severe
Category: Trojan
Path: file:_E:\Forza Horizon 4 Downloader.exe
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: Real-Time Protection
Process Name: C:\Windows\explorer.exe
Signature Version: AV: 1.277.1025.0, AS: 1.277.1025.0, NIS: 1.277.1025.0
Engine Version: AM: 1.1.15300.6, NIS: 1.1.15300.6

Date: 2018-10-12 19:53:31.552
Description:
Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft...56&enterprise=0
Name: Trojan:Win32/Fuerboos.E!cl
ID: 2147723656
Severity: Severe
Category: Trojan
Path: file:_E:\Forza Horizon 4 Downloader.exe
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: Real-Time Protection
Process Name: C:\Windows\explorer.exe
Signature Version: AV: 1.277.1025.0, AS: 1.277.1025.0, NIS: 1.277.1025.0
Engine Version: AM: 1.1.15300.6, NIS: 1.1.15300.6

Date: 2018-09-11 20:59:50.780
Description:
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 1.275.1025.0
Update Source: Microsoft Update Server
Signature Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.15200.1
Error code: 0x8024402c
Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.

Date: 2018-08-24 15:13:32.836
Description:
Windows Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: On Access
Error Code: 0x8007043c
Error description: This service cannot be started in Safe Mode
Reason: Antimalware protection has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem.

Date: 2018-08-22 22:21:45.442
Description:
Windows Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: On Access
Error Code: 0x8007043c
Error description: This service cannot be started in Safe Mode
Reason: Antimalware protection has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem.

Date: 2018-08-22 09:52:02.576
Description:
Windows Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: On Access
Error Code: 0x8007043c
Error description: This service cannot be started in Safe Mode
Reason: Antimalware protection has stopped functioning for an unknown reason. In some instances, restarting the service may resolve the problem.

CodeIntegrity:
===================================

Date: 2018-10-13 18:06:50.249
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume1\Windows\System32\sesvgxasvc.exe that did not meet the Unchecked signing level requirements.

Date: 2018-10-13 18:06:50.233
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume1\Windows\System32\sesvgxasvc.exe that did not meet the Unchecked signing level requirements.

Date: 2018-10-13 18:06:50.217
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume1\Windows\System32\sesvgxasvc.exe that did not meet the Unchecked signing level requirements.

Date: 2018-10-13 15:52:43.918
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume1\Windows\System32\sesvgxasvc.exe that did not meet the Unchecked signing level requirements.

Date: 2018-10-13 15:52:43.907
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume1\Windows\System32\sesvgxasvc.exe that did not meet the Unchecked signing level requirements.

Date: 2018-10-13 15:52:43.895
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume1\Windows\System32\sesvgxasvc.exe that did not meet the Unchecked signing level requirements.

Date: 2018-10-13 14:52:40.673
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume1\Windows\System32\sesvgxasvc.exe that did not meet the Unchecked signing level requirements.

Date: 2018-10-13 14:52:40.658
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\services.exe) attempted to load \Device\HarddiskVolume1\Windows\System32\sesvgxasvc.exe that did not meet the Unchecked signing level requirements.

==================== Memory info ===========================

Processor: Intel® Core™ i7-4790K CPU @ 4.00GHz
Percentage of memory in use: 33%
Total physical RAM: 16229.7 MB
Available physical RAM: 10730.74 MB
Total Virtual: 18661.7 MB
Available Virtual: 12560.2 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:222.29 GB) (Free:3.42 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Hard Drive) (Fixed) (Total:1853.37 GB) (Free:725.4 GB) NTFS

\\?\Volume{2a496931-0000-0000-0000-609237000000}\ () (Fixed) (Total:0.82 GB) (Free:0.44 GB) NTFS
\\?\Volume{2a496931-0000-0000-0000-30c737000000}\ () (Fixed) (Total:0.46 GB) (Free:0.44 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 2A496931)
Partition 1: (Active) - (Size=222.3 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=844 MB) - (Type=27)
Partition 3: (Not Active) - (Size=467 MB) - (Type=27)

========================================================
Disk: 1 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)

Partition: GPT.
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 2.

==================== End of Addition.txt ============================


Edited by loganelroy, 13 October 2018 - 06:51 PM.

  • 0

Advertisements

#2
RKinner
Posted 17 October 2018 - 03:10 PM

RKinner

    Malware Expert

  • Expert
  • 24,623 posts
  • MVP

Did you install LogMeIn Hamachi or WinPcap?  If not uninstall them.

 

Download the attached fixlist.txt to the same location as FRST

Attached File  fixlist.txt   6.13KB   199 downloads

Run FRST and press Fix
A fix log will be generated please post that

Reboot if the fix doesn't reboot it for you

Run FRST again as before.  Make sure Addition.txt is checked and hit Scan.  Post both logs.
 


  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP