StartupCheckLibrary.dll popup

Whenever I restart my computer I get a popup saying that there was a problem starting StartupCheckLibrary.dll The specified module could not be found.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-01-2020 01

Ran by Specu (administrator) on DESKTOP-91DDSQP (24-01-2020 10:38:41)

Running from C:\Users\Specu\Desktop

Loaded Profiles: Specu (Available Profiles: Specu & Sal_Test & OVRLibraryService)

Platform: Windows 10 Home Version 1909 18363.592 (X64) Language: English (United States)

Default browser: Chrome

Boot Mode: Normal

Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe

(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe

(Discord Inc. -> Discord Inc.) C:\Users\Specu\AppData\Local\Discord\app-0.0.305\Discord.exe

(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler64.exe

(Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe

(Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe

(Logitech Inc -> Logitech) C:\ProgramData\LogiShrd\LogiOptions\Software\Current\LogiOverlay.exe

(Logitech Inc -> Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe

(Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\LogiOptions\LogiOptions.exe

(Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe

(Logitech Inc -> Logitech, Inc.) C:\ProgramData\LogiShrd\LogiOptions\Software\Current\LogiOptionsMgr.exe

(McAfee, Inc. -> McAfee LLC.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe

(McAfee, Inc. -> McAfee, LLC) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe

(McAfee, Inc. -> McAfee, LLC) C:\Windows\System32\mfevtps.exe

(McAfee, LLC -> McAfee, Inc.) C:\Program Files\McAfee\WebAdvisor\browserhost.exe

(McAfee, LLC -> McAfee, Inc.) C:\Program Files\McAfee\WebAdvisor\servicehost.exe

(McAfee, LLC -> McAfee, Inc.) C:\Program Files\McAfee\WebAdvisor\uihost.exe

(McAfee, LLC -> McAfee, LLC.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe

(McAfee, LLC. -> McAfee, LLC) C:\Program Files\Common Files\McAfee\VSCore_19_9\mcapexe.exe

(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\Common Files\McAfee\ChromiumContainer\delegate.exe

(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\Common Files\McAfee\CSP\3.3.122.0\McCSPServiceHost.exe

(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHOST.exe

(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\Common Files\McAfee\ModuleCore\ProtectedModuleHost.exe

(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe

(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe

(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\Common Files\McAfee\Platform\MSM\McSmtFwk.exe

(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\McAfee\CoreUI\Launch.exe

(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\McAfee\MfeAV\MfeAVSvc.exe

(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\McAfee\MQS\QcShm.exe

(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe

(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2001.1001.4.0_x64__8wekyb3d8bbwe\app\Xbox.exe

(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2001.1001.4.0_x64__8wekyb3d8bbwe\app\XboxAppServices.exe

(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_1.35.26001.0_x64__8wekyb3d8bbwe\GamingServices.exe

(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_1.35.26001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe

(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.36.6003.0_x64__8wekyb3d8bbwe\GameBar.exe

(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.36.6003.0_x64__8wekyb3d8bbwe\GameBarFT.exe

(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.36.6003.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe

(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19122.89.0_x64__8wekyb3d8bbwe\YourPhoneServer\YourPhoneServer.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe

(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe

(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_9f1b2c8a203d6fe0\Display.NvContainer\NVDisplay.Container.exe

(Oculus VR, LLC -> Facebook Technologies, LLC) C:\Program Files\Oculus\Support\oculus-runtime\OVRRedir.exe

(Oculus VR, LLC -> Facebook Technologies, LLC) C:\Program Files\Oculus\Support\oculus-runtime\OVRServer_x64.exe

(Oculus VR, LLC -> Facebook Technologies, LLC) C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe

(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe

(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

(Plex, Inc -> Plex, Inc.) D:\Program Files\Plex\Plex Media Server\Plex Update Service.exe

(SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe

(TeamViewer GmbH -> TeamViewer Germany GmbH) D:\Program Files\TeamViewer\TeamViewer.exe

(TeamViewer GmbH -> TeamViewer Germany GmbH) D:\Program Files\TeamViewer\TeamViewer_Service.exe

(TeamViewer GmbH -> TeamViewer Germany GmbH) D:\Program Files\TeamViewer\tv_w32.exe

(TeamViewer GmbH -> TeamViewer Germany GmbH) D:\Program Files\TeamViewer\tv_x64.exe

(TEFINCOM S.A. -> ) D:\Program Files\Nord VPN\NordVPN\nordvpn-service.exe

(TEFINCOM S.A. -> NordVPN) D:\Program Files\Nord VPN\NordVPN\NordVPN.exe

(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe

(Valve -> Valve Corporation) D:\Program Files\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

(Valve -> Valve Corporation) D:\Program Files\Steam\Steam.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18727048 2018-10-05] (Logitech Inc -> Logitech Inc.)

HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)

HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)

HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3136136 2019-01-30] (Logitech Inc -> Logitech, Inc.)

HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)

HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [2176648 2018-12-14] (Logitech Inc -> Logitech, Inc.)

HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645648 2019-10-05] (Oracle America, Inc. -> Oracle Corporation)

HKLM\...\Policies\Explorer: [HideSCAHealth] 1

HKLM\...\Policies\Explorer: [NoViewOnDrive] 0

HKLM\...\Policies\Explorer: [DisableLocalMachineRun] 0

HKLM\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0

HKLM\...\Policies\Explorer: [DisableCurrentUserRun] 0

HKLM\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0

HKLM\...\Policies\Explorer: [NoViewContextMenu] 0

HKLM\...\Policies\Explorer: [NoShellSearchButton] 0

HKLM\...\Policies\Explorer: [NoFind] 0

HKLM\...\Policies\Explorer: [NoFile] 0

HKLM\...\Policies\Explorer: [HideClock] 0

HKLM\...\Policies\Explorer: [NoTrayContextMenu] 0

HKLM\...\Policies\Explorer: [NoTrayItemsDisplay] 0

HKLM\...\Policies\Explorer: [NoSetFolders] 0

HKLM\...\Policies\Explorer: [NoDevMgrUpdate] 0

HKLM\...\Policies\Explorer: [NoSetTaskbar] 0

HKLM\...\Policies\Explorer: [NoDeletePrinter] 0

HKLM\...\Policies\Explorer: [NoDFSTab] 0

HKLM\...\Policies\Explorer: [NoChangeStartMenu] 0

HKLM\...\Policies\Explorer: [NoLogoff] 0

HKLM\...\Policies\Explorer: [NoWindowsUpdate] 0

HKLM\...\Policies\Explorer: [NoEncryptOnMove] 0

HKLM\...\Policies\Explorer: [NoRunasInstallPrompt] 0

HKLM\...\Policies\Explorer: [NoResolveSearch] 0

HKLM\...\Policies\Explorer: [NoSaveSettings] 0

HKLM\...\Policies\Explorer: [NoHardwareTab] 0

HKLM\...\Policies\Explorer: [NoStartMenuSubFolders] 0

HKLM\...\Policies\Explorer: [NoDesktop] 0

HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION

HKU\S-1-5-19\...\Policies\system: [DisableCMD] 0

HKU\S-1-5-19\...\Policies\system: [NoDispAppearancePage] 0

HKU\S-1-5-19\...\Policies\system: [NoDispBackgroundPage] 0

HKU\S-1-5-19\...\Policies\system: [NoDispSettingsPage] 0

HKU\S-1-5-19\...\Policies\Explorer: [NoViewOnDrive] 0

HKU\S-1-5-19\...\Policies\Explorer: [DisableLocalMachineRun] 0

HKU\S-1-5-19\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0

HKU\S-1-5-19\...\Policies\Explorer: [DisableCurrentUserRun] 0

HKU\S-1-5-19\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0

HKU\S-1-5-19\...\Policies\Explorer: [NoViewContextMenu] 0

HKU\S-1-5-19\...\Policies\Explorer: [NoShellSearchButton] 0

HKU\S-1-5-19\...\Policies\Explorer: [NoFind] 0

HKU\S-1-5-19\...\Policies\Explorer: [NoFile] 0

HKU\S-1-5-19\...\Policies\Explorer: [HideClock] 0

HKU\S-1-5-19\...\Policies\Explorer: [NoTrayContextMenu] 0

HKU\S-1-5-19\...\Policies\Explorer: [NoTrayItemsDisplay] 0

HKU\S-1-5-19\...\Policies\Explorer: [NoSetFolders] 0

HKU\S-1-5-19\...\Policies\Explorer: [NoDevMgrUpdate] 0

HKU\S-1-5-19\...\Policies\Explorer: [NoSetTaskbar] 0

HKU\S-1-5-19\...\Policies\Explorer: [NoDeletePrinter] 0

HKU\S-1-5-19\...\Policies\Explorer: [NoDFSTab] 0

HKU\S-1-5-19\...\Policies\Explorer: [NoChangeStartMenu] 0

HKU\S-1-5-19\...\Policies\Explorer: [NoLogoff] 0

HKU\S-1-5-19\...\Policies\Explorer: [NoWindowsUpdate] 0

HKU\S-1-5-19\...\Policies\Explorer: [NoEncryptOnMove] 0

HKU\S-1-5-19\...\Policies\Explorer: [NoRunasInstallPrompt] 0

HKU\S-1-5-19\...\Policies\Explorer: [NoResolveSearch] 0

HKU\S-1-5-19\...\Policies\Explorer: [NoSaveSettings] 0

HKU\S-1-5-19\...\Policies\Explorer: [NoHardwareTab] 0

HKU\S-1-5-19\...\Policies\Explorer: [NoStartMenuSubFolders] 0

HKU\S-1-5-20\...\Policies\system: [DisableCMD] 0

HKU\S-1-5-20\...\Policies\system: [NoDispAppearancePage] 0

HKU\S-1-5-20\...\Policies\system: [NoDispBackgroundPage] 0

HKU\S-1-5-20\...\Policies\system: [NoDispSettingsPage] 0

HKU\S-1-5-20\...\Policies\Explorer: [NoViewOnDrive] 0

HKU\S-1-5-20\...\Policies\Explorer: [DisableLocalMachineRun] 0

HKU\S-1-5-20\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0

HKU\S-1-5-20\...\Policies\Explorer: [DisableCurrentUserRun] 0

HKU\S-1-5-20\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0

HKU\S-1-5-20\...\Policies\Explorer: [NoViewContextMenu] 0

HKU\S-1-5-20\...\Policies\Explorer: [NoShellSearchButton] 0

HKU\S-1-5-20\...\Policies\Explorer: [NoFind] 0

HKU\S-1-5-20\...\Policies\Explorer: [NoFile] 0

HKU\S-1-5-20\...\Policies\Explorer: [HideClock] 0

HKU\S-1-5-20\...\Policies\Explorer: [NoTrayContextMenu] 0

HKU\S-1-5-20\...\Policies\Explorer: [NoTrayItemsDisplay] 0

HKU\S-1-5-20\...\Policies\Explorer: [NoSetFolders] 0

HKU\S-1-5-20\...\Policies\Explorer: [NoDevMgrUpdate] 0

HKU\S-1-5-20\...\Policies\Explorer: [NoSetTaskbar] 0

HKU\S-1-5-20\...\Policies\Explorer: [NoDeletePrinter] 0

HKU\S-1-5-20\...\Policies\Explorer: [NoDFSTab] 0

HKU\S-1-5-20\...\Policies\Explorer: [NoChangeStartMenu] 0

HKU\S-1-5-20\...\Policies\Explorer: [NoLogoff] 0

HKU\S-1-5-20\...\Policies\Explorer: [NoWindowsUpdate] 0

HKU\S-1-5-20\...\Policies\Explorer: [NoEncryptOnMove] 0

HKU\S-1-5-20\...\Policies\Explorer: [NoRunasInstallPrompt] 0

HKU\S-1-5-20\...\Policies\Explorer: [NoResolveSearch] 0

HKU\S-1-5-20\...\Policies\Explorer: [NoSaveSettings] 0

HKU\S-1-5-20\...\Policies\Explorer: [NoHardwareTab] 0

HKU\S-1-5-20\...\Policies\Explorer: [NoStartMenuSubFolders] 0

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Run: [Steam] => D:\Program Files\Steam\steam.exe [3311568 2020-01-17] (Valve -> Valve Corporation)

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Specu\AppData\Local\Microsoft\Teams\Update.exe [1780096 2019-04-07] (Microsoft 3rd Party Application Component -> Microsoft Corporation)

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Run: [Plex Media Server] => D:\Program Files\Plex\Plex Media Server\Plex Media Server.exe [25170920 2019-08-07] (Plex, Inc -> Plex, Inc.)

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [83525184 2019-10-03] (Skype Software Sarl -> Skype Technologies S.A.)

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Run: [Discord] => C:\Users\Specu\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Run: [GoogleChromeAutoLaunch_C6834F14E1561137EADAF226ED8DF4F7] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Run: [NordVPN] => D:\Program Files\Nord VPN\NordVPN\NordVPN.exe [1951264 2020-01-23] (TEFINCOM S.A. -> NordVPN)

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\RunOnce: [Application Restart #1] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-startup-window /prefetch:5 --flag-switches-begin --flag-switches-end --enable-audio-service-sandbox --flag-switches-begin --flag-switc (the data entry has 61 more characters).

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Policies\system: [DisableCMD] 0

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Policies\system: [NoDispAppearancePage] 0

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Policies\system: [NoDispBackgroundPage] 0

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Policies\system: [NoDispSettingsPage] 0

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Policies\Explorer: []

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Policies\Explorer: [NoViewOnDrive] 0

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Policies\Explorer: [DisableLocalMachineRun] 0

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Policies\Explorer: [DisableCurrentUserRun] 0

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Policies\Explorer: [NoViewContextMenu] 0

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Policies\Explorer: [NoShellSearchButton] 0

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Policies\Explorer: [NoFind] 0

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Policies\Explorer: [NoFile] 0

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Policies\Explorer: [HideClock] 0

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Policies\Explorer: [NoTrayContextMenu] 0

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Policies\Explorer: [NoTrayItemsDisplay] 0

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Policies\Explorer: [NoSetFolders] 0

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Policies\Explorer: [NoDevMgrUpdate] 0

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Policies\Explorer: [NoSetTaskbar] 0

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Policies\Explorer: [NoDeletePrinter] 0

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Policies\Explorer: [NoDFSTab] 0

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Policies\Explorer: [NoChangeStartMenu] 0

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Policies\Explorer: [NoLogoff] 0

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Policies\Explorer: [NoWindowsUpdate] 0

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Policies\Explorer: [NoEncryptOnMove] 0

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Policies\Explorer: [NoRunasInstallPrompt] 0

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Policies\Explorer: [NoResolveSearch] 0

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Policies\Explorer: [NoSaveSettings] 0

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Policies\Explorer: [NoHardwareTab] 0

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Policies\Explorer: [NoStartMenuSubFolders] 0

HKU\S-1-5-18\...\Policies\system: [DisableCMD] 0

HKU\S-1-5-18\...\Policies\system: [NoDispAppearancePage] 0

HKU\S-1-5-18\...\Policies\system: [NoDispBackgroundPage] 0

HKU\S-1-5-18\...\Policies\system: [NoDispSettingsPage] 0

HKU\S-1-5-18\...\Policies\Explorer: [NoViewOnDrive] 0

HKU\S-1-5-18\...\Policies\Explorer: [DisableLocalMachineRun] 0

HKU\S-1-5-18\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0

HKU\S-1-5-18\...\Policies\Explorer: [DisableCurrentUserRun] 0

HKU\S-1-5-18\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0

HKU\S-1-5-18\...\Policies\Explorer: [NoViewContextMenu] 0

HKU\S-1-5-18\...\Policies\Explorer: [NoShellSearchButton] 0

HKU\S-1-5-18\...\Policies\Explorer: [NoFind] 0

HKU\S-1-5-18\...\Policies\Explorer: [NoFile] 0

HKU\S-1-5-18\...\Policies\Explorer: [HideClock] 0

HKU\S-1-5-18\...\Policies\Explorer: [NoTrayContextMenu] 0

HKU\S-1-5-18\...\Policies\Explorer: [NoTrayItemsDisplay] 0

HKU\S-1-5-18\...\Policies\Explorer: [NoSetFolders] 0

HKU\S-1-5-18\...\Policies\Explorer: [NoDevMgrUpdate] 0

HKU\S-1-5-18\...\Policies\Explorer: [NoSetTaskbar] 0

HKU\S-1-5-18\...\Policies\Explorer: [NoDeletePrinter] 0

HKU\S-1-5-18\...\Policies\Explorer: [NoDFSTab] 0

HKU\S-1-5-18\...\Policies\Explorer: [NoChangeStartMenu] 0

HKU\S-1-5-18\...\Policies\Explorer: [NoLogoff] 0

HKU\S-1-5-18\...\Policies\Explorer: [NoWindowsUpdate] 0

HKU\S-1-5-18\...\Policies\Explorer: [NoEncryptOnMove] 0

HKU\S-1-5-18\...\Policies\Explorer: [NoRunasInstallPrompt] 0

HKU\S-1-5-18\...\Policies\Explorer: [NoResolveSearch] 0

HKU\S-1-5-18\...\Policies\Explorer: [NoSaveSettings] 0

HKU\S-1-5-18\...\Policies\Explorer: [NoHardwareTab] 0

HKU\S-1-5-18\...\Policies\Explorer: [NoStartMenuSubFolders] 0

HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.130\Installer\chrmstp.exe [2020-01-22] (Google LLC -> Google LLC)

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2019-03-28]

ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS -> SteelSeries ApS)

Startup: C:\Users\Specu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2019-11-04] ()

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {23BDDDA5-8EE2-40FD-9FEA-2B1F34D6FA76} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {28CA1869-7E71-463A-953E-08AA3F96127F} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2024536 2020-01-18] (Microsoft Corporation -> Microsoft Corporation)

Task: {2D9E8099-B96F-4847-9B99-53D5962D412B} - System32\Tasks\Microsoft\Windows\WDI\SrvHost => rundll32.exe winscomrssrv.dll,SrvMainHost <==== ATTENTION

Task: {317A253E-B640-4715-BF89-23C0F63B5AFB} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158552 2020-01-18] (Microsoft Corporation -> Microsoft Corporation)

Task: {359CC8BA-5CF8-45B4-A223-7C10E0DDB463} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe [759752 2019-08-14] (McAfee, LLC. -> McAfee, LLC.)

Task: {366002F3-C0E2-4E99-B659-3494C910F6A1} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-27] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {458CB48B-982F-4169-8235-858F1C632C01} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913448 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {46B24D0D-AC2A-4331-AB39-E06CEEEAB3EC} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe [4548368 2019-12-04] (McAfee, LLC -> McAfee, LLC.)

Task: {4890AD55-D3E1-4012-AC1B-DED3C744AADC} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653864 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {4B40F8B4-B149-40DA-B61F-8C130469ED26} - System32\Tasks\Microsoft\Windows\Application Experience\StartupCheckLibrary => rundll32.exe StartupCheckLibrary.dll,DllMainRunLibrary <==== ATTENTION

Task: {4DDF6285-296B-49B4-B337-4C40CC2C7E08} - System32\Tasks\Microsoft\Windows\RestartManager\{3025FCD1-CD26-4553-8609-CBD42631B557} => C:\WINDOWS\system32\rmclient.exe [17920 2019-03-18] (Microsoft Windows -> Microsoft Corporation)

Task: {596BFA7E-F149-460F-B096-F7B433A1C7A7} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2050448 2020-01-18] (Microsoft Corporation -> Microsoft Corporation)

Task: {5D2FD137-03B7-44B1-837E-6EC605DF5C30} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24629104 2020-01-08] (Microsoft Corporation -> Microsoft Corporation)

Task: {61365D34-ED15-47F7-9ADB-819865D5FDA1} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6128536 2020-01-10] (Microsoft Corporation -> Microsoft Corporation)

Task: {6EB1E0B7-811B-4386-9090-437A2E01D195} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2050448 2020-01-18] (Microsoft Corporation -> Microsoft Corporation)

Task: {6F6E4711-23EE-478D-A8BF-E63CCDD8BF98} - System32\Tasks\McAfee\McAfee DAT Built in test => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\1.0.9.577\mcdatrep.exe [1826656 2019-12-12] (McAfee, Inc. -> McAfee, LLC.)

Task: {75EE7637-7BB7-4A0F-B521-932E63ABF48C} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)

Task: {7A19766E-A21A-4949-82C5-B3ADA004E924} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent => {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1040832 2019-11-14] (McAfee, LLC. -> McAfee, LLC.)

Task: {7FFD19F0-097B-485B-B16A-CA5395074A6C} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\1.4.111\DADUpdater.exe [4145800 2019-11-15] (McAfee, Inc. -> McAfee, Inc.)

Task: {9A0206F3-B1E7-4C95-8C23-63DF1FFEB0E9} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {A0D2CAEF-9BD5-479D-80AB-EBFB98F30513} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158552 2020-01-18] (Microsoft Corporation -> Microsoft Corporation)

Task: {A7357D22-9D09-48C5-BEAF-C23BFE76D08F} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {AC5FAB54-2433-47CC-8F53-80D40D782807} - System32\Tasks\McAfee\McAfee Idle Detection Task => {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1040832 2019-11-14] (McAfee, LLC. -> McAfee, LLC.)

Task: {B1F1C6B0-B6BF-4F9E-90EC-272FD7CE518A} - System32\Tasks\Launcher GIGABYTE AORUS GRAPHICS ENGINE => C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\AORUS.exe [32556464 2019-06-06] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGABYTE Technology Co.,Ltd.)

Task: {B99D7FD5-C684-4D8D-BB99-7D288F4B6DD9} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913448 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {C397035D-8D49-44B7-AD9B-9A3933DFAF61} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3310688 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {CCE6D237-CD64-4577-8153-C96685E44FF1} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6128536 2020-01-10] (Microsoft Corporation -> Microsoft Corporation)

Task: {D854698D-07C5-446C-B37A-91D237682DA7} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-27] (NVIDIA Corporation -> NVIDIA Corporation)

Task: {DDB434CD-7267-4795-9254-3D7DE8B6DDA2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-05-16] (Google Inc -> Google LLC)

Task: {E25168F8-1DEA-4807-9B89-9371A9F77E11} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24629104 2020-01-08] (Microsoft Corporation -> Microsoft Corporation)

Task: {E3C24624-BED1-471F-907A-EE53A1BDBE3D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-05-16] (Google Inc -> Google LLC)

Task: {F9D08061-11EF-40DE-B0C0-4B4D358E8B01} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133608 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

Tcpip\..\Interfaces\{e248f886-89f1-4551-bb63-a71019e504e4}: [DhcpNameServer] 192.168.1.1

Internet Explorer:

==================

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2020-01-10] (Microsoft Corporation -> Microsoft Corporation)

BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2019-01-30] (Logitech Inc -> Logitech, Inc.)

BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2019-12-12] (McAfee, LLC -> McAfee, Inc.)

BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-01-10] (Microsoft Corporation -> Microsoft Corporation)

BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\ssv.dll [2019-10-30] (Oracle America, Inc. -> Oracle Corporation)

BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2019-01-30] (Logitech Inc -> Logitech, Inc.)

BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2019-12-12] (McAfee, LLC -> McAfee, Inc.)

BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\jp2ssv.dll [2019-10-30] (Oracle America, Inc. -> Oracle Corporation)

Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-10] (Microsoft Corporation -> Microsoft Corporation)

Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-01-10] (Microsoft Corporation -> Microsoft Corporation)

Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-10] (Microsoft Corporation -> Microsoft Corporation)

Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-01-10] (Microsoft Corporation -> Microsoft Corporation)

Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-10] (Microsoft Corporation -> Microsoft Corporation)

Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-01-10] (Microsoft Corporation -> Microsoft Corporation)

Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-10] (Microsoft Corporation -> Microsoft Corporation)

Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-01-10] (Microsoft Corporation -> Microsoft Corporation)

Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\McAfee\MSC\McSnIePl64.dll [2019-12-03] (McAfee, LLC. -> McAfee, LLC.)

Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files (x86)\McAfee\MSC\McSnIePl.dll [2019-12-03] (McAfee, LLC. -> McAfee, LLC.)

FireFox:

========

FF DefaultProfile: lz8e66fi.default

FF ProfilePath: C:\Users\Specu\AppData\Roaming\Mozilla\Firefox\Profiles\lz8e66fi.default [2020-01-24]

FF Homepage: Mozilla\Firefox\Profiles\lz8e66fi.default -> hxxps://gtxcp.uk/Interface/GameHosting/GameServers.aspx

FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi

FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2019-12-12]

FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt

FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2019-06-23] [not signed]

FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi

FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\McAfee\MSC\npMcSnFFPl64.dll [2019-12-03] (McAfee, LLC. -> )

FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-10] (Microsoft Corporation -> Microsoft Corporation)

FF Plugin: @videolan.org/vlc,version=3.0.1 -> D:\Program Files\VideoLAN\VLC\npvlc.dll [No File]

FF Plugin: @videolan.org/vlc,version=3.0.8 -> D:\Program Files\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)

FF Plugin-x32: @java.com/DTPlugin,version=11.231.2 -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\dtplugin\npDeployJava1.dll [2019-10-30] (Oracle America, Inc. -> Oracle Corporation)

FF Plugin-x32: @java.com/JavaPlugin,version=11.231.2 -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\plugin2\npjp2.dll [2019-10-30] (Oracle America, Inc. -> Oracle Corporation)

FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\MSC\npMcSnFFPl.dll [2019-12-03] (McAfee, LLC. -> )

FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-12-06] (Microsoft Corporation -> Microsoft Corporation)

FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-01-10] (Microsoft Corporation -> Microsoft Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-13] (Google LLC -> Google LLC)

FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-13] (Google LLC -> Google LLC)

Chrome:

=======

CHR StartupUrls: Default -> "hxxps://gtxcp.uk/Interface/GameHosting/GameServers.aspx","hxxps://www.facebook.com/","hxxps://www.youtube.com/","hxxps://www.gtxgaming.co.uk/","hxxps://speculiar.wixsite.com/justusleaguegaming","hxxp://www.google.com/"

CHR Notifications: Default -> hxxps://dirtcheapejuice.pushcrew.com; hxxps://feedback.townshiptale.com; hxxps://forum.empyrion-homeworld.net; hxxps://www.instagram.com

CHR Profile: C:\Users\Specu\AppData\Local\Google\Chrome\User Data\Default [2020-01-24]

CHR DownloadDir: C:\Users\Specu\Downloads

CHR Extension: (Slides) - C:\Users\Specu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-03-27]

CHR Extension: (The Flash Video Dоwnlоader) - C:\Users\Specu\AppData\Local\Google\Chrome\User Data\Default\Extensions\amjcoehkcacocffpmhnefgoeanepjfkf [2019-05-15]

CHR Extension: (Docs) - C:\Users\Specu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-03-27]

CHR Extension: (Google Drive) - C:\Users\Specu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-03-27]

CHR Extension: (YouTube) - C:\Users\Specu\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-03-27]

CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\Specu\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-01-03]

CHR Extension: (Videostream for Google Chromecast™) - C:\Users\Specu\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnciopoikihiagdjbjpnocolokfelagl [2019-08-29]

CHR Extension: (Sheets) - C:\Users\Specu\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-03-27]

CHR Extension: (McAfee® WebAdvisor) - C:\Users\Specu\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2019-11-28]

CHR Extension: (Google Play Movies & TV) - C:\Users\Specu\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdijeikdkaembjbdobgfkoidjkpbmlkd [2019-03-27]

CHR Extension: (Google Docs Offline) - C:\Users\Specu\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-08]

CHR Extension: (Video Blocker) - C:\Users\Specu\AppData\Local\Google\Chrome\User Data\Default\Extensions\jknkjnpcbbgcbdbaampbjlhkcghmgfhk [2019-03-27]

CHR Extension: (Reddit Enhancement Suite) - C:\Users\Specu\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb [2020-01-21]

CHR Extension: (Chrome Web Store Payments) - C:\Users\Specu\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]

CHR Extension: (Dark Theme for Youtube, FB, Chrome) - C:\Users\Specu\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocdjppogihmiaookphgljdbcjemckmjl [2019-09-08]

CHR Extension: (Amazon Assistant for Chrome) - C:\Users\Specu\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2019-11-05]

CHR Extension: (Gmail) - C:\Users\Specu\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-03-27]

CHR Extension: (Chrome Media Router) - C:\Users\Specu\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-17]

CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx

CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)

R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)

S2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [18656 2011-02-02] (Autodesk, Inc. -> )

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8395968 2019-10-16] (BattlEye Innovations e.K. -> )

R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11164232 2020-01-07] (Microsoft Corporation -> Microsoft Corporation)

S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2020-01-03] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)

S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [81280 2019-11-19] (Mixbyte Inc -> Freemake)

R2 GamingServices; C:\Program Files\WindowsApps\Microsoft.GamingServices_1.35.26001.0_x64__8wekyb3d8bbwe\GamingServices.exe [21640 2020-01-11] (Microsoft Corporation -> Microsoft Corporation)

R2 GamingServicesNet; C:\Program Files\WindowsApps\Microsoft.GamingServices_1.35.26001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe [21640 2020-01-11] (Microsoft Corporation -> Microsoft Corporation)

R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [206472 2018-10-05] (Logitech Inc -> Logitech Inc.)

R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [913208 2019-12-12] (McAfee, LLC -> McAfee, Inc.)

R2 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_19_9\McApExe.exe [748040 2019-11-20] (McAfee, LLC. -> McAfee, LLC)

R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\3.3.122.0\\McCSPServiceHost.exe [2685776 2019-10-31] (McAfee, LLC. -> McAfee, LLC.)

S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [638536 2019-11-08] (McAfee, Inc. -> McAfee, LLC)

R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [638536 2019-11-08] (McAfee, Inc. -> McAfee, LLC)

R3 mfevtp; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [638536 2019-11-08] (McAfee, Inc. -> McAfee, LLC)

R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1731616 2019-11-14] (McAfee, LLC -> McAfee, LLC.)

R2 nordvpn-service; D:\Program Files\Nord VPN\NordVPN\nordvpn-service.exe [222240 2020-01-23] (TEFINCOM S.A. -> )

R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-27] (NVIDIA Corporation -> NVIDIA Corporation)

S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-27] (NVIDIA Corporation -> NVIDIA Corporation)

S3 OVRLibraryService; C:\Program Files\Oculus\Support\oculus-librarian\OVRLibraryService.exe [145336 2020-01-22] (Oculus VR, LLC -> Facebook Technologies, LLC)

R2 OVRService; C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe [513464 2020-01-22] (Oculus VR, LLC -> Facebook Technologies, LLC)

R2 PEFService; C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe [1366672 2019-11-19] (McAfee, LLC. -> McAfee, LLC.)

R2 PlexUpdateService; D:\Program Files\Plex\Plex Media Server\Plex Update Service.exe [2139112 2019-08-07] (Plex, Inc -> Plex, Inc.)

R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2019-11-25] (Even Balance, Inc. -> )

R2 TeamViewer; D:\Program Files\TeamViewer\TeamViewer_Service.exe [12758528 2019-12-16] (TeamViewer GmbH -> TeamViewer Germany GmbH)

S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-18] (Microsoft Corporation -> Microsoft Corporation)

R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_9f1b2c8a203d6fe0\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_9f1b2c8a203d6fe0\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 bsvad; C:\WINDOWS\system32\drivers\bsvad.sys [48712 2019-04-12] (Bigscreen, Inc. -> Windows ® Win 7 DDK provider)

R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [75912 2019-11-19] (McAfee, Inc. -> McAfee, LLC)

S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [135520 2019-07-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)

S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-03-10] (AVB Disc Soft, SIA -> Disc Soft Ltd)

R3 gameflt; C:\WINDOWS\System32\DriverStore\FileRepository\gameflt.inf_amd64_1b1c9965dc1c6f0f\gameflt.sys [71000 2020-01-11] (Microsoft Windows -> Microsoft Corporation)

S3 gdrv2; C:\WINDOWS\gdrv2.sys [32008 2019-06-08] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)

S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [217912 2019-06-04] (McAfee, LLC -> McAfee, Inc.)

R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech -> Logitech)

R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2018-10-05] (Logitech Inc -> Logitech Inc.)

R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [522368 2019-11-19] (McAfee, Inc. -> McAfee, LLC)

R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [380544 2019-11-19] (McAfee, Inc. -> McAfee, LLC)

S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [85928 2019-11-19] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, LLC)

R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [517256 2019-11-19] (McAfee, Inc. -> McAfee, LLC)

R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [996488 2019-11-19] (McAfee, Inc. -> McAfee, LLC)

R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [564144 2019-09-16] (McAfee, Inc. -> McAfee LLC.)

S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [107952 2019-09-16] (McAfee, Inc. -> McAfee LLC.)

R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [116872 2019-11-19] (McAfee, Inc. -> McAfee, LLC)

R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [252552 2019-11-19] (McAfee, Inc. -> McAfee, LLC)

R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_9f1b2c8a203d6fe0\nvlddmkm.sys [22366088 2019-08-25] (NVIDIA Corporation -> NVIDIA Corporation)

S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-07-23] (NVIDIA Corporation -> NVIDIA Corporation)

S3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69840 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)

R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [75600 2019-08-25] (NVIDIA Corporation -> NVIDIA Corporation)

R3 oculusvad_oculusvad; C:\WINDOWS\System32\drivers\oculusvad.sys [74248 2019-12-22] (Microsoft Windows Hardware Compatibility Publisher -> Windows ® Win 7 DDK provider)

R3 OCULUSVRHEADSET; C:\WINDOWS\System32\drivers\OCULUS119B.sys [1895944 2016-03-22] (Microsoft Windows Hardware Compatibility Publisher -> OCULUS)

R3 Oculus_ViGEmBus; C:\WINDOWS\System32\drivers\Oculus_ViGEmBus.sys [32856 2019-03-27] (Oculus VR, LLC -> Facebook Inc.)

R3 OCUSBVID; C:\WINDOWS\System32\drivers\ocusbvid111.sys [69176 2019-03-27] (Oculus VR, LLC -> Oculus VR, LLC)

R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [46776 2019-01-31] (SteelSeries ApS -> )

R3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [48032 2018-12-03] (SteelSeries ApS -> SteelSeries ApS)

S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166752 2019-07-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)

R3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2018-06-13] (TEFINCOM S.A. -> The OpenVPN Project)

R3 UcmCxUcsiNvppc; C:\WINDOWS\System32\drivers\UcmCxUcsiNvppc.sys [715680 2019-08-25] (NVIDIA Corporation -> NVIDIA Corporation)

S3 VBAudio100VMVAIO3MME; C:\WINDOWS\System32\drivers\vbaudio_vmvaio364_win10.sys [71712 2019-05-29] (Vincent Burel -> Windows ® Win 7 DDK provider)

S3 VBAudioVACMME; C:\WINDOWS\System32\drivers\vbaudio_cable64_win7.sys [41192 2014-09-02] (Vincent Burel -> Windows ® Win 7 DDK provider)

S3 VBAudioVMAUXVAIOMME; C:\WINDOWS\System32\drivers\vbaudio_vmauxvaio64_win10.sys [71920 2019-05-29] (Vincent Burel -> Windows ® Win 7 DDK provider)

S3 VBAudioVMVAIOMME; C:\WINDOWS\System32\drivers\vbaudio_vmvaio64_win10.sys [71712 2019-05-29] (Vincent Burel -> Windows ® Win 7 DDK provider)

S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46472 2019-03-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)

S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [333784 2019-03-18] (Microsoft Windows -> Microsoft Corporation)

S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-18] (Microsoft Windows -> Microsoft Corporation)

R3 Xvdd; C:\WINDOWS\System32\DriverStore\FileRepository\xvdd.inf_amd64_4beca0218f643d77\xvdd.sys [478256 2020-01-11] (Microsoft Windows -> Microsoft Corporation)

U0 SR; no ImagePath

U2 srservice; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-01-24 10:14 - 2020-01-24 10:39 - 000053631 _____ C:\Users\Specu\Desktop\FRST.txt

2020-01-24 10:04 - 2020-01-24 10:39 - 000000000 ____D C:\FRST

2020-01-24 10:03 - 2020-01-24 10:03 - 002580480 _____ (Farbar) C:\Users\Specu\Desktop\FRST64.exe

2020-01-24 09:20 - 2020-01-24 09:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordVPN

2020-01-23 18:00 - 2020-01-23 18:00 - 000000213 _____ C:\Users\Specu\Desktop\Team Fortress 2.url

2020-01-23 10:29 - 2020-01-23 10:29 - 000016091 _____ C:\Users\Specu\AppData\Local\recently-used.xbel

2020-01-23 09:08 - 2020-01-23 09:08 - 000002030 _____ C:\Users\Specu\Downloads\message.txt

2020-01-22 13:17 - 2020-01-24 02:40 - 000000000 ____D C:\Users\Specu\AppData\Roaming\vlc

2020-01-22 13:05 - 2020-01-22 13:05 - 000000685 _____ C:\Users\Public\Desktop\VLC media player.lnk

2020-01-22 13:05 - 2020-01-22 13:05 - 000000685 _____ C:\ProgramData\Desktop\VLC media player.lnk

2020-01-22 13:05 - 2020-01-22 13:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN

2020-01-22 12:41 - 2020-01-22 12:42 - 045668285 _____ C:\Users\Specu\Downloads\vlc-4.0.0-20200122-0832-dev-win64.exe

2020-01-22 12:41 - 2020-01-22 12:41 - 076928742 _____ C:\Users\Specu\Downloads\vlc-4.0.0-20200122-0832-dev-win64.zip

2020-01-22 12:40 - 2020-01-22 12:40 - 042030736 _____ C:\Users\Specu\Downloads\vlc-3.0.8-win64.exe

2020-01-21 16:24 - 2020-01-21 16:24 - 040772008 _____ C:\Users\Specu\Downloads\vlc-3.0.8-win32.exe

2020-01-21 16:20 - 2020-01-21 16:20 - 004344265 _____ C:\Users\Specu\Downloads\URU Music.mp4

2020-01-21 13:59 - 2020-01-23 15:02 - 000000000 ____D C:\Users\Specu\AppData\LocalLow\uTorrent

2020-01-21 13:50 - 2020-01-21 13:50 - 000000781 _____ C:\Users\Specu\Desktop\Banished.lnk

2020-01-21 13:04 - 2020-01-21 13:04 - 002606477 _____ C:\Users\Specu\Downloads\Woosh.mp4

2020-01-17 18:14 - 2020-01-17 18:14 - 000000000 ____D C:\Crash

2020-01-17 18:00 - 2020-01-17 18:04 - 000000000 ____D C:\Users\Specu\AppData\LocalLow\Daybreak Game Company

2020-01-17 18:00 - 2020-01-17 18:00 - 000000000 ____D C:\Users\Specu\AppData\Local\SCE

2020-01-17 18:00 - 2020-01-17 18:00 - 000000000 ____D C:\Users\Specu\AppData\Local\Daybreak Game Company

2020-01-17 17:59 - 2020-01-17 18:00 - 000000000 ____D C:\WINDOWS\SysWOW64\directx

2020-01-17 17:59 - 2020-01-17 17:59 - 000000795 _____ C:\Users\Specu\Desktop\EverQuest.lnk

2020-01-17 17:59 - 2020-01-17 17:59 - 000000795 _____ C:\Users\Specu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EverQuest.lnk

2020-01-17 17:57 - 2020-01-17 17:57 - 028708816 _____ C:\Users\Specu\Downloads\EQ_setup.exe

2020-01-17 15:26 - 2020-01-17 15:26 - 000001710 _____ C:\Users\Specu\Desktop\BorderlessGaming.exe - Shortcut.lnk

2020-01-17 14:43 - 2020-01-17 14:48 - 000000774 _____ C:\Users\Public\Desktop\EverQuest.lnk

2020-01-17 14:43 - 2020-01-17 14:48 - 000000774 _____ C:\ProgramData\Desktop\EverQuest.lnk

2020-01-17 14:43 - 2020-01-17 14:43 - 000000509 _____ C:\ProgramData\Microsoft\Windows\Start Menu\EverQuest.lnk

2020-01-17 14:43 - 2020-01-17 14:43 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information

2020-01-17 14:43 - 2020-01-17 14:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EverQuest

2020-01-17 14:19 - 2020-01-17 14:19 - 000000000 ____D C:\WINDOWS\Downloaded Installations

2020-01-17 01:36 - 2020-01-17 01:36 - 000000158 _____ C:\Users\Specu\Desktop\Xbox Game bar (PC) push to talk not working in background - Microsoft Community.url

2020-01-16 09:26 - 2020-01-16 09:26 - 000000000 ____D C:\ProgramData\AVAST Software

2020-01-15 04:31 - 2020-01-15 04:31 - 025900032 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 022627840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 018020352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 009928208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe

2020-01-15 04:31 - 2020-01-15 04:31 - 008012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 007754752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 007600448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 007016448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 006520480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 005913600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 003729408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys

2020-01-15 04:31 - 2020-01-15 04:31 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 002870784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 002801152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys

2020-01-15 04:31 - 2020-01-15 04:31 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys

2020-01-15 04:31 - 2020-01-15 04:31 - 002561536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 002494464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 002473976 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 001985928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 001697280 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 001655880 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 001610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 001399096 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe

2020-01-15 04:31 - 2020-01-15 04:31 - 001330952 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 001106944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 001072952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe

2020-01-15 04:31 - 2020-01-15 04:31 - 001051664 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 001020032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000851456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe

2020-01-15 04:31 - 2020-01-15 04:31 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000678712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe

2020-01-15 04:31 - 2020-01-15 04:31 - 000646144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000571392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys

2020-01-15 04:31 - 2020-01-15 04:31 - 000542496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000432256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe

2020-01-15 04:31 - 2020-01-15 04:31 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys

2020-01-15 04:31 - 2020-01-15 04:31 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000363840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe

2020-01-15 04:31 - 2020-01-15 04:31 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys

2020-01-15 04:31 - 2020-01-15 04:31 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV1.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe

2020-01-15 04:31 - 2020-01-15 04:31 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe

2020-01-15 04:31 - 2020-01-15 04:31 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti_ci.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000162696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe

2020-01-15 04:31 - 2020-01-15 04:31 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiadss.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000127520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiadss.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000089536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe

2020-01-15 04:31 - 2020-01-15 04:31 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiatrace.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll

2020-01-15 04:31 - 2020-01-15 04:31 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll

2020-01-15 04:26 - 2020-01-15 04:26 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe

2020-01-15 04:26 - 2020-01-15 04:26 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe

2020-01-14 11:28 - 2020-01-14 11:28 - 173335791 _____ C:\Users\Specu\Downloads\eqemu_installer_files (1).zip

2020-01-13 18:49 - 2020-01-13 18:49 - 003364857 _____ C:\Users\Specu\Downloads\drive-download-20200114T004916Z-001.zip

2020-01-13 14:12 - 2020-01-13 14:12 - 173335791 _____ C:\Users\Specu\Downloads\eqemu_installer_files.zip

2020-01-13 02:12 - 2020-01-13 02:12 - 000001110 _____ C:\Users\Public\Desktop\Minecraft Launcher.lnk

2020-01-13 02:12 - 2020-01-13 02:12 - 000001110 _____ C:\ProgramData\Desktop\Minecraft Launcher.lnk

2020-01-13 02:12 - 2020-01-13 02:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft Launcher

2020-01-13 02:12 - 2020-01-13 02:12 - 000000000 ____D C:\Program Files (x86)\Minecraft Launcher

2020-01-13 02:11 - 2020-01-13 02:11 - 002306048 _____ C:\Users\Specu\Downloads\MinecraftInstaller.msi

2020-01-11 01:40 - 2020-01-11 01:40 - 001320376 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll

2020-01-11 01:40 - 2020-01-11 01:40 - 000149432 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll

2020-01-11 01:40 - 2020-01-11 01:40 - 000088200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll

2020-01-11 01:40 - 2020-01-11 01:40 - 000052152 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll

2020-01-11 01:40 - 2020-01-11 01:40 - 000031880 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamemodcontrol.exe

2020-01-11 01:37 - 2020-01-11 01:37 - 008658304 _____ () C:\Users\Specu\Downloads\XboxInstaller.exe

2020-01-09 23:34 - 2020-01-09 23:34 - 000000000 ____D C:\Users\Specu\AppData\Local\vlc

2020-01-09 23:31 - 2020-01-09 23:31 - 045638274 _____ C:\Users\Specu\Downloads\vlc-4.0.0-20200109-0832-dev-win64.exe

2020-01-08 16:21 - 2020-01-08 16:24 - 3405800914 _____ C:\Users\Specu\Downloads\trine_enchanted_edition_v2_12_build_510_Full.zip

2020-01-05 12:21 - 2020-01-05 12:21 - 000000000 ____D C:\Users\Specu\AppData\Local\Dreamdeck

2020-01-03 10:59 - 2020-01-03 10:59 - 009273847 _____ C:\Users\Specu\Downloads\Persona_5_on_my_phone.flv

2020-01-02 21:46 - 2020-01-02 21:46 - 000002312 _____ C:\Users\Specu\Desktop\7 days update error.txt

2020-01-02 14:08 - 2020-01-02 14:08 - 000000000 ____D C:\Users\Specu\Documents\ARK-Tools

2020-01-02 14:04 - 2020-01-24 02:41 - 000000000 ____D C:\Users\Specu\Documents\SparcMX Commander Data

2020-01-02 14:04 - 2020-01-15 17:45 - 000000000 ____D C:\Users\Specu\AppData\Local\SparcMX

2020-01-02 13:08 - 2020-01-02 13:08 - 039238353 _____ C:\Users\Specu\Downloads\Commander_1085-Setup.exe

2019-12-31 12:23 - 2019-12-31 12:23 - 000832455 _____ C:\Users\Specu\Downloads\ARKon.zip

2019-12-31 00:28 - 2019-12-31 00:28 - 008000936 _____ (Tim Kosse) C:\Users\Specu\Downloads\FileZilla_3.46.3_win64-setup.exe

2019-12-29 22:30 - 2019-12-29 22:30 - 000000000 ____D C:\Users\Specu\AppData\Local\SwGame

2019-12-29 22:15 - 2019-12-29 22:15 - 000001171 _____ C:\Users\Specu\Desktop\Star Wars Jedi Fallen Order.lnk

2019-12-29 22:15 - 2019-12-29 22:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Star Wars Jedi Fallen Order

2019-12-29 01:06 - 2019-12-29 01:06 - 000011346 _____ C:\Users\Specu\Documents\Testers.xlsx

2019-12-28 22:29 - 2019-12-28 22:29 - 005312793 _____ C:\Users\Specu\Downloads\pairing_utility_1.00.009 (2).zip

2019-12-28 21:29 - 2019-12-28 21:29 - 005312793 _____ C:\Users\Specu\Downloads\pairing_utility_1.00.009 (1).zip

2019-12-27 09:44 - 2019-12-27 09:44 - 034062918 _____ C:\Users\Specu\Downloads\Alex & Evelyn Opening Some Gifts.mp4

2019-12-26 18:42 - 2019-12-26 18:42 - 015466104 _____ (Logitech, Inc.) C:\Users\Specu\Downloads\FirmwareUpdateTool_1.2.169_x64.exe

2019-12-26 18:33 - 2019-12-26 18:34 - 122315088 _____ (Logitech Inc.) C:\Users\Specu\Downloads\LGS_8.82.151_x64_Logitech.exe

2019-12-26 18:33 - 2019-12-26 18:33 - 112859648 _____ (Logitech Inc.) C:\Users\Specu\Downloads\LGS_9.00.42_x86_Logitech.exe

2019-12-26 11:46 - 2020-01-22 08:19 - 000016714 _____ C:\Users\Specu\Desktop\youtube.luac

2019-12-25 16:35 - 2019-12-25 16:35 - 000000000 ____D C:\ProgramData\Ubisoft

2019-12-25 15:57 - 2019-12-25 15:57 - 000000137 _____ C:\Users\Specu\Desktop\Star Trek Bridge Crew.url

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-01-24 10:34 - 2019-05-26 02:13 - 000000000 ____D C:\ProgramData\Autodesk

2020-01-24 10:30 - 2019-05-26 02:13 - 000000000 ____D C:\Users\Specu\AppData\Roaming\Autodesk

2020-01-24 10:30 - 2019-03-18 22:52 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files

2020-01-24 10:30 - 2019-03-18 22:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft

2020-01-24 10:29 - 2019-03-28 18:45 - 000000000 ____D C:\Users\Specu\AppData\LocalLow\Mozilla

2020-01-24 10:28 - 2019-04-02 22:32 - 000000000 ____D C:\Users\Specu\AppData\Roaming\uTorrent

2020-01-24 09:26 - 2019-03-27 19:33 - 000000000 ____D C:\Users\Specu\Desktop\Pics

2020-01-24 09:20 - 2019-12-04 10:15 - 000001893 _____ C:\Users\Public\Desktop\NordVPN.lnk

2020-01-24 09:20 - 2019-12-04 10:15 - 000001893 _____ C:\ProgramData\Desktop\NordVPN.lnk

2020-01-24 09:20 - 2019-08-29 20:36 - 000000000 ____D C:\WINDOWS\system32\SleepStudy

2020-01-24 09:20 - 2019-03-29 06:40 - 000000000 ____D C:\Users\Specu\AppData\Local\NordVPN

2020-01-24 08:42 - 2019-11-28 12:32 - 000000000 ____D C:\WINDOWS\system32\Tasks\McAfee

2020-01-24 06:32 - 2019-03-27 18:55 - 000000000 ____D C:\Users\Specu\AppData\Roaming\Discord

2020-01-24 03:16 - 2019-03-18 22:52 - 000000000 ___HD C:\Program Files\WindowsApps

2020-01-24 03:16 - 2019-03-18 22:52 - 000000000 ____D C:\WINDOWS\AppReadiness

2020-01-24 02:48 - 2019-08-29 20:45 - 001768746 _____ C:\WINDOWS\system32\PerfStringBackup.INI

2020-01-24 02:48 - 2019-08-29 03:47 - 000784510 _____ C:\WINDOWS\system32\perfh015.dat

2020-01-24 02:48 - 2019-08-29 03:47 - 000152552 _____ C:\WINDOWS\system32\perfc015.dat

2020-01-24 02:48 - 2019-03-18 22:50 - 000000000 ____D C:\WINDOWS\INF

2020-01-24 02:44 - 2019-03-27 17:13 - 000000000 ____D C:\ProgramData\NVIDIA

2020-01-24 02:42 - 2019-08-29 20:42 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT

2020-01-24 02:42 - 2019-03-28 18:45 - 000000000 ____D C:\Program Files\Mozilla Firefox

2020-01-24 02:42 - 2019-03-28 18:45 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

2020-01-24 02:42 - 2019-03-27 17:53 - 000000000 ____D C:\Users\Specu\AppData\Local\Oculus

2020-01-24 02:41 - 2019-09-03 11:21 - 000017600 _____ C:\ProgramData\NVDisplayContainerWatchdog.log_backup1

2020-01-24 02:41 - 2019-09-03 11:21 - 000013860 _____ C:\ProgramData\NVDisplay.ContainerLocalSystem.log_backup1

2020-01-24 02:41 - 2019-09-03 11:21 - 000008497 _____ C:\ProgramData\DisplaySessionContainer1.log_backup1

2020-01-24 02:41 - 2019-04-15 18:22 - 000000000 ____D C:\Users\Specu\AppData\Roaming\FileZilla

2020-01-24 02:41 - 2019-03-18 22:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI

2020-01-23 20:32 - 2019-03-27 21:47 - 000000000 ____D C:\Users\Specu\AppData\Local\D3DSCache

2020-01-23 14:53 - 2019-06-11 20:40 - 000000000 ____D C:\Users\Specu\AppData\Local\BitTorrentHelper

2020-01-23 12:39 - 2019-04-02 21:14 - 000000000 ____D C:\Users\Specu\AppData\Local\babl-0.1

2020-01-23 12:12 - 2019-04-08 11:38 - 000000000 ____D C:\Users\Specu\AppData\Local\CrashDumps

2020-01-23 10:29 - 2019-04-07 13:15 - 000000000 ____D C:\Users\Specu\AppData\Local\gtk-2.0

2020-01-22 22:42 - 2019-03-28 18:45 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk

2020-01-22 15:15 - 2019-03-27 17:59 - 000000000 ____D C:\Program Files\Oculus

2020-01-22 14:52 - 2019-11-18 17:06 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk

2020-01-22 02:37 - 2019-10-02 18:48 - 000000000 ____D C:\Users\Specu\AppData\Local\ElevatedDiagnostics

2020-01-21 23:21 - 2019-08-15 14:27 - 000000000 ____D C:\Users\Specu\AppData\Roaming\audacity

2020-01-20 23:40 - 2019-03-28 10:44 - 000000000 ____D C:\Users\Specu\AppData\Roaming\steelseries-engine-3-client

2020-01-19 19:09 - 2019-03-27 17:11 - 000000000 ____D C:\Users\Specu\AppData\Local\Packages

2020-01-19 01:39 - 2019-08-29 20:42 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1374689461-2237827185-1603796741-1001

2020-01-19 01:39 - 2019-08-29 03:59 - 000002374 _____ C:\Users\Specu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk

2020-01-19 01:39 - 2019-03-27 17:12 - 000000000 ___RD C:\Users\Specu\OneDrive

2020-01-18 23:37 - 2019-03-27 18:05 - 000000000 ____D C:\Users\Specu\AppData\Roaming\OculusClient

2020-01-18 16:37 - 2019-03-18 22:37 - 000032768 _____ C:\WINDOWS\system32\config\ELAM

2020-01-18 15:01 - 2019-04-06 13:47 - 000000000 ____D C:\Program Files\Microsoft Office

2020-01-18 10:18 - 2019-03-27 17:12 - 000000000 ____D C:\Users\Specu\AppData\Local\PlaceholderTileLogoFolder

2020-01-18 02:14 - 2019-07-29 14:35 - 000000000 ____D C:\Users\Specu\AppData\Roaming\.minecraft

2020-01-17 22:49 - 2019-10-29 08:17 - 000002246 ____H C:\Users\Specu\Documents\Default.rdp

2020-01-17 20:24 - 2019-10-02 01:58 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData

2020-01-17 20:24 - 2019-10-02 01:58 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData

2020-01-17 17:59 - 2017-10-06 01:00 - 000000000 ____D C:\Temp

2020-01-17 14:19 - 2019-03-27 17:11 - 000000000 ____D C:\Users\Specu\AppData\Local\VirtualStore

2020-01-16 12:02 - 2019-04-25 15:19 - 000000000 ____D C:\ProgramData\boost_interprocess

2020-01-16 11:50 - 2019-03-27 18:04 - 000000000 ____D C:\Users\Specu\AppData\Roaming\Oculus

2020-01-16 08:43 - 2019-11-25 00:51 - 000000000 ____D C:\ProgramData\Origin

2020-01-16 08:30 - 2019-03-27 17:48 - 000000000 ____D C:\Users\Specu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam

2020-01-16 08:06 - 2019-07-25 11:12 - 000000000 ____D C:\Users\Specu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Games

2020-01-15 14:25 - 2019-08-29 20:36 - 000538408 _____ C:\WINDOWS\system32\FNTCACHE.DAT

2020-01-15 14:24 - 2019-03-18 22:52 - 000000000 ___SD C:\WINDOWS\system32\UNP

2020-01-15 14:24 - 2019-03-18 22:52 - 000000000 ____D C:\WINDOWS\SystemResources

2020-01-15 14:24 - 2019-03-18 22:52 - 000000000 ____D C:\WINDOWS\ShellExperiences

2020-01-15 14:24 - 2019-03-18 22:52 - 000000000 ____D C:\WINDOWS\bcastdvr

2020-01-15 04:35 - 2019-03-27 17:19 - 000000000 ____D C:\WINDOWS\system32\MRT

2020-01-15 04:33 - 2019-03-27 17:19 - 120202352 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

2020-01-15 04:33 - 2019-03-18 22:37 - 000000000 ____D C:\WINDOWS\CbsTemp

2020-01-11 13:31 - 2019-11-17 13:59 - 000001440 _____ C:\Users\Specu\Desktop\Roblox Player.lnk

2020-01-11 13:31 - 2019-04-18 18:55 - 000000000 ____D C:\Users\Specu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox

2020-01-11 01:41 - 2019-04-08 00:42 - 000000000 ____D C:\Users\Specu\AppData\Local\NVIDIA Corporation

2020-01-11 01:41 - 2019-03-27 17:27 - 000000000 ____D C:\ProgramData\Packages

2020-01-10 16:13 - 2019-03-27 17:11 - 000000000 __RHD C:\Users\Public\AccountPictures

2020-01-10 15:51 - 2019-03-18 22:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared

2020-01-07 05:53 - 2019-05-16 23:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google

2020-01-06 03:10 - 2019-03-27 17:57 - 000000000 ____D C:\Users\Specu\Documents\My Games

2020-01-06 03:09 - 2019-03-27 17:58 - 000000000 ____D C:\ProgramData\Package Cache

2020-01-03 21:29 - 2019-04-03 19:43 - 000000000 ____D C:\Users\Specu\AppData\Local\Battle.net

2020-01-03 02:18 - 2019-04-23 06:48 - 000000000 ____D C:\Users\Specu\AppData\Roaming\A Township Tale

2020-01-02 11:44 - 2019-04-23 06:27 - 000000000 ____D C:\Users\Specu\AppData\Roaming\Alta Launcher

2020-01-02 11:18 - 2019-03-29 06:40 - 000000000 ____D C:\ProgramData\NordVpn

2020-01-02 11:16 - 2019-08-29 03:59 - 000000000 ____D C:\Users\Specu

2020-01-01 19:52 - 2019-12-22 21:57 - 000001009 _____ C:\Users\Public\Desktop\FileZilla Client.lnk

2020-01-01 19:52 - 2019-12-22 21:57 - 000001009 _____ C:\ProgramData\Desktop\FileZilla Client.lnk

2020-01-01 19:52 - 2019-04-15 18:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client

2019-12-28 23:45 - 2019-09-02 10:55 - 000000000 ____D C:\Users\Specu\Documents\My PSP Files

2019-12-28 22:50 - 2019-06-23 19:07 - 000018960 _____ (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LNonPnP.sys

2019-12-28 21:45 - 2019-06-23 19:07 - 000000000 ____D C:\Program Files\Logitech

2019-12-28 21:45 - 2019-03-28 10:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech

2019-12-28 21:45 - 2019-03-28 10:40 - 000000000 ____D C:\ProgramData\LogiShrd

2019-12-28 21:45 - 2019-03-28 10:39 - 000000000 ____D C:\Users\Specu\AppData\Roaming\Logishrd

2019-12-25 18:25 - 2019-04-20 08:31 - 000000000 ____D C:\Users\Specu\AppData\Local\Ubisoft Game Launcher

==================== Files in the root of some directories ========

2019-06-06 11:57 - 2019-11-07 09:46 - 000034151 _____ () C:\Users\Specu\AppData\Roaming\VoiceMeeterBananaDefault.xml

2019-05-29 13:30 - 2019-05-29 16:05 - 000004595 _____ () C:\Users\Specu\AppData\Roaming\VoiceMeeterDefault.xml

2019-05-29 16:57 - 2019-05-29 16:57 - 000059750 _____ () C:\Users\Specu\AppData\Roaming\VoiceMeeterPotatoDefault.xml

2019-06-14 01:50 - 2019-06-14 01:50 - 000000000 _____ () C:\Users\Specu\AppData\Local\oobelibMkey.log

2020-01-23 10:29 - 2020-01-23 10:29 - 000016091 _____ () C:\Users\Specu\AppData\Local\recently-used.xbel

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 22-01-2020 01

Ran by Specu (24-01-2020 10:39:27)

Running from C:\Users\Specu\Desktop

Windows 10 Home Version 1909 18363.592 (X64) (2019-08-30 02:42:55)

Boot Mode: Normal

==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-1374689461-2237827185-1603796741-500 - Administrator - Disabled)

alexj (S-1-5-21-1374689461-2237827185-1603796741-1004 - Limited - Enabled)

DefaultAccount (S-1-5-21-1374689461-2237827185-1603796741-503 - Limited - Disabled)

Evely (S-1-5-21-1374689461-2237827185-1603796741-1003 - Limited - Disabled)

Guest (S-1-5-21-1374689461-2237827185-1603796741-501 - Limited - Disabled)

paleg (S-1-5-21-1374689461-2237827185-1603796741-1002 - Limited - Disabled)

Sal_Test (S-1-5-21-1374689461-2237827185-1603796741-1005 - Limited - Enabled) => C:\Users\Sal_Test

Specu (S-1-5-21-1374689461-2237827185-1603796741-1001 - Administrator - Enabled) => C:\Users\Specu

WDAGUtilityAccount (S-1-5-21-1374689461-2237827185-1603796741-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AV: McAfee VirusScan (Enabled - Up to date) {F682A51C-4EAD-6A3A-F460-B9C1D4A2DB09}

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AS: Webroot SecureAnywhere (Enabled - Up to date) {64F1FE45-DF1C-2AB5-FED4-8B6E025BE7F5}

FW: McAfee Firewall (Enabled) {CEB92439-04C2-6B62-DF3F-10F42A719C72}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)

Adobe Photoshop CC 2019 (HKLM-x32\...\PHSP_20_0) (Version: 20.0.0 - Adobe Systems Incorporated)

Alta Launcher 0.6.42 (HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\26092a83-3a12-596a-88ed-3c3b3eb90c1b) (Version: 0.6.42 - Alta)

Ancient Weapon Sounds (HKLM-x32\...\{E00A5837-482C-4DCE-B4CC-D16B343374E1}) (Version: 2.1.1 - Screaming Bee)

Any Video Converter 6.3.6 (HKLM-x32\...\Any Video Converter) (Version: 6.3.6 - Anvsoft)

AORUS ENGINE (HKLM-x32\...\AORUS ENGINE_is1) (Version: 1.6.5.0 - GIGABYTE Technology Co.,Inc.)

Ashampoo Burning Studio 6 FREE v.6.83 (HKLM-x32\...\Ashampoo Burning Studio 6 FREE_is1) (Version: 6.8.3 - Ashampoo GmbH & Co. KG)

Audacity 2.3.2 (HKLM-x32\...\Audacity_is1) (Version: 2.3.2 - Audacity Team)

Autodesk Content Service (HKLM-x32\...\{086F9A69-CD39-4893-A9FB-D3A0634CE3F7}) (Version: 2.0.90 - Autodesk)

Autodesk Inventor Fusion plug-in for AutoCAD 2012 (HKLM\...\{EAB3AC1A-68FF-486B-9C6B-E48EBB4B05CC}) (Version: 0.0.1.138 - Autodesk) Hidden

Autodesk Inventor Fusion plug-in for AutoCAD 2012 (HKLM\...\Autodesk Inventor Fusion plug-in for AutoCAD 2012) (Version: 0.0.1.138 - Autodesk)

Autodesk Inventor Fusion plug-in language pack for AutoCAD 2012 (HKLM\...\{E552C39C-C70E-464F-9733-8311331BDD90}) (Version: 0.0.1.138 - Autodesk) Hidden

Autodesk Material Library 2012 (HKLM-x32\...\{8F0837C2-EE09-4903-88F3-1976FE7FFF4E}) (Version: 2.5.0.8 - Autodesk)

Autodesk Material Library Base Resolution Image Library 2012 (HKLM-x32\...\{65420DC9-306E-4371-905F-F4DC3B418E52}) (Version: 2.5.0.8 - Autodesk)

Backup and Sync from Google (HKLM\...\{7B473CF8-CE4F-4AE1-A86D-CFBDDCC85FAF}) (Version: 3.47.8667.1399 - Google, Inc.)

Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)

Creatures of Darkness (HKLM-x32\...\{573F9269-A022-4C6F-97BD-CF1316A76369}) (Version: 3.3.1 - Screaming Bee)

Deep Space Voices (HKLM-x32\...\{67CEC218-B250-4B4C-B23F-A597EC8DB153}) (Version: 3.3.1 - Screaming Bee)

Destiny 2 (HKLM-x32\...\Destiny 2) (Version: - Blizzard Entertainment)

Discord (HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Discord) (Version: 0.0.305 - Discord Inc.)

Epic Games Launcher (HKLM-x32\...\{A398FCC0-8E8B-409E-90E9-ACF4671633F2}) (Version: 1.1.183.0 - Epic Games, Inc.)

EverQuest (HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\DG0-EverQuest) (Version: - Sony Online Entertainment)

EverQuest (HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\DGC-EverQuest) (Version: 1.0.3.195 - Daybreak Game Company)

EverQuest Titanium (HKLM-x32\...\{32714287-4234-412A-877B-D33AFABFDE2B}) (Version: 1.00.000 - )

Fantasy Voice Pack (HKLM-x32\...\{5F4C3E1F-87FC-41BD-B219-E4156BBD8AE5}) (Version: 1.3.2 - Screaming Bee)

FARO LS 1.1.406.58 (HKLM-x32\...\{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}) (Version: 4.6.58.2 - FARO Scanner Production)

FARO LS 1.1.501.0 (64bit) (HKLM-x32\...\{8A470330-70B2-49AD-86AF-79885EF9898A}) (Version: 5.1.0.30630 - FARO Scanner Production)

FileZilla Client 3.46.3 (HKLM-x32\...\FileZilla Client) (Version: 3.46.3 - Tim Kosse)

GIMP 2.10.8 (HKLM\...\GIMP-2_is1) (Version: 2.10.8 - The GIMP Team)

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.130 - Google LLC)

Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.421 - Google LLC) Hidden

Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 25.20.100.6373 - Intel Corporation)

Java 8 Update 231 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180231F0}) (Version: 8.0.2310.11 - Oracle Corporation)

Kast 2.1.10 (HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\d06bcc57-f338-548b-9321-2ecf1ddd47ff) (Version: 2.1.10 - Evasyst, Inc.)

Kast 2.4.2 (HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\{d06bcc57-f338-548b-9321-2ecf1ddd47ff}) (Version: 2.4.2 - Evasyst, Inc.)

Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden

League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)

Logitech Gaming Software 9.02 (HKLM\...\Logitech Gaming Software) (Version: 9.02.65 - Logitech Inc.)

Logitech Options (HKLM\...\LogiOptions) (Version: 7.10.3 - Logitech)

Logitech SetPoint 6.69 (HKLM\...\sp6) (Version: 6.69.126 - Logitech)

LOOT version 0.14.3 (HKLM-x32\...\{BF634210-A0D4-443F-A657-0DCE38040374}_is1) (Version: 0.14.3 - LOOT Team)

McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.57 - McAfee, LLC.)

McAfee® Total Protection (HKLM-x32\...\MSC) (Version: 16.0 R23 - McAfee, LLC.)

Microsoft Office 365 ProPlus - en-us (HKLM\...\O365ProPlusRetail - en-us) (Version: 16.0.12325.20298 - Microsoft Corporation)

Microsoft OneDrive (HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\OneDriveSetup.exe) (Version: 19.222.1110.0006 - Microsoft Corporation)

Microsoft Server Speech Platform Runtime (x86) (HKLM-x32\...\{22CB8ED7-DF57-4864-BD04-F63B9CE4B494}) (Version: 11.0.7400.345 - Microsoft Corporation)

Microsoft Server Speech Recognition Language - TELE (en-US) (HKLM-x32\...\{66D57636-BD4B-402F-9E7D-5E89C28C8136}) (Version: 11.0.7400.335 - Microsoft Corporation)

Microsoft Teams (HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\Teams) (Version: 1.2.00.3961 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)

Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)

Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (HKLM-x32\...\{7e9fae12-5bbf-47fb-b944-09c49e75c061}) (Version: 14.15.26706.0 - Microsoft Corporation)

Minecraft Launcher (HKLM-x32\...\{810F1419-7760-402E-8772-B4054FAA2B72}) (Version: 1.0.0.0 - Mojang)

MorphVOX Pro (HKLM-x32\...\{1DDBB040-3BEB-4057-90BB-B38B5E081D1B}) (Version: 4.3.21 - Screaming Bee)

Mozilla Firefox 72.0.2 (x64 en-US) (HKLM\...\Mozilla Firefox 72.0.2 (x64 en-US)) (Version: 72.0.2 - Mozilla)

Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 66.0.2 - Mozilla)

NordVPN (HKLM-x32\...\{001BBDAA-7E33-4D56-BD5E-E149FC038555}) (Version: 6.26.14 - NordVPN) Hidden

NordVPN (HKLM-x32\...\NordVPN 6.26.14) (Version: 6.26.14 - NordVPN)

NordVPN network TAP (HKLM-x32\...\{97DEC5D6-2BE9-45BB-BFC5-274B851B486B}) (Version: 1.0.1 - NordVPN)

Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.7.1 - Notepad++ Team)

NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden

NVIDIA GeForce Experience 3.20.0.118 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.0.118 - NVIDIA Corporation)

NVIDIA Graphics Driver 436.15 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 436.15 - NVIDIA Corporation)

NVIDIA HD Audio Driver 1.3.38.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.21 - NVIDIA Corporation)

NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)

NVIDIA PhysX System Software 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)

NVIDIA USBC Driver 1.38.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.38.831.832 - NVIDIA Corporation)

OBS Studio (HKLM-x32\...\OBS Studio) (Version: 23.1.0 - OBS Project)

Oculus (HKLM\...\Oculus) (Version: <3 - Facebook Technologies, LLC)

Oculus Tray Tool v0.86.0 (HKLM-x32\...\Oculus Tray Tool_is1) (Version: - )

Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.12325.20288 - Microsoft Corporation) Hidden

Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.12325.20298 - Microsoft Corporation) Hidden

Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.12325.20288 - Microsoft Corporation) Hidden

OpenVR Input Emulator (HKLM-x32\...\OpenVRInputEmulator) (Version: - )

Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)

PhotoScissors 4.0 (HKLM\...\{664FCCAE-8187-4EC5-B191-758C040C999C}_is1) (Version: - teorex)

Plex Media Server (HKLM-x32\...\{BB322A94-F91E-41B6-9780-8B98BB268220}) (Version: 1.16.1488 - Plex, Inc.) Hidden

Plex Media Server (HKLM-x32\...\{da642874-5283-4077-8d51-337cb2003a09}) (Version: 1.16.5.1488 - Plex, Inc.)

PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)

PuTTY release 0.73 (64-bit) (HKLM\...\{44F7642C-AB7E-4468-B028-E8D08A0CBB0E}) (Version: 0.73.0.0 - Simon Tatham)

Roblox Player for Specu (HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\roblox-player) (Version: - Roblox Corporation)

Sci-Fi Voice Pack (HKLM-x32\...\{BC038C91-D3C6-4E43-8439-B65976FE7937}) (Version: 1.3.1 - Screaming Bee)

SketchUp Import for AutoCAD 2014 (HKLM-x32\...\{644E9589-F73A-49A4-AC61-A953B9DE5669}) (Version: 1.1.0 - Autodesk)

Skype version 8.53 (HKLM-x32\...\Skype_is1) (Version: 8.53 - Skype Technologies S.A.)

Spooky Sounds (HKLM-x32\...\{F71EBF86-9A73-44C0-A674-55FA3E4A8428}) (Version: 2.1.1 - Screaming Bee)

Star Wars Jedi Fallen Order (HKLM-x32\...\Star Wars Jedi Fallen Order_is1) (Version: - )

Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)

SteelSeries Engine 3.13.10 (HKLM\...\SteelSeries Engine 3) (Version: 3.13.10 - SteelSeries ApS)

Stopping Plex (HKLM-x32\...\{991CB31B-B621-4F6B-9009-62F4435B8420}) (Version: 1.16.1488 - Plex, Inc.) Hidden

Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.2.0.3961 - Microsoft Corporation)

TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.3.0 - TeamSpeak Systems GmbH)

TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.1.3937 - TeamViewer)

Twitch (HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)

Twitch Leecher 1.7 (HKLM\...\{66B757A2-0906-4DDE-BDF6-AD9EC73A7F91}) (Version: 1.7.0.0 - Franiac) Hidden

Twitch Leecher 1.7 (HKLM-x32\...\{d1c2c779-f1ef-41e0-926a-443b289eaefd}) (Version: 1.7.0.0 - Franiac)

UE4 Prerequisites (x64) (HKLM\...\{36EAD5CF-44EF-4FCF-8BE1-D96C4835D7A4}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden

UE4 Prerequisites (x64) (HKLM-x32\...\{2890ae6b-90e9-448d-b3e6-97e43c21e2fd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden

Uplay (HKLM-x32\...\Uplay) (Version: 85.1 - Ubisoft)

VBCABLE, The Virtual Audio Cable (HKLM\...\VB:VBCABLE {87459874-1236-4469}) (Version: - VB-Audio Software)

VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)

Voicemeeter, The Virtual Mixing Console (HKLM-x32\...\VB:Voicemeeter {17359A74-1236-5467}) (Version: - VB-Audio Software)

Vortex (HKLM\...\57979c68-f490-55b8-8fed-8b017a5af2fe) (Version: 1.0.3 - Black Tree Gaming Ltd.)

Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden

Warframe (HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\422772752647323649) (Version: - )

WinDirStat 1.1.2 (HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\WinDirStat) (Version: - )

WinRAR 4.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.00.0 - win.rar GmbH)

Your Software Deals (HKLM-x32\...\Your Software Deals_is1) (Version: - Ashampoo GmbH & Co. KG) <==== ATTENTION

Packages:

=========

ASTRONEER -> C:\Program Files\WindowsApps\SystemEraSoftworks.29415440E1269_1.8.64.0_x64__ftk5pbg2rayv2 [2020-01-18] (System Era Softworks)

DirectX -> C:\Program Files\WindowsApps\Microsoft.DirectXRuntime_9.29.952.0_x64__8wekyb3d8bbwe [2020-01-11] (Microsoft Corporation)

DirectX -> C:\Program Files\WindowsApps\Microsoft.DirectXRuntime_9.29.952.0_x86__8wekyb3d8bbwe [2020-01-11] (Microsoft Corporation)

Fitbit Coach -> C:\Program Files\WindowsApps\Fitbit.FitbitCoach_4.4.133.0_x64__6mqt6hf9g46tw [2019-03-27] (Fitbit)

Gaming Services -> C:\Program Files\WindowsApps\Microsoft.GamingServices_1.35.26001.0_x64__8wekyb3d8bbwe [2020-01-11] (Microsoft Corporation)

Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_41.1788.50991.0_x86__8xx8rvfyw5nnt [2019-08-22] (Instagram)

Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-03-27] (Microsoft Corporation) [MS Ad]

Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-03-27] (Microsoft Corporation) [MS Ad]

Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.34.20074.0_x64__8wekyb3d8bbwe [2020-01-14] (Microsoft Corporation) [MS Ad]

Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2019-12-18] (Microsoft Studios) [MS Ad]

Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.14.105.0_x64__8wekyb3d8bbwe [2019-12-19] (Microsoft Studios)

MSN Weather -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-19] (Microsoft Corporation) [MS Ad]

MultiTimer -> C:\Program Files\WindowsApps\5915AnomalyApps.MultiTimer_3.0.67.0_x64__qvqx9kmshef6y [2019-09-04] (Anomaly Apps) [MS Ad]

NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.956.0_x64__56jybvy8sckqj [2019-10-01] (NVIDIA Corp.)

Photos Add-on -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2019-05-12] (Microsoft Corporation)

Photos Media Engine Add-on -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-09-06] (Microsoft Corporation)

PhotoScape X -> C:\Program Files\WindowsApps\MooiiTech.PhotoScapeX_4.0.2.0_x64__f5eddttrpssna [2020-01-04] (Mooii Tech)

Phototastic Collage -> C:\Program Files\WindowsApps\ThumbmunkeysLtd.PhototasticCollage_2.2.16.0_x64__nfy108tqq3p12 [2019-09-26] (Thumbmunkeys Ltd) [MS Ad]

Riptide GP: Renegade -> C:\Program Files\WindowsApps\VectorUnit.RiptideGPRenegade_1.1.5.1002_x64__hvbhrzr8672s2 [2020-01-11] (Vector Unit)

Sea of Thieves -> C:\Program Files\WindowsApps\Microsoft.SeaofThieves_2.89.8738.2_x64__8wekyb3d8bbwe [2020-01-15] (ms-resource:PublisherDisplayName)

Xbox (Beta) -> C:\Program Files\WindowsApps\Microsoft.GamingApp_2001.1001.4.0_x64__8wekyb3d8bbwe [2020-01-14] (Microsoft Corporation) [Startup Task]

Xbox One SmartGlass -> C:\Program Files\WindowsApps\Microsoft.XboxOneSmartGlass_2.2.1702.2004_x64__8wekyb3d8bbwe [2019-12-24] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1374689461-2237827185-1603796741-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Specu\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19029.3\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-1374689461-2237827185-1603796741-1001_Classes\CLSID\{62634D95-960B-4834-8E71-A70408AD8FD9}\InprocServer32 -> C:\Users\Specu\AppData\Local\Google\Update\1.3.34.7\psuser_64.dll => No File

CustomCLSID: HKU\S-1-5-21-1374689461-2237827185-1603796741-1001_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB}\localserver32 -> D:\Program Files\AutoCAD\AutoCAD 2014\acad.exe => No File

CustomCLSID: HKU\S-1-5-21-1374689461-2237827185-1603796741-1001_Classes\CLSID\{6D7AE628-FF41-4CD3-91DD-34825BB1A251}\localserver32 -> D:\Program Files\Autodesk\AutoCAD 2012 - English\acad.exe /Automation => No File

CustomCLSID: HKU\S-1-5-21-1374689461-2237827185-1603796741-1001_Classes\CLSID\{7DE1BE5C-CEBA-4F1D-ACBC-9CE11EE9A2A1}\localserver32 -> D:\Program Files\AutoCAD\AutoCAD 2014\acad.exe /Automation => No File

CustomCLSID: HKU\S-1-5-21-1374689461-2237827185-1603796741-1001_Classes\CLSID\{86508D42-E5D7-4D10-9C6F-D427AEEB85B5}\InprocServer32 -> C:\Users\Specu\AppData\Local\Google\Update\1.3.34.11\psuser_64.dll => No File

CustomCLSID: HKU\S-1-5-21-1374689461-2237827185-1603796741-1001_Classes\CLSID\{B77E471C-FBF3-4CB5-880F-D7528AD4B349}\localserver32 -> D:\Program Files\Autodesk\AutoCAD 2012 - English\acad.exe /Automation => No File

CustomCLSID: HKU\S-1-5-21-1374689461-2237827185-1603796741-1001_Classes\CLSID\{BD0DEB94-63DB-4392-9420-6EEE05094B1F}\localserver32 -> D:\Program Files\AutoCAD\AutoCAD 2014\acad.exe /Automation => No File

CustomCLSID: HKU\S-1-5-21-1374689461-2237827185-1603796741-1001_Classes\CLSID\{C92FB640-AD4D-498A-9979-A51A2540C977}\localserver32 -> D:\Program Files\Autodesk\AutoCAD 2012 - English\acad.exe /Automation => No File

CustomCLSID: HKU\S-1-5-21-1374689461-2237827185-1603796741-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Specu\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19029.3\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-1374689461-2237827185-1603796741-1001_Classes\CLSID\{D70E31AD-2614-49F2-B0FC-ACA781D81F3E}\localserver32 -> D:\Program Files\Autodesk\AutoCAD 2012 - English\acad.exe => No File

CustomCLSID: HKU\S-1-5-21-1374689461-2237827185-1603796741-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> D:\Program Files\Autodesk\AutoCAD 2012 - English\acadficn.dll => No File

CustomCLSID: HKU\S-1-5-21-1374689461-2237827185-1603796741-1001_Classes\CLSID\{EF076C91-DC9E-43E3-84ED-3D219E065A4F}\InprocServer32 -> C:\Users\Specu\AppData\Local\Google\Update\1.3.35.302\psuser_64.dll => No File

ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-12-22] (Google LLC -> Google)

ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-12-22] (Google LLC -> Google)

ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-12-22] (Google LLC -> Google)

ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => D:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]

ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => D:\Program Files\Notepad++\NppShell_06.dll [2019-05-19] (Notepad++ -> )

ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-12-22] (Google LLC -> Google)

ContextMenuHandlers1: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => C:\Program Files\McAfee\MSC\McCtxMenuFrmWrk.dll [2019-12-03] (McAfee, LLC. -> McAfee, LLC.)

ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2011-03-02] () [File not signed]

ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext32.dll [2011-03-02] () [File not signed]

ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => D:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]

ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-12-22] (Google LLC -> Google)

ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2011-03-02] () [File not signed]

ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext32.dll [2011-03-02] () [File not signed]

ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => -> No File

ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_9f1b2c8a203d6fe0\nvshext.dll [2019-08-25] (NVIDIA Corporation -> NVIDIA Corporation)

ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => D:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]

ContextMenuHandlers6: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => C:\Program Files\McAfee\MSC\McCtxMenuFrmWrk.dll [2019-12-03] (McAfee, LLC. -> McAfee, LLC.)

ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2011-03-02] () [File not signed]

ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext32.dll [2011-03-02] () [File not signed]

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Software Deals.lnk -> C:\ProgramData\Ashampoo\YourDeals.exe () -> hxxp://linktarget.ashampoo.com/linktarget/?target=marketplace&edition=eid=4311&utm_medium=desktop&x-pos=Metro

==================== Loaded Modules (Whitelisted) =============

2019-10-15 22:32 - 2019-10-15 22:32 - 000262656 _____ () [File not signed] D:\Program Files\Nord VPN\NordVPN\x86\Liberation.Native.Firewall.dll

2019-03-27 23:35 - 2011-03-02 11:40 - 000164864 _____ () [File not signed] D:\Program Files\WinRAR\rarext.dll

2018-11-09 15:33 - 2018-11-09 15:33 - 002146304 _____ (Holtek Semiconductor Inc.) [File not signed] C:\Program Files\SteelSeries\SteelSeries Engine 3\HIDDLL.dll

2018-11-09 15:33 - 2018-11-09 15:33 - 002284032 _____ (Holtek) [File not signed] C:\Program Files\SteelSeries\SteelSeries Engine 3\ISPDLL.dll

2019-03-28 00:09 - 2019-02-21 10:00 - 000078336 _____ (Igor Pavlov) [File not signed] D:\Program Files\7-Zip\7-zip.dll

2018-04-06 12:29 - 2018-04-06 12:29 - 002286747 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\LIBEAY32.dll

2018-04-06 12:29 - 2018-04-06 12:29 - 000416627 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\ssleay32.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:6DAA43DB [408]

AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [237]

AlternateDataStreams: C:\Users\Specu\AppData\Local\Temp:$DATA [34]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ModuleCoreService => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcapexe => ""=""

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ModuleCoreService => ""="Service"

==================== Association (Whitelisted) =================

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\.DEFAULT\Software\Classes\exefile: "%1" %* <==== ATTENTION

HKU\.DEFAULT\Software\Classes\.exe: exefile => "%1" %* <==== ATTENTION

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\Software\Classes\exefile: "%1" %* <==== ATTENTION

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\Software\Classes\.exe: exefile => "%1" %* <==== ATTENTION

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\Software\Classes\.scr: AutoCADScriptFile => C:\WINDOWS\system32\notepad.exe "%1"

==================== Internet Explorer trusted/restricted ==========

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\gtxcp.uk -> hxxps://gtxcp.uk

IE trusted site: HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\gtxgaming.co.uk -> hxxps://www.gtxgaming.co.uk

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-09-15 01:31 - 2018-09-15 01:31 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files\Oculus\Support\oculus-runtime;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\PuTTY\

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\Control Panel\Desktop\\Wallpaper ->

DNS Servers: 192.168.1.1

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: ) (EnableLUA: 1)

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )

Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"

HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"

HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"

HKLM\...\StartupApproved\Run32: => "WRSVC"

HKLM\...\StartupApproved\Run32: => "TeamsMachineInstaller"

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\StartupApproved\StartupFolder: => "GIGABYTE AORUS GRAPHICS ENGINE.lnk"

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\StartupApproved\Run: => "EpicGamesLauncher"

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\StartupApproved\Run: => "Plex Media Server"

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\StartupApproved\Run: => "Skype for Desktop"

HKU\S-1-5-21-1374689461-2237827185-1603796741-1001\...\StartupApproved\Run: => "Lync"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{184F84B9-D14C-4FAB-9869-DA19FA4C7AAF}] => (Allow) D:\Program Files\Steam\steamapps\common\Depth\Binaries\Win32\DepthGame.exe (Digital Confectioners, Ltd.) [File not signed]

FirewallRules: [{93C9B6B1-3578-4BA8-94FF-3F6416B33BF6}] => (Allow) D:\Program Files\Steam\steamapps\common\Depth\Binaries\Win32\DepthGame.exe (Digital Confectioners, Ltd.) [File not signed]

FirewallRules: [{2EAE58A7-717F-4700-89A7-0C7C5A82DC0E}] => (Allow) D:\Games\Epic Games\TheCycleEarlyAccess\Prospect\Binaries\Win64\Prospect-Win64-Shipping.exe No File

FirewallRules: [{05C1BB09-66D4-4B9C-9B87-4F302DD997B6}] => (Allow) D:\Games\Epic Games\TheCycleEarlyAccess\Prospect\Binaries\Win64\Prospect-Win64-Shipping.exe No File

FirewallRules: [{705F7C45-6B0A-4A0F-8C44-A82933E61775}] => (Allow) D:\Games\Epic Games\TheCycleEarlyAccess\Prospect\Binaries\Win64\Prospect-Win64-Shipping.exe No File

FirewallRules: [{2AF243D4-37A9-4084-80B7-07A0C2E40CF2}] => (Allow) D:\Games\Epic Games\TheCycleEarlyAccess\Prospect\Binaries\Win64\Prospect-Win64-Shipping.exe No File

FirewallRules: [{E57E6004-B7FE-412A-8AEF-E129733BD24A}] => (Allow) D:\Program Files\Plex\Plex Media Server\Plex Tuner Service.exe (Plex, Inc -> )

FirewallRules: [{EC632F5C-7F6F-4BF5-B4A6-328F1113F9D0}] => (Allow) D:\Program Files\Plex\Plex Media Server\Plex DLNA Server.exe (Plex, Inc -> Plex, Inc.)

FirewallRules: [{435BA026-1DFE-43E4-BD6E-07B3E0136163}] => (Allow) D:\Program Files\Plex\Plex Media Server\PlexScriptHost.exe (Plex, Inc -> Python Software Foundation)

FirewallRules: [{0D890790-5EB4-4B27-86E5-3BEBD34BEFAE}] => (Allow) D:\Program Files\Plex\Plex Media Server\Plex Media Server.exe (Plex, Inc -> Plex, Inc.)

FirewallRules: [UDP Query User{6CF304D1-F81A-4D9A-94A4-D092EACE55CF}F:\steam\steamapps\common\conan exiles - test\conansandbox\binaries\win64\conansandbox.exe] => (Allow) F:\steam\steamapps\common\conan exiles - test\conansandbox\binaries\win64\conansandbox.exe No File

FirewallRules: [TCP Query User{DAD503BF-1DC2-4D50-A11F-7F473D9833F4}F:\steam\steamapps\common\conan exiles - test\conansandbox\binaries\win64\conansandbox.exe] => (Allow) F:\steam\steamapps\common\conan exiles - test\conansandbox\binaries\win64\conansandbox.exe No File

FirewallRules: [{B599CB78-AFF4-435F-B598-114D66C5DDE8}] => (Allow) F:\Steam\steamapps\common\Conan Exiles\ConanSandbox\Binaries\Win64\ConanSandbox.exe (FUNCOM OSLO AS -> Funcom Oslo AS)

FirewallRules: [{7DA6D0DA-0160-46D1-8DED-F96759B05D40}] => (Allow) F:\Steam\steamapps\common\Conan Exiles\ConanSandbox\Binaries\Win64\ConanSandbox.exe (FUNCOM OSLO AS -> Funcom Oslo AS)

FirewallRules: [{F7F500C5-233F-4F11-AF14-01FDCDF92F21}] => (Allow) F:\Steam\steamapps\common\Conan Exiles\ConanSandbox\Binaries\Win64\ConanSandbox_BE.exe (FUNCOM OSLO AS -> BattlEye Innovations)

FirewallRules: [{3E7C0BA2-E428-4502-8595-0C4E7B672634}] => (Allow) F:\Steam\steamapps\common\Conan Exiles\ConanSandbox\Binaries\Win64\ConanSandbox_BE.exe (FUNCOM OSLO AS -> BattlEye Innovations)

FirewallRules: [{DF7B67CF-86F3-466A-B668-874799708200}] => (Allow) F:\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe (Wildcard Properties LLC -> Epic Games, Inc.)

FirewallRules: [{F51B237B-AD01-4BD4-9F21-12CCA1DA0CCB}] => (Allow) F:\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe (Wildcard Properties LLC -> Epic Games, Inc.)

FirewallRules: [{96A613D1-D3C2-4005-A6E2-7C3C867529E7}] => (Allow) F:\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)

FirewallRules: [{E7F3A85C-4ADF-458F-A9A4-8E173DAABF11}] => (Allow) F:\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)

FirewallRules: [UDP Query User{01025B54-B13C-4B91-A6B4-96A12EB72333}D:\games\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) D:\games\minecraft launcher\runtime\jre-x64\bin\javaw.exe No File

FirewallRules: [TCP Query User{A7523A95-5347-4832-AC28-18B38DA9D865}D:\games\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) D:\games\minecraft launcher\runtime\jre-x64\bin\javaw.exe No File

FirewallRules: [{6EC12A7C-E8DF-47B3-87F2-C48E370CB69D}] => (Allow) D:\Games\Warframe\Warframe\content\Tools\RemoteCrashSender.exe (Digital Extremes Ltd. -> )

FirewallRules: [{A453CD9C-7EAC-4A5F-B204-0DD0C6B088FF}] => (Allow) D:\Games\Warframe\Warframe\content\Tools\Launcher.exe (Digital Extremes Ltd. -> Digital Extremes)

FirewallRules: [{E12EFBB9-681B-4E7F-8B0F-6C879048A138}] => (Allow) D:\Games\Warframe\Warframe\content\Warframe.x64.exe (Digital Extremes Ltd. -> Digital Extremes)

FirewallRules: [{E722DF3D-BA15-4093-880A-E23303BFE8D6}] => (Allow) D:\Games\Warframe\Warframe\content\Warframe.x64.exe (Digital Extremes Ltd. -> Digital Extremes)

FirewallRules: [{C619A910-C071-4BFE-BE82-83D3CED53031}] => (Allow) D:\Games\Warframe\Warframe\content\Tools\RemoteCrashSender.exe (Digital Extremes Ltd. -> )

FirewallRules: [{E430E0B8-9119-4B79-8D8F-570A6FB383CA}] => (Allow) D:\Games\Warframe\Warframe\content\Tools\Launcher.exe (Digital Extremes Ltd. -> Digital Extremes)

FirewallRules: [{4F7A5748-A2B9-417C-B47C-5FAFEA4AA627}] => (Allow) D:\Games\Warframe\Warframe\content\Warframe.x64.exe (Digital Extremes Ltd. -> Digital Extremes)

FirewallRules: [{C553A736-51D0-496F-9AC3-71C23EA3F312}] => (Allow) D:\Games\Warframe\Warframe\content\Warframe.x64.exe (Digital Extremes Ltd. -> Digital Extremes)

FirewallRules: [{B70298A0-D3DC-42C1-A163-82F9FF5D0A66}] => (Allow) D:\Program Files\Steam\steamapps\common\Team Fortress 2\hl2.exe (Valve -> )

FirewallRules: [{ACA2E709-8EFC-4B6F-8585-F073BA543C12}] => (Allow) D:\Program Files\Steam\steamapps\common\Team Fortress 2\hl2.exe (Valve -> )

FirewallRules: [UDP Query User{1EE69969-08FC-47D8-BD6C-7186E45A61A1}D:\games\destiny 2\overwatch\_retail_\overwatch.exe] => (Allow) D:\games\destiny 2\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)

FirewallRules: [TCP Query User{E65B66C4-1508-4F09-AAD0-84DD2A236FED}D:\games\destiny 2\overwatch\_retail_\overwatch.exe] => (Allow) D:\games\destiny 2\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)

FirewallRules: [{6A49BC5B-C894-4C5C-810A-950E5132942F}] => (Allow) D:\Program Files\Steam\steamapps\common\Dungeons2\mono\bin\mono.exe () [File not signed]

FirewallRules: [{16035A44-84A2-449E-AF79-0FF4DEBF1A33}] => (Allow) D:\Program Files\Steam\steamapps\common\Dungeons2\mono\bin\mono.exe () [File not signed]

FirewallRules: [{91F6F821-A52B-4A40-8A89-D9C0C523C7FC}] => (Allow) D:\Program Files\Steam\steamapps\common\Dungeons2\Dungeons2.exe () [File not signed]

FirewallRules: [{47650127-C7FD-49FA-9298-0FA764C97E38}] => (Allow) D:\Program Files\Steam\steamapps\common\Dungeons2\Dungeons2.exe () [File not signed]

FirewallRules: [{52E01790-C2AC-46BD-9998-7CC416C42472}] => (Allow) D:\Program Files\Steam\steamapps\common\Portal 2\portal2.exe () [File not signed]

FirewallRules: [{3DECD676-CD2D-4BAB-8243-32A29A84EB7D}] => (Allow) D:\Program Files\Steam\steamapps\common\Portal 2\portal2.exe () [File not signed]

FirewallRules: [{596314EA-79DE-4C88-A834-932DBC71B2FB}] => (Allow) D:\Program Files\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe No File

FirewallRules: [{95BBF473-2863-42CC-9D31-891D1FD35416}] => (Allow) D:\Program Files\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe No File

FirewallRules: [{3EA5642F-B074-4F44-9006-606A3330BE46}] => (Allow) D:\Program Files\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe No File

FirewallRules: [{9E2D3047-3280-4DE2-9B5B-21F9BBC7F433}] => (Allow) D:\Program Files\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe No File

FirewallRules: [UDP Query User{EDB6526C-08EB-46AA-BE3B-24F3385F2FBE}D:\games\oculus\software\b4t-games-epic-roller-coaster\epicrollercoasters.exe] => (Allow) D:\games\oculus\software\b4t-games-epic-roller-coaster\epicrollercoasters.exe No File

FirewallRules: [TCP Query User{328475F0-DE6D-427D-9E41-B1766343FBC1}D:\games\oculus\software\b4t-games-epic-roller-coaster\epicrollercoasters.exe] => (Allow) D:\games\oculus\software\b4t-games-epic-roller-coaster\epicrollercoasters.exe No File

FirewallRules: [{4C31E1EC-9240-4357-896F-6B1EF2B2A253}] => (Allow) D:\Games\Oculus\Software\cloudgine-toybox1\Toybox\Binaries\Win64\Toybox-Win64-Shipping.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [{BFBD9F58-9EE1-4173-B1C8-599ED845878B}] => (Allow) D:\Games\Oculus\Software\cloudgine-toybox1\Toybox\Binaries\Win64\Toybox-Win64-Shipping.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [{4B603ECD-BAB9-420E-B8A5-07F719959271}] => (Allow) D:\Games\Oculus\Software\cloudgine-toybox1\Toybox.exe () [File not signed]

FirewallRules: [{711E0A6A-5C19-4EFD-8CB0-959C0D01090C}] => (Allow) D:\Games\Oculus\Software\cloudgine-toybox1\Toybox.exe () [File not signed]

FirewallRules: [{0A902747-2A5B-47AD-AA22-C8C687538CF3}] => (Allow) D:\Program Files\Steam\steamapps\common\Inquisitor\Game\Inquisitor.exe No File

FirewallRules: [{AB974B9D-9FFB-4BF8-96CD-18F2F394E955}] => (Allow) D:\Program Files\Steam\steamapps\common\Inquisitor\Game\Inquisitor.exe No File

FirewallRules: [UDP Query User{3729ACCF-4E7C-4995-B54D-52304BABF321}D:\program files\steam\steamapps\common\hunt showdown\bin\win_x64\huntgame.exe] => (Allow) D:\program files\steam\steamapps\common\hunt showdown\bin\win_x64\huntgame.exe No File

FirewallRules: [TCP Query User{916A1E66-04AD-4B34-99BC-9FEC268A0220}D:\program files\steam\steamapps\common\hunt showdown\bin\win_x64\huntgame.exe] => (Allow) D:\program files\steam\steamapps\common\hunt showdown\bin\win_x64\huntgame.exe No File

FirewallRules: [{11EB45D0-8CFD-4181-A3A1-27821921A3AD}] => (Block) %ProgramFiles%\Adobe\Adobe Photoshop CC 2019\Photoshop.exe No File

FirewallRules: [UDP Query User{DEAF46AA-6EC6-499C-B8AD-52AFC8CACF12}D:\program files\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) D:\program files\steam\steamapps\common\7 days to die\7daystodie.exe No File

FirewallRules: [TCP Query User{29E6A76E-DC64-4D28-9E75-60853AACFE31}D:\program files\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) D:\program files\steam\steamapps\common\7 days to die\7daystodie.exe No File

FirewallRules: [{93C183F0-2CF7-4569-989A-76EB5367A486}] => (Allow) D:\Program Files\Steam\steamapps\common\7 Days To Die\7dLauncher.exe No File

FirewallRules: [{BD15F9A1-57A2-4BF6-ACB1-E25FF6456C88}] => (Allow) D:\Program Files\Steam\steamapps\common\7 Days To Die\7dLauncher.exe No File

FirewallRules: [{1FB5C00B-EBE4-4EA5-9E9D-95CF19A7D43E}] => (Allow) D:\Program Files\Steam\steamapps\common\3dSenVR_Demo\3dSenVR_Demo.exe () [File not signed]

FirewallRules: [{D4A7B3CF-B916-47C0-B828-4D41D58902F3}] => (Allow) D:\Program Files\Steam\steamapps\common\3dSenVR_Demo\3dSenVR_Demo.exe () [File not signed]

FirewallRules: [UDP Query User{0EA54C39-EDB2-4781-AC6B-ED8651B69C3C}C:\users\specu\desktop\conan stuff\admin map\conan-exiles-admin-map.exe] => (Allow) C:\users\specu\desktop\conan stuff\admin map\conan-exiles-admin-map.exe No File

FirewallRules: [TCP Query User{6D672AB3-55E2-465A-B1B1-7D0F25441F4E}C:\users\specu\desktop\conan stuff\admin map\conan-exiles-admin-map.exe] => (Allow) C:\users\specu\desktop\conan stuff\admin map\conan-exiles-admin-map.exe No File

FirewallRules: [{F67CAE2E-94EC-4696-A7C9-7E29E06E889E}] => (Allow) D:\Games\Oculus\Software\hidden-path-entertainment-brass-tactics-arena\Brass\Binaries\Win64\BrassArena-Win64-Shipping.exe (Hidden Path Entertainment) [File not signed]

FirewallRules: [{140053D5-450B-434C-86F3-1E7FE53CFC61}] => (Allow) D:\Games\Oculus\Software\hidden-path-entertainment-brass-tactics-arena\Brass\Binaries\Win64\BrassArena-Win64-Shipping.exe (Hidden Path Entertainment) [File not signed]

FirewallRules: [{4234597D-4A6C-494F-8AC3-559AF49426B7}] => (Allow) D:\Games\Oculus\Software\hidden-path-entertainment-brass-tactics-arena\Engine\Binaries\Win64\CrashReportClient.exe () [File not signed]

FirewallRules: [{682667B1-B7D3-49EF-9E2A-276D1E81F681}] => (Allow) D:\Games\Oculus\Software\hidden-path-entertainment-brass-tactics-arena\Engine\Binaries\Win64\CrashReportClient.exe () [File not signed]

FirewallRules: [{B9BC5A7F-794D-4B0D-B23E-14048D0909C1}] => (Allow) D:\Games\Oculus\Software\hidden-path-entertainment-brass-tactics-arena\Engine\Extras\Redist\en-us\UE4PrereqSetup_x64.exe (Epic Games Inc. -> Epic Games, Inc.)

FirewallRules: [{E580F9AC-A972-4AD5-A660-BDF6779C05B4}] => (Allow) D:\Games\Oculus\Software\hidden-path-entertainment-brass-tactics-arena\Engine\Extras\Redist\en-us\UE4PrereqSetup_x64.exe (Epic Games Inc. -> Epic Games, Inc.)

FirewallRules: [{24255884-2578-46FD-9649-58F8E1995EE2}] => (Allow) D:\Games\Oculus\Software\gumi-swords-of-gargantua-open-beta\Gargantua\Binaries\Win64\Gargantua-Win64-Shipping.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [{0934AA5D-1074-4094-B1DD-FA4CCB1251E4}] => (Allow) D:\Games\Oculus\Software\gumi-swords-of-gargantua-open-beta\Gargantua\Binaries\Win64\Gargantua-Win64-Shipping.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [{BF25B5B7-0097-446F-B79C-03C74524644B}] => (Allow) D:\Games\Oculus\Software\gumi-swords-of-gargantua-open-beta\Engine\Extras\Redist\en-us\UE4PrereqSetup_x64.exe (Epic Games Inc. -> Epic Games, Inc.)

FirewallRules: [{379B5C6A-21B1-4FC4-B9FB-5084730365AE}] => (Allow) D:\Games\Oculus\Software\gumi-swords-of-gargantua-open-beta\Engine\Extras\Redist\en-us\UE4PrereqSetup_x64.exe (Epic Games Inc. -> Epic Games, Inc.)

FirewallRules: [{57026675-9895-43A0-896F-857214074922}] => (Allow) D:\Games\Oculus\Software\gumi-swords-of-gargantua-open-beta\Engine\Binaries\Win64\CrashReportClient.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [{E9724355-04B7-4600-A5E3-DE8AA7BA89EA}] => (Allow) D:\Games\Oculus\Software\gumi-swords-of-gargantua-open-beta\Engine\Binaries\Win64\CrashReportClient.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [{165510FC-AF05-44A9-B7A2-E1B15F138B6F}] => (Allow) D:\Games\Oculus\Software\gumi-swords-of-gargantua-open-beta\Gargantua.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [{A29214FB-9753-437A-BB3D-103E4EBC0B60}] => (Allow) D:\Games\Oculus\Software\gumi-swords-of-gargantua-open-beta\Gargantua.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [{4FB98EC5-15F1-4AA1-ABC8-96ABD41D5274}] => (Allow) D:\Program Files\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtourscfg.exe (Valve -> )

FirewallRules: [{ED3E0804-9099-4998-BA80-FA73D3597552}] => (Allow) D:\Program Files\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtourscfg.exe (Valve -> )

FirewallRules: [{E1235EF4-9922-4390-B203-42EE34B5062B}] => (Allow) D:\Program Files\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtours.exe (Valve -> )

FirewallRules: [{47F766FF-1B1A-461C-A2B5-879A98A98146}] => (Allow) D:\Program Files\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtours.exe (Valve -> )

FirewallRules: [{7C0725E3-F94F-416A-AB3D-85F2B378B7B0}] => (Allow) D:\Program Files\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe (Valve -> )

FirewallRules: [{6025FC5B-838C-4A16-BA8F-69B0C7FCE3DC}] => (Allow) D:\Program Files\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe (Valve -> )

FirewallRules: [UDP Query User{DDEBB10F-AA23-4BFB-A42C-575CFAD70396}D:\games\call of duty black ops 4\blackops4.exe] => (Allow) D:\games\call of duty black ops 4\blackops4.exe No File

FirewallRules: [TCP Query User{19526186-E008-4854-AA52-D81CC6CDBB1A}D:\games\call of duty black ops 4\blackops4.exe] => (Allow) D:\games\call of duty black ops 4\blackops4.exe No File

FirewallRules: [UDP Query User{6ADADC6D-11C1-4E68-B52E-45FB0C002565}D:\downloads\admin map\conan-exiles-admin-map.exe] => (Allow) D:\downloads\admin map\conan-exiles-admin-map.exe (Node.js) [File not signed]

FirewallRules: [TCP Query User{922A1E62-B3DD-42CE-A25A-290A3F7DFC86}D:\downloads\admin map\conan-exiles-admin-map.exe] => (Allow) D:\downloads\admin map\conan-exiles-admin-map.exe (Node.js) [File not signed]

FirewallRules: [UDP Query User{5B7F9C52-194E-4BFF-ABA6-FA7814F9595C}D:\games\destiny 2\overwatch\overwatch.exe] => (Allow) D:\games\destiny 2\overwatch\overwatch.exe No File

FirewallRules: [TCP Query User{AC3BE161-D8F8-48ED-8917-328CE38CE25E}D:\games\destiny 2\overwatch\overwatch.exe] => (Allow) D:\games\destiny 2\overwatch\overwatch.exe No File

FirewallRules: [UDP Query User{60BF25CE-1169-406F-B91F-11FF16F974DB}D:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)

FirewallRules: [TCP Query User{C8B502B8-DCBC-4D19-8B8F-8C0F08616454}D:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)

FirewallRules: [{716550D3-5E62-4BF9-9542-7D6EBDE1D880}] => (Allow) D:\Games\Downloaded\Public\Tools\RemoteCrashSender.exe No File

FirewallRules: [{3C4D68FC-7BD3-4295-A67E-0DF76C5F1196}] => (Allow) C:\Users\Specu\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe No File

FirewallRules: [{EE52A2F7-BCAF-4FC0-8E67-1EA535B8CD3E}] => (Allow) D:\Games\Downloaded\Public\Warframe.x64.exe No File

FirewallRules: [{21E3A4C1-6A84-42E0-B4DC-8F31DB679387}] => (Allow) D:\Games\Downloaded\Public\Warframe.x64.exe No File

FirewallRules: [{7BFFF457-BCFA-4D1E-BA5D-E9031068903C}] => (Allow) D:\Games\Downloaded\Public\Tools\RemoteCrashSender.exe No File

FirewallRules: [{F1AC5D01-8879-456D-86BA-6E11E865BD12}] => (Allow) C:\Users\Specu\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe No File

FirewallRules: [{C414DF27-E3AF-4339-B183-A818039751FC}] => (Allow) D:\Games\Downloaded\Public\Warframe.x64.exe No File

FirewallRules: [{D0631B0D-CC9F-43D4-979F-71B3C6B7C576}] => (Allow) D:\Games\Downloaded\Public\Warframe.x64.exe No File

FirewallRules: [UDP Query User{D4C0044F-0C13-4AC3-BB66-EC849CAE3002}D:\program files\steam\steamapps\common\empyrion - galactic survival\client\empyrion.exe] => (Allow) D:\program files\steam\steamapps\common\empyrion - galactic survival\client\empyrion.exe No File

FirewallRules: [TCP Query User{FDD84B7C-6C93-4ADF-AA88-14F6BD9C6382}D:\program files\steam\steamapps\common\empyrion - galactic survival\client\empyrion.exe] => (Allow) D:\program files\steam\steamapps\common\empyrion - galactic survival\client\empyrion.exe No File

FirewallRules: [{1EA79271-5141-49D4-A712-4F6C7BFA2418}] => (Allow) D:\Program Files\Steam\steamapps\common\Empyrion - Galactic Survival\EmpyrionLauncher.exe No File

FirewallRules: [{870A1637-FDD5-4324-B9DE-0C5DD15AEF95}] => (Allow) D:\Program Files\Steam\steamapps\common\Empyrion - Galactic Survival\EmpyrionLauncher.exe No File

FirewallRules: [UDP Query User{6B04E217-9791-402B-B54B-DD1269798055}C:\users\specu\desktop\admin map\conan-exiles-admin-map.exe] => (Allow) C:\users\specu\desktop\admin map\conan-exiles-admin-map.exe No File

FirewallRules: [TCP Query User{5F9F04E8-9178-4D6A-A61E-844D536CB8A8}C:\users\specu\desktop\admin map\conan-exiles-admin-map.exe] => (Allow) C:\users\specu\desktop\admin map\conan-exiles-admin-map.exe No File

FirewallRules: [UDP Query User{93430B82-7221-4395-AF32-AFD5B55922CC}D:\games\a township tale\a township tale.exe] => (Allow) D:\games\a township tale\a township tale.exe () [File not signed]

FirewallRules: [TCP Query User{FC5081F0-A08B-42A1-B017-418B81A705A3}D:\games\a township tale\a township tale.exe] => (Allow) D:\games\a township tale\a township tale.exe () [File not signed]

FirewallRules: [UDP Query User{33DF0221-C729-4DC5-9C1B-059C3CE6457F}D:\program files\epic games\conanexilesdevkit\engine\binaries\win64\ue4editor.exe] => (Allow) D:\program files\epic games\conanexilesdevkit\engine\binaries\win64\ue4editor.exe No File

FirewallRules: [TCP Query User{064367F1-6730-4CBA-A7A8-A09DEED5ED82}D:\program files\epic games\conanexilesdevkit\engine\binaries\win64\ue4editor.exe] => (Allow) D:\program files\epic games\conanexilesdevkit\engine\binaries\win64\ue4editor.exe No File

FirewallRules: [{63537349-6B14-4D29-9D62-69875D423BB0}] => (Allow) D:\Program Files\Steam\steamapps\common\The Lab\TheLab\win64\TheLab.exe No File

FirewallRules: [{B145B85C-AC91-4B5D-BBC7-71D291255674}] => (Allow) D:\Program Files\Steam\steamapps\common\The Lab\TheLab\win64\TheLab.exe No File

FirewallRules: [UDP Query User{A506B7DD-F52F-4B2C-9970-0184E5F640F1}D:\program files\steam\steamapps\common\dreadnought\dreadgame\dreadgame\binaries\win64\dreadgame-win64-shipping.exe] => (Allow) D:\program files\steam\steamapps\common\dreadnought\dreadgame\dreadgame\binaries\win64\dreadgame-win64-shipping.exe No File

FirewallRules: [TCP Query User{35C40B8D-416D-45DB-8908-0D1665DACA7F}D:\program files\steam\steamapps\common\dreadnought\dreadgame\dreadgame\binaries\win64\dreadgame-win64-shipping.exe] => (Allow) D:\program files\steam\steamapps\common\dreadnought\dreadgame\dreadgame\binaries\win64\dreadgame-win64-shipping.exe No File

FirewallRules: [UDP Query User{DBE1F965-097F-4A79-BAE3-8871D546A629}D:\program files\steam\steamapps\common\conan exiles\admin map\conan-exiles-admin-map.exe] => (Allow) D:\program files\steam\steamapps\common\conan exiles\admin map\conan-exiles-admin-map.exe No File

FirewallRules: [TCP Query User{B4D73276-DF7C-452E-A789-75EB054CC8D0}D:\program files\steam\steamapps\common\conan exiles\admin map\conan-exiles-admin-map.exe] => (Allow) D:\program files\steam\steamapps\common\conan exiles\admin map\conan-exiles-admin-map.exe No File

FirewallRules: [{FA0F13BB-3948-4F95-92F7-3186996BE3FC}] => (Allow) D:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen_Data\StreamingAssets\bsvad\RouteToDefaults.exe () [File not signed]

FirewallRules: [{2E3C0E98-8FD5-4D6D-B1E5-1CECDE8B561D}] => (Allow) D:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen_Data\StreamingAssets\bsvad\RouteToDefaults.exe () [File not signed]

FirewallRules: [{E0F6DAFA-4381-433F-8217-E7E639A40E63}] => (Allow) D:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen_Data\StreamingAssets\bsvad\RouteToBigscreen.exe () [File not signed]

FirewallRules: [{42CF7934-8C03-4936-B0A3-8C602288BB8E}] => (Allow) D:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen_Data\StreamingAssets\bsvad\RouteToBigscreen.exe () [File not signed]

FirewallRules: [{A4027FD2-4D10-4272-A328-403BC3012204}] => (Allow) D:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen_Data\StreamingAssets\bsvad\bsdevcon.exe (Microsoft Corporation) [File not signed]

FirewallRules: [{1216CDAE-BFE2-4E63-9CB3-77D736DBE45A}] => (Allow) D:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen_Data\StreamingAssets\bsvad\bsdevcon.exe (Microsoft Corporation) [File not signed]

FirewallRules: [{220630E6-AC0E-4A6F-8EE5-6CE1D9B1665C}] => (Allow) D:\Games\Oculus\Software\bigscreen-bigscreen\UnityCrashHandler64.exe (Unity Technologies Aps -> )

FirewallRules: [{5D277822-4A1D-4DFE-82FA-A91A69AFFF02}] => (Allow) D:\Games\Oculus\Software\bigscreen-bigscreen\UnityCrashHandler64.exe (Unity Technologies Aps -> )

FirewallRules: [{5386B077-454D-4EC4-A1F7-EED53D900B4B}] => (Allow) D:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen.exe () [File not signed]

FirewallRules: [{FC81C3A8-08AB-4BB4-8182-00303E400BD4}] => (Allow) D:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen.exe () [File not signed]

FirewallRules: [UDP Query User{8F9FBBB6-4FC2-4F6E-98FE-8980B217424C}D:\program files\epic games\conanexilesdevkit\engine\binaries\win64\ue4editor.exe] => (Allow) D:\program files\epic games\conanexilesdevkit\engine\binaries\win64\ue4editor.exe No File

FirewallRules: [TCP Query User{3FDEF17C-6993-425F-8D96-1DAA896024D3}D:\program files\epic games\conanexilesdevkit\engine\binaries\win64\ue4editor.exe] => (Allow) D:\program files\epic games\conanexilesdevkit\engine\binaries\win64\ue4editor.exe No File

FirewallRules: [UDP Query User{ED0CF241-E6E8-4B6C-B62D-965A1CCBF72E}D:\games\oculus\igg\windlands.2\windlands 2\windlands2.exe] => (Allow) D:\games\oculus\igg\windlands.2\windlands 2\windlands2.exe () [File not signed]

FirewallRules: [TCP Query User{86EC7E74-E7B6-434E-B730-F9E1E7FAB822}D:\games\oculus\igg\windlands.2\windlands 2\windlands2.exe] => (Allow) D:\games\oculus\igg\windlands.2\windlands 2\windlands2.exe () [File not signed]

FirewallRules: [UDP Query User{F49CCD3F-27DD-4A26-AA5A-38978D93CF31}D:\program files\steam\steamapps\common\absolver\absolver\binaries\win64\absolver-win64-shipping.exe] => (Allow) D:\program files\steam\steamapps\common\absolver\absolver\binaries\win64\absolver-win64-shipping.exe No File

FirewallRules: [TCP Query User{45F05998-F702-46A0-B89D-218971ECDAE5}D:\program files\steam\steamapps\common\absolver\absolver\binaries\win64\absolver-win64-shipping.exe] => (Allow) D:\program files\steam\steamapps\common\absolver\absolver\binaries\win64\absolver-win64-shipping.exe No File

FirewallRules: [{1565E5AD-E1F7-47F2-B09A-1AB6902305EC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [{AF2D53F5-28B8-4C43-9C2B-7A64AD7A57D5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [{193A86FF-58D2-4A0D-B977-3E07BB9F2B4A}] => (Allow) D:\Program Files\Steam\steamapps\common\OVRdrop\OVRdrop.exe () [File not signed]

FirewallRules: [{43F066FB-185B-40C7-9799-F2E6B698C36C}] => (Allow) D:\Program Files\Steam\steamapps\common\OVRdrop\OVRdrop.exe () [File not signed]

FirewallRules: [{40C20671-BEB9-4ED5-9706-3B3DFFA55377}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{BA2BFA73-DE83-465A-9BB4-C6B80644CC0C}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{7E3ED501-55FE-48CB-93A6-BD65D3D3A1EF}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{85F43861-C57A-47D6-ACC6-71FAB4D481E6}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [UDP Query User{93B580CC-80F2-4787-8597-357EB6B17C49}E:\backups\d stuff\games folder\conan stuff\conan admin map\conan-exiles-admin-map.exe] => (Allow) E:\backups\d stuff\games folder\conan stuff\conan admin map\conan-exiles-admin-map.exe (Node.js) [File not signed]

FirewallRules: [TCP Query User{4896BBCE-31F5-4D01-AE4C-753AFAF16E61}E:\backups\d stuff\games folder\conan stuff\conan admin map\conan-exiles-admin-map.exe] => (Allow) E:\backups\d stuff\games folder\conan stuff\conan admin map\conan-exiles-admin-map.exe (Node.js) [File not signed]

FirewallRules: [UDP Query User{39A011C9-B1CC-4694-A041-0B82C3EF7C6C}D:\games\oculus\igg\raw.data\raw data\rawdata\binaries\win64\rawdata-win64-shipping.exe] => (Block) D:\games\oculus\igg\raw.data\raw data\rawdata\binaries\win64\rawdata-win64-shipping.exe No File

FirewallRules: [TCP Query User{5629234E-BFFC-4D6A-BAE5-BC4E8978533C}D:\games\oculus\igg\raw.data\raw data\rawdata\binaries\win64\rawdata-win64-shipping.exe] => (Block) D:\games\oculus\igg\raw.data\raw data\rawdata\binaries\win64\rawdata-win64-shipping.exe No File

FirewallRules: [UDP Query User{C5282203-E1AE-4C1D-950A-1DC32D44E9E7}D:\program files\steam\steamapps\common\steamvr\bin\win64\vrserver.exe] => (Block) D:\program files\steam\steamapps\common\steamvr\bin\win64\vrserver.exe (Valve -> Valve Corporation)

FirewallRules: [TCP Query User{23934F95-1F53-404F-B27F-67202DE9F2E6}D:\program files\steam\steamapps\common\steamvr\bin\win64\vrserver.exe] => (Block) D:\program files\steam\steamapps\common\steamvr\bin\win64\vrserver.exe (Valve -> Valve Corporation)

FirewallRules: [UDP Query User{40C0284C-21C2-4943-86B9-628A0589E21F}D:\program files\steam\steamapps\common\steamvr\bin\win64\vrmonitor.exe] => (Block) D:\program files\steam\steamapps\common\steamvr\bin\win64\vrmonitor.exe (Valve -> Valve Corporation)

FirewallRules: [TCP Query User{CDE4B380-8DAA-4C24-80A9-B9A517BACE00}D:\program files\steam\steamapps\common\steamvr\bin\win64\vrmonitor.exe] => (Block) D:\program files\steam\steamapps\common\steamvr\bin\win64\vrmonitor.exe (Valve -> Valve Corporation)

FirewallRules: [UDP Query User{9BFADD7E-A252-4FB7-AEED-12AE8DB48EE2}D:\games\oculus\igg\arizona.sunshine.update.18.01.2019\arizonasunshine\arizonasunshine.exe] => (Allow) D:\games\oculus\igg\arizona.sunshine.update.18.01.2019\arizonasunshine\arizonasunshine.exe No File

FirewallRules: [TCP Query User{67D97934-FFD7-42FE-ABE9-C2409D656B7F}D:\games\oculus\igg\arizona.sunshine.update.18.01.2019\arizonasunshine\arizonasunshine.exe] => (Allow) D:\games\oculus\igg\arizona.sunshine.update.18.01.2019\arizonasunshine\arizonasunshine.exe No File

FirewallRules: [UDP Query User{DE4ED4B9-6010-4AE0-9084-E441813D654E}D:\games\oculus\igg\batman.arkham.vr\arkhamvr\binaries\win64\arkhamvr.exe] => (Allow) D:\games\oculus\igg\batman.arkham.vr\arkhamvr\binaries\win64\arkhamvr.exe No File

FirewallRules: [TCP Query User{D5C51C05-3ACC-44C4-880E-D3CAB08A4623}D:\games\oculus\igg\batman.arkham.vr\arkhamvr\binaries\win64\arkhamvr.exe] => (Allow) D:\games\oculus\igg\batman.arkham.vr\arkhamvr\binaries\win64\arkhamvr.exe No File

FirewallRules: [UDP Query User{C39DE8D1-1890-4FB1-A183-4E205FCEB032}D:\program files\epic games\subnautica\subnautica.exe] => (Allow) D:\program files\epic games\subnautica\subnautica.exe No File

FirewallRules: [TCP Query User{7200ABD3-BA15-4D2C-BCAD-DBD922B7E080}D:\program files\epic games\subnautica\subnautica.exe] => (Allow) D:\program files\epic games\subnautica\subnautica.exe No File

FirewallRules: [{11EAFD4F-4517-418F-AAA2-C0CE270EF91D}] => (Allow) C:\Users\Specu\AppData\Roaming\uTorrent\uTorrent.exe No File

FirewallRules: [{68F4FC8E-FFC3-438D-8145-A0427F14DE0E}] => (Allow) C:\Users\Specu\AppData\Roaming\uTorrent\uTorrent.exe No File

FirewallRules: [{C654BB82-8967-4D2C-A2FB-9A8AB533D3C0}] => (Allow) D:\Games\Oculus\Software\ready-at-dawn-lone-echo\bin\win7\loneecho.exe () [File not signed]

FirewallRules: [{528656E7-508B-4337-ADD9-673C66811148}] => (Allow) D:\Games\Oculus\Software\ready-at-dawn-lone-echo\bin\win7\loneecho.exe () [File not signed]

FirewallRules: [{FCB07DFF-E961-4EB1-855E-0656406FD9E0}] => (Allow) D:\Games\Oculus\Software\ready-at-dawn-lone-echo\bin\win7\BsSndRpt64.exe (BugSplat -> BugSplat, LLC)

FirewallRules: [{484F8CD1-73CF-4E4D-ACEC-BA1C58F65854}] => (Allow) D:\Games\Oculus\Software\ready-at-dawn-lone-echo\bin\win7\BsSndRpt64.exe (BugSplat -> BugSplat, LLC)

FirewallRules: [UDP Query User{ADA18267-0259-4CC2-94A1-AB93C064073E}D:\program files\steam\steamapps\common\deep rock galactic\fsd\binaries\win64\fsd-win64-shipping.exe] => (Allow) D:\program files\steam\steamapps\common\deep rock galactic\fsd\binaries\win64\fsd-win64-shipping.exe (Ghost Ship Games) [File not signed]

FirewallRules: [TCP Query User{77755589-04C8-4F38-BBBA-F3C9A8AFFF0A}D:\program files\steam\steamapps\common\deep rock galactic\fsd\binaries\win64\fsd-win64-shipping.exe] => (Allow) D:\program files\steam\steamapps\common\deep rock galactic\fsd\binaries\win64\fsd-win64-shipping.exe (Ghost Ship Games) [File not signed]

FirewallRules: [UDP Query User{66D83C7D-995A-44FD-9E25-F8723007F75B}D:\games\oculus\software\nvidia-corporation-nvidia-vr-funhouse\engine\binaries\win64\ue4game-win64-shipping.exe] => (Allow) D:\games\oculus\software\nvidia-corporation-nvidia-vr-funhouse\engine\binaries\win64\ue4game-win64-shipping.exe No File

FirewallRules: [TCP Query User{24F2DB07-06DF-4B54-B456-E5AB74A04B9E}D:\games\oculus\software\nvidia-corporation-nvidia-vr-funhouse\engine\binaries\win64\ue4game-win64-shipping.exe] => (Allow) D:\games\oculus\software\nvidia-corporation-nvidia-vr-funhouse\engine\binaries\win64\ue4game-win64-shipping.exe No File

FirewallRules: [{3C633AA6-103C-463D-A03B-26E47A124905}] => (Allow) D:\Games\Oculus\Software\oculus-dead-and-buried\DeadAndBuried\DeadAndBuried.exe () [File not signed]

FirewallRules: [{7C4E32D5-2FB5-4048-9EB2-CDA3433E47BD}] => (Allow) D:\Games\Oculus\Software\oculus-dead-and-buried\DeadAndBuried\DeadAndBuried.exe () [File not signed]

FirewallRules: [{5E59D3BF-C89B-462E-94BB-D5CF1AE5689A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)

FirewallRules: [{3351AB30-F711-43DA-A9D2-F249862C65C3}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)

FirewallRules: [UDP Query User{59754AE5-9533-4526-9A17-3F9E5CBC8B35}D:\program files\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\program files\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)

FirewallRules: [TCP Query User{F5B029F6-54E8-4928-BC66-141B0ED4A6D4}D:\program files\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\program files\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)

FirewallRules: [UDP Query User{28E39B01-B563-4AEC-B675-6BAEE7617CAE}D:\program files\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\program files\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)

FirewallRules: [TCP Query User{5BA123B3-35AA-4746-A6F1-9C368827310F}D:\program files\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\program files\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)

FirewallRules: [UDP Query User{A9854EB3-8031-42BD-97DB-891757277E00}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)

FirewallRules: [TCP Query User{1E9DA898-D701-49BA-81A1-FF3AE59C24C0}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)

FirewallRules: [{88D78E6C-B282-40A4-BD56-F8E2018DEC35}] => (Allow) D:\Program Files\Steam\steamapps\common\Warhammer Vermintide 2\launcher\Launcher.exe (Fatshark AB -> Fatshark AB)

FirewallRules: [{C0FEDE1F-F756-46CD-8C36-2A0919F0021D}] => (Allow) D:\Program Files\Steam\steamapps\common\Warhammer Vermintide 2\launcher\Launcher.exe (Fatshark AB -> Fatshark AB)

FirewallRules: [{455AB1EB-C9B6-4F6A-A43C-81E84B0AAA4F}] => (Allow) D:\Games\Oculus\Software\playful-luckys-tale\LT.exe () [File not signed]

FirewallRules: [{BEF36DFB-6BCC-42CA-837C-5C014C5C82DC}] => (Allow) D:\Games\Oculus\Software\playful-luckys-tale\LT.exe () [File not signed]

FirewallRules: [{7D98F1FF-89F3-486D-AAFC-7EA5659A1E48}] => (Allow) D:\Games\Oculus\Software\ready-at-dawn-echo-arena\bin\win7\echovr.exe (Ready At Dawn, LLC) [File not signed]

FirewallRules: [{521879C8-55ED-4F43-A966-C79CA729885E}] => (Allow) D:\Games\Oculus\Software\ready-at-dawn-echo-arena\bin\win7\echovr.exe (Ready At Dawn, LLC) [File not signed]

FirewallRules: [{3AEEC735-57BB-401A-B622-534BCC62632E}] => (Allow) D:\Games\Oculus\Software\ready-at-dawn-echo-arena\bin\win7\BsSndRpt64.exe (BugSplat -> BugSplat, LLC)

FirewallRules: [{A21AE189-BCB0-479F-B0DE-2ADEFE317C63}] => (Allow) D:\Games\Oculus\Software\ready-at-dawn-echo-arena\bin\win7\BsSndRpt64.exe (BugSplat -> BugSplat, LLC)

FirewallRules: [{275B8B37-CBB7-4AC2-B369-D76116A62470}] => (Allow) D:\Games\Oculus\Software\epic-games-odin\Engine\Binaries\Win64\CrashReportClient.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [{47883A80-09C2-4269-835F-7D12F394763C}] => (Allow) D:\Games\Oculus\Software\epic-games-odin\Engine\Binaries\Win64\CrashReportClient.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [{555B2499-3AF7-44FB-9626-68A3D13F810A}] => (Allow) D:\Games\Oculus\Software\epic-games-odin\RoboRecall\Binaries\Win64\RoboRecall-Win64-Shipping.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [{DAE686F8-8DB8-4E24-9A8D-2775A720A3A6}] => (Allow) D:\Games\Oculus\Software\epic-games-odin\RoboRecall\Binaries\Win64\RoboRecall-Win64-Shipping.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [{4ADC3BBF-B089-48C8-B033-49F67D3904F4}] => (Allow) D:\Games\Oculus\Software\epic-games-odin\RoboRecall\Binaries\Win64\RoboRecallModInstaller.exe () [File not signed]

FirewallRules: [{99E034EE-BF89-4D3F-992B-8FB85A9B401B}] => (Allow) D:\Games\Oculus\Software\epic-games-odin\RoboRecall\Binaries\Win64\RoboRecallModInstaller.exe () [File not signed]

FirewallRules: [{8469EE00-C9A4-456D-BCB7-36D14A4BD526}] => (Allow) D:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\Bigscreen_Data\StreamingAssets\bsvad\bsdevcon.exe No File

FirewallRules: [{76849BAC-620E-4369-8946-3BF7C4906C03}] => (Allow) D:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\Bigscreen_Data\StreamingAssets\bsvad\bsdevcon.exe No File

FirewallRules: [{94F921B9-80AE-4694-93E1-59D05012F39F}] => (Allow) D:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\Bigscreen_Data\StreamingAssets\bsvad\RouteToDefaults.exe No File

FirewallRules: [{727B65DF-0951-415F-B430-E9464F03BDE2}] => (Allow) D:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\Bigscreen_Data\StreamingAssets\bsvad\RouteToDefaults.exe No File

FirewallRules: [{B1D8480F-D0AE-4540-85BA-B2CA35E32E3B}] => (Allow) D:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\Bigscreen_Data\StreamingAssets\bsvad\RouteToBigscreen.exe No File

FirewallRules: [{E57E71CB-4F9E-4A23-98D2-4A8A57030979}] => (Allow) D:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\Bigscreen_Data\StreamingAssets\bsvad\RouteToBigscreen.exe No File

FirewallRules: [{C071234A-CBFE-4D82-B67F-ECDFEE1179E3}] => (Allow) D:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\UnityCrashHandler64.exe No File

FirewallRules: [{7C0211CD-3EC3-463D-8D93-DAD850C4A996}] => (Allow) D:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\UnityCrashHandler64.exe No File

FirewallRules: [{72F162B3-0FEB-4650-95DE-9B20B97B3299}] => (Allow) D:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\Bigscreen.exe No File

FirewallRules: [{8E4A4C7F-80B4-405A-8E8F-8FB47883BC06}] => (Allow) D:\Games\Oculus\Software\bigscreen-bigscreen\Bigscreen\Bigscreen.exe No File

FirewallRules: [{DA4924ED-EC6C-44AA-AB9D-90E321B49D57}] => (Allow) D:\Games\Oculus\Software\epic-games-bullet-train-gdc\BulletTrain-GDC-1.8SDK\Engine\Binaries\Win64\UE4Game-Win64-Test.exe No File

FirewallRules: [{AED129F5-C06D-46E9-9B82-0C90B874CF92}] => (Allow) D:\Games\Oculus\Software\epic-games-bullet-train-gdc\BulletTrain-GDC-1.8SDK\Engine\Binaries\Win64\UE4Game-Win64-Test.exe No File

FirewallRules: [{45324BCB-172A-410A-BC65-40EB089FB541}] => (Allow) D:\Games\Oculus\Software\epic-games-bullet-train-gdc\BulletTrain-GDC-1.8SDK\showup.exe No File

FirewallRules: [{766DAB02-4F31-4252-AEA2-198DF0980AA2}] => (Allow) D:\Games\Oculus\Software\epic-games-bullet-train-gdc\BulletTrain-GDC-1.8SDK\showup.exe No File

FirewallRules: [{39126ED0-9A7F-4580-96CC-ED0303369947}] => (Allow) D:\Games\Oculus\Software\little-maxima-llc-travel-vr\Oculus 2.6\Travel_VR.exe () [File not signed]

FirewallRules: [{28275BAA-EF5D-4177-971B-37D7DF67D729}] => (Allow) D:\Games\Oculus\Software\little-maxima-llc-travel-vr\Oculus 2.6\Travel_VR.exe () [File not signed]

FirewallRules: [{92BD26D6-05A7-4ABF-8919-C923EB06971C}] => (Allow) C:\Program Files\Oculus\Support\oculus-client\OculusClient.exe (Oculus VR, LLC) [File not signed]

FirewallRules: [{7062F667-AF6C-408A-9571-CE7C10AC393C}] => (Allow) C:\Program Files\Oculus\Support\oculus-client\OculusClient.exe (Oculus VR, LLC) [File not signed]

FirewallRules: [{12F1A482-60D5-4ADB-A79E-6EDB3B47A456}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Home2\Binaries\Win64\Home2-Win64-Shipping.exe (Oculus VR, LLC -> Epic Games, Inc.)

FirewallRules: [{1A129579-D19D-4954-BC69-74E50C4CAFB3}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Home2\Binaries\Win64\Home2-Win64-Shipping.exe (Oculus VR, LLC -> Epic Games, Inc.)

FirewallRules: [{74107290-CA41-4D45-9C32-A0D8609F83BA}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Home2.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [{61F5546D-026B-4528-93BB-78F70C4F1999}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Home2.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [{77045607-6F17-49FE-AF76-203A04069032}] => (Allow) C:\Program Files\Oculus\Support\oculus-dash\dash\bin\OculusDash.exe (Oculus VR, LLC -> )

FirewallRules: [{E97D6917-4B8F-4302-A50F-8F7BC5BAC46B}] => (Allow) C:\Program Files\Oculus\Support\oculus-dash\dash\bin\OculusDash.exe (Oculus VR, LLC -> )

FirewallRules: [{B6579D85-D9F1-4784-8EE3-6590AF25FD13}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe (Oculus VR, LLC -> Facebook Technologies, LLC)

FirewallRules: [{01F59288-7D7C-478C-927B-234E53D682D8}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe (Oculus VR, LLC -> Facebook Technologies, LLC)

FirewallRules: [{D30D3E15-3AF6-4E95-A407-833F0651F692}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServer_x64.exe (Oculus VR, LLC -> Facebook Technologies, LLC)

FirewallRules: [{0B1F7AB7-E15C-4658-8000-94ADDB80AC94}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServer_x64.exe (Oculus VR, LLC -> Facebook Technologies, LLC)

FirewallRules: [{0D25E75A-31C0-4AA7-906D-5C5B6721BF05}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRRedir.exe (Oculus VR, LLC -> Facebook Technologies, LLC)

FirewallRules: [{E54A2047-3A5F-4674-A51E-FBAA115C8067}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRRedir.exe (Oculus VR, LLC -> Facebook Technologies, LLC)

FirewallRules: [{E60CE2B3-32A6-4E52-A184-71B3D1DD6ABF}] => (Allow) D:\Program Files\Steam\steamapps\common\SkyrimVR\SkyrimVR.exe (Bethesda Softworks) [File not signed]

FirewallRules: [{80B4D0C6-F8AF-4A71-A488-CB94BFB95D31}] => (Allow) D:\Program Files\Steam\steamapps\common\SkyrimVR\SkyrimVR.exe (Bethesda Softworks) [File not signed]

FirewallRules: [{0FC23B4C-80EE-49EA-A884-EC6D76C98005}] => (Allow) D:\Program Files\Steam\steamapps\common\Conan Exiles\ConanSandbox\Binaries\Win64\ConanSandbox.exe No File

FirewallRules: [{BBB49893-D0C2-4602-8E26-FD86906B7C44}] => (Allow) D:\Program Files\Steam\steamapps\common\Conan Exiles\ConanSandbox\Binaries\Win64\ConanSandbox.exe No File

FirewallRules: [{097930D3-A9BB-4494-9D79-E1A8BF844912}] => (Allow) D:\Program Files\Steam\steamapps\common\Conan Exiles\ConanSandbox\Binaries\Win64\ConanSandbox_BE.exe No File

FirewallRules: [{6830938D-578A-414D-8889-B89CD799ED11}] => (Allow) D:\Program Files\Steam\steamapps\common\Conan Exiles\ConanSandbox\Binaries\Win64\ConanSandbox_BE.exe No File

FirewallRules: [{AFCF559B-B07D-4545-8797-6021D4C179AE}] => (Allow) D:\Program Files\Steam\steamapps\common\Deep Rock Galactic\FSD.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [{6204AB46-9251-400B-BB0A-03FCD5EEEBB1}] => (Allow) D:\Program Files\Steam\steamapps\common\Deep Rock Galactic\FSD.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [{673B8462-2CEC-43E5-B320-C430806E28AD}] => (Allow) D:\Program Files\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)

FirewallRules: [{1A403D09-9250-4D82-9545-3B4ED0537C85}] => (Allow) D:\Program Files\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)

FirewallRules: [{91D0E18B-D2E4-4FFE-8F11-6DE742FED648}] => (Allow) D:\Program Files\Steam\Steam.exe (Valve -> Valve Corporation)

FirewallRules: [{FC642AB3-D791-4D56-955B-E803991FA765}] => (Allow) D:\Program Files\Steam\Steam.exe (Valve -> Valve Corporation)

FirewallRules: [UDP Query User{303FB371-2576-4217-9358-5E6C0E1AD49A}C:\users\specu\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\specu\appdata\local\google\chrome\application\chrome.exe No File

FirewallRules: [TCP Query User{F39D1192-8372-49EF-9208-29CD8B1C1E93}C:\users\specu\appdata\local\google\chrome\application\chrome.exe] => (Allow) C:\users\specu\appdata\local\google\chrome\application\chrome.exe No File

FirewallRules: [TCP Query User{4C2D3373-12C5-4C24-926C-112BB6C284A3}F:\steam\steamapps\common\conan exiles - testlive client\conansandbox\binaries\win64\conansandbox.exe] => (Allow) F:\steam\steamapps\common\conan exiles - testlive client\conansandbox\binaries\win64\conansandbox.exe No File

FirewallRules: [UDP Query User{2F1C4D4A-2574-45C1-A51D-72354A8B184C}F:\steam\steamapps\common\conan exiles - testlive client\conansandbox\binaries\win64\conansandbox.exe] => (Allow) F:\steam\steamapps\common\conan exiles - testlive client\conansandbox\binaries\win64\conansandbox.exe No File

FirewallRules: [TCP Query User{065C241B-62B7-4CAA-B2AE-F80D7D256F55}D:\program files\steam\steamapps\common\dreadnought\dreadgame\dreadgame\binaries\win64\dreadgame-win64-shipping.exe] => (Allow) D:\program files\steam\steamapps\common\dreadnought\dreadgame\dreadgame\binaries\win64\dreadgame-win64-shipping.exe No File

FirewallRules: [UDP Query User{2575B83E-8918-43F0-9B5F-6D123EB129F0}D:\program files\steam\steamapps\common\dreadnought\dreadgame\dreadgame\binaries\win64\dreadgame-win64-shipping.exe] => (Allow) D:\program files\steam\steamapps\common\dreadnought\dreadgame\dreadgame\binaries\win64\dreadgame-win64-shipping.exe No File

FirewallRules: [{DB0CA7B0-3FD6-4F0A-B2C5-053F6A4314D9}] => (Allow) D:\Program Files\Steam\steamapps\common\Dying Light\DyingLightGame.exe (Techland Sp. z o.o. -> Techland)

FirewallRules: [{2AB24D77-2215-4C6A-9ABE-43079B86A70D}] => (Allow) D:\Program Files\Steam\steamapps\common\Dying Light\DyingLightGame.exe (Techland Sp. z o.o. -> Techland)

FirewallRules: [{61837A7D-73CA-4A38-8673-E9EDF19E20C3}] => (Allow) D:\Program Files\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe (Techland) [File not signed]

FirewallRules: [{EBDCCFDA-5945-4430-8E7B-511BBEADC0A9}] => (Allow) D:\Program Files\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe (Techland) [File not signed]

FirewallRules: [{72F69206-9F3A-4C37-AE00-E9CCDEB1BF84}] => (Allow) D:\Program Files\Steam\steamapps\common\Borderless Gaming\BorderlessGaming.exe (Rainway, Inc. -> Andrew Sampson)

FirewallRules: [{94F52143-9BE8-46AC-8807-F6A75CAE122B}] => (Allow) D:\Program Files\Steam\steamapps\common\Borderless Gaming\BorderlessGaming.exe (Rainway, Inc. -> Andrew Sampson)

FirewallRules: [{E4A93A65-ED7D-49D9-A10B-7A1E845774FF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [{2712BFB2-938F-4E5C-A1BA-5AE29D30AAE5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [{CFF27ADB-4E83-4A55-83A1-61561F0DF499}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [{50C73CA6-1A56-44D0-BD36-04A9C9CADA2F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)

FirewallRules: [TCP Query User{4A8142E5-7E17-4877-AF9D-53F27EB8A0BC}D:\games\brutal legend\content\brutallegend.exe] => (Allow) D:\games\brutal legend\content\brutallegend.exe No File

FirewallRules: [UDP Query User{E01240B5-7D15-48B3-84AF-F3A0F108A80D}D:\games\brutal legend\content\brutallegend.exe] => (Allow) D:\games\brutal legend\content\brutallegend.exe No File

FirewallRules: [{B9A92F71-7647-42D0-9962-8E1CA70D79F3}] => (Block) D:\Program Files\Autodesk\AutoCAD 2012 - English\acad.exe No File

FirewallRules: [{97694CD0-EB64-4E66-BF60-73B06DE80BE1}] => (Allow) D:\Program Files\Steam\steamapps\common\Destiny 2\destiny2.exe (Bungie Inc. -> Bungie)

FirewallRules: [{7EA510E8-DD5B-466B-AAF3-8E4C466FD5FA}] => (Allow) D:\Program Files\Steam\steamapps\common\Destiny 2\destiny2.exe (Bungie Inc. -> Bungie)

FirewallRules: [TCP Query User{92A584EC-173A-4A8D-8DDA-985E485AA45B}F:\steam\steamapps\common\empyrion - galactic survival\client\empyrion.exe] => (Allow) F:\steam\steamapps\common\empyrion - galactic survival\client\empyrion.exe () [File not signed]

FirewallRules: [UDP Query User{931160FE-5ABE-4AC6-B919-1857A875FA98}F:\steam\steamapps\common\empyrion - galactic survival\client\empyrion.exe] => (Allow) F:\steam\steamapps\common\empyrion - galactic survival\client\empyrion.exe () [File not signed]

FirewallRules: [{D77E6699-3228-4284-A51B-0989EB52B87B}] => (Allow) D:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)

FirewallRules: [{A49B1529-C499-4819-AA5E-21C191F5B3EB}] => (Allow) D:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)

FirewallRules: [{8CED2ACF-53C1-4068-80D2-683DB640EA71}] => (Allow) D:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)

FirewallRules: [{8D9C28B3-DC91-415C-A3F4-8B1C002CF986}] => (Allow) D:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)

FirewallRules: [{D8A9A7DC-3333-4113-B98D-F7EA62FB1591}] => (Allow) D:\Program Files\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe (Gearbox Software LLC -> Gearbox Software)

FirewallRules: [{F486CB03-63DA-4436-A6B0-6936CBEBF873}] => (Allow) D:\Program Files\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe (Gearbox Software LLC -> Gearbox Software)

FirewallRules: [{38B8B605-371E-458F-A25B-388313B9001B}] => (Allow) D:\Program Files\Steam\steamapps\common\Goat of Duty\GoatOfDuty.exe () [File not signed]

FirewallRules: [{D7A83AD4-C824-4465-9133-B8B6612BF29F}] => (Allow) D:\Program Files\Steam\steamapps\common\Goat of Duty\GoatOfDuty.exe () [File not signed]

FirewallRules: [{258351D9-10C9-436A-81BE-D29EC171C113}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [{53CB4203-FFC5-4F02-B658-BBC228BDCCD8}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [TCP Query User{4805CF04-A6B2-4F6C-8451-2B77BC4FCE5D}D:\program files\steam\steamapps\common\goat of duty\goatofduty\binaries\win64\goatofduty-win64-shipping.exe] => (Allow) D:\program files\steam\steamapps\common\goat of duty\goatofduty\binaries\win64\goatofduty-win64-shipping.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [UDP Query User{B8778E80-82CD-4C61-BABC-ED0B945F8ADA}D:\program files\steam\steamapps\common\goat of duty\goatofduty\binaries\win64\goatofduty-win64-shipping.exe] => (Allow) D:\program files\steam\steamapps\common\goat of duty\goatofduty\binaries\win64\goatofduty-win64-shipping.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [{830216DC-57B2-469C-ABE6-01D013E55125}] => (Allow) LPort=30640

FirewallRules: [TCP Query User{D2D45FFA-EED0-47EC-B3A0-06A506ADEB94}F:\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) F:\steam\steamapps\common\7 days to die\7daystodie.exe No File

FirewallRules: [UDP Query User{FCAF3945-DAAA-4CBB-B4EA-A1EBE13E48B5}F:\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) F:\steam\steamapps\common\7 days to die\7daystodie.exe No File

FirewallRules: [{4CA5E94B-00AE-4A7B-94F0-A3FFCDCEEEA0}] => (Allow) F:\Games\LeagueClient.exe (Riot Games, Inc. -> )

FirewallRules: [{621C2D14-0C46-43DE-BA54-D0FC0F2EB7A1}] => (Allow) F:\Games\LeagueClient.exe (Riot Games, Inc. -> )

FirewallRules: [{C890863E-3D39-4D31-8682-1806819782D8}] => (Allow) F:\Steam\steamapps\common\ASTRONEER\Astro.exe () [File not signed]

FirewallRules: [{62C2D8B6-61A6-40ED-98BF-1CC65B64E49A}] => (Allow) F:\Steam\steamapps\common\ASTRONEER\Astro.exe () [File not signed]

FirewallRules: [TCP Query User{1760E657-2091-4A89-A7B5-3A09BB2A81C2}F:\steam\steamapps\common\astroneer\astro\binaries\win64\astro-win64-shipping.exe] => (Allow) F:\steam\steamapps\common\astroneer\astro\binaries\win64\astro-win64-shipping.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [UDP Query User{7A636B76-CA9A-414A-A43B-144F58DD3C35}F:\steam\steamapps\common\astroneer\astro\binaries\win64\astro-win64-shipping.exe] => (Allow) F:\steam\steamapps\common\astroneer\astro\binaries\win64\astro-win64-shipping.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [TCP Query User{80D32D18-D023-4A12-B835-A50FF197BCB5}C:\program files (x86)\microsoft\skype for desktop\skype.exe] => (Allow) C:\program files (x86)\microsoft\skype for desktop\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [UDP Query User{87933C66-3838-4424-92D4-6EE2162F7436}C:\program files (x86)\microsoft\skype for desktop\skype.exe] => (Allow) C:\program files (x86)\microsoft\skype for desktop\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [TCP Query User{BA7E2DC2-5840-4CAF-AA71-F8D136E3F712}D:\games\admin stuff\conan stuff\admin map\conan-exiles-admin-map.exe] => (Allow) D:\games\admin stuff\conan stuff\admin map\conan-exiles-admin-map.exe (Node.js) [File not signed]

FirewallRules: [UDP Query User{83C05B1F-75FD-49ED-B39E-EBB6BE7E7BF9}D:\games\admin stuff\conan stuff\admin map\conan-exiles-admin-map.exe] => (Allow) D:\games\admin stuff\conan stuff\admin map\conan-exiles-admin-map.exe (Node.js) [File not signed]

FirewallRules: [{5CE03C8F-6E43-48EC-891C-4C19E4C34C13}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [TCP Query User{CA511F60-CBF2-40EE-ACB5-2DF84FDABBE9}F:\steam\steamapps\common\7 days to die - exp\7daystodie.exe] => (Allow) F:\steam\steamapps\common\7 days to die - exp\7daystodie.exe No File

FirewallRules: [UDP Query User{41D5DFBA-FC21-422D-A4AB-383B325C06CA}F:\steam\steamapps\common\7 days to die - exp\7daystodie.exe] => (Allow) F:\steam\steamapps\common\7 days to die - exp\7daystodie.exe No File

FirewallRules: [{49DAFC93-0189-498C-ABE0-6977599988F3}] => (Allow) F:\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe (Tripwire Interactive, LLC.) [File not signed]

FirewallRules: [{50AFC1B1-50DD-45A6-9162-305E46BF5A77}] => (Allow) F:\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe (Tripwire Interactive, LLC.) [File not signed]

FirewallRules: [{F3578512-70CC-4886-8D1D-1E7CED84639B}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Home2\Binaries\Win64\Home2-Win64-Shipping.exe (Oculus VR, LLC -> Epic Games, Inc.)

FirewallRules: [{63910A11-0AC3-4285-A6B4-32F43F46D155}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Home2\Binaries\Win64\Home2-Win64-Shipping.exe (Oculus VR, LLC -> Epic Games, Inc.)

FirewallRules: [{ED3FECBD-B64B-4710-912E-0F72CCF1ED4B}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Home2.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [{02D6E8E6-B470-41FA-979E-0E04DBAF4076}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Home2.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [{4259C5B4-1C01-4F24-8681-F3C50C139E04}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Engine\Binaries\Win64\UnrealCEFSubProcess.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [{DFD8F2B9-C1C4-4105-B91B-B9837948FCD4}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Engine\Binaries\Win64\UnrealCEFSubProcess.exe (Epic Games, Inc.) [File not signed]

FirewallRules: [{D3B1040D-25BD-42FB-8C2F-782592118DFC}] => (Allow) F:\Steam\steamapps\common\Empyrion - Galactic Survival\EmpyrionLauncher.exe (Eleon Game Studios) [File not signed]

FirewallRules: [{4FC4AB0E-53A6-4269-AB8C-7AC06C783157}] => (Allow) F:\Steam\steamapps\common\Empyrion - Galactic Survival\EmpyrionLauncher.exe (Eleon Game Studios) [File not signed]

FirewallRules: [{ECAA2694-B39F-49EC-AC06-D63995A9CD53}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )

FirewallRules: [{7914DF45-440F-4220-9ACF-D92FF4223BD3}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )

FirewallRules: [{A79ECA04-650A-4D6F-9B19-CBC1AB8EDE63}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )

FirewallRules: [{3D3B7321-7463-41DB-B89F-368A1EAA8B89}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )

FirewallRules: [TCP Query User{D927D2E7-2E6B-4AF1-A86B-CFB8346ECE9B}F:\games\bf4\battlefield 4\bf4.exe] => (Allow) F:\games\bf4\battlefield 4\bf4.exe No File

FirewallRules: [UDP Query User{FF739652-CBF7-4FD1-ABD8-AF32D53B65DE}F:\games\bf4\battlefield 4\bf4.exe] => (Allow) F:\games\bf4\battlefield 4\bf4.exe No File

FirewallRules: [{1B7D67F8-0717-4307-8DCC-2615B8DBBD0B}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe (McAfee, LLC. -> McAfee, LLC.)

FirewallRules: [{CC6E6878-D000-4BDD-885A-99F938D22628}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe (McAfee, LLC. -> McAfee, LLC.)

FirewallRules: [{3873726C-755A-463A-BAD6-4DCFD182758D}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe (McAfee, LLC. -> McAfee, LLC.)

FirewallRules: [{A6D04ED7-FC78-421B-BECD-AA1FD90D6836}] => (Allow) LPort=11000

FirewallRules: [{327AF8D0-E332-47C6-837C-56E7CE7BCCFF}] => (Allow) F:\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe (Tripwire Interactive, LLC.) [File not signed]

FirewallRules: [{FCB34BBE-C70B-44D8-8F0E-3420C51F0482}] => (Allow) F:\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe (Tripwire Interactive, LLC.) [File not signed]

FirewallRules: [{570A933E-2871-4214-B9F3-4DA5EFE09ED7}] => (Allow) F:\Steam\steamapps\common\Raft\Raft.exe () [File not signed]

FirewallRules: [{6E105C78-62D2-417C-9E65-BA9CB7B5D2AA}] => (Allow) F:\Steam\steamapps\common\Raft\Raft.exe () [File not signed]

FirewallRules: [{C675B0D4-73CF-4557-AA1A-6E439C9EAD91}] => (Allow) F:\Steam\steamapps\common\Creativerse\Creativerse.exe () [File not signed]

FirewallRules: [{AB4A81C2-E57B-4000-8CA9-FA415C478C11}] => (Allow) F:\Steam\steamapps\common\Creativerse\Creativerse.exe () [File not signed]

FirewallRules: [{B439483A-7612-40ED-BCB4-21D4BE62A7E1}] => (Allow) F:\Steam\steamapps\common\Keep Talking and Nobody Explodes\ktane.exe () [File not signed]

FirewallRules: [{90C744C8-C92B-4979-8C44-A83A896FD2C1}] => (Allow) F:\Steam\steamapps\common\Keep Talking and Nobody Explodes\ktane.exe () [File not signed]

FirewallRules: [{16382294-C77B-4EF8-94FE-7BD1651A767C}] => (Allow) D:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)

FirewallRules: [{E70D7CBE-014C-4585-9637-F67BA3A486D3}] => (Allow) D:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)

FirewallRules: [{9FD0F808-00E8-454F-A1A1-B01A8D1ADAB0}] => (Allow) D:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)

FirewallRules: [{B678CF9F-2E4E-414F-983D-EFB38FC5A3AC}] => (Allow) D:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)

FirewallRules: [{64FA3C81-2511-4503-AE59-B3A8310E1E35}] => (Allow) F:\Steam\steamapps\common\Star Trek Bridge Crew\stbc.exe (UBISOFT ENTERTAINMENT INC. -> )

FirewallRules: [{582C7097-CAC4-485A-B3D7-8B8931332537}] => (Allow) F:\Steam\steamapps\common\Star Trek Bridge Crew\stbc.exe (UBISOFT ENTERTAINMENT INC. -> )

FirewallRules: [{43961DC6-39DB-4413-A466-EE9F69D86E0F}] => (Allow) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.EXE (Logitech Inc -> Logitech, Inc.)

FirewallRules: [{E0505061-3E66-4680-BCC6-CCFD136A5B21}] => (Allow) F:\Games\Star Wars Jedi Fallen Order\SwGame\Binaries\Win64\starwarsjedifallenorder.exe (Respawn Entertainment) [File not signed]

FirewallRules: [{9D55A60B-45BA-47A0-9292-CC6072476634}] => (Allow) F:\Games\Star Wars Jedi Fallen Order\SwGame\Binaries\Win64\starwarsjedifallenorder.exe (Respawn Entertainment) [File not signed]

FirewallRules: [{2B0F5649-5CA5-49DE-8BAE-1BDCAC86F0A6}] => (Allow) F:\Games\Star Wars Jedi Fallen Order\SwGame\Binaries\Win64\starwarsjedifallenorder.exe (Respawn Entertainment) [File not signed]

FirewallRules: [{BB04AD73-FDF6-4306-8328-FC9FB812B5AA}] => (Allow) F:\Games\Star Wars Jedi Fallen Order\SwGame\Binaries\Win64\starwarsjedifallenorder.exe (Respawn Entertainment) [File not signed]

FirewallRules: [{43A15D5C-8D91-454E-AD86-7F1E7C83428E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

FirewallRules: [{F1EE3775-0CD7-477B-9667-AB698576DC43}] => (Allow) D:\Program Files\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe (Techland) [File not signed]

FirewallRules: [{11F6E00D-9705-41CA-B7CC-5653B4016BD2}] => (Allow) D:\Program Files\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe (Techland) [File not signed]

==================== Restore Points =========================

20-01-2020 02:53:11 Scheduled Checkpoint

==================== Faulty Device Manager Devices ============

Name: NVIDIA High Definition Audio

Description: NVIDIA High Definition Audio

Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}

Manufacturer: NVIDIA

Service: NVHDA

Problem: : This device is disabled. (Code 22)

Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: NVIDIA Virtual Audio Device (Wave Extensible) (WDM)

Description: NVIDIA Virtual Audio Device (Wave Extensible) (WDM)

Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}

Manufacturer: NVIDIA

Service: nvvad_WaveExtensible

Problem: : This device is disabled. (Code 22)

Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Bigscreen Audio Stream 1.2

Description: Bigscreen Audio Stream 1.2

Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}

Manufacturer: Bigscreen

Service: bsvad

Problem: : This device is disabled. (Code 22)

Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Screaming Bee Audio

Description: Screaming Bee Audio

Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}

Manufacturer: Screaming Bee LLC

Service: ScreamBAudioSvc

Problem: : This device is disabled. (Code 22)

Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: VB-Audio VoiceMeeter VAIO

Description: VB-Audio VoiceMeeter VAIO

Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}

Manufacturer: VB-Audio Software

Service: VBAudioVMVAIOMME

Problem: : This device is disabled. (Code 22)

Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: VB-Audio VoiceMeeter AUX VAIO

Description: VB-Audio VoiceMeeter AUX VAIO

Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}

Manufacturer: VB-Audio Software

Service: VBAudioVMAUXVAIOMME

Problem: : This device is disabled. (Code 22)

Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: VB-Audio VoiceMeeter VAIO3

Description: VB-Audio VoiceMeeter VAIO3

Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}

Manufacturer: VB-Audio Software

Service: VBAudio100VMVAIO3MME

Problem: : This device is disabled. (Code 22)

Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: VB-Audio Virtual Cable

Description: VB-Audio Virtual Cable

Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}

Manufacturer: VB-Audio Software

Service: VBAudioVACMME

Problem: : This device is disabled. (Code 22)

Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

==================== Event log errors: ========================

Application errors:

==================

Error: (01/24/2020 10:40:26 AM) (Source: ESENT) (EventID: 455) (User: )

Description: svchost (17288,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (01/24/2020 10:30:18 AM) (Source: Autodesk Content Service) (EventID: 0) (User: )

Description: Event-ID 0

Error: (01/24/2020 09:38:05 AM) (Source: ESENT) (EventID: 455) (User: )

Description: svchost (17096,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (01/24/2020 09:31:00 AM) (Source: ESENT) (EventID: 455) (User: )

Description: svchost (11908,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (01/24/2020 09:25:51 AM) (Source: ESENT) (EventID: 455) (User: )

Description: svchost (1812,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (01/24/2020 09:14:35 AM) (Source: ESENT) (EventID: 455) (User: )

Description: svchost (7192,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (01/24/2020 08:47:32 AM) (Source: ESENT) (EventID: 455) (User: )

Description: svchost (20832,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (01/24/2020 08:26:13 AM) (Source: ESENT) (EventID: 455) (User: )

Description: svchost (14412,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

System errors:

=============

Error: (01/24/2020 02:42:22 AM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: The Freemake Improver service failed to start due to the following error:

The service did not respond to the start or control request in a timely fashion.

Error: (01/24/2020 02:42:22 AM) (Source: Service Control Manager) (EventID: 7009) (User: )

Description: A timeout was reached (45000 milliseconds) while waiting for the Freemake Improver service to connect.

Error: (01/24/2020 02:41:31 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-91DDSQP)

Description: The server Microsoft.SeaofThieves_2.89.8738.2_x64__8wekyb3d8bbwe!AthenaClientShipping.AppXg8xvmkfns78mvecw1ww0xj6atrjyjj7f.mca did not register with DCOM within the required timeout.

Error: (01/22/2020 10:41:30 PM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: The Freemake Improver service failed to start due to the following error:

The service did not respond to the start or control request in a timely fashion.

Error: (01/22/2020 10:41:30 PM) (Source: Service Control Manager) (EventID: 7009) (User: )

Description: A timeout was reached (45000 milliseconds) while waiting for the Freemake Improver service to connect.

Error: (01/22/2020 10:40:44 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-91DDSQP)

Description: DCOM got error "1053" attempting to start the service BcastDVRUserService_32a67 with arguments "Unavailable" in order to run the server:

Windows.Media.Capture.Internal.AppCaptureShell

Error: (01/22/2020 10:40:44 PM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: The BcastDVRUserService_32a67 service failed to start due to the following error:

The service did not respond to the start or control request in a timely fashion.

Error: (01/22/2020 10:40:44 PM) (Source: Service Control Manager) (EventID: 7009) (User: )

Description: A timeout was reached (30000 milliseconds) while waiting for the BcastDVRUserService_32a67 service to connect.

CodeIntegrity:

===================================

Date: 2020-01-24 03:11:57.368

Description:

Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume6\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Windows signing level requirements.

Date: 2020-01-24 03:11:57.337

Description:

Date: 2020-01-24 02:45:23.622

Description:

Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume6\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Microsoft signing level requirements.

Date: 2020-01-24 02:45:23.616

Description:

Date: 2020-01-24 02:45:23.609

Description:

Date: 2020-01-24 02:45:23.603

Description:

Date: 2020-01-24 02:45:23.596

Description:

Date: 2020-01-24 02:45:23.590

Description:

==================== Memory info ===========================

BIOS: American Megatrends Inc. P2.20 05/11/2017

Motherboard: ASRock B250M-HDV

Processor: Intel® Core™ i7-7700 CPU @ 3.60GHz

Percentage of memory in use: 45%

Total physical RAM: 16344.3 MB

Available physical RAM: 8933.98 MB

Total Virtual: 26584.3 MB

Available Virtual: 15699.91 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:222.97 GB) (Free:9.71 GB) NTFS

Drive d: (New Volume) (Fixed) (Total:931.39 GB) (Free:97.42 GB) NTFS

Drive e: (TOSHIBA EXT) (Fixed) (Total:2794.39 GB) (Free:289.64 GB) NTFS

Drive f: () (Fixed) (Total:931.5 GB) (Free:241.57 GB) NTFS

\\?\Volume{89fd52e5-8a01-4cb2-8970-6722f5b16613}\ (Recovery) (Fixed) (Total:0.49 GB) (Free:0.05 GB) NTFS

\\?\Volume{a0350154-9b86-40d2-9fbc-226d9301b695}\ (SYSTEM) (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================

Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================

Disk: 1 (Size: 223.6 GB) (Disk ID: DFD63397)

Partition: GPT.

==========================================================

Disk: 2 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================

Disk: 3 (Size: 2794.5 GB) (Disk ID: 7785A014)

Partition: GPT.

==================== End of Addition.txt =======================

#1
Speculiar

Posted 24 January 2020 - 11:10 AM

Advertisements

#2
RKinner

Posted 24 January 2020 - 04:20 PM

#3
Speculiar

Posted 24 January 2020 - 04:35 PM

#4
RKinner

Posted 24 January 2020 - 04:51 PM

Similar Topics

0 user(s) are reading this topic

As Featured On:

Forums

Downloads

Members

Connect With Us

StartupCheckLibrary.dll popup

#1 Speculiar Posted 24 January 2020 - 11:10 AM

Advertisements

#2 RKinner Posted 24 January 2020 - 04:20 PM

#3 Speculiar Posted 24 January 2020 - 04:35 PM

#4 RKinner Posted 24 January 2020 - 04:51 PM

Similar Topics

0 user(s) are reading this topic

As Featured On:

Forums

Downloads

Members

Connect With Us

Sign In

#1
Speculiar

Posted 24 January 2020 - 11:10 AM

#2
RKinner

Posted 24 January 2020 - 04:20 PM

#3
Speculiar

Posted 24 January 2020 - 04:35 PM

#4
RKinner

Posted 24 January 2020 - 04:51 PM