Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:08-10-2015
- Ran by PGK (administrator) on CHESTERPC (10-10-2015 11:58:57)
- Running from C:\Users\PGK\AppData\Local\Microsoft\Windows\INetCache\IE\X7QUAV3F
- Loaded Profiles: PGK & (Available Profiles: PGK)
- Platform: Windows 8.1 (X64) Language: English (United States)
- Internet Explorer Version 11 (Default browser: Chrome)
- Boot Mode: Normal
- Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
- ==================== Processes (Whitelisted) =================
- (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
- (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
- (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
- (LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
- (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
- (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
- (Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
- (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
- (Microsoft Corporation) C:\Windows\System32\dllhost.exe
- (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.6.0.27\ccsvchst.exe
- (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.6.0.27\ccsvchst.exe
- (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
- (TeamSpeak Systems GmbH) C:\Program Files (x86)\TeamSpeak 3 Client\ts3client_win32.exe
- (Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
- (Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
- (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
- (Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
- (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
- (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
- (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
- (Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
- (Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
- (http://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
- (Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
- ==================== Registry (Whitelisted) ===========================
- (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
- HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7174728 2014-04-15] (Realtek Semiconductor)
- HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226560 2014-11-18] ()
- HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
- HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
- HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2014-11-20] (Advanced Micro Devices, Inc.)
- HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle Corporation)
- HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\raptrstub.exe [55568 2015-07-09] (Raptr, Inc)
- HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [36710768 2015-10-01] (Dropbox, Inc.)
- HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5579624 2015-08-03] (LogMeIn Inc.)
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2900560 2015-10-08] (Valve Corporation)
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001\...\Run: [Comrade.exe] => C:\Program Files (x86)\GameSpy\Comrade\Comrade.exe [800256 2008-12-09] (IGN Entertainment Inc.)
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001\...\Run: [puush] => C:\Program Files (x86)\puush\puush.exe [568392 2015-03-30] ()
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001\...\Run: [Akamai NetSession Interface] => C:\Users\PGK\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [3098424 2015-08-19] (Nota Inc.)
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001\...\Run: [AppEx Accelerator UI] => C:\Program Files\AMD Quick Stream\AMDQuickStream.exe [482528 2014-03-31] (AppEx Networks Corporation)
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001\...\Run: [WhatPulse] => C:\Program Files (x86)\WhatPulse2\whatpulse.exe [3563520 2014-12-08] ()
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001\...\Run: [PCShowServer] => C:\Users\PGK\AppData\Local\DIRECTV Player\PCShowServerPMWrapper.exe [1631088 2014-09-16] (Cisco)
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001\...\Run: [Octoshape Streaming Services] => C:\Users\PGK\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe [107800 2011-03-24] (Octoshape ApS)
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53737488 2015-08-07] (Skype Technologies S.A.)
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001\...\Run: [Norton Download Manager{NIS2250215-SHPD-FSD51083}] => C:\Users\PGK\AppData\Local\Temp\{AF279592-37E6-4977-8763-0B040A2EB38F}\Upgrade.exe [2034040 2015-07-27] (Symantec Corporation) <===== ATTENTION
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001\...\Run: [Spotify] => C:\Users\PGK\AppData\Roaming\Spotify\Spotify.exe [7660648 2015-10-08] (Spotify Ltd)
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001\...\Run: [Spotify Web Helper] => C:\Users\PGK\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2541160 2015-10-08] (Spotify Ltd)
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001\...\Run: [GoogleChromeAutoLaunch_C1AAA5D6DC371E698F6357F5D4386D37] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944 2015-09-23] (Google Inc.)
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2900560 2015-10-08] (Valve Corporation)
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Comrade.exe] => C:\Program Files (x86)\GameSpy\Comrade\Comrade.exe [800256 2008-12-09] (IGN Entertainment Inc.)
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [puush] => C:\Program Files (x86)\puush\puush.exe [568392 2015-03-30] ()
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Akamai NetSession Interface] => C:\Users\PGK\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [3098424 2015-08-19] (Nota Inc.)
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [AppEx Accelerator UI] => C:\Program Files\AMD Quick Stream\AMDQuickStream.exe [482528 2014-03-31] (AppEx Networks Corporation)
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [WhatPulse] => C:\Program Files (x86)\WhatPulse2\whatpulse.exe [3563520 2014-12-08] ()
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [PCShowServer] => C:\Users\PGK\AppData\Local\DIRECTV Player\PCShowServerPMWrapper.exe [1631088 2014-09-16] (Cisco)
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Octoshape Streaming Services] => C:\Users\PGK\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe [107800 2011-03-24] (Octoshape ApS)
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53737488 2015-08-07] (Skype Technologies S.A.)
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Norton Download Manager{NIS2250215-SHPD-FSD51083}] => C:\Users\PGK\AppData\Local\Temp\{AF072FE7-22BF-4E64-83AE-0B7EF4910E4B}\Upgrade.exe [2034040 2015-07-27] (Symantec Corporation) <===== ATTENTION
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Spotify] => C:\Users\PGK\AppData\Roaming\Spotify\Spotify.exe [7660648 2015-10-08] (Spotify Ltd)
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Spotify Web Helper] => C:\Users\PGK\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2541160 2015-10-08] (Spotify Ltd)
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [GoogleChromeAutoLaunch_C1AAA5D6DC371E698F6357F5D4386D37] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944 2015-09-23] (Google Inc.)
- ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-10-01] (Dropbox, Inc.)
- ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-10-01] (Dropbox, Inc.)
- ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-10-01] (Dropbox, Inc.)
- ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-10-01] (Dropbox, Inc.)
- ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-10-01] (Dropbox, Inc.)
- ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-10-01] (Dropbox, Inc.)
- ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-10-01] (Dropbox, Inc.)
- ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.dll [2015-10-01] (Dropbox, Inc.)
- ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
- ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
- ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
- ShellIconOverlayIdentifiers: [1TortoiseNormal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
- ShellIconOverlayIdentifiers: [2TortoiseModified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
- ShellIconOverlayIdentifiers: [3TortoiseConflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
- ShellIconOverlayIdentifiers: [4TortoiseLocked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
- ShellIconOverlayIdentifiers: [5TortoiseReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
- ShellIconOverlayIdentifiers: [6TortoiseDeleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
- ShellIconOverlayIdentifiers: [7TortoiseAdded] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
- ShellIconOverlayIdentifiers: [8TortoiseIgnored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
- ShellIconOverlayIdentifiers: [9TortoiseUnversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
- ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-10-01] (Dropbox, Inc.)
- ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-10-01] (Dropbox, Inc.)
- ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-10-01] (Dropbox, Inc.)
- ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-10-01] (Dropbox, Inc.)
- ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-10-01] (Dropbox, Inc.)
- ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-10-01] (Dropbox, Inc.)
- ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-10-01] (Dropbox, Inc.)
- ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.27.dll [2015-10-01] (Dropbox, Inc.)
- ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
- ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
- ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
- ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-09-11] (Microsoft Corporation)
- ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-09-11] (Microsoft Corporation)
- ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-09-11] (Microsoft Corporation)
- ShellIconOverlayIdentifiers-x32: [1TortoiseNormal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
- ShellIconOverlayIdentifiers-x32: [2TortoiseModified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
- ShellIconOverlayIdentifiers-x32: [3TortoiseConflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
- ShellIconOverlayIdentifiers-x32: [4TortoiseLocked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
- ShellIconOverlayIdentifiers-x32: [5TortoiseReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
- ShellIconOverlayIdentifiers-x32: [6TortoiseDeleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
- ShellIconOverlayIdentifiers-x32: [7TortoiseAdded] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
- ShellIconOverlayIdentifiers-x32: [8TortoiseIgnored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
- ShellIconOverlayIdentifiers-x32: [9TortoiseUnversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net)
- Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2013-12-29]
- ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.163\SSScheduler.exe (McAfee, Inc.)
- Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\PrivateTunnel.lnk [2015-08-06]
- ShortcutTarget: PrivateTunnel.lnk -> C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\PrivateTunnel.exe ()
- Startup: C:\Users\PGK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk [2015-03-24]
- ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
- ==================== Internet (Whitelisted) ====================
- (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
- Hosts: 0.0.0.1 mssplus.mcafee.com
- Tcpip\..\Interfaces\{974A50D2-89C0-4E4E-9D90-27FD18731C8D}: [DhcpNameServer] 75.75.75.75 75.75.76.76
- Internet Explorer:
- ==================
- HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.msn.com/HPDSK13/1
- HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.msn.com/HPDSK13/1
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.msn.com/HPDSK13/1
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.msn.com/HPDSK13/1
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.msn.com/HPDSK13/1
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.msn.com/HPDSK13/1
- SearchScopes: HKLM -> {61D277B2-4891-46AA-A338-ED98D855B47B} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us1-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
- SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
- SearchScopes: HKLM-x32 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
- SearchScopes: HKU\S-1-5-21-3758727133-4133580591-622938360-1001 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
- SearchScopes: HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
- BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-08-04] (Microsoft Corporation)
- BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
- BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-09-11] (Microsoft Corporation)
- BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
- BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2015-08-04] (Microsoft Corporation)
- BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\20.6.0.27\coIEPlg.dll [2014-11-28] (Symantec Corporation)
- BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Internet Security\Engine\20.6.0.27\IPS\IPSBHO.DLL [2013-04-08] (Symantec Corporation)
- BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2015-01-09] (Oracle Corporation)
- BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2015-03-03] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
- BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
- BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-09-11] (Microsoft Corporation)
- BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2015-01-09] (Oracle Corporation)
- BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
- Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\20.6.0.27\coIEPlg.dll [2014-11-28] (Symantec Corporation)
- Toolbar: HKU\S-1-5-21-3758727133-4133580591-622938360-1001 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
- Toolbar: HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
- Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
- Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
- Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
- FireFox:
- ========
- FF ProfilePath: C:\Users\PGK\AppData\Roaming\Mozilla\Firefox\Profiles\prwdnfuo.default
- FF DefaultSearchEngine: Bing
- FF SearchEngineOrder.3: Bing
- FF SelectedSearchEngine: Bing
- FF Homepage: user_pref("browser.startup.homepage", "about:home"about:home);
- FF Keyword.URL: hxxp://www.bing.com/search?FORM=U223DF&PC=U223&q=
- FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_185.dll [2015-09-23] ()
- FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2015-01-13] (EA Digital Illusions CE AB)
- FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
- FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-09-23] ()
- FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2015-01-13] (EA Digital Illusions CE AB)
- FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll [2015-01-09] (Oracle Corporation)
- FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll [2015-01-09] (Oracle Corporation)
- FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-02-17] (Microsoft Corporation)
- FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
- FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-01-14] (Microsoft Corporation)
- FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
- FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
- FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
- FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
- FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\3\NP_wtapp.dll [2013-12-29] ()
- FF Plugin HKU\S-1-5-21-3758727133-4133580591-622938360-1001: @nds.com/PlayerPlugin -> C:\Users\PGK\AppData\Local\DIRECTV Player\npPlayerPlugin.dll [2014-09-16] (Cisco)
- FF Plugin HKU\S-1-5-21-3758727133-4133580591-622938360-1001: @nds.com/PlayerPlugin64 -> C:\Users\PGK\AppData\Local\DIRECTV Player\win64\npPlayerPlugin64.dll [2014-09-16] (Cisco)
- FF Plugin HKU\S-1-5-21-3758727133-4133580591-622938360-1001: @nsroblox.roblox.com/launcher -> C:\Users\PGK\AppData\Local\Roblox\Versions\version-9d174e484c8b493e\\NPRobloxProxy.dll [2013-01-01] ( ROBLOX Corporation)
- FF Plugin HKU\S-1-5-21-3758727133-4133580591-622938360-1001: @nsroblox.roblox.com/launcher64 -> C:\Users\PGK\AppData\Local\Roblox\Versions\version-9d174e484c8b493e\\NPRobloxProxy64.dll [2013-01-01] ( ROBLOX Corporation)
- FF Plugin HKU\S-1-5-21-3758727133-4133580591-622938360-1001: @octoshape.com/Octoshape Streaming Services,version=1.0 -> C:\Users\PGK\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1312180-0-npoctoshape.dll [2013-12-18] (Octoshape ApS)
- FF Plugin HKU\S-1-5-21-3758727133-4133580591-622938360-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\PGK\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-01-08] (Unity Technologies ApS)
- FF Plugin HKU\S-1-5-21-3758727133-4133580591-622938360-1001: NDS.com/PlayerPlugin -> C:\Users\PGK\AppData\Local\DIRECTV Player\npPlayerPlugin.dll [2014-09-16] (Cisco)
- FF Plugin HKU\S-1-5-21-3758727133-4133580591-622938360-1001: thehappycloud.com/HappyCloudPlugin -> C:\ProgramData\HappyCloud\Application\npHappyCloudPlugin.dll [2013-11-17] (The Happy Cloud)
- FF Plugin HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @nds.com/PlayerPlugin -> C:\Users\PGK\AppData\Local\DIRECTV Player\npPlayerPlugin.dll [2014-09-16] (Cisco)
- FF Plugin HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @nds.com/PlayerPlugin64 -> C:\Users\PGK\AppData\Local\DIRECTV Player\win64\npPlayerPlugin64.dll [2014-09-16] (Cisco)
- FF Plugin HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @nsroblox.roblox.com/launcher -> C:\Users\PGK\AppData\Local\Roblox\Versions\version-9d174e484c8b493e\\NPRobloxProxy.dll [2013-01-01] ( ROBLOX Corporation)
- FF Plugin HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @nsroblox.roblox.com/launcher64 -> C:\Users\PGK\AppData\Local\Roblox\Versions\version-9d174e484c8b493e\\NPRobloxProxy64.dll [2013-01-01] ( ROBLOX Corporation)
- FF Plugin HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @octoshape.com/Octoshape Streaming Services,version=1.0 -> C:\Users\PGK\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1312180-0-npoctoshape.dll [2013-12-18] (Octoshape ApS)
- FF Plugin HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\PGK\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-01-08] (Unity Technologies ApS)
- FF Plugin HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: NDS.com/PlayerPlugin -> C:\Users\PGK\AppData\Local\DIRECTV Player\npPlayerPlugin.dll [2014-09-16] (Cisco)
- FF Plugin HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: thehappycloud.com/HappyCloudPlugin -> C:\ProgramData\HappyCloud\Application\npHappyCloudPlugin.dll [2013-11-17] (The Happy Cloud)
- FF Plugin ProgramFiles/Appdata: C:\Users\PGK\AppData\Roaming\mozilla\plugins\npoctoshape.dll [2015-02-27] (Octoshape ApS)
- FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-05-01]
- FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\IPSFFPlgn
- FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\IPSFFPlgn [2013-08-03]
- FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\coFFPlgn
- FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\coFFPlgn [2015-08-01]
- FF Extension: No Name - C:\Users\PGK\AppData\Roaming\Mozilla\Firefox\Profiles\prwdnfuo.default\extensions\plugin@starstable.com [not found]
- Chrome:
- =======
- CHR Profile: C:\Users\PGK\AppData\Local\Google\Chrome\User Data\Default
- CHR Extension: (Google Slides) - C:\Users\PGK\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-12]
- CHR Extension: (Google Docs) - C:\Users\PGK\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-02-16]
- CHR Extension: (Google Drive) - C:\Users\PGK\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-16]
- CHR Extension: (Norton Security Toolbar) - C:\Users\PGK\AppData\Local\Google\Chrome\User Data\Default\Extensions\bejnhdlplbjhffionohbdnpcbobfejcc [2014-05-19]
- CHR Extension: (YouTube) - C:\Users\PGK\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-16]
- CHR Extension: (Google Search) - C:\Users\PGK\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-16]
- CHR Extension: (Google Sheets) - C:\Users\PGK\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-06-12]
- CHR Extension: (Google Docs Offline) - C:\Users\PGK\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-02]
- CHR Extension: (Riggy) - C:\Users\PGK\AppData\Local\Google\Chrome\User Data\Default\Extensions\idmhgjmnoajcllmonagkncffamgggmoc [2014-04-21]
- CHR Extension: (Norton Identity Safe) - C:\Users\PGK\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2014-12-23]
- CHR Extension: (Roblox Forum Enhancer) - C:\Users\PGK\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcpdfglmclgjedmjhiakmmgkcibkimod [2014-05-10]
- CHR Extension: (Chrome Hotword Shared Module) - C:\Users\PGK\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-17]
- CHR Extension: (Skype Click to Call) - C:\Users\PGK\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-03-14]
- CHR Extension: (Chrome Web Store Payments) - C:\Users\PGK\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-16]
- CHR Extension: (Hide My Ass - VPN) - C:\Users\PGK\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocneleoikjgphlhjpeoabocgcegemegd [2014-07-11]
- CHR Extension: (Enhanced Steam) - C:\Users\PGK\AppData\Local\Google\Chrome\User Data\Default\Extensions\okadibdjfemgnhjiembecghcbfknbfhg [2014-11-05]
- CHR Extension: (Roblox Item Notifier) - C:\Users\PGK\AppData\Local\Google\Chrome\User Data\Default\Extensions\oldkompphpomjnkphhphjfggbadhdlfo [2014-06-22]
- CHR Extension: (Gmail) - C:\Users\PGK\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-16]
- CHR HKLM\...\Chrome\Extension: [bejnhdlplbjhffionohbdnpcbobfejcc] - C:\Program Files (x86)\Norton Internet Security\Engine\20.6.0.27\Exts\Chrome.crx [2014-12-10]
- CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
- CHR HKLM-x32\...\Chrome\Extension: [bejnhdlplbjhffionohbdnpcbobfejcc] - <not found>
- CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
- CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]
- CHR HKLM-x32\...\Chrome\Extension: [nppllibpnmahfaklnpggkibhkapjkeob] - <not found>
- ==================== Services (Whitelisted) ========================
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- S2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-11-20] (Advanced Micro Devices, Inc.) [File not signed]
- S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1141248 2015-06-18] ()
- R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
- R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
- S3 celavimushost; C:\Program Files (x86)\CEVO\CSGO Client Beta\CelavimusClientHelper.exe [123096 2014-12-27] (altPUG LLC)
- R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2774104 2015-09-11] (Microsoft Corporation)
- S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-29] (Dropbox, Inc.)
- S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-29] (Dropbox, Inc.)
- S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [235744 2015-04-26] (EasyAntiCheat Ltd)
- S2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-01-24] (WildTangent)
- S2 HssWd; C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe [589520 2015-06-03] ()
- R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-08-03] (LogMeIn, Inc.)
- S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
- S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.163\McCHSvc.exe [289256 2015-07-31] (McAfee, Inc.)
- R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\20.6.0.27\ccSvcHst.exe [144368 2013-05-20] (Symantec Corporation)
- S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1931632 2015-04-11] (Electronic Arts)
- S2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [239176 2014-04-15] (Realtek Semiconductor)
- S2 RzKLService; C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [105448 2013-11-22] (Razer Inc.)
- S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2015-02-19] (Microsoft Corporation)
- S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
- S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
- ===================== Drivers (Whitelisted) ==========================
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- S2 APXACC; C:\Windows\system32\DRIVERS\appexDrv.sys [229056 2014-10-28] (AppEx Networks Corporation)
- S3 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\BASHDefs\20130715.001\BHDrvx64.sys [1393240 2013-07-15] (Symantec Corporation)
- R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
- S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
- R3 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484512 2013-08-22] (Symantec Corporation)
- R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [138912 2013-08-22] (Symantec Corporation)
- R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-08-03] (LogMeIn Inc.)
- R1 HssDRV6; C:\Windows\system32\DRIVERS\hssdrv6.sys [44648 2015-06-03] (AnchorFree Inc.)
- R3 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\IPSDefs\20130820.006\IDSvia64.sys [520280 2013-08-20] (Symantec Corporation)
- R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
- R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [113880 2015-10-10] (Malwarebytes Corporation)
- S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
- S3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20130821.002\ENG64.SYS [126040 2013-08-22] (Symantec Corporation)
- S3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20130821.002\EX64.SYS [2098776 2013-08-22] (Symantec Corporation)
- R3 ptun0901; C:\Windows\system32\DRIVERS\ptun0901.sys [27136 2015-01-26] (The OpenVPN Project)
- R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [288840 2014-04-15] (Realtek Semiconductor Corp.)
- S3 SRTSP; C:\Windows\System32\Drivers\NISx64\1406000.01B\SRTSP64.SYS [796760 2013-05-15] (Symantec Corporation)
- R3 SRTSPX; C:\Windows\system32\drivers\NISx64\1406000.01B\SRTSPX64.SYS [36952 2013-03-04] (Symantec Corporation)
- R3 SymDS; C:\Windows\system32\drivers\NISx64\1406000.01B\SYMDS64.SYS [493656 2013-05-20] (Symantec Corporation)
- R3 SymEFA; C:\Windows\system32\drivers\NISx64\1406000.01B\SYMEFA64.SYS [1139800 2013-05-22] (Symantec Corporation)
- S4 SymELAM; C:\Windows\system32\drivers\NISx64\1406000.01B\SymELAM.sys [23448 2012-06-20] (Symantec Corporation)
- R3 SymEvent; C:\windows\system32\Drivers\SYMEVENT64x86.SYS [177312 2013-12-30] (Symantec Corporation)
- S3 SymIRON; C:\Windows\system32\drivers\NISx64\1406000.01B\Ironx64.SYS [224416 2013-03-04] (Symantec Corporation)
- R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1406000.01B\SYMNETS.SYS [433752 2013-04-24] (Symantec Corporation)
- U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [35064 2015-10-10] ()
- S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
- S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
- S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
- S3 EagleX64; \??\C:\WINDOWS\system32\drivers\EagleX64.sys [X]
- ==================== NetSvcs (Whitelisted) ===================
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- ==================== One Month Created files and folders ========
- (If an entry is included in the fixlist, the file/folder will be moved.)
- 2015-10-10 11:58 - 2015-10-10 11:59 - 00000000 ____D C:\FRST
- 2015-10-10 10:50 - 2015-10-10 10:50 - 00002521 _____ C:\Users\PGK\Desktop\JRT.txt
- 2015-10-10 10:38 - 2015-10-10 10:39 - 00001616 _____ C:\Users\PGK\Desktop\Rkill.txt
- 2015-10-10 09:18 - 2015-10-10 10:37 - 00000000 ____D C:\Users\PGK\Desktop\mbar
- 2015-10-10 09:18 - 2015-10-10 10:37 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
- 2015-10-10 08:25 - 2015-10-10 08:25 - 00000000 ____D C:\ProgramData\LogMeIn
- 2015-10-10 08:13 - 2015-10-10 08:13 - 00071586 _____ C:\Users\PGK\Desktop\malwarebytes.txt
- 2015-10-10 07:19 - 2015-10-10 07:19 - 00119768 _____ C:\Users\PGK\Desktop\asd ds.txt
- 2015-10-10 07:16 - 2015-10-10 07:16 - 00593693 _____ C:\Users\PGK\Downloads\Autoruns.zip
- 2015-10-10 07:16 - 2015-06-11 06:15 - 00050512 ____N C:\Users\PGK\Documents\autoruns.chm
- 2015-10-10 07:16 - 2015-05-25 04:40 - 00593048 ____N (Sysinternals - www.sysinternals.com) C:\Users\PGK\Documents\autorunsc.exe
- 2015-10-10 07:16 - 2015-05-25 04:39 - 00680600 ____N (Sysinternals - www.sysinternals.com) C:\Users\PGK\Documents\Autoruns.exe
- 2015-10-10 06:58 - 2015-10-10 08:25 - 00000000 ____D C:\Users\PGK\AppData\Local\CrashDumps
- 2015-10-10 06:56 - 2015-10-10 06:56 - 00008102 _____ C:\Users\PGK\Desktop\hypnoshit1.TXT
- 2015-10-10 06:47 - 2015-06-11 09:36 - 00072154 ____N C:\Users\PGK\Documents\procexp.chm
- 2015-10-10 06:47 - 2015-05-11 13:56 - 02508432 ____N (Sysinternals - www.sysinternals.com) C:\Users\PGK\Documents\procexp.exe
- 2015-10-10 06:47 - 2015-01-26 09:19 - 00002009 ____N C:\Users\PGK\Documents\Eula.txt
- 2015-10-10 06:40 - 2015-10-10 06:40 - 01186640 _____ C:\Users\PGK\Downloads\Unconfirmed 770035.crdownload
- 2015-10-10 06:39 - 2015-10-10 06:42 - 01186640 _____ C:\Users\PGK\Downloads\ProcessExplorer.zip
- 2015-10-10 06:16 - 2015-10-10 11:27 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
- 2015-10-10 06:16 - 2015-10-10 09:18 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
- 2015-10-10 06:16 - 2015-10-10 08:12 - 00000000 ____D C:\ProgramData\Malwarebytes
- 2015-10-10 06:16 - 2015-10-10 06:16 - 00001121 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
- 2015-10-10 06:16 - 2015-10-10 06:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
- 2015-10-10 06:16 - 2015-10-10 06:16 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
- 2015-10-10 06:16 - 2015-06-18 08:42 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
- 2015-10-10 06:16 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
- 2015-10-10 06:15 - 2015-10-10 06:15 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\PGK\Downloads\mbam-setup-2.1.8.1057.exe
- 2015-10-10 06:03 - 2015-10-10 06:03 - 04404952 _____ (Kaspersky Lab ZAO) C:\Users\PGK\Downloads\tdsskiller.exe
- 2015-10-10 05:14 - 2015-10-10 08:26 - 00035064 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
- 2015-10-10 05:14 - 2015-10-10 05:14 - 00000000 ____D C:\ProgramData\RogueKiller
- 2015-10-10 05:13 - 2015-10-10 05:14 - 18823752 _____ C:\Users\PGK\Downloads\RogueKiller.exe
- 2015-10-09 10:07 - 2015-10-09 10:07 - 05166088 _____ (Wargaming.net ) C:\Users\PGK\Downloads\WoT_internet_install_ct (2).exe
- 2015-10-04 01:39 - 2015-10-04 01:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
- 2015-10-03 09:52 - 2015-10-03 09:52 - 00057283 _____ C:\Users\PGK\Downloads\france football.jpeg
- 2015-10-02 07:32 - 2015-10-02 07:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot
- 2015-09-28 12:03 - 2015-09-28 12:03 - 00147616 _____ (Spotify Ltd) C:\Users\PGK\Downloads\SpotifySetup (1).exe
- 2015-09-21 03:27 - 2015-09-21 03:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
- 2015-09-21 01:33 - 2015-09-21 01:33 - 00000788 _____ C:\Users\PGK\Desktop\World of DANKS.lnk
- 2015-09-21 01:33 - 2015-09-21 01:33 - 00000000 ____D C:\Users\PGK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World of Tanks
- 2015-09-21 01:32 - 2015-09-21 01:33 - 06075904 _____ (Wargaming.net ) C:\Users\PGK\Downloads\WoT_internet_install_m_na.exe
- 2015-09-19 08:42 - 2015-09-19 08:42 - 00001955 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
- 2015-09-19 08:42 - 2015-09-19 08:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
- 2015-09-19 08:42 - 2015-09-19 08:42 - 00000000 ____D C:\Program Files\McAfee Security Scan
- 2015-09-14 10:45 - 2015-09-14 10:45 - 06075880 _____ (Wargaming.net ) C:\Users\PGK\Downloads\WoT_internet_install_na (2).exe
- 2015-09-14 01:15 - 2015-09-14 01:15 - 06798176 _____ (Wargaming.net ) C:\Users\PGK\Downloads\WoT_internet_install_eu.exe
- 2015-09-13 05:36 - 2015-09-13 05:36 - 00000222 _____ C:\Users\PGK\Desktop\Call of Duty Black Ops II - Multiplayer.url
- 2015-09-12 21:45 - 2015-09-12 21:47 - 100275535 _____ (Aslain ) C:\Users\PGK\Downloads\Aslains_XVM_WoT_Modpack_Installer_v.4.6.9_910.exe
- 2015-09-12 21:03 - 2015-09-12 21:26 - 100235065 _____ (Aslain ) C:\Users\PGK\Downloads\Aslains_XVM_WoT_Modpack_Installer_v.4.6.8_910.exe
- 2015-09-12 03:57 - 2015-10-09 10:07 - 00000809 _____ C:\Users\PGK\Desktop\World of Tanks - Common Test.lnk
- 2015-09-12 03:57 - 2015-10-09 10:07 - 00000000 ____D C:\Users\PGK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World of Tanks - Common Test
- 2015-09-12 03:56 - 2015-09-12 03:56 - 05166088 _____ (Wargaming.net ) C:\Users\PGK\Downloads\WoT_internet_install_ct (1).exe
- ==================== One Month Modified files and folders ========
- (If an entry is included in the fixlist, the file/folder will be moved.)
- 2015-10-10 12:00 - 2014-03-25 06:05 - 00000000 ____D C:\Users\PGK\AppData\Roaming\TS3Client
- 2015-10-10 12:00 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\system32\sru
- 2015-10-10 11:59 - 2014-02-09 08:15 - 00000000 ____D C:\Users\PGK\AppData\Roaming\Skype
- 2015-10-10 11:54 - 2015-08-02 12:33 - 00001317 _____ C:\Users\PGK\Desktop\Norton Installation Files.lnk
- 2015-10-10 11:54 - 2015-02-23 22:23 - 00040448 ___SH C:\Users\PGK\Desktop\Thumbs.db
- 2015-10-10 11:54 - 2013-05-20 15:13 - 00000000 ____D C:\ProgramData\Norton
- 2015-10-10 11:38 - 2015-06-29 07:25 - 00000922 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
- 2015-10-10 11:38 - 2015-02-19 12:15 - 01564906 _____ C:\WINDOWS\WindowsUpdate.log
- 2015-10-10 11:37 - 2014-02-16 09:29 - 00000926 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
- 2015-10-10 11:24 - 2015-02-27 08:25 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
- 2015-10-10 11:10 - 2013-08-22 02:29 - 00000000 ____D C:\Program Files (x86)\Steam
- 2015-10-10 10:41 - 2015-02-20 05:46 - 00000000 ____D C:\Users\PGK\AppData\Local\whatpulse
- 2015-10-10 10:41 - 2014-07-25 07:45 - 00000000 ____D C:\Users\PGK\AppData\Local\LogMeIn Hamachi
- 2015-10-10 10:00 - 2013-08-03 07:34 - 00003922 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{9CE8E787-85C7-4172-9578-92E9D3D2A805}
- 2015-10-10 08:29 - 2013-08-03 07:40 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3758727133-4133580591-622938360-1001
- 2015-10-10 08:27 - 2015-06-29 07:28 - 00000000 ___RD C:\Users\PGK\Dropbox
- 2015-10-10 08:26 - 2015-06-29 07:25 - 00000000 ____D C:\Users\PGK\AppData\Local\Dropbox
- 2015-10-10 08:25 - 2014-12-28 13:52 - 00000000 ____D C:\Users\PGK\AppData\Roaming\Raptr
- 2015-10-10 08:25 - 2014-07-10 18:44 - 00000000 ____D C:\Users\PGK\AppData\Local\Spotify
- 2015-10-10 08:24 - 2015-06-29 07:25 - 00000918 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
- 2015-10-10 08:24 - 2014-08-02 00:16 - 00000000 ____D C:\Users\PGK\AppData\Local\TSVNCache
- 2015-10-10 08:24 - 2014-02-16 09:29 - 00000922 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
- 2015-10-10 08:24 - 2013-08-22 07:46 - 00300711 _____ C:\WINDOWS\setupact.log
- 2015-10-10 08:24 - 2013-08-22 07:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
- 2015-10-10 08:23 - 2014-11-21 01:34 - 00182912 _____ C:\WINDOWS\PFRO.log
- 2015-10-10 08:23 - 2013-08-22 06:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
- 2015-10-10 08:22 - 2015-02-19 11:53 - 00000000 ____D C:\Users\PGK
- 2015-10-10 06:46 - 2015-05-07 10:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
- 2015-10-08 23:13 - 2015-02-19 11:46 - 00065536 _____ C:\WINDOWS\system32\spu_storage.bin
- 2015-10-08 19:38 - 2015-03-31 04:48 - 00000000 ____D C:\WINDOWS\Minidump
- 2015-10-08 19:38 - 2013-12-30 20:10 - 827037418 _____ C:\WINDOWS\MEMORY.DMP
- 2015-10-08 19:36 - 2014-07-10 18:42 - 00000000 ____D C:\Users\PGK\AppData\Roaming\Spotify
- 2015-10-08 10:54 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\AppReadiness
- 2015-10-07 11:00 - 2015-04-15 07:54 - 00000000 ___SD C:\WINDOWS\system32\GWX
- 2015-10-07 07:00 - 2012-07-26 00:59 - 00000000 ____D C:\WINDOWS\CbsTemp
- 2015-10-07 06:59 - 2015-04-15 07:54 - 00000000 ___SD C:\WINDOWS\SysWOW64\GWX
- 2015-10-05 09:56 - 2015-02-23 11:32 - 01700352 ___SH C:\Users\PGK\Downloads\Thumbs.db
- 2015-10-04 01:39 - 2015-06-29 07:25 - 00000000 ____D C:\Program Files (x86)\Dropbox
- 2015-10-03 01:06 - 2014-11-12 08:23 - 00003154 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForPGK
- 2015-10-03 01:06 - 2014-11-12 08:23 - 00000344 _____ C:\WINDOWS\Tasks\HPCeeScheduleForPGK.job
- 2015-10-02 07:32 - 2014-05-17 03:29 - 00000801 _____ C:\Users\PGK\AppData\Local\UserProducts.xml
- 2015-09-29 19:36 - 2013-08-14 04:26 - 00000052 _____ C:\WINDOWS\SysWOW64\DOErrors.log
- 2015-09-29 06:10 - 2014-06-08 06:09 - 00000000 ____D C:\Users\PGK\AppData\Roaming\.minecraft
- 2015-09-25 06:07 - 2015-01-06 09:26 - 00000000 ____D C:\Program Files\Microsoft Office 15
- 2015-09-23 01:24 - 2015-02-27 08:25 - 00003718 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
- 2015-09-23 00:30 - 2014-05-02 07:21 - 00000000 ____D C:\Users\PGK\AppData\Local\Akamai
- 2015-09-21 03:27 - 2014-02-09 08:15 - 00000000 ___RD C:\Program Files (x86)\Skype
- 2015-09-21 03:27 - 2014-02-09 08:15 - 00000000 ____D C:\ProgramData\Skype
- 2015-09-20 09:00 - 2013-05-20 14:32 - 00000000 ____D C:\ProgramData\Package Cache
- 2015-09-15 10:53 - 2013-12-30 07:32 - 00000000 ____D C:\WINDOWS\system32\MRT
- 2015-09-15 06:32 - 2014-02-16 09:29 - 00003898 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
- 2015-09-15 06:32 - 2014-02-16 09:29 - 00003662 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
- 2015-09-14 20:51 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\rescache
- 2015-09-14 18:18 - 2014-11-21 09:03 - 00812008 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
- 2015-09-14 18:18 - 2014-11-21 09:03 - 00178152 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
- 2015-09-13 19:02 - 2013-08-22 07:44 - 00501000 _____ C:\WINDOWS\system32\FNTCACHE.DAT
- 2015-09-11 18:03 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
- 2015-09-11 18:03 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\system32\inetsrv
- 2015-09-11 18:00 - 2014-11-21 01:25 - 00000000 ____D C:\Program Files\Windows Journal
- 2015-09-11 18:00 - 2013-08-22 08:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
- ==================== Files in the root of some directories =======
- 2014-07-31 20:33 - 2014-11-28 13:03 - 0000098 _____ () C:\Users\PGK\AppData\Roaming\LauncherSettings_live.cfg
- 2014-07-31 20:29 - 2014-12-06 09:18 - 0000039 _____ () C:\Users\PGK\AppData\Roaming\TheHunterSettings_steam_live.cfg
- 2014-05-17 03:29 - 2014-05-17 03:29 - 0000003 _____ () C:\Users\PGK\AppData\Local\updater.log
- 2014-05-17 03:29 - 2015-10-02 07:32 - 0000801 _____ () C:\Users\PGK\AppData\Local\UserProducts.xml
- Files to move or delete:
- ====================
- C:\Users\PGK\AppData\Local\Temp\{AF279592-37E6-4977-8763-0B040A2EB38F}\Upgrade.exe
- C:\Users\PGK\AppData\Local\Temp\{AF072FE7-22BF-4E64-83AE-0B7EF4910E4B}\Upgrade.exe
- C:\Users\PGK\Setup-4.5.5.0.exe
- Some files in TEMP:
- ====================
- C:\Users\PGK\AppData\Local\Temp\27fff54a706caf16275619fa9b79269c.dll
- C:\Users\PGK\AppData\Local\Temp\dllnt_dump.dll
- C:\Users\PGK\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp9v0kgw.dll
- C:\Users\PGK\AppData\Local\Temp\Extract.exe
- C:\Users\PGK\AppData\Local\Temp\FSDUI_Custom.exe
- C:\Users\PGK\AppData\Local\Temp\hsspk.exe
- C:\Users\PGK\AppData\Local\Temp\jre-8u40-windows-au.exe
- C:\Users\PGK\AppData\Local\Temp\procexp64.exe
- C:\Users\PGK\AppData\Local\Temp\SkypeSetup.exe
- C:\Users\PGK\AppData\Local\Temp\SP64076.exe
- C:\Users\PGK\AppData\Local\Temp\SP64077.exe
- C:\Users\PGK\AppData\Local\Temp\xmlUpdater.exe
- ==================== Bamital & volsnap =================
- (There is no automatic fix for files that do not pass verification.)
- C:\WINDOWS\system32\winlogon.exe => File is digitally signed
- C:\WINDOWS\system32\wininit.exe => File is digitally signed
- C:\WINDOWS\explorer.exe => File is digitally signed
- C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
- C:\WINDOWS\system32\svchost.exe => File is digitally signed
- C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
- C:\WINDOWS\system32\services.exe => File is digitally signed
- C:\WINDOWS\system32\User32.dll => File is digitally signed
- C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
- C:\WINDOWS\system32\userinit.exe => File is digitally signed
- C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
- C:\WINDOWS\system32\rpcss.dll => File is digitally signed
- C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
- C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
- C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
- LastRegBack: 2015-10-08 19:57
- ==================== End of FRST.txt ============================
- Additional scan result of Farbar Recovery Scan Tool (x64) Version:08-10-2015
- Ran by PGK (2015-10-10 12:01:17)
- Running from C:\Users\PGK\AppData\Local\Microsoft\Windows\INetCache\IE\X7QUAV3F
- Windows 8.1 (X64) (2015-02-19 20:03:28)
- Boot Mode: Normal
- ==========================================================
- ==================== Accounts: =============================
- Administrator (S-1-5-21-3758727133-4133580591-622938360-500 - Administrator - Disabled)
- Guest (S-1-5-21-3758727133-4133580591-622938360-501 - Limited - Disabled)
- HomeGroupUser$ (S-1-5-21-3758727133-4133580591-622938360-1006 - Limited - Enabled)
- PGK (S-1-5-21-3758727133-4133580591-622938360-1001 - Administrator - Enabled) => C:\Users\PGK
- ==================== Security Center ========================
- (If an entry is included in the fixlist, it will be removed.)
- AV: Norton Internet Security (Disabled - Out of date) {53C7D717-52E2-B95E-FA61-6F32ECC805DB}
- AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- AS: Norton Internet Security (Disabled - Out of date) {E8A636F3-74D8-B6D0-C0D1-5440974F4F66}
- FW: Norton Internet Security (Disabled) {6BFC5632-188D-B806-D13E-C607121B42A0}
- ==================== Installed Programs ======================
- (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
- 4 Elements II (x32 Version: 2.2.0.98 - WildTangent) Hidden
- 7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
- 9.03m (HKLM-x32\...\Steam App 263100) (Version: - Space Budgie)
- Ace of Spades (HKLM-x32\...\Steam App 224540) (Version: - Jagex Limited)
- Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.185 - Adobe Systems Incorporated)
- Aftermath version 1.0 (HKLM-x32\...\{024D0ADC-6846-4B7A-B12F-D571DF826068}}_is1) (Version: 1.0 - Free Reign Entertainment)
- Airport Mania (x32 Version: 2.2.0.95 - WildTangent) Hidden
- Akamai NetSession Interface (HKU\S-1-5-21-3758727133-4133580591-622938360-1001\...\Akamai) (Version: - Akamai Technologies, Inc)
- Akamai NetSession Interface (HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Akamai) (Version: - Akamai Technologies, Inc)
- AMD Catalyst Install Manager (HKLM\...\{F2A7CE36-57BF-5C86-952D-90DBF3746D82}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
- AMD Quick Stream (HKLM\...\{E9EED4AE-682B-4501-9574-D09A21717599}_is1) (Version: 3.10.4.0 - AppEx Networks)
- Angry Birds Space (HKLM-x32\...\Steam App 210550) (Version: - Rovio Entertainment Ltd)
- Antichamber (HKLM-x32\...\Steam App 219890) (Version: - Alexander Bruce)
- APB Reloaded (HKLM-x32\...\Steam App 113400) (Version: - Reloaded Productions)
- Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
- Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
- Arma 2 (HKLM-x32\...\Steam App 33910) (Version: - Bohemia Interactive)
- Arma 2: Operation Arrowhead (HKLM-x32\...\Steam App 33930) (Version: - Bohemia Interactive)
- Aslain's XVM WoT Modpack version 4.6.9 (HKLM-x32\...\ZRwTINhSZfduKONYrSCTiCiGPggQZdcLRvoAVxyCOXXpkHeC~1DC3968F_is1) (Version: 4.6.9 - Aslain)
- Azteca (x32 Version: 2.2.0.97 - WildTangent) Hidden
- Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
- Battlefield 2 (HKLM-x32\...\Steam App 24860) (Version: - DICE)
- Battlefieldâ„¢ Hardline Beta (HKLM-x32\...\{F5526D9D-13AD-4270-8707-AC921D168299}) (Version: 1.0.0.1 - Electronic Arts)
- Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.6.2 - EA Digital Illusions CE AB)
- BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version: - )
- BattlEye Uninstall (HKLM-x32\...\BattlEye for A2) (Version: - )
- Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
- BitTorrent (HKU\S-1-5-21-3758727133-4133580591-622938360-1001\...\BitTorrent) (Version: 7.9.3.40299 - BitTorrent Inc.)
- BitTorrent (HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\BitTorrent) (Version: 7.9.3.40299 - BitTorrent Inc.)
- Blacklight: Retribution (HKLM-x32\...\Steam App 209870) (Version: - Zombie, Inc.)
- Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
- Borderlands 2 (HKLM-x32\...\Steam App 49520) (Version: - Gearbox Software)
- Bounce Symphony (x32 Version: 2.2.0.97 - WildTangent) Hidden
- Build-a-lot (x32 Version: 2.2.0.98 - WildTangent) Hidden
- Call of Duty: Black Ops - Multiplayer (HKLM-x32\...\Steam App 42710) (Version: - Treyarch)
- Call of Duty: Black Ops II - Multiplayer (HKLM-x32\...\Steam App 202990) (Version: - Treyarch)
- Call of Duty: Black Ops II (HKLM-x32\...\Steam App 202970) (Version: - Treyarch)
- Call of Duty: Modern Warfare 2 - Multiplayer (HKLM-x32\...\Steam App 10190) (Version: - Infinity Ward)
- Call of Duty: Modern Warfare 2 (HKLM-x32\...\Steam App 10180) (Version: - Infinity Ward)
- Call of Duty: Modern Warfare 3 - Multiplayer (HKLM-x32\...\Steam App 42690) (Version: - Infinity Ward)
- Call of Duty: Modern Warfare 3 (HKLM-x32\...\Steam App 42680) (Version: - Infinity Ward)
- CEVO CS:GO Client Beta version 1.0 (HKLM-x32\...\CEVO CS:GO Client Beta_is1) (Version: 1.0 - )
- Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version: - Cheat Engine)
- Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
- Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version: - Valve)
- Cradle Of Egypt Collector's Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden
- Cradle of Rome 2 (x32 Version: 2.2.0.98 - WildTangent) Hidden
- Curse at Twilight (x32 Version: 3.0.2.32 - WildTangent) Hidden
- CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.3.5901 - CyberLink Corp.)
- CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.3.2509 - CyberLink Corp.)
- Cyberlink PhotoDirector (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.3.4608 - CyberLink Corp.)
- CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.3.2301 - CyberLink Corp.)
- CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.5.3414 - CyberLink Corp.)
- CyberLink PowerDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.8.4930 - CyberLink Corp.)
- CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.5.6.6104 - CyberLink Corp.)
- D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
- DayZ Commander (HKLM-x32\...\{668B7711-6DAF-465F-9BE2-F3C07C962131}) (Version: 0.92.117 - Dotjosh Studios)
- Delicious: Emily's Childhood Memories Premium Edition (x32 Version: 3.0.2.32 - WildTangent) Hidden
- DIRECTV Player (HKLM-x32\...\{437f5443-c052-432c-b1e7-abd9bc5cabdb}) (Version: 11.0 - DIRECTV)
- Dirty Bomb (HKLM-x32\...\Steam App 333930) (Version: - Splash Damage®)
- DisableMSDefender (Version: 1.0.0 - Hewlett-Packard Company) Hidden
- Disney Infinity PC (HKLM-x32\...\{11CB229E-8A2B-40FD-8670-4EC92D3DDAD5}) (Version: 1.85.4161 - Disney Interactive)
- Don't Starve Together Beta (HKLM-x32\...\Steam App 322330) (Version: - Klei Entertainment)
- Dota 2 (HKLM-x32\...\Steam App 570) (Version: - Valve)
- Double Action: Boogaloo (HKLM-x32\...\Steam App 317360) (Version: - Double Action Factory)
- Dropbox (HKLM-x32\...\Dropbox) (Version: 3.10.7 - Dropbox, Inc.)
- Dropbox Update Helper (x32 Version: 1.3.27.33 - Dropbox, Inc.) Hidden
- Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company)
- Evernote v. 5.8.4 (HKLM-x32\...\{C15841A6-C20A-11E4-977D-00163E98E7D6}) (Version: 5.8.4.6870 - Evernote Corp.)
- Far Cry 3 Blood Dragon (HKLM-x32\...\{A071F478-73E0-4143-AE55-4DD6BABD74F5}) (Version: 1.02 - Ubisoft)
- Farm Frenzy (x32 Version: 2.2.0.98 - WildTangent) Hidden
- Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
- FreeStyle2: Street Basketball (HKLM-x32\...\Steam App 339610) (Version: - Joycity)
- GameSpy Comrade (HKLM-x32\...\{894084B6-BC69-43B7-BF06-B93AECFEA520}) (Version: 2.1.1.214 - GameSpy)
- Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios)
- Ghost Recon Online (NCSA-Live) (HKU\S-1-5-21-3758727133-4133580591-622938360-1001\...\fc418bf9b18f76aa) (Version: 1.34.9860.1 - Ubisoft)
- Ghost Recon Online (NCSA-Live) (HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\fc418bf9b18f76aa) (Version: 1.34.9860.1 - Ubisoft)
- Goat Simulator (HKLM-x32\...\Steam App 265930) (Version: - Coffee Stain Studios)
- Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.101 - Google Inc.)
- Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
- Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
- Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden
- Gyazo 3.1.6 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version: - Nota Inc.)
- Half-Life 2 (HKLM-x32\...\Steam App 220) (Version: - Valve)
- Happy Cloud Client (HKU\S-1-5-21-3758727133-4133580591-622938360-1001\...\HappyCloud) (Version: 4.54 - Happy Cloud, Inc.)
- Happy Cloud Client (HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\HappyCloud) (Version: 4.54 - Happy Cloud, Inc.)
- Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
- Heroes & Generals (HKLM-x32\...\Steam App 227940) (Version: - Reto-Moto)
- Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
- Hotspot Shield 4.15.3 (HKLM-x32\...\HotspotShield) (Version: 4.15.3 - AnchorFree Inc.)
- House of 1000 Doors: Family Secrets (x32 Version: 2.2.0.98 - WildTangent) Hidden
- HP Connected Music (Meridian - installer) (HKLM-x32\...\StartHPConnectedMusic) (Version: 1.0 - Meridian Audio Ltd)
- HP Connected Music (Meridian - player) (HKU\S-1-5-21-3758727133-4133580591-622938360-1001\...\HPConnectedMusic) (Version: 1.1 (build 106) hp - Meridian Audio Ltd)
- HP Connected Music (Meridian - player) (HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\HPConnectedMusic) (Version: 1.1 (build 106) hp - Meridian Audio Ltd)
- HP MyRoom (HKLM-x32\...\{9C35EDE5-4B0F-45E7-A438-314BA889948E}) (Version: 9.0.0.0 - Hewlett-Packard Company)
- HP Quick Start (HKLM-x32\...\{574F0207-8E98-46CD-8F79-318348C98C46}) (Version: 1.0.4660.30220 - Hewlett-Packard)
- HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.6263.4289 - Hewlett-Packard)
- HP Support Assistant (HKLM-x32\...\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}) (Version: 7.4.45.4 - Hewlett-Packard Company)
- HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 12.00.0000 - Hewlett-Packard)
- HyperCam 2 (HKLM-x32\...\HyperCam 2) (Version: 2.29.01 - Hyperionics Technology LLC)
- Infestation: Survivor Stories (HKLM-x32\...\Steam App 226700) (Version: - Hammerpoint Interactive)
- Insurgency (HKLM-x32\...\Steam App 222880) (Version: - New World Interactive)
- Java 7 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217060FF}) (Version: 7.0.600 - Oracle)
- Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
- Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
- join.me (HKU\S-1-5-21-3758727133-4133580591-622938360-1001\...\JoinMe) (Version: 1.15.0.136 - LogMeIn, Inc.)
- join.me (HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\JoinMe) (Version: 1.15.0.136 - LogMeIn, Inc.)
- Just Cause 2 (HKLM-x32\...\Steam App 8190) (Version: - Avalanche)
- Just Cause 2 Demo (HKLM-x32\...\Steam App 35110) (Version: - Avalanche)
- Just Cause 2: Multiplayer Mod (HKLM-x32\...\Steam App 259080) (Version: - Avalanche Studios)
- Killing Floor (HKLM-x32\...\Steam App 1250) (Version: - Tripwire Interactive)
- Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve)
- Lightshot-5.3.0.0 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.3.0.0 - Skillbrains)
- LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.383 - LogMeIn, Inc.)
- LogMeIn Hamachi (x32 Version: 2.2.0.383 - LogMeIn, Inc.) Hidden
- Luxor Evolved (x32 Version: 2.2.0.98 - WildTangent) Hidden
- Mah Jong Medley (x32 Version: 2.2.0.95 - WildTangent) Hidden
- Mahjongg Dimensions Deluxe: Tiles in Time (x32 Version: 2.2.0.98 - WildTangent) Hidden
- Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
- McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.163.2 - McAfee, Inc.)
- Microsoft Office 365 ProPlus - en-us (HKLM\...\O365ProPlusRetail - en-us) (Version: 15.0.4753.1003 - Microsoft Corporation)
- Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
- Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
- Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
- Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
- Mozilla Firefox 32.0.3 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 32.0.3 (x86 en-US)) (Version: 32.0.3 - Mozilla)
- Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
- Mumble 1.2.8 (HKLM-x32\...\{A9DBD31A-A09F-4C7E-86D1-3B21C59000D1}) (Version: 1.2.8 - Thorvald Natvig)
- Mystery P.I. - Curious Case of Counterfeit Cove (x32 Version: 2.2.0.98 - WildTangent) Hidden
- NARUTO SHIPPUDEN: Ultimate Ninja STORM 3 Full Burst (HKLM-x32\...\Steam App 234670) (Version: - CyberConnect 2)
- Neverwinter (HKLM-x32\...\Steam App 109600) (Version: - Cryptic Studios)
- No More Room in Hell (HKLM-x32\...\Steam App 224260) (Version: - No More Room in Hell Team)
- Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.9.2 - Notepad++ Team)
- NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
- Octoshape Streaming Services (HKU\S-1-5-21-3758727133-4133580591-622938360-1001\...\Octoshape Streaming Services) (Version: - Octoshape ApS)
- Octoshape Streaming Services (HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Octoshape Streaming Services) (Version: - Octoshape ApS)
- Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4753.1003 - Microsoft Corporation) Hidden
- Office 15 Click-to-Run Licensing Component (Version: 15.0.4753.1003 - Microsoft Corporation) Hidden
- Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4753.1003 - Microsoft Corporation) Hidden
- Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
- Origin (HKLM-x32\...\Origin) (Version: 9.5.5.2850 - Electronic Arts, Inc.)
- PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.)
- Peggle Nights (x32 Version: 2.2.0.98 - WildTangent) Hidden
- Pirate101 (HKLM-x32\...\{662140BE-138C-4DC1-B4CD-B62C6C855A25}) (Version: 1.0.0 - KingsIsle Entertainment, Inc.)
- PlanetSide 2 (HKLM-x32\...\Steam App 218230) (Version: - Sony Online Entertainment)
- PlanetSide 2 (HKU\S-1-5-21-3758727133-4133580591-622938360-1001\...\SOE-PlanetSide 2) (Version: - Sony Online Entertainment)
- PlanetSide 2 (HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\SOE-PlanetSide 2) (Version: - Sony Online Entertainment)
- Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
- Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
- PrivateTunnel (HKLM-x32\...\PrivateTunnel) (Version: 2.4.2.4 - OpenVPN Technologies)
- PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.994 - Even Balance, Inc.)
- puush (HKLM-x32\...\{C3592426-531E-4110-911D-BFECE2CE284B}) (Version: 1.0.0.0 - Dean Herbert)
- Quake Live (HKLM-x32\...\Steam App 282440) (Version: - id Software)
- Qualcomm Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 10.0 - Qualcomm Atheros)
- QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
- Raptr (HKLM-x32\...\Raptr) (Version: - )
- Razer Game Booster (HKLM-x32\...\Razer Game Booster_is1) (Version: 4.1.59.0 - Razer Inc.)
- Realtek Card Reader (HKLM-x32\...\{F0A8BF4A-972F-41E0-9800-1EFE3BF28266}) (Version: 6.2.9200.29064 - Realtek Semiconductor Corp.)
- Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.15.410.2013 - Realtek)
- Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6875 - Realtek Semiconductor Corp.)
- Recovery Manager (x32 Version: 5.5.0.6208 - CyberLink Corp.) Hidden
- Roads of Rome 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
- ROBLOX Player for PGK (HKU\S-1-5-21-3758727133-4133580591-622938360-1001\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - ROBLOX Corporation)
- ROBLOX Player for PGK (HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - ROBLOX Corporation)
- ROBLOX Studio 2013 for PGK (HKU\S-1-5-21-3758727133-4133580591-622938360-1001\...\{2922D6F1-2865-4EFA-97A9-94EEAB3AFA14}) (Version: - ROBLOX Corporation)
- ROBLOX Studio 2013 for PGK (HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\{2922D6F1-2865-4EFA-97A9-94EEAB3AFA14}) (Version: - ROBLOX Corporation)
- Robocraft (HKLM-x32\...\Steam App 301520) (Version: - Freejam)
- Rocket League (HKLM-x32\...\Steam App 252950) (Version: - Psyonix)
- Rosetta Stone Ltd Services (HKLM-x32\...\{3165E4A6-D5DE-46B0-8597-D55E2B826B84}) (Version: 3.2.21 - Rosetta Stone Ltd.)
- Rosetta Stone TOTALe (HKLM-x32\...\{6B6BC189-D606-4BC7-9758-E6C364F76A55}) (Version: 4.5.5.0 - Rosetta Stone, Ltd)
- Royal Envoy 2 Collector's Edition (x32 Version: 3.0.2.32 - WildTangent) Hidden
- Rust (HKLM-x32\...\Steam App 252490) (Version: - Facepunch Studios)
- Saints Row IV (HKLM-x32\...\Steam App 206420) (Version: - Deep Silver Volition)
- Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
- Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation)
- Skypeâ„¢ 7.8 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.8.102 - Skype Technologies S.A.)
- Sling (HKLM-x32\...\{24AFF627-04A0-4C50-8112-35188EA937C4}) (Version: 4.8.123 - Echostar)
- Sniper Elite V2 (HKLM-x32\...\Steam App 63380) (Version: - Rebellion)
- SpaceEngine version 0.9.7.1 (HKLM-x32\...\{53E413B3-2417-4BD1-984D-8C92C81C231F}_is1) (Version: 0.9.7.1 - SpaceEngine)
- Speccy (HKLM\...\Speccy) (Version: 1.28 - Piriform)
- Spotify (HKU\S-1-5-21-3758727133-4133580591-622938360-1001\...\Spotify) (Version: 1.0.15.133.gf21970bd - Spotify AB)
- Spotify (HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Spotify) (Version: 1.0.15.133.gf21970bd - Spotify AB)
- Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
- System Requirements Lab Detection (HKLM-x32\...\{D72ECEDA-AC93-4CB1-8091-26A922ADC200}) (Version: 6.1.5.0 - Husdawg, LLC)
- Takedown: Red Sabre (HKLM-x32\...\Steam App 236510) (Version: - Serellan LLC)
- Tales of Lagoona (x32 Version: 2.2.0.110 - WildTangent) Hidden
- Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
- TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.17 - TeamSpeak Systems GmbH)
- The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios)
- The Mighty Quest For Epic Loot version 1.226674 (HKLM-x32\...\The Mighty Quest For Epic Loot_is1) (Version: 1.226674 - )
- The Stanley Parable (HKLM-x32\...\Steam App 221910) (Version: - Galactic Cafe)
- theHunter (HKLM-x32\...\Steam App 253710) (Version: - Expansive Worlds)
- Tom Clancy's Ghost Recon Phantoms - NA (HKLM-x32\...\Steam App 243870) (Version: - Ubisoft Singapore)
- TortoiseSVN 1.8.7.25475 (64 bit) (HKLM\...\{A8573F59-C080-4495-A9A8-EC32D8A4ECFF}) (Version: 1.8.25475 - TortoiseSVN)
- Unity Web Player (HKU\S-1-5-21-3758727133-4133580591-622938360-1001\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
- Unity Web Player (HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
- Unturned (HKLM-x32\...\Steam App 304930) (Version: - Nelson Sexton)
- Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
- Uplay (HKLM-x32\...\Uplay) (Version: 4.9 - Ubisoft)
- Vacation Questâ„¢ - Australia (x32 Version: 3.0.2.32 - WildTangent) Hidden
- VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
- Vuze (HKLM\...\8461-7759-5462-8226) (Version: 5.3.0.0 - Azureus Software, Inc.)
- War Thunder (HKLM-x32\...\Steam App 236390) (Version: - Gaijin Entertainment)
- Warframe (HKLM-x32\...\{AE0989EC-8823-454A-98CC-01E68AB4E417}) (Version: 1.0.0 - Digital Extremes)
- Warframe (HKLM-x32\...\Steam App 230410) (Version: - Digital Extremes)
- WhatPulse version 2.5 (HKLM-x32\...\{95CC8D5F-90A1-4285-9B2D-8D0FBCFD8D0D}_is1) (Version: 2.5 - WhatPulse)
- WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
- WildTangent Games App (HP Games) (x32 Version: 4.0.10.5 - WildTangent) Hidden
- Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
- WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
- Wireshark 1.12.6 (64-bit) (HKLM-x32\...\Wireshark) (Version: 1.12.6 - The Wireshark developer community, http://www.wireshark.org)
- Wizard101 (HKLM-x32\...\{A9E27FF5-6294-46A8-B8FD-77B1DECA3021}) (Version: 1.0.0 - KingsIsle Entertainment, Inc.)
- World of Tanks - Common Test (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812CT}_is1) (Version: - Wargaming.net)
- World of Tanks - Common Test (HKU\S-1-5-21-3758727133-4133580591-622938360-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812ct}_is1) (Version: - Wargaming.net)
- World of Tanks - Common Test (HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812ct}_is1) (Version: - Wargaming.net)
- World of Tanks (HKU\S-1-5-21-3758727133-4133580591-622938360-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net)
- World of Tanks (HKU\S-1-5-21-3758727133-4133580591-622938360-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812na}_is1) (Version: - Wargaming.net)
- World of Tanks (HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net)
- World of Tanks (HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812na}_is1) (Version: - Wargaming.net)
- World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
- Youda Jewel Shop (x32 Version: 3.0.2.32 - WildTangent) Hidden
- Zuma's Revenge (x32 Version: 2.2.0.98 - WildTangent) Hidden
- ==================== Custom CLSID (Whitelisted): ==========================
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- CustomCLSID: HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{DEE03C2B-0C0C-41A9-9877-FD4B4D7B6EA3}\InprocServer32 -> C:\Users\PGK\AppData\Local\Roblox\Versions\version-9d174e484c8b493e\RobloxProxy64.dll (ROBLOX Corporation)
- CustomCLSID: HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{E86236DE-9BD2-42b7-86F6-A829D8EC768C}\InprocServer32 -> C:\Users\PGK\AppData\Local\DIRECTV Player\win64\npPlayerPlugin64.dll (Cisco)
- CustomCLSID: HKU\S-1-5-21-3758727133-4133580591-622938360-1001_Classes\CLSID\{DEE03C2B-0C0C-41A9-9877-FD4B4D7B6EA3}\InprocServer32 -> C:\Users\PGK\AppData\Local\Roblox\Versions\version-9d174e484c8b493e\RobloxProxy64.dll (ROBLOX Corporation)
- CustomCLSID: HKU\S-1-5-21-3758727133-4133580591-622938360-1001_Classes\CLSID\{E86236DE-9BD2-42b7-86F6-A829D8EC768C}\InprocServer32 -> C:\Users\PGK\AppData\Local\DIRECTV Player\win64\npPlayerPlugin64.dll (Cisco)
- ==================== Restore Points =========================
- 23-09-2015 14:34:09 Scheduled Checkpoint
- 01-10-2015 05:46:58 Scheduled Checkpoint
- 07-10-2015 06:57:30 Windows Update
- 10-10-2015 10:40:30 JRT Pre-Junkware Removal
- ==================== Hosts content: ===============================
- (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
- 2013-08-22 06:25 - 2015-09-19 08:42 - 00000856 ____N C:\WINDOWS\system32\Drivers\etc\hosts
- 0.0.0.1 mssplus.mcafee.com
- ==================== Scheduled Tasks (Whitelisted) =============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- Task: {07AE683A-8554-487D-888C-B5C813163935} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2012-12-26] (CyberLink)
- Task: {0A90E492-A88D-48AB-B2AF-E6A1151960FF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2015-09-11] (Microsoft Corporation)
- Task: {10F11008-8F10-434D-B51D-756E45C2E80D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)
- Task: {14E21390-A49B-49D6-AB05-C3E3D81B130A} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-09-11] (Microsoft Corporation)
- Task: {2668D42B-553E-465A-9F74-F0E8C9284AD7} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe invagent.dll,RunUpdate -noappraiser
- Task: {2BAC71F4-91E8-4F26-87CD-9498B406FBBF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2015-08-27] (Hewlett-Packard)
- Task: {2BE32733-5CE1-4A44-8D81-35D64A16F96E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
- Task: {3175B92D-EA41-4965-A070-09A934E36E63} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2015-08-19] ()
- Task: {4059B7F3-7EB7-4BBE-8A40-772E2EB9C0CC} - System32\Tasks\HPCeeScheduleForPGK => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard)
- Task: {44F9D95E-8DFC-4AB8-A89B-CA1934C2E9FC} - System32\Tasks\CLVDLauncher => c:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2012-11-01] (CyberLink Corp.)
- Task: {457E4256-FBC9-4C4B-BB55-A4FA9E9108FA} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-09-23] (Adobe Systems Incorporated)
- Task: {537E889C-E5BF-4250-889E-4C7652F3BF99} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
- Task: {5D9F049B-8B19-4EBD-A856-377462AFEFD6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Pending HPSA Messages Reminder => c:\program files (x86)\hewlett-packard\hp health check\activecheck\product_line\Detection_toastNotify.exe [2015-09-22] (Hewlett-Packard)
- Task: {675EE3D7-2BB1-4A96-9640-12B97AC62520} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-08-26] (Microsoft Corporation)
- Task: {83BDDFD1-5BC7-40DC-8677-88231A614AB9} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2015-08-19] ()
- Task: {885C403B-0638-49E2-8569-D5A33F73E5C9} - System32\Tasks\HPGenoobeReminder => C:\Program Files (x86)\Hewlett-Packard\HP Registration Service\HP GenOOBE\HPGenOOBE.exe [2012-10-30] ()
- Task: {8A329207-FD4C-4081-91F6-E5F0FBFF655A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-09-11] (Microsoft Corporation)
- Task: {8AAA236A-3763-4B6C-A51D-90403929262D} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\20.6.0.27\SymErr.exe [2013-06-03] (Symantec Corporation)
- Task: {8D588E91-F067-443F-A1A4-BE8D5D2B2587} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\20.6.0.27\WSCStub.exe [2015-07-27] (Symantec Corporation)
- Task: {ABF5BA5A-FE6B-4B7C-9278-9784E054E11B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
- Task: {ADEBDFBF-F69C-4ADF-8157-1CFA468DB0C3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
- Task: {DDC439AA-540C-490D-B70C-293549664D1A} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2015-09-11] (Microsoft Corporation)
- Task: {DDD2623D-38D8-414B-86DA-177A2C9A4DE8} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-06-29] (Dropbox, Inc.)
- Task: {E84464B1-E2AA-4ADB-AC48-DF7F42F22E1E} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\20.6.0.27\SymErr.exe [2013-06-03] (Symantec Corporation)
- Task: {ED994E54-798B-429B-AAAF-9A8773E91E9D} - System32\Tasks\CLMLSvc_P2G8 => c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2012-11-01] (CyberLink)
- Task: {EF1727EA-F169-482E-828F-46705AF41B24} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
- Task: {F1369B62-02FB-4D2F-92C5-1127995CE868} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2015-09-11] (Microsoft Corporation)
- Task: {F21C694D-EFC0-4AD1-BFB6-E681CBB070EF} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-06-29] (Dropbox, Inc.)
- Task: {FA6056DE-95CB-4EAE-83BF-56F6C2030F80} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Internet Security\Upgrade.exe [2015-07-27] (Symantec Corporation)
- Task: {FCBD9C41-F859-4243-BD27-0D56853A6D8C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_CN2733G1G205RQ => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2015-08-27] (Hewlett-Packard)
- (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
- Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
- Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
- Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
- Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
- Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
- Task: C:\WINDOWS\Tasks\HPCeeScheduleForPGK.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
- ==================== Loaded Modules (Whitelisted) ==============
- 2015-04-09 06:27 - 2015-04-09 06:27 - 00022528 _____ () C:\WINDOWS\System32\ssm1mlm.dll
- 2015-09-25 06:05 - 2015-08-11 20:15 - 08900672 _____ () C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll
- 2014-05-06 20:37 - 2014-05-06 20:37 - 00076032 _____ () C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll
- 2014-05-06 20:37 - 2014-05-06 20:37 - 00088832 _____ () C:\Program Files\TortoiseSVN\bin\libsasl.dll
- 2015-01-11 04:23 - 2014-05-20 09:19 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
- 2014-12-10 18:20 - 2012-05-29 23:51 - 00699280 ____R () C:\PROGRAM FILES (X86)\NORTON INTERNET SECURITY\ENGINE\20.6.0.27\wincfi39.dll
- 2014-02-28 06:33 - 2015-09-07 12:43 - 00153576 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\quazip.dll
- 2014-02-28 06:41 - 2015-09-07 12:43 - 00090088 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\soundbackends\directsound_win32.dll
- 2014-02-28 06:41 - 2015-09-07 12:43 - 00103400 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win32.dll
- 2014-02-28 06:42 - 2015-09-07 12:43 - 00260072 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
- 2014-07-11 10:22 - 2015-08-06 22:01 - 00433664 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\plugins\soundboard.dll
- 2014-02-27 06:34 - 2015-09-07 12:43 - 00271360 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\ssleay32.dll
- 2014-02-27 06:34 - 2015-09-07 12:43 - 01300992 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\LIBEAY32.dll
- 2015-07-27 09:12 - 2015-10-05 09:18 - 00778752 _____ () C:\Program Files (x86)\Steam\SDL2.dll
- 2015-07-27 09:12 - 2015-07-03 09:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
- 2015-07-27 09:12 - 2015-10-08 16:02 - 02422864 _____ () C:\Program Files (x86)\Steam\video.dll
- 2015-07-27 09:12 - 2015-07-03 09:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
- 2015-07-27 09:12 - 2015-07-03 09:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
- 2014-08-29 08:00 - 2015-09-23 17:33 - 02549248 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
- 2014-08-29 08:00 - 2015-09-23 17:33 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
- 2014-08-29 08:00 - 2015-09-23 17:33 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
- 2014-08-29 08:00 - 2015-09-23 17:33 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
- 2014-08-29 08:00 - 2015-09-23 17:33 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
- 2013-07-26 14:46 - 2015-10-08 16:02 - 00704592 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
- 2015-07-23 07:38 - 2015-09-14 13:20 - 00193536 _____ () C:\Program Files (x86)\Steam\bin\openvr_api.dll
- 2013-07-15 14:32 - 2015-10-08 15:20 - 45010208 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
- 2015-01-20 11:56 - 2015-09-24 16:56 - 00119208 _____ () C:\Program Files (x86)\Steam\winh264.dll
- 2015-09-25 06:05 - 2015-08-11 17:57 - 08900672 _____ () C:\Program Files\Microsoft Office 15\root\Office15\1033\GrooveIntlResource.dll
- 2014-12-10 18:20 - 2012-05-29 23:51 - 00699280 ____R () C:\Program Files (x86)\Norton Internet Security\Engine\20.6.0.27\wincfi39.dll
- ==================== Alternate Data Streams (Whitelisted) =========
- (If an entry is included in the fixlist, only the ADS will be removed.)
- ==================== Safe Mode (Whitelisted) ===================
- (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
- ==================== EXE Association (Whitelisted) ===============
- (If an entry is included in the fixlist, the registry item will be restored to default or removed.)
- ==================== Internet Explorer trusted/restricted ===============
- (If an entry is included in the fixlist, it will be removed from the registry.)
- IE trusted site: HKU\S-1-5-21-3758727133-4133580591-622938360-1001\...\clonewarsadventures.com -> clonewarsadventures.com
- IE trusted site: HKU\S-1-5-21-3758727133-4133580591-622938360-1001\...\freerealms.com -> freerealms.com
- IE trusted site: HKU\S-1-5-21-3758727133-4133580591-622938360-1001\...\soe.com -> soe.com
- IE trusted site: HKU\S-1-5-21-3758727133-4133580591-622938360-1001\...\sony.com -> sony.com
- IE trusted site: HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\clonewarsadventures.com -> clonewarsadventures.com
- IE trusted site: HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\freerealms.com -> freerealms.com
- IE trusted site: HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\soe.com -> soe.com
- IE trusted site: HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\sony.com -> sony.com
- ==================== Other Areas ============================
- (Currently there is no automatic fix for this section.)
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\PGK\AppData\Roaming\Microsoft\Windows Photo Viewer\Windows Photo Viewer Wallpaper.jpg
- HKU\S-1-5-21-3758727133-4133580591-622938360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Users\PGK\AppData\Roaming\Microsoft\Windows Photo Viewer\Windows Photo Viewer Wallpaper.jpg
- DNS Servers: 75.75.75.75 - 75.75.76.76
- HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
- Windows Firewall is enabled.
- ==================== MSCONFIG/TASK MANAGER disabled items ==
- (Currently there is no automatic fix for this section.)
- ==================== FirewallRules (Whitelisted) ===============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
- FirewallRules: [{1A636629-88AC-4B97-9D7D-255DFA445A9B}] => (Allow) C:\Program Files (x86)\Origin Games\BFH Beta 2\bfh.exe
- FirewallRules: [{3966EF51-411C-44B7-B874-7ECB5D168AB3}] => (Allow) C:\Program Files (x86)\Origin Games\BFH Beta 2\bfh.exe
- FirewallRules: [{61E65785-FCDB-4883-89A0-3133757D2105}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
- FirewallRules: [{A1C2E56A-1598-489A-823B-BC6299A8E309}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
- FirewallRules: [{E5E356CE-AFE1-4CE2-A3B9-1893F3EE2F5A}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
- FirewallRules: [{B1146BA1-8FE8-401B-BF30-C20FC3FAA0E2}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
- FirewallRules: [{23D69C11-B98E-4C67-B069-A047D7047B67}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite V2\Launcher\SniperV2Launcher.exe
- FirewallRules: [{55883B16-2DA9-4240-8AB2-DE075E66DF6F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite V2\Launcher\SniperV2Launcher.exe
- FirewallRules: [{7BC7393D-E23E-453F-B6B5-2879EAB09D3C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\APB Reloaded\Binaries\VivoxVoiceService.exe
- FirewallRules: [{5F644B74-C37B-4ADE-A75E-C962404730EB}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\APB Reloaded\Binaries\VivoxVoiceService.exe
- FirewallRules: [{878D5D82-89BD-4FF5-9E73-B071224287D9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\APB Reloaded\Binaries\APB.exe
- FirewallRules: [{802A77FB-1D54-40C2-AA64-EA62F27FC656}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\APB Reloaded\Binaries\APB.exe
- FirewallRules: [{D26FB07B-443D-424A-A6F3-0ECACB1C6F55}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
- FirewallRules: [{DC97B165-6608-41E8-858E-F62BE22457F7}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
- FirewallRules: [{A9FBDACC-A2F2-4A3A-8846-D4B230B5A12E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Just Cause 2 Demo\JustCause2.exe
- FirewallRules: [{A3CB93EA-315C-4F8C-9B40-CB9DE8301633}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Just Cause 2 Demo\JustCause2.exe
- FirewallRules: [{9EFE5C39-45EF-440C-B3DF-7CFA4F28084B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Saints Row IV\SaintsRowIV.exe
- FirewallRules: [{3D194A10-6E8A-40F5-B12C-196644288C1D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Saints Row IV\SaintsRowIV.exe
- FirewallRules: [{248BF680-AA15-42B8-A334-B6121EDD3B78}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\dota.exe
- FirewallRules: [{C6680B87-BAE6-4C18-B7BA-58AE8709A12C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dota 2 beta\dota.exe
- FirewallRules: [{2475B52D-0266-47FC-9CC2-4A8F69781A0F}] => (Block) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe
- FirewallRules: [{BAC36913-E731-4FBE-BBAF-AD2EFAE4C6C9}] => (Block) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe
- FirewallRules: [UDP Query User{7B1A0F99-376C-4EBC-A771-A787F311252E}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe
- FirewallRules: [TCP Query User{76041C81-FA46-4613-ABB5-07AC803D30C4}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe
- FirewallRules: [{5D3165AD-3DA4-4C5D-A7FB-BF641C357094}] => (Allow) C:\Program Files (x86)\Ubisoft\Far Cry 3 Blood Dragon\bin\FC3BDUpdater.exe
- FirewallRules: [{B86892BD-F2A1-484C-885B-EF9628EE958E}] => (Allow) C:\Program Files (x86)\Ubisoft\Far Cry 3 Blood Dragon\bin\FC3BDUpdater.exe
- FirewallRules: [{F3F29F4D-63DD-4294-8665-9C14638A957E}] => (Allow) C:\Program Files (x86)\Ubisoft\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11.exe
- FirewallRules: [{D0A7CF4C-A492-4396-B2C9-5514A1125EF7}] => (Allow) C:\Program Files (x86)\Ubisoft\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11.exe
- FirewallRules: [{0F157881-32D8-4865-88F4-15646A748AD1}] => (Allow) C:\Program Files (x86)\Ubisoft\Far Cry 3 Blood Dragon\bin\fc3_blooddragon.exe
- FirewallRules: [{7E609BC7-F9CA-4630-B06A-5B20D8DEC40A}] => (Allow) C:\Program Files (x86)\Ubisoft\Far Cry 3 Blood Dragon\bin\fc3_blooddragon.exe
- FirewallRules: [{4562FA62-1266-461A-B902-7983BD7855E9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Cryptic Studios\Neverwinter.exe
- FirewallRules: [{E99467C4-2422-4904-A40C-03F5CB1BACBD}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Cryptic Studios\Neverwinter.exe
- FirewallRules: [{516A1173-E876-412F-9943-CBF4A8D64422}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
- FirewallRules: [{D9DB8F44-909C-4A5E-92B3-72B5DB671841}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
- FirewallRules: [UDP Query User{8D390666-F8C2-463C-AEF6-BF9981196358}C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe
- FirewallRules: [TCP Query User{78211A4C-90B5-4028-B51E-CA8AE2D9BC75}C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe
- FirewallRules: [{2786EB8F-E69F-4899-A91E-8A1B0C13FF33}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Quake Live\quakelive_steam.exe
- FirewallRules: [{341B4D90-F3BC-4DF9-B6C5-8FB0885CCB2D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Quake Live\quakelive_steam.exe
- FirewallRules: [{C7551311-B879-4C67-A457-7A10E7213C55}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\aceofspades\aos.exe
- FirewallRules: [{B2A820EF-6280-467A-BDFB-BBF7A7EBB69B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\aceofspades\aos.exe
- FirewallRules: [{4F056160-DBE9-48A8-BA8D-1AE9DA447403}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Unturned\Unturned.exe
- FirewallRules: [{DFAC277B-68A5-4726-A80D-3418CC58BC32}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Unturned\Unturned.exe
- FirewallRules: [{114C4303-5201-46E5-9AE5-8A696C6BCB2C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 3\iw5mp.exe
- FirewallRules: [{B270B8DE-042F-4335-8D23-654AA5F37230}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 3\iw5mp.exe
- FirewallRules: [{AC45E732-C710-4977-8649-26E5015E9118}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Double Action\hl2.exe
- FirewallRules: [{34BB8878-BC2A-487E-AA0D-184C242AF49F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Double Action\hl2.exe
- FirewallRules: [UDP Query User{C90C208D-F26E-4950-AA72-89EBEDF683A1}C:\users\pgk\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\pgk\appdata\roaming\spotify\spotify.exe
- FirewallRules: [TCP Query User{EEEE79AD-F148-4133-BC7B-A9F39F63DEFD}C:\users\pgk\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\pgk\appdata\roaming\spotify\spotify.exe
- FirewallRules: [UDP Query User{87FF097A-367B-4C0C-AD2E-D429D0CBDAA7}C:\users\pgk\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\pgk\appdata\local\akamai\netsession_win.exe
- FirewallRules: [TCP Query User{22299228-423A-497C-87C4-D415312DC878}C:\users\pgk\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\pgk\appdata\local\akamai\netsession_win.exe
- FirewallRules: [{4BA187C0-7456-4FD9-A03D-11FAA6BEBB22}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite V2\bin\SniperEliteV2.exe
- FirewallRules: [{5ADAEC2C-F4FA-48E8-A768-91E7F8600291}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite V2\bin\SniperEliteV2.exe
- FirewallRules: [{575FF08D-A391-46AF-96CF-0909A2523F7F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\903m\Binaries\Win32\903m.exe
- FirewallRules: [{D0C79C33-A92E-4B48-A5B3-B5B26CF5E0A8}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\903m\Binaries\Win32\903m.exe
- FirewallRules: [{71558FEF-DA10-4615-AD47-3389DC9ACE07}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Robocraft\Robocraft.exe
- FirewallRules: [{58E92A87-21ED-4148-82E3-ECB0F4D033C2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Robocraft\Robocraft.exe
- FirewallRules: [{9A71EB74-55B0-4346-872D-541B8F7DF150}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
- FirewallRules: [{B130D7E6-77F4-4F8A-A07B-89A7BE4310AE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
- FirewallRules: [{3D8C0B57-3786-4681-8B0E-12CCAB3E0788}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
- FirewallRules: [{B2F9E1AA-7B88-40DA-8B85-071F0873E3C7}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
- FirewallRules: [UDP Query User{C6979F33-00FE-44D6-B231-DAF24C0EA072}C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe
- FirewallRules: [TCP Query User{D160A305-47C6-424E-A9D1-AC39B7B6ECF2}C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe
- FirewallRules: [{E3538F1B-1AFB-4CFA-A255-5A5B066B5F2A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\War Thunder\launcher.exe
- FirewallRules: [{48189572-F8D8-4836-B055-67CA45090D52}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\War Thunder\launcher.exe
- FirewallRules: [UDP Query User{C91DF43D-9359-49E9-A0E5-E4B185A2D5AD}C:\program files (x86)\steam\steamapps\common\thehunter\game\thehunter.exe] => (Block) C:\program files (x86)\steam\steamapps\common\thehunter\game\thehunter.exe
- FirewallRules: [TCP Query User{35E2AFF0-E426-434A-89B1-6680D9BA5C31}C:\program files (x86)\steam\steamapps\common\thehunter\game\thehunter.exe] => (Block) C:\program files (x86)\steam\steamapps\common\thehunter\game\thehunter.exe
- FirewallRules: [{40170D0A-B08A-4E0B-B4D8-F9DDD36FAAAE}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3182\Agent.exe
- FirewallRules: [{3180ECFA-0188-41EE-9AF8-C3750CD3AF15}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3182\Agent.exe
- FirewallRules: [{673CFE00-0F18-48E3-A971-5A0D5AD5B1ED}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\KillingFloor\System\KillingFloor.exe
- FirewallRules: [{51ECD4AF-7BCF-431C-8C08-37D4F9156BC4}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\KillingFloor\System\KillingFloor.exe
- FirewallRules: [{C85AD55E-606F-483B-B331-A3514BC02AD0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Heroes & Generals\hngsteamlauncher.exe
- FirewallRules: [{1CEE87D3-E92B-4B3A-A191-BD5B8092E96D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Heroes & Generals\hngsteamlauncher.exe
- FirewallRules: [UDP Query User{8CBA9213-ABBF-433E-B8C9-1A7CFF15004E}C:\games\world_of_tanks_ct\wotlauncher.exe] => (Allow) C:\games\world_of_tanks_ct\wotlauncher.exe
- FirewallRules: [TCP Query User{4323EC2A-D92E-4395-8F28-F2E8DBB83C50}C:\games\world_of_tanks_ct\wotlauncher.exe] => (Allow) C:\games\world_of_tanks_ct\wotlauncher.exe
- FirewallRules: [UDP Query User{EA6E8EEE-6946-4D31-8A84-FC108C0D1D84}C:\users\pgk\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\pgk\appdata\roaming\spotify\spotify.exe
- FirewallRules: [TCP Query User{B90F36C4-B84A-462B-B5F7-D99CAF5ED108}C:\users\pgk\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\pgk\appdata\roaming\spotify\spotify.exe
- FirewallRules: [{70872673-4E9E-4AEE-9D96-C5657495DE98}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 3\iw5sp.exe
- FirewallRules: [{CAB2FDC4-F72B-4F9B-BD46-0F688973A246}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 3\iw5sp.exe
- FirewallRules: [UDP Query User{C89E9DD9-2000-4A02-A5DC-3566591FC28D}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
- FirewallRules: [TCP Query User{9674285E-8AC0-4C3A-9966-42A96FC325CA}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
- FirewallRules: [UDP Query User{29BC9F40-5CD1-42EC-B7CE-2AEEEE8EFC65}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe
- FirewallRules: [TCP Query User{469DA679-5B97-4A85-B4DE-B7884FB3ABB9}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe
- FirewallRules: [UDP Query User{0DCC5320-E0C8-44DB-9918-6B8D58F50010}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
- FirewallRules: [TCP Query User{2AB478A1-F985-4A5B-BD7D-7D089076FA5F}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
- FirewallRules: [UDP Query User{EDD4172C-A7C8-4DC5-8405-C35ED1F501E1}C:\program files (x86)\steam\steamapps\common\naruto shippuden ultimate ninja storm 3 full burst\ns3fb.exe] => (Block) C:\program files (x86)\steam\steamapps\common\naruto shippuden ultimate ninja storm 3 full burst\ns3fb.exe
- FirewallRules: [TCP Query User{0D49CE1A-4A10-4374-A56D-0100B1A6D813}C:\program files (x86)\steam\steamapps\common\naruto shippuden ultimate ninja storm 3 full burst\ns3fb.exe] => (Block) C:\program files (x86)\steam\steamapps\common\naruto shippuden ultimate ninja storm 3 full burst\ns3fb.exe
- FirewallRules: [{A0A3F9D5-91A9-4AF6-89E0-8657B4DCDA59}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\NARUTO SHIPPUDEN Ultimate Ninja STORM 3 Full Burst\NS3FB_launcher.exe
- FirewallRules: [{1C94E5E4-6774-4C15-BF0A-F285C5BEC41C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\NARUTO SHIPPUDEN Ultimate Ninja STORM 3 Full Burst\NS3FB_launcher.exe
- FirewallRules: [{2661FCE4-F795-4EE3-8556-4EF0646B1A00}] => (Allow) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe
- FirewallRules: [{7FCB326C-FFB0-47AA-80A3-C1CFCBE31196}] => (Allow) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe
- FirewallRules: [{A25F0838-3BFD-435C-B60E-EFBCEA2B3E1A}] => (Allow) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneLtdServices.exe
- FirewallRules: [{32E5C463-70CC-4F73-81DC-A27EC9EBAE25}] => (Allow) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneLtdServices.exe
- FirewallRules: [UDP Query User{2A8685D0-565D-4209-AA0C-00897987B928}C:\users\pgk\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\pgk\appdata\local\akamai\netsession_win.exe
- FirewallRules: [TCP Query User{FA158AC1-CD3A-4A5B-976D-311603CCD11C}C:\users\pgk\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\pgk\appdata\local\akamai\netsession_win.exe
- FirewallRules: [{5B85D8BE-BE52-41B8-977B-2A58615CC1B1}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GoatSimulator\Binaries\Win32\GoatGame-Win32-Shipping.exe
- FirewallRules: [{6A3F2413-A0A3-4E57-8252-4606D2B144B9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GoatSimulator\Binaries\Win32\GoatGame-Win32-Shipping.exe
- FirewallRules: [UDP Query User{355164CD-7085-4BFC-8A3C-FEA2D96E1841}C:\program files (x86)\steam\steamapps\common\the war z\infestation.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the war z\infestation.exe
- FirewallRules: [TCP Query User{CC92E3A7-8DF3-4EC1-A924-04FFAFFBF17B}C:\program files (x86)\steam\steamapps\common\the war z\infestation.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the war z\infestation.exe
- FirewallRules: [{272D8F34-302B-4D07-9DB9-672CC18DEC9D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\The War Z\WarZlauncher.exe
- FirewallRules: [{43542BBD-DB1B-4936-8CF8-AAE81B7A398C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\The War Z\WarZlauncher.exe
- FirewallRules: [{7F94F5C4-01EC-4DFD-A330-941FD9048F87}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
- FirewallRules: [{B4738A6D-C37D-4C38-8140-F58C41271E22}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
- FirewallRules: [{80630BE4-36F9-40A6-8383-963BEF43B2CE}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
- FirewallRules: [{539F21BD-FC1E-425B-BA0A-101BF01DF90F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
- FirewallRules: [{91B3263D-7192-4695-B1FF-2A8A86F40D52}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
- FirewallRules: [{37DA0DBD-140A-401B-B016-BBD0AD871559}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
- FirewallRules: [{EFF3E868-C43D-4DF5-A354-746A4B8B072F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\blacklightretribution\Blacklight Retribution.exe
- FirewallRules: [{21B3A10D-65E9-40C9-83CA-189EE8121341}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\blacklightretribution\Blacklight Retribution.exe
- FirewallRules: [{AB9E8183-D891-4A7D-A915-F01F6AD8B42F}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
- FirewallRules: [{47DE605A-585C-48B1-A101-7F1710CCEE69}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
- FirewallRules: [{6177A406-640A-44E0-AE5F-B4FFB978D22C}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
- FirewallRules: [{6C05724E-C3B7-4E65-9614-1D7A7A717F0F}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
- FirewallRules: [{515CD254-1F76-4E2B-8B47-E472C9E7DA2E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe
- FirewallRules: [{9E9B069E-7F8D-436B-A82B-EFB870733F21}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe
- FirewallRules: [{041CC253-A105-4C6A-98B2-B8396F2857F3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
- FirewallRules: [{C23F34BD-9EAE-40F1-9840-06C399900541}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
- FirewallRules: [{0B3A2515-75B0-446F-8987-182B9CBDD2F8}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
- FirewallRules: [UDP Query User{A0FCD748-29D2-49E3-97BC-6E44B6B91E1B}C:\program files (x86)\steam\steamapps\common\takedown red sabre early access\binaries\win64\takedowngame-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\takedown red sabre early access\binaries\win64\takedowngame-win64-shipping.exe
- FirewallRules: [TCP Query User{7FA80A6F-CB11-44DC-8347-ADEF5AA0B074}C:\program files (x86)\steam\steamapps\common\takedown red sabre early access\binaries\win64\takedowngame-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\takedown red sabre early access\binaries\win64\takedowngame-win64-shipping.exe
- FirewallRules: [{CD42D506-5BFF-4D7C-9F67-D6F70EBD449C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Source\hl2.exe
- FirewallRules: [{ED9C05A7-86B3-4535-8637-294939CD7458}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Source\hl2.exe
- FirewallRules: [{64E77171-E7C6-4D62-8969-AFDADB071DE6}] => (Allow) C:\Program Files\Vuze\Azureus.exe
- FirewallRules: [{6009CA27-84F7-4E73-942B-7A09C05171F5}] => (Allow) C:\Program Files\Vuze\Azureus.exe
- FirewallRules: [UDP Query User{C1E2E755-DE22-4BD7-A0EB-EF89D2D2CE90}C:\users\pgk\appdata\local\apps\2.0\0a2rkc7p.771\wzptbjo2.ld3\laun...app_59711684aa47878d_0001.0022_4673fb4b62091dd3\launcher.exe] => (Allow) C:\users\pgk\appdata\local\apps\2.0\0a2rkc7p.771\wzptbjo2.ld3\laun...app_59711684aa47878d_0001.0022_4673fb4b62091dd3\launcher.exe
- FirewallRules: [TCP Query User{D542A7A8-5B32-48B0-A021-2B70FF20701D}C:\users\pgk\appdata\local\apps\2.0\0a2rkc7p.771\wzptbjo2.ld3\laun...app_59711684aa47878d_0001.0022_4673fb4b62091dd3\launcher.exe] => (Allow) C:\users\pgk\appdata\local\apps\2.0\0a2rkc7p.771\wzptbjo2.ld3\laun...app_59711684aa47878d_0001.0022_4673fb4b62091dd3\launcher.exe
- FirewallRules: [{4D34E929-FE21-4554-9167-10FD2E89DD7F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\insurgency2\insurgency.exe
- FirewallRules: [{9120E683-B0B4-4684-AE7C-B4B48B012EDC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\insurgency2\insurgency.exe
- FirewallRules: [{7FB0BB89-16D2-4CD6-92C8-CE2F8AB07E68}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
- FirewallRules: [{AACB8508-1E29-4405-8D87-960F2D510C83}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\rust\rust.exe
- FirewallRules: [{1BEADD47-6F5E-4AC7-814C-16C668FDA599}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\APB Reloaded\Launcher\APBLauncher.exe
- FirewallRules: [{4A4FB00A-F244-486C-B11C-F338D8D1BD8A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\APB Reloaded\Launcher\APBLauncher.exe
- FirewallRules: [{918A65F7-D255-4FB1-A6DA-B0A65BC9A78B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
- FirewallRules: [{5C4017DB-333B-431A-87BC-2553DC201E7E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
- FirewallRules: [{F0B76A63-CFDC-4A04-80D4-14FADE1D89AB}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
- FirewallRules: [{D4FEF732-4081-49C0-AB2D-D60D38298010}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
- FirewallRules: [UDP Query User{FD7CAE0F-5608-426A-A89F-708D4E870935}F:\ghost recon online\ncsa-live\ghostrecononline.exe] => (Allow) F:\ghost recon online\ncsa-live\ghostrecononline.exe
- FirewallRules: [TCP Query User{801BB106-5CE2-4887-9E7C-B81E8A7E06AB}F:\ghost recon online\ncsa-live\ghostrecononline.exe] => (Allow) F:\ghost recon online\ncsa-live\ghostrecononline.exe
- FirewallRules: [UDP Query User{01075FA1-A807-4923-8098-4D94CD435B9B}C:\users\pgk\appdata\local\apps\2.0\0a2rkc7p.771\wzptbjo2.ld3\laun...app_59711684aa47878d_0001.0022_58303139b1970813\launcher.exe] => (Allow) C:\users\pgk\appdata\local\apps\2.0\0a2rkc7p.771\wzptbjo2.ld3\laun...app_59711684aa47878d_0001.0022_58303139b1970813\launcher.exe
- FirewallRules: [TCP Query User{B8E2858F-C31C-4424-840D-EDAD210E3E8B}C:\users\pgk\appdata\local\apps\2.0\0a2rkc7p.771\wzptbjo2.ld3\laun...app_59711684aa47878d_0001.0022_58303139b1970813\launcher.exe] => (Allow) C:\users\pgk\appdata\local\apps\2.0\0a2rkc7p.771\wzptbjo2.ld3\laun...app_59711684aa47878d_0001.0022_58303139b1970813\launcher.exe
- FirewallRules: [{FC05D5B8-6A17-421E-964F-BFB9F90DB3C9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\nmrih\sdk\hl2.exe
- FirewallRules: [{C6902FDC-3E87-42BB-9654-2B8BB7B87E52}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\nmrih\sdk\hl2.exe
- FirewallRules: [{9AED20A1-CC5E-43BC-9A6B-A7003B3DA0FF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Battlefield 2\BF2.exe
- FirewallRules: [{8E8EA4D8-1D72-487F-884A-74559742D774}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Battlefield 2\BF2.exe
- FirewallRules: [{ED8F17D6-7FC0-41B8-BCA1-3AB4F7DDE323}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 2\iw4mp.exe
- FirewallRules: [{8085B8D5-DE97-48F4-8E6D-2CAF27008614}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 2\iw4mp.exe
- FirewallRules: [{319FCE72-7B19-4327-A25E-60C829D2EFD5}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Angry Birds Space\AngryBirdsSpace.exe
- FirewallRules: [{652AF096-F044-4CFF-BDF3-E30F641E9ED0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Angry Birds Space\AngryBirdsSpace.exe
- FirewallRules: [{D7EB01C4-8B6C-43F6-87E2-9DAA02919CF8}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 2\iw4sp.exe
- FirewallRules: [{CDA6422E-3915-452F-81AF-2384F30EA9A0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 2\iw4sp.exe
- FirewallRules: [{CD74AEE9-E4BC-4BFD-912C-6795AEFCBCD6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\The Stanley Parable\stanley.exe
- FirewallRules: [{2FC9109D-A5CD-4D8E-861F-E10AD0935B6F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\The Stanley Parable\stanley.exe
- FirewallRules: [{F5B6CF95-7333-4B76-ABC0-37CC9259DA68}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
- FirewallRules: [{24E93327-EA3E-4F23-9A43-2E4FD2C373DF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
- FirewallRules: [{3E4D0901-EF48-4515-9F04-0784289CB5AE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
- FirewallRules: [{BDCB6D56-4D52-47DF-B066-AEBDE16A44DF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
- FirewallRules: [{600CA5D4-EEF9-4B87-ADC7-6F09285A75C2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOpsMP.exe
- FirewallRules: [{95EAB1BD-111B-45C1-A2DF-E76ED866A488}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops\BlackOpsMP.exe
- FirewallRules: [{67882E14-E58C-41C2-88D0-67AA2C2C4001}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
- FirewallRules: [{255C2A33-7A67-495E-9768-1C2173E8E1B6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
- FirewallRules: [UDP Query User{FEACEB63-95B0-492F-B7BC-01542210DE4C}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe
- FirewallRules: [TCP Query User{1120DD0D-23A6-43F5-ADD5-BB2AC4F2700C}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe
- FirewallRules: [{409B2C2F-6E4D-4902-869C-166933277542}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Angry Birds Space\AngryBirdsSpace.exe
- FirewallRules: [{BAD122FD-5CCC-40A1-AB48-828CAD07AD81}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Angry Birds Space\AngryBirdsSpace.exe
- FirewallRules: [{C6D965E5-1545-4D6C-865E-72B9D50C9F82}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
- FirewallRules: [{0FCDE308-06F2-4BCF-BBEE-2E05A7E31103}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
- FirewallRules: [{0C5B6C1F-5614-445A-8B72-188426D81135}] => (Allow) LPort=1900
- FirewallRules: [{FA0F6A02-568E-4E62-AE3B-DD0AD2534FAF}] => (Allow) LPort=2869
- FirewallRules: [{75781B34-35FB-4220-9B5D-212AB0569ABE}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
- FirewallRules: [{5640EBB1-6AF2-49D0-91A7-F6BDB07345AE}] => (Allow) C:\Users\Administrator\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
- FirewallRules: [{76756CCB-C107-42E9-AD0C-3E09D193AAB8}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
- FirewallRules: [{39B761C6-2B9A-48AD-B330-891C2937EACC}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
- FirewallRules: [{132B64B9-4FCB-4121-B9B7-1427D2D14FFA}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
- FirewallRules: [{9C94031C-E256-4C62-ADEF-196940AE1C22}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
- FirewallRules: [{5370A73C-6EF7-4B50-BFBF-28AB80379F62}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
- FirewallRules: [{34E958E7-ECA3-4DEE-A1FD-C156739048A9}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
- FirewallRules: [{4CC05EA5-AE13-430D-8F90-ECA2181B82AE}] => (Allow) %LocalAppData%\HPConnectedMusic\Application\spotify_helper.exe
- FirewallRules: [{3774808C-B12B-45AA-B432-2A3DBB3831EA}] => (Allow) %LocalAppData%\HPConnectedMusic\Application\spotify_helper.exe
- FirewallRules: [{65FC251B-D8D4-454E-A986-768C6286A15C}] => (Allow) %LocalAppData%\HPConnectedMusic\Application\HPConnectedMusic.exe
- FirewallRules: [{278BD31F-CDD1-4A75-81DD-8397594F67F1}] => (Allow) %LocalAppData%\HPConnectedMusic\Application\HPConnectedMusic.exe
- FirewallRules: [{B6C1BB16-5469-457F-9DC9-104CCB944D28}] => (Allow) C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe
- FirewallRules: [{8CDD10C0-0B01-407E-8D70-33C7F3A467C6}] => (Allow) C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe
- FirewallRules: [{75327BB0-A8F9-4F5A-B58D-FDCDD2857737}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Tom Clancy's Ghost Recon Phantoms NA\Launcher.exe
- FirewallRules: [{4040B342-1000-4A5A-93BC-E59E4FC9D9BF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Tom Clancy's Ghost Recon Phantoms NA\Launcher.exe
- FirewallRules: [TCP Query User{2E23C9B6-F1AF-4750-A522-D0A96FBF95A1}C:\program files (x86)\steam\steamapps\common\tom clancy's ghost recon phantoms na\game\ncsa-live\ghostreconphantoms.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\tom clancy's ghost recon phantoms na\game\ncsa-live\ghostreconphantoms.exe
- FirewallRules: [UDP Query User{6534B881-DF56-41EE-A748-8F378CD4D4CF}C:\program files (x86)\steam\steamapps\common\tom clancy's ghost recon phantoms na\game\ncsa-live\ghostreconphantoms.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\tom clancy's ghost recon phantoms na\game\ncsa-live\ghostreconphantoms.exe
- FirewallRules: [{AECFB1F8-65D1-4798-AB27-2FD5BFCA232F}] => (Block) C:\program files (x86)\steam\steamapps\common\tom clancy's ghost recon phantoms na\game\ncsa-live\ghostreconphantoms.exe
- FirewallRules: [{986AF8DB-8B55-4DB9-A3A9-05D14382343C}] => (Block) C:\program files (x86)\steam\steamapps\common\tom clancy's ghost recon phantoms na\game\ncsa-live\ghostreconphantoms.exe
- FirewallRules: [{89246767-87F0-413B-965B-1EFF73557F44}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\theHunter\launcher\launcher.exe
- FirewallRules: [{50CE2C2B-8B49-4ED9-A3AA-3A5E17BA77B6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\theHunter\launcher\launcher.exe
- FirewallRules: [{F2C65537-635D-4D6B-91C2-62039AF47542}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
- FirewallRules: [{5DCC7210-F167-4EA5-AAC2-03E6390CBD33}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
- FirewallRules: [{E1EA6D79-2ABC-4CC2-85E2-862AAD6B4CD4}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PlanetSide 2\LaunchPad.exe
- FirewallRules: [{5A7285D9-D50B-426D-AB30-90BED028FF78}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PlanetSide 2\LaunchPad.exe
- FirewallRules: [TCP Query User{A6D0B05E-01C3-45AC-A84F-AC05EAA83087}C:\program files (x86)\steam\steamapps\common\planetside 2\planetside2_x64.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\planetside 2\planetside2_x64.exe
- FirewallRules: [UDP Query User{1473D9B6-EC09-4A02-BB61-7724F4E09378}C:\program files (x86)\steam\steamapps\common\planetside 2\planetside2_x64.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\planetside 2\planetside2_x64.exe
- FirewallRules: [{6AB98287-741F-4A71-8950-AAC67D911575}] => (Block) C:\program files (x86)\steam\steamapps\common\planetside 2\planetside2_x64.exe
- FirewallRules: [{A23E7F5F-D19D-4135-867E-3E568326637B}] => (Block) C:\program files (x86)\steam\steamapps\common\planetside 2\planetside2_x64.exe
- FirewallRules: [{0C8EF305-5DD0-46A6-B85E-C768BDC783BB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
- FirewallRules: [{F36B411C-C22A-47FD-96E7-789E1BB63717}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
- FirewallRules: [{67A29442-94E8-4E83-9DC8-9E5A06D877C6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
- FirewallRules: [{804E4067-3D9C-457C-933C-DA36E6CE9093}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
- FirewallRules: [{36025645-A789-4E60-A386-7BE80A44941F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
- FirewallRules: [{4F7EE0C8-5D30-4CE4-A91A-2576745D1152}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
- FirewallRules: [{F7241FE4-8DA2-4E0A-BF56-AF6DF41C0863}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
- FirewallRules: [{8C2784E7-056D-4A4D-ADB3-C75B24D50996}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
- FirewallRules: [{9BEED82F-C1C4-47F9-8BC4-039391A76C0D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
- FirewallRules: [{9D0BE771-2B6F-486C-832D-19BB63A52EE0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
- FirewallRules: [{88BA8EB4-D1AD-44E1-A5CF-15B516C1337D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
- FirewallRules: [{D1EC43CB-A212-4A21-BAD3-1E3C3ED8DA38}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
- FirewallRules: [{E0267B38-A5CA-48C5-82B4-E1B33459C36A}] => (Allow) C:\Users\PGK\AppData\Local\Warframe\Downloaded\Public\Warframe.exe
- FirewallRules: [{17BD41DB-60A0-4EA0-9692-B5379CF7C232}] => (Allow) C:\Users\PGK\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe
- FirewallRules: [{08608B8E-9189-4203-8992-F77571B30413}] => (Allow) C:\Users\PGK\AppData\Local\Warframe\Downloaded\Public\Warframe.exe
- FirewallRules: [{2517C46B-000D-44BE-8C60-049ED0713580}] => (Allow) C:\Users\PGK\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe
- FirewallRules: [{877ADA10-8DB4-4AB7-998C-58C4761DC794}] => (Allow) C:\Users\PGK\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe
- FirewallRules: [{3BDC086A-9A4F-471F-BB37-AF3D107BF6D7}] => (Allow) C:\Users\PGK\AppData\Local\Warframe\Downloaded\Public\Tools\RemoteCrashSender.exe
- FirewallRules: [{AC5F6605-6DF2-420C-AADD-3E8226501019}] => (Allow) C:\Users\PGK\AppData\Local\Warframe\Downloaded\Public\Warframe.exe
- FirewallRules: [{07BE1B70-85A2-4181-8FE5-B3E3AD250B67}] => (Allow) C:\Users\PGK\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe
- FirewallRules: [{902828DE-A749-49B3-A8E2-5CBE5A4FFF14}] => (Allow) C:\Users\PGK\AppData\Local\Warframe\Downloaded\Public\Warframe.exe
- FirewallRules: [{CCBDB62B-7739-424A-8198-31BBB1DCF578}] => (Allow) C:\Users\PGK\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe
- FirewallRules: [{E2FBADD9-85FA-4EA9-ABA4-D01C64D1F52F}] => (Allow) C:\Users\PGK\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe
- FirewallRules: [{526613EA-DF09-4C6C-8BF4-7540034E01E7}] => (Allow) C:\Users\PGK\AppData\Local\Warframe\Downloaded\Public\Tools\RemoteCrashSender.exe
- FirewallRules: [TCP Query User{B5E75E56-D542-4FB4-AD5A-C25EBC4FD8DA}C:\users\pgk\documents\aftermath\amlauncher.exe] => (Allow) C:\users\pgk\documents\aftermath\amlauncher.exe
- FirewallRules: [UDP Query User{1A163CD7-986A-4D1B-B148-0FEA6E91CEC3}C:\users\pgk\documents\aftermath\amlauncher.exe] => (Allow) C:\users\pgk\documents\aftermath\amlauncher.exe
- FirewallRules: [{F79B2AE1-7923-4396-84BB-F2A55DB7141A}] => (Block) C:\users\pgk\documents\aftermath\amlauncher.exe
- FirewallRules: [{8132CC61-18F9-4B3A-97BD-821744EA1C36}] => (Block) C:\users\pgk\documents\aftermath\amlauncher.exe
- FirewallRules: [TCP Query User{6C89F623-FB1E-4612-914B-EC94D9FB2F53}C:\users\pgk\documents\aftermath\amlauncher.exe.new.exe] => (Allow) C:\users\pgk\documents\aftermath\amlauncher.exe.new.exe
- FirewallRules: [UDP Query User{EBC51274-77E4-4FD6-ACD7-95669E65F450}C:\users\pgk\documents\aftermath\amlauncher.exe.new.exe] => (Allow) C:\users\pgk\documents\aftermath\amlauncher.exe.new.exe
- FirewallRules: [{1763979A-579E-447D-9F03-F098183039F5}] => (Block) C:\users\pgk\documents\aftermath\amlauncher.exe.new.exe
- FirewallRules: [{62304AD9-77C3-44AB-9FFD-D82FD4D479B9}] => (Block) C:\users\pgk\documents\aftermath\amlauncher.exe.new.exe
- FirewallRules: [{244E4C05-8A32-4DC3-B99E-091CCC2DB6CE}] => (Allow) C:\Users\PGK\Documents\Aftermath\Aftermath.exe
- FirewallRules: [{F4383346-650C-4391-AF09-1F76B0ED5E4D}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
- FirewallRules: [{0F14B5E1-C4C5-4E33-BE72-364C0FB123C8}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
- FirewallRules: [{F229D530-654A-47E6-BF04-52ADD8B6C14C}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
- FirewallRules: [{E37E76EE-49E3-42FE-AFF8-3D182E623F58}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
- FirewallRules: [{09247318-2B70-43CC-8F3B-CA2E2D4D80CC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\rust\Legacy\rust.exe
- FirewallRules: [{4F963782-2ED3-4719-8A84-F97B5DC838E3}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\rust\Legacy\rust.exe
- FirewallRules: [{9231D8E1-EFAC-4674-9621-69103E1EB598}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\FreeStyle2\LauncherSteam.exe
- FirewallRules: [{E404FD6B-FE21-4770-B23A-0A81FE920E33}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\FreeStyle2\LauncherSteam.exe
- FirewallRules: [TCP Query User{3534CA9D-33E8-48E4-BA38-C6EB7D8E1EA6}C:\program files (x86)\steam\steamapps\common\freestyle2\freestyle2.exe] => (Block) C:\program files (x86)\steam\steamapps\common\freestyle2\freestyle2.exe
- FirewallRules: [UDP Query User{6A867B72-C56D-4880-83D1-BF6FA937E124}C:\program files (x86)\steam\steamapps\common\freestyle2\freestyle2.exe] => (Block) C:\program files (x86)\steam\steamapps\common\freestyle2\freestyle2.exe
- FirewallRules: [{2E07D7C2-3C4C-4CF4-A859-8AA29BB7A82E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Just Cause 2\JustCause2.exe
- FirewallRules: [{494FC53B-2E52-436B-BBF7-B4945F074660}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Just Cause 2\JustCause2.exe
- FirewallRules: [{BD0BBF6B-13A1-40B6-84B7-0A601D4C49FF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Just Cause 2 - Multiplayer Mod\JcmpLauncher.exe
- FirewallRules: [{BE3A105E-B4DA-4840-8526-C0D31A2A3EE6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Just Cause 2 - Multiplayer Mod\JcmpLauncher.exe
- FirewallRules: [{780DCF31-6528-4090-9A76-68D59EF8B097}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Antichamber\Binaries\Win32\UDK.exe
- FirewallRules: [{AD190ED9-2084-4AED-8070-8CC788448C48}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Antichamber\Binaries\Win32\UDK.exe
- FirewallRules: [{8944F9B8-3C8C-4C78-B265-4D48AC519E28}] => (Allow) C:\Users\PGK\AppData\Roaming\BitTorrent\BitTorrent.exe
- FirewallRules: [{5299B3A7-AA78-4DE9-A4B6-AF8952568317}] => (Allow) C:\Users\PGK\AppData\Roaming\BitTorrent\BitTorrent.exe
- FirewallRules: [{BBA7976B-B43B-4B0B-BF8C-04C61C036744}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
- FirewallRules: [{992F7F2A-A6F6-4BAE-88E5-37380721E2BE}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
- FirewallRules: [{371744C9-CC65-4F1D-BFB4-3A4B1D3922C2}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
- FirewallRules: [{40C35C0C-F622-44EF-ADD0-D2074865D295}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
- FirewallRules: [{1C6A87F7-EADC-447D-B446-CF2A2D66B8FE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA_BE.exe
- FirewallRules: [{10DDCD00-500C-448F-9739-FF18DDA79B91}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA_BE.exe
- FirewallRules: [{DBCDE69B-B18D-4925-B7D9-A19F7DF5ACF4}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
- FirewallRules: [{2056C2D3-0884-4E2C-A2D9-5631F055C1A6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
- FirewallRules: [{6ECC320B-F923-43F5-967A-7339F0178A16}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
- FirewallRules: [{407B9534-8582-4403-A6C9-A5068BD00B5E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
- FirewallRules: [{8829FA44-13B4-40BE-8D08-AB790DE802AD}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Half-Life 2\hl2.exe
- FirewallRules: [{F238E42B-B271-47F9-9405-3B2D4E1DDBB0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Half-Life 2\hl2.exe
- FirewallRules: [{8F9AFA02-59B3-4FB6-BA86-4E4A716F003E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GarrysMod\hl2.exe
- FirewallRules: [{994BD3E6-AF95-45C0-8CBC-B6A4A28A73FD}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GarrysMod\hl2.exe
- FirewallRules: [TCP Query User{9E6B3A6E-6B32-405E-97B4-246848F4E121}C:\programdata\sling\sling.exe] => (Allow) C:\programdata\sling\sling.exe
- FirewallRules: [UDP Query User{2C3DA6CA-04DA-4E25-8F08-D5613F37BB8F}C:\programdata\sling\sling.exe] => (Allow) C:\programdata\sling\sling.exe
- FirewallRules: [{976EE99C-3CEE-4CE3-89C7-6C2ADB4CC87D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
- FirewallRules: [{D3A9B828-C79A-4F69-A0B7-0B4ABACBA19E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
- FirewallRules: [{BE8A644D-946C-4E24-B8F9-27CAE16FB8CB}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Don't Starve Together Beta\bin\dontstarve_steam.exe
- FirewallRules: [{D4A57889-6B90-44A5-9C15-7B6AD5A94B5D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Don't Starve Together Beta\bin\dontstarve_steam.exe
- FirewallRules: [TCP Query User{01768F15-69ED-49FE-ADE0-A908382FBE03}C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe
- FirewallRules: [UDP Query User{0334D2E4-69DC-40FE-8DAA-886BBD1201BD}C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe
- FirewallRules: [{BF993378-10A2-4006-BADF-933EF517AFA7}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
- FirewallRules: [TCP Query User{B359C09B-8158-4216-B56C-4734E38F9DDB}C:\games\world_of_tanks_ct\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_ct\worldoftanks.exe
- FirewallRules: [UDP Query User{04571AC0-5BFE-4070-A3DD-B692CB13915B}C:\games\world_of_tanks_ct\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_ct\worldoftanks.exe
- FirewallRules: [{5544BF38-FC14-4E54-91F4-B113079AD267}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops II\t6mp.exe
- FirewallRules: [{36DC30AD-A306-4A91-BA5C-CAD25410BA14}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops II\t6mp.exe
- FirewallRules: [{6F9839D4-697C-4B2E-83E0-280779AF8C9B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops II\t6sp.exe
- FirewallRules: [{AC16370A-BFC6-49B8-B5C4-74A87942FD91}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops II\t6sp.exe
- FirewallRules: [{7122539F-808F-47EE-8532-9230729B0589}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\blacklightretribution\Binaries\Win32\FoxGame-win32-Shipping.exe
- FirewallRules: [{1F317E24-0594-4E56-B584-EEE31F6930E7}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\blacklightretribution\Binaries\Win32\FoxGame-win32-Shipping.exe
- FirewallRules: [{4962B6F7-A86C-405B-ADEA-3B5BD584664A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- FirewallRules: [{4D7276EA-AEC5-42F1-9333-C5365259A6C6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\rocketleague\Binaries\Win32\RocketLeague.exe
- FirewallRules: [{315EEDB9-FA84-4009-9E3F-7CB014FF2DAD}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\rocketleague\Binaries\Win32\RocketLeague.exe
- FirewallRules: [{025D2293-1D4C-4CC1-8BCA-2C7290A11879}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
- FirewallRules: [{4FC824B9-2577-435A-BD29-9902D59F4477}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe
- ==================== Faulty Device Manager Devices =============
- ==================== Event log errors: =========================
- Application errors:
- ==================
- Error: (10/10/2015 11:34:44 AM) (Source: Application Hang) (EventID: 1002) (User: )
- Description: The program IEXPLORE.EXE version 11.0.9600.17840 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
- Process ID: 271c
- Start Time: 01d1038a323df388
- Termination Time: 72
- Application Path: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
- Report Id: 93097ba2-6f7d-11e5-bf4c-24fd529fc1ac
- Faulting package full name:
- Faulting package-relative application ID:
- Error: (10/10/2015 11:14:24 AM) (Source: Application Hang) (EventID: 1002) (User: )
- Description: The program backgroundTaskHost.exe version 6.3.9600.17415 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
- Process ID: 7958
- Start Time: 01d10386c0948eb5
- Termination Time: 4294967295
- Application Path: C:\WINDOWS\system32\backgroundTaskHost.exe
- Report Id: b49cafc5-6f7a-11e5-bf4c-24fd529fc1ac
- Faulting package full name: 134D4F5B.Box_2.1.4.3_neutral__2qk4zy5s3qmee
- Faulting package-relative application ID: Box
- Error: (10/10/2015 09:44:13 AM) (Source: Application Hang) (EventID: 1002) (User: )
- Description: The program backgroundTaskHost.exe version 6.3.9600.17415 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
- Process ID: 1204
- Start Time: 01d1037a2dc00f48
- Termination Time: 4294967295
- Application Path: C:\WINDOWS\system32\backgroundTaskHost.exe
- Report Id: 21f13d6e-6f6e-11e5-bf4c-24fd529fc1ac
- Faulting package full name: 134D4F5B.Box_2.1.4.3_neutral__2qk4zy5s3qmee
- Faulting package-relative application ID: Box
- Error: (10/10/2015 09:29:17 AM) (Source: Application Hang) (EventID: 1002) (User: )
- Description: The program backgroundTaskHost.exe version 6.3.9600.17415 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
- Process ID: a58
- Start Time: 01d10378155c9608
- Termination Time: 4294967295
- Application Path: C:\WINDOWS\system32\backgroundTaskHost.exe
- Report Id: 0be79296-6f6c-11e5-bf4c-24fd529fc1ac
- Faulting package full name: 134D4F5B.Box_2.1.4.3_neutral__2qk4zy5s3qmee
- Faulting package-relative application ID: Box
- Error: (10/10/2015 08:59:28 AM) (Source: Application Hang) (EventID: 1002) (User: )
- Description: The program backgroundTaskHost.exe version 6.3.9600.17415 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
- Process ID: b8
- Start Time: 01d10373e49889c9
- Termination Time: 4294967295
- Application Path: C:\WINDOWS\system32\backgroundTaskHost.exe
- Report Id: dac04100-6f67-11e5-bf4c-24fd529fc1ac
- Faulting package full name: 134D4F5B.Box_2.1.4.3_neutral__2qk4zy5s3qmee
- Faulting package-relative application ID: Box
- Error: (10/10/2015 08:44:22 AM) (Source: Application Hang) (EventID: 1002) (User: )
- Description: The program backgroundTaskHost.exe version 6.3.9600.17415 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
- Process ID: 1098
- Start Time: 01d10371ccf5bb2d
- Termination Time: 4294967295
- Application Path: C:\WINDOWS\system32\backgroundTaskHost.exe
- Report Id: c0437351-6f65-11e5-bf4c-24fd529fc1ac
- Faulting package full name: 134D4F5B.Box_2.1.4.3_neutral__2qk4zy5s3qmee
- Faulting package-relative application ID: Box
- Error: (10/10/2015 08:44:22 AM) (Source: Application Hang) (EventID: 1002) (User: )
- Description: The program LiveComm.exe version 17.5.9600.20911 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
- Process ID: 1bc4
- Start Time: 01d10371cd206287
- Termination Time: 4294967295
- Application Path: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe
- Report Id: c1226902-6f65-11e5-bf4c-24fd529fc1ac
- Faulting package full name: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe
- Faulting package-relative application ID: ppleae38af2e007f4358a809ac99a64a67c1
- Error: (10/10/2015 08:25:24 AM) (Source: Application Error) (EventID: 1000) (User: )
- Description: Faulting application name: Spotify.exe, version: 1.0.15.133, time stamp: 0x560bfacc
- Faulting module name: libcef.dll, version: 3.2454.1325.0, time stamp: 0x56015680
- Exception code: 0x80000003
- Fault offset: 0x00184cb9
- Faulting process id: 0x11e8
- Faulting application start time: 0xSpotify.exe0
- Faulting application path: Spotify.exe1
- Faulting module path: Spotify.exe2
- Report Id: Spotify.exe3
- Faulting package full name: Spotify.exe4
- Faulting package-relative application ID: Spotify.exe5
- Error: (10/10/2015 08:24:49 AM) (Source: Application Error) (EventID: 1000) (User: )
- Description: Faulting application name: Comrade.exe, version: 1.0.0.0, time stamp: 0x493efb4d
- Faulting module name: mscorwks.dll, version: 2.0.50727.8009, time stamp: 0x53a11d01
- Exception code: 0xc0000005
- Fault offset: 0x00030e15
- Faulting process id: 0x%9
- Faulting application start time: 0xComrade.exe0
- Faulting application path: Comrade.exe1
- Faulting module path: Comrade.exe2
- Report Id: Comrade.exe3
- Faulting package full name: Comrade.exe4
- Faulting package-relative application ID: Comrade.exe5
- Error: (10/10/2015 08:24:48 AM) (Source: .NET Runtime) (EventID: 1023) (User: )
- Description: .NET Runtime version 2.0.50727.8009 - Fatal Execution Engine Error (73680676) (80131506)
- System errors:
- =============
- Error: (10/10/2015 10:43:52 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
- Description: The BHDrvx64 service depends on the Symantec Iron Driver service which failed to start because of the following error:
- %%1075
- Error: (10/10/2015 10:43:52 AM) (Source: Service Control Manager) (EventID: 7003) (User: )
- Description: The Symantec Iron Driver service depends on the following service: ccSet_NIS. This service might not be installed.
- Error: (10/10/2015 10:43:51 AM) (Source: Service Control Manager) (EventID: 7003) (User: )
- Description: The Symantec Iron Driver service depends on the following service: ccSet_NIS. This service might not be installed.
- Error: (10/10/2015 10:41:51 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
- Description: The Windows Media Player Network Sharing Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.
- Error: (10/10/2015 10:41:50 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
- Description: The Norton Internet Security service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service.
- Error: (10/10/2015 10:41:50 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
- Description: The HP Support Assistant Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
- Error: (10/10/2015 10:41:50 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
- Description: The GamesAppIntegrationService service terminated unexpectedly. It has done this 1 time(s).
- Error: (10/10/2015 10:41:49 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
- Description: The Steam Client Service service terminated unexpectedly. It has done this 1 time(s).
- Error: (10/10/2015 10:41:41 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
- Description: The LogMeIn Hamachi Tunneling Engine service terminated unexpectedly. It has done this 1 time(s).
- Error: (10/10/2015 10:41:41 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
- Description: The RosettaStoneDaemon service terminated unexpectedly. It has done this 1 time(s).
- ==================== Memory info ===========================
- Processor: AMD A6-5200 APU with Radeon(TM) HD Graphics
- Percentage of memory in use: 86%
- Total physical RAM: 3542.01 MB
- Available physical RAM: 485.5 MB
- Total Virtual: 7542.01 MB
- Available Virtual: 4414.54 MB
- ==================== Drives ================================
- Drive c: (Windows) (Fixed) (Total:911.35 GB) (Free:225.25 GB) NTFS ==>[system with boot components (obtained from reading drive)]
- Drive d: (Recovery Image) (Fixed) (Total:18.25 GB) (Free:2.28 GB) NTFS ==>[system with boot components (obtained from reading drive)]
- ==================== MBR & Partition Table ==================
- ========================================================
- Disk: 0 (Size: 931.5 GB) (Disk ID: 4C33F0E8)
- Partition: GPT.
- ==================== End of Addition.txt ============================
Add Comment
Please, Sign In to add comment