Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Additional scan result of Farbar Recovery Scan Tool (x64) Version:29-05-2016 02
- Ran by user (2016-05-30 20:07:56)
- Running from C:\Users\user\Downloads
- Windows 10 Pro Version 1511 (X64) (2016-01-07 21:32:26)
- Boot Mode: Normal
- ==========================================================
- ==================== Accounts: =============================
- Administrator (S-1-5-21-843162817-1331820867-3751661755-500 - Administrator - Disabled)
- DefaultAccount (S-1-5-21-843162817-1331820867-3751661755-503 - Limited - Disabled)
- Guest (S-1-5-21-843162817-1331820867-3751661755-501 - Limited - Disabled)
- HomeGroupUser$ (S-1-5-21-843162817-1331820867-3751661755-1003 - Limited - Enabled)
- user (S-1-5-21-843162817-1331820867-3751661755-1001 - Administrator - Enabled) => C:\Users\user
- ==================== Security Center ========================
- (If an entry is included in the fixlist, it will be removed.)
- AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- ==================== Installed Programs ======================
- (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
- µTorrent (HKU\S-1-5-21-843162817-1331820867-3751661755-1001\...\uTorrent) (Version: 3.4.6.42094 - BitTorrent Inc.)
- Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.1.2.114 - Adobe Systems Incorporated)
- Adobe Flash Player 10 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 10.3.181.14 - Adobe Systems Incorporated)
- Adobe Media Encoder CC 2015 (HKLM-x32\...\{0FAC7130-BEC5-47A5-8813-1D339B8326ED}) (Version: 9.0.0 - Adobe Systems Incorporated)
- Boson X (HKLM\...\Steam App 302610) (Version: - Ian MacLarty)
- ChrisPC Win Experience Index 3.30 (HKLM-x32\...\{1116089C-14B5-1A23-8113-6124567ABCDE}_is1) (Version: - Chris P.C. srl)
- D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
- Don't Starve Together (HKLM\...\Steam App 322330) (Version: - Klei Entertainment)
- FileZilla Client 3.14.1 (HKLM-x32\...\FileZilla Client) (Version: 3.14.1 - Tim Kosse)
- GameMaker: Studio (HKLM-x32\...\Steam App 214850) (Version: - YoYo Games Ltd.)
- GameRanger (HKU\S-1-5-21-843162817-1331820867-3751661755-1001\...\GameRanger) (Version: - GameRanger Technologies)
- Google Chrome (HKLM-x32\...\Google Chrome) (Version: 50.0.2661.102 - Google Inc.)
- Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
- IIS 10.0 Express (HKLM\...\{7A28A2B0-458B-4A58-84AC-C90D2D4B79FB}) (Version: 10.0.1735 - Microsoft Corporation)
- IIS Express Application Compatibility Database for x64 (HKLM\...\{08274920-8908-45c2-9258-8ad67ff77b09}.sdb) (Version: - )
- IIS Express Application Compatibility Database for x86 (HKLM\...\{ad846bae-d44b-4722-abad-f7420e08bcd9}.sdb) (Version: - )
- Java 7 Update 80 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417080FF}) (Version: 7.0.800 - Oracle)
- League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
- League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
- Lightshot-5.3.0.0 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.3.0.0 - Skillbrains)
- LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.428 - LogMeIn, Inc.)
- LogMeIn Hamachi (x32 Version: 2.2.0.428 - LogMeIn, Inc.) Hidden
- Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
- Microsoft .NET Framework 4.6.1 SDK (HKLM-x32\...\{2F0ECC80-B9E4-4485-8083-CD32F22ABD92}) (Version: 4.6.01055 - Microsoft Corporation)
- Microsoft .NET Framework 4.6.1 Targeting Pack (ENU) (HKLM-x32\...\{8EEB28EE-5141-411C-9CF0-9952264FE4AF}) (Version: 4.6.01055 - Microsoft Corporation)
- Microsoft .NET Framework 4.6.1 Targeting Pack (HKLM-x32\...\{8BC3EEC9-090F-4C53-A8DA-1BEC913040F9}) (Version: 4.6.01055 - Microsoft Corporation)
- Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
- Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.24720 - Microsoft Corporation)
- Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
- Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
- Microsoft SQL Server 2012 Command Line Utilities (HKLM\...\{9D573E71-1077-4C7E-B4DB-4E22A5D2B48B}) (Version: 11.0.2100.60 - Microsoft Corporation)
- Microsoft SQL Server 2012 Native Client (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation)
- Microsoft SQL Server 2014 Management Objects (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
- Microsoft SQL Server 2014 Management Objects (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation)
- Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)
- Microsoft SQL Server 2014 T-SQL Language Service (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation)
- Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
- Microsoft SQL Server Data Tools - enu (14.0.50616.0) (HKLM-x32\...\{58246C80-3941-4B69-AE31-264644E2ADB8}) (Version: 14.0.50616.0 - Microsoft Corporation)
- Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{FC3BB979-AA54-4B60-BBA3-2C4DA6E08D80}) (Version: 12.0.2402.29 - Microsoft Corporation)
- Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{091CE6AA-2753-4F6E-AD1C-0E875744EB54}) (Version: 12.0.2402.29 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
- Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
- Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
- Microsoft Visual Studio Code (HKLM-x32\...\{F8A2A208-72B3-4D61-95FC-8A65D340689B}_is1) (Version: 0.8.0 - Microsoft Corporation)
- Microsoft Web Deploy 3.6 (HKLM\...\{ED4CC1E5-043E-4157-8452-B5E533FE2BA1}) (Version: 3.1238.1955 - Microsoft Corporation)
- Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
- mIRC (HKLM-x32\...\mIRC) (Version: 7.41 - mIRC Co. Ltd.)
- Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
- Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.9.2 - Notepad++ Team)
- NVIDIA 3D Vision Controller Driver 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
- NVIDIA 3D Vision Driver 361.43 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 361.43 - NVIDIA Corporation)
- NVIDIA GeForce Experience 2.8.1.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.8.1.21 - NVIDIA Corporation)
- NVIDIA Graphics Driver 361.43 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 361.43 - NVIDIA Corporation)
- NVIDIA HD Audio Driver 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
- NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
- Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
- paint.net (HKLM\...\{141BA46D-2D1F-4DA6-9448-B847334585C0}) (Version: 4.0.4 - dotPDN LLC)
- Prerequisites for SSDT (HKLM-x32\...\{21373064-AD95-48DB-A32E-0D9E08EF7355}) (Version: 12.0.2000.8 - Microsoft Corporation)
- Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6662 - Realtek Semiconductor Corp.)
- Roslyn Language Services - x86 (x32 Version: 14.0.24723 - Microsoft Corporation) Hidden
- SHIELD Streaming (Version: 4.1.0250 - NVIDIA Corporation) Hidden
- SHIELD Wireless Controller Driver (Version: 2.8.1.21 - NVIDIA Corporation) Hidden
- Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.3.0.9150 - Microsoft Corporation)
- Skype™ 7.23 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.23.105 - Skype Technologies S.A.)
- Spotify (HKU\S-1-5-21-843162817-1331820867-3751661755-1001\...\Spotify) (Version: 1.0.29.92.g67727800 - Spotify AB)
- Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
- Super Hexagon (HKLM\...\Steam App 221640) (Version: - Terry Cavanagh)
- Team Fortress 2 (HKLM\...\Steam App 440) (Version: - Valve)
- Terraria (HKLM\...\Steam App 105600) (Version: - Re-Logic)
- Torch (HKU\S-1-5-21-843162817-1331820867-3751661755-1001\...\Torch) (Version: 45.0.0.11014 - Torch Media, Inc) <==== ATTENTION
- Unturned (HKLM\...\Steam App 304930) (Version: - Smartly Dressed Games)
- Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
- WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
- ==================== Custom CLSID (Whitelisted): ==========================
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- CustomCLSID: HKU\S-1-5-21-843162817-1331820867-3751661755-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\user\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe (Microsoft Corporation)
- CustomCLSID: HKU\S-1-5-21-843162817-1331820867-3751661755-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
- ==================== Scheduled Tasks (Whitelisted) =============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- Task: {105A598F-689D-4756-85B9-41A04B24261C} - System32\Tasks\{FAD3EBB0-24F5-420F-9C19-320EA5D905C0} => pcalua.exe -a "C:\Program Files (x86)\BlueStacks\HD-RuntimeUninstaller.exe"
- Task: {12A36BD5-C2C3-45A1-8B4A-AAF5358BE00F} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
- Task: {2618E4A2-0D88-4F6E-95BF-08EADCAC5DBF} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [2015-06-25] ()
- Task: {2C1AAAC6-AF7B-49FC-AC73-053DE952B4AF} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
- Task: {3C2F60F6-DA1C-4A18-B41A-E13F678B5067} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
- Task: {5AE8D7B3-A448-49E1-9814-01D40A25586A} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
- Task: {64E8DAE1-7187-4BAB-81C3-DB6F02AE14AE} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-05-10] (Microsoft Corporation)
- Task: {6945EB22-CAAA-4726-B764-92B26C8FBF87} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
- Task: {870E6811-9DDE-4FE4-B3CB-869B6B3C6E58} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-11-28] ()
- Task: {8A0459B4-E281-46B8-9D45-E98B5B518C02} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
- Task: {9A188308-F725-4203-8E3A-E2D00D8E4FA0} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
- Task: {9EAFCBB5-352F-4451-ADAE-B006E8962E3D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-25] (Google Inc.)
- Task: {BAC1D7BC-F77B-4ED7-95C2-9AEF431265EE} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
- Task: {BAD96327-7CF9-4935-94C6-65E25496AE5B} - System32\Tasks\update-S-1-5-21-843162817-1331820867-3751661755-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-11-28] ()
- Task: {C0169944-C0E3-4D34-81C8-5E30EEB1A7D4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-25] (Google Inc.)
- Task: {C349CBA9-A51B-4639-91C1-EF4AF1B9FA11} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
- Task: {CAF0E2AF-70FF-4BA4-9FE3-C68B9758D585} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
- Task: {D9053617-2786-44F6-B532-E38C28D995BC} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
- Task: {FE8DE154-A9B4-4ED9-8605-706C3E7DD516} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
- (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
- Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
- Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
- Task: C:\WINDOWS\Tasks\update-S-1-5-21-843162817-1331820867-3751661755-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
- Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
- ==================== Shortcuts =============================
- (The entries could be listed to be restored or removed.)
- ==================== Loaded Modules (Whitelisted) ==============
- 2015-10-30 03:18 - 2015-10-30 03:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
- 2016-01-07 16:51 - 2015-08-14 19:31 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
- 2015-12-25 13:15 - 2015-12-08 21:52 - 00217720 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
- 2016-04-14 13:36 - 2016-03-29 06:20 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
- 2016-04-14 13:36 - 2016-03-29 06:20 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
- 2015-06-13 14:17 - 2015-06-13 14:17 - 00803488 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
- 2016-05-23 20:33 - 2016-05-23 20:33 - 00959168 _____ () C:\Users\user\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
- 2015-10-16 06:02 - 2015-10-16 06:02 - 00043480 _____ () C:\Program Files\FileZilla FTP Client\fzshellext_64.dll
- 2015-04-15 16:13 - 2015-04-15 16:13 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
- 2016-05-10 16:20 - 2016-04-22 23:58 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
- 2016-01-07 19:38 - 2016-01-07 19:38 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
- 2016-05-10 16:19 - 2016-04-23 00:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
- 2016-05-10 16:19 - 2016-04-23 00:25 - 00674816 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\MtcUvc.dll
- 2016-05-10 16:20 - 2016-04-23 00:02 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
- 2016-05-10 16:20 - 2016-04-22 23:58 - 00936960 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
- 2016-05-10 16:20 - 2016-04-22 23:58 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
- 2016-05-10 16:20 - 2016-04-23 00:01 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
- 2015-06-13 14:16 - 2015-06-13 14:16 - 31404192 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
- 2016-04-22 17:48 - 2016-04-22 17:48 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
- 2015-06-25 01:31 - 2015-12-08 21:53 - 00011896 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
- 2016-05-23 20:33 - 2016-05-23 20:33 - 00679624 _____ () C:\Users\user\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\ClientTelemetry.dll
- 2015-06-09 22:36 - 2015-06-09 22:36 - 36732592 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
- 2016-04-22 17:48 - 2016-04-22 17:48 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
- 2016-04-22 17:48 - 2016-04-22 17:49 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll
- 2015-06-25 14:53 - 2016-04-29 16:10 - 00785920 _____ () C:\Program Files (x86)\Steam\SDL2.dll
- 2015-06-25 14:53 - 2015-07-03 12:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
- 2015-06-25 14:53 - 2016-04-29 20:10 - 02549840 _____ () C:\Program Files (x86)\Steam\video.dll
- 2015-06-25 14:53 - 2016-02-08 19:14 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
- 2015-06-25 14:53 - 2016-02-08 19:14 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
- 2015-06-25 14:53 - 2016-02-08 19:14 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
- 2015-06-25 14:53 - 2016-02-08 19:14 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
- 2015-06-25 14:53 - 2016-02-08 19:14 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
- 2015-06-25 14:53 - 2015-07-03 12:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
- 2015-06-25 14:53 - 2015-07-03 12:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
- 2015-06-25 14:53 - 2016-04-29 20:10 - 00829008 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
- 2016-03-24 13:21 - 2016-02-17 18:25 - 00281088 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
- 2015-06-25 14:53 - 2016-04-27 21:00 - 49825056 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
- 2015-06-25 14:53 - 2015-09-24 19:56 - 00119208 _____ () C:\Program Files (x86)\Steam\winh264.dll
- 2016-05-13 22:40 - 2016-05-11 07:48 - 01738904 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\libglesv2.dll
- 2016-05-13 22:40 - 2016-05-11 07:48 - 00086168 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\libegl.dll
- ==================== Alternate Data Streams (Whitelisted) =========
- (If an entry is included in the fixlist, only the ADS will be removed.)
- ==================== Safe Mode (Whitelisted) ===================
- (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
- ==================== Association (Whitelisted) ===============
- (If an entry is included in the fixlist, the registry item will be restored to default or removed.)
- ==================== Internet Explorer trusted/restricted ===============
- (If an entry is included in the fixlist, it will be removed from the registry.)
- ==================== Hosts content: ===============================
- (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
- 2013-08-22 09:25 - 2013-08-22 09:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
- ==================== Other Areas ============================
- (Currently there is no automatic fix for this section.)
- HKU\S-1-5-21-843162817-1331820867-3751661755-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\user\Downloads\download.jpg
- DNS Servers: 192.168.200.1
- HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
- Windows Firewall is enabled.
- ==================== MSCONFIG/TASK MANAGER disabled items ==
- (Currently there is no automatic fix for this section.)
- ==================== FirewallRules (Whitelisted) ===============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
- FirewallRules: [{D075A494-E0DF-42A8-8277-2462B4E72352}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe
- FirewallRules: [{2D30AF34-9093-4F6C-A056-EA2EB3470702}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe
- FirewallRules: [{8FB8EDF3-C7D1-4276-8D55-8BEAF9CF735E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\workshop\Workshop.exe
- FirewallRules: [{7B0A32BC-4904-4F90-90E4-BAEFCD49EA7D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\workshop\Workshop.exe
- FirewallRules: [UDP Query User{C37DD6EE-26DE-4DE5-9D1F-11D7E6153D01}C:\users\user\appdata\local\temp\temp1_u.zip\u1502.exe] => (Block) C:\users\user\appdata\local\temp\temp1_u.zip\u1502.exe
- FirewallRules: [TCP Query User{F4E83501-FF88-4C20-BAB3-9BEF9B6104AE}C:\users\user\appdata\local\temp\temp1_u.zip\u1502.exe] => (Block) C:\users\user\appdata\local\temp\temp1_u.zip\u1502.exe
- FirewallRules: [{94D9C4B9-52EC-4D28-A1C1-4E4CF9765328}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\gamemaker_studio\GameMakerPlayer.exe
- FirewallRules: [{30281C11-1EEE-41A0-9C42-D15065FFFF4D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\gamemaker_studio\GameMakerPlayer.exe
- FirewallRules: [{C8F924F3-6C54-4BE7-8D8B-CB0635B7FC71}] => (Allow) LPort=1900
- FirewallRules: [{44CAD62C-52D7-40A8-8629-27F462404D81}] => (Allow) LPort=2869
- FirewallRules: [{38ABA3B3-C1CD-4C36-A54A-D9896D9074B9}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
- FirewallRules: [{DB8E74EC-E9E9-4844-A7B0-9806F12262A4}] => (Allow) C:\Users\user\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
- FirewallRules: [{B669A5B9-DB5F-4C58-AB56-5C39B9919BF3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\dota.exe
- FirewallRules: [{9C0B9F3E-51DA-49CB-8EF3-75AEC04A07F0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\dota.exe
- FirewallRules: [UDP Query User{9F9C431F-63B5-4A05-BD28-721C374A20CE}C:\program files (x86)\steam\steamapps\common\tribes\binaries\win32\tribesascend.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\tribes\binaries\win32\tribesascend.exe
- FirewallRules: [TCP Query User{A8D3AB0D-EDE1-471B-BAE4-31F6A7A59590}C:\program files (x86)\steam\steamapps\common\tribes\binaries\win32\tribesascend.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\tribes\binaries\win32\tribesascend.exe
- FirewallRules: [{3489434A-7B57-43DA-A33A-CB968A9B0432}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
- FirewallRules: [{B96E9474-23CC-4432-864F-3F6EE06579F5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
- FirewallRules: [{36D77C34-111B-498B-A2CD-E2D34EFD0268}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
- FirewallRules: [{D3247E54-6C9C-44E6-85A0-B1760C848E2E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
- FirewallRules: [{D348391C-40C2-4CFD-ACE4-0C3385FEBDA7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
- FirewallRules: [{979B1A9F-DB7A-4487-9572-F310972BAE42}] => (Block) C:\users\user\appdata\local\popcorn time offical\node-webkit\popcorn time.exe
- FirewallRules: [{279CD2FD-49F7-43BD-9C4A-1300B0236D77}] => (Block) C:\users\user\appdata\local\popcorn time offical\node-webkit\popcorn time.exe
- FirewallRules: [UDP Query User{34265843-1AB8-42E1-A090-6F15AAD0FDB2}C:\users\user\appdata\local\popcorn time offical\node-webkit\popcorn time.exe] => (Allow) C:\users\user\appdata\local\popcorn time offical\node-webkit\popcorn time.exe
- FirewallRules: [TCP Query User{FACDF51F-F34F-4534-A9A3-E2962ECD6A34}C:\users\user\appdata\local\popcorn time offical\node-webkit\popcorn time.exe] => (Allow) C:\users\user\appdata\local\popcorn time offical\node-webkit\popcorn time.exe
- FirewallRules: [{220763BB-ED53-4707-9502-C3D2ACC3BDF9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\workshop\Workshop.exe
- FirewallRules: [{8A0F61FB-BF17-4B45-A72E-3EDEA30FC6E3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\workshop\Workshop.exe
- FirewallRules: [{0AC366F7-979D-4367-BD46-AD0745C12738}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
- FirewallRules: [{2BAABCD4-F90D-48E7-99E9-B03C14CF8B90}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
- FirewallRules: [{9D1E79FC-5F2A-44C5-AE40-6CBC492B079D}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
- FirewallRules: [{F8FDB10D-7B2D-424E-843D-1FC1F1F800EE}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
- FirewallRules: [{98CEB84E-D09A-4BD8-AF6A-64E413224536}] => (Allow) C:\Users\user\AppData\Local\Torch\Plugins\Hola\hola_plugin_x64.exe
- FirewallRules: [{EBE96268-27DE-4411-AA62-039F5EBDD3D4}] => (Allow) C:\Users\user\AppData\Local\Torch\Plugins\Hola\hola_plugin.exe
- FirewallRules: [{56E6CFF5-7071-4810-98AA-DE3B0BBCCEA8}] => (Allow) C:\Users\user\AppData\Local\Torch\Application\torch.exe
- FirewallRules: [UDP Query User{FB36C6B1-354D-485F-A6F1-FFCB9D2F63B3}C:\users\user\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\user\appdata\roaming\spotify\spotify.exe
- FirewallRules: [TCP Query User{79DCC154-C8E4-4FC3-BFEF-98A72B7F2B23}C:\users\user\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\user\appdata\roaming\spotify\spotify.exe
- FirewallRules: [UDP Query User{5871299C-C555-4849-9795-EBD12B9ECC20}C:\users\user\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\user\appdata\roaming\spotify\spotify.exe
- FirewallRules: [TCP Query User{790562CF-9303-40FC-A789-A54E66C89726}C:\users\user\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\user\appdata\roaming\spotify\spotify.exe
- FirewallRules: [UDP Query User{B5165506-AACC-4228-84D3-8ED904DBED81}C:\program files (x86)\steam\steamapps\common\cry of fear\cof.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cry of fear\cof.exe
- FirewallRules: [TCP Query User{287E9F5D-6297-4027-A090-D1AA9E9E6D8C}C:\program files (x86)\steam\steamapps\common\cry of fear\cof.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cry of fear\cof.exe
- FirewallRules: [UDP Query User{3E009688-2747-4993-A2E9-9CFB4F2F077C}C:\users\user\downloads\ultimate twitch bot\ultimate twitch bot.exe] => (Allow) C:\users\user\downloads\ultimate twitch bot\ultimate twitch bot.exe
- FirewallRules: [TCP Query User{FA6582A8-1539-4949-A195-D6D2519045AA}C:\users\user\downloads\ultimate twitch bot\ultimate twitch bot.exe] => (Allow) C:\users\user\downloads\ultimate twitch bot\ultimate twitch bot.exe
- FirewallRules: [UDP Query User{21AA825E-355A-4BD2-A034-EF4B64A86A4F}C:\program files (x86)\mirc\mirc.exe] => (Allow) C:\program files (x86)\mirc\mirc.exe
- FirewallRules: [TCP Query User{88C4B77C-820B-489D-8512-001CA09A049C}C:\program files (x86)\mirc\mirc.exe] => (Allow) C:\program files (x86)\mirc\mirc.exe
- FirewallRules: [UDP Query User{5F413569-9BFF-4F64-A075-0844004FB147}C:\users\user\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\user\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
- FirewallRules: [TCP Query User{EF3EFF8A-D301-4F40-B028-D859FD165710}C:\users\user\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\user\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
- FirewallRules: [UDP Query User{22BF3F43-C406-410A-AC0B-D44BFA6646D1}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
- FirewallRules: [UDP Query User{76B913A9-B9B4-4BC4-90E3-1292E500D4C2}C:\program files\java\jre7\bin\javaw.exe] => (Block) C:\program files\java\jre7\bin\javaw.exe
- FirewallRules: [TCP Query User{21EEEA21-A187-4095-B64B-F6933C100248}C:\program files\java\jre7\bin\javaw.exe] => (Block) C:\program files\java\jre7\bin\javaw.exe
- FirewallRules: [UDP Query User{D1A0B02A-5C09-4B74-BD15-C493DA4B04B3}C:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe] => (Block) C:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe
- FirewallRules: [TCP Query User{ED12DAF0-AF29-4FF8-8846-F62CFC72AAB9}C:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe] => (Block) C:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe
- FirewallRules: [{51E0096D-39DB-49A5-B146-236DE7D08A90}] => (Allow) C:\Games\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe
- FirewallRules: [{B9FF6E52-1EBA-4225-A294-CE7799E286D0}] => (Allow) C:\Games\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe
- FirewallRules: [UDP Query User{8E479C3D-8BB1-4E76-A269-6402F6F59EBC}C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe
- FirewallRules: [TCP Query User{6F2A5E24-B4BA-4947-B952-03A151BD769E}C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe
- FirewallRules: [UDP Query User{920B0BB9-560F-48BF-95BE-534E1F38F7EF}C:\users\user\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\user\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
- FirewallRules: [TCP Query User{254C95CA-AFFE-4B56-96B6-3C95DE38D7BD}C:\users\user\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\user\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
- FirewallRules: [{B91FDD15-8E73-412F-A4D3-624C1FB5D3A8}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
- FirewallRules: [{3F5DA0A9-9CBA-4014-BA49-1D29861804CE}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
- FirewallRules: [{D2764C20-8943-4DD2-B229-30D0D67EB1DE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
- FirewallRules: [{13F09C63-E2BD-4AD4-86DC-0FED640F9973}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
- FirewallRules: [{21522EBD-B359-4370-AD0F-FD2F72A48AD3}] => (Allow) C:\Users\user\AppData\Local\Temp\nscCD72.tmp\Installer-76048074.exe
- FirewallRules: [{7D039099-8EFE-4111-BC7C-5C9FA44D4EF8}] => (Allow) C:\Users\user\AppData\Local\Temp\nscCD72.tmp\Installer-76048074.exe
- FirewallRules: [{CE07C410-EB8F-4B1E-ABA4-48ECDE1F0C8A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
- FirewallRules: [{65A90318-270C-44D1-8E4A-7B9A227FB0B6}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
- FirewallRules: [{13C6832A-DB7E-4387-9DA2-41C956BC383C}] => (Allow) C:\Users\user\AppData\Roaming\uTorrent\uTorrent.exe
- FirewallRules: [{E9AEA66C-AF8B-4560-83F9-C57DDE994B68}] => (Allow) C:\Users\user\AppData\Roaming\uTorrent\uTorrent.exe
- FirewallRules: [{BFE863C2-5BFA-4227-B8B1-DF0B69726509}] => (Allow) C:\Users\user\AppData\Roaming\uTorrent\uTorrent.exe
- FirewallRules: [{50F7E41B-F4C2-4518-B541-0F7120DD6AA0}] => (Allow) C:\Users\user\AppData\Roaming\uTorrent\uTorrent.exe
- FirewallRules: [{2E038D35-8715-45D1-9C98-7798E73BD234}] => (Allow) C:\Users\user\AppData\Roaming\uTorrent\uTorrent.exe
- FirewallRules: [{6827961E-F906-487B-80F3-3F72A65B29DB}] => (Allow) C:\Users\user\AppData\Roaming\uTorrent\uTorrent.exe
- FirewallRules: [{AE34CA7B-4A97-473C-96D5-A19B9C4AFAEA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe
- FirewallRules: [{E8242F11-D83F-408C-BE56-DA1AD72ED914}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe
- FirewallRules: [TCP Query User{9C210090-CE4C-43EB-A412-37F8DB80E4FA}C:\users\user\appdata\roaming\gameranger\gameranger\gameranger.exe] => (Allow) C:\users\user\appdata\roaming\gameranger\gameranger\gameranger.exe
- FirewallRules: [UDP Query User{F0BE7735-DB40-4524-8DFB-8A1685D00C85}C:\users\user\appdata\roaming\gameranger\gameranger\gameranger.exe] => (Allow) C:\users\user\appdata\roaming\gameranger\gameranger\gameranger.exe
- FirewallRules: [TCP Query User{CBFE1CC0-F5BC-49DC-B23C-4B94405EF9FA}C:\users\user\downloads\warcraft iii\warcraft iii\war3.exe] => (Allow) C:\users\user\downloads\warcraft iii\warcraft iii\war3.exe
- FirewallRules: [UDP Query User{FF97793E-4F67-4436-A069-C3DF1BFB6A67}C:\users\user\downloads\warcraft iii\warcraft iii\war3.exe] => (Allow) C:\users\user\downloads\warcraft iii\warcraft iii\war3.exe
- FirewallRules: [{5C1CA93A-E4BC-4771-9F47-87FADF36ED0A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe
- FirewallRules: [{FC5B06E4-F973-4D0A-B7A2-BF658ECC4D8B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe
- FirewallRules: [{92D9715A-5858-4983-9E21-974672BCC872}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Boson X\bosonx.exe
- FirewallRules: [{86C67B71-628A-4901-B31E-0E9505DCFF1C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Boson X\bosonx.exe
- FirewallRules: [{311C2481-0F6A-44A0-B740-02CC124CB8EF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Super Hexagon\superhexagon.exe
- FirewallRules: [{5547B0AB-E36A-4B5F-B969-615B5CC14B9C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Super Hexagon\superhexagon.exe
- FirewallRules: [{ECD52BC1-0C88-4631-9DC7-C2A1739C88B2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
- FirewallRules: [{8F4B3A99-1E7C-49EE-B6CF-2CCF78D037DD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
- FirewallRules: [{6C64F6DF-F238-4B65-BD93-5394B71B40DE}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- FirewallRules: [{B9B3432B-D814-49A9-A64E-E06DB0F9726B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Terraria\Terraria.exe
- FirewallRules: [{CAE213BF-490E-4FD3-91B5-61789B5C8348}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Terraria\Terraria.exe
- FirewallRules: [{6246CEE2-6A72-4DDD-9FAA-7519AC4F08ED}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
- FirewallRules: [{6E5670CE-C91A-41A5-97D1-31CB7478CE03}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
- FirewallRules: [{28242E90-9CCB-431E-9F42-019D8E13CC0B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
- FirewallRules: [{1D69D996-58AA-4BEA-A06E-7310AB35CD78}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
- ==================== Restore Points =========================
- 13-05-2016 22:19:07 Windows Update
- 23-05-2016 16:07:07 Scheduled Checkpoint
- ==================== Faulty Device Manager Devices =============
- ==================== Event log errors: =========================
- Application errors:
- ==================
- Error: (05/30/2016 07:14:19 PM) (Source: Perflib) (EventID: 1008) (User: )
- Description: BITSC:\Windows\System32\bitsperf.dll8
- Error: (05/28/2016 09:47:09 PM) (Source: Application Error) (EventID: 1000) (User: )
- Description: Faulting application name: Unturned.exe, version: 5.2.4.2391, time stamp: 0x566b7225
- Faulting module name: Unturned.exe, version: 5.2.4.2391, time stamp: 0x566b7225
- Exception code: 0x40000015
- Fault offset: 0x00000000006fddc9
- Faulting process id: 0xf3c
- Faulting application start time: 0xUnturned.exe0
- Faulting application path: Unturned.exe1
- Faulting module path: Unturned.exe2
- Report Id: Unturned.exe3
- Faulting package full name: Unturned.exe4
- Faulting package-relative application ID: Unturned.exe5
- Error: (05/23/2016 04:07:19 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
- Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.
- Details:
- AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
- System Error:
- Access is denied.
- .
- Error: (05/18/2016 03:04:10 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: ELIAS)
- Description: Package Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy+ppleae38af2e007f4358a809ac99a64a67c1 was terminated because it took too long to suspend.
- Error: (05/14/2016 09:29:35 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ELIAS)
- Description: Activation of app Microsoft.Windows.Photos_8wekyb3d8bbwe!App failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information.
- Error: (05/13/2016 10:20:44 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
- Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.
- Details:
- AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
- System Error:
- Access is denied.
- .
- Error: (05/08/2016 07:07:55 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
- Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.
- Details:
- AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
- System Error:
- Access is denied.
- .
- Error: (05/08/2016 01:36:02 PM) (Source: Application Hang) (EventID: 1002) (User: )
- Description: The program rads_user_kernel.exe version 0.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
- Process ID: 2684
- Start Time: 01d1a9501028b5f2
- Termination Time: 2
- Application Path: C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
- Report Id: 52351808-1543-11e6-82a5-18a90531918c
- Faulting package full name:
- Faulting package-relative application ID:
- Error: (04/29/2016 05:19:47 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
- Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.
- Details:
- AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
- System Error:
- Access is denied.
- .
- Error: (04/29/2016 05:16:24 PM) (Source: Application Error) (EventID: 1000) (User: )
- Description: Faulting application name: hl2.exe, version: 0.0.0.0, time stamp: 0x55d368e8
- Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
- Exception code: 0xc0000005
- Fault offset: 0x00000000
- Faulting process id: 0x28a8
- Faulting application start time: 0xhl2.exe0
- Faulting application path: hl2.exe1
- Faulting module path: hl2.exe2
- Report Id: hl2.exe3
- Faulting package full name: hl2.exe4
- Faulting package-relative application ID: hl2.exe5
- System errors:
- =============
- Error: (05/30/2016 07:31:48 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
- Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)UnavailableUnavailable
- Error: (05/30/2016 06:27:01 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
- Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}
- Error: (05/30/2016 06:21:45 PM) (Source: volmgr) (EventID: 46) (User: )
- Description: Crash dump initialization failed!
- Error: (05/30/2016 06:22:36 PM) (Source: EventLog) (EventID: 6008) (User: )
- Description: The previous system shutdown at 5:58:53 PM on 5/30/2016 was unexpected.
- Error: (05/30/2016 05:59:14 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 4003) (User: NT AUTHORITY)
- Description: WLAN AutoConfig detected limit connectivity, performing Reset/Recover.adapter.
- Code: 8 0x0 0x0
- Error: (05/30/2016 05:59:13 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 4003) (User: NT AUTHORITY)
- Description: WLAN AutoConfig detected limit connectivity, performing Reset/Recover.adapter.
- Code: 2 0xdeaddeed 0xeeec
- Error: (05/30/2016 05:59:13 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 4003) (User: NT AUTHORITY)
- Description: WLAN AutoConfig detected limit connectivity, performing Reset/Recover.adapter.
- Code: 1 0xc 0x4
- Error: (05/30/2016 05:38:29 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
- Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}
- Error: (05/30/2016 12:35:10 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
- Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)UnavailableUnavailable
- Error: (05/30/2016 12:25:21 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
- Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}
- CodeIntegrity:
- ===================================
- Date: 2016-05-30 20:05:47.213
- Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
- Date: 2016-05-30 20:05:47.190
- Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
- Date: 2016-05-30 20:05:47.147
- Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
- Date: 2016-05-30 18:35:36.926
- Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
- Date: 2016-05-30 18:35:36.906
- Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
- Date: 2016-05-30 18:35:36.840
- Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
- Date: 2016-05-30 18:35:35.819
- Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
- Date: 2016-05-30 18:35:35.796
- Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
- Date: 2016-05-30 18:35:35.691
- Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
- Date: 2016-05-30 18:34:54.408
- Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
- ==================== Memory info ===========================
- Processor: Intel(R) Core(TM)2 Quad CPU Q9400 @ 2.66GHz
- Percentage of memory in use: 63%
- Total physical RAM: 4095.24 MB
- Available physical RAM: 1504.83 MB
- Total Virtual: 4799.24 MB
- Available Virtual: 1635.96 MB
- ==================== Drives ================================
- Drive c: () (Fixed) (Total:232.1 GB) (Free:148.91 GB) NTFS
- ==================== MBR & Partition Table ==================
- ========================================================
- Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: A2958D92)
- Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
- Partition 2: (Not Active) - (Size=232.1 GB) - (Type=07 NTFS)
- Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
- ==================== End of Addition.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement