API tools faq
paste
Advertisement
Guest User

Addition.txt

a guest
Sep 19th, 2017
777
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 48.00 KB | None | 0 0
raw download clone embed print report
  1. Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-09-2017 01
  2. Ran by Loaf (19-09-2017 19:44:12)
  3. Running from E:\Downloads
  4. Windows 10 Pro Version 1703 (X64) (2017-08-27 06:44:56)
  5. Boot Mode: Normal
  6. ==========================================================
  7.  
  8.  
  9. ==================== Accounts: =============================
  10.  
  11. Administrator (S-1-5-21-1624113848-1791311199-1234011438-500 - Administrator - Disabled)
  12. DefaultAccount (S-1-5-21-1624113848-1791311199-1234011438-503 - Limited - Disabled)
  13. Guest (S-1-5-21-1624113848-1791311199-1234011438-501 - Limited - Disabled)
  14. Loaf (S-1-5-21-1624113848-1791311199-1234011438-1001 - Administrator - Enabled) => C:\Users\loafb
  15.  
  16. ==================== Security Center ========================
  17.  
  18. (If an entry is included in the fixlist, it will be removed.)
  19.  
  20. AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
  21. AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
  22.  
  23. ==================== Installed Programs ======================
  24.  
  25. (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
  26.  
  27. 7-Zip 17.00 beta (x64) (HKLM\...\7-Zip) (Version: 17.00 beta - Igor Pavlov)
  28. Adobe Flash Player 26 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 26.0.0.151 - Adobe Systems Incorporated)
  29. Audacity 2.1.3 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.3 - Audacity Team)
  30. Blizzard App (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
  31. Borderless Gaming (HKLM-x32\...\Borderless Gaming_is1) (Version: 9.4.9 - Andrew Sampson)
  32. Bulk Rename Utility 3.0.0.1 (64-bit) (HKLM\...\Bulk Rename Utility Installation_is1) (Version: - TGRMN Software)
  33. CCleaner (HKLM\...\CCleaner) (Version: 5.33 - Piriform)
  34. Classic Sticky Notes (HKLM\...\Classic Sticky Notes_is1) (Version: 1.0 - Winaero)
  35. Dead Rising 2 (HKLM\...\Steam App 45740) (Version: - Capcom Vancouver)
  36. Discord (HKU\S-1-5-21-1624113848-1791311199-1234011438-1001\...\Discord) (Version: 0.0.298 - Discord Inc.)
  37. Dolphin (HKLM-x32\...\Dolphin) (Version: 5.0 - Dolphin Team)
  38. EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
  39. Epson Software Updater (HKLM-x32\...\{B55DB65D-EF6E-4E04-89D5-B03603BF681B}) (Version: 4.4.5 - SEIKO EPSON CORPORATION)
  40. EPSON XP-235 Series Printer Uninstall (HKLM\...\EPSON XP-235 Series) (Version: - Seiko Epson Corporation)
  41. Everything 1.4.1.877 (x64) (HKLM\...\Everything) (Version: 1.4.1.877 (x64) - David Carpenter)
  42. foobar2000 v1.3.16 (HKLM-x32\...\foobar2000) (Version: 1.3.16 - Peter Pawlowski)
  43. Garry's Mod (HKLM\...\Steam App 4000) (Version: - Facepunch Studios)
  44. GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
  45. Google Chrome (HKLM\...\{4EC552DD-5454-3B12-A15F-D84ED8DD24D7}) (Version: 60.0.3112.113 - Google, Inc.)
  46. Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
  47. Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4624 - Intel Corporation)
  48. IrfanView 4.44 (32-bit) (HKLM-x32\...\IrfanView) (Version: 4.44 - Irfan Skiljan)
  49. Java 8 Update 144 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
  50. Java 8 Update 144 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
  51. JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
  52. KB4023057 (HKLM\...\{ED06689A-33B7-4D35-8F76-36A82CD03406}) (Version: 2.3.0.0 - Microsoft Corporation)
  53. KeePass Password Safe 2.36 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.36 - Dominik Reichl)
  54. laucher game 0.02 (HKLM-x32\...\laucher game 0.02) (Version: 0.02 - launcher)
  55. Left 4 Dead (HKLM\...\Steam App 500) (Version: - Valve)
  56. LibreOffice 5.4.0.3 (HKLM\...\{992C4FE4-C278-4B62-A8B1-6FACB8E62980}) (Version: 5.4.0.3 - The Document Foundation)
  57. Malwarebytes version 3.2.2.2029 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.2.2.2029 - Malwarebytes)
  58. Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
  59. Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
  60. Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
  61. Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
  62. Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
  63. Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
  64. Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
  65. Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
  66. Minecraft 1.12 (HKLM-x32\...\Minecraft 1.12) (Version: 1.12 - Minecraft)
  67. Minecraft1.9 (HKLM-x32\...\Minecraft1.9) (Version: - )
  68. Mp3tag v2.84a (HKLM-x32\...\Mp3tag) (Version: 2.84a - Florian Heidenreich)
  69. MusicBee 3.0 (HKLM-x32\...\MusicBee) (Version: 3.0 - Steven Mayall)
  70. Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.5 - Notepad++ Team)
  71. NVIDIA 3D Vision Driver 376.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.53 - NVIDIA Corporation)
  72. NVIDIA GeForce Experience 3.9.0.61 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.9.0.61 - NVIDIA Corporation)
  73. NVIDIA Graphics Driver 376.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.53 - NVIDIA Corporation)
  74. NVIDIA HD Audio Driver 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation)
  75. persistence Module 0.02 (HKLM-x32\...\persistence Module 0.02) (Version: 0.02 - Microsoft Security)
  76. Plex Media Player (HKLM\...\{E73E3D31-9801-4555-A9DE-D50BA523B7F0}) (Version: 1.3.5 - Plex) Hidden
  77. Plex Media Player (HKLM-x32\...\{03645912-aed8-475f-b4d0-68c1dbfd634b}) (Version: 1.3.5 - Plex)
  78. Plex Media Server (HKLM-x32\...\{7118FBC6-F81D-43B9-B30A-51945CC1A0C8}) (Version: 1.8.4249 - Plex, Inc.) Hidden
  79. Plex Media Server (HKLM-x32\...\{dd96de17-0520-49fc-ab44-44e1710f6c77}) (Version: 1.8.4.4249 - Plex, Inc.)
  80. Project64 1.6 (HKLM-x32\...\{9559F7CA-5E34-4237-A2D9-D856464AD727}) (Version: 1.6 - Project64)
  81. qBittorrent 3.3.16 (HKLM-x32\...\qBittorrent) (Version: 3.3.16 - The qBittorrent project)
  82. Reason Core Security (HKLM-x32\...\Reason Core Security) (Version: 2.3.0.3 - Reason Software Company Inc.)
  83. Slime Rancher (HKLM\...\Steam App 433340) (Version: - Monomi Park)
  84. Speccy (HKLM\...\Speccy) (Version: 1.31 - Piriform)
  85. Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
  86. Stopping Plex (HKLM-x32\...\{68B69B2F-7F58-41DC-AB5E-05E4E735AB0A}) (Version: 1.8.4249 - Plex, Inc.) Hidden
  87. SumatraPDF (HKLM\...\SumatraPDF) (Version: 3.1.2 - Krzysztof Kowalczyk)
  88. The Witcher 3: Wild Hunt (HKLM\...\Steam App 292030) (Version: - CD PROJEKT RED)
  89. VLC media player (HKLM\...\VLC media player) (Version: 2.2.6 - VideoLAN)
  90. Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
  91. WhatsApp (HKU\S-1-5-21-1624113848-1791311199-1234011438-1001\...\WhatsApp) (Version: 0.2.5863 - WhatsApp)
  92. WinDirStat 1.1.2 (HKU\S-1-5-21-1624113848-1791311199-1234011438-1001\...\WinDirStat) (Version: - )
  93. WinImage (HKLM-x32\...\WinImage) (Version: - )
  94.  
  95. ==================== Custom CLSID (Whitelisted): ==========================
  96.  
  97. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  98.  
  99. CustomCLSID: HKU\S-1-5-21-1624113848-1791311199-1234011438-1001_Classes\CLSID\{3189f3c9-de26-4d34-8333-338d28fe8f98}\InprocServer32 -> C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
  100. CustomCLSID: HKU\S-1-5-21-1624113848-1791311199-1234011438-1001_Classes\CLSID\{5b234f25-87c4-414c-9c3c-f0f473d385b6}\InprocServer32 -> C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
  101. CustomCLSID: HKU\S-1-5-21-1624113848-1791311199-1234011438-1001_Classes\CLSID\{a54ea86c-8ce2-4273-a489-7fd787f32172}\InprocServer32 -> C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
  102. CustomCLSID: HKU\S-1-5-21-1624113848-1791311199-1234011438-1001_Classes\CLSID\{aae47c39-0787-4833-a810-7f2e25c498f8}\InprocServer32 -> C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
  103. CustomCLSID: HKU\S-1-5-21-1624113848-1791311199-1234011438-1001_Classes\CLSID\{b45a8cdc-1e6f-4df2-ad70-1ac359527245}\InprocServer32 -> C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
  104. ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov)
  105. ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2017-08-15] ()
  106. ContextMenuHandlers1: [BRUMenuHandler] -> {5D924130-4CB1-11DB-B0DE-0800200C9A66} => C:\Program Files\Bulk Rename Utility\BRUhere64.dll [2016-02-04] (Bulk Rename Utility)
  107. ContextMenuHandlers1: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2017-08-26] (Florian Heidenreich)
  108. ContextMenuHandlers2: [BRUMenuHandler] -> {5D924130-4CB1-11DB-B0DE-0800200C9A66} => C:\Program Files\Bulk Rename Utility\BRUhere64.dll [2016-02-04] (Bulk Rename Utility)
  109. ContextMenuHandlers2: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2017-08-26] (Florian Heidenreich)
  110. ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-30] (Malwarebytes)
  111. ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov)
  112. ContextMenuHandlers4: [BRUMenuHandler] -> {5D924130-4CB1-11DB-B0DE-0800200C9A66} => C:\Program Files\Bulk Rename Utility\BRUhere64.dll [2016-02-04] (Bulk Rename Utility)
  113. ContextMenuHandlers4: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2017-08-26] (Florian Heidenreich)
  114. ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
  115. ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-03-17] (Intel Corporation)
  116. ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-05-01] (NVIDIA Corporation)
  117. ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov)
  118. ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-30] (Malwarebytes)
  119.  
  120. ==================== Scheduled Tasks (Whitelisted) =============
  121.  
  122. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  123.  
  124. Task: {0232E04A-F692-4C33-A4AB-4EC07630A868} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-08-18] (NVIDIA Corporation)
  125. Task: {188F52F7-7E3F-4F3D-A391-4B869A650B11} - System32\Tasks\DisableLockScreen => reg.exe add HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\LogonUI\SessionData /t REG_DWORD /v AllowLockScreen /d 0 /f
  126. Task: {3306C094-8505-4BE7-A655-2D15F5E0AC7A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-08-18] (NVIDIA Corporation)
  127. Task: {4089FAC5-F938-4EED-8761-356AC19E215C} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-08-18] (NVIDIA Corporation)
  128. Task: {40A830C7-5DF6-4271-9647-8E1E012BCBFD} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-08-18] (NVIDIA Corporation)
  129. Task: {58D1E4AD-94BB-49F1-AD0F-4A9491BBA1F4} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-08-18] (NVIDIA Corporation)
  130. Task: {6E7BB374-804B-4496-8EDC-33052198652E} - System32\Tasks\EPSON XP-235 Series Update {EF1FF16C-591A-4A10-A313-D1BD4456B134} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPFE.EXE [2013-11-22] (SEIKO EPSON CORPORATION)
  131. Task: {8BCDE4A4-BD4C-469C-9A75-B28F1C999DEB} - System32\Tasks\BorderlessGaming => C:\Program Files (x86)\Borderless Gaming\BorderlessGaming.exe [2017-07-05] (Andrew Sampson)
  132. Task: {9867BDA8-4570-42C0-A30F-8212997D3884} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe
  133. Task: {A5B63C52-26B8-4082-BD83-58CE5C9BAC79} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-08-27] (Google Inc.)
  134. Task: {BB3B90A6-D8E6-4B88-8C78-4A7B2CC164EB} - System32\Tasks\R@1n-KMS\Windows64Professional => wmic [Argument = path SoftwareLicensingProduct where (ID="2de67392-b7a7-462a-b1ca-108dd189f588") call Activate]
  135. Task: {C10065F3-DAB0-46B4-84E4-A45571449F2E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-08-27] (Google Inc.)
  136. Task: {D8557B11-6A76-4C3E-8E04-6767EEEE248D} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-08-18] (NVIDIA Corporation)
  137. Task: {ECE3EF5E-8580-4D17-AA6D-CC328A1AC11B} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-08-18] (NVIDIA Corporation)
  138. Task: {EE53A473-7361-4446-9E31-126B75F3D75A} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-08-18] (NVIDIA Corporation)
  139.  
  140. (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
  141.  
  142. Task: C:\WINDOWS\Tasks\EPSON XP-235 Series Update {EF1FF16C-591A-4A10-A313-D1BD4456B134}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPFE.EXE:/EXE:{EF1FF16C-591A-4A10-A313-D1BD4456B134} /F:UpdateWORKGROUP\DESKTOP-3KVDNDS$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
  143.  
  144. ==================== Shortcuts & WMI ========================
  145.  
  146. (The entries could be listed to be restored or removed.)
  147.  
  148.  
  149. ==================== Loaded Modules (Whitelisted) ==============
  150.  
  151. 2017-09-18 21:10 - 2017-06-07 02:42 - 002197608 _____ () C:\Program Files\Everything\Everything.exe
  152. 2017-08-27 00:29 - 2017-08-27 00:29 - 000026112 _____ () C:\Windows\KMS-R@1n.exe
  153. 2017-08-30 20:36 - 2017-08-18 05:32 - 001267136 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
  154. 2017-09-18 20:52 - 2017-09-18 20:53 - 000302360 _____ () C:\Program Files\Reason\Security\Protection\rscp\bin\rscp_svc.exe
  155. 2017-09-17 23:20 - 2017-08-24 11:27 - 002264528 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
  156. 2017-09-18 20:52 - 2017-09-18 20:53 - 000626968 _____ () C:\Program Files\Reason\Security\Protection\rscp\bin\rscp_bg.exe
  157. 2017-03-18 21:58 - 2017-03-18 21:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
  158. 2017-03-18 21:59 - 2017-03-19 03:30 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
  159. 2017-09-07 17:30 - 2017-09-07 17:30 - 015744000 _____ () C:\Program Files (x86)\qBittorrent\qbittorrent.exe
  160. 2017-08-29 17:23 - 2017-08-29 17:23 - 001528296 _____ () C:\Program Files (x86)\Blizzard App\Battle.net.9262\Battle.net Helper.exe
  161. 2017-08-27 08:17 - 2017-08-27 08:17 - 003139496 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11707.1001.23.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
  162. 2017-08-27 08:19 - 2017-08-27 08:19 - 010600960 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11707.1001.23.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
  163. 2017-08-27 08:19 - 2017-08-27 08:19 - 002640896 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11707.1001.23.0_x64__8wekyb3d8bbwe\MS.Entertainment.Common.Mobile.dll
  164. 2017-08-27 17:32 - 2017-08-23 18:49 - 002259968 _____ () C:\Users\loafb\AppData\Local\WhatsApp\app-0.2.5863\ffmpeg.dll
  165. 2017-09-19 19:38 - 2017-09-19 19:38 - 000486400 _____ () \\?\C:\Users\loafb\AppData\Local\Temp\C827.tmp.node
  166. 2017-09-19 19:38 - 2017-09-19 19:38 - 000221184 _____ () \\?\C:\Users\loafb\AppData\Local\Temp\D22A.tmp.node
  167. 2017-08-27 17:32 - 2017-08-23 18:49 - 002917376 _____ () C:\Users\loafb\AppData\Local\WhatsApp\app-0.2.5863\libglesv2.dll
  168. 2017-08-27 17:32 - 2017-08-23 18:49 - 000095232 _____ () C:\Users\loafb\AppData\Local\WhatsApp\app-0.2.5863\libegl.dll
  169. 2017-09-19 19:38 - 2017-09-19 19:38 - 000486400 _____ () \\?\C:\Users\loafb\AppData\Local\Temp\D1BC.tmp.node
  170. 2017-08-27 00:41 - 2017-08-23 09:48 - 003824472 _____ () C:\Program Files (x86)\Google\Chrome\Application\60.0.3112.113\libglesv2.dll
  171. 2017-08-27 00:41 - 2017-08-23 09:48 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\60.0.3112.113\libegl.dll
  172. 2017-08-27 00:29 - 2017-08-27 00:29 - 000005120 _____ () C:\WINDOWS\KMS-R@1nHook.exe
  173. 2017-08-27 00:29 - 2017-08-27 00:29 - 000004096 _____ () C:\WINDOWS\KMS-R@1nHook.dll
  174. 2017-09-07 04:28 - 2017-09-07 04:28 - 000083432 _____ () C:\Program Files (x86)\Plex\Plex Media Server\zlib.dll
  175. 2017-09-07 04:27 - 2017-09-07 04:27 - 000203240 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libidn.dll
  176. 2017-08-27 07:47 - 2017-08-04 22:19 - 000678176 _____ () C:\Program Files (x86)\Steam\SDL2.dll
  177. 2017-08-27 07:47 - 2017-09-07 05:51 - 002505504 _____ () C:\Program Files (x86)\Steam\video.dll
  178. 2017-08-27 07:47 - 2016-09-01 02:02 - 004969248 _____ () C:\Program Files (x86)\Steam\v8.dll
  179. 2017-08-27 07:47 - 2016-01-27 08:49 - 002549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
  180. 2017-08-27 07:47 - 2016-01-27 08:49 - 000491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
  181. 2017-08-27 07:47 - 2016-01-27 08:49 - 000332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
  182. 2017-08-27 07:47 - 2016-01-27 08:49 - 000442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
  183. 2017-08-27 07:47 - 2016-01-27 08:49 - 000485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
  184. 2017-08-27 07:47 - 2016-09-01 02:02 - 001563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
  185. 2017-08-27 07:47 - 2016-09-01 02:02 - 001195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
  186. 2017-08-27 07:47 - 2017-09-07 05:51 - 000885024 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
  187. 2017-08-27 07:47 - 2016-07-04 23:17 - 000266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
  188. 2017-09-07 04:27 - 2017-09-07 04:27 - 001083368 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libxml2.dll
  189. 2017-09-07 04:28 - 2017-09-07 04:28 - 000115688 _____ () C:\Program Files (x86)\Plex\Plex Media Server\soci_core-vc80-3_0.dll
  190. 2017-09-07 04:28 - 2017-09-07 04:28 - 000059880 _____ () C:\Program Files (x86)\Plex\Plex Media Server\soci_sqlite3-vc80-3_0.dll
  191. 2017-09-07 04:28 - 2017-09-07 04:28 - 000772072 _____ () C:\Program Files (x86)\Plex\Plex Media Server\tag.dll
  192. 2017-09-07 04:27 - 2017-09-07 04:27 - 001741288 _____ () C:\Program Files (x86)\Plex\Plex Media Server\opencv_imgproc2411.dll
  193. 2017-09-07 04:27 - 2017-09-07 04:27 - 001962984 _____ () C:\Program Files (x86)\Plex\Plex Media Server\opencv_core2411.dll
  194. 2017-09-07 04:27 - 2017-09-07 04:27 - 000025576 _____ () C:\Program Files (x86)\Plex\Plex Media Server\lyric_lite.dll
  195. 2017-09-07 04:27 - 2017-09-07 04:27 - 001549104 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libstdc++-6.dll
  196. 2017-09-07 04:27 - 2017-09-07 04:27 - 000127136 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libgcc_s_dw2-1.dll
  197. 2017-08-29 23:08 - 2017-08-08 15:13 - 001893880 _____ () C:\Users\loafb\AppData\Local\Discord\app-0.0.298\ffmpeg.dll
  198. 2017-08-29 23:08 - 2017-08-29 23:08 - 001577976 _____ () \\?\C:\Users\loafb\AppData\Roaming\discord\0.0.298\modules\discord_toaster\discord_toaster.node
  199. 2017-08-29 23:37 - 2017-09-12 08:48 - 001403384 _____ () \\?\C:\Users\loafb\AppData\Roaming\discord\0.0.298\modules\discord_overlay\discord_overlay.node
  200. 2017-08-27 07:48 - 2017-07-17 23:50 - 073115424 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
  201. 2017-08-27 07:48 - 2017-05-17 02:54 - 000678176 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\SDL2.dll
  202. 2017-08-27 07:47 - 2015-09-25 00:52 - 000119208 _____ () C:\Program Files (x86)\Steam\winh264.dll
  203. 2017-08-29 23:08 - 2017-08-08 15:13 - 001938424 _____ () C:\Users\loafb\AppData\Local\Discord\app-0.0.298\libglesv2.dll
  204. 2017-08-29 23:08 - 2017-08-08 15:13 - 000095736 _____ () C:\Users\loafb\AppData\Local\Discord\app-0.0.298\libegl.dll
  205. 2017-09-07 04:28 - 2017-09-07 04:28 - 000050152 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_socket.pyd
  206. 2017-09-07 04:28 - 2017-09-07 04:28 - 000071656 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_ssl.pyd
  207. 2017-09-07 04:28 - 2017-09-07 04:28 - 000024552 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_hashlib.pyd
  208. 2017-09-07 04:28 - 2017-09-07 04:28 - 000041448 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\simplejson\_speedups.pyd
  209. 2017-09-07 04:28 - 2017-09-07 04:28 - 000930280 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\lxml\etree.pyd
  210. 2017-09-07 04:27 - 2017-09-07 04:27 - 000074728 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libexslt.dll
  211. 2017-09-07 04:27 - 2017-09-07 04:27 - 000190952 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libxslt.dll
  212. 2017-09-07 04:28 - 2017-09-07 04:28 - 000218088 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\lxml\objectify.pyd
  213. 2017-09-07 04:28 - 2017-09-07 04:28 - 000018920 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\select.pyd
  214. 2017-09-07 04:28 - 2017-09-07 04:28 - 000095720 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_ctypes.pyd
  215. 2017-09-07 04:28 - 2017-09-07 04:28 - 000143336 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\pyexpat.pyd
  216. 2017-09-07 04:28 - 2017-09-07 04:28 - 000694248 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\unicodedata.pyd
  217. 2017-08-30 20:36 - 2017-08-18 05:31 - 069807552 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
  218. 2017-08-30 20:36 - 2017-08-18 05:32 - 001040320 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
  219. 2017-08-29 17:24 - 2017-08-29 17:24 - 055782888 _____ () C:\Program Files (x86)\Blizzard App\Battle.net.9262\libcef.dll
  220. 2017-08-29 17:24 - 2017-08-29 17:24 - 000540336 _____ () C:\Program Files (x86)\Blizzard App\Battle.net.9262\ortp.dll
  221. 2017-08-29 17:24 - 2017-08-29 17:24 - 000133632 _____ () C:\Program Files (x86)\Blizzard App\Battle.net.9262\libEGL.dll
  222. 2017-08-29 17:24 - 2017-08-29 17:24 - 003384832 _____ () C:\Program Files (x86)\Blizzard App\Battle.net.9262\libGLESv2.dll
  223. 2017-08-29 23:08 - 2017-08-31 20:58 - 009622008 _____ () \\?\C:\Users\loafb\AppData\Roaming\discord\0.0.298\modules\discord_voice\discord_voice.node
  224. 2017-08-29 23:08 - 2017-08-29 23:08 - 001440248 _____ () \\?\C:\Users\loafb\AppData\Roaming\discord\0.0.298\modules\discord_utils\discord_utils.node
  225. 2017-09-19 17:22 - 2017-09-19 17:22 - 000148992 _____ () \\?\C:\Users\loafb\AppData\Local\Temp\3081.tmp.node
  226. 2017-08-29 23:08 - 2017-08-29 23:08 - 002658296 _____ () \\?\C:\Users\loafb\AppData\Roaming\discord\0.0.298\modules\discord_rpc\discord_rpc.node
  227. 2017-08-29 23:10 - 2017-08-29 23:10 - 002673656 _____ () \\?\C:\Users\loafb\AppData\Roaming\discord\0.0.298\modules\discord_contact_import\discord_contact_import.node
  228. 2017-09-07 04:28 - 2017-09-07 04:28 - 000064488 _____ () C:\Program Files (x86)\Plex\Plex Media Server\TeVii.dll
  229. 2017-08-27 07:48 - 2017-07-17 23:50 - 001936672 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\swiftshader\libglesv2.dll
  230. 2017-08-27 07:48 - 2017-07-17 23:50 - 000113952 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\swiftshader\libegl.dll
  231.  
  232. ==================== Alternate Data Streams (Whitelisted) =========
  233.  
  234. (If an entry is included in the fixlist, only the ADS will be removed.)
  235.  
  236. AlternateDataStreams: C:\Users\loafb\AppData\Local\Temp:$DATA [16]
  237.  
  238. ==================== Safe Mode (Whitelisted) ===================
  239.  
  240. (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
  241.  
  242. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
  243. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
  244.  
  245. ==================== Association (Whitelisted) ===============
  246.  
  247. (If an entry is included in the fixlist, the registry item will be restored to default or removed.)
  248.  
  249.  
  250. ==================== Internet Explorer trusted/restricted ===============
  251.  
  252. (If an entry is included in the fixlist, it will be removed from the registry.)
  253.  
  254.  
  255. ==================== Hosts content: ==========================
  256.  
  257. (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
  258.  
  259. 2015-10-30 08:24 - 2017-09-19 17:21 - 000002103 _____ C:\WINDOWS\system32\Drivers\etc\hosts
  260.  
  261. 0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
  262. 0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
  263. 0.0.0.0 media.opencandy.com
  264. 0.0.0.0 cdn.opencandy.com
  265. 0.0.0.0 tracking.opencandy.com
  266. 0.0.0.0 api.opencandy.com
  267. 0.0.0.0 api.recommendedsw.com
  268. 0.0.0.0 rp.yefeneri2.com
  269. 0.0.0.0 os.yefeneri2.com
  270. 0.0.0.0 os2.yefeneri2.com
  271. 0.0.0.0 installer.betterinstaller.com
  272. 0.0.0.0 installer.filebulldog.com
  273. 0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
  274. 0.0.0.0 inno.bisrv.com
  275. 0.0.0.0 nsis.bisrv.com
  276. 0.0.0.0 cdn.file2desktop.com
  277. 0.0.0.0 cdn.goateastcach.us
  278. 0.0.0.0 cdn.guttastatdk.us
  279. 0.0.0.0 cdn.inskinmedia.com
  280. 0.0.0.0 cdn.insta.oibundles2.com
  281. 0.0.0.0 cdn.insta.playbryte.com
  282. 0.0.0.0 cdn.llogetfastcach.us
  283. 0.0.0.0 cdn.montiera.com
  284. 0.0.0.0 cdn.msdwnld.com
  285. 0.0.0.0 cdn.mypcbackup.com
  286. 0.0.0.0 cdn.ppdownload.com
  287. 0.0.0.0 cdn.riceateastcach.us
  288. 0.0.0.0 cdn.shyapotato.us
  289. 0.0.0.0 cdn.solimba.com
  290. 0.0.0.0 cdn.tuto4pc.com
  291.  
  292. ==================== Other Areas ============================
  293.  
  294. (Currently there is no automatic fix for this section.)
  295.  
  296. HKU\S-1-5-21-1624113848-1791311199-1234011438-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\loafb\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
  297. DNS Servers: 192.168.1.254
  298. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
  299. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
  300. Windows Firewall is enabled.
  301.  
  302. ==================== MSCONFIG/TASK MANAGER disabled items ==
  303.  
  304. HKU\S-1-5-21-1624113848-1791311199-1234011438-1001\...\StartupApproved\Run: => "GalaxyClient"
  305.  
  306. ==================== FirewallRules (Whitelisted) ===============
  307.  
  308. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  309.  
  310. FirewallRules: [{41C2AA04-FCA1-4CA2-8A5D-5CBCBC1F2AC8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
  311. FirewallRules: [{B2172B22-20FB-407D-BD29-349BD0878BF6}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
  312. FirewallRules: [{7C6AD2F3-62D3-4B73-ADDA-4C47E435F7D5}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  313. FirewallRules: [{684069C2-46F5-4A50-8326-0C3EA84EDCE7}] => (Allow) C:\Windows\KMS-R@1n.exe
  314. FirewallRules: [{C69B08DB-C453-499A-A55F-1D0112123479}] => (Allow) C:\Windows\KMS-R@1n.exe
  315. FirewallRules: [{A233EC9B-2DC5-4047-8094-7DCDD1ED030D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
  316. FirewallRules: [{2A7CD2B9-1431-4309-B9A1-298BB96549CA}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
  317. FirewallRules: [TCP Query User{F18956DB-44D0-4527-88E5-21615A4780BA}C:\program files\qbittorrent\qbittorrent.exe] => (Allow) C:\program files\qbittorrent\qbittorrent.exe
  318. FirewallRules: [UDP Query User{F31E6B73-0357-4515-BB57-002517FCB8FB}C:\program files\qbittorrent\qbittorrent.exe] => (Allow) C:\program files\qbittorrent\qbittorrent.exe
  319. FirewallRules: [{A1AA7F1F-CBD8-466A-8810-5F3FA674F68C}] => (Allow) C:\Program Files\Plex\Plex Media Player\PlexMediaPlayer.exe
  320. FirewallRules: [{E13EBFA9-6ED1-4A8C-BC7E-605601615F6A}] => (Allow) C:\Program Files\Plex\Plex Media Player\PMPHelper.exe
  321. FirewallRules: [TCP Query User{0608EC2C-A0BB-4886-A4D8-D75C301397BE}C:\program files (x86)\blizzard app\battle.net.9262\battle.net.exe] => (Allow) C:\program files (x86)\blizzard app\battle.net.9262\battle.net.exe
  322. FirewallRules: [UDP Query User{58157E2C-EDF6-4548-8569-AB486BD748A2}C:\program files (x86)\blizzard app\battle.net.9262\battle.net.exe] => (Allow) C:\program files (x86)\blizzard app\battle.net.9262\battle.net.exe
  323. FirewallRules: [{4BF1CDAA-E3CE-4C6C-88E7-F4C5E1E15106}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
  324. FirewallRules: [{405240B2-215E-43C0-9EFD-E99086C7644A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
  325. FirewallRules: [{9E9B14A1-640A-49AE-A523-5930DD5DBE52}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
  326. FirewallRules: [{A4E07308-D929-43B1-AF67-3D12A69BEA38}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
  327. FirewallRules: [{C7CC29A2-8A93-4535-94BD-704F7190F311}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
  328. FirewallRules: [{5D4FD049-A58D-49FD-8CDB-4DA94789759A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dead Rising 2\deadrising2.exe
  329. FirewallRules: [{9BFB68DB-7416-4159-89B9-9150BC16C34A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dead Rising 2\deadrising2.exe
  330. FirewallRules: [{BECD24DA-18C1-45E8-ABD0-98D6B510B386}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
  331. FirewallRules: [{533B9D65-47C8-40A4-8D84-B3815E3C9344}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
  332. FirewallRules: [TCP Query User{69D85777-EABA-4A60-833C-CBE14BA8537D}C:\program files (x86)\qbittorrent\qbittorrent.exe] => (Allow) C:\program files (x86)\qbittorrent\qbittorrent.exe
  333. FirewallRules: [UDP Query User{1BD575D8-D7C5-495B-B35B-C513F78B0F4B}C:\program files (x86)\qbittorrent\qbittorrent.exe] => (Allow) C:\program files (x86)\qbittorrent\qbittorrent.exe
  334. FirewallRules: [{920E28EE-0E74-4B15-836B-D2C561615E85}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe
  335. FirewallRules: [{A6F08DCD-04ED-4BB4-BA97-8DEB73B0FE17}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe
  336. FirewallRules: [{CBE6AD22-DFD8-48E4-B397-568A5F54B8CD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Slime Rancher\SlimeRancher.exe
  337. FirewallRules: [{2EAF58B4-502A-4DD5-A199-6246967B9E60}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Slime Rancher\SlimeRancher.exe
  338. FirewallRules: [{713EADD5-C01E-46A9-8287-DF6B5649224A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe
  339. FirewallRules: [{7AADBE74-A630-4901-A7C5-01EF53E99E67}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe
  340. FirewallRules: [{B6821F0C-AE05-4B39-966C-A7332FC89F1B}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe
  341. FirewallRules: [{94F187CA-0363-46A2-83AA-6C408EE06EDB}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe
  342. FirewallRules: [{DBB0B37D-EF4F-4424-8224-5D89135757A9}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\Plex DLNA Server.exe
  343. FirewallRules: [{B44FC198-A55B-471D-8C8B-7C5F81AA564C}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\Plex Tuner Service.exe
  344. FirewallRules: [TCP Query User{6D4651D4-5F1D-420C-A950-56B4E13EF483}D:\super mario 64 online\sm64o.exe] => (Allow) D:\super mario 64 online\sm64o.exe
  345. FirewallRules: [UDP Query User{576CF2FB-AFAF-4279-BBA8-A1EA3FD35F7C}D:\super mario 64 online\sm64o.exe] => (Allow) D:\super mario 64 online\sm64o.exe
  346. FirewallRules: [{39086079-CEFC-43D8-83CC-746BD6B307B1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\left 4 dead\left4dead.exe
  347. FirewallRules: [{E06D71AB-C492-4FB5-A9AB-757E8346CA36}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\left 4 dead\left4dead.exe
  348. FirewallRules: [TCP Query User{DA8443BB-C609-4805-B316-F76959418EE5}C:\program files\java\jre1.8.0_144\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_144\bin\javaw.exe
  349. FirewallRules: [UDP Query User{E7EB2D3A-47E6-4B88-9E26-D6F8C850868A}C:\program files\java\jre1.8.0_144\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_144\bin\javaw.exe
  350. FirewallRules: [{3BB73A8C-9F1F-4133-BDF0-D5391FE756D7}] => (Allow) F:\SteamLibrary\steamapps\common\Left 4 Dead 2\left4dead2.exe
  351. FirewallRules: [{9E037590-7A33-4522-A227-D558D84D0A4E}] => (Allow) F:\SteamLibrary\steamapps\common\Left 4 Dead 2\left4dead2.exe
  352. FirewallRules: [{EF56E385-0184-4A40-803E-E9D00EFB569C}] => (Allow) F:\SteamLibrary\steamapps\common\Half-Life\hl.exe
  353. FirewallRules: [{DE75B9DE-85D7-483B-99EC-A3645E81C88C}] => (Allow) F:\SteamLibrary\steamapps\common\Half-Life\hl.exe
  354. FirewallRules: [{5FC0AD74-3BE7-4033-A9CE-AFBC9C6D97D6}] => (Allow) F:\SteamLibrary\steamapps\common\Half-Life 2\hl2.exe
  355. FirewallRules: [{0FF77D3E-2935-44CE-967C-837893C60D4E}] => (Allow) F:\SteamLibrary\steamapps\common\Half-Life 2\hl2.exe
  356. FirewallRules: [{019F501B-53D6-4171-9467-8C54EC2B36D3}] => (Allow) F:\SteamLibrary\steamapps\common\Half-Life 2 Deathmatch\hl2.exe
  357. FirewallRules: [{9614EB6A-B233-473D-936E-49597A8C6DAB}] => (Allow) F:\SteamLibrary\steamapps\common\Half-Life 2 Deathmatch\hl2.exe
  358. FirewallRules: [{35174336-79DE-4271-9787-A4B265A0EC65}] => (Allow) F:\SteamLibrary\steamapps\common\Half-Life 1 Source Deathmatch\hl2.exe
  359. FirewallRules: [{DCE6E219-FADE-49ED-97C4-38095D47381E}] => (Allow) F:\SteamLibrary\steamapps\common\Half-Life 1 Source Deathmatch\hl2.exe
  360. FirewallRules: [{53E72EDC-354A-407B-B91B-96B1FDFCF2CC}] => (Allow) F:\SteamLibrary\steamapps\common\Portal\hl2.exe
  361. FirewallRules: [{32E4ABCF-E651-416B-9580-8C03059A081A}] => (Allow) F:\SteamLibrary\steamapps\common\Portal\hl2.exe
  362.  
  363. ==================== Restore Points =========================
  364.  
  365. 05-09-2017 14:19:46 Scheduled Checkpoint
  366. 11-09-2017 08:42:00 Plex Media Server
  367. 12-09-2017 12:39:05 Installed Project64 1.6
  368. 17-09-2017 09:46:23 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
  369.  
  370. ==================== Faulty Device Manager Devices =============
  371.  
  372.  
  373. ==================== Event log errors: =========================
  374.  
  375. Application errors:
  376. ==================
  377. Error: (09/19/2017 05:25:00 PM) (Source: SideBySide) (EventID: 78) (User: )
  378. Description: Activation context generation failed for "C:\Program Files (x86)\Audacity\audacity.exe".Error in manifest or policy file "" on line .
  379. A component version required by the application conflicts with another component version already active.
  380. Conflicting components are:.
  381. Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_26002d27e7c744a2.manifest.
  382. Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_6dad63fefc436da8.manifest.
  383.  
  384. Error: (09/19/2017 05:23:33 PM) (Source: Application Error) (EventID: 1000) (User: )
  385. Description: Faulting application name: BorderlessGaming.exe, version: 9.4.9.1328, time stamp: 0x595d36c1
  386. Faulting module name: KERNELBASE.dll, version: 10.0.15063.502, time stamp: 0xc3955624
  387. Exception code: 0xe0434352
  388. Fault offset: 0x000eb802
  389. Faulting process id: 0x7ec
  390. Faulting application start time: 0x01d331637092a776
  391. Faulting application path: C:\Program Files (x86)\Borderless Gaming\BorderlessGaming.exe
  392. Faulting module path: C:\WINDOWS\System32\KERNELBASE.dll
  393. Report Id: f986de87-61e9-4047-86f3-39088befef17
  394. Faulting package full name:
  395. Faulting package-relative application ID:
  396.  
  397. Error: (09/19/2017 05:23:32 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
  398. Description: Application: BorderlessGaming.exe
  399. Framework Version: v4.0.30319
  400. Description: The process was terminated due to an unhandled exception.
  401. Exception Info: ProtoBuf.ProtoException
  402. at ProtoBuf.ProtoReader.CheckFullyConsumed()
  403. at ProtoBuf.Meta.TypeModel.Deserialize(System.IO.Stream, System.Object, System.Type, ProtoBuf.SerializationContext)
  404. at ProtoBuf.Serializer.Deserialize[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.IO.Stream)
  405. at BorderlessGaming.Logic.Windows.Security.LoadConfigFile()
  406. at BorderlessGaming.Logic.Models.Config.Load()
  407. at BorderlessGaming.Logic.System.Tools.Setup()
  408. at BorderlessGaming.Program.Main()
  409.  
  410. Error: (09/18/2017 09:10:45 PM) (Source: SideBySide) (EventID: 78) (User: )
  411. Description: Activation context generation failed for "C:\Program Files (x86)\Audacity\audacity.exe".Error in manifest or policy file "" on line .
  412. A component version required by the application conflicts with another component version already active.
  413. Conflicting components are:.
  414. Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_26002d27e7c744a2.manifest.
  415. Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_6dad63fefc436da8.manifest.
  416.  
  417. Error: (09/18/2017 08:59:10 PM) (Source: SideBySide) (EventID: 78) (User: )
  418. Description: Activation context generation failed for "C:\Program Files (x86)\Audacity\audacity.exe".Error in manifest or policy file "" on line .
  419. A component version required by the application conflicts with another component version already active.
  420. Conflicting components are:.
  421. Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_26002d27e7c744a2.manifest.
  422. Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_6dad63fefc436da8.manifest.
  423.  
  424. Error: (09/18/2017 08:52:53 PM) (Source: SideBySide) (EventID: 78) (User: )
  425. Description: Activation context generation failed for "C:\Program Files (x86)\Audacity\audacity.exe".Error in manifest or policy file "" on line .
  426. A component version required by the application conflicts with another component version already active.
  427. Conflicting components are:.
  428. Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_26002d27e7c744a2.manifest.
  429. Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_6dad63fefc436da8.manifest.
  430.  
  431. Error: (09/18/2017 08:31:44 PM) (Source: Application Error) (EventID: 1000) (User: )
  432. Description: Faulting application name: mbam.exe, version: 3.0.0.1169, time stamp: 0x599723f1
  433. Faulting module name: Qt5Core.dll, version: 5.6.2.0, time stamp: 0x59a63e00
  434. Exception code: 0xc0000005
  435. Fault offset: 0x0018de83
  436. Faulting process id: 0x257c
  437. Faulting application start time: 0x01d330b4b69c7ce4
  438. Faulting application path: C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
  439. Faulting module path: C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
  440. Report Id: dd8c81ba-2bed-46c9-bc4e-0ebf2d862b54
  441. Faulting package full name:
  442. Faulting package-relative application ID:
  443.  
  444. Error: (09/18/2017 08:30:47 PM) (Source: Perflib) (EventID: 1008) (User: )
  445. Description: The Open Procedure for service "BITS" in DLL "C:\Windows\System32\bitsperf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
  446.  
  447. Error: (09/18/2017 07:54:53 PM) (Source: SideBySide) (EventID: 78) (User: )
  448. Description: Activation context generation failed for "C:\Program Files (x86)\Audacity\audacity.exe".Error in manifest or policy file "" on line .
  449. A component version required by the application conflicts with another component version already active.
  450. Conflicting components are:.
  451. Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_26002d27e7c744a2.manifest.
  452. Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_6dad63fefc436da8.manifest.
  453.  
  454. Error: (09/17/2017 11:22:19 PM) (Source: SideBySide) (EventID: 78) (User: )
  455. Description: Activation context generation failed for "C:\Program Files (x86)\Audacity\audacity.exe".Error in manifest or policy file "" on line .
  456. A component version required by the application conflicts with another component version already active.
  457. Conflicting components are:.
  458. Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_26002d27e7c744a2.manifest.
  459. Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_6dad63fefc436da8.manifest.
  460.  
  461.  
  462. System errors:
  463. =============
  464. Error: (09/19/2017 05:21:55 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
  465. Description: The CldFlt service failed to start due to the following error:
  466. The request is not supported.
  467.  
  468. Error: (09/19/2017 05:21:55 PM) (Source: EventLog) (EventID: 6008) (User: )
  469. Description: The previous system shutdown at 12:08:08 AM on ‎9/‎19/‎2017 was unexpected.
  470.  
  471. Error: (09/19/2017 12:08:08 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
  472. Description: The CldFlt service failed to start due to the following error:
  473. The request is not supported.
  474.  
  475. Error: (09/19/2017 12:07:58 AM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY)
  476. Description: 32212256841279408
  477.  
  478. Error: (09/19/2017 12:08:08 AM) (Source: EventLog) (EventID: 6008) (User: )
  479. Description: The previous system shutdown at 11:39:45 PM on ‎9/‎18/‎2017 was unexpected.
  480.  
  481. Error: (09/18/2017 09:15:35 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
  482. Description: The KMS-R@1n service terminated unexpectedly. It has done this 1 time(s).
  483.  
  484. Error: (09/18/2017 08:59:45 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
  485. Description: The CldFlt service failed to start due to the following error:
  486. The request is not supported.
  487.  
  488. Error: (09/18/2017 07:51:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
  489. Description: The CldFlt service failed to start due to the following error:
  490. The request is not supported.
  491.  
  492. Error: (09/18/2017 07:51:42 PM) (Source: EventLog) (EventID: 6008) (User: )
  493. Description: The previous system shutdown at 10:57:57 PM on ‎9/‎17/‎2017 was unexpected.
  494.  
  495. Error: (09/18/2017 07:51:32 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY)
  496. Description: 32212256841211280
  497.  
  498.  
  499. CodeIntegrity:
  500. ===================================
  501. Date: 2017-09-17 23:23:19.417
  502. Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
  503.  
  504. Date: 2017-09-17 23:22:40.958
  505. Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
  506.  
  507. Date: 2017-09-17 23:22:40.709
  508. Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
  509.  
  510. Date: 2017-09-17 23:20:59.270
  511. Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
  512.  
  513. Date: 2017-09-17 23:20:59.269
  514. Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
  515.  
  516. Date: 2017-09-17 23:20:59.241
  517. Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
  518.  
  519. Date: 2017-09-17 23:18:31.510
  520. Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
  521.  
  522. Date: 2017-09-17 23:18:29.630
  523. Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
  524.  
  525. Date: 2017-09-14 13:22:17.245
  526. Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
  527.  
  528. Date: 2017-09-06 22:41:42.349
  529. Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
  530.  
  531.  
  532. ==================== Memory info ===========================
  533.  
  534. Processor: Intel(R) Core(TM) i5-4670K CPU @ 3.40GHz
  535. Percentage of memory in use: 49%
  536. Total physical RAM: 8079.13 MB
  537. Available physical RAM: 4058.06 MB
  538. Total Virtual: 9359.13 MB
  539. Available Virtual: 4436.4 MB
  540.  
  541. ==================== Drives ================================
  542.  
  543. Drive c: () (Fixed) (Total:110.41 GB) (Free:10.74 GB) NTFS
  544. Drive d: (EMULATORS) (Fixed) (Total:931.51 GB) (Free:361.25 GB) NTFS
  545. Drive e: (MEDIA) (Fixed) (Total:5588.9 GB) (Free:4978.11 GB) NTFS
  546. Drive f: (PC GAMES) (Fixed) (Total:2794.39 GB) (Free:1772.68 GB) NTFS
  547. Drive g: (Gallagher External) (Fixed) (Total:1863.01 GB) (Free:751.55 GB) NTFS
  548.  
  549. ==================== MBR & Partition Table ==================
  550.  
  551. ========================================================
  552. Disk: 0 (Size: 111.8 GB) (Disk ID: 91138512)
  553.  
  554. Partition: GPT.
  555.  
  556. ========================================================
  557. Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: A4B2E8ED)
  558. Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
  559.  
  560. ========================================================
  561. Disk: 2 (MBR Code: Windows 7 or 8) (Size: 5589 GB) (Disk ID: 00000000)
  562.  
  563. Partition: GPT.
  564.  
  565. ========================================================
  566. Disk: 3 (MBR Code: Windows 7 or 8) (Size: 2794.5 GB) (Disk ID: 00000000)
  567.  
  568. Partition: GPT.
  569.  
  570. ========================================================
  571. Disk: 4 (Size: 1863 GB) (Disk ID: C4AFF0F7)
  572. Partition 1: (Active) - (Size=1863 GB) - (Type=07 NTFS)
  573.  
  574. ==================== End of Addition.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!