Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-02-2017 01
- Ran by real (11-02-2017 23:52:20)
- Running from C:\Users\real\Downloads
- Windows 10 Home Version 1607 (X64) (2016-09-28 16:43:49)
- Boot Mode: Normal
- ==========================================================
- ==================== Accounts: =============================
- Administrator (S-1-5-21-1095897273-1061886839-2782299659-500 - Administrator - Disabled)
- DefaultAccount (S-1-5-21-1095897273-1061886839-2782299659-503 - Limited - Disabled)
- Guest (S-1-5-21-1095897273-1061886839-2782299659-501 - Limited - Disabled)
- real (S-1-5-21-1095897273-1061886839-2782299659-1001 - Administrator - Enabled) => C:\Users\real
- ==================== Security Center ========================
- (If an entry is included in the fixlist, it will be removed.)
- AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- ==================== Installed Programs ======================
- (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
- µTorrent (HKU\S-1-5-21-1095897273-1061886839-2782299659-1001\...\uTorrent) (Version: 3.4.7.42330 - BitTorrent Inc.)
- Action! (HKLM-x32\...\Mirillis Action!) (Version: 1.30.0 - Mirillis)
- Adobe After Effects CC 2014 (HKLM-x32\...\{2B22C750-5C3B-4738-B621-BA786AC7A494}) (Version: 13.0.0 - Adobe Systems Incorporated)
- Adobe Audition CC (HKLM-x32\...\{DE1E055B-679C-42F8-B114-7B6ED0B8ED95}) (Version: 6.0 - Adobe Systems Incorporated)
- Adobe Flash Player 10 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 10.3.183.20 - Adobe Systems Incorporated)
- Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.162 - Adobe Systems Incorporated)
- Adobe Illustrator CC 2015 (HKLM-x32\...\{5680D629-B263-49CC-821E-3CEBD4507B51}) (Version: 19.0 - Adobe Systems Incorporated)
- Adobe Photoshop CC 2015 (HKLM-x32\...\{793C2BF7-A4FE-4608-91C9-9282C5801C21}) (Version: 16.0 - Adobe Systems Incorporated)
- Aloha TriPeaks (x32 Version: 2.2.0.98 - WildTangent) Hidden
- American Truck Simulator (HKLM-x32\...\Steam App 270880) (Version: - SCS Software)
- Apple Application Support (32-bit) (HKLM-x32\...\{F2871C89-C8A5-42EE-8D45-0F02506385A6}) (Version: 5.1 - Apple Inc.)
- Apple Application Support (64-bit) (HKLM\...\{9BC93467-75D1-4AA4-BD58-D9C51D88DFAB}) (Version: 5.1 - Apple Inc.)
- Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
- Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
- Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team)
- AutoHotkey 1.1.24.02 (HKLM\...\AutoHotkey) (Version: 1.1.24.02 - Lexikos)
- Bandicam (HKLM-x32\...\Bandicam) (Version: 2.1.1.731 - Bandisoft.com)
- Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandisoft.com)
- Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
- Bejeweled 3 (HKLM-x32\...\Steam App 78000) (Version: - PopCap Games, Inc.)
- Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
- bl (x32 Version: 1.0.0 - Your Company Name) Hidden
- BlueStacks App Player (HKLM-x32\...\BlueStacks) (Version: 2.5.70.6309 - BlueStack Systems, Inc.)
- Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
- Borderlands 2 (HKLM-x32\...\Steam App 49520) (Version: - Gearbox Software)
- Build-a-lot 4 - Power Source (x32 Version: 2.2.0.98 - WildTangent) Hidden
- Call of Duty: Black Ops II - Multiplayer (HKLM-x32\...\Steam App 202990) (Version: - Treyarch)
- Call of Duty: Black Ops II - Zombies (HKLM-x32\...\Steam App 212910) (Version: - )
- Call of Duty: Black Ops II (HKLM-x32\...\Steam App 202970) (Version: - Treyarch)
- Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)
- Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: 1.5.2.3 - Canon Inc.)
- Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.5.0 - Canon Inc.)
- Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.10.15 - Canon Inc.)
- Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.2.0 - Canon Inc.)
- Canon MG2900 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG2900_series) (Version: 1.01 - Canon Inc.)
- Canon MG2900 series On-screen Manual (HKLM-x32\...\Canon MG2900 series On-screen Manual) (Version: 7.7.1 - Canon Inc.)
- Canon MG2900 series User Registration (HKLM-x32\...\Canon MG2900 series User Registration) (Version: - Canon Inc.)
- Canon MG4200 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG4200_series) (Version: 1.01 - Canon Inc.)
- Canon MG4200 series User Registration (HKLM-x32\...\Canon MG4200 series User Registration) (Version: - Canon Inc.)
- Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.5.1 - Canon Inc.)
- Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.5.0 - Canon Inc.)
- Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
- Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.7.0 - Canon Inc.)
- CEVO CS:GO Client Beta version 2.0 (HKLM-x32\...\CEVO CS:GO Client Beta_is1) (Version: 2.0 - )
- Cheat Engine 6.6 (HKLM-x32\...\Cheat Engine 6.6_is1) (Version: - Cheat Engine)
- Clover 3.0 (HKLM-x32\...\Clover) (Version: 3.0 - EJIE Technology)
- Color Suite v11.1.4 (HKLM-x32\...\{99487911-8011-42BC-B594-8B02BFD32B1D}_is1) (Version: 11.1.4 - Red Giant, LLC)
- Connected Music powered by Universal Music Group version 1.0 (HKLM-x32\...\{46037DC7-F927-46DF-935F-D6F122BDD34B}_is1) (Version: 1.0 - Snowite)
- Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
- Counter-Strike: Source (HKLM\...\Steam App 240) (Version: - Valve)
- CPUID CPU-Z 1.74 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
- CPUID HWMonitor 1.28 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
- CPUID PerfMonitor 2.04 (HKLM\...\CPUID PerfMonitor2_is1) (Version: 2.04 - CPUID, Inc.)
- Cradle of Rome 2 (x32 Version: 2.2.0.98 - WildTangent) Hidden
- Crazy Chicken Soccer (x32 Version: 2.2.0.98 - WildTangent) Hidden
- CyberGhost 6 (HKLM\...\CyberGhost 6_is1) (Version: - CyberGhost S.R.L.)
- CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.2.5630 - CyberLink Corp.)
- CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.2.2114 - CyberLink Corp.)
- CyberLink PhotoDirector (HKLM-x32\...\InstallShield_{4862344A-A39C-4897-ACD4-A1BED5163C5A}) (Version: 2.0.2.3317 - CyberLink Corp.)
- CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.2.2126 - CyberLink Corp.)
- CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.2.2126 - CyberLink Corp.)
- CyberLink PowerDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.7.4605 - CyberLink Corp.)
- D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
- DarkComet Remover version 2.0 (HKLM-x32\...\DarkComet Remover_is1) (Version: 2.0 - Phrozen ® Software 2013.)
- DayZ (HKLM\...\Steam App 221100) (Version: - Bohemia Interactive)
- Dead Island (HKLM-x32\...\Steam App 91310) (Version: - Techland)
- Dirty Bomb (HKLM-x32\...\Steam App 333930) (Version: - Splash Damage®)
- Discord (HKU\S-1-5-21-1095897273-1061886839-2782299659-1001\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
- DriverToolkit version 8.5.0.0 (HKLM-x32\...\{D66BF89F-B0A2-48F5-A2E4-242EB645AB76}_is1) (Version: 8.5.0.0 - Megaify Software)
- Epic Games Launcher (HKLM-x32\...\{BD7E17B3-FEB2-4761-980D-50C4FA169EF9}) (Version: 1.1.74.0 - Epic Games, Inc.)
- Euro Truck Simulator 2 (HKLM-x32\...\Steam App 227300) (Version: - SCS Software)
- Euro Truck Simulator 2 Multiplayer 0.1.9.3 Alpha (HKLM-x32\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 0.1.9.3 Alpha - ETS2MP Team)
- Evolve Stage 2 (HKLM\...\Steam App 273350) (Version: - Turtle Rock Studios)
- Farm Frenzy (x32 Version: 2.2.0.98 - WildTangent) Hidden
- FileZilla Client 3.14.1 (HKLM-x32\...\FileZilla Client) (Version: 3.14.1 - Tim Kosse)
- Final Drive Fury (x32 Version: 2.2.0.95 - WildTangent) Hidden
- Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
- Gardenscapes: Mansion Makeover (x32 Version: 3.0.2.32 - WildTangent) Hidden
- Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios)
- GenArts Sapphire Plug-ins 6.13 for After Effects and Compatible (HKLM\...\GenArts Sapphire AE_is1) (Version: - )
- Golf With Your Friends (HKLM\...\Steam App 431240) (Version: - Blacklight Interactive)
- Google Chrome (HKLM-x32\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.)
- Google Talk Plugin (HKLM-x32\...\{F9B579C2-D854-300A-BE62-A09EB9D722E4}) (Version: 5.41.3.0 - Google)
- Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
- Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.95 - WildTangent) Hidden
- Grand Theft Auto V (HKLM-x32\...\Steam App 271590) (Version: - Rockstar North)
- Gyazo 3.2.9 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version: - Nota Inc.)
- H1Z1: King of the Kill (HKLM\...\Steam App 433850) (Version: - Daybreak Game Company)
- Heroes & Generals (HKLM-x32\...\Steam App 227940) (Version: - Reto-Moto)
- Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
- Hitman: Absolution (HKLM-x32\...\Steam App 203140) (Version: - IO Interactive)
- HP Connected Music (Meridian - installer) (HKLM-x32\...\StartHPConnectedMusic) (Version: v1.0 - Meridian Audio Ltd)
- HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.3.0 - WildTangent)
- HP Keyboard (HKLM-x32\...\{B40D7926-AE5F-41EA-8AC6-56C0E2F00E9D}) (Version: 1.5.0.7 - Hewlett-Packard)
- HP Registration Service (HKLM\...\{C2E428EB-116E-41C0-9E84-B22DE9CCA42F}) (Version: 1.1.6232.4245 - Hewlett-Packard)
- HP Support Assistant (HKLM-x32\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.3.50.9 - Hewlett-Packard Company)
- HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 12.00.0000 - Hewlett-Packard)
- HP Support Solutions Framework (HKLM-x32\...\{55065080-504F-43BB-BE00-36B80D7D39A5}) (Version: 12.5.32.203 - Hewlett-Packard Company)
- iCloud (HKLM\...\{CE29BC77-C5AE-49D8-A8C0-FDAF6ACF74DF}) (Version: 6.0.1.41 - Apple Inc.)
- IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6429.0 - IDT)
- Infestation: Survivor Stories (HKLM-x32\...\Steam App 226700) (Version: - OP Productions LLC)
- Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
- iTunes (HKLM\...\{554C62C7-E6BB-40F1-892B-F0AE02D3C135}) (Version: 12.5.3.17 - Apple Inc.)
- Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.15 - Oracle Corporation)
- Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.15 - Oracle Corporation)
- Java SE Development Kit 8 Update 51 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180510}) (Version: 8.0.510.16 - Oracle Corporation)
- Java SE Development Kit 8 Update 91 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180910}) (Version: 8.0.910.15 - Oracle Corporation)
- Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
- Jewel Quest II (x32 Version: 2.2.0.97 - WildTangent) Hidden
- join.me (HKU\S-1-5-21-1095897273-1061886839-2782299659-1001\...\JoinMe) (Version: 3.0.0.4054 - LogMeIn, Inc.)
- join.me.launcher (x32 Version: 1.0.624.0 - LogMeIn, Inc.) Hidden
- Just Cause 2 (HKLM-x32\...\Steam App 8190) (Version: - Avalanche Studios)
- Just Cause 2: Multiplayer Mod (HKLM-x32\...\Steam App 259080) (Version: - Avalanche Studios)
- Lagarith Lossless Codec (1.3.27) (HKLM-x32\...\{F59AC46C-10C3-4023-882C-4212A92283B3}_is1) (Version: - )
- Launcher Prerequisites (x64) (x32 Version: 1.0.0.0 - Epic Games, Inc.) Hidden
- League of Legends (HKLM-x32\...\{92606477-9366-4D3B-8AE3-6BE4B29727AB}) (Version: 1.3 - Riot Games)
- League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
- League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
- Logitech Gaming Software 8.76 (HKLM\...\Logitech Gaming Software) (Version: 8.76.155 - Logitech Inc.)
- Magic Bullet Suite 64-bit (HKLM-x32\...\InstallShield_{93488C33-D8D6-472A-83BB-F71603355CF0}) (Version: 11.1.0 - Red Giant Software)
- Magic Bullet Suite 64-bit (Version: 11.1.0 - Red Giant Software) Hidden
- Mahjongg Artifacts (x32 Version: 2.2.0.110 - WildTangent) Hidden
- Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
- ManyCam 5.1.0 (HKLM-x32\...\ManyCam) (Version: 5.1.0 - Visicom Media Inc.)
- Mass Effect 2 (HKLM-x32\...\Steam App 24980) (Version: - BioWare)
- MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
- MEmu (HKLM-x32\...\MEmu) (Version: 2.8.6.0 - Microvirt)
- Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
- Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
- Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{a2199617-3609-410f-a8e8-e8806c73545b}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
- Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
- Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40649 (HKLM-x32\...\{5d0723d3-cff7-4e07-8d0b-ada737deb5e6}) (Version: 12.0.40649.5 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
- Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
- Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24210 (HKLM-x32\...\{23658c02-145e-483d-ba6b-1eb82c580529}) (Version: 14.0.24210.0 - Microsoft Corporation)
- Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
- Microsoft Xbox One Controller for Windows (HKLM\...\{DC2CB48C-FD96-48EB-A36A-7D995BB587EB}) (Version: 1.0.2 - Microsoft Corporation)
- Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
- Movie Maker (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
- Mozilla Firefox 49.0.2 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 49.0.2 (x86 en-US)) (Version: 49.0.2 - Mozilla)
- Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 49.0.2.6136 - Mozilla)
- Mystery of Mortlake Mansion (x32 Version: 2.2.0.98 - WildTangent) Hidden
- NewBlue 3D Explosions for Windows (HKLM-x32\...\NewBlue 3D Explosions for Windows) (Version: 3.0 - NewBlue)
- NewBlue 3D Transformations for Windows (HKLM-x32\...\NewBlue 3D Transformations for Windows) (Version: 3.0 - NewBlue)
- NewBlue Art Blends for Windows (HKLM-x32\...\NewBlue Art Blends for Windows) (Version: 3.0 - NewBlue)
- NewBlue Art Effects for Windows (HKLM-x32\...\NewBlue Art Effects for Windows) (Version: 3.0 - NewBlue)
- NewBlue ColorFast for Windows (HKLM-x32\...\NewBlue ColorFast for Windows) (Version: 3.0 - NewBlue)
- NewBlue Film Effects for Windows (HKLM-x32\...\NewBlue Film Effects for Windows) (Version: 3.0 - NewBlue)
- NewBlue Light Blends for Windows (HKLM-x32\...\NewBlue Light Blends for Windows) (Version: 3.0 - NewBlue)
- NewBlue Light Effects for Windows (HKLM-x32\...\NewBlue Light Effects for Windows) (Version: 3.0 - NewBlue)
- NewBlue Motion Blends for Windows (HKLM-x32\...\NewBlue Motion Blends for Windows) (Version: 2.4 - NewBlue)
- NewBlue Motion Effects for Windows (HKLM-x32\...\NewBlue Motion Effects for Windows) (Version: 3.0 - NewBlue)
- NewBlue Paint Blends for Windows (HKLM-x32\...\NewBlue Paint Blends for Windows) (Version: 3.0 - NewBlue)
- NewBlue Paint Effects for Windows (HKLM-x32\...\NewBlue Paint Effects for Windows) (Version: 3.0 - NewBlue)
- NewBlue Titler Pro 3 for Windows (HKLM-x32\...\NewBlue Titler Pro 2.0 for Windows) (Version: 3.0 - NewBlue)
- NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: 3.0 - NewBlue)
- NewBlue Video Essentials II for Windows (HKLM-x32\...\NewBlue Video Essentials II for Windows) (Version: 3.0 - NewBlue)
- NewBlue Video Essentials III for Windows (HKLM-x32\...\NewBlue Video Essentials III for Windows) (Version: 3.0 - NewBlue)
- NewBlue Video Essentials IV for Windows (HKLM-x32\...\NewBlue Video Essentials IV for Windows) (Version: 3.0 - NewBlue)
- NewBlue Video Essentials V for Windows (HKLM-x32\...\NewBlue Video Essentials V for Windows) (Version: 3.0 - NewBlue)
- NewBlue Video Essentials VI for Windows (HKLM-x32\...\NewBlue Video Essentials VI for Windows) (Version: 3.0 - NewBlue)
- NewBlue Video Essentials VII for Windows (HKLM-x32\...\NewBlue Video Essentials VII for Windows) (Version: 3.0 - NewBlue)
- Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.6 - Notepad++ Team)
- NVIDIA 3D Vision Controller Driver 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
- NVIDIA 3D Vision Driver 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.54 - NVIDIA Corporation)
- NVIDIA GeForce Experience 3.3.0.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.3.0.95 - NVIDIA Corporation)
- NVIDIA Graphics Driver 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.54 - NVIDIA Corporation)
- NVIDIA HD Audio Driver 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation)
- NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
- NvNodejs (Version: 3.3.0.95 - NVIDIA Corporation) Hidden
- NvTelemetry (Version: 2.3.5.0 - NVIDIA Corporation) Hidden
- NvvHci (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
- Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
- OpenVPN 2.4.0-I601 (HKLM\...\OpenVPN) (Version: 2.4.0-I601 - OpenVPN Technologies, Inc.)
- Origin (HKLM-x32\...\Origin) (Version: 10.2.1.38915 - Electronic Arts, Inc.)
- Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
- Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
- ph (x32 Version: 1.0.0 - Your Company Name) Hidden
- Pidgin (HKLM-x32\...\Pidgin) (Version: 2.11.0 - )
- Ping Assist Pro (HKLM\...\Ping Assist_is1) (Version: 1.7.1 - ZazSoft)
- Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
- Port Forward Network Utilities (HKLM-x32\...\{88B1D36C-7B70-4C48-8D2F-AAB956ECF4C3}) (Version: 3.0.20 - Portforward, LLC)
- Pulover's Macro Creator version 5.0.5 (HKLM\...\{223FFB42-2D49-4AF6-9EF2-82B7D0CAF8B4}_is1) (Version: 5.0.5 - Rodolfo U. Batista)
- Ralink RT5390R 802.11bgn Wi-Fi Adapter (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 5.0.5.0 - Ralink)
- Ranch Rush 2 - Premium Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden
- Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.2.612.2012 - Realtek)
- Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.)
- Recovery Manager (x32 Version: 5.5.0.5826 - CyberLink Corp.) Hidden
- Red Giant Link (HKLM-x32\...\{10F82E5B-B611-4C65-8F29-666A9EC5680A}_is1) (Version: 1.8.100.5 - Red Giant, LLC)
- ReelSmart Motion Blur 4, After Effects-compatible plugin set (HKLM-x32\...\ReelSmart Motion Blur 4, After Effects-compatible plugin set) (Version: - )
- Rocket League (HKLM-x32\...\Steam App 252950) (Version: - Psyonix)
- Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.1.0 - Rockstar Games)
- Royal Envoy 2 Collector's Edition (x32 Version: 3.0.2.32 - WildTangent) Hidden
- RuneScape Launcher 1.2.7 (HKLM-x32\...\{FA52A2D0-298E-4D40-8BB7-39928627EA6A}) (Version: 1.2.7 - Jagex Ltd)
- RuneScape Launcher 2.2.2 (HKLM\...\RuneScape Launcher_is1) (Version: 2.2.2 - Jagex Ltd)
- Rust (HKLM-x32\...\Steam App 252490) (Version: - Facepunch Studios)
- Sandboxie 5.16 (64-bit) (HKLM\...\Sandboxie) (Version: 5.16 - Sandboxie Holdings, LLC)
- Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft)
- Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version: - Microsoft) Hidden
- SHIELD Streaming (Version: 7.1.0351 - NVIDIA Corporation) Hidden
- SHIELD Wireless Controller Driver (Version: 3.3.0.95 - NVIDIA Corporation) Hidden
- SketchUp 2016 (HKLM\...\{D87EE6DC-32BA-4219-AC75-0A6FD54ED058}) (Version: 16.0.19912 - Trimble Navigation Limited)
- Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
- Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.)
- SpeedRunners (HKLM-x32\...\Steam App 207140) (Version: - DoubleDutch Games)
- Spotify (HKU\S-1-5-21-1095897273-1061886839-2782299659-1001\...\Spotify) (Version: 1.0.48.103.g15edf1ec - Spotify AB)
- Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
- Steam Customizer (HKU\S-1-5-21-1095897273-1061886839-2782299659-1001\...\Steam Customizer) (Version: 1.00.00.00 - Blumont)
- Tabletop Simulator (HKLM\...\Steam App 286160) (Version: - Berserk Games)
- TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
- Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
- TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.0 - TeamSpeak Systems GmbH)
- TheNewZ (HKLM-x32\...\TheNewZ) (Version: v1.3.3.7 - L.A.B. Productions)
- TI xHCI Filter Driver 1.0.0.4 (HKLM-x32\...\TI xHCI Filter Driver) (Version: 1.0.0.4 - Texas Instruments Inc.)
- Trinklit Supreme (x32 Version: 2.2.0.98 - WildTangent) Hidden
- TruckersMP 0.2.0.9.3 Alpha (HKLM\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 0.2.0.9.3 Alpha - ETS2MP Team)
- UE4 Prerequisites (x64) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden
- UE4 Prerequisites (x64) (x32 Version: 1.0.13.0 - Epic Games, Inc.) Hidden
- UE4 Prerequisites (x86) (x32 Version: 1.0.11.0 - Epic Games, Inc.) Hidden
- UE4 Prerequisites (x86) (x32 Version: 1.0.13.0 - Epic Games, Inc.) Hidden
- Update for Skype for Business 2015 (KB3039776) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{0FA8AE0C-69AE-4F60-A1AB-F79C6BA5A999}) (Version: - Microsoft)
- Update for Skype for Business 2015 (KB3141468) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{CB85A0CF-0448-43D8-8006-173A8C84A018}) (Version: - Microsoft)
- Update for Skype for Business 2015 (KB3141468) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{CB85A0CF-0448-43D8-8006-173A8C84A018}) (Version: - Microsoft)
- Update for Skype for Business 2015 (KB3141468) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{CB85A0CF-0448-43D8-8006-173A8C84A018}) (Version: - Microsoft)
- Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
- Vegas Pro 13.0 (64-bit) (HKLM\...\{D264BD11-6A9B-11E4-A4F7-F04DA23A5C58}) (Version: 13.0.428 - Sony)
- VEGAS Pro 14.0 (64-bit) (HKLM\...\{4C79D80F-79F9-11E6-8402-BB95F5A309BD}) (Version: 14.0.161 - VEGAS)
- Virtual Audio Cable 4.13 (HKLM\...\Virtual Audio Cable 4.13) (Version: - )
- VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
- Voicemeeter, The Virtual Mixing Console (HKLM-x32\...\VB:Voicemeeter {17359A74-1236-5467}) (Version: - VB-Audio Software)
- Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
- Warface (HKLM-x32\...\Steam App 291480) (Version: - Crytek)
- Wedding Dash (x32 Version: 2.2.0.95 - WildTangent) Hidden
- WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.3.0 - WildTangent)
- WildTangent Games App (x32 Version: 4.0.9.7 - WildTangent) Hidden
- Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3503.0728 - Microsoft Corporation)
- WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
- Wireshark 2.2.4 (64-bit) (HKLM-x32\...\Wireshark) (Version: 2.2.4 - The Wireshark developer community, hxxps://www.wireshark.org)
- Youda Jewel Shop (x32 Version: 3.0.2.32 - WildTangent) Hidden
- Zuma's Revenge (x32 Version: 2.2.0.98 - WildTangent) Hidden
- ==================== Custom CLSID (Whitelisted): ==========================
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- CustomCLSID: HKU\S-1-5-21-1095897273-1061886839-2782299659-1001_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\real\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll => No File
- CustomCLSID: HKU\S-1-5-21-1095897273-1061886839-2782299659-1001_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\real\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll => No File
- CustomCLSID: HKU\S-1-5-21-1095897273-1061886839-2782299659-1001_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\real\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll => No File
- CustomCLSID: HKU\S-1-5-21-1095897273-1061886839-2782299659-1001_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA}\InprocServer32 -> C:\Users\real\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll (Google Inc.)
- CustomCLSID: HKU\S-1-5-21-1095897273-1061886839-2782299659-1001_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\real\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll => No File
- CustomCLSID: HKU\S-1-5-21-1095897273-1061886839-2782299659-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\real\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll (Google Inc.)
- ==================== Scheduled Tasks (Whitelisted) =============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- Task: {02DFC81D-3927-4D5E-AB37-825ED2CAA03B} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1095897273-1061886839-2782299659-1001UA1d257f7d00edb80 => C:\Users\real\AppData\Local\Google\Update\GoogleUpdate.exe [2015-12-05] (Google Inc.)
- Task: {08EE5B53-02F3-4C03-A5BB-B26E6865B921} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
- Task: {0A46BF30-76CE-41DB-BB38-6A5430E8EF5B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-12-21] (HP Inc.)
- Task: {134310A4-78BA-436A-A8EF-AFCE1FCCD211} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-12-07] (HP Inc.)
- Task: {182BBB7E-A5E0-4F59-AEE4-0125EEEDD14E} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1095897273-1061886839-2782299659-1001Core1d257f7d00118cd => C:\Users\real\AppData\Local\Google\Update\GoogleUpdate.exe [2015-12-05] (Google Inc.)
- Task: {1FB0EF66-7876-4B11-9859-E4AE06DCE9C9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2016-12-15] (HP Inc.)
- Task: {2532F075-037E-4403-98F3-E5B052C75DC7} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-01-12] (Microsoft Corporation)
- Task: {273902B9-69C7-437C-B661-2B668A518BE8} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.)
- Task: {2EE03910-E796-4ABC-9390-653EDFA3D733} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-01-20] (NVIDIA Corporation)
- Task: {32634AA6-39A7-4A92-9DAE-82A871524189} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
- Task: {33B163B9-DB4E-4014-9CF4-E43A38D392CF} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\20.6.0.27\WSCStub.exe
- Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => %SystemRoot%\System32\AutoWorkplace.exe
- Task: {37941FC5-4751-472C-B348-814C7E3BC432} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2017-01-10] ()
- Task: {3B8B9144-AE30-40AF-A5E7-C6A4AF6080DB} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-01-20] (NVIDIA Corporation)
- Task: {3C7F208C-6BC9-4CC0-B7A7-376732B3B4DE} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\20.6.0.27\SymErr.exe
- Task: {3D08EFF3-3649-4748-8BD6-293E4B50C39E} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
- Task: {4161C471-9406-45FC-8988-E1ED613D42D8} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
- Task: {475506B0-4661-46C7-A2D7-EBE2D1239A90} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2017-01-10] ()
- Task: {511F1C6C-5ECC-4DFD-BE5E-9F931A2DC83C} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1095897273-1061886839-2782299659-1001Core => C:\Users\real\AppData\Local\Google\Update\GoogleUpdate.exe [2015-12-05] (Google Inc.)
- Task: {627476AE-4A23-478C-8187-1E78782CA5C7} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
- Task: {6B4C2487-3C7E-4B51-ADC6-22CB0B95DF70} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
- Task: {6D56F404-2E52-4C4B-A95F-036A43FBDF5C} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\20.6.0.27\SymErr.exe
- Task: {752CE8B1-65D0-4B82-9F7B-0A8767AB96FE} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
- Task: {7C8E7987-7BC2-4BC0-A712-D4BC624AC46A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-01-20] (NVIDIA Corporation)
- Task: {8494FB12-9E89-425D-BABA-12C05BF59581} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
- Task: {8583EFEF-2D37-40AF-B020-F4C11A695BEC} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
- Task: {9108277D-B053-4ECC-9A3D-BEF95CB5B48F} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-01-20] (NVIDIA Corporation)
- Task: {9349A110-1747-4C51-AEBB-CEC3332C6A2F} - System32\Tasks\Red Giant Link => C:\Program Files (x86)\Red Giant Link\Red Giant Link.exe [2016-01-31] ()
- Task: {9394804B-BFC8-4D12-9698-706E97D8DF44} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
- Task: {95955FAF-CB36-4B42-9FEA-6266C7D6A58F} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2016-09-09] (Apple Inc.)
- Task: {9A41DB2C-DC91-40AB-92A7-635E8905C8B8} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-01-20] (NVIDIA Corporation)
- Task: {9CD7C54E-AF3F-4391-B2CF-6DEFC24B7F6F} - System32\Tasks\CLMLSvc_P2G8 => c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2012-06-08] (CyberLink)
- Task: {A7A130CD-62F8-4EB8-9FBA-70BA87C79E4E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.)
- Task: {A8BE9E9D-64F9-4E3E-9CAC-17845C9EBF2A} - System32\Tasks\IeWzxodk6u => C:\IeWzxodk6uIeWzxodk6u\IeWzxodk6u.vbs [2017-02-11] ()
- Task: {AC989B15-BEEE-49D7-92E6-2E457A05F3F0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-06] (Google Inc.)
- Task: {AC9CA25D-B775-495E-880D-5CEA72F5D28A} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
- Task: {B1CC8159-4C0E-4B1A-9B95-29CCA467CCB2} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-01-20] (NVIDIA Corporation)
- Task: {BF858F5E-1760-4748-9DFA-4039D1854192} - System32\Tasks\CLVDLauncher => c:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2012-07-24] (CyberLink Corp.)
- Task: {C9C9A5F6-D027-4C43-863D-A354D761247F} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-11-07] (HP Inc.)
- Task: {CEF326D0-5164-462C-8F92-52C3077ED229} - System32\Tasks\HPCeeScheduleForreal => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard)
- Task: {D19B56EE-70ED-4690-B671-319E7649B853} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1095897273-1061886839-2782299659-1001UA => C:\Users\real\AppData\Local\Google\Update\GoogleUpdate.exe [2015-12-05] (Google Inc.)
- Task: {DB6C75CE-7574-4C55-BB80-FDFF6341C361} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
- Task: {E0AB72F6-1212-47C4-8ED7-E1141D5AAC5E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2017-01-09] (HP Inc.)
- Task: {E2850ABF-0122-4B11-9C04-D57C67143D7E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-06] (Google Inc.)
- Task: {E64E1401-FBA9-4B1C-A2A0-75D44643D8BD} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
- Task: {EC153B2B-3A4C-4721-A97E-AD756220BA2E} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-paddybear852@gmail.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-05-25] (Adobe Systems Incorporated)
- Task: {EFAB0EF7-C3DA-412C-B296-C36CB725F541} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-01-20] (NVIDIA Corporation)
- Task: {F2BD1C49-1048-4837-91A7-B7AE70233B07} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-12-07] (HP Inc.)
- Task: {F70D92C0-3F06-4824-8AAA-BBE22AC099DF} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
- Task: {F758F7FA-19BC-44FA-95D3-72A2A2743313} - System32\Tasks\DriverToolkit Autorun => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe [2015-07-01] (Megaify Software Co., Ltd.)
- Task: {FB1A548D-4C53-43B9-BA8B-13EE32494DA2} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
- Task: {FDF6DD77-6EF9-4FB1-BE24-56909E26C690} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
- (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
- Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
- Task: C:\WINDOWS\Tasks\DriverToolkit Autorun.job => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe
- Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1095897273-1061886839-2782299659-1001Core.job => C:\Users\real\AppData\Local\Google\Update\GoogleUpdate.exe
- Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1095897273-1061886839-2782299659-1001UA.job => C:\Users\real\AppData\Local\Google\Update\GoogleUpdate.exe
- Task: C:\WINDOWS\Tasks\HPCeeScheduleForreal.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
- ==================== Shortcuts =============================
- (The entries could be listed to be restored or removed.)
- ==================== Loaded Modules (Whitelisted) ==============
- 2016-07-16 11:42 - 2016-07-16 11:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
- 2016-12-13 18:50 - 2016-12-09 10:29 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
- 2016-07-28 19:01 - 2014-02-27 09:40 - 00302752 _____ () C:\Program Files\Ping Assist\PingService.exe
- 2016-07-28 19:01 - 2010-12-10 21:29 - 00035656 _____ () C:\Program Files\Ping Assist\RSA_Lib.dll
- 2016-07-28 19:01 - 2014-02-27 09:40 - 00315552 _____ () C:\Program Files\Ping Assist\ServerClient.dll
- 2016-07-28 19:01 - 2009-07-26 16:25 - 01083392 _____ () C:\Program Files\Ping Assist\System.Data.SQLite.dll
- 2016-09-01 17:12 - 2016-09-01 17:12 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
- 2016-10-05 18:17 - 2016-10-05 18:17 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
- 2016-10-07 18:55 - 2013-06-28 14:28 - 00084616 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
- 2017-02-04 13:18 - 2017-01-20 18:36 - 04490808 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
- 2017-02-04 13:18 - 2017-01-20 18:36 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
- 2016-09-28 16:09 - 2016-12-29 13:16 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
- 2016-12-13 18:50 - 2016-12-09 10:29 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
- 2016-10-31 19:45 - 2016-10-31 19:45 - 00592384 _____ () C:\Users\real\AppData\Local\MEGAsync\ShellExtX64.dll
- 2016-09-28 16:56 - 2016-09-28 16:56 - 00959168 _____ () C:\Users\real\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
- 2016-06-14 12:37 - 2016-06-14 12:37 - 08909504 _____ () C:\Program Files\Microsoft Office\Office15\1033\GrooveIntlResource.dll
- 2016-09-29 01:02 - 2016-09-29 01:02 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
- 2017-01-10 19:54 - 2016-12-21 07:09 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
- 2017-01-10 19:54 - 2016-12-21 06:54 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
- 2017-01-10 19:54 - 2016-12-21 06:48 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
- 2017-01-10 19:54 - 2016-12-21 06:48 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
- 2017-01-10 19:54 - 2016-12-21 06:48 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
- 2017-01-10 19:54 - 2016-12-21 06:53 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
- 2015-03-07 00:07 - 2015-03-07 00:07 - 00908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
- 2015-11-20 21:41 - 2015-11-20 21:41 - 01095448 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
- 2015-03-07 00:07 - 2015-03-07 00:07 - 00060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
- 2015-11-20 21:41 - 2015-11-20 21:41 - 00240408 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
- 2016-12-27 12:41 - 2016-12-27 12:41 - 00582784 _____ () C:\Program Files\OpenVPN\bin\openvpn-gui.exe
- 2017-02-07 14:17 - 2017-02-01 09:47 - 02459992 _____ () C:\Program Files (x86)\Google\Chrome\Application\56.0.2924.87\libglesv2.dll
- 2017-02-07 14:17 - 2017-02-01 09:47 - 00099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\56.0.2924.87\libegl.dll
- 2017-02-06 16:47 - 2017-02-06 16:47 - 00073728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.105.0_x64__kzf8qxf38zg5c\SkypeHost.exe
- 2017-02-06 16:47 - 2017-02-06 16:47 - 00179712 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.105.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
- 2017-02-06 16:47 - 2017-02-06 16:47 - 42895872 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.105.0_x64__kzf8qxf38zg5c\SkyWrap.dll
- 2017-02-06 16:47 - 2017-02-06 16:47 - 02215424 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.105.0_x64__kzf8qxf38zg5c\roottools.dll
- 2017-01-11 18:04 - 2017-01-11 18:04 - 31167576 _____ () C:\Users\real\AppData\Local\Google\Chrome\User Data\PepperFlash\24.0.0.194\pepflashplayer.dll
- 2016-10-30 21:33 - 2016-10-30 21:33 - 02493440 _____ () C:\Program Files (x86)\Origin\libGLESv2.dll
- 2015-08-10 15:32 - 2017-01-20 18:36 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
- 2017-02-04 13:18 - 2017-01-20 18:36 - 03776056 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
- 2017-02-04 13:18 - 2017-01-20 18:36 - 00901688 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
- 2013-05-22 07:51 - 2012-06-08 03:34 - 00627216 _____ () c:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
- 2012-06-08 10:34 - 2012-06-08 10:34 - 00016400 _____ () c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
- 2015-07-31 01:31 - 2016-12-23 18:28 - 00657184 _____ () C:\Program Files (x86)\Steam\SDL2.dll
- 2015-07-31 01:31 - 2016-09-01 01:02 - 04969248 _____ () C:\Program Files (x86)\Steam\v8.dll
- 2015-07-31 01:31 - 2017-01-19 01:30 - 02327840 _____ () C:\Program Files (x86)\Steam\video.dll
- 2015-07-31 01:31 - 2016-01-27 07:49 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
- 2015-07-31 01:31 - 2016-01-27 07:49 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
- 2015-07-31 01:31 - 2016-01-27 07:49 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
- 2015-07-31 01:31 - 2016-01-27 07:49 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
- 2015-07-31 01:31 - 2016-01-27 07:49 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
- 2015-07-31 01:31 - 2016-09-01 01:02 - 01563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
- 2015-07-31 01:31 - 2016-09-01 01:02 - 01195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
- 2015-07-31 01:31 - 2017-01-19 01:30 - 00838432 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
- 2016-03-13 11:10 - 2016-07-04 22:17 - 00266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
- 2015-08-30 13:25 - 2017-02-03 13:42 - 51777648 _____ () C:\Users\real\AppData\Roaming\Spotify\libcef.dll
- 2016-10-28 20:34 - 2017-02-03 13:42 - 00110192 _____ () C:\Users\real\AppData\Roaming\Spotify\SpotifyWinRT.dll
- 2016-04-13 08:38 - 2016-04-13 08:38 - 00482304 _____ () C:\Users\real\AppData\Local\MEGAsync\libsodium.dll
- 2015-11-29 12:00 - 2015-04-28 15:22 - 01498112 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
- 2015-11-29 12:00 - 2014-05-19 17:19 - 00137728 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
- 2015-08-30 13:25 - 2017-02-03 13:42 - 01803888 _____ () C:\Users\real\AppData\Roaming\Spotify\libglesv2.dll
- 2015-08-30 13:25 - 2017-02-03 13:42 - 00086128 _____ () C:\Users\real\AppData\Roaming\Spotify\libegl.dll
- 2016-12-14 16:39 - 2017-01-05 03:12 - 68813088 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
- 2015-07-31 01:31 - 2017-01-19 01:30 - 00383776 _____ () C:\Program Files (x86)\Steam\steam.dll
- 2017-02-04 13:19 - 2017-01-20 13:36 - 00338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
- 2017-02-04 13:19 - 2017-01-20 13:36 - 00254008 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
- 2017-02-04 13:19 - 2017-01-20 13:36 - 02808888 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
- 2017-02-04 13:19 - 2017-01-20 13:36 - 00384568 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
- 2017-02-04 13:19 - 2017-01-20 13:36 - 00537656 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
- 2017-02-04 13:19 - 2017-01-20 13:36 - 00468024 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
- 2017-02-04 13:19 - 2017-01-20 13:36 - 01066552 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node
- 2017-02-04 13:19 - 2017-01-20 13:36 - 01014840 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSDKAPINode.node
- 2013-05-22 07:44 - 2012-07-18 08:50 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
- 2015-07-31 01:31 - 2015-09-24 23:52 - 00119208 _____ () C:\Program Files (x86)\Steam\winh264.dll
- 2017-01-13 23:28 - 2017-01-04 14:28 - 01958912 _____ () C:\Users\real\AppData\Local\Discord\app-0.0.297\ffmpeg.dll
- 2017-01-13 23:28 - 2017-01-13 23:28 - 01082880 _____ () \\?\C:\Users\real\AppData\Roaming\discord\0.0.297\modules\discord_voice\discord_voice.node
- 2017-01-13 23:28 - 2017-01-13 23:28 - 03750400 _____ () \\?\C:\Users\real\AppData\Roaming\discord\0.0.297\modules\discord_voice\libdiscord.dll
- 2017-01-13 23:28 - 2017-01-13 23:28 - 00914432 _____ () \\?\C:\Users\real\AppData\Roaming\discord\0.0.297\modules\discord_utils\discord_utils.node
- 2017-01-13 23:28 - 2017-01-13 23:28 - 01127424 _____ () \\?\C:\Users\real\AppData\Roaming\discord\0.0.297\modules\discord_toaster\discord_toaster.node
- 2017-01-13 23:28 - 2017-01-04 14:28 - 02278912 _____ () C:\Users\real\AppData\Local\Discord\app-0.0.297\libglesv2.dll
- 2017-01-13 23:28 - 2017-01-04 14:28 - 00096768 _____ () C:\Users\real\AppData\Local\Discord\app-0.0.297\libegl.dll
- 2017-02-11 23:28 - 2017-02-11 23:28 - 00148992 _____ () \\?\C:\Users\real\AppData\Local\Temp\CC10.tmp.node
- 2017-01-13 23:28 - 2017-01-13 23:28 - 02658304 _____ () \\?\C:\Users\real\AppData\Roaming\discord\0.0.297\modules\discord_rpc\discord_rpc.node
- 2016-10-31 19:43 - 2016-10-31 19:43 - 00564736 _____ () C:\Users\real\AppData\Local\MEGAsync\ShellExtX32.dll
- 2016-06-14 12:38 - 2016-06-14 12:38 - 08909504 _____ () C:\Program Files (x86)\Microsoft Office\Office15\1033\GrooveIntlResource.dll
- ==================== Alternate Data Streams (Whitelisted) =========
- (If an entry is included in the fixlist, only the ADS will be removed.)
- AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`27hfm [0]
- ==================== Safe Mode (Whitelisted) ===================
- (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
- ==================== Association (Whitelisted) ===============
- (If an entry is included in the fixlist, the registry item will be restored to default or removed.)
- ==================== Internet Explorer trusted/restricted ===============
- (If an entry is included in the fixlist, it will be removed from the registry.)
- IE trusted site: HKU\S-1-5-21-1095897273-1061886839-2782299659-1001\...\hola.org -> hxxp://hola.org
- ==================== Hosts content: ==========================
- (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
- 2013-08-22 13:25 - 2016-08-04 21:51 - 00512331 ___RA C:\WINDOWS\system32\Drivers\etc\hosts
- 127.0.0.1 localhost
- 0.0.0.0 m.fr.a2dfp.net
- 0.0.0.0 mfr.a2dfp.net
- 0.0.0.0 ad.a8.net
- 0.0.0.0 asy.a8ww.net
- 0.0.0.0 static.a-ads.com
- 0.0.0.0 atlas.aamedia.ro
- 0.0.0.0 abcstats.com
- 0.0.0.0 ad4.abradio.cz
- 0.0.0.0 a.abv.bg
- 0.0.0.0 adserver.abv.bg
- 0.0.0.0 adv.abv.bg
- 0.0.0.0 bimg.abv.bg
- 0.0.0.0 ca.abv.bg
- 0.0.0.0 www2.a-counter.kiev.ua
- 0.0.0.0 track.acclaimnetwork.com
- 0.0.0.0 accuserveadsystem.com
- 0.0.0.0 www.accuserveadsystem.com
- 0.0.0.0 achmedia.com
- 0.0.0.0 csh.actiondesk.com
- 0.0.0.0 ads.activepower.net
- 0.0.0.0 app.activetrail.com
- 0.0.0.0 stat.active24stats.nl #[Tracking.Cookie]
- 0.0.0.0 traffic.acwebconnecting.com
- 0.0.0.0 office.ad1.ru
- 0.0.0.0 cms.ad2click.nl
- 0.0.0.0 ad2games.com
- 0.0.0.0 ads.ad2games.com
- 0.0.0.0 content.ad20.net
- 0.0.0.0 core.ad20.net
- There are 12243 more lines.
- ==================== Other Areas ============================
- (Currently there is no automatic fix for this section.)
- HKU\S-1-5-21-1095897273-1061886839-2782299659-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\real\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{68b435ee-8b28-4068-89aa-f07d8188e1bb}.jpg
- DNS Servers: 192.168.1.1
- HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
- Windows Firewall is enabled.
- ==================== MSCONFIG/TASK MANAGER disabled items ==
- HKLM\...\StartupApproved\Run: => "XMouseButtonControl"
- HKLM\...\StartupApproved\Run32: => "OSDTool"
- HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
- HKU\S-1-5-21-1095897273-1061886839-2782299659-1001\...\StartupApproved\Run: => "OneDrive"
- HKU\S-1-5-21-1095897273-1061886839-2782299659-1001\...\StartupApproved\Run: => "Skype"
- HKU\S-1-5-21-1095897273-1061886839-2782299659-1001\...\StartupApproved\Run: => "CyberGhost"
- HKU\S-1-5-21-1095897273-1061886839-2782299659-1001\...\StartupApproved\Run: => "Google Update"
- HKU\S-1-5-21-1095897273-1061886839-2782299659-1001\...\StartupApproved\Run: => "BlueStacks Agent"
- HKU\S-1-5-21-1095897273-1061886839-2782299659-1001\...\StartupApproved\Run: => "iCloudDrive"
- HKU\S-1-5-21-1095897273-1061886839-2782299659-1001\...\StartupApproved\Run: => "iCloudPhotos"
- HKU\S-1-5-21-1095897273-1061886839-2782299659-1001\...\StartupApproved\Run: => "ApplePhotoStreams"
- HKU\S-1-5-21-1095897273-1061886839-2782299659-1001\...\StartupApproved\Run: => "iCloudServices"
- HKU\S-1-5-21-1095897273-1061886839-2782299659-1001\...\StartupApproved\Run: => "ManyCam"
- ==================== FirewallRules (Whitelisted) ===============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- FirewallRules: [vm-monitoring-nb-session] => LPort=139
- FirewallRules: [{E0D3A6BB-7B3D-46B6-B228-FA9FD279B7C4}] => LPort=53000
- FirewallRules: [{AC871C9B-1714-44E7-B773-CF37FF86823E}] => LPort=52000
- FirewallRules: [{D4E9AA2C-AE1C-48BA-A94B-342515CB03D2}] => C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Source\hl2.exe
- FirewallRules: [{BDE9BDE6-C718-45DF-9FA7-AC0940816A24}] => C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Source\hl2.exe
- FirewallRules: [UDP Query User{C4EE3AFE-56D7-4FD6-964F-46219395B0FB}C:\users\real\appdata\local\temp\rar$exa0.161\bomberman v1.4\windowsnoeditor\engine\binaries\win64\ue4game.exe] => C:\users\real\appdata\local\temp\rar$exa0.161\bomberman v1.4\windowsnoeditor\engine\binaries\win64\ue4game.exe
- FirewallRules: [TCP Query User{1A2DF7B3-2D32-4AA5-B418-71C7287A4D4A}C:\users\real\appdata\local\temp\rar$exa0.161\bomberman v1.4\windowsnoeditor\engine\binaries\win64\ue4game.exe] => C:\users\real\appdata\local\temp\rar$exa0.161\bomberman v1.4\windowsnoeditor\engine\binaries\win64\ue4game.exe
- FirewallRules: [UDP Query User{5467DCAC-8FDD-44B3-B97C-7E2C930A855D}C:\users\real\appdata\local\temp\rar$exa0.624\bomberman\windowsnoeditor\bombermanmultiplayer\binaries\win64\f2s.exe] => C:\users\real\appdata\local\temp\rar$exa0.624\bomberman\windowsnoeditor\bombermanmultiplayer\binaries\win64\f2s.exe
- FirewallRules: [TCP Query User{BEFF4146-A1FB-4AE8-9489-3B585E752268}C:\users\real\appdata\local\temp\rar$exa0.624\bomberman\windowsnoeditor\bombermanmultiplayer\binaries\win64\f2s.exe] => C:\users\real\appdata\local\temp\rar$exa0.624\bomberman\windowsnoeditor\bombermanmultiplayer\binaries\win64\f2s.exe
- FirewallRules: [UDP Query User{9BCCF249-71EF-4F1B-A306-7F2A96A5DF7E}C:\program files\adobe\adobe after effects cc 2014\support files\afterfx.exe] => C:\program files\adobe\adobe after effects cc 2014\support files\afterfx.exe
- FirewallRules: [TCP Query User{CCA24676-1DA4-4C91-A212-F531FB960FEF}C:\program files\adobe\adobe after effects cc 2014\support files\afterfx.exe] => C:\program files\adobe\adobe after effects cc 2014\support files\afterfx.exe
- FirewallRules: [UDP Query User{8092B10E-CD34-408F-AB84-3A37157284CE}C:\program files\ping assist\pingmonitor.exe] => C:\program files\ping assist\pingmonitor.exe
- FirewallRules: [TCP Query User{58C8272F-3D48-4248-8244-369415813C00}C:\program files\ping assist\pingmonitor.exe] => C:\program files\ping assist\pingmonitor.exe
- FirewallRules: [UDP Query User{8A6D9E53-8935-4466-86B9-AEFCEDEF7484}C:\program files (x86)\java\jre1.8.0_91\bin\jp2launcher.exe] => C:\program files (x86)\java\jre1.8.0_91\bin\jp2launcher.exe
- FirewallRules: [TCP Query User{C5D9AB60-A912-4EF0-AE99-331FF4849016}C:\program files (x86)\java\jre1.8.0_91\bin\jp2launcher.exe] => C:\program files (x86)\java\jre1.8.0_91\bin\jp2launcher.exe
- FirewallRules: [UDP Query User{A6E81BE9-C995-4E90-A3B0-13E19018C7DA}C:\users\real\appdata\local\temp\rar$exa0.156\f2sapocalypse v1.2\windowsnoeditor\engine\binaries\win32\ue4game.exe] => C:\users\real\appdata\local\temp\rar$exa0.156\f2sapocalypse v1.2\windowsnoeditor\engine\binaries\win32\ue4game.exe
- FirewallRules: [TCP Query User{4819CB72-CA8B-462A-872F-D3CC9A8D5E1B}C:\users\real\appdata\local\temp\rar$exa0.156\f2sapocalypse v1.2\windowsnoeditor\engine\binaries\win32\ue4game.exe] => C:\users\real\appdata\local\temp\rar$exa0.156\f2sapocalypse v1.2\windowsnoeditor\engine\binaries\win32\ue4game.exe
- FirewallRules: [UDP Query User{382ED378-DFA2-4175-A2FA-D9B2FDF25D70}C:\users\real\appdata\local\temp\rar$exa0.519\f2sapocalypse v1.2\windowsnoeditor\engine\binaries\win32\ue4game.exe] => C:\users\real\appdata\local\temp\rar$exa0.519\f2sapocalypse v1.2\windowsnoeditor\engine\binaries\win32\ue4game.exe
- FirewallRules: [TCP Query User{99420EC2-27DD-4DA7-A476-9A808CD15A22}C:\users\real\appdata\local\temp\rar$exa0.519\f2sapocalypse v1.2\windowsnoeditor\engine\binaries\win32\ue4game.exe] => C:\users\real\appdata\local\temp\rar$exa0.519\f2sapocalypse v1.2\windowsnoeditor\engine\binaries\win32\ue4game.exe
- FirewallRules: [UDP Query User{A9A9DA8B-8B1A-4AD8-BAE9-89677EA8A81E}C:\users\real\appdata\local\temp\rar$exa0.421\f2sapocalypse v1.2\windowsnoeditor\engine\binaries\win32\ue4game.exe] => C:\users\real\appdata\local\temp\rar$exa0.421\f2sapocalypse v1.2\windowsnoeditor\engine\binaries\win32\ue4game.exe
- FirewallRules: [TCP Query User{B0AAF086-AEBC-4A33-91A5-579FE4D3982D}C:\users\real\appdata\local\temp\rar$exa0.421\f2sapocalypse v1.2\windowsnoeditor\engine\binaries\win32\ue4game.exe] => C:\users\real\appdata\local\temp\rar$exa0.421\f2sapocalypse v1.2\windowsnoeditor\engine\binaries\win32\ue4game.exe
- FirewallRules: [UDP Query User{ADE3213D-92C2-4E56-BCAE-F63464A0270B}C:\users\real\appdata\local\temp\rar$exa0.062\f2sapocalypse v1.2\windowsnoeditor\engine\binaries\win32\ue4game.exe] => C:\users\real\appdata\local\temp\rar$exa0.062\f2sapocalypse v1.2\windowsnoeditor\engine\binaries\win32\ue4game.exe
- FirewallRules: [TCP Query User{B64D2D1E-ACB5-463A-AEDE-AFAA17CFBD75}C:\users\real\appdata\local\temp\rar$exa0.062\f2sapocalypse v1.2\windowsnoeditor\engine\binaries\win32\ue4game.exe] => C:\users\real\appdata\local\temp\rar$exa0.062\f2sapocalypse v1.2\windowsnoeditor\engine\binaries\win32\ue4game.exe
- FirewallRules: [UDP Query User{7516AE6E-5824-4080-822F-49A855B3A57E}C:\users\real\appdata\local\temp\rar$exa0.558\f2sapocalypse v1.2\windowsnoeditor\engine\binaries\win32\ue4game.exe] => C:\users\real\appdata\local\temp\rar$exa0.558\f2sapocalypse v1.2\windowsnoeditor\engine\binaries\win32\ue4game.exe
- FirewallRules: [TCP Query User{2CF1A478-F908-45BF-947B-7D7AEF069556}C:\users\real\appdata\local\temp\rar$exa0.558\f2sapocalypse v1.2\windowsnoeditor\engine\binaries\win32\ue4game.exe] => C:\users\real\appdata\local\temp\rar$exa0.558\f2sapocalypse v1.2\windowsnoeditor\engine\binaries\win32\ue4game.exe
- FirewallRules: [UDP Query User{92051160-1EEA-43B1-AF9E-3B553890F75A}C:\users\real\appdata\local\temp\rar$exa0.377\f2sapocalypse v1.2\windowsnoeditor\engine\binaries\win32\ue4game.exe] => C:\users\real\appdata\local\temp\rar$exa0.377\f2sapocalypse v1.2\windowsnoeditor\engine\binaries\win32\ue4game.exe
- FirewallRules: [TCP Query User{B1FC40C7-8E27-4BB9-8FB2-39B317D423C3}C:\users\real\appdata\local\temp\rar$exa0.377\f2sapocalypse v1.2\windowsnoeditor\engine\binaries\win32\ue4game.exe] => C:\users\real\appdata\local\temp\rar$exa0.377\f2sapocalypse v1.2\windowsnoeditor\engine\binaries\win32\ue4game.exe
- FirewallRules: [UDP Query User{54606570-B666-4FD7-9299-26DBB3C07CEF}C:\users\real\appdata\local\temp\rar$exa0.973\f2sapocalypse v1.2\windowsnoeditor\engine\binaries\win32\ue4game.exe] => C:\users\real\appdata\local\temp\rar$exa0.973\f2sapocalypse v1.2\windowsnoeditor\engine\binaries\win32\ue4game.exe
- FirewallRules: [TCP Query User{27184541-1A63-4412-B000-3A43494B7473}C:\users\real\appdata\local\temp\rar$exa0.973\f2sapocalypse v1.2\windowsnoeditor\engine\binaries\win32\ue4game.exe] => C:\users\real\appdata\local\temp\rar$exa0.973\f2sapocalypse v1.2\windowsnoeditor\engine\binaries\win32\ue4game.exe
- FirewallRules: [UDP Query User{8AEBF7C4-94E5-4796-95D9-5EC246F663BA}C:\users\real\appdata\local\temp\rar$exa0.882\f2sapocalypse v1.0\windowsnoeditor\engine\binaries\win32\ue4game.exe] => C:\users\real\appdata\local\temp\rar$exa0.882\f2sapocalypse v1.0\windowsnoeditor\engine\binaries\win32\ue4game.exe
- FirewallRules: [TCP Query User{14BE3E58-3A8E-422D-A8D3-A00D23EA6AEC}C:\users\real\appdata\local\temp\rar$exa0.882\f2sapocalypse v1.0\windowsnoeditor\engine\binaries\win32\ue4game.exe] => C:\users\real\appdata\local\temp\rar$exa0.882\f2sapocalypse v1.0\windowsnoeditor\engine\binaries\win32\ue4game.exe
- FirewallRules: [UDP Query User{0B652161-56CC-4B5E-8D5D-137FBD134C39}C:\users\real\appdata\local\temp\rar$exa0.732\f2sapocalypse v1.0\windowsnoeditor\engine\binaries\win32\ue4game.exe] => C:\users\real\appdata\local\temp\rar$exa0.732\f2sapocalypse v1.0\windowsnoeditor\engine\binaries\win32\ue4game.exe
- FirewallRules: [TCP Query User{7FCF830A-F006-4536-B35B-EAD7F99E5410}C:\users\real\appdata\local\temp\rar$exa0.732\f2sapocalypse v1.0\windowsnoeditor\engine\binaries\win32\ue4game.exe] => C:\users\real\appdata\local\temp\rar$exa0.732\f2sapocalypse v1.0\windowsnoeditor\engine\binaries\win32\ue4game.exe
- FirewallRules: [UDP Query User{BE01E029-28DD-4475-B385-D3DEB764A014}C:\users\real\appdata\local\temp\rar$exa0.543\f2sapocalypse v1.0\windowsnoeditor\engine\binaries\win32\ue4game.exe] => C:\users\real\appdata\local\temp\rar$exa0.543\f2sapocalypse v1.0\windowsnoeditor\engine\binaries\win32\ue4game.exe
- FirewallRules: [TCP Query User{717E3054-1408-4CCF-AD88-1791E70E31A7}C:\users\real\appdata\local\temp\rar$exa0.543\f2sapocalypse v1.0\windowsnoeditor\engine\binaries\win32\ue4game.exe] => C:\users\real\appdata\local\temp\rar$exa0.543\f2sapocalypse v1.0\windowsnoeditor\engine\binaries\win32\ue4game.exe
- FirewallRules: [UDP Query User{670FC00A-13CA-4CD6-89DF-F73174919FEB}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
- FirewallRules: [TCP Query User{EC31DCF3-FCA8-44E5-85D9-44A5D18CCA33}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
- FirewallRules: [UDP Query User{5E2C3B27-E56F-429A-BBE6-334CE3E12DFC}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
- FirewallRules: [TCP Query User{3E3B4C6B-C21B-4E00-AA76-25E38015CC0D}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
- FirewallRules: [{4701F2C5-3BCA-452F-8002-FD2B8C98682B}] => C:\Program Files (x86)\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe
- FirewallRules: [{F49316BA-373A-4066-9FB0-B38A9ACFBB16}] => C:\Program Files (x86)\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe
- FirewallRules: [{849B9586-7F81-4CFC-8AB5-5B0D24D1570D}] => C:\Program Files (x86)\Steam\steamapps\common\Golf With Your Friends\Golf With Your Friends.exe
- FirewallRules: [{624096D4-0CA6-4CB3-B40B-4F2E48DC797C}] => C:\Program Files (x86)\Steam\steamapps\common\Golf With Your Friends\Golf With Your Friends.exe
- FirewallRules: [{C3095867-5384-4BEB-AB62-58575F9F139A}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
- FirewallRules: [{68D4C6D6-00E8-4219-AA88-F8949623B575}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
- FirewallRules: [{83D408E1-9289-45C2-84CB-5DD0D1A12306}] => C:\Program Files\Bonjour\mDNSResponder.exe
- FirewallRules: [{B7853C24-A4AE-4179-BD58-935AC5FF9E83}] => C:\Program Files\Bonjour\mDNSResponder.exe
- FirewallRules: [UDP Query User{FD3AC1E9-68BF-450C-9B53-6475CE86C0E4}C:\users\real\appdata\local\temp\rar$exa0.261\simplegame\simplegame_a27.exe] => C:\users\real\appdata\local\temp\rar$exa0.261\simplegame\simplegame_a27.exe
- FirewallRules: [TCP Query User{13061DF0-A8F5-4959-9C07-311BB22152F9}C:\users\real\appdata\local\temp\rar$exa0.261\simplegame\simplegame_a27.exe] => C:\users\real\appdata\local\temp\rar$exa0.261\simplegame\simplegame_a27.exe
- FirewallRules: [{4CFE7602-F6D2-4DFD-9D2B-F8F63ADE5756}] => C:\Program Files (x86)\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
- FirewallRules: [{6EDBC0E4-C7BD-422D-94E9-4BD7473A3859}] => C:\Program Files (x86)\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
- FirewallRules: [{9930B440-A175-41DE-9E77-1381F65178FC}] => C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
- FirewallRules: [{A88416AE-1517-42B1-98BD-7AF798EA7CFE}] => C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
- FirewallRules: [{A8952A08-4C36-45C3-847D-3A1E67BDE71A}] => C:\Program Files (x86)\R.G. Mechanics\SimCity\SimCity\SimCity.exe
- FirewallRules: [{5742F8CB-22BA-41B8-949F-DB4B61C62F13}] => C:\Program Files (x86)\R.G. Mechanics\SimCity\SimCity\SimCity.exe
- FirewallRules: [UDP Query User{502408D2-B7D1-4FCD-AD68-65BAB3C97195}C:\users\real\desktop\things\pc\farming simulator 15\x64\farmingsimulator2015game.exe] => C:\users\real\desktop\things\pc\farming simulator 15\x64\farmingsimulator2015game.exe
- FirewallRules: [TCP Query User{F145B440-D8A6-4B20-BA93-CC603EBBB75A}C:\users\real\desktop\things\pc\farming simulator 15\x64\farmingsimulator2015game.exe] => C:\users\real\desktop\things\pc\farming simulator 15\x64\farmingsimulator2015game.exe
- FirewallRules: [{90DB5274-BDAD-4D50-8222-E03D86572483}] => C:\Program Files\Microsoft Office\Office15\UcMapi.exe
- FirewallRules: [{CEA7A289-15AA-4273-A7D7-8A1F9E21BD77}] => C:\Program Files\Microsoft Office\Office15\UcMapi.exe
- FirewallRules: [{755EF825-D4B7-43E3-9796-30F0FCE43056}] => C:\Program Files\Microsoft Office\Office15\lync.exe
- FirewallRules: [{9ADA3DE6-3119-42B0-AF3D-499ABA9892A4}] => C:\Program Files\Microsoft Office\Office15\lync.exe
- FirewallRules: [UDP Query User{085C2681-0160-4D39-8107-B53B6B00A219}C:\program files (x86)\overwatch\overwatch.exe] => C:\program files (x86)\overwatch\overwatch.exe
- FirewallRules: [TCP Query User{4C452BA0-B777-48AB-A624-24C852DBB6A9}C:\program files (x86)\overwatch\overwatch.exe] => C:\program files (x86)\overwatch\overwatch.exe
- FirewallRules: [UDP Query User{DA418EAB-A002-4695-AFAF-3C0667C0F15F}C:\program files (x86)\hearthstone\hearthstone.exe] => C:\program files (x86)\hearthstone\hearthstone.exe
- FirewallRules: [TCP Query User{B54676A8-FA78-4DD7-B367-E8C0D0BDE332}C:\program files (x86)\hearthstone\hearthstone.exe] => C:\program files (x86)\hearthstone\hearthstone.exe
- FirewallRules: [UDP Query User{0B1C39BC-B311-497D-86D9-5ABF1C2ABA10}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\java.exe] => C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\java.exe
- FirewallRules: [TCP Query User{40C88BF1-BF26-4072-B583-012B13DDCC08}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\java.exe] => C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\java.exe
- FirewallRules: [UDP Query User{E256F3AE-8E4A-49EC-A934-683A6D4B0132}C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe] => C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe
- FirewallRules: [TCP Query User{26CA78DA-7F6A-4A37-85A4-F225B3AAFF4F}C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe] => C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe
- FirewallRules: [{0A2B99A7-DFCD-45D8-9510-7374BA1AFEDF}] => C:\Program Files (x86)\Steam\steamapps\common\DayZ\DayZ_BE.exe
- FirewallRules: [{E0507865-FAAC-400A-BC36-DC099DEB81AF}] => C:\Program Files (x86)\Steam\steamapps\common\DayZ\DayZ_BE.exe
- FirewallRules: [{B311B7C0-F3CC-4802-B488-1FA8B45767FE}] => C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe
- FirewallRules: [{D3F3ED0F-ADA4-4332-989D-74220AC79AD9}] => C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe
- FirewallRules: [{D9925E60-12EF-4CD8-9872-F5C7DED3A712}] => %LocalAppData%\HPConnectedMusic\Application\HPConnectedMusic.exe
- FirewallRules: [{1C98389F-604A-4E9D-82AA-2A42F7925EEC}] => %LocalAppData%\HPConnectedMusic\Application\HPConnectedMusic.exe
- FirewallRules: [{EA6E0CD1-5F76-4856-9A48-ADB051956BA9}] => %LocalAppData%\HPConnectedMusic\Application\spotify_helper.exe
- FirewallRules: [{7FB840D2-6210-44AB-AE9D-762E68A2B547}] => %LocalAppData%\HPConnectedMusic\Application\spotify_helper.exe
- FirewallRules: [{5E5045B7-8F00-44A6-AA63-49A233D12602}] => c:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
- FirewallRules: [{E74DEFD8-7F73-4EDE-A9E3-3DFA484B0027}] => c:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
- FirewallRules: [{A3558CC1-92E0-48BE-B73D-FE5B985E8CE4}] => C:\Users\Administrator\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
- FirewallRules: [{A11FE6D3-2462-45AD-BDA7-A4FD68B77A44}] => C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
- FirewallRules: [{8ACF45BC-DA36-409A-8446-6758CF7AE9B1}] => LPort=2869
- FirewallRules: [{E0C83D78-030B-4F58-AEDC-0D4C87CE0404}] => LPort=1900
- FirewallRules: [{39D20F10-5AAB-4D81-9055-F92F51E25C20}] => C:\Program Files (x86)\Steam\Steam.exe
- FirewallRules: [{3E20CFA8-A2C4-44FD-B3FA-AB031798A3A8}] => C:\Program Files (x86)\Steam\Steam.exe
- FirewallRules: [{1BFD34FD-CA00-4657-8719-DBA40172781C}] => C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
- FirewallRules: [{10C5E105-F3EF-4559-A0E6-B32E3C63728F}] => C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
- FirewallRules: [{C4631815-09F1-4B0D-A51B-EA32F2E163D4}] => C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
- FirewallRules: [{7A2A4A36-C788-4719-9743-ABFE04BAC647}] => C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
- FirewallRules: [{5BD95865-D8A2-49BD-8527-D943E01C8BCB}] => C:\Program Files (x86)\Steam\steamapps\common\Rust\Rust.exe
- FirewallRules: [{232FAA6A-8170-47DD-A575-B1306BB3B2D6}] => C:\Program Files (x86)\Steam\steamapps\common\Rust\Rust.exe
- FirewallRules: [{23A5EBD9-5281-4248-9BD1-AE1F9062B3A0}] => C:\Users\real\AppData\Roaming\uTorrent\uTorrent.exe
- FirewallRules: [{F0316A5B-F166-4697-97A0-8D81BC24D30D}] => C:\Users\real\AppData\Roaming\uTorrent\uTorrent.exe
- FirewallRules: [{990284D4-9C73-4EE2-9CFD-F7F401E8AE7D}] => C:\Users\real\AppData\Roaming\uTorrent\uTorrent.exe
- FirewallRules: [{D9409BC5-C7BB-49A8-80DA-5AE8F17A48FC}] => C:\Users\real\AppData\Roaming\uTorrent\uTorrent.exe
- FirewallRules: [{9FB15388-C317-432D-A4EA-8711D172A115}] => C:\Users\real\AppData\Roaming\uTorrent\uTorrent.exe
- FirewallRules: [{21D6E0A0-0D97-4D20-8E3F-8937C8DCF3D3}] => C:\Users\real\AppData\Roaming\uTorrent\uTorrent.exe
- FirewallRules: [TCP Query User{2C466427-988C-4770-B4A8-9FCB14366495}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
- FirewallRules: [UDP Query User{A086C6AD-269B-49A5-875C-0C3652B03CC5}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
- FirewallRules: [{FA132C76-B7FC-4598-B688-7D055AA3D002}] => C:\Program Files (x86)\Skype\Phone\Skype.exe
- FirewallRules: [{660F96B0-99B7-4FB0-A4F4-F8DA739B2D5A}] => C:\Program Files (x86)\Steam\steamapps\common\The War Z\WarZlauncher.exe
- FirewallRules: [{93FE09A4-9047-4057-AF3B-764D8296CB47}] => C:\Program Files (x86)\Steam\steamapps\common\The War Z\WarZlauncher.exe
- FirewallRules: [TCP Query User{40323637-C348-46E9-99C3-F40BB6C2AF59}C:\program files (x86)\steam\steamapps\common\the war z\infestation.exe] => C:\program files (x86)\steam\steamapps\common\the war z\infestation.exe
- FirewallRules: [UDP Query User{25A4695A-0916-4737-9FCB-0E99D625788F}C:\program files (x86)\steam\steamapps\common\the war z\infestation.exe] => C:\program files (x86)\steam\steamapps\common\the war z\infestation.exe
- FirewallRules: [{77EEB662-1DD4-4B58-9A39-A4ADA1557CDE}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
- FirewallRules: [{683894B5-BE8F-47A4-A0F0-B395FCA22F47}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
- FirewallRules: [{19774A2A-4F1D-4811-A99D-01D7BA20FDAC}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
- FirewallRules: [{98C63A0A-EE19-4DA0-B4ED-F23505AA2B06}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
- FirewallRules: [TCP Query User{7DEF8C15-8456-4A2D-A0DF-C579664CEE79}C:\users\real\downloads\syslogger.exe] => C:\users\real\downloads\syslogger.exe
- FirewallRules: [UDP Query User{7C7791D3-D4E9-490E-B28B-78C8C9A2C153}C:\users\real\downloads\syslogger.exe] => C:\users\real\downloads\syslogger.exe
- FirewallRules: [TCP Query User{7A690C36-E8F5-41E3-A694-47A703DAE182}C:\users\real\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => C:\users\real\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
- FirewallRules: [UDP Query User{613F9CD7-D17C-4EA3-A2F5-18F244EB3DCD}C:\users\real\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => C:\users\real\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
- FirewallRules: [{43B27C0F-FE4E-416C-AB00-D638F8597529}] => C:\Program Files (x86)\Steam\steamapps\common\Bejeweled 3\Bejeweled3.exe
- FirewallRules: [{B4651E2D-F57F-4159-9C76-3540C47497E7}] => C:\Program Files (x86)\Steam\steamapps\common\Bejeweled 3\Bejeweled3.exe
- FirewallRules: [TCP Query User{37AD8CD4-4084-40DB-855C-5A6C8771CF12}C:\program files\sony\vegas pro 13.0\vegas130.exe] => C:\program files\sony\vegas pro 13.0\vegas130.exe
- FirewallRules: [UDP Query User{1CCC5F32-52DC-4E99-8DB7-BA34349B8B7F}C:\program files\sony\vegas pro 13.0\vegas130.exe] => C:\program files\sony\vegas pro 13.0\vegas130.exe
- FirewallRules: [{F41E418D-01F7-445E-9733-C40878355073}] => C:\Program Files (x86)\TheNewZ\TheNewZ.exe
- FirewallRules: [TCP Query User{B69E2999-F5E3-47C8-94D6-622062F12619}C:\users\real\appdata\roaming\spotify\spotify.exe] => C:\users\real\appdata\roaming\spotify\spotify.exe
- FirewallRules: [UDP Query User{FCF799DF-20AD-44DC-889F-FFC9DA1BC169}C:\users\real\appdata\roaming\spotify\spotify.exe] => C:\users\real\appdata\roaming\spotify\spotify.exe
- FirewallRules: [{CEE9AEFF-5EF4-4347-97E5-493A284F3467}] => C:\Users\real\AppData\Local\Temp\nsf7317.tmp\Installer-75989951.exe
- FirewallRules: [{F1D98C9B-0631-42F1-8632-5D0C6D885B00}] => C:\Users\real\AppData\Local\Temp\nsf7317.tmp\Installer-75989951.exe
- FirewallRules: [{ADE48594-FE7B-413B-98BC-1175F7271376}] => C:\Program Files (x86)\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe
- FirewallRules: [{95677EFE-F45C-4074-BC86-21C9B047EC58}] => C:\Program Files (x86)\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe
- FirewallRules: [{458F8C2B-24AF-459A-8E15-A94929D3C466}] => C:\Program Files (x86)\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
- FirewallRules: [{B1650FE7-1636-47BA-A69B-91830E77B060}] => C:\Program Files (x86)\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
- FirewallRules: [{A1D78238-C496-41E9-A762-90A949E6947A}] => C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
- FirewallRules: [{A7333F1F-BCF3-4147-B4BD-C504F3D5A895}] => C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
- FirewallRules: [{EDFBB0C2-E471-46DA-A33A-B235E3695BBE}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
- FirewallRules: [{990E0632-37D4-4DA4-8954-E5FEA903DE18}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
- FirewallRules: [{84C4D657-EDB9-466E-829A-7713839A75AD}] => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe
- FirewallRules: [{B4154141-B834-48B7-A9DB-F2678EDAEA38}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
- FirewallRules: [{6DFFBC70-8643-46A0-B2C1-9E38AC27075E}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
- FirewallRules: [{9859097D-51C0-461E-B578-FB39BC5E0E6C}] => C:\Program Files (x86)\Steam\steamapps\common\Dead Island\DeadIslandGame.exe
- FirewallRules: [{A852F91B-56CC-45D5-842E-C77476BF45CA}] => C:\Program Files (x86)\Steam\steamapps\common\Dead Island\DeadIslandGame.exe
- FirewallRules: [{C26EA44E-46A4-456E-86B4-97C2C7C93EE2}] => C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
- FirewallRules: [{707E52FD-03D3-4298-A807-338362B10702}] => C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
- FirewallRules: [{36DB05D5-E814-4098-9214-44593CF63912}] => C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops II\t6mp.exe
- FirewallRules: [{858A71F7-65CD-4922-B83B-A1CFA8E3D7B1}] => C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops II\t6mp.exe
- FirewallRules: [{B847F865-B649-480C-AD49-FC927BF25B59}] => C:\Program Files (x86)\Steam\steamapps\common\SpeedRunners\SpeedRunners.exe
- FirewallRules: [{B03A4329-9740-4092-9328-02B97A6ACA03}] => C:\Program Files (x86)\Steam\steamapps\common\SpeedRunners\SpeedRunners.exe
- FirewallRules: [{3FC61691-DC61-4D9D-A314-76CA63324661}] => C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops II\t6zm.exe
- FirewallRules: [{969AE30F-130C-42C3-8081-EF5DCC41320B}] => C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops II\t6zm.exe
- FirewallRules: [{73002897-4EF8-4096-96B2-554246D4BB14}] => C:\Program Files (x86)\Steam\steamapps\common\Warface\live\nw.exe
- FirewallRules: [{9DD4AB55-04D7-442C-B230-C604EFED9A52}] => C:\Program Files (x86)\Steam\steamapps\common\Warface\live\nw.exe
- FirewallRules: [{2DA88616-ED8C-428D-8724-E443E6F58F4B}] => C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops II\t6sp.exe
- FirewallRules: [{6236420B-0684-4AC0-B57B-E43214A00C3F}] => C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops II\t6sp.exe
- FirewallRules: [TCP Query User{4FD154A4-C39D-45EE-8C52-541CCD65FBC0}C:\program files\logitech gaming software\lcore.exe] => C:\program files\logitech gaming software\lcore.exe
- FirewallRules: [UDP Query User{5955657C-16D5-4727-A42C-E2C4EDE4C408}C:\program files\logitech gaming software\lcore.exe] => C:\program files\logitech gaming software\lcore.exe
- FirewallRules: [{42772C65-9A73-408B-BB2E-90CEA100A91C}] => C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
- FirewallRules: [{164090DB-52AA-479A-8DAB-F6006C0A7F30}] => C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
- FirewallRules: [TCP Query User{D75301E5-D111-407D-A996-BB6BC2A84F1A}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
- FirewallRules: [UDP Query User{78776C83-DB5B-4219-A174-7778CD881C6B}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
- FirewallRules: [TCP Query User{13902DB0-BF45-4EF0-9705-9463C22B9E51}C:\users\real\appdata\local\mcmyadmin\mcmyadmin.exe] => C:\users\real\appdata\local\mcmyadmin\mcmyadmin.exe
- FirewallRules: [UDP Query User{1E4EE88F-633D-4D3F-9CB9-81B71B4B2E6C}C:\users\real\appdata\local\mcmyadmin\mcmyadmin.exe] => C:\users\real\appdata\local\mcmyadmin\mcmyadmin.exe
- FirewallRules: [TCP Query User{8B3C3A9D-159D-4C19-8A9B-463B33C58E7C}C:\program files\java\jre1.8.0_51\bin\javaw.exe] => C:\program files\java\jre1.8.0_51\bin\javaw.exe
- FirewallRules: [UDP Query User{4F28DAD9-8571-47AC-9341-10FE59F8BD48}C:\program files\java\jre1.8.0_51\bin\javaw.exe] => C:\program files\java\jre1.8.0_51\bin\javaw.exe
- FirewallRules: [{7AC4DA7E-F00A-4956-A996-BA9A198B1CEE}] => C:\program files\java\jre1.8.0_51\bin\javaw.exe
- FirewallRules: [{BBBBE3E6-E7B0-45E7-B66D-40034FED8A72}] => C:\program files\java\jre1.8.0_51\bin\javaw.exe
- FirewallRules: [TCP Query User{4CA578F6-F0EE-4C93-81ED-5337A061AF57}C:\users\real\appdata\local\temp\joi8e5c.tmp\join.me.exe] => C:\users\real\appdata\local\temp\joi8e5c.tmp\join.me.exe
- FirewallRules: [UDP Query User{1A273690-C534-4893-BA7B-6B4C599D34A2}C:\users\real\appdata\local\temp\joi8e5c.tmp\join.me.exe] => C:\users\real\appdata\local\temp\joi8e5c.tmp\join.me.exe
- FirewallRules: [{FFC4E1F6-14FC-41FB-A3DF-A52BCBD0A308}] => C:\users\real\appdata\local\temp\joi8e5c.tmp\join.me.exe
- FirewallRules: [{A172D32B-CCB2-47B3-9DB5-B517A05D441A}] => C:\users\real\appdata\local\temp\joi8e5c.tmp\join.me.exe
- FirewallRules: [TCP Query User{9333D013-4ADD-4958-A630-1E853E4515E9}C:\program files\java\jre1.8.0_51\bin\java.exe] => C:\program files\java\jre1.8.0_51\bin\java.exe
- FirewallRules: [UDP Query User{53B8B3BE-43CD-41F6-B094-7680BC72C545}C:\program files\java\jre1.8.0_51\bin\java.exe] => C:\program files\java\jre1.8.0_51\bin\java.exe
- FirewallRules: [{07A4004E-43CC-442D-BABD-770B5877D648}] => C:\program files\java\jre1.8.0_51\bin\java.exe
- FirewallRules: [{47EE813B-3855-4EC4-9FB7-A3CC87FC871A}] => C:\program files\java\jre1.8.0_51\bin\java.exe
- FirewallRules: [{759BEDDD-1B1B-48EB-B59E-A3D185FDA370}] => C:\Program Files (x86)\TheNewZ\TheNewZ.exe
- FirewallRules: [TCP Query User{F867EB62-9A9D-4EBC-AFA9-CC2DA4673519}C:\users\real\appdata\local\temp\rar$exa0.666\simplegame\simplegame_a3.exe] => C:\users\real\appdata\local\temp\rar$exa0.666\simplegame\simplegame_a3.exe
- FirewallRules: [UDP Query User{83140644-E4C1-4651-AB51-F6387B82CFA0}C:\users\real\appdata\local\temp\rar$exa0.666\simplegame\simplegame_a3.exe] => C:\users\real\appdata\local\temp\rar$exa0.666\simplegame\simplegame_a3.exe
- FirewallRules: [{FBDFDDE8-10E7-46F3-9275-24A06D49168B}] => C:\users\real\appdata\local\temp\rar$exa0.666\simplegame\simplegame_a3.exe
- FirewallRules: [{F7FA1F05-DC2A-4C98-A9D2-7821EEB573FF}] => C:\users\real\appdata\local\temp\rar$exa0.666\simplegame\simplegame_a3.exe
- FirewallRules: [TCP Query User{454E319C-1F9A-41EA-9C11-FFBE167A5F63}C:\users\real\appdata\local\temp\rar$exa0.372\simplegame\simplegame_a5.exe] => C:\users\real\appdata\local\temp\rar$exa0.372\simplegame\simplegame_a5.exe
- FirewallRules: [UDP Query User{1B758B56-C376-4879-93F3-E546AFF9EF9F}C:\users\real\appdata\local\temp\rar$exa0.372\simplegame\simplegame_a5.exe] => C:\users\real\appdata\local\temp\rar$exa0.372\simplegame\simplegame_a5.exe
- FirewallRules: [{C530330D-E05D-4C86-9E24-461D3B8D9AAC}] => C:\users\real\appdata\local\temp\rar$exa0.372\simplegame\simplegame_a5.exe
- FirewallRules: [{BFF95EC7-274D-4D84-8165-87BAEA49FFE4}] => C:\users\real\appdata\local\temp\rar$exa0.372\simplegame\simplegame_a5.exe
- FirewallRules: [TCP Query User{92FD4D14-D004-4289-B96A-FA0F5B21198B}C:\users\real\appdata\local\temp\rar$exa0.669\simplegame\simplegame_a6.exe] => C:\users\real\appdata\local\temp\rar$exa0.669\simplegame\simplegame_a6.exe
- FirewallRules: [UDP Query User{9C40748F-83F5-4640-8539-7BAFBA5105F5}C:\users\real\appdata\local\temp\rar$exa0.669\simplegame\simplegame_a6.exe] => C:\users\real\appdata\local\temp\rar$exa0.669\simplegame\simplegame_a6.exe
- FirewallRules: [{64CB182A-EE4A-4CB4-B719-B6DE6639F1DC}] => C:\users\real\appdata\local\temp\rar$exa0.669\simplegame\simplegame_a6.exe
- FirewallRules: [{7F8CC77A-95B5-49A8-BF0C-F6D154A3092A}] => C:\users\real\appdata\local\temp\rar$exa0.669\simplegame\simplegame_a6.exe
- FirewallRules: [TCP Query User{6B752687-5831-4E5B-BF70-5B5624A77A73}C:\users\real\appdata\local\temp\rar$exa0.090\simplegame\simplegame_a8.exe] => C:\users\real\appdata\local\temp\rar$exa0.090\simplegame\simplegame_a8.exe
- FirewallRules: [UDP Query User{DD25AF5D-C70F-419D-9D4B-E02181CF1EB6}C:\users\real\appdata\local\temp\rar$exa0.090\simplegame\simplegame_a8.exe] => C:\users\real\appdata\local\temp\rar$exa0.090\simplegame\simplegame_a8.exe
- FirewallRules: [{37370322-2003-497A-9146-7F7C42BE499A}] => C:\users\real\appdata\local\temp\rar$exa0.090\simplegame\simplegame_a8.exe
- FirewallRules: [{5E75D2D2-1CE6-40F5-AED9-858FAB941483}] => C:\users\real\appdata\local\temp\rar$exa0.090\simplegame\simplegame_a8.exe
- FirewallRules: [TCP Query User{FB4E8BEC-4F64-4478-B944-960AB57F085F}C:\users\real\appdata\local\temp\rar$exa0.950\simplegame\simplegame_a8.exe] => C:\users\real\appdata\local\temp\rar$exa0.950\simplegame\simplegame_a8.exe
- FirewallRules: [UDP Query User{C3FD514E-5346-45D2-983B-4BC1CD8700A2}C:\users\real\appdata\local\temp\rar$exa0.950\simplegame\simplegame_a8.exe] => C:\users\real\appdata\local\temp\rar$exa0.950\simplegame\simplegame_a8.exe
- FirewallRules: [{90D3048E-B615-4317-8730-0DFA35BE9A66}] => C:\users\real\appdata\local\temp\rar$exa0.950\simplegame\simplegame_a8.exe
- FirewallRules: [{61423C83-C207-4A57-B2BA-E90079C9242C}] => C:\users\real\appdata\local\temp\rar$exa0.950\simplegame\simplegame_a8.exe
- FirewallRules: [{EC8A268C-4350-4A41-B068-E42E4A1319C2}] => C:\Program Files (x86)\Steam\steamapps\common\Just Cause 2\JustCause2.exe
- FirewallRules: [{8E4F1466-2A0B-4B74-B01B-0BE87EC90C68}] => C:\Program Files (x86)\Steam\steamapps\common\Just Cause 2\JustCause2.exe
- FirewallRules: [TCP Query User{6063DC1D-BB3F-4A16-A820-EA7CC422CCE6}C:\users\real\appdata\local\temp\rar$exa0.213\simplegame\simplegame_a19.exe] => C:\users\real\appdata\local\temp\rar$exa0.213\simplegame\simplegame_a19.exe
- FirewallRules: [UDP Query User{E5C32618-3C04-460A-9742-39950554A7D5}C:\users\real\appdata\local\temp\rar$exa0.213\simplegame\simplegame_a19.exe] => C:\users\real\appdata\local\temp\rar$exa0.213\simplegame\simplegame_a19.exe
- FirewallRules: [{77B0A50B-526D-42CC-9E98-FFBAC09237FD}] => C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
- FirewallRules: [{F01F948C-905A-4073-94C6-9348F78E62AC}] => C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
- FirewallRules: [TCP Query User{405DF31C-2257-4FEF-BAE1-38001CB0CA33}C:\program files\vegas\vegas pro 14.0\vegas140.exe] => C:\program files\vegas\vegas pro 14.0\vegas140.exe
- FirewallRules: [UDP Query User{DDCB99F9-55A3-4E9E-B73C-BB407EF95FE8}C:\program files\vegas\vegas pro 14.0\vegas140.exe] => C:\program files\vegas\vegas pro 14.0\vegas140.exe
- FirewallRules: [{F9AD2C74-EF39-48EA-A50A-236E1E3F8668}] => C:\Program Files\iTunes\iTunes.exe
- FirewallRules: [{19C5796C-229F-4354-8D9B-7529B5CD9A2E}] => C:\Program Files (x86)\Steam\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe
- FirewallRules: [{AC6FE81C-5084-4C40-B656-C679FA96E2CF}] => C:\Program Files (x86)\Steam\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe
- FirewallRules: [TCP Query User{48C793E0-EEA0-43F1-A338-7279D482C532}C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe] => C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe
- FirewallRules: [UDP Query User{7FF9BE9A-58AA-4366-A2F7-590F89478D9C}C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe] => C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe
- FirewallRules: [{83528E20-A7A5-47C5-A716-DBCEB57E2F88}] => C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe
- FirewallRules: [{ABDA7613-E89B-45E4-B076-96FC9F4451D3}] => C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe
- FirewallRules: [{F4E4C871-899A-4D1A-8640-663EB1C04DC5}] => C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
- FirewallRules: [{14442922-4E60-4041-8100-D8B5B7E03BA5}] => C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
- FirewallRules: [{4FE980EA-0F90-4BFE-A4CF-5070111A3C05}] => C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
- FirewallRules: [{2FE553FF-2B95-411B-86F1-70ED9E7E504A}] => C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
- FirewallRules: [{2BD5FE50-5C3B-4BF8-853E-6CCA21E357C7}] => C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
- FirewallRules: [{FC3A53FF-286A-4E8A-A4C1-75E55C41FA22}] => C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
- FirewallRules: [{3CDFB2B5-577B-4EB1-B820-7552B5510075}] => C:\Program Files (x86)\Steam\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe
- FirewallRules: [{A27E49CF-EB28-4F97-9E64-F540C45502C6}] => C:\Program Files (x86)\Steam\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe
- FirewallRules: [TCP Query User{08093E92-9C79-4860-AAA6-F78D3673BA7F}C:\users\real\desktop\babylon 1.6.0.0\babylon 1.6.0.0\babylon rat.exe] => C:\users\real\desktop\babylon 1.6.0.0\babylon 1.6.0.0\babylon rat.exe
- FirewallRules: [UDP Query User{74FED193-F4E9-471A-939D-3C3BF5ABDB13}C:\users\real\desktop\babylon 1.6.0.0\babylon 1.6.0.0\babylon rat.exe] => C:\users\real\desktop\babylon 1.6.0.0\babylon 1.6.0.0\babylon rat.exe
- FirewallRules: [TCP Query User{F942368B-BCDA-4C5C-AF60-391A337A97B4}C:\users\real\desktop\njrat7\njrat v0.7d.exe] => C:\users\real\desktop\njrat7\njrat v0.7d.exe
- FirewallRules: [UDP Query User{09636D35-2B6A-421D-91AB-8572073A8209}C:\users\real\desktop\njrat7\njrat v0.7d.exe] => C:\users\real\desktop\njrat7\njrat v0.7d.exe
- FirewallRules: [TCP Query User{92DD3C80-1448-438D-B38D-638AAD645FA9}C:\users\real\desktop\netwire\netwire v1.6a trial.exe] => C:\users\real\desktop\netwire\netwire v1.6a trial.exe
- FirewallRules: [UDP Query User{AF122C6E-CEC3-4510-A6F9-437C085243FF}C:\users\real\desktop\netwire\netwire v1.6a trial.exe] => C:\users\real\desktop\netwire\netwire v1.6a trial.exe
- FirewallRules: [{822410C6-B59B-4E8A-B6A5-CFA1C9A192DF}] => C:\users\real\desktop\netwire\netwire v1.6a trial.exe
- FirewallRules: [{09764BF9-800A-424B-862F-347B752EF400}] => C:\users\real\desktop\netwire\netwire v1.6a trial.exe
- FirewallRules: [TCP Query User{E82C56A7-B97D-4F42-A324-B41E720CAC37}C:\program files\logitech gaming software\lcore.exe] => C:\program files\logitech gaming software\lcore.exe
- FirewallRules: [UDP Query User{3209EEDF-0495-40C0-B78B-483BE6629234}C:\program files\logitech gaming software\lcore.exe] => C:\program files\logitech gaming software\lcore.exe
- FirewallRules: [TCP Query User{33AD4BAC-8258-4EB9-9EF8-1E23FD99BA77}C:\users\real\appdata\roaming\spotify\spotify.exe] => C:\users\real\appdata\roaming\spotify\spotify.exe
- FirewallRules: [UDP Query User{2588D333-D783-4338-8BAA-3145065AE185}C:\users\real\appdata\roaming\spotify\spotify.exe] => C:\users\real\appdata\roaming\spotify\spotify.exe
- FirewallRules: [{9E8BA62E-85B7-4906-ABAE-44F4A83157CE}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
- FirewallRules: [{4216BB6C-4983-42CD-BD5C-BA2585842E16}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- ==================== Restore Points =========================
- 27-01-2017 19:17:46 Windows Update
- 10-02-2017 16:58:35 Windows Update
- ==================== Faulty Device Manager Devices =============
- ==================== Event log errors: =========================
- Application errors:
- ==================
- Error: (02/11/2017 11:57:08 PM) (Source: Application Error) (EventID: 1000) (User: )
- Description: Faulting application name: regasm.exe, version: 2.0.50727.8745, time stamp: 0x588c9634
- Faulting module name: KERNELBASE.dll, version: 6.2.14393.479, time stamp: 0x58256d37
- Exception code: 0xe0434f4d
- Fault offset: 0x000da832
- Faulting process id: 0x%9
- Faulting application start time: 0xregasm.exe0
- Faulting application path: regasm.exe1
- Faulting module path: regasm.exe2
- Report Id: regasm.exe3
- Faulting package full name: regasm.exe4
- Faulting package-relative application ID: regasm.exe5
- Error: (02/11/2017 11:57:06 PM) (Source: Bonjour Service) (EventID: 100) (User: )
- Description: Unknown DNS packet type 4E3D from 192.168.1.104 :5353 to 224.0.0.251 :5353 length 23 on 000000000121AD10 (ignored)
- Error: (02/11/2017 11:52:19 PM) (Source: Application Error) (EventID: 1000) (User: )
- Description: Faulting application name: regasm.exe, version: 2.0.50727.8745, time stamp: 0x588c9634
- Faulting module name: KERNELBASE.dll, version: 6.2.14393.479, time stamp: 0x58256d37
- Exception code: 0xe0434f4d
- Fault offset: 0x000da832
- Faulting process id: 0x%9
- Faulting application start time: 0xregasm.exe0
- Faulting application path: regasm.exe1
- Faulting module path: regasm.exe2
- Report Id: regasm.exe3
- Faulting package full name: regasm.exe4
- Faulting package-relative application ID: regasm.exe5
- Error: (02/11/2017 11:51:12 PM) (Source: Application Error) (EventID: 1000) (User: )
- Description: Faulting application name: regasm.exe, version: 2.0.50727.8745, time stamp: 0x588c9634
- Faulting module name: KERNELBASE.dll, version: 6.2.14393.479, time stamp: 0x58256d37
- Exception code: 0xe0434f4d
- Fault offset: 0x000da832
- Faulting process id: 0x%9
- Faulting application start time: 0xregasm.exe0
- Faulting application path: regasm.exe1
- Faulting module path: regasm.exe2
- Report Id: regasm.exe3
- Faulting package full name: regasm.exe4
- Faulting package-relative application ID: regasm.exe5
- Error: (02/11/2017 11:49:07 PM) (Source: Application Error) (EventID: 1000) (User: )
- Description: Faulting application name: regasm.exe, version: 2.0.50727.8745, time stamp: 0x588c9634
- Faulting module name: KERNELBASE.dll, version: 6.2.14393.479, time stamp: 0x58256d37
- Exception code: 0xe0434f4d
- Fault offset: 0x000da832
- Faulting process id: 0x%9
- Faulting application start time: 0xregasm.exe0
- Faulting application path: regasm.exe1
- Faulting module path: regasm.exe2
- Report Id: regasm.exe3
- Faulting package full name: regasm.exe4
- Faulting package-relative application ID: regasm.exe5
- Error: (02/11/2017 11:48:06 PM) (Source: Application Error) (EventID: 1000) (User: )
- Description: Faulting application name: regasm.exe, version: 2.0.50727.8745, time stamp: 0x588c9634
- Faulting module name: KERNELBASE.dll, version: 6.2.14393.479, time stamp: 0x58256d37
- Exception code: 0xe0434f4d
- Fault offset: 0x000da832
- Faulting process id: 0x%9
- Faulting application start time: 0xregasm.exe0
- Faulting application path: regasm.exe1
- Faulting module path: regasm.exe2
- Report Id: regasm.exe3
- Faulting package full name: regasm.exe4
- Faulting package-relative application ID: regasm.exe5
- Error: (02/11/2017 11:47:06 PM) (Source: Application Error) (EventID: 1000) (User: )
- Description: Faulting application name: regasm.exe, version: 2.0.50727.8745, time stamp: 0x588c9634
- Faulting module name: KERNELBASE.dll, version: 6.2.14393.479, time stamp: 0x58256d37
- Exception code: 0xe0434f4d
- Fault offset: 0x000da832
- Faulting process id: 0x%9
- Faulting application start time: 0xregasm.exe0
- Faulting application path: regasm.exe1
- Faulting module path: regasm.exe2
- Report Id: regasm.exe3
- Faulting package full name: regasm.exe4
- Faulting package-relative application ID: regasm.exe5
- Error: (02/11/2017 11:46:07 PM) (Source: Application Error) (EventID: 1000) (User: )
- Description: Faulting application name: regasm.exe, version: 2.0.50727.8745, time stamp: 0x588c9634
- Faulting module name: KERNELBASE.dll, version: 6.2.14393.479, time stamp: 0x58256d37
- Exception code: 0xe0434f4d
- Fault offset: 0x000da832
- Faulting process id: 0x%9
- Faulting application start time: 0xregasm.exe0
- Faulting application path: regasm.exe1
- Faulting module path: regasm.exe2
- Report Id: regasm.exe3
- Faulting package full name: regasm.exe4
- Faulting package-relative application ID: regasm.exe5
- Error: (02/11/2017 11:45:06 PM) (Source: Application Error) (EventID: 1000) (User: )
- Description: Faulting application name: regasm.exe, version: 2.0.50727.8745, time stamp: 0x588c9634
- Faulting module name: KERNELBASE.dll, version: 6.2.14393.479, time stamp: 0x58256d37
- Exception code: 0xe0434f4d
- Fault offset: 0x000da832
- Faulting process id: 0x%9
- Faulting application start time: 0xregasm.exe0
- Faulting application path: regasm.exe1
- Faulting module path: regasm.exe2
- Report Id: regasm.exe3
- Faulting package full name: regasm.exe4
- Faulting package-relative application ID: regasm.exe5
- Error: (02/11/2017 11:44:06 PM) (Source: Application Error) (EventID: 1000) (User: )
- Description: Faulting application name: regasm.exe, version: 2.0.50727.8745, time stamp: 0x588c9634
- Faulting module name: KERNELBASE.dll, version: 6.2.14393.479, time stamp: 0x58256d37
- Exception code: 0xe0434f4d
- Fault offset: 0x000da832
- Faulting process id: 0x%9
- Faulting application start time: 0xregasm.exe0
- Faulting application path: regasm.exe1
- Faulting module path: regasm.exe2
- Report Id: regasm.exe3
- Faulting package full name: regasm.exe4
- Faulting package-relative application ID: regasm.exe5
- System errors:
- =============
- Error: (02/11/2017 11:57:20 PM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
- Description: A corruption was discovered in the file system structure on volume OS.
- The Master File Table (MFT) contains a corrupted file record. The file reference number is 0x1400000004a4f1. The name of the file is "<unable to determine file name>".
- Error: (02/11/2017 11:47:18 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
- Description: The CyberGhost 6 Service service terminated unexpectedly. It has done this 1 time(s).
- Error: (02/11/2017 11:08:11 PM) (Source: DCOM) (EventID: 10016) (User: BADDASS)
- Description: The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID
- {C2F03A33-21F5-47FA-B4BB-156362A2F239}
- and APPID
- {316CDED5-E4AE-4B15-9113-7055D84DCC97}
- to the user Baddass\real SID (S-1-5-21-1095897273-1061886839-2782299659-1001) from address LocalHost (Using LRPC) running in the application container Microsoft.Windows.Cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy SID (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). This security permission can be modified using the Component Services administrative tool.
- Error: (02/11/2017 11:00:39 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
- Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
- {8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
- and APPID
- {F72671A9-012C-4725-9D2F-2A4D32D65169}
- to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
- Error: (02/11/2017 10:59:17 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
- Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
- {D63B10C5-BB46-4990-A94F-E40B9D520160}
- and APPID
- {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
- to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
- Error: (02/11/2017 10:34:14 PM) (Source: DCOM) (EventID: 10010) (User: BADDASS)
- Description: The server {4991D34B-80A1-4291-83B6-3328366B9097} did not register with DCOM within the required timeout.
- Error: (02/11/2017 10:29:20 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
- Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
- {8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
- and APPID
- {F72671A9-012C-4725-9D2F-2A4D32D65169}
- to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
- Error: (02/11/2017 10:27:48 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
- Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
- {D63B10C5-BB46-4990-A94F-E40B9D520160}
- and APPID
- {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
- to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
- Error: (02/11/2017 10:26:19 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
- Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
- {D63B10C5-BB46-4990-A94F-E40B9D520160}
- and APPID
- {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
- to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
- Error: (02/11/2017 05:20:46 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
- Description: The server {F3B4E234-7A68-4E43-B813-E4BA55A065F6} did not register with DCOM within the required timeout.
- CodeIntegrity:
- ===================================
- Date: 2017-02-11 23:36:51.448
- Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Red Giant Link\tools\update_installer\USERENV.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- Date: 2017-02-04 13:22:28.429
- Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Red Giant Link\tools\update_installer\USERENV.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- Date: 2017-02-03 17:47:42.721
- Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Red Giant Link\tools\update_installer\USERENV.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- Date: 2017-01-29 11:47:28.438
- Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
- Date: 2017-01-29 00:34:24.232
- Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Red Giant Link\tools\update_installer\USERENV.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- Date: 2017-01-29 00:26:55.416
- Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Red Giant Link\tools\update_installer\USERENV.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- Date: 2017-01-28 01:31:27.285
- Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Red Giant Link\tools\update_installer\USERENV.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- Date: 2017-01-27 23:08:32.690
- Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Red Giant Link\tools\update_installer\USERENV.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- Date: 2017-01-27 19:05:45.231
- Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Red Giant Link\tools\update_installer\USERENV.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- Date: 2017-01-27 18:52:53.854
- Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Red Giant Link\tools\update_installer\USERENV.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
- ==================== Memory info ===========================
- Processor: Intel(R) Core(TM) i7-3770 CPU @ 3.40GHz
- Percentage of memory in use: 65%
- Total physical RAM: 8147.31 MB
- Available physical RAM: 2847.13 MB
- Total Virtual: 8547.31 MB
- Available Virtual: 2817.27 MB
- ==================== Drives ================================
- Drive c: (OS) (Fixed) (Total:1844.69 GB) (Free:911.6 GB) NTFS ==>[system with boot components (obtained from drive)]
- Drive d: (Recovery Image) (Fixed) (Total:16.41 GB) (Free:1.08 GB) NTFS ==>[system with boot components (obtained from drive)]
- Drive f: (CANON_IJ) (CDROM) (Total:0.52 GB) (Free:0 GB) CDFS
- Drive g: () (Removable) (Total:29.8 GB) (Free:28.88 GB) FAT32
- ==================== MBR & Partition Table ==================
- ========================================================
- Disk: 0 (Size: 1863 GB) (Disk ID: E831E9E5)
- Partition: GPT.
- ========================================================
- Disk: 1 (Size: 29.8 GB) (Disk ID: 00000000)
- Partition: GPT.
- ==================== End of Addition.txt ============================
Add Comment
Please, Sign In to add comment