Addition

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 19.04.2018
Ran by Admin (22-04-2018 08:45:41)
Running from C:\Users\Admin\Desktop
Microsoft Windows 7 Ultimate  Service Pack 1 (X86) (2014-03-25 11:21:41)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Admin (S-1-5-21-51145358-2442092094-1609093457-1000 - Administrator - Enabled) => C:\Users\Admin
Administrator (S-1-5-21-51145358-2442092094-1609093457-500 - Administrator - Disabled)
Guest (S-1-5-21-51145358-2442092094-1609093457-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-51145358-2442092094-1609093457-1002 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Kaspersky Anti-Virus (Enabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
AS: Kaspersky Anti-Virus (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-51145358-2442092094-1609093457-1000\...\uTorrent) (Version: 3.5.3.44358 - BitTorrent Inc.)
7-Zip 17.00 beta (HKLM\...\7-Zip) (Version: 17.00 beta - Igor Pavlov)
7-Zip 9.20 (HKLM\...\{23170F69-40C1-2701-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Action! (HKLM\...\Mirillis Action!) (Version: 1.29.0 - Mirillis)
Adobe Acrobat Reader DC (HKLM\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 18.011.20038 - Adobe Systems Incorporated)
Adobe Flash Player 29 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 29.0.0.140 - Adobe Systems Incorporated)
Adobe Flash Player 29 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 29.0.0.140 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM\...\Adobe Shockwave Player) (Version: 12.2.5.195 - Adobe Systems, Inc.)
Angry Birds Breakfast 1 (HKLM\...\{EFF26980-6632-40D0-9F98-4BF7C93AEA73}) (Version: 1.0.16 - Rovio Entertainment Ltd.)
ArcSoft Panorama Maker 4 (HKLM\...\{D45E8C45-B601-4A80-AFD8-E16338744DE1}) (Version:  - ArcSoft)
ASIO4ALL (HKLM\...\ASIO4ALL) (Version: 2.10 - Michael Tippach)
Bandicam (HKLM\...\Bandicam) (Version: 3.1.1.1073 - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM\...\BandiMPEG1) (Version:  - Bandisoft.com)
BitComet 1.37 (HKLM\...\BitComet) (Version: 1.37 - CometNetwork)
Blender (HKLM\...\{C64896A1-5BFD-4FBA-A85E-7DD122A1A9E8}) (Version: 2.79.0 - Blender Foundation)
BlueStacks App Player (HKLM\...\{0A3C7091-0D14-476A-A5B2-036EEB81488C}) (Version: 0.9.15.5208 - BlueStack Systems, Inc.)
Camtasia Studio 8 (HKLM\...\{AF33D0D2-2627-4AC8-8473-FDBB7892129C}) (Version: 8.6.0.2079 - TechSmith Corporation)
Cheat Engine 6.7 (HKLM\...\Cheat Engine 6.7_is1) (Version:  - Cheat Engine)
ClickOnce Bootstrapper Package for Microsoft .NET Framework (HKLM\...\{D1844DC3-B378-47CC-AB40-7FC16C79A2CD}) (Version: 4.7.02558 - Microsoft Corporation) Hidden
CPUID CPU-Z 1.81 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.81 - ) <==== ATTENTION
Crash Time 4 - The Syndicate (HKLM\...\Crash Time 4 - The Syndicate_is1) (Version:  - dtp)
Crossfire Europe (HKLM\...\Crossfire Europe) (Version: 1.172 - MAYN INTERACTIVE)
D3DX10 (HKLM\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Pro (HKLM\...\DAEMON Tools Pro) (Version: 8.1.0.0654 - Disc Soft Ltd)
Drakensang Online (HKLM\...\Drakensang Online) (Version:  - )
Dropbox (HKU\S-1-5-21-51145358-2442092094-1609093457-1000\...\Dropbox) (Version: 47.4.74 - Dropbox, Inc.)
EDU Aventuri de poveste (HKLM\...\EDU Aventuri de poveste) (Version: 01.00.00.00 - Editura EDU)
EDU Roti de Fier (HKU\S-1-5-21-51145358-2442092094-1609093457-1000\...\EDU Roti de Fier) (Version: 01.00.00.00 - Editura EDU)
Epic Games Launcher Prerequisites (x86) (HKLM\...\{B633DAAD-9294-4C7D-A625-D5B741A8C2B6}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Firefox Developer Edition 58.0 (x86 en-US) (HKLM\...\Firefox Developer Edition 58.0 (x86 en-US)) (Version: 58.0 - Mozilla)
FL Studio 10 (HKLM\...\FL Studio 10) (Version:  - Image-Line)
GeForce Experience NvStream Client Components (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamC) (Version: 1.6.28 - NVIDIA Corporation) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 65.0.3325.181 - Google Inc.)
Google Drive (HKLM\...\{9BC95947-92FD-438B-A168-C01F9A5B7292}) (Version: 2.34.7529.6838 - Google, Inc.)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
Gtk# for .Net 2.12.26 (HKLM\...\{BC25B808-A11C-4C9F-9C0A-6682E47AAB83}) (Version: 2.12.26 - Xamarin, Inc.)
Hi-Rez Studios Authenticate and Update Service (HKLM\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
HyperCam 2 (HKLM\...\HyperCam 2) (Version: 2.29.01 - Hyperionics Technology LLC)
IL Download Manager (HKLM\...\IL Download Manager) (Version:  - Image-Line)
Java 8 Update 131 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
Kaspersky Anti-Virus (HKLM\...\{5AAE61FF-858E-453E-B8F3-944618149975}) (Version: 18.0.0.405 - Kaspersky Lab) Hidden
Kaspersky Anti-Virus (HKLM\...\InstallWIX_{5AAE61FF-858E-453E-B8F3-944618149975}) (Version: 18.0.0.405 - Kaspersky Lab)
Kaspersky Secure Connection (HKLM\...\{F33C0717-8E04-4EB5-90C8-47221287DB4F}) (Version: 18.0.0.405 - Kaspersky Lab) Hidden
Kaspersky Secure Connection (HKLM\...\InstallWIX_{F33C0717-8E04-4EB5-90C8-47221287DB4F}) (Version: 18.0.0.405 - Kaspersky Lab)
Launcher Prerequisites (x86) (HKLM\...\{ec50c375-be9a-4642-9b8c-86dcc42e39c3}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM\...\{8CE67B9E-3AC8-4ED2-A8EE-28E6FE3D0B51}) (Version: 4.2.1 - Riot Games) Hidden
League of Legends (HKLM\...\League of Legends 4.2.1) (Version: 4.2.1 - Riot Games)
Microsoft .NET Framework 4.7.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft Games for Windows - LIVE (HKLM\...\{F97E3841-CA9D-4964-9D64-26066241D26F}) (Version: 3.3.24.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM\...\{8FB1B528-E260-451E-9B55-E9152F94B80B}) (Version: 3.2.3.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2017 CTP2.1 (HKLM\...\{F0DD1AA8-44D7-4ACE-AF65-7378EA5D884C}) (Version: 14.0.600.250 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 1.14.160.1208 - Microsoft Corporation)
Minecraft (HKLM\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Minecraft Note Block Studio version 3.3.3 (HKLM\...\{0E1D8C28-6DCF-452D-A0C4-E08A0E252FE8}_is1) (Version: 3.3.3 - Stuff by David)
Movie Maker (HKLM\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 58.0.1 (x86 ro) (HKLM\...\Mozilla Firefox 58.0.1 (x86 ro)) (Version: 58.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 58.0.1.6602 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nikon Message Center (HKLM\...\{D2FCC1AE-6311-47C5-8130-C6C66D77DD71}) (Version: 0.92.000 - Nikon)
Notepad++ (32-bit x86) (HKLM\...\Notepad++) (Version: 7.5.1 - Notepad++ Team)
NVIDIA 3D Vision Controller Driver 335.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 335.21 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 335.23 - NVIDIA Corporation)
NVIDIA GeForce Experience 1.8.2.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.8.2.1 - NVIDIA Corporation)
NVIDIA Graphics Driver 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 335.23 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA Virtual Audio 1.2.20 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.20 - NVIDIA Corporation)
Open Broadcaster Software (HKLM\...\Open Broadcaster Software) (Version:  - )
paint.net (HKLM\...\{1F895C18-6A2F-4A9E-BBE9-246783070F36}) (Version: 4.0.16 - dotPDN LLC)
ProtectDisc Driver, Version 11 (HKLM\...\ProtectDisc Driver 11) (Version: 11.0.0.14 - ProtectDisc Software GmbH)
QuickTime 7 (HKLM\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7195 - Realtek Semiconductor Corp.)
Roblox Player for Admin (HKU\S-1-5-21-51145358-2442092094-1609093457-1000\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version:  - Roblox Corporation)
Roblox Studio for Admin (HKU\S-1-5-21-51145358-2442092094-1609093457-1000\...\{2922D6F1-2865-4EFA-97A9-94EEAB3AFA14}) (Version:  - Roblox Corporation)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 1.7.321 - NVIDIA Corporation) Hidden
SimCity™ Societies (HKLM\...\{0B5154C0-8F00-4616-B0AB-6240AE80D9CE}) (Version: 1.0.0.0 - Electronic Arts)
Skype™ 7.37 (HKLM\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.37.103 - Skype Technologies S.A.)
Steam (HKLM\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SWF File Player (HKLM\...\{6A86F611-906C-422D-B34A-103662CBC195}_is1) (Version:  - swffileplayer.com)
swMSM (HKLM\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamViewer 13 (HKLM\...\TeamViewer) (Version: 13.0.6447 - TeamViewer)
The Sims 4 Deluxe Edition version 1.3.33.1010 Update 11 (HKLM\...\The Sims 4 Deluxe Edition_is1) (Version: 1.3.33.1010 Update 11 - GMT-MAX.ORG)
Total War Arena EU (HKU\S-1-5-21-51145358-2442092094-1609093457-1000\...\TWA.EU.PRODUCTION) (Version:  - Wargaming.net)
Unity Web Player (HKU\S-1-5-21-51145358-2442092094-1609093457-1000\...\UnityWebPlayer) (Version: 4.6.1f1 - Unity Technologies ApS)
Universal CRT Extension SDK (HKLM\...\{1FBCBC17-4527-2340-0832-B1D49C41FF67}) (Version: 10.0.26624 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (HKLM\...\{8BFBEC30-33CC-13B4-849F-3B036F27466A}) (Version: 10.0.26624 - Microsoft Corporation) Hidden
Universal CRT Redistributable (HKLM\...\{0460C87B-7F4C-3170-FAC9-B7A6AE5CE4E9}) (Version: 10.0.26624 - Microsoft Corporation) Hidden
Universal CRT Tools x86 (HKLM\...\{B048B812-32DE-3474-FA64-223B6A63AD47}) (Version: 10.0.26624 - Microsoft Corporation) Hidden
Update for  (KB2504637) (HKLM\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Ut Video Codec Suite (HKLM\...\utvideo_is1) (Version: 15.4.0 - UMEZAWA Takeshi)
vcpp_crt.redist.clickonce (HKLM\...\{0074562E-F896-4994-9086-79F8BC8DE02C}) (Version: 14.12.25830 - Microsoft Corporation) Hidden
Vegas Pro 10.0 (HKLM\...\{5AC11070-A1CB-11E0-A0DC-0013D3D69929}) (Version: 10.0.737 - Sony)
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Visual Studio Community 2017 (HKLM\...\0ffe0973) (Version: 15.5.27130.2010 - Microsoft Corporation)
VLC media player 1.1.11 (HKLM\...\VLC media player) (Version: 1.1.11 - VideoLAN)
VS Script Debugging Common (HKLM\...\{9D219D8F-0DE3-40F5-ADAD-C15A028CF0BB}) (Version: 16.0.76.0 - Microsoft Corporation) Hidden
vs_clickoncebootstrappermsi (HKLM\...\{A68D7884-F036-4A0D-AE1A-410E0311E135}) (Version: 15.0.27005 - Microsoft Corporation) Hidden
vs_clickoncebootstrappermsires (HKLM\...\{91DDDFB5-1782-48C2-BA2A-8F4D9DE39D27}) (Version: 15.0.27005 - Microsoft Corporation) Hidden
vs_clickoncesigntoolmsi (HKLM\...\{6A1ECF65-2CBF-4B33-9D4A-D1C0A0E5FE45}) (Version: 15.0.27005 - Microsoft Corporation) Hidden
vs_communitymsi (HKLM\...\{595F5D63-8773-4182-A1E0-EC9ECF4B6EA4}) (Version: 15.0.27102 - Microsoft Corporation) Hidden
vs_communitymsires (HKLM\...\{40040E64-50EB-4FCF-B209-DA0B20821759}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_devenvmsi (HKLM\...\{BFFA2FFB-1095-4ADD-A352-368806D2412B}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_filehandler_x86 (HKLM\...\{A57BD1C0-42AD-42F8-AFEB-FAC7E6ABB005}) (Version: 15.0.27005 - Microsoft Corporation) Hidden
vs_FileTracker_Singleton (HKLM\...\{70F69B4F-7950-4841-8139-5D0C7EDD2FE6}) (Version: 15.0.27005 - Microsoft Corporation) Hidden
vs_minshellinteropmsi (HKLM\...\{231C8ADB-BF59-458E-A909-CFA825F46388}) (Version: 15.0.27102 - Microsoft Corporation) Hidden
vs_minshellmsi (HKLM\...\{9CDD69A2-765A-4970-AB6B-595A740C614F}) (Version: 15.0.27019 - Microsoft Corporation) Hidden
vs_minshellmsires (HKLM\...\{6DFE6F8D-B61D-4348-AB70-4ABF1210DFD5}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_SQLClickOnceBootstrappermsi (HKLM\...\{5779B6DD-604A-41CE-BC3D-9D4BDDA22AD2}) (Version: 15.0.27005 - Microsoft Corporation) Hidden
vs_tipsmsi (HKLM\...\{1AC6CC3D-7724-4D84-9270-798A2191AB1C}) (Version: 15.0.27005 - Microsoft Corporation) Hidden
Wargaming.net Game Center (HKU\S-1-5-21-51145358-2442092094-1609093457-1000\...\Wargaming.net Game Center) (Version: 18.1.3.8590 - Wargaming.net)
Win7codecs (HKLM\...\{8C0CAA7A-3272-4991-A808-2C7559DE3409}) (Version: 2.8.1 - Shark007)
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.01 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH) Hidden

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-51145358-2442092094-1609093457-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Admin\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-51145358-2442092094-1609093457-1000_Classes\CLSID\{04EBE69E-2DED-44F6-9854-9A3988F751ED}\InprocServer32 -> C:\Users\Admin\AppData\Local\Dropbox\Update\1.3.51.1\psuser.dll => No File
CustomCLSID: HKU\S-1-5-21-51145358-2442092094-1609093457-1000_Classes\CLSID\{0A368B9B-3566-4730-B40E-EAF6858A53AF}\InprocServer32 -> C:\Users\Admin\AppData\Local\Dropbox\Update\1.3.27.33\psuser.dll => No File
CustomCLSID: HKU\S-1-5-21-51145358-2442092094-1609093457-1000_Classes\CLSID\{0e758f0f-8faf-4231-b3f4-1e63ccebefa4}\localserver32 -> C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_helper.exe (Wargaming.net)
CustomCLSID: HKU\S-1-5-21-51145358-2442092094-1609093457-1000_Classes\CLSID\{1aad99ea-ee10-5c3a-8174-84c63a67adde}\InprocServer32 -> C:\ProgramData\Anvisoft\Anvi Smart Defender 2\extensions\npAdblockPlugin.dll => No File
CustomCLSID: HKU\S-1-5-21-51145358-2442092094-1609093457-1000_Classes\CLSID\{1b3e6947-d9ac-4c3f-8aee-609b5ee64b2e}\localserver32 -> C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_helper.exe (Wargaming.net)
CustomCLSID: HKU\S-1-5-21-51145358-2442092094-1609093457-1000_Classes\CLSID\{2027D000-8CEB-4191-9620-15DD2561855F}\InprocServer32 -> C:\Users\Admin\AppData\Local\Dropbox\Update\1.3.57.1\psuser.dll => No File
CustomCLSID: HKU\S-1-5-21-51145358-2442092094-1609093457-1000_Classes\CLSID\{3059C9E6-9EDC-4C89-933E-C65623F8FD60}\localserver32 -> C:\Users\Admin\AppData\Local\Dropbox\Update\DropboxUpdate.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-51145358-2442092094-1609093457-1000_Classes\CLSID\{41F2ED58-C7A8-43D8-8F5A-E15229560913}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-51145358-2442092094-1609093457-1000_Classes\CLSID\{444785F1-DE89-4295-863A-D46C3A781394}\InprocServer32 -> C:\Users\Admin\AppData\LocalLow\Unity\WebPlayer\loader\UnityWebPluginAX.ocx (Unity Technologies ApS)
CustomCLSID: HKU\S-1-5-21-51145358-2442092094-1609093457-1000_Classes\CLSID\{449CFB1B-1C07-48EA-9A9A-7A7881C2B49B}\InprocServer32 -> C:\Users\Admin\AppData\Local\Dropbox\Update\1.3.59.1\psuser.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-51145358-2442092094-1609093457-1000_Classes\CLSID\{87DC457B-B35D-48AC-BD42-BDF35EF623CE}\localserver32 -> C:\Users\Admin\AppData\Local\Dropbox\Update\1.3.59.1\DropboxUpdateOnDemand.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-51145358-2442092094-1609093457-1000_Classes\CLSID\{9FAA38ED-5635-44F7-9BE0-8CAFE29B3783}\localserver32 -> C:\Users\Admin\AppData\Local\Dropbox\Update\1.3.59.1\DropboxUpdateOnDemand.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-51145358-2442092094-1609093457-1000_Classes\CLSID\{AAEF5EAE-A7E1-406E-B7C9-7757228AA56E}\localserver32 -> C:\ProgramData\Wargaming.net\GameCenter\dlls\pluginhost.exe (Wargaming.net)
CustomCLSID: HKU\S-1-5-21-51145358-2442092094-1609093457-1000_Classes\CLSID\{AD74D2F3-71DE-4DD0-8197-0A684CEE3DA3}\localserver32 -> C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_helper.exe (Wargaming.net)
CustomCLSID: HKU\S-1-5-21-51145358-2442092094-1609093457-1000_Classes\CLSID\{C0DD324D-A74F-4533-84AD-030F76771C77}\localserver32 -> C:\Users\Admin\AppData\Local\Dropbox\Update\1.3.59.1\DropboxUpdateOnDemand.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-51145358-2442092094-1609093457-1000_Classes\CLSID\{C32E3EEC-3C10-426E-95F3-38C7F139FADD}\localserver32 -> C:\Users\Admin\AppData\Local\Dropbox\Update\1.3.59.1\DropboxUpdateOnDemand.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-51145358-2442092094-1609093457-1000_Classes\CLSID\{D166BD15-03AF-413A-BEFD-0679FF410B49}\InprocServer32 -> C:\Users\Admin\AppData\Local\Dropbox\Update\1.3.27.29\psuser.dll => No File
CustomCLSID: HKU\S-1-5-21-51145358-2442092094-1609093457-1000_Classes\CLSID\{d33c6260-dafc-4b90-bf39-8ad6a5f19b7d}\localserver32 -> "C:\Program Files\Avira\SoftwareUpdater\AviraSoftwareUpdaterToastNotificationsBridge.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-51145358-2442092094-1609093457-1000_Classes\CLSID\{E7A37920-253C-4FF1-B169-298A7CE6CAA9}\localserver32 -> C:\Users\Admin\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-51145358-2442092094-1609093457-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Admin\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-51145358-2442092094-1609093457-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Admin\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-51145358-2442092094-1609093457-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Admin\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-51145358-2442092094-1609093457-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Admin\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-51145358-2442092094-1609093457-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Admin\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-51145358-2442092094-1609093457-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Admin\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-51145358-2442092094-1609093457-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Admin\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-51145358-2442092094-1609093457-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Admin\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-51145358-2442092094-1609093457-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Admin\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-51145358-2442092094-1609093457-1000_Classes\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Admin\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-51145358-2442092094-1609093457-1000_Classes\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Admin\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-51145358-2442092094-1609093457-1000_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Admin\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-51145358-2442092094-1609093457-1000_Classes\CLSID\{FE819BE5-BADF-4370-9913-6FB84ABA6FB1}\InprocServer32 -> C:\Users\Admin\AppData\Local\Dropbox\Update\1.3.59.1\psuser.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2017-11-10] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2017-11-10] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2017-11-10] (Google)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Admin\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll [2018-04-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Admin\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll [2018-04-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Admin\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll [2018-04-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Admin\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll [2018-04-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Admin\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll [2018-04-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Admin\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll [2018-04-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Admin\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll [2018-04-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Admin\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll [2018-04-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => F:\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov)
ContextMenuHandlers1: [ANotepad++] -> {00F3C2EC-A6EE-11DE-A03A-EF8F55D89593} => F:\Notepad++\NppShell_06.dll [2017-08-29] ()
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu32.dll [2017-11-10] (Google)
ContextMenuHandlers1: [Kaspersky Anti-Virus 18.0.0] -> {FF48AD48-74C7-4260-B385-FAEB80947450} => C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\shellex.dll [2018-04-21] (AO Kaspersky Lab)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-12-01] (Alexander Roshal)
ContextMenuHandlers2: [Kaspersky Anti-Virus 18.0.0] -> {FF48AD48-74C7-4260-B385-FAEB80947450} => C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\shellex.dll [2018-04-21] (AO Kaspersky Lab)
ContextMenuHandlers3: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => F:\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu32.dll [2017-11-10] (Google)
ContextMenuHandlers4: [Kaspersky Anti-Virus 18.0.0] -> {FF48AD48-74C7-4260-B385-FAEB80947450} => C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\shellex.dll [2018-04-21] (AO Kaspersky Lab)
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} =>  -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2014-03-04] (NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => F:\7-Zip\7-zip.dll [2017-04-29] (Igor Pavlov)
ContextMenuHandlers6: [Kaspersky Anti-Virus 18.0.0] -> {FF48AD48-74C7-4260-B385-FAEB80947450} => C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\shellex.dll [2018-04-21] (AO Kaspersky Lab)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} =>  -> No File
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-12-01] (Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-51145358-2442092094-1609093457-1000: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Admin\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll [2018-04-09] (Dropbox, Inc.)
ContextMenuHandlers4_S-1-5-21-51145358-2442092094-1609093457-1000: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Admin\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll [2018-04-09] (Dropbox, Inc.)
ContextMenuHandlers5_S-1-5-21-51145358-2442092094-1609093457-1000: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Admin\AppData\Roaming\Dropbox\bin\DropboxExt.19.0.dll [2018-04-09] (Dropbox, Inc.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {028E04D7-7877-4ECF-A032-F78354FC5295} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-51145358-2442092094-1609093457-1000Core => C:\Users\Admin\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-05] (Dropbox, Inc.)
Task: {07C30ED6-2049-4626-9CF7-0640A6D2EBA3} - System32\Tasks\gQzcL9rHh => C:\Users\Admin\AppData\Roaming\gQzcL9rHh.exe <==== ATTENTION
Task: {0AFAE91B-4D0D-49E1-B8FD-A6C1E406EC81} - System32\Tasks\{04009FBE-5B29-4F0D-BAF2-B2274A3AD16E} => C:\Windows\system32\pcalua.exe -a C:\Users\Admin\Downloads\chromeinstall-8u25.exe -d C:\Users\Admin\Downloads
Task: {31426DA5-D6F3-4431-A454-CB135EEA53AA} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\system32\Macromed\Flash\FlashUtil32_29_0_0_140_Plugin.exe [2018-04-15] (Adobe Systems Incorporated)
Task: {3234CC78-50FA-44DD-86C5-CCA4A7C45F57} - System32\Tasks\Zw3tkg9axTRPEAwUDKPUFQ25 => C:\Users\Admin\AppData\Roaming\Zw3tkg9axTRPEAwUDKPUFQ25.exe <==== ATTENTION
Task: {46840AD8-C31D-4D34-9182-15F026D7D294} - System32\Tasks\UpdateService => C:\Users\Admin\AppData\Roaming\Microsoft\taskhostw.exe <==== ATTENTION
Task: {4C870060-33B6-4EE9-8C86-339ABF395D7D} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-51145358-2442092094-1609093457-1000UA => C:\Users\Admin\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-05] (Dropbox, Inc.)
Task: {8FE1176C-BD4B-48FB-ADE9-F502B08CB81A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-02-09] (Adobe Systems Incorporated)
Task: {A3696793-1BD7-4F60-9268-D8616F878023} - System32\Tasks\98b34e9ryCSMFdERhJCz => C:\Users\Admin\AppData\Roaming\98b34e9ryCSMFdERhJCz.exe <==== ATTENTION
Task: {A4183D97-3822-4DF1-A8E4-E16F983C08A3} - System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe [2018-04-21] (AO Kaspersky Lab)
Task: {A7E826F5-64FD-47E3-948B-4E981E1ADD2E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2018-04-15] (Adobe Systems Incorporated)
Task: {BDD6A4F5-2D24-4A6B-8357-EA522A97BECC} - System32\Tasks\AmiUpdXp => C:\Users\Admin\AppData\Local\8053\Updater.exe <==== ATTENTION
Task: {BE7A27EB-C5B0-4C8D-8754-D3383601BE4E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {DCECA34D-1BAC-4E6C-B32D-4B39D0F94E2D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {E2683EF7-4D6A-445D-A7A5-EEB75193244A} - System32\Tasks\Inst_Rep => C:\Users\Admin\AppData\Local\Installer\Install_24236\DCytdieamodc_amodc_setup.exe <==== ATTENTION
Task: {E7887C8F-B438-48FF-81AC-3A970D73F714} - System32\Tasks\jj5CVMyU2Wb3 => C:\Users\Admin\AppData\Roaming\jj5CVMyU2Wb3.exe <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\98b34e9ryCSMFdERhJCz.job => C:\Users\Admin\AppData\Roaming\98b34e9ryCSMFdERhJCz.exe <==== ATTENTION
Task: C:\Windows\Tasks\AmiUpdXp.job => C:\Users\Admin\AppData\Local\8053\Updater.exe <==== ATTENTION
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-51145358-2442092094-1609093457-1000Core.job => C:\Users\Admin\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-51145358-2442092094-1609093457-1000UA.job => C:\Users\Admin\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\gQzcL9rHh.job => C:\Users\Admin\AppData\Roaming\gQzcL9rHh.exe <==== ATTENTION
Task: C:\Windows\Tasks\jj5CVMyU2Wb3.job => C:\Users\Admin\AppData\Roaming\jj5CVMyU2Wb3.exe <==== ATTENTION
Task: C:\Windows\Tasks\Zw3tkg9axTRPEAwUDKPUFQ25.job => C:\Users\Admin\AppData\Roaming\Zw3tkg9axTRPEAwUDKPUFQ25.exe <==== ATTENTION

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


Shortcut: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line\FL Studio 10\Image-Line website.lnk -> hxxp://www.image-line.com
Shortcut: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line\FL Studio 10\Advanced\Diagnostic.lnk -> hxxp://www.image-line.com/diagnosti
Shortcut: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line\FL Studio 10\Additional\Download Deckadance.lnk -> hxxp://www.deckadance.com
Shortcut: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line\FL Studio 10\Additional\SynthMaker website.lnk -> hxxp://www.synthmaker.co.uk
Shortcut: C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Firefox Developer Edition.lnk -> C:\Program Files\Firefox Developer Edition\firefox.exe (Mozilla Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox Developer Edition.lnk -> C:\Program Files\Firefox Developer Edition\firefox.exe (Mozilla Corporation)
Shortcut: C:\Users\Public\Desktop\Firefox Developer Edition.lnk -> C:\Program Files\Firefox Developer Edition\firefox.exe (Mozilla Corporation)

==================== Loaded Modules (Whitelisted) ==============

2014-03-25 20:21 - 2014-03-04 15:34 - 000109000 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll
2018-04-21 10:27 - 2018-04-21 10:27 - 000836968 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\kpcengine.2.3.dll
2017-08-29 03:43 - 2017-08-29 03:43 - 000267952 _____ () F:\Notepad++\NppShell_06.dll
2016-12-23 23:33 - 2018-01-11 05:05 - 000784672 _____ () E:\heroes\SDL2.dll
2016-12-23 23:33 - 2016-09-01 04:02 - 004969248 _____ () E:\heroes\v8.dll
2016-12-23 23:33 - 2016-09-01 04:02 - 001563936 _____ () E:\heroes\icui18n.dll
2016-12-23 23:33 - 2016-09-01 04:02 - 001195296 _____ () E:\heroes\icuuc.dll
2016-12-23 23:33 - 2018-04-03 02:34 - 002631968 _____ () E:\heroes\video.dll
2017-12-15 15:47 - 2017-12-20 04:43 - 005137696 _____ () E:\heroes\libavcodec-57.dll
2017-12-15 15:47 - 2017-12-20 04:43 - 000847136 _____ () E:\heroes\libavutil-55.dll
2017-12-15 15:47 - 2017-12-20 04:43 - 000695584 _____ () E:\heroes\libavformat-57.dll
2017-12-15 15:47 - 2017-12-20 04:43 - 000351520 _____ () E:\heroes\libavresample-3.dll
2017-12-15 15:47 - 2017-12-20 04:43 - 000783648 _____ () E:\heroes\libswscale-4.dll
2016-12-23 23:33 - 2018-04-03 02:34 - 000977184 _____ () E:\heroes\bin\chromehtml.DLL
2016-12-23 23:33 - 2016-07-05 01:17 - 000266560 _____ () E:\heroes\openvr_api.dll
2017-10-07 17:00 - 2018-03-27 19:10 - 001663736 _____ () \\?\C:\ProgramData\Wargaming.net\GameCenter\dlls\libGLESv2.dll
2017-10-07 17:00 - 2018-03-27 19:10 - 000091896 _____ () \\?\C:\ProgramData\Wargaming.net\GameCenter\dlls\libEGL.dll
2017-10-07 17:00 - 2018-03-27 19:10 - 049001720 _____ () \\?\C:\ProgramData\Wargaming.net\GameCenter\dlls\libcef.dll
2018-04-15 14:20 - 2018-04-09 13:17 - 000866120 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\dropbox_watchdog.dll
2018-04-15 14:20 - 2018-04-09 13:17 - 002079048 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\dropbox_crashpad.dll
2018-04-15 14:21 - 2018-04-09 13:17 - 000100312 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\_ctypes.pyd
2018-04-15 14:21 - 2018-04-09 13:17 - 000018896 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\select.pyd
2018-04-15 14:21 - 2018-04-09 13:19 - 000020808 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\tornado.speedups.pyd
2018-04-15 14:21 - 2018-04-09 13:17 - 000035808 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\_multiprocessing.pyd
2018-04-15 14:21 - 2018-04-09 13:17 - 000694232 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\unicodedata.pyd
2018-04-15 14:19 - 2018-04-09 13:18 - 000021856 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._constant_time.pyd
2018-04-15 14:21 - 2018-04-09 13:17 - 000130520 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\_cffi_backend.pyd
2018-04-15 14:20 - 2018-04-09 13:18 - 001856864 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._openssl.pyd
2018-04-15 14:20 - 2018-04-09 13:18 - 000022880 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._padding.pyd
2018-04-15 14:20 - 2018-04-09 13:17 - 000145880 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\pyexpat.pyd
2018-04-15 14:21 - 2018-04-09 13:17 - 000116696 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\pywintypes27.dll
2018-04-15 14:21 - 2018-04-09 13:17 - 000105944 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\win32api.pyd
2018-04-15 14:21 - 2018-04-09 13:19 - 000022872 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\winffi.crt.compiled._winffi_crt.pyd
2018-04-15 14:20 - 2018-04-09 13:18 - 000063312 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\psutil._psutil_windows.pyd
2018-04-15 14:21 - 2018-04-09 13:17 - 000024536 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\win32event.pyd
2018-04-15 14:20 - 2018-04-09 13:18 - 000077120 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\fastpath.pyd
2018-04-15 14:21 - 2018-04-09 13:17 - 000392664 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\pythoncom27.dll
2018-04-15 14:20 - 2018-04-09 13:17 - 000020952 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\mmapfile.pyd
2018-04-15 14:21 - 2018-04-09 13:17 - 000124888 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\win32file.pyd
2018-04-15 14:21 - 2018-04-09 13:17 - 000114136 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\win32security.pyd
2018-04-15 14:21 - 2018-04-09 13:19 - 000392520 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\win32com.shell.shell.pyd
2018-04-15 14:21 - 2018-04-09 13:19 - 000026464 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\winffi.kernel32.compiled._winffi_kernel32.pyd
2018-04-15 14:21 - 2018-04-09 13:17 - 000043480 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\win32process.pyd
2018-04-15 14:21 - 2018-04-09 13:17 - 000024024 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\win32clipboard.pyd
2018-04-15 14:21 - 2018-04-09 13:17 - 000175576 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\win32gui.pyd
2018-04-15 14:21 - 2018-04-09 13:17 - 000030168 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\win32pipe.pyd
2018-04-15 14:21 - 2018-04-09 13:17 - 000026072 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\win32job.pyd
2018-04-15 14:21 - 2018-04-09 13:17 - 000048600 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\win32service.pyd
2018-04-15 14:21 - 2018-04-09 13:17 - 000057816 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\win32evtlog.pyd
2018-04-15 14:19 - 2018-04-09 13:18 - 000021840 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\cpuid.compiled._cpuid.pyd
2018-04-15 14:21 - 2018-04-09 13:19 - 000023376 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\winshell.compiled._winshell.pyd
2018-04-15 14:19 - 2018-04-09 13:18 - 000022864 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\crashpad.compiled._Crashpad.pyd
2018-04-15 14:21 - 2018-04-09 13:19 - 000066400 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\winenumhandles.compiled._WinEnumHandles.pyd
2018-04-15 14:20 - 2018-04-09 13:18 - 001798464 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\PyQt5.QtCore.pyd
2018-04-15 14:21 - 2018-04-09 13:17 - 000084944 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\sip.pyd
2018-04-15 14:20 - 2018-04-09 13:18 - 001959232 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\PyQt5.QtGui.pyd
2018-04-15 14:20 - 2018-04-09 13:18 - 003863880 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\PyQt5.QtWidgets.pyd
2018-04-15 14:20 - 2018-04-09 13:18 - 000155472 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\PyQt5.QtWebEngineWidgets.pyd
2018-04-15 14:20 - 2018-04-09 13:18 - 000521544 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\PyQt5.QtNetwork.pyd
2018-04-15 14:20 - 2018-04-09 13:18 - 000051024 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\PyQt5.QtWebEngineCore.pyd
2018-04-15 14:20 - 2018-04-09 13:18 - 000043336 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\PyQt5.QtWebChannel.pyd
2018-04-15 14:20 - 2018-04-09 13:18 - 000131400 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKit.pyd
2018-04-15 14:20 - 2018-04-09 13:18 - 000219984 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKitWidgets.pyd
2018-04-15 14:20 - 2018-04-09 13:18 - 000204104 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\PyQt5.QtPrintSupport.pyd
2018-04-15 14:21 - 2018-04-09 13:19 - 000025440 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\winscreenshot.compiled._CaptureScreenshot.pyd
2018-04-15 14:21 - 2018-04-09 13:17 - 000060888 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\win32print.pyd
2018-04-15 14:21 - 2018-04-09 13:19 - 000054616 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\winrpcserver.compiled._RPCServer.pyd
2018-04-15 14:21 - 2018-04-09 13:17 - 000024024 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\win32profile.pyd
2018-04-15 14:21 - 2018-04-09 13:19 - 000022880 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\winffi.user32.compiled._winffi_user32.pyd
2018-04-15 14:21 - 2018-04-09 13:17 - 000028632 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\win32ts.pyd
2018-04-15 14:21 - 2018-04-09 13:19 - 000022368 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\winffi.iphlpapi.compiled._winffi_iphlpapi.pyd
2018-04-15 14:21 - 2018-04-09 13:19 - 000021856 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\winffi.winerror.compiled._winffi_winerror.pyd
2018-04-15 14:21 - 2018-04-09 13:19 - 000022368 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\winffi.wininet.compiled._winffi_wininet.pyd
2018-04-15 14:20 - 2018-04-09 13:18 - 000027496 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\dropbox.infinite.win.compiled._driverinstallation.pyd
2018-04-15 14:21 - 2018-04-09 13:17 - 000349144 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\winxpgui.pyd
2018-04-15 14:21 - 2018-04-09 13:19 - 000023904 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\winverifysignature.compiled._VerifySignature.pyd
2018-04-15 14:20 - 2018-04-09 13:18 - 000025432 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\librsyncffi.compiled._librsyncffi.pyd
2018-04-15 14:20 - 2018-04-09 13:17 - 000036312 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\librsync.dll
2018-04-15 14:21 - 2018-04-09 13:19 - 000021856 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\winffi.advapi32.compiled._winffi_advapi32.pyd
2018-04-15 14:20 - 2018-04-09 13:18 - 000181064 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\dropbox_sqlite_ext.DLL
2018-04-15 14:21 - 2018-04-09 13:19 - 000030544 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\wind3d11.compiled._wind3d11.pyd
2018-04-15 14:20 - 2018-04-09 13:18 - 000024384 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\libEGL.DLL
2018-04-15 14:20 - 2018-04-09 13:18 - 001638208 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\libGLESv2.dll
2018-04-15 14:21 - 2018-04-09 13:19 - 000026464 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\winffi.winhttp.compiled._winffi_winhttp.pyd
2018-04-15 14:20 - 2018-04-09 13:18 - 000546632 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\PyQt5.QtQuick.pyd
2018-04-15 14:20 - 2018-04-09 13:18 - 000359744 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\PyQt5.QtQml.pyd
2018-04-15 14:20 - 2018-04-09 13:18 - 000038216 _____ () C:\Users\Admin\AppData\Roaming\Dropbox\bin\PyQt5.QtWebEngine.pyd
2017-06-09 13:57 - 2017-09-07 05:04 - 000678400 _____ () E:\heroes\bin\cef\cef.win7\SDL2.dll
2016-12-23 23:34 - 2017-12-14 00:16 - 071471392 _____ () E:\heroes\bin\cef\cef.win7\libcef.dll
2016-12-23 23:33 - 2015-09-25 02:52 - 000119208 _____ () E:\heroes\winh264.dll
2018-03-23 17:44 - 2018-03-20 09:07 - 003737944 _____ () C:\Program Files\Google\Chrome\Application\65.0.3325.181\libglesv2.dll
2018-03-23 17:44 - 2018-03-20 09:07 - 000085848 _____ () C:\Program Files\Google\Chrome\Application\65.0.3325.181\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-51145358-2442092094-1609093457-1000\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-51145358-2442092094-1609093457-1000\...\webcompanion.com -> hxxp://webcompanion.com

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-11-23 18:44 - 2017-11-23 18:44 - 000000087 _____ C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 www.mirillis.com
127.0.0.1 s0ft4pc.com
127.0.0.1 serwer2.paka-service.com

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-51145358-2442092094-1609093457-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 52.17.204.69 - 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{6DC26B7F-536F-4063-9D32-D7F9FA57FA5F}] => (Allow) C:\Program Files\AVG\AVG2014\avgnsx.exe
FirewallRules: [{A263A380-031E-4F23-9BE9-8F411C28123A}] => (Allow) C:\Program Files\AVG\AVG2014\avgnsx.exe
FirewallRules: [{175CB71F-CE1C-439C-8C65-74C317C738B8}] => (Allow) C:\Program Files\AVG\AVG2014\avgdiagex.exe
FirewallRules: [{3FA846D6-7C5A-4589-9733-D43769AAB4F6}] => (Allow) C:\Program Files\AVG\AVG2014\avgdiagex.exe
FirewallRules: [{3DDB6214-0CB1-41BF-8E49-904809F174C6}] => (Allow) C:\Program Files\AVG\AVG2014\avgmfapx.exe
FirewallRules: [{51D24BAA-0F53-4816-AF80-CB0808A5642D}] => (Allow) C:\Program Files\AVG\AVG2014\avgmfapx.exe
FirewallRules: [{0284CD5C-1BDA-453B-8BD4-436E303BE881}] => (Allow) C:\Program Files\AVG\AVG2014\avgemcx.exe
FirewallRules: [{F73C17B0-620D-4DFC-A703-CAE767B6224D}] => (Allow) C:\Program Files\AVG\AVG2014\avgemcx.exe
FirewallRules: [{4025F7C2-BDA6-4719-A786-B2B6046D76D3}] => (Allow) C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
FirewallRules: [{7BE351C4-EB3F-472F-A51B-6C45083E7A1D}] => (Allow) C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
FirewallRules: [{3D46DA49-49F3-4829-8522-D0B0835C8B5F}] => (Allow) C:\Program Files\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{CD3BB603-AE00-4A4F-A30E-136DDB3F086F}] => (Allow) C:\Program Files\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{F283D48C-70CF-4B84-8CF5-2432E2BC1547}] => (Allow) C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{86760438-52A6-4648-B537-3D9DCFA42E19}] => (Allow) C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{8901D3CE-BED0-4D9A-9D63-21D98904A0EF}] => (Allow) C:\Program Files\BitComet\BitComet.exe
FirewallRules: [{F87ACD97-FE99-475C-A6DF-296D81642B04}] => (Allow) C:\Program Files\BitComet\BitComet.exe
FirewallRules: [{3ADAD896-FCEF-461F-A45D-71C77B485645}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [{A6465B56-8D95-448A-930A-DBEE221A5EC1}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [{38A5A242-365D-4734-92E2-6FFFDE1BAA35}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{E014B89E-A115-454B-999A-2BD7F6A1C179}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{C84733ED-C9EF-431F-A369-1FE4202938A2}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{10FFC9B6-9C26-4BF7-9707-4155553CD542}] => (Allow) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{660907D7-1798-4B92-B7D5-BC6549343A77}] => (Allow) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{88C298D8-28D2-404D-A9BC-D8BD9AF3491D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{3BF1FC36-B730-4D2B-83AF-9F3758B9AB5B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{AC1EF16D-6649-4BE8-9977-FD4C7F1C1CB7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{871DE06A-569C-4D24-86B7-2979B0881DBD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{106BA889-EBB0-4E3C-86EF-409C0C8A9C19}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{5F51ABC0-12EF-48C5-94A8-67B445774902}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{DAA3674F-A531-4EE0-9705-E427107E0059}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{92DDEDF9-175B-455A-B40B-6931EE185CEF}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{5801DAAB-ECDF-4CFE-B7F0-DCA0369EED16}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{E1FA0C1E-3A2B-4F1F-A490-084A8EDD37A9}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{080591D4-7574-477B-A9C9-1646A9723720}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{8D016B2B-58D8-403F-B463-47EC5288F287}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{8F2E1B62-5D5A-4A6B-AE57-3281334894C4}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{B9F0CA37-CBA9-4CD2-829A-CE7DA56C382A}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{27EA2BF8-134D-4DA7-A311-3B3C3848D5E0}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{FC1D3E9F-C844-41AB-B625-DD877CD4058C}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{E13A77CA-3500-4F4D-9B70-74AB1663CD08}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{01A75506-9897-4335-A619-435FE34B9A3F}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{E6591303-A620-47E9-A241-D1BEE63ABDD5}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{FA268864-34C6-42F3-A010-98E5C0EB8887}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{D23D698D-E529-4697-8F0E-995C45EB5BDE}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{C954F5D4-097B-4EEF-981A-50AA1B7AC517}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{FEA43AC1-9F7A-450F-91C7-240C6C99BD57}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{ADD527C1-085D-4858-B5B5-1F55840742BA}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{44F168FF-3463-4023-B6EA-2596E34396A9}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{8FAE23EB-D3C3-4E30-A5D0-0F2DB040B65B}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{01ED1996-BE85-49E4-A504-DB8AD5796504}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{98E0633C-0595-4EFF-A73A-BA4602C16C82}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{A9401298-A296-4E3F-99D8-DC1D8DF188C2}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{5761EBC0-915D-4CE8-A658-331347E54D97}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{6EE0817A-8383-43B2-92E1-B06C065DD361}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{7F788BEA-977E-4628-8A79-C1F24B035414}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{0F529ABD-D451-4B66-B01A-1845A84FBA42}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{8961D1A2-1B9F-4BF7-B211-8207248CA468}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{AEA7510B-2851-4D19-AC8C-F5C1B7D1296A}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{6D7E5CCE-6169-46AB-8BEF-CB0E10A73B17}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{788A2B8F-881D-4513-922C-9187AADCC037}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{0EDE4FF8-F51B-482B-B438-34EFE3E8CAB6}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{10F443F0-F9FB-48CD-8B56-BC7A6F9A10BC}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{C3E1C5B1-09E2-4C18-B0CA-8CF0979DD3AA}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{D0470C1E-FBF7-47F7-8C70-9CB43C78A496}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{193C4EF2-13E6-4625-97C9-FDA2A6761071}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{90FC0C6E-5FF0-4AE2-AC37-419FCCAC491F}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{40314AC0-5FCF-475C-8F79-45262D8314DA}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{5476AAFB-1349-4D24-9349-EE6CB41A18E3}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{77BAD2CD-D8CA-44CA-806C-A1F518C51765}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{72988FDB-5361-4253-A462-CC8B585FD50B}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{A08CEB03-6D4E-4938-A5A0-029823DC21A2}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{EA4A9372-2AE5-46D7-A01C-0952DC82D82D}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{164237F0-639A-43D8-9848-CA3F22AFB5A9}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{163B62DB-444B-4478-B5DA-593E4C57267C}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{30D95BE9-220D-4697-B1BF-70F3A0B28890}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{5B1827EE-6995-4489-8076-2256115F3AE2}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{F35FADD4-DE64-4A64-BFE8-85A05B02DA7B}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{04CC3710-F636-4FA9-80DD-357EA4A6A260}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{2E74D83D-EA52-4731-98FA-B5788E76299D}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{7E990947-79AF-4E0D-9341-BFDA9C91C59F}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{F20F52A8-FA11-4E21-98D8-A4929B6DD45D}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{3CF30E04-24A4-4790-8C88-77529FB81720}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{41F03F8E-74A9-41F8-88D0-4D265B62DE8E}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{6764B4DA-97E2-4B68-86B1-2C7B24B314D2}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{9190C5E4-8ABA-44DE-ADBD-2972022977D1}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{F2061428-7005-4D36-B713-A505A365053F}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{1FCD57AE-DF00-4642-9251-D2204C75202B}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{4B1B30A9-C5F5-49AB-BFB4-7549FAC9E5BA}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{B634885B-1C3E-4A6E-9D5E-849C0D1FE38D}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{63A3A34A-F29F-4F86-8B9A-B01BDBBE3561}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{DAB8E0E7-0A7A-48C0-9640-3ED3437E7F8C}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{4C2F2AFF-E181-4FA3-9941-8E31B0549029}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{B6A3FF5D-DA13-4414-A803-8260574DEDFB}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{F6166568-378B-43A5-A155-85BA79BC8032}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{03AB01FA-666A-4F88-8122-1197E865E8BD}] => (Allow) C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{A3831D43-91DE-4E10-921F-8E6E7A5B09F5}] => (Allow) E:\CrossFire\Crossfire Europe\CF_SGIN.exe
FirewallRules: [{F61627A0-3AC7-4F21-9A18-60E4DE24D911}] => (Allow) E:\CrossFire\Crossfire Europe\CF_SGIN.exe
FirewallRules: [{8AC80BA3-04EC-4089-A69A-7379FED51B2B}] => (Allow) E:\CrossFire\Crossfire Europe\CF_SGIN.exe
FirewallRules: [{C4649B91-208B-4CFD-BFF5-C74FFC8CDFDF}] => (Allow) E:\CrossFire\Crossfire Europe\CF_SGIN.exe
FirewallRules: [TCP Query User{CE0A38E4-92AF-4E52-8847-38798F4EE7E4}E:\wot\wotlauncher.exe] => (Allow) E:\wot\wotlauncher.exe
FirewallRules: [UDP Query User{6A35CA16-C2F5-47F8-A513-9C8171BFF4EB}E:\wot\wotlauncher.exe] => (Allow) E:\wot\wotlauncher.exe
FirewallRules: [TCP Query User{3692FDD7-5A7D-4098-B792-5A7C72EC1C21}E:\wot\worldoftanks.exe] => (Allow) E:\wot\worldoftanks.exe
FirewallRules: [UDP Query User{38C24AA6-6635-41F9-970C-674A4D9D5B8C}E:\wot\worldoftanks.exe] => (Allow) E:\wot\worldoftanks.exe
FirewallRules: [TCP Query User{AF58B558-14D8-4DD2-A0AF-469A5F24EB1D}C:\program files\bitcomet\bitcomet.exe] => (Block) C:\program files\bitcomet\bitcomet.exe
FirewallRules: [UDP Query User{C5D24C65-446B-4A69-ADD0-622EA6EE3748}C:\program files\bitcomet\bitcomet.exe] => (Block) C:\program files\bitcomet\bitcomet.exe
FirewallRules: [{4E8DFB45-97A3-4F83-84EC-CABFA58CD1D4}] => (Allow) C:\Program Files\AVG\AVG2014\avgmfapx.exe
FirewallRules: [{CF9ECA07-02CE-4D53-873B-14C92069F82A}] => (Allow) C:\Program Files\AVG\AVG2014\avgmfapx.exe
FirewallRules: [{FBA24712-E9CC-4462-A205-8BEA3828350B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{01D2E2FF-C88A-4E17-B9FA-50FD9F26A250}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{D284844B-9252-4CFF-9BBD-3CC321FE958F}] => (Allow) E:\Battle.net\Battle.net.exe
FirewallRules: [{4DC2A35F-6ECE-42A1-9E1B-C6A6D81D16B6}] => (Allow) E:\Battle.net\Battle.net.exe
FirewallRules: [{944244A0-C088-48A2-9E98-539B9ED145D0}] => (Allow) E:\Hearthstone\Hearthstone.exe
FirewallRules: [{20189597-5CD5-4AF0-850C-6624B670D60C}] => (Allow) E:\Hearthstone\Hearthstone.exe
FirewallRules: [TCP Query User{2E07E31B-E9BC-46AD-9AB4-65D153CD226F}G:\easysetupassistant\easysetupassistant.exe] => (Allow) G:\easysetupassistant\easysetupassistant.exe
FirewallRules: [UDP Query User{FDDBA80D-0CFC-42D5-9E76-E8C7A334C78D}G:\easysetupassistant\easysetupassistant.exe] => (Allow) G:\easysetupassistant\easysetupassistant.exe
FirewallRules: [TCP Query User{70C16F34-72E5-4AE4-9B74-13B12ABAACAB}G:\openarena-0.8.1\openarena.exe] => (Block) G:\openarena-0.8.1\openarena.exe
FirewallRules: [UDP Query User{7EDC2D33-C07B-4C61-B9FD-562A992DB45B}G:\openarena-0.8.1\openarena.exe] => (Block) G:\openarena-0.8.1\openarena.exe
FirewallRules: [{758128FF-8000-4E6E-BF6F-303597384741}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{A68FD185-B348-4E65-B41B-E07CF2379D70}] => (Allow) LPort=2869
FirewallRules: [{88962147-BEB2-4CEE-9DAC-8CF16B4605CE}] => (Allow) LPort=1900
FirewallRules: [{0FFC8B49-BFBE-4608-847F-339433C6934F}] => (Allow) C:\Users\Admin\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{83F4009F-783B-44C9-99AD-FEB913120889}] => (Allow) C:\Users\Admin\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{7570DF00-C779-44A6-A3DD-CEB399E5F5A5}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{6E63564F-9418-4D83-9608-B9E7F51A71A3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{A84E7224-8146-4582-A49C-083658797573}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{E5BF052A-81D5-40D8-ADBF-386CD7C45458}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{392F9A72-9069-42D8-ADF5-EE6CE6DE3CFA}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{C6FD3B2E-FBB0-4CC5-A9D0-75E950F7A312}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{06E92707-B7B5-4833-AB1E-CD817D722F2A}E:\minecraft\runtime\jre-x32\1.8.0_25\bin\javaw.exe] => (Allow) E:\minecraft\runtime\jre-x32\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{C83F9DF3-0837-4B68-BC60-11E0F4082D7B}E:\minecraft\runtime\jre-x32\1.8.0_25\bin\javaw.exe] => (Allow) E:\minecraft\runtime\jre-x32\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{D1A47C0A-9827-4E69-9275-72424E4A1B2F}F:\dungeon lords mmxii\dlords2012.exe] => (Block) F:\dungeon lords mmxii\dlords2012.exe
FirewallRules: [UDP Query User{409C1D45-4195-4880-8A9B-71EEC482C7EA}F:\dungeon lords mmxii\dlords2012.exe] => (Block) F:\dungeon lords mmxii\dlords2012.exe
FirewallRules: [TCP Query User{DD55449C-9F35-449B-B6DD-0F1B5FDBB4C8}C:\program files\java\jre1.8.0_101\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [UDP Query User{298177C1-7B07-49CF-ABB3-EE55195AB867}C:\program files\java\jre1.8.0_101\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [TCP Query User{CD94F3BA-D3A8-44B6-96B5-C34A6DD4C891}C:\program files\java\jre1.8.0_111\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_111\bin\javaw.exe
FirewallRules: [UDP Query User{57812093-14CC-4405-B695-02F9FF903463}C:\program files\java\jre1.8.0_111\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_111\bin\javaw.exe
FirewallRules: [TCP Query User{4D488667-1FEF-48C8-9712-573415DBE5E4}C:\program files\java\jre1.8.0_111\bin\java.exe] => (Block) C:\program files\java\jre1.8.0_111\bin\java.exe
FirewallRules: [UDP Query User{44195406-9BF7-42FD-BF01-8FCF3E2791B5}C:\program files\java\jre1.8.0_111\bin\java.exe] => (Block) C:\program files\java\jre1.8.0_111\bin\java.exe
FirewallRules: [{5E38E930-EC57-480C-A1EB-0B22D3A7BB47}] => (Allow) E:\heroes\Steam.exe
FirewallRules: [{259B99FD-EEBC-4E1F-A93A-E151D7175958}] => (Allow) E:\heroes\Steam.exe
FirewallRules: [{6776CA89-6438-43DB-994F-9D78736C0A95}] => (Allow) E:\heroes\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{30A88870-99DD-4B8C-AB39-86CAEE0913D4}] => (Allow) E:\heroes\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{E2EB79DE-2CFC-45B6-9B63-94523034ED6D}] => (Allow) E:\heroes\steamapps\common\Heroes of Might and Magic 5\bin\H5_Game.exe
FirewallRules: [{9A63D2D0-75E9-44C0-9FD4-C4736F5BF5FB}] => (Allow) E:\heroes\steamapps\common\Heroes of Might and Magic 5\bin\H5_Game.exe
FirewallRules: [{28CD2161-6C58-4CE6-9D96-B2BD708BB239}] => (Allow) E:\heroes\steamapps\common\Heroes of Might and Magic 5\bina1\testapp.exe
FirewallRules: [{2A5CA9E3-53C9-4E31-8881-2A129ABB4D19}] => (Allow) E:\heroes\steamapps\common\Heroes of Might and Magic 5\bina1\testapp.exe
FirewallRules: [{65169954-8F81-4DA4-BE95-FA8C1709B430}] => (Allow) E:\heroes\steamapps\common\Heroes of Might and Magic 5 Tribes of the East\bin\H5_Game.exe
FirewallRules: [{63086BFB-49D1-4D95-953D-7E4E8DC91C12}] => (Allow) E:\heroes\steamapps\common\Heroes of Might and Magic 5 Tribes of the East\bin\H5_Game.exe
FirewallRules: [TCP Query User{C02BB34C-F837-48AA-856C-673419E36A4D}C:\program files\java\jre1.8.0_121\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_121\bin\javaw.exe
FirewallRules: [UDP Query User{0A28DEAE-8A68-40A7-803E-36BE308EBD19}C:\program files\java\jre1.8.0_121\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_121\bin\javaw.exe
FirewallRules: [{CC6527F4-1924-4D2F-8AF2-50E410195AA3}] => (Allow) LPort=8317
FirewallRules: [{9AB3FF11-AD79-4CAA-879C-96FED9CA6477}] => (Allow) F:\T.A.B.Z\steamapps\common\Totally Accurate Battle Zombielator\GAME.exe
FirewallRules: [{D3BFF437-378B-47A3-B42C-7942D66D0DB6}] => (Allow) F:\T.A.B.Z\steamapps\common\Totally Accurate Battle Zombielator\GAME.exe
FirewallRules: [TCP Query User{E4116402-217B-4F8D-91F2-A508A58C1B3B}C:\program files\java\jre1.8.0_131\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_131\bin\javaw.exe
FirewallRules: [UDP Query User{1F395E30-7F9E-454A-85E5-A016DFCCFEC4}C:\program files\java\jre1.8.0_131\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_131\bin\javaw.exe
FirewallRules: [{424E6E27-B43A-4207-B781-9D734BF61E4A}] => (Allow) C:\Users\Admin\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{834D7885-0AC4-406F-BED4-B4F087EEEC83}] => (Allow) C:\Users\Admin\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{B649A5A6-87A4-4A11-8712-E696D4B55455}] => (Allow) C:\Users\Admin\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{0DB356EE-2E80-44B6-B402-11015EA80FD5}] => (Allow) C:\Users\Admin\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{1B679885-05A1-4D76-BF61-E98C4D7BE13E}] => (Allow) C:\Users\Admin\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D44E6A3D-D069-497F-A520-99CD70CB47C4}] => (Allow) C:\Users\Admin\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{CE4FAFB1-FEF6-4F0D-84A7-73F7DFAD9DBD}F:\unreal engine\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) F:\unreal engine\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [UDP Query User{5044C37C-015E-4933-A01D-861B9D864133}F:\unreal engine\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) F:\unreal engine\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [{61C2079D-50A9-474D-915F-245E54B2BE34}] => (Block) F:\unreal engine\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [{9B927CE7-B2CD-4BFD-96E6-5791C2F6B14E}] => (Block) F:\unreal engine\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [TCP Query User{2A1DE31E-676B-4AE7-BAB8-09FB06FBFAE1}F:\unity\editor\unity.exe] => (Allow) F:\unity\editor\unity.exe
FirewallRules: [UDP Query User{4258C401-22FE-4EAF-80DD-55F85511F05F}F:\unity\editor\unity.exe] => (Allow) F:\unity\editor\unity.exe
FirewallRules: [{323E5406-7EF6-4718-B40E-B8045BADC6C3}] => (Block) F:\unity\editor\unity.exe
FirewallRules: [{0F89BA2F-9693-42EA-98F6-891154EA9B94}] => (Block) F:\unity\editor\unity.exe
FirewallRules: [TCP Query User{9BAF5A74-8B34-42FA-B3BA-2CDFEFAD9183}F:\unity\monodevelop\bin\monodevelop.exe] => (Block) F:\unity\monodevelop\bin\monodevelop.exe
FirewallRules: [UDP Query User{9026A27A-097D-463F-B518-C767A50BAD50}F:\unity\monodevelop\bin\monodevelop.exe] => (Block) F:\unity\monodevelop\bin\monodevelop.exe
FirewallRules: [TCP Query User{43F8903E-E93E-4581-B741-8D1025ADCFB9}C:\users\admin\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\admin\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{EDF071FA-06E8-44E2-B2D1-3AB72007F1D8}C:\users\admin\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\admin\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{D4195B05-8AC7-49B9-BE6B-25C4A7C62EA6}E:\wot\worldoftanks.exe] => (Allow) E:\wot\worldoftanks.exe
FirewallRules: [UDP Query User{AD0A495D-AEBB-445D-B064-D14AF6437C4F}E:\wot\worldoftanks.exe] => (Allow) E:\wot\worldoftanks.exe
FirewallRules: [TCP Query User{8ED60F48-DA8C-4613-9B36-0C7E26A5C1F2}C:\program files\java\jre1.8.0_131\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_131\bin\javaw.exe
FirewallRules: [UDP Query User{2532DCA9-5BEC-4769-B410-69C2CBF5F11F}C:\program files\java\jre1.8.0_131\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_131\bin\javaw.exe
FirewallRules: [TCP Query User{46C0E0C0-4EC4-4F4D-86CB-1FCEB894411C}G:\openarena-0.8.1\openarena.exe] => (Allow) G:\openarena-0.8.1\openarena.exe
FirewallRules: [UDP Query User{6BC1BE25-FE8D-42BA-81F0-825A87AB4D9F}G:\openarena-0.8.1\openarena.exe] => (Allow) G:\openarena-0.8.1\openarena.exe
FirewallRules: [TCP Query User{253A6F81-6C79-48F1-B5FC-24EDB67E14F4}E:\wot\wotlauncher.exe] => (Allow) E:\wot\wotlauncher.exe
FirewallRules: [UDP Query User{36DB3EDA-DDCC-4A2E-A953-E7A05A952CF0}E:\wot\wotlauncher.exe] => (Allow) E:\wot\wotlauncher.exe
FirewallRules: [TCP Query User{D315D42A-9D68-402B-A329-C770EF7CDBD7}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe
FirewallRules: [UDP Query User{E68C2A97-87BD-409D-ACD1-69B6934AC6A1}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe
FirewallRules: [TCP Query User{91F83310-1F9E-416C-9A20-652A291AD187}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe
FirewallRules: [UDP Query User{A0F65A9B-A9B4-42A3-BA18-C1360573CC24}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe
FirewallRules: [{C8C0FE98-7849-4EEB-B91E-196D1549888C}] => (Allow) C:\Program Files\Firefox Developer Edition\firefox.exe
FirewallRules: [{4ACFB90C-5F79-4D98-AD1D-803538D0A127}] => (Allow) C:\Program Files\Firefox Developer Edition\firefox.exe
FirewallRules: [TCP Query User{64D5200D-C8DF-42A2-BCC4-205BEDA45BF3}F:\the escapists 2\theescapists2.exe] => (Allow) F:\the escapists 2\theescapists2.exe
FirewallRules: [UDP Query User{E74A8D07-7CF0-450F-836A-974277C4BD9E}F:\the escapists 2\theescapists2.exe] => (Allow) F:\the escapists 2\theescapists2.exe
FirewallRules: [{4F8F6BE9-9801-460B-B038-75427C7BEBB8}] => (Block) F:\the escapists 2\theescapists2.exe
FirewallRules: [{96CCB1FA-19AA-43CE-B07C-5FABDF43E925}] => (Block) F:\the escapists 2\theescapists2.exe
FirewallRules: [{E120E880-AC4A-4225-BF40-9571D87AB67A}] => (Block) %ProgramFiles%\Mirillis\Action!\Action.exe
FirewallRules: [{8A885BAE-0CAB-4B0E-8B73-8139AC2BB043}] => (Block) %ProgramFiles%\Mirillis\Action!\action_launcher.exe
FirewallRules: [{956E5F4F-6B40-4F51-B9DD-1D941DD08705}] => (Block) %ProgramFiles%\Mirillis\Action!\action_logon.exe
FirewallRules: [{5C4D356D-2B6F-4D1F-B9CF-77CD1C88B1A7}] => (Block) %ProgramFiles%\Mirillis\Action!\action_svc.exe
FirewallRules: [{B54DDCC5-E095-4C68-AE38-57C8A8B2B342}] => (Block) %ProgramFiles%\Mirillis\Action!\ActionPlayer.exe
FirewallRules: [{24721B8E-998D-47C6-A763-1D33EB01A03E}] => (Block) %ProgramFiles%\Mirillis\Action!\Uninstall.exe
FirewallRules: [{763BB212-0C10-4514-97D7-484A70095BAD}] => (Block) %ProgramFiles%\Mirillis\Action!\upload_login.exe
FirewallRules: [{DD66E8D3-06AA-4410-8807-50EEC8B802E4}] => (Block) %ProgramFiles%\Mirillis\Action!\Action.exe
FirewallRules: [{7113932A-AE52-4146-8CE3-59A31FE37035}] => (Allow) F:\T.A.B.Z\steamapps\common\Geometry Dash\GeometryDash.exe
FirewallRules: [{F69AA1BE-B481-4885-81CC-0A0CF56B7BC0}] => (Allow) F:\T.A.B.Z\steamapps\common\Geometry Dash\GeometryDash.exe
FirewallRules: [{7F1EF68C-D07D-4CAA-A5D6-23728D95FE55}] => (Allow) F:\T.A.B.Z\steamapps\common\HOMEFRONT\Binaries\HOMEFRONT.exe
FirewallRules: [{4447D9D4-D15A-484D-B2AC-C301BA43230C}] => (Allow) F:\T.A.B.Z\steamapps\common\HOMEFRONT\Binaries\HOMEFRONT.exe
FirewallRules: [{E356393F-06B6-4F5F-A9A9-B7037039BC71}] => (Allow) F:\T.A.B.Z\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe
FirewallRules: [{7BA22188-C948-4E35-A961-2D5B527EC63C}] => (Allow) F:\T.A.B.Z\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe
FirewallRules: [TCP Query User{BE73BCF6-E5C3-4723-9AD8-18DD8E3FD2CE}F:\t.a.b.z\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) F:\t.a.b.z\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [UDP Query User{2FBDE81C-F07F-4277-A214-9C3AEE33F05B}F:\t.a.b.z\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) F:\t.a.b.z\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [TCP Query User{F4AE056C-F3B5-4A19-855F-FCAA43B14564}F:\openarena-0.8.1\openarena.exe] => (Allow) F:\openarena-0.8.1\openarena.exe
FirewallRules: [UDP Query User{343564CE-CD0F-406D-A540-6D6F7292F2FA}F:\openarena-0.8.1\openarena.exe] => (Allow) F:\openarena-0.8.1\openarena.exe
FirewallRules: [TCP Query User{D5A879D4-7A4A-443F-8C96-E52BA6335ED5}F:\openarena-0.8.1\oa_ded.exe] => (Block) F:\openarena-0.8.1\oa_ded.exe
FirewallRules: [UDP Query User{6A035642-1757-4442-AC63-0C320599CF2E}F:\openarena-0.8.1\oa_ded.exe] => (Block) F:\openarena-0.8.1\oa_ded.exe
FirewallRules: [TCP Query User{4B4A0AEB-BFB6-47D5-856B-CB79D0E73C3B}F:\openarena-0.8.1\openarena-deprecated.exe] => (Block) F:\openarena-0.8.1\openarena-deprecated.exe
FirewallRules: [UDP Query User{651253AB-4A66-4FB5-AA53-48BF53A9B80F}F:\openarena-0.8.1\openarena-deprecated.exe] => (Block) F:\openarena-0.8.1\openarena-deprecated.exe
FirewallRules: [{0E872545-426E-4189-B97D-B91C94853FA9}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{84615023-3BD9-406C-8FCB-A64BAC3987F2}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{AFA2761A-E0E9-4666-AB20-25719E69E88D}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{67BB79DC-EDDD-45C9-82AC-809A0D374890}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{6E6EEBBC-5581-45A3-ABF5-0E915310A6EC}] => (Allow) F:\T.A.B.Z\steamapps\common\Crash Time II\BurningWheels.exe
FirewallRules: [{0657D717-AD10-46B5-82DE-3EC400E34878}] => (Allow) F:\T.A.B.Z\steamapps\common\Crash Time II\BurningWheels.exe
FirewallRules: [{D2CE3A9B-EF16-407A-81BC-AB4B413334C8}] => (Allow) F:\Crash Time 4 - The Syndicate\CrashTime4Hi.exe
FirewallRules: [{0F55DBB0-FD01-4D17-82D1-529481ECC336}] => (Allow) F:\Crash Time 4 - The Syndicate\CrashTime4Hi.exe
FirewallRules: [{AAA5974F-FC77-4BB6-B272-50428A0FABAE}] => (Allow) F:\Crash Time 4 - The Syndicate\CrashTime4Low.exe
FirewallRules: [{E5342B1C-6F4B-49AC-90AD-624E9BCC5005}] => (Allow) F:\Crash Time 4 - The Syndicate\CrashTime4Low.exe
FirewallRules: [{68C37F97-4ABD-4EC7-886A-52D8DDA9720C}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [{2DC6F63B-4060-48A5-A958-07023106AFB2}] => (Allow) C:\Users\Admin\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E3A8B0EB-256C-4174-93C0-FDFAC0B67127}] => (Allow) C:\Users\Admin\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{28271578-4A9E-41C7-81AA-173020CF59A9}C:\program files\avira\softwareupdater\avirasoftwareupdatertoastnotificationsbridge.exe] => (Block) C:\program files\avira\softwareupdater\avirasoftwareupdatertoastnotificationsbridge.exe
FirewallRules: [UDP Query User{D4EF19F0-678C-4BA9-AF16-B094DB045F7B}C:\program files\avira\softwareupdater\avirasoftwareupdatertoastnotificationsbridge.exe] => (Block) C:\program files\avira\softwareupdater\avirasoftwareupdatertoastnotificationsbridge.exe

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (04/22/2018 08:33:31 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (04/22/2018 08:33:02 AM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Service cannot be started. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
   at BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
   at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (04/21/2018 04:33:38 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Service cannot be started. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
   at BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
   at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (04/21/2018 04:33:17 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (04/21/2018 04:29:44 PM) (Source: Wininit) (EventID: 1015) (User: )
Description: A critical system process, C:\Windows\system32\lsass.exe, failed with status code c0000005.  The machine must now be restarted.

Error: (04/21/2018 03:05:28 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Service cannot be started. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
   at BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
   at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (04/21/2018 03:03:53 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (04/21/2018 02:59:42 PM) (Source: Wininit) (EventID: 1015) (User: )
Description: A critical system process, C:\Windows\system32\lsass.exe, failed with status code c0000005.  The machine must now be restarted.


System errors:
=============
Error: (04/22/2018 08:33:02 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The BlueStacks Android Service service terminated with the following error:
An exception occurred in the service when handling the control request.

Error: (04/22/2018 08:32:27 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Mobizen plugin service failed to start due to the following error:
The system cannot find the file specified.

Error: (04/22/2018 08:32:27 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Key In Bold Italic service failed to start due to the following error:
The system cannot find the file specified.

Error: (04/22/2018 08:32:25 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Wire Professional Version service failed to start due to the following error:
The system cannot find the file specified.

Error: (04/22/2018 08:32:25 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Mouse Mat Stand service failed to start due to the following error:
The system cannot find the file specified.

Error: (04/22/2018 08:31:37 AM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 6) (User: NT AUTHORITY)
Description: Some processor performance power management features have been disabled due to a known firmware problem. Check with the computer manufacturer for updated firmware.

Error: (04/21/2018 04:33:38 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The BlueStacks Android Service service terminated with the following error:
An exception occurred in the service when handling the control request.

Error: (04/21/2018 04:32:43 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Mobizen plugin service failed to start due to the following error:
The system cannot find the file specified.


==================== Memory info ===========================

Processor: Intel(R) Pentium(R) Dual CPU E2220 @ 2.40GHz
Percentage of memory in use: 52%
Total physical RAM: 3071.3 MB
Available physical RAM: 1464.35 MB
Total Virtual: 6138.88 MB
Available Virtual: 4018.15 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:97.56 GB) (Free:9.87 GB) NTFS
Drive d: () (Fixed) (Total:19.53 GB) (Free:3.33 GB) NTFS
Drive e: () (Fixed) (Total:54.98 GB) (Free:33.65 GB) NTFS
Drive f: () (Fixed) (Total:368.1 GB) (Free:180.96 GB) NTFS

\\?\Volume{4276d153-b45a-11e3-bea5-806e6f6e6963}\ (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows XP) (Size: 74.5 GB) (Disk ID: 001D001D)
Partition 1: (Active) - (Size=19.5 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=55 GB) - (Type=0F Extended)

========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 98CEF70C)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=97.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=368.1 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================