Untitled

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-08-2017
Ran by Luke (17-08-2017 07:40:19)
Running from C:\Users\Luke\Downloads
Windows 7 Home Premium Service Pack 1 (X64) (2015-10-17 16:34:56)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-986456637-423433477-1633228096-500 - Administrator - Disabled)
Guest (S-1-5-21-986456637-423433477-1633228096-501 - Limited - Disabled)
Luke (S-1-5-21-986456637-423433477-1633228096-1000 - Administrator - Enabled) => C:\Users\Luke

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

A3Launcher version 0.0.1.5 (HKLM-x32\...\{E31045B4-9DB5-9EBD-44DF-BD4CFDE640DF}_is1) (Version: 0.0.1.5 - Maca134)
ABZU (HKLM\...\ABZU_is1) (Version: 1.0 - )
Adobe Flash Player 26 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 26.0.0.151 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
AI War: Fleet Command (HKLM\...\Steam App 40400) (Version:  - Arcen Games, LLC)
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 382.53 - NVIDIA Corporation) Hidden
Arma 2 (HKLM\...\Steam App 33910) (Version:  - Bohemia Interactive)
ARMA 2 Army of The Czech Republic - Data cache removal (HKLM-x32\...\A2ACR Data cache removal) (Version:  - )
ARMA 2: British Armed Forces - Data cache removal (HKLM-x32\...\A2BAF Data cache removal) (Version:  - )
Arma 2: British Armed Forces (HKLM\...\Steam App 65700) (Version:  - Bohemia Interactive)
Arma 2: DayZ Mod (HKLM\...\Steam App 224580) (Version:  - Bohemia Interactive)
Arma 2: Operation Arrowhead (HKLM\...\Steam App 33930) (Version:  - Bohemia Interactive)
ARMA 2: Private Military Company - Data cache removal (HKLM-x32\...\A2PMC Data cache removal) (Version:  - )
Arma 2: Private Military Company (HKLM\...\Steam App 65720) (Version:  - Bohemia Interactive)
Arma 3 (HKLM\...\Steam App 107410) (Version:  - Bohemia Interactive)
Arma 3 (HKLM-x32\...\Steam App 107410) (Version:  - Bohemia Interactive)
ASTRONEER (HKLM\...\Steam App 361420) (Version:  - System Era Softworks)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.8.2.48475 - Electronic Arts)
Battlefield™ 1 (HKLM-x32\...\{335B50BC-6130-4BAF-9A6A-F1561270587B}) (Version: 1.0.50.33312 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.7.1 - EA Digital Illusions CE AB)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version:  - )
BattlEye Uninstall (HKLM-x32\...\BattlEye for A2) (Version:  - )
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 21.0.25.59 - Bitdefender)
BitTorrent (HKU\S-1-5-21-986456637-423433477-1633228096-1000\...\BitTorrent) (Version: 7.10.0.43917 - BitTorrent Inc.)
Blender (HKLM\...\{3ABDE236-0A3F-4D0D-BECB-DB67EE21C593}) (Version: 2.77.0 - Blender Foundation)
Cheat Engine 6.5.1 (HKLM-x32\...\Cheat Engine 6.5.1_is1) (Version:  - Cheat Engine)
Cities: Skylines (HKLM\...\Steam App 255710) (Version:  - Colossal Order Ltd.)
Counter-Strike: Source (HKLM\...\Steam App 240) (Version:  - Valve)
DayZLauncher version 0.0.2.5 (HKLM-x32\...\{E31045B4-9DB5-9EBD-44DF-BD4E6CFD40DF}_is1) (Version: 0.0.2.5 - Maca134)
Discord (HKU\S-1-5-21-986456637-423433477-1633228096-1000\...\Discord) (Version: 0.0.298 - Discord Inc.)
DZLauncher version 0.1.5.0 (HKLM-x32\...\{1E299AE2-74C8-4CD8-6B17-A86E0ED3C4D2}_is1) (Version: 0.1.5.0 - Maca134)
Empire: Total War (HKLM\...\Steam App 10500) (Version:  - The Creative Assembly)
Epic Games Launcher (HKLM-x32\...\{A1C97AE7-FB6B-425F-B75B-7A16E1E5639D}) (Version: 1.1.52.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Euro Truck Simulator 2 (HKLM\...\Steam App 227300) (Version:  - SCS Software)
EVE Isk per Hour (HKLM-x32\...\{7A37BE74-5767-407A-8145-098EF7DA02FB}) (Version: 3.3 - EVE IPH)
EVE Online (HKLM-x32\...\{AD45A8ED-CD11-4B04-A55A-4AB13FF950D7}) (Version: 3.0.0 - CCP Games Ltd.)
EVE Online (HKU\S-1-5-21-986456637-423433477-1633228096-1000\...\{96372797-7a7d-4159-af11-69d006ee9726}) (Version: 1.0.0 - CCP)
Factorio (HKLM\...\Steam App 427520) (Version:  - Wube Software LTD.)
Factorio version 0.14.21 (HKLM\...\Factorio_is1) (Version:  - )
Fallout 4 (HKLM-x32\...\Fallout 4_is1) (Version:  - )
Farming Simulator 17 (HKLM\...\Steam App 447020) (Version:  - Giants Software)
FileZilla Client 3.13.1 (HKLM-x32\...\FileZilla Client) (Version: 3.13.1 - Tim Kosse)
Game Dev Tycoon (HKLM\...\Steam App 239820) (Version:  - Greenheart Games)
GameRanger (HKU\S-1-5-21-986456637-423433477-1633228096-1000\...\GameRanger) (Version:  - GameRanger Technologies)
Garry's Mod (HKLM\...\Steam App 4000) (Version:  - Facepunch Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 60.0.3112.101 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Guns of Icarus Online (HKLM\...\Steam App 209080) (Version:  - Muse Games)
Insurgency (HKLM\...\Steam App 222880) (Version:  - New World Interactive)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4264 - Intel Corporation)
Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Kerbal Space Program (HKLM\...\Steam App 220200) (Version:  - Squad)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Left 4 Dead 2 (HKLM\...\Steam App 550) (Version:  - Valve)
Life is Feudal: Your Own (HKLM\...\Steam App 290080) (Version:  - Bitbox Ltd.)
Life is Feudal: Your Own (HKLM-x32\...\Steam App 290080) (Version:  - Bitbox Ltd.)
Logitech Gaming Software 8.84 (HKLM\...\Logitech Gaming Software) (Version: 8.84.15 - Logitech Inc.)
LogMeIn Hamachi (HKLM-x32\...\{BE82D2D7-6CA2-43B3-8C22-CCF6405806E7}) (Version: 2.2.0.579 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.579 - LogMeIn, Inc.)
MagicDisc 2.7.106 (HKLM-x32\...\MagicDisc 2.7.106) (Version:  - )
Men of War: Assault Squad 2 (HKLM\...\Steam App 244450) (Version:  - Digitalmindsoft)
Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft LifeCam (HKLM\...\{5CE7E3F5-9803-4F32-AA89-2D8848A80109}) (Version: 3.60.253.0 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40649 (HKLM-x32\...\{5d0723d3-cff7-4e07-8d0b-ada737deb5e6}) (Version: 12.0.40649.5 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox 55.0.2 (x64 en-GB) (HKLM\...\Mozilla Firefox 55.0.2 (x64 en-GB)) (Version: 55.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 55.0.2 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
Mumble 1.2.19 (HKLM-x32\...\{F62A874F-2354-49B1-87BE-CAAD7C8FA084}) (Version: 1.2.19 - Thorvald Natvig)
No Man's Sky (HKLM\...\Steam App 275850) (Version:  - Hello Games)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.9.2 - Notepad++ Team)
NovaBench 3.0.4 (HKLM-x32\...\{88603FC0-6B3C-442D-981E-E3D49F083548}_is1) (Version:  - Novawave Inc.)
NVIDIA 3D Vision Controller Driver 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 382.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 382.53 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.6.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.6.0.74 - NVIDIA Corporation)
NVIDIA Graphics Driver 382.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 382.53 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.27 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation)
NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 2.4.10.0 - NVIDIA Corporation) Hidden
NvvHci (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci) (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OpenTTD 1.6.1 (HKLM-x32\...\OpenTTD) (Version: 1.6.1 - OpenTTD)
Origin (HKLM-x32\...\Origin) (Version: 10.4.17.36908 - Electronic Arts, Inc.)
PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
Pidgin (HKLM-x32\...\Pidgin) (Version: 2.12.0 - )
Planet Coaster (HKLM\...\Steam App 493340) (Version:  - Frontier Developments)
Planetary Annihilation TITANS (HKLM-x32\...\Planetary Annihilation TITANS_is1) (Version:  - )
PLAYERUNKNOWN'S BATTLEGROUNDS (HKLM\...\Steam App 578080) (Version:  - Bluehole, Inc.)
PowerISO (HKLM-x32\...\PowerISO) (Version: 6.6 - Power Software Ltd)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
Python 3.5.1 (32-bit) (HKU\S-1-5-21-986456637-423433477-1633228096-1000\...\{c39d559b-aa83-4476-ba20-988a35a1199a}) (Version: 3.5.1150.0 - Python Software Foundation)
Python 3.5.1 (64-bit) (HKU\S-1-5-21-986456637-423433477-1633228096-1000\...\{b8440650-9dbe-4b7d-8167-6e0e3dcdf5d0}) (Version: 3.5.1150.0 - Python Software Foundation)
Python 3.5.1 Core Interpreter (32-bit) (HKLM-x32\...\{7665C66D-78C4-4B30-B4B9-8DD484403532}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Python 3.5.1 Core Interpreter (64-bit) (HKLM\...\{2690DE23-49CD-4973-AA74-F77C4C852189}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Python 3.5.1 Development Libraries (32-bit) (HKLM-x32\...\{2B2FED36-5D63-411A-A8C4-E311D70BCF33}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Python 3.5.1 Development Libraries (64-bit) (HKLM\...\{70D9C8DA-F1A1-43B0-B325-6263CD21E535}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Python 3.5.1 Documentation (32-bit) (HKLM-x32\...\{77EEC303-714C-4290-AF63-5252FDB5D7C8}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Python 3.5.1 Documentation (64-bit) (HKLM\...\{5C8D887B-998A-4708-9120-CE040C4A5B47}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Python 3.5.1 Executables (32-bit) (HKLM-x32\...\{946BBA68-EDC0-4981-83D3-09592B9A84FA}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Python 3.5.1 Executables (64-bit) (HKLM\...\{39F30A3E-99D9-46E3-8582-7422FE54A1FB}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Python 3.5.1 Launcher (32-bit) (HKLM-x32\...\{17778F7B-FB5A-4A93-9719-D75BAF673498}) (Version: 3.5.150.0 - Python Software Foundation)
Python 3.5.1 Launcher (32-bit) (HKLM-x32\...\{EC00AEF9-6544-4FEC-8152-C8949CDDCC85}) (Version: 3.5.150.0 - Python Software Foundation)
Python 3.5.1 pip Bootstrap (32-bit) (HKLM-x32\...\{4F29879C-940D-4599-8CEC-407579F73DF7}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Python 3.5.1 pip Bootstrap (64-bit) (HKLM\...\{E98CFF92-01E0-4E30-8C72-3C82111091C2}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Python 3.5.1 Standard Library (32-bit) (HKLM-x32\...\{65A2F7DA-ACD7-4EC1-8A88-665D535D9CE7}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Python 3.5.1 Standard Library (64-bit) (HKLM\...\{0F774261-D55F-4180-B266-A9E1C6F4CD7A}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Python 3.5.1 Tcl/Tk Support (32-bit) (HKLM-x32\...\{C387DB53-A25F-49E3-8DF7-94F47E5A7921}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Python 3.5.1 Tcl/Tk Support (64-bit) (HKLM\...\{A47BAF5B-53CC-4E60-847A-E13CAF26F467}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Python 3.5.1 Test Suite (32-bit) (HKLM-x32\...\{FA87440D-634A-4581-AD9C-C6FA859B88DD}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Python 3.5.1 Test Suite (64-bit) (HKLM\...\{A1B06412-F898-47C9-968F-D3B331ABB202}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Python 3.5.1 Utility Scripts (32-bit) (HKLM-x32\...\{9254A29B-0F60-444C-B5CE-DB7E2505474C}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Python 3.5.1 Utility Scripts (64-bit) (HKLM\...\{34E72E6D-77E8-4C17-99B8-42497B7308C8}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.20.15.804 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.82.317.2014 - Realtek)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.9.5 - Rockstar Games)
Rust (HKLM\...\Steam App 252490) (Version:  - Facepunch Studios)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0370 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
Sid Meier's Civilization V (HKLM\...\Steam App 8930) (Version:  - Firaxis Games)
Sid Meier's Civilization V (HKLM-x32\...\steam app 8930) (Version:  - 2K Games, Inc.)
SimCity™ (HKLM-x32\...\{F70FDE4B-8F86-4eb6-8C8E-636EC89F6419}) (Version: 4.0.98.0213 - Electronic Arts)
Sir, You Are Being Hunted (HKLM\...\Steam App 242880) (Version:  - Big Robot Ltd)
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype™ 7.31 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.31.104 - Skype Technologies S.A.)
Sniper Elite V2 (HKLM\...\Steam App 63380) (Version:  - Rebellion)
Space Engineers (HKLM\...\Steam App 244850) (Version:  - Keen Software House)
Spacewar (HKLM\...\Steam App 480) (Version:  - Valve)
Speccy (HKLM\...\Speccy) (Version: 1.29 - Piriform)
SpeedRunners (HKLM\...\Steam App 207140) (Version:  - DoubleDutch Games)
Star Citizen Launcher (HKU\S-1-5-21-986456637-423433477-1633228096-1000\...\Star Citizen Launcher) (Version: 00.01.00.00 - Cloud Imperium Games)
STAR WARS™ Battlefront™ (HKLM-x32\...\{E402D891-4E45-4ce9-B41F-DD35864EF170}) (Version: 1.0.7.64833 - Electronic Arts)
STAR WARS™ Battlefront™ II (HKLM\...\Steam App 6060) (Version:  - Pandemic Studios)
StarCraft II (HKLM-x32\...\StarCraft II) (Version:  - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stellaris (HKLM-x32\...\Stellaris_is1) (Version:  - )
Synfig Studio (HKLM-x32\...\synfigstudio) (Version: 1.0.2 - )
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version:  - Valve)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
The Elder Scrolls V: Skyrim (HKLM\...\Steam App 72850) (Version:  - Bethesda Game Studios)
The Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.69.43.024017 - Electronic Arts Inc.)
The Sims™ 3 Ambitions (HKLM-x32\...\{910F4A29-1134-49E0-AD8B-56E4A3152BD1}) (Version: 4.0.87 - Electronic Arts)
The Sims™ 3 High-End Loft Stuff (HKLM-x32\...\{71828142-5A24-4BD0-97E7-976DA08CE6CF}) (Version: 3.0.38 - Electronic Arts)
The Sims™ 3 Late Night (HKLM-x32\...\{45057FCE-5784-48BE-8176-D9D00AF56C3C}) (Version: 6.0.81 - Electronic Arts)
The Sims™ 3 Seasons (HKLM-x32\...\{3DE92282-CB49-434F-81BF-94E5B380E889}) (Version: 16.0.136 - Electronic Arts)
The Sims™ 3 Showtime (HKLM-x32\...\{3BBFD444-5FAB-49F6-98B1-A1954E831399}) (Version: 12.0.273 - Electronic Arts)
Tom Clancy's Rainbow Six Siege (HKLM-x32\...\Uplay Install 635) (Version:  - Ubisoft Montreal)
Total War - Rome II (HKLM-x32\...\Total War - Rome II_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, markfiter)
Total War ATTILA Age of Charlemagne version 1.6.0.0 (HKLM-x32\...\Total War ATTILA Age of Charlemagne_is1) (Version: 1.6.0.0 - KNIGHT)
Total War: ATTILA The Last Roman Campaign Pack (HKLM-x32\...\VG90YWxXYXJBVFRJTEE=_is1) (Version: 1 - )
Tunngle (HKLM-x32\...\Tunngle_is1) (Version: 5.8.6 - Tunngle.net GmbH)
Uplay (HKLM-x32\...\Uplay) (Version: 18.1 - Ubisoft)
Verdun (HKLM\...\Steam App 242860) (Version:  - M2H)
VJoy 1.2 (HKLM-x32\...\VJoy Virtual Joystick_is1) (Version:  - Headsoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.)
Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.3.13-3 - Wacom Technology Corp.)
War Thunder (HKLM-x32\...\Steam App 236390) (Version:  - Gaijin Entertainment)
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WinRAR 5.30 beta 6 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.6 - win.rar GmbH)
Wireshark 2.2.3 (64-bit) (HKLM-x32\...\Wireshark) (Version: 2.2.3 - The Wireshark developer community, hxxps://www.wireshark.org)
World of Warships (HKU\S-1-5-21-986456637-423433477-1633228096-1000\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814eu}_is1) (Version:  - Wargaming.net)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-986456637-423433477-1633228096-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-986456637-423433477-1633228096-1000_Classes\CLSID\{D45F043D-F17F-4e8a-8435-70971D9FA46D}\InprocServer32 -> C:\Program Files\Blender Foundation\Blender\BlendThumb64.dll ()
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2016-05-17] ()
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2016-05-25] (Power Software Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-11-08] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-11-08] (Alexander Roshal)
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2016-05-25] (Power Software Ltd)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2015-08-09] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2017-06-08] (NVIDIA Corporation)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2016-05-25] (Power Software Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-11-08] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-11-08] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0848B69D-8820-4B04-9331-BC07E019997B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-04] (Google Inc.)
Task: {27B5C314-B409-4822-A6D5-C392627448FF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-08-09] (Adobe Systems Incorporated)
Task: {471E0A50-FE46-4B81-A53B-8FFA337A73FC} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-05-03] (NVIDIA Corporation)
Task: {579B96CA-79A3-4810-B021-18B67034221C} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-03] (NVIDIA Corporation)
Task: {71DE98ED-2C14-42A5-BC26-4EF1E15A2FEC} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [2017-06-21] (Bitdefender)
Task: {76D2DD68-A966-4BD5-873E-5BC749536E94} - System32\Tasks\Luke => cmd.exe /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v Luke /t REG_SZ /d "explorer.exe hxxp://sd-steam.info" <==== ATTENTION
Task: {8844EF5D-2DB1-4B6B-810A-9B33BD7CFC56} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03] (NVIDIA Corporation)
Task: {8A262D47-657A-4506-AEEF-58FBE9108A5D} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-03] (NVIDIA Corporation)
Task: {8E4F3833-1DB2-4397-B920-AED3348E97B7} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-03] (NVIDIA Corporation)
Task: {A02F9726-4501-402E-AEFC-F90176C76A3E} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-05-03] (NVIDIA Corporation)
Task: {C306A916-B51E-474F-AE1B-3C5AE1D2ED63} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-04] (Google Inc.)
Task: {E50374A0-3B43-4A38-9286-8B24FF278080} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-03] (NVIDIA Corporation)
Task: {E730F0E3-7696-4058-9C2F-463AB37A726F} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-05-03] (NVIDIA Corporation)
Task: {E92B1055-867B-4C84-AD70-B804247B9064} - System32\Tasks\{EF59EEB6-A79A-4ED2-9765-94445176C809} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxp://ui.skype.com/ui/0/7.24.0.104/en/abandoninstall?page=tsProgressBar

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2015-08-24 14:56 - 2015-08-24 14:56 - 000043480 _____ () C:\Program Files\FileZilla FTP Client\fzshellext_64.dll
2015-11-23 21:14 - 2015-07-14 12:01 - 001347264 _____ () C:\Program Files\Tablet\Wacom\libxml2.dll
2015-03-07 01:07 - 2015-03-07 01:07 - 000908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2016-08-03 19:06 - 2016-08-03 19:06 - 001095448 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2015-03-07 01:07 - 2015-03-07 01:07 - 000060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2016-08-03 19:06 - 2016-08-03 19:06 - 000240408 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2016-10-20 23:05 - 2017-05-03 21:21 - 001267320 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2015-10-23 22:20 - 2016-07-22 20:30 - 000076152 _____ () C:\Windows\system32\PnkBstrA.exe
2015-11-05 00:11 - 2015-11-05 00:12 - 000188072 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2017-08-09 16:07 - 2017-08-09 16:07 - 027688960 _____ () C:\Windows\system32\Macromed\Flash\NPSWF64_26_0_0_151.dll
2015-10-22 20:16 - 2017-05-17 02:54 - 000678176 _____ () B:\Steam\steamapps\common\Steam\SDL2.dll
2015-10-22 20:16 - 2016-09-01 02:02 - 004969248 _____ () B:\Steam\steamapps\common\Steam\v8.dll
2015-10-22 20:16 - 2016-09-01 02:02 - 001563936 _____ () B:\Steam\steamapps\common\Steam\icui18n.dll
2015-10-22 20:16 - 2016-09-01 02:02 - 001195296 _____ () B:\Steam\steamapps\common\Steam\icuuc.dll
2015-10-22 20:16 - 2017-07-18 01:33 - 002497824 _____ () B:\Steam\steamapps\common\Steam\video.dll
2015-10-22 20:16 - 2016-01-27 08:49 - 002549760 _____ () B:\Steam\steamapps\common\Steam\libavcodec-56.dll
2015-10-22 20:16 - 2016-01-27 08:49 - 000442880 _____ () B:\Steam\steamapps\common\Steam\libavutil-54.dll
2015-10-22 20:16 - 2016-01-27 08:49 - 000491008 _____ () B:\Steam\steamapps\common\Steam\libavformat-56.dll
2015-10-22 20:16 - 2016-01-27 08:49 - 000332800 _____ () B:\Steam\steamapps\common\Steam\libavresample-2.dll
2015-10-22 20:16 - 2016-01-27 08:49 - 000485888 _____ () B:\Steam\steamapps\common\Steam\libswscale-3.dll
2015-10-22 20:16 - 2017-07-18 01:33 - 000884512 _____ () B:\Steam\steamapps\common\Steam\bin\chromehtml.DLL
2016-03-09 07:57 - 2016-07-04 23:17 - 000266560 _____ () B:\Steam\steamapps\common\Steam\openvr_api.dll
2016-12-13 13:32 - 2017-07-06 18:58 - 073088800 _____ () B:\Steam\steamapps\common\Steam\bin\cef\cef.win7\libcef.dll
2017-06-08 11:00 - 2017-05-17 02:54 - 000678176 _____ () B:\Steam\steamapps\common\Steam\bin\cef\cef.win7\SDL2.dll
2015-10-22 20:16 - 2017-07-18 01:33 - 000384288 _____ () B:\Steam\steamapps\common\Steam\steam.dll
2016-06-23 03:34 - 2016-06-23 03:34 - 000143824 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll
2016-10-20 23:05 - 2017-05-03 21:21 - 001040504 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-10-20 23:06 - 2017-05-03 21:20 - 065709176 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2015-10-22 20:16 - 2015-09-25 00:52 - 000119208 _____ () B:\Steam\steamapps\common\Steam\winh264.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\.DEFAULT\...\amazon.co.uk -> hxxps://amazon.co.uk
IE trusted site: HKU\S-1-5-21-986456637-423433477-1633228096-1000\...\amazon.co.uk -> hxxps://amazon.co.uk

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2009-06-10 22:00 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-986456637-423433477-1633228096-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Luke\AppData\Roaming\Mozilla\Firefox\Desktop Background.bmp
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{5444C172-D2F3-4FC9-BEC6-3875D4644B3B}] => (Allow) C:\Windows.old\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{1C08BF50-E9FB-4F29-899B-644AE1FDFAC0}] => (Allow) C:\Windows.old\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{2127B16C-1D15-414C-A23D-4D6CDF05C162}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{93506DBE-CE33-41A4-B1EC-82291001D4AD}] => (Allow) B:\Steam\steamapps\common\Steam\Steam.exe
FirewallRules: [{F0D63A78-F333-4B77-85DF-0B28C07EACF8}] => (Allow) B:\Steam\steamapps\common\Steam\Steam.exe
FirewallRules: [{63A84BB4-8689-4A84-9005-4B66785C25C2}] => (Allow) B:\Steam\steamapps\common\Steam\bin\steamwebhelper.exe
FirewallRules: [{4D5C95E8-DDA8-4B63-8149-E5E9F71DCE2B}] => (Allow) B:\Steam\steamapps\common\Steam\bin\steamwebhelper.exe
FirewallRules: [{FA83146F-8691-46D9-8460-22EF398E350C}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{ECC1110F-C71F-4CF6-B238-6FF80B3121D9}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{D3B3F847-7E69-44F8-8045-9AD936FC7D28}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{DEC4364E-05FC-4755-8B2F-E6CFA43224A2}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{A94BD3CF-D1FA-421F-962D-50E6FA79C773}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{F9E7CA42-EE54-44A3-AF5C-B6C7E01B054F}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{FA6B3E89-BEC4-4560-8E4B-B115931881CC}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{9029B054-2A2C-4869-BF83-47FD3709AF46}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{2AE46629-3D6D-435E-829E-83EC1D5912AA}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{2C6E98C1-6BAC-4DFE-920B-DA0977BC54F8}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{240125A3-56BE-4435-9606-7A50823B573C}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{40CB83D5-3A85-47B7-8C3D-6DA8748BAE3A}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{22B9CD7B-245E-4287-ACA7-E944ABE7D06C}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{8A17B432-469D-46B2-8F3C-4597D7E432F2}] => (Allow) B:\Program Files (x86)\Origin Games\STAR WARS Battlefront\starwarsbattlefront.exe
FirewallRules: [{B0ED4312-AFCA-43AB-88B0-55989A5FF226}] => (Allow) B:\Program Files (x86)\Origin Games\STAR WARS Battlefront\starwarsbattlefront.exe
FirewallRules: [{BE9F4401-6CF6-493E-BAD9-CB798F2E20D2}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Grand Theft Auto V\GTA5.exe
FirewallRules: [{959C363F-6E06-4FA6-AFB1-90A35CE6D139}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Grand Theft Auto V\GTA5.exe
FirewallRules: [{E8A41957-9C0A-4D67-A6F1-9234BC6D20F6}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Life is Feudal Your Own\yo_cm_client.exe
FirewallRules: [{74546D47-6461-4EFA-B611-458C036B0281}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Life is Feudal Your Own\yo_cm_client.exe
FirewallRules: [{EA33EF38-FC55-436E-BA58-B75AAF27920D}] => (Allow) B:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe
FirewallRules: [{98A1EDDA-623F-4B82-817D-5B50462BBB2F}] => (Allow) B:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe
FirewallRules: [{DC538388-E977-4E6F-9CD8-9337A93E8A35}] => (Allow) B:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [{31DD01FB-94BD-4ED6-B3FC-4075C5AE74A8}] => (Allow) B:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [{DFD0B561-966E-4E2B-8E47-CADA1E981F71}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\War Thunder\launcher.exe
FirewallRules: [{5ED64824-F76A-4870-AB20-68FEA9722570}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\War Thunder\launcher.exe
FirewallRules: [{19A9D8D0-548C-4E27-AE4E-A9EE216B8646}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{9BEE207C-7031-4163-AB26-24907662A7E3}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{09FCB758-974A-4855-B1D4-36FEC286C6BF}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe
FirewallRules: [{977FE8DD-2663-4514-B63D-4E2AE0D174DB}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe
FirewallRules: [{6FD2CD9A-BEE9-4267-99AE-66A346F891B0}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Empire Total War\Empire.exe
FirewallRules: [{A92BF6F1-BFEB-4408-BD84-2181210EF430}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Empire Total War\Empire.exe
FirewallRules: [{532EDB1B-48EE-4B5E-BE1B-D451BF51F178}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{AB47A2DC-54C1-4D28-B13D-9729456C237D}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{B32BAA23-168A-4CAD-A207-D6E66AC2C752}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{BE9285B6-2B94-4487-80F0-D7420B8973B5}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{8F5A88BB-943D-4C47-8B8F-6E2EEF9C6CDC}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{1880C43C-3764-4013-91DA-C1F16B8A480D}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{D61573CE-BE8A-49EF-8DB4-8B23789413AD}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\ARMA 2 Operation Arrowhead\ArmA2OA_BE.exe
FirewallRules: [{9D5D5B75-623D-4B86-99C0-C26E3BBC9F69}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\ARMA 2 Operation Arrowhead\ArmA2OA_BE.exe
FirewallRules: [{F3506A47-EB7C-4E55-B01A-8BF539FE43A5}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\ARMA 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{D41FFA1A-3C1F-4AC3-8B85-B9E7B67C764D}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\ARMA 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{0B232D1D-E324-4D97-A6D4-8B48F73A031C}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\ARMA 2 Operation Arrowhead\DLCsetup\ACR\datacachepreprocessor.exe
FirewallRules: [{0948D331-071F-44FC-AD19-9A9B457A3C46}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\ARMA 2 Operation Arrowhead\DLCsetup\ACR\datacachepreprocessor.exe
FirewallRules: [{FAB0C306-96B6-4E30-825A-291B1E3532ED}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\SpeedRunners\SpeedRunners.exe
FirewallRules: [{B92AFBB2-76EF-409E-87AE-4FC39583014E}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\SpeedRunners\SpeedRunners.exe
FirewallRules: [{3527B086-3192-4A4B-A431-BE9638251081}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Spacewar\SteamworksExample.exe
FirewallRules: [{61FEFB87-568E-4273-BC30-3509DD2EBB4F}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Spacewar\SteamworksExample.exe
FirewallRules: [{D1B6F2C3-DD78-48CA-A337-BABBD815D0AC}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{B112C4F3-0C7E-477B-AAFB-6222B1D844B3}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{AC2BDF06-3A69-46DC-801C-E1A4B2258C23}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{2F486D16-0046-409B-9FFA-6CFECDE882FA}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{89726B27-D6A8-4C41-87C7-CCD9C6AA43C9}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\ARMA 2 Operation Arrowhead\DLCsetup\PMC\datacachepreprocessor.exe
FirewallRules: [{B344AEB4-6980-4B7E-B83D-C71AA573D8A9}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\ARMA 2 Operation Arrowhead\DLCsetup\PMC\datacachepreprocessor.exe
FirewallRules: [{E8A56EEA-0A88-4841-804B-8C7F196B836D}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\ARMA 2 Operation Arrowhead\DLCsetup\BAF\datacachepreprocessor.exe
FirewallRules: [{8F54F8A3-5B2D-47B7-9FF9-B5FC897840C8}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\ARMA 2 Operation Arrowhead\DLCsetup\BAF\datacachepreprocessor.exe
FirewallRules: [{526D282F-48E3-4A44-81D2-D77F9F833576}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Arma 2\arma2.exe
FirewallRules: [{79EBB7AB-5331-42CE-B37F-42A31AABD384}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Arma 2\arma2.exe
FirewallRules: [{B2F5C152-7E9D-47C2-ADBA-B58BCE1CC394}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Rust\Rust.exe
FirewallRules: [{4CE61BAB-F7F6-4B3E-8D2F-9DF750F086D0}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Rust\Rust.exe
FirewallRules: [{E6B11FA5-9687-4630-8DA5-3AB42D98BA2B}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Offworld Trading Company\Offworld.exe
FirewallRules: [{616D55A2-A7E5-4749-9FD5-8EEB1718358A}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Offworld Trading Company\Offworld.exe
FirewallRules: [{3728BC3D-DFF3-4F49-91E4-2989C4450323}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\SpaceEngineers\Bin64\SpaceEngineers.exe
FirewallRules: [{6B6358E9-8FCD-411F-9915-B3710C8065FF}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\SpaceEngineers\Bin64\SpaceEngineers.exe
FirewallRules: [{C58714D1-FB4B-4BB7-9709-E307D8FE10A0}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\No Man's Sky\Binaries\NMS.exe
FirewallRules: [{466A3354-2AFE-444D-9CE8-FC35657DCC7F}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\No Man's Sky\Binaries\NMS.exe
FirewallRules: [{518FFDAD-FCF8-43EA-9205-C2D53362CDE8}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{31DDEE42-F711-41DE-90CC-798F262D3552}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{26CF0125-8C7C-412E-9272-273FBC0BFAC0}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{A0604CC5-30B3-482A-82BD-554B7AA83248}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{C78A65FE-6403-4CA3-BE25-D877FEEBB521}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{C9203D06-BC01-4113-A438-24F8B3AF5682}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{B6F547B0-CA91-4719-886D-521BD8FA8421}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\insurgency2\insurgency.exe
FirewallRules: [{53685E35-7226-4F8B-AF8A-2909584179DC}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\insurgency2\insurgency.exe
FirewallRules: [{CBE2931D-A92B-4E1D-ADAC-3D9F724D97C9}] => (Allow) B:\Steam\steamapps\common\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{8FACC6C4-D9FF-48EC-9BE9-8EF4C676BCD5}] => (Allow) B:\Steam\steamapps\common\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{9448A2DD-6876-4EA0-BEAE-EDF2D3443124}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\ASTRONEER Early Access\Astro.exe
FirewallRules: [{C2125900-EEEC-4D16-B06D-CF68A55194DE}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\ASTRONEER Early Access\Astro.exe
FirewallRules: [{32CACF03-74CB-47C8-859F-A63838CEC552}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Men of War Assault Squad 2\mowas_2.exe
FirewallRules: [{2FE694D3-54A8-4434-859E-0FF41B18943D}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Men of War Assault Squad 2\mowas_2.exe
FirewallRules: [{F20D7A74-3370-4685-AA85-AB32C88493C9}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Men of War Assault Squad 2\mowas_2_ed.exe
FirewallRules: [{EF3C3168-55CF-48B9-B0CC-DDA3549C6563}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Men of War Assault Squad 2\mowas_2_ed.exe
FirewallRules: [{43F388A0-CED8-4229-BF45-5881F6CAF84D}] => (Allow) C:\Games\World_of_Warships\WoWSLauncher.exe
FirewallRules: [{6446906E-81F9-4B09-9D8F-C69D246F3493}] => (Allow) C:\Games\World_of_Warships\WoWSLauncher.exe
FirewallRules: [{15FF7D77-52BE-46B6-A61B-C1B395D4466D}] => (Allow) C:\Games\World_of_Warships\worldofwarships.exe
FirewallRules: [{BC555826-D755-46C9-8283-DAB8B1B99BAD}] => (Allow) C:\Games\World_of_Warships\worldofwarships.exe
FirewallRules: [{9CC7F405-F0FD-49CF-A465-EF100CF05982}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{098C38A5-59EB-48E8-8DB7-E44C604A7E19}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{33CE5CC6-A82F-4A67-ABDF-E26764A1834E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{61E15B03-C5D4-4466-9E33-A470E0A5A5E8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{38A5F348-41D0-4C1F-B30F-67D30F2B518A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{2E18BD8F-2416-4A84-A617-243C40E5855C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{75356B6F-9DA3-444C-9BBE-1FC818E571A1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{960EE98D-1B4E-473F-AD60-3EBA543309F2}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\insurgency2\insurgency_BE.exe
FirewallRules: [{E3603D41-9EAA-46B2-BC6D-707DBC32AE33}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\insurgency2\insurgency_BE.exe
FirewallRules: [{61D73B6A-ED23-4700-B348-934894BFA921}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Guns of Icarus Online\GunsOfIcarusOnline.exe
FirewallRules: [{085A0E69-74F2-4FB3-BD42-0684566AC6EB}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Guns of Icarus Online\GunsOfIcarusOnline.exe
FirewallRules: [{E5C381A1-E3BE-4798-975A-1446BC97DA5F}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\AI War Fleet Command\AIWar.exe
FirewallRules: [{B57835F2-C4D8-4DEA-8A71-B4535AE796CB}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\AI War Fleet Command\AIWar.exe
FirewallRules: [{150AAE64-A91A-4565-A7CC-46EE86973965}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Total War WARHAMMER\launcher\launcher.exe
FirewallRules: [{2A6A517A-49C9-4D79-A929-396573CE7771}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Total War WARHAMMER\launcher\launcher.exe
FirewallRules: [{E3486A5F-41B2-43E4-8B58-1B7C759CD729}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Kerbal Space Program\KSP.exe
FirewallRules: [{29A2F9E3-69BD-41CB-A747-5E6B9197E8EE}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Kerbal Space Program\KSP.exe
FirewallRules: [{4BAE5FCF-250F-423D-8750-13F080F03BC9}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Kerbal Space Program\KSP_x64.exe
FirewallRules: [{4122E8FE-2046-48BE-A329-4A8B914DB4B4}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Kerbal Space Program\KSP_x64.exe
FirewallRules: [{03378E31-1FCF-4FDD-B7EE-DB63E8EB4CD6}] => (Allow) B:\Program Files (x86)\Uplay\Tom Clancy's Rainbow Six Siege\RainbowSix.exe
FirewallRules: [{C5ADC68F-3418-4A9C-A07E-35C30EC639DD}] => (Allow) B:\Program Files (x86)\Uplay\Tom Clancy's Rainbow Six Siege\RainbowSix.exe
FirewallRules: [{6C1A9B90-5CD9-47D9-A6A5-696A5B9435F9}] => (Allow) B:\Program Files (x86)\Uplay\Tom Clancy's Rainbow Six Siege\RainbowSixGame.exe
FirewallRules: [{9B107B07-189D-4F82-AC9B-0DCB0E31F145}] => (Allow) B:\Program Files (x86)\Uplay\Tom Clancy's Rainbow Six Siege\RainbowSixGame.exe
FirewallRules: [{50F143F2-E0A4-42FA-B403-C895CBED2D74}] => (Allow) B:\Program Files (x86)\Origin Games\Battlefield 4\BFLauncher.exe
FirewallRules: [{0390D6C6-4F75-48BE-BE4C-3B97A582C508}] => (Allow) B:\Program Files (x86)\Origin Games\Battlefield 4\BFLauncher.exe
FirewallRules: [{07882A65-2C9D-492B-8F72-7E230631ED92}] => (Allow) B:\Program Files (x86)\Origin Games\Battlefield 4\BFLauncher_x86.exe
FirewallRules: [{0A06FFB8-FE72-42D0-94BB-CBB831879E8D}] => (Allow) B:\Program Files (x86)\Origin Games\Battlefield 4\BFLauncher_x86.exe
FirewallRules: [{B9F7D972-FBF0-43C3-9B35-7AB8628182B3}] => (Allow) B:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{E0DFAF4F-89BA-4FDD-A27E-A48C79DA813F}] => (Allow) B:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{414F5C9E-4E60-479D-B366-636534FF1FE2}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Sniper Elite V2\Launcher\SniperV2Launcher.exe
FirewallRules: [{DA6302C2-4C39-4A78-86B1-85E48F6E307A}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Sniper Elite V2\Launcher\SniperV2Launcher.exe
FirewallRules: [TCP Query User{90A4EA47-8F29-4B6A-BF50-E9DC865283E6}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [UDP Query User{46AEC97E-A24C-4E72-8D7F-3BA9A3666068}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [TCP Query User{6D7013AF-0797-4513-9959-DE953AF5AC92}C:\programdata\ccp\eve\sharedcache\tq\bin\exefile.exe] => (Allow) C:\programdata\ccp\eve\sharedcache\tq\bin\exefile.exe
FirewallRules: [UDP Query User{1FE1B18C-6D1D-43AD-8A4A-8FBA3DA9CFA2}C:\programdata\ccp\eve\sharedcache\tq\bin\exefile.exe] => (Allow) C:\programdata\ccp\eve\sharedcache\tq\bin\exefile.exe
FirewallRules: [TCP Query User{9450DBBA-DC93-493B-A1B8-793470FBC387}B:\steam\steamapps\common\steam\steamapps\common\arma 3\arma3_x64.exe] => (Allow) B:\steam\steamapps\common\steam\steamapps\common\arma 3\arma3_x64.exe
FirewallRules: [UDP Query User{971D4827-5E12-40F8-8A7F-0D4F1899AF04}B:\steam\steamapps\common\steam\steamapps\common\arma 3\arma3_x64.exe] => (Allow) B:\steam\steamapps\common\steam\steamapps\common\arma 3\arma3_x64.exe
FirewallRules: [TCP Query User{AA53615D-8D5F-42EB-9DE8-28BAA2883F12}C:\users\luke\appdata\roaming\bittorrent\bittorrent.exe] => (Allow) C:\users\luke\appdata\roaming\bittorrent\bittorrent.exe
FirewallRules: [UDP Query User{D3770A28-1BF3-428E-9804-D3515E89A9D5}C:\users\luke\appdata\roaming\bittorrent\bittorrent.exe] => (Allow) C:\users\luke\appdata\roaming\bittorrent\bittorrent.exe
FirewallRules: [{7B3F1D49-5CA4-43EB-A95D-D1C28862D36F}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Farming Simulator 17\x64\FarmingSimulator2017Game.exe
FirewallRules: [{64B2480E-5DB0-4096-92DB-F7BAF9336E8E}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Farming Simulator 17\x64\FarmingSimulator2017Game.exe
FirewallRules: [{C298260D-EECA-4A7D-8051-61759AA30FF5}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Farming Simulator 17\x86\FarmingSimulator2017Game.exe
FirewallRules: [{24DA5B11-482C-4C5F-A77A-809DC764D4D8}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Farming Simulator 17\x86\FarmingSimulator2017Game.exe
FirewallRules: [TCP Query User{B9B414B2-2EEE-4790-8102-C1AE404DD983}C:\program files\factorio\bin\x64\factorio.exe] => (Block) C:\program files\factorio\bin\x64\factorio.exe
FirewallRules: [UDP Query User{F8D95831-426A-40AF-8E99-EA2F6AA96CC5}C:\program files\factorio\bin\x64\factorio.exe] => (Block) C:\program files\factorio\bin\x64\factorio.exe
FirewallRules: [{3BA69A6B-D4FE-4C38-B26B-57CAC87F4BD2}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{C7CEC2EA-F235-4626-8066-6AA925B9391E}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{985B1C92-FF99-4246-ACF6-919106F27FC5}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{C3E5E4E5-E5D2-4290-9D12-618B347774CA}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [TCP Query User{B517D863-5F23-4FA4-9526-6510D87681D2}C:\program files\cloud imperium games\patcher\cigpatcher.exe] => (Allow) C:\program files\cloud imperium games\patcher\cigpatcher.exe
FirewallRules: [UDP Query User{08DB2C47-43CD-40D7-81EB-F117E228995F}C:\program files\cloud imperium games\patcher\cigpatcher.exe] => (Allow) C:\program files\cloud imperium games\patcher\cigpatcher.exe
FirewallRules: [TCP Query User{15C6A588-36D7-4AB8-ADCE-4A9C66E9CCDB}C:\program files\cloud imperium games\starcitizen\public\bin64\starcitizen.exe] => (Allow) C:\program files\cloud imperium games\starcitizen\public\bin64\starcitizen.exe
FirewallRules: [UDP Query User{DA02DE5C-5254-4393-B496-BB63FDFB170A}C:\program files\cloud imperium games\starcitizen\public\bin64\starcitizen.exe] => (Allow) C:\program files\cloud imperium games\starcitizen\public\bin64\starcitizen.exe
FirewallRules: [TCP Query User{9EC93011-1AA6-4039-9AC4-9325F697AB23}C:\program files (x86)\knight\total war attila age of charlemagne\attila.exe] => (Block) C:\program files (x86)\knight\total war attila age of charlemagne\attila.exe
FirewallRules: [UDP Query User{7324CB05-97FF-4D33-9E27-3B4A59B47C57}C:\program files (x86)\knight\total war attila age of charlemagne\attila.exe] => (Block) C:\program files (x86)\knight\total war attila age of charlemagne\attila.exe
FirewallRules: [{1ED82982-0053-4F57-A15D-F13C07E4235B}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Verdun\Verdun.exe
FirewallRules: [{5989452C-9DB8-4AB3-8E33-21C6A0A9887D}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Verdun\Verdun.exe
FirewallRules: [TCP Query User{6DB3A178-C97F-4294-8931-EB1F9A8FD8A2}B:\steam\steamapps\common\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) B:\steam\steamapps\common\steam\steamapps\common\war thunder\win64\aces.exe
FirewallRules: [UDP Query User{E63DD65F-369E-4B73-8E51-1504BB3218CB}B:\steam\steamapps\common\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) B:\steam\steamapps\common\steam\steamapps\common\war thunder\win64\aces.exe
FirewallRules: [TCP Query User{C31C9048-6084-4810-B9DD-89C43700E170}C:\programdata\ccp\eve\sharedcache\sisi\bin\exefile.exe] => (Allow) C:\programdata\ccp\eve\sharedcache\sisi\bin\exefile.exe
FirewallRules: [UDP Query User{3520D456-AC4B-4B33-BF8E-A3ECB1691978}C:\programdata\ccp\eve\sharedcache\sisi\bin\exefile.exe] => (Allow) C:\programdata\ccp\eve\sharedcache\sisi\bin\exefile.exe
FirewallRules: [{ABFE9229-B689-41D3-A6F9-9F25804A4F0B}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Star Wars Battlefront II\GameData\BattlefrontII.exe
FirewallRules: [{30ACC06D-6901-4321-A993-40ECEF6BD444}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Star Wars Battlefront II\GameData\BattlefrontII.exe
FirewallRules: [{F6A7D0D1-BFF5-4859-8D10-B111DE4698AC}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{722DB262-3D1B-4D5E-8BBD-41ADD0B3BFA0}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{D8C3C084-7381-4B1E-93EE-5A027938FE80}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{ECB068D3-5E2C-464D-BBF2-90173DB4C32E}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{89052051-7FA5-47AF-9627-065CD30032D3}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Game Dev Tycoon\nw.exe
FirewallRules: [{83BB8872-8364-4DD1-9AB8-7EFA41581A47}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Game Dev Tycoon\nw.exe
FirewallRules: [TCP Query User{B60F5FE7-E9D3-4101-8592-A7B23F130873}B:\program files (x86)\thehunter call of the wild\thehuntercotw_f.exe] => (Allow) B:\program files (x86)\thehunter call of the wild\thehuntercotw_f.exe
FirewallRules: [UDP Query User{C44C49CA-E63A-4122-B58E-CE71DD3113EB}B:\program files (x86)\thehunter call of the wild\thehuntercotw_f.exe] => (Allow) B:\program files (x86)\thehunter call of the wild\thehuntercotw_f.exe
FirewallRules: [{E89C0B1A-98F0-422D-A12A-7E9D78DF26AE}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Planet Coaster\PlanetCoaster.exe
FirewallRules: [{72687A79-7B05-418F-A575-C74F069F9D95}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Planet Coaster\PlanetCoaster.exe
FirewallRules: [{CDBD17B5-1982-46D6-8082-4A2401C8A9F5}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\SirYouAreBeingHunted\launcher\sir.exe
FirewallRules: [{262F5168-D5B6-4B20-9AF7-11D6E9390585}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\SirYouAreBeingHunted\launcher\sir.exe
FirewallRules: [{BBF190DB-35DD-4601-882E-C8483B66B8D5}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{C7544147-6DF1-4B86-8C0E-2422730D7E3D}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [TCP Query User{A9947D33-86B9-4D02-B9C5-E51245EB7ADD}C:\users\luke\appdata\local\temp\rar$exa0.988\northgard.v0.2.4995\northgard.exe] => (Block) C:\users\luke\appdata\local\temp\rar$exa0.988\northgard.v0.2.4995\northgard.exe
FirewallRules: [UDP Query User{55DA3784-2EBF-4918-B173-3D35210CEE50}C:\users\luke\appdata\local\temp\rar$exa0.988\northgard.v0.2.4995\northgard.exe] => (Block) C:\users\luke\appdata\local\temp\rar$exa0.988\northgard.v0.2.4995\northgard.exe
FirewallRules: [TCP Query User{928F8BA4-9BCD-41D7-A93A-F10AE0188D41}C:\users\luke\appdata\local\temp\rar$exa0.832\northgard.v0.2.4995\northgard.exe] => (Allow) C:\users\luke\appdata\local\temp\rar$exa0.832\northgard.v0.2.4995\northgard.exe
FirewallRules: [UDP Query User{84278228-CFB5-456D-8EA3-6C7E43520F92}C:\users\luke\appdata\local\temp\rar$exa0.832\northgard.v0.2.4995\northgard.exe] => (Allow) C:\users\luke\appdata\local\temp\rar$exa0.832\northgard.v0.2.4995\northgard.exe
FirewallRules: [TCP Query User{FCBE6C6E-CD21-4760-8C35-830496A389F9}C:\users\luke\desktop\new folder\northgard.exe] => (Allow) C:\users\luke\desktop\new folder\northgard.exe
FirewallRules: [UDP Query User{DA09EB23-64C6-43A7-A7F7-B8914108EB80}C:\users\luke\desktop\new folder\northgard.exe] => (Allow) C:\users\luke\desktop\new folder\northgard.exe
FirewallRules: [TCP Query User{B68C0B7D-8F23-403C-88C9-56DD83F34C2F}C:\program files (x86)\gp bikes\core.exe] => (Allow) C:\program files (x86)\gp bikes\core.exe
FirewallRules: [UDP Query User{985CB2CD-6208-48A4-B2BD-DC4364729D76}C:\program files (x86)\gp bikes\core.exe] => (Allow) C:\program files (x86)\gp bikes\core.exe
FirewallRules: [TCP Query User{E782F01B-610E-4E9A-8FDE-1C9278CC05EA}B:\steam\steamapps\common\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) B:\steam\steamapps\common\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe
FirewallRules: [UDP Query User{49A554F8-63A8-48B1-953E-D7EA486A94E0}B:\steam\steamapps\common\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) B:\steam\steamapps\common\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe
FirewallRules: [{0DD8F6E5-9E43-469B-BF85-DD8AEBE689D6}] => (Allow) B:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe
FirewallRules: [{AA44ABAF-D623-4194-B2D2-BDAAF0EF7175}] => (Allow) B:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe
FirewallRules: [{BA7C0D89-4069-475A-A863-433052927A16}] => (Allow) B:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe
FirewallRules: [{6EE6D913-7149-4EC8-97C7-4332A658E162}] => (Allow) B:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe
FirewallRules: [{60EE1B68-2F20-4F94-A229-58CB55DBE91A}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Factorio\bin\x64\factorio.exe
FirewallRules: [{3C459704-12A5-4E69-BEAB-23122810E95D}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Factorio\bin\x64\factorio.exe
FirewallRules: [{14A85310-4DA0-4734-8799-9B5FD9BEE0CC}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Guns of Icarus Online\workshop\Workshop.exe
FirewallRules: [{ADEC3911-3025-4B0E-AF18-2F71D02A6687}] => (Allow) B:\Steam\steamapps\common\Steam\steamapps\common\Guns of Icarus Online\workshop\Workshop.exe
FirewallRules: [{F64615FD-1828-42F7-BDD5-E74D40F3AE0B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{3E02BEC3-B191-418D-A11F-85F914983781}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{F269620C-5C5E-40B8-85D0-B01677439A8B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe

==================== Restore Points =========================

12-08-2017 00:50:04 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
12-08-2017 00:50:47 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
15-08-2017 16:51:29 Windows Update

==================== Faulty Device Manager Devices =============

Name: Universal Serial Bus (USB) Controller
Description: Universal Serial Bus (USB) Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (08/17/2017 07:09:45 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (08/17/2017 06:58:36 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (08/16/2017 10:53:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: steamwebhelper.exe, version: 4.5.78.60, time stamp: 0x596d4539
Faulting module name: steamwebhelper.exe, version: 4.5.78.60, time stamp: 0x596d4539
Exception code: 0xc0000005
Fault offset: 0x0005e3ae
Faulting process id: 0xf1c
Faulting application start time: 0x01d3168e8dd974d0
Faulting application path: B:\Steam\steamapps\common\Steam\bin\cef\cef.win7\steamwebhelper.exe
Faulting module path: B:\Steam\steamapps\common\Steam\bin\cef\cef.win7\steamwebhelper.exe
Report Id: 66a35964-82cd-11e7-b9e7-94de8078cf80

Error: (08/16/2017 01:51:38 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (08/15/2017 04:46:54 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (08/14/2017 07:20:36 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program KSP_x64.exe version 5.4.0.23386 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 12c8

Start Time: 01d31520c218f10d

Termination Time: 8168

Application Path: B:\Steam\steamapps\common\Steam\steamapps\common\Kerbal Space Program\KSP_x64.exe

Report Id: 36218585-811d-11e7-963a-94de8078cf80

Error: (08/14/2017 04:39:55 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (08/13/2017 11:11:37 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program KSP_x64.exe version 5.4.0.23386 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1364

Start Time: 01d31451538037a9

Termination Time: 18928

Application Path: B:\Steam\steamapps\common\Steam\steamapps\common\Kerbal Space Program\KSP_x64.exe

Report Id: 44ba5368-8074-11e7-9b7d-94de8078cf80

Error: (08/13/2017 02:32:53 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program KSP_x64.exe version 5.4.0.23386 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 978

Start Time: 01d314274c7ff3a4

Termination Time: 14016

Application Path: B:\Steam\steamapps\common\Steam\steamapps\common\Kerbal Space Program\KSP_x64.exe

Report Id: d711b466-802b-11e7-9b7d-94de8078cf80

Error: (08/13/2017 10:54:51 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.


System errors:
=============
Error: (08/17/2017 07:09:42 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Origin Web Helper Service service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.

Error: (08/17/2017 07:09:42 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Origin Web Helper Service service to connect.

Error: (08/17/2017 06:58:25 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Origin Web Helper Service service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.

Error: (08/17/2017 06:58:25 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Origin Web Helper Service service to connect.

Error: (08/16/2017 01:51:37 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Origin Web Helper Service service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.

Error: (08/16/2017 01:51:37 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Origin Web Helper Service service to connect.

Error: (08/15/2017 04:46:54 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Origin Web Helper Service service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.

Error: (08/15/2017 04:46:54 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Origin Web Helper Service service to connect.

Error: (08/14/2017 04:39:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Origin Web Helper Service service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.

Error: (08/14/2017 04:39:40 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Origin Web Helper Service service to connect.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-4670K CPU @ 3.40GHz
Percentage of memory in use: 39%
Total physical RAM: 8080.02 MB
Available physical RAM: 4907.83 MB
Total Virtual: 16158.23 MB
Available Virtual: 12457.33 MB

==================== Drives ================================

Drive b: (New Volume) (Fixed) (Total:931.39 GB) (Free:47.34 GB) NTFS
Drive c: () (Fixed) (Total:930.73 GB) (Free:554.19 GB) NTFS
Drive f: (System Reserved) (Fixed) (Total:0.34 GB) (Free:0.3 GB) NTFS ==>[system with boot components (obtained from drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 3D8D7EE7)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=930.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)

========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 6ACDDE16)

Partition: GPT.

==================== End of Addition.txt ============================


Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-08-2017
Ran by Luke (administrator) on LUKE-PC (17-08-2017 07:39:35)
Running from C:\Users\Luke\Downloads
Loaded Profiles: Luke (Available Profiles: Luke)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser not detected!)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(Amazon Inc.) C:\Program Files (x86)\Amazon\Amazon1ButtonApp\Amazon1ButtonService64.Exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Valve Corporation) B:\Steam\steamapps\common\Steam\Steam.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Gaijin Entertainment) C:\Users\Luke\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe
(Wargaming.net) C:\Games\World_of_Warships\WargamingGameUpdater.exe
(MagicISO, Inc.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Valve Corporation) B:\Steam\steamapps\common\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Power Software Ltd) C:\Program Files\PowerISO\PWRISOVM.EXE
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Windows\System32\PnkBstrA.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Valve Corporation) B:\Steam\steamapps\common\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [15853176 2016-08-03] (Logitech Inc.)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [LifeCam] => C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe [135536 2010-12-13] (Microsoft Corporation)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [454792 2016-05-25] (Power Software Ltd)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596640 2016-08-04] (Razer Inc.)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5885352 2017-06-29] (LogMeIn Inc.)
HKU\S-1-5-21-986456637-423433477-1633228096-1000\...\Run: [Steam] => "B:\Steam\steamapps\common\Steam\steam.exe" -silent
HKU\S-1-5-21-986456637-423433477-1633228096-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-986456637-423433477-1633228096-1000\...\Run: [Gaijin.Net Agent] => C:\Users\Luke\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2010056 2017-06-27] (Gaijin Entertainment)
HKU\S-1-5-21-986456637-423433477-1633228096-1000\...\Run: [World of Warships] => C:\Games\World_of_Warships\WargamingGameUpdater.exe [3136264 2017-08-07] (Wargaming.net)
HKU\S-1-5-21-986456637-423433477-1633228096-1000\...\Run: [Luke] => explorer.exe hxxp://sd-steam.info <==== ATTENTION
HKU\S-1-5-21-986456637-423433477-1633228096-1000\...\MountPoints2: E - E:\setup.exe
Startup: C:\Users\Luke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk [2017-01-03]
ShortcutTarget: MagicDisc.lnk -> C:\Program Files (x86)\MagicDisc\MagicDisc.exe (MagicISO, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\..\Interfaces\{9B59A972-0FB7-4BFA-8447-B662CBE01B15}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-07-10] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-07-10] (Oracle Corporation)

FireFox:
========
FF DefaultProfile: 4c2fdvnh.default
FF ProfilePath: C:\Users\Luke\AppData\Roaming\Mozilla\Firefox\Profiles\4c2fdvnh.default [2017-08-17]
FF Homepage: Mozilla\Firefox\Profiles\4c2fdvnh.default -> about:home
FF Extension: (MEGA) - C:\Users\Luke\AppData\Roaming\Mozilla\Firefox\Profiles\4c2fdvnh.default\Extensions\firefox@mega.co.nz.xpi [2017-08-14]
FF Extension: (Adblock Plus) - C:\Users\Luke\AppData\Roaming\Mozilla\Firefox\Profiles\4c2fdvnh.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-06-08]
FF Extension: (Click-to-Play staged rollout) - C:\Program Files\Mozilla Firefox\browser\features\clicktoplay-rollout@mozilla.org.xpi [2017-08-15] [not signed]
FF Extension: (Follow-on Search Telemetry) - C:\Program Files\Mozilla Firefox\browser\features\followonsearch@mozilla.com.xpi [2017-08-15] [not signed]
FF Extension: (Shield Recipe Client) - C:\Program Files\Mozilla Firefox\browser\features\shield-recipe-client@mozilla.org.xpi [2017-08-15] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_26_0_0_151.dll [2017-08-09] ()
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_26_0_0_151.dll [2017-08-09] ()
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-07-10] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-07-10] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-06-08] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-06-08] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)

Chrome:
=======
CHR Profile: C:\Users\Luke\AppData\Local\Google\Chrome\User Data\Default [2016-06-13]
CHR Extension: (Google Slides) - C:\Users\Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-12-04]
CHR Extension: (Google Docs) - C:\Users\Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-12-04]
CHR Extension: (Google Drive) - C:\Users\Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-04]
CHR Extension: (YouTube) - C:\Users\Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-04]
CHR Extension: (Google Search) - C:\Users\Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-04]
CHR Extension: (Google Sheets) - C:\Users\Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-12-04]
CHR Extension: (Google Docs Offline) - C:\Users\Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-12-04]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-12-04]
CHR Extension: (Gmail) - C:\Users\Luke\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-04]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Amazon 1Button App Service; C:\Program Files (x86)\Amazon\Amazon1ButtonApp\Amazon1ButtonService64.Exe [436032 2016-02-17] (Amazon Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1522184 2017-07-31] ()
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3418024 2017-06-29] (LogMeIn Inc.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [355232 2015-08-09] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc.)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [193656 2016-08-03] (Logitech Inc.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-05-03] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-05-03] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-06-08] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [449984 2017-06-08] (NVIDIA Corporation)
S3 Origin Client Service; B:\Origin\OriginClientService.exe [2168672 2017-08-12] (Electronic Arts)
S2 Origin Web Helper Service; B:\Origin\OriginWebHelperService.exe [3148128 2017-08-12] (Electronic Arts)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2016-07-22] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [66872 2016-06-18] ()
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1269824 2017-06-21] (Bitdefender)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [188072 2015-11-05] ()
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [818672 2016-05-11] (Tunngle.net GmbH)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [655552 2015-07-14] (Wacom Technology, Corp.)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech)
S3 LGJoyHidFilter; C:\Windows\System32\drivers\LGJoyHidFilter.sys [74920 2016-04-19] (Logitech Inc.)
S3 LGJoyHidLo; C:\Windows\System32\drivers\LGJoyHidLo.sys [64176 2016-04-19] (Logitech Inc.)
R3 LGJoyXlCore; C:\Windows\System32\drivers\LGJoyXlCore.sys [85160 2016-04-19] (Logitech Inc.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30328 2017-05-03] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [48248 2017-05-03] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [76840 2017-04-01] (NVIDIA Corporation)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [27520 2007-05-14] (Research In Motion Limited)
R3 rzendpt; C:\Windows\System32\DRIVERS\rzendpt.sys [50392 2015-08-13] (Razer Inc)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-09-22] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [130880 2015-12-14] (Razer, Inc.)
R3 rzvkeyboard; C:\Windows\System32\DRIVERS\rzvkeyboard.sys [44232 2015-08-13] (Razer Inc)
R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [39464 2016-04-27] (Tunngle.net GmbH)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-08-17 07:39 - 2017-08-17 07:40 - 000016730 _____ C:\Users\Luke\Downloads\FRST.txt
2017-08-17 07:38 - 2017-08-17 07:39 - 000000000 ____D C:\FRST
2017-08-17 07:37 - 2017-08-17 07:37 - 002395648 _____ (Farbar) C:\Users\Luke\Downloads\FRST64.exe
2017-08-17 07:21 - 2017-08-17 07:21 - 000000000 ____D C:\ProgramData\Bitdefender
2017-08-17 07:20 - 2017-08-17 07:20 - 000000000 ____D C:\Users\Luke\AppData\Roaming\QuickScan
2017-08-17 07:19 - 2017-08-17 07:24 - 000000000 ____D C:\Program Files\Bitdefender Antivirus Free
2017-08-17 07:19 - 2017-08-17 07:19 - 000003648 _____ C:\Windows\System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
2017-08-17 07:17 - 2017-08-17 07:22 - 000000000 ____D C:\Program Files\Bitdefender Agent
2017-08-17 07:17 - 2017-08-17 07:17 - 009932672 _____ C:\Users\Luke\Downloads\bitdefender_online.exe
2017-08-17 07:17 - 2017-08-17 07:17 - 000048734 _____ C:\ProgramData\agent.1502950645.bdinstall.bin
2017-08-17 07:17 - 2017-08-17 07:17 - 000000000 ____D C:\ProgramData\Bitdefender Agent
2017-08-17 07:15 - 2017-08-17 07:15 - 000000936 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-08-17 07:15 - 2017-08-17 07:15 - 000000924 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-08-17 07:14 - 2017-08-17 07:15 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-08-17 07:14 - 2017-08-17 07:15 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-08-09 16:09 - 2017-07-29 15:56 - 000117248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2017-08-09 16:09 - 2017-07-21 15:26 - 000518144 _____ C:\Windows\SysWOW64\msjetoledb40.dll
2017-08-09 16:09 - 2017-07-21 15:26 - 000409600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexch40.dll
2017-08-09 16:09 - 2017-07-21 15:26 - 000290816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjtes40.dll
2017-08-09 16:09 - 2017-07-21 15:26 - 000282624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstext40.dll
2017-08-09 16:09 - 2017-07-15 19:35 - 000394448 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-08-09 16:09 - 2017-07-15 18:52 - 000346320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2017-08-09 16:09 - 2017-07-14 16:29 - 002319872 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2017-08-09 16:09 - 2017-07-14 16:29 - 002222080 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2017-08-09 16:09 - 2017-07-14 16:29 - 002058240 _____ (Microsoft Corporation) C:\Windows\system32\Query.dll
2017-08-09 16:09 - 2017-07-14 16:29 - 000778240 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2017-08-09 16:09 - 2017-07-14 16:29 - 000491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2017-08-09 16:09 - 2017-07-14 16:29 - 000486400 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2017-08-09 16:09 - 2017-07-14 16:29 - 000288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2017-08-09 16:09 - 2017-07-14 16:29 - 000115200 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2017-08-09 16:09 - 2017-07-14 16:29 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2017-08-09 16:09 - 2017-07-14 16:29 - 000075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2017-08-09 16:09 - 2017-07-14 16:29 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2017-08-09 16:09 - 2017-07-14 16:29 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2017-08-09 16:09 - 2017-07-14 16:12 - 000591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2017-08-09 16:09 - 2017-07-14 16:12 - 000249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2017-08-09 16:09 - 2017-07-14 16:11 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2017-08-09 16:09 - 2017-07-14 16:10 - 001549824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2017-08-09 16:09 - 2017-07-14 16:10 - 001400320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2017-08-09 16:09 - 2017-07-14 16:10 - 001363968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Query.dll
2017-08-09 16:09 - 2017-07-14 16:10 - 000666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2017-08-09 16:09 - 2017-07-14 16:10 - 000382976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2017-08-09 16:09 - 2017-07-14 16:10 - 000337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2017-08-09 16:09 - 2017-07-14 16:10 - 000197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2017-08-09 16:09 - 2017-07-14 16:10 - 000104448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2017-08-09 16:09 - 2017-07-14 16:10 - 000059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2017-08-09 16:09 - 2017-07-14 16:10 - 000034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2017-08-09 16:09 - 2017-07-14 16:00 - 000427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2017-08-09 16:09 - 2017-07-14 16:00 - 000164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2017-08-09 16:09 - 2017-07-14 15:59 - 000086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2017-08-09 16:09 - 2017-07-14 15:59 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msshooks.dll
2017-08-09 16:09 - 2017-07-14 15:57 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2017-08-09 16:09 - 2017-07-14 15:50 - 000054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2017-08-09 16:09 - 2017-07-14 15:50 - 000028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
2017-08-09 16:09 - 2017-07-14 08:16 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2017-08-09 16:09 - 2017-07-14 08:15 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2017-08-09 16:09 - 2017-07-14 07:49 - 025733632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-08-09 16:09 - 2017-07-14 07:47 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2017-08-09 16:09 - 2017-07-14 07:45 - 000417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2017-08-09 16:09 - 2017-07-14 07:45 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2017-08-09 16:09 - 2017-07-14 07:44 - 000576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-08-09 16:09 - 2017-07-14 07:44 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2017-08-09 16:09 - 2017-07-14 07:38 - 002899456 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-08-09 16:09 - 2017-07-14 07:29 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2017-08-09 16:09 - 2017-07-14 07:28 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2017-08-09 16:09 - 2017-07-14 07:22 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2017-08-09 16:09 - 2017-07-14 07:20 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2017-08-09 16:09 - 2017-07-14 07:20 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2017-08-09 16:09 - 2017-07-14 07:19 - 000817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-08-09 16:09 - 2017-07-14 07:19 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-08-09 16:09 - 2017-07-14 07:08 - 000968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2017-08-09 16:09 - 2017-07-14 07:02 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2017-08-09 16:09 - 2017-07-14 06:49 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-08-09 16:09 - 2017-07-14 06:48 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2017-08-09 16:09 - 2017-07-14 06:47 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2017-08-09 16:09 - 2017-07-14 06:42 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2017-08-09 16:09 - 2017-07-14 06:40 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-08-09 16:09 - 2017-07-14 06:35 - 005981184 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-08-09 16:09 - 2017-07-14 06:35 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-08-09 16:09 - 2017-07-14 06:33 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2017-08-09 16:09 - 2017-07-14 06:16 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-08-09 16:09 - 2017-07-14 06:11 - 000725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-08-09 16:09 - 2017-07-14 06:10 - 000806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-08-09 16:09 - 2017-07-14 06:09 - 002132992 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-08-09 16:09 - 2017-07-14 06:09 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2017-08-09 16:09 - 2017-07-14 05:40 - 015254016 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-08-09 16:09 - 2017-07-14 05:23 - 003240960 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-08-09 16:09 - 2017-07-14 05:07 - 001545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-08-09 16:09 - 2017-07-14 04:58 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-08-09 16:09 - 2017-07-14 04:01 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2017-08-09 16:09 - 2017-07-14 03:54 - 020270080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-08-09 16:09 - 2017-07-14 03:48 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-08-09 16:09 - 2017-07-14 03:48 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2017-08-09 16:09 - 2017-07-14 03:48 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2017-08-09 16:09 - 2017-07-14 03:48 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2017-08-09 16:09 - 2017-07-14 03:47 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2017-08-09 16:09 - 2017-07-14 03:44 - 002290176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-08-09 16:09 - 2017-07-14 03:42 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2017-08-09 16:09 - 2017-07-14 03:41 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2017-08-09 16:09 - 2017-07-14 03:39 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2017-08-09 16:09 - 2017-07-14 03:38 - 000663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-08-09 16:09 - 2017-07-14 03:38 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2017-08-09 16:09 - 2017-07-14 03:38 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2017-08-09 16:09 - 2017-07-14 03:30 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2017-08-09 16:09 - 2017-07-14 03:26 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2017-08-09 16:09 - 2017-07-14 03:25 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2017-08-09 16:09 - 2017-07-14 03:25 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2017-08-09 16:09 - 2017-07-14 03:23 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2017-08-09 16:09 - 2017-07-14 03:22 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2017-08-09 16:09 - 2017-07-14 03:21 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2017-08-09 16:09 - 2017-07-14 03:20 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2017-08-09 16:09 - 2017-07-14 03:17 - 004546048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-08-09 16:09 - 2017-07-14 03:13 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2017-08-09 16:09 - 2017-07-14 03:12 - 000693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-08-09 16:09 - 2017-07-14 03:11 - 002057216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-08-09 16:09 - 2017-07-14 03:11 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2017-08-09 16:09 - 2017-07-14 03:09 - 013663744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-08-09 16:09 - 2017-07-14 02:53 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-08-09 16:09 - 2017-07-14 02:50 - 001314816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-08-09 16:09 - 2017-07-14 02:48 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2017-08-09 16:09 - 2017-07-08 16:34 - 000370920 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2017-08-09 16:09 - 2017-07-08 16:00 - 003224064 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-08-09 16:09 - 2017-07-07 16:37 - 000631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2017-08-09 16:09 - 2017-07-07 16:33 - 005547752 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-08-09 16:09 - 2017-07-07 16:33 - 000706792 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2017-08-09 16:09 - 2017-07-07 16:33 - 000363752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgrx.sys
2017-08-09 16:09 - 2017-07-07 16:33 - 000154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-08-09 16:09 - 2017-07-07 16:33 - 000095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-08-09 16:09 - 2017-07-07 16:31 - 001732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 001460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 001212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 001163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000731648 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000149504 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:15 - 004001000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2017-08-09 16:09 - 2017-07-07 16:15 - 003945192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2017-08-09 16:09 - 2017-07-07 16:13 - 001314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2017-08-09 16:09 - 2017-07-07 16:11 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2017-08-09 16:09 - 2017-07-07 16:11 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2017-08-09 16:09 - 2017-07-07 16:11 - 000275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2017-08-09 16:09 - 2017-07-07 16:11 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-08-09 16:09 - 2017-07-07 16:11 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2017-08-09 16:09 - 2017-07-07 16:11 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2017-08-09 16:09 - 2017-07-07 16:11 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2017-08-09 16:09 - 2017-07-07 16:11 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2017-08-09 16:09 - 2017-07-07 16:11 - 000109568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2017-08-09 16:09 - 2017-07-07 16:11 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2017-08-09 16:09 - 2017-07-07 16:11 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2017-08-09 16:09 - 2017-07-07 16:11 - 000065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2017-08-09 16:09 - 2017-07-07 16:11 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2017-08-09 16:09 - 2017-07-07 16:11 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2017-08-09 16:09 - 2017-07-07 16:11 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2017-08-09 16:09 - 2017-07-07 16:10 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2017-08-09 16:09 - 2017-07-07 16:10 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2017-08-09 16:09 - 2017-07-07 16:10 - 000554496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2017-08-09 16:09 - 2017-07-07 16:10 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2017-08-09 16:09 - 2017-07-07 16:10 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2017-08-09 16:09 - 2017-07-07 16:10 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2017-08-09 16:09 - 2017-07-07 16:10 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2017-08-09 16:09 - 2017-07-07 16:10 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2017-08-09 16:09 - 2017-07-07 16:10 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2017-08-09 16:09 - 2017-07-07 16:10 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:10 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:10 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:10 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:10 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:10 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:10 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 16:02 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2017-08-09 16:09 - 2017-07-07 16:01 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2017-08-09 16:09 - 2017-07-07 16:01 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2017-08-09 16:09 - 2017-07-07 16:01 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2017-08-09 16:09 - 2017-07-07 15:58 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2017-08-09 16:09 - 2017-07-07 15:57 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2017-08-09 16:09 - 2017-07-07 15:54 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-08-09 16:09 - 2017-07-07 15:54 - 000159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-08-09 16:09 - 2017-07-07 15:54 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-08-09 16:09 - 2017-07-07 15:53 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2017-08-09 16:09 - 2017-07-07 15:53 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-08-09 16:09 - 2017-07-07 15:51 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2017-08-09 16:09 - 2017-07-07 15:48 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2017-08-09 16:09 - 2017-07-07 15:48 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2017-08-09 16:09 - 2017-07-07 15:48 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2017-08-09 16:09 - 2017-07-07 15:48 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2017-08-09 16:09 - 2017-07-07 15:47 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2017-08-09 16:09 - 2017-07-07 15:47 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 15:47 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 15:47 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-08-09 16:09 - 2017-07-07 15:47 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2017-08-09 16:09 - 2017-07-01 14:05 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2017-08-09 16:09 - 2017-07-01 14:05 - 000866816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswdat10.dll
2017-08-09 16:09 - 2017-07-01 14:05 - 000641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswstr10.dll
2017-08-09 16:09 - 2017-07-01 14:05 - 000616448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrepl40.dll
2017-08-09 16:09 - 2017-07-01 14:05 - 000475648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxbde40.dll
2017-08-09 16:09 - 2017-07-01 14:05 - 000375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspbde40.dll
2017-08-09 16:09 - 2017-07-01 14:05 - 000343552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2017-08-09 16:09 - 2017-07-01 14:05 - 000339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2017-08-09 16:09 - 2017-07-01 14:05 - 000310272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll
2017-08-09 16:09 - 2017-07-01 14:05 - 000240640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msltus40.dll
2017-08-09 16:09 - 2017-07-01 14:05 - 000144896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjint40.dll
2017-08-09 16:09 - 2017-07-01 14:05 - 000083968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjter40.dll
2017-08-09 15:59 - 2017-08-09 15:59 - 000000000 ____D C:\Users\Luke\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2017-07-31 23:49 - 2017-07-31 23:49 - 000000000 ____D C:\Users\Luke\AppData\Local\TslGame
2017-07-31 18:09 - 2017-07-31 18:09 - 000000000 ____D C:\Program Files (x86)\MSXML 4.0
2017-07-30 23:17 - 2017-07-30 23:19 - 000000000 ____D C:\Program Files (x86)\GP Bikes
2017-07-30 22:58 - 2017-07-30 23:12 - 271680791 _____ C:\Users\Luke\Downloads\gpbikes-beta11b.exe
2017-07-22 15:53 - 2015-02-20 04:26 - 002146304 _____ C:\Users\Luke\Desktop\ModManager.exe
2017-07-22 15:47 - 2017-07-22 15:47 - 000001009 _____ C:\Users\Luke\Desktop\XVI32.exe - Shortcut.lnk
2017-07-22 15:47 - 2017-07-22 15:47 - 000000000 ____D C:\Users\Luke\Desktop\Workshop editor
2017-07-22 15:42 - 2017-07-22 15:42 - 002259293 _____ C:\Users\Luke\Downloads\mods_animated_fight.pack
2017-07-21 23:17 - 2017-07-21 23:17 - 000000000 ____D C:\Users\Luke\AppData\Local\AbzuGame
2017-07-21 23:17 - 2017-07-21 23:17 - 000000000 ____D C:\ProgramData\ABZU
2017-07-21 23:16 - 2017-08-16 22:46 - 000000824 _____ C:\Users\Public\Desktop\ABZU.lnk
2017-07-21 23:16 - 2017-07-21 23:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ABZU
2017-07-21 23:14 - 2017-07-21 23:16 - 000000000 ____D C:\Program Files\ABZU
2017-07-21 23:02 - 2017-07-21 23:02 - 000003472 _____ C:\Windows\System32\Tasks\Luke
2017-07-20 21:20 - 2017-07-20 21:20 - 000632574 _____ C:\Users\Luke\Downloads\thehuntcall191promo-ch.zips
2017-07-19 20:59 - 2017-07-19 20:59 - 000000561 _____ C:\Users\Luke\Desktop\Northgard.exe - Shortcut.lnk
2017-07-19 20:59 - 2017-07-19 20:59 - 000000000 ____D C:\Users\Luke\Desktop\New folder
2017-07-19 18:30 - 2017-07-19 18:30 - 000000000 ____D C:\Users\Luke\AppData\Roaming\SmartSteamEmu
2017-07-18 16:41 - 2017-07-18 16:41 - 000000000 ____D C:\Users\Luke\AppData\Roaming\FiraxisLive

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-08-17 07:17 - 2009-07-14 05:45 - 000021888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-08-17 07:17 - 2009-07-14 05:45 - 000021888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-08-17 07:15 - 2016-11-16 14:12 - 000000000 ____D C:\Users\Luke\AppData\LocalLow\Mozilla
2017-08-17 07:15 - 2009-07-14 06:13 - 000781790 _____ C:\Windows\system32\PerfStringBackup.INI
2017-08-17 07:15 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2017-08-17 07:10 - 2015-10-22 19:30 - 000000000 __SHD C:\Users\Luke\IntelGraphicsProfiles
2017-08-17 07:10 - 2015-10-20 20:44 - 000000000 ____D C:\ProgramData\NVIDIA
2017-08-17 07:09 - 2016-03-25 12:52 - 000000000 ____D C:\Users\Luke\AppData\Local\LogMeIn Hamachi
2017-08-17 07:09 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-08-17 07:06 - 2016-02-19 16:55 - 000000000 ____D C:\Users\Luke\AppData\Local\Ubisoft Game Launcher
2017-08-16 22:54 - 2016-05-07 20:56 - 000000000 ____D C:\Users\Luke\AppData\Local\CrashDumps
2017-08-16 22:46 - 2017-05-12 22:25 - 000001924 _____ C:\Users\Public\Desktop\Factorio.lnk
2017-08-16 22:46 - 2017-03-18 21:28 - 000000955 _____ C:\Users\Luke\Desktop\Star Citizen Launcher.lnk
2017-08-15 00:55 - 2015-10-22 20:29 - 000000000 ____D C:\Users\Luke\AppData\Roaming\TS3Client
2017-08-14 19:42 - 2015-10-20 20:43 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2017-08-13 16:28 - 2017-03-18 21:28 - 000000000 ____D C:\Program Files\Cloud Imperium Games
2017-08-13 14:38 - 2015-10-23 19:50 - 000000000 ____D C:\Users\Luke\AppData\Roaming\Origin
2017-08-13 14:37 - 2015-10-23 19:48 - 000000000 ____D C:\ProgramData\Origin
2017-08-11 22:23 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\rescache
2017-08-10 16:20 - 2009-07-14 05:45 - 005031952 _____ C:\Windows\system32\FNTCACHE.DAT
2017-08-10 00:57 - 2015-10-20 21:22 - 000000000 ____D C:\Windows\system32\MRT
2017-08-10 00:54 - 2015-10-20 21:22 - 140394280 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-08-09 16:07 - 2015-10-24 15:20 - 000004312 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-08-09 16:07 - 2015-10-24 15:19 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-08-09 16:07 - 2015-10-24 15:19 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-08-09 16:07 - 2015-10-24 15:19 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2017-08-09 16:07 - 2015-10-24 15:19 - 000000000 ____D C:\Windows\system32\Macromed
2017-08-09 15:59 - 2016-08-20 14:16 - 000000000 ____D C:\Users\Luke\AppData\Roaming\discord
2017-08-09 15:59 - 2016-04-20 19:11 - 000002117 _____ C:\Users\Luke\Desktop\Discord.lnk
2017-08-09 15:59 - 2016-04-20 19:11 - 000000000 ____D C:\Users\Luke\AppData\Local\Discord
2017-08-08 19:10 - 2015-10-22 20:29 - 000000000 ____D C:\Program Files (x86)\TeamSpeak 3 Client
2017-08-05 21:43 - 2015-11-10 21:25 - 000000000 ____D C:\Users\Luke\AppData\Roaming\BitTorrent
2017-08-05 18:25 - 2015-11-10 21:26 - 000000000 ____D C:\Users\Luke\AppData\LocalLow\BitTorrent
2017-08-04 01:04 - 2017-01-02 20:34 - 000000000 ____D C:\Users\Luke\AppData\Roaming\The Creative Assembly
2017-08-03 23:28 - 2016-06-17 13:44 - 000000000 ____D C:\Users\Luke\AppData\Local\PackFileManager
2017-08-03 15:03 - 2015-11-19 18:43 - 000000000 ____D C:\Users\Luke\AppData\Local\NVIDIA Corporation
2017-07-31 23:49 - 2016-01-23 02:13 - 000000000 ____D C:\Users\Luke\AppData\Local\UnrealEngine
2017-07-31 14:47 - 2015-10-22 20:17 - 000000000 ____D C:\Users\Luke\AppData\Local\Steam
2017-07-30 23:18 - 2017-02-19 01:15 - 000466456 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll
2017-07-30 23:18 - 2017-02-19 01:15 - 000444952 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll
2017-07-30 23:18 - 2017-02-19 01:15 - 000122904 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\OpenAL32.dll
2017-07-30 23:18 - 2017-02-19 01:15 - 000109080 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\OpenAL32.dll
2017-07-30 23:18 - 2017-02-19 01:15 - 000000000 ____D C:\Program Files (x86)\OpenAL
2017-07-30 23:17 - 2017-02-19 01:13 - 000001919 _____ C:\Users\Luke\Desktop\GP Bikes.lnk
2017-07-22 18:24 - 2015-10-22 20:41 - 000000000 ____D C:\Users\Luke\AppData\Roaming\Skype
2017-07-18 16:40 - 2015-10-20 20:11 - 000000000 ____D C:\Users\Luke\Documents\My Games

==================== Files in the root of some directories =======

2016-02-13 02:05 - 2016-02-13 16:44 - 000000132 _____ () C:\Users\Luke\AppData\Roaming\Adobe Targa Format CS6 Prefs
2016-06-11 00:37 - 2017-05-20 02:53 - 000002690 _____ () C:\Users\Luke\AppData\Roaming\SpeedRunnersLog.txt
2016-08-17 00:05 - 2016-08-17 00:06 - 000000600 _____ () C:\Users\Luke\AppData\Local\PUTTY.RND
2017-08-17 07:17 - 2017-08-17 07:17 - 000048734 _____ () C:\ProgramData\agent.1502950645.bdinstall.bin

Some files in TEMP:
====================
2017-05-24 07:21 - 2017-05-24 07:21 - 000008720 _____ () C:\Users\Luke\AppData\Local\Temp\BullseyeCoverage-2-x86.dll
2012-06-12 00:00 - 2012-06-12 00:00 - 000094040 _____ (Microsoft Corporation) C:\Users\Luke\AppData\Local\Temp\DSETUP.dll
2012-06-12 00:00 - 2012-06-12 00:00 - 001691480 _____ (Microsoft Corporation) C:\Users\Luke\AppData\Local\Temp\dsetup32.dll
2012-06-12 00:00 - 2012-06-12 00:00 - 000525656 _____ (Microsoft Corporation) C:\Users\Luke\AppData\Local\Temp\DXSETUP.exe
2017-07-20 19:35 - 2017-07-20 19:35 - 000739904 _____ (Oracle Corporation) C:\Users\Luke\AppData\Local\Temp\jre-8u141-windows-au.exe
2015-10-20 20:44 - 2017-04-01 02:36 - 000754168 _____ (NVIDIA Corporation) C:\Users\Luke\AppData\Local\Temp\nvSCPAPI.dll
2015-11-19 18:43 - 2015-11-14 06:54 - 000835776 _____ (NVIDIA Corporation) C:\Users\Luke\AppData\Local\Temp\nvSCPAPI64.dll
2015-11-19 18:42 - 2017-04-01 02:36 - 000369208 _____ (NVIDIA Corporation) C:\Users\Luke\AppData\Local\Temp\nvStInst.exe
2016-10-20 23:05 - 2016-10-25 21:21 - 001137208 _____ (NVIDIA Corporation) C:\Users\Luke\AppData\Local\Temp\NvTelemetry.dll
2016-10-20 23:05 - 2017-01-06 02:10 - 000255032 _____ (NVIDIA Corporation) C:\Users\Luke\AppData\Local\Temp\NvTelemetryAPI32.dll
2016-10-20 23:05 - 2017-01-06 02:10 - 000335928 _____ (NVIDIA Corporation) C:\Users\Luke\AppData\Local\Temp\NvTelemetryAPI64.dll
2006-10-28 06:14 - 2006-10-28 06:14 - 000145184 ____R (Microsoft Corporation) C:\Users\Luke\AppData\Local\Temp\ose00000.exe
2016-05-16 15:04 - 2017-07-22 18:00 - 013468672 _____ () C:\Users\Luke\AppData\Local\Temp\SkypeSetup.exe
2011-11-03 15:13 - 2011-11-03 15:13 - 001786688 _____ () C:\Users\Luke\AppData\Local\Temp\sonarinst.exe
2017-03-10 22:28 - 2017-03-10 22:28 - 014456872 _____ (Microsoft Corporation) C:\Users\Luke\AppData\Local\Temp\vc_redist.x86.exe
2015-08-03 00:58 - 2015-08-03 00:58 - 000118784 _____ () C:\Users\Luke\AppData\Local\Temp\xmlUpdater.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-08-11 22:15

==================== End of FRST.txt ============================