API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jan 9th, 2016
392
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 94.93 KB | None | 0 0
raw download clone embed print report
  1. Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:07-01-2015
  2. Ran by white (administrator) on WHITE-PC (09-01-2016 19:00:25)
  3. Running from A:\Downloads
  4. Loaded Profiles: white (Available Profiles: white)
  5. Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States)
  6. Internet Explorer Version 9 (Default browser: "C:\Program Files\Waterfox\waterfox.exe" -osint -url "%1")
  7. Boot Mode: Normal
  8. Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
  9.  
  10. ==================== Processes (Whitelisted) =================
  11.  
  12. (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
  13.  
  14. (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
  15. (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
  16. (Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
  17. (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
  18. (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
  19. (ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
  20. (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
  21. (Hi-Rez Studios) A:\Spel\HiPatchService.exe
  22. (Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
  23. (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
  24. (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
  25. () C:\Windows\SysWOW64\PnkBstrA.exe
  26. () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
  27. (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
  28. (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
  29. (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
  30. (Beepa P/L) D:\Fraps\fraps.exe
  31. (ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
  32. (Nota Inc.) C:\Program Files (x86)\Gyazo\GyStation.exe
  33. (BitTorrent Inc.) C:\Users\white\AppData\Roaming\uTorrent\uTorrent.exe
  34. (Spotify Ltd) C:\Users\white\AppData\Roaming\Spotify\SpotifyWebHelper.exe
  35. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  36. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  37. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  38. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  39. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  40. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  41. (NVIDIA Corporation) C:\Users\white\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
  42. (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
  43. (BitTorrent Inc.) C:\Users\white\AppData\Roaming\uTorrent\updates\3.4.5_41372\utorrentie.exe
  44. (BitTorrent Inc.) C:\Users\white\AppData\Roaming\uTorrent\updates\3.4.5_41372\utorrentie.exe
  45. (Skype Technologies S.A.) A:\skype\Phone\Skype.exe
  46. (Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
  47. (Beepa P/L) D:\Fraps\fraps64.dat
  48. (Microsoft Corporation) C:\Windows\System32\wisptis.exe
  49. (Disc Soft Ltd) A:\DAEMON Tools Lite\DiscSoftBusService.exe
  50. (Piriform Ltd) A:\ccleaner\CCleaner64.exe
  51. (Valve Corporation) A:\Spel\Steam\Steam.exe
  52. (Valve Corporation) A:\Spel\Steam\bin\steamwebhelper.exe
  53. (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
  54. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  55. (Valve Corporation) A:\Spel\Steam\bin\steamwebhelper.exe
  56. (Valve Corporation) A:\Spel\Steam\bin\steamwebhelper.exe
  57.  
  58.  
  59. ==================== Registry (Whitelisted) ===========================
  60.  
  61. (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
  62.  
  63. HKLM\...\Run: [Nvtmru] => "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
  64. HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2771576 2015-12-09] (NVIDIA Corporation)
  65. HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
  66. HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5595848 2015-07-08] (ESET)
  67. HKLM-x32\...\Run: [] => [X]
  68. HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [592704 2015-09-29] (Razer Inc.)
  69. HKU\S-1-5-21-3218771887-588826068-1908295815-1000\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [2990304 2013-10-30] (Nota Inc.)
  70. HKU\S-1-5-21-3218771887-588826068-1908295815-1000\...\Run: [CCleaner Monitoring] => "A:\ccleaner\CCleaner64.exe" /MONITOR
  71. HKU\S-1-5-21-3218771887-588826068-1908295815-1000\...\Run: [uTorrent] => C:\Users\white\AppData\Roaming\uTorrent\uTorrent.exe [2026520 2015-12-03] (BitTorrent Inc.)
  72. HKU\S-1-5-21-3218771887-588826068-1908295815-1000\...\Run: [Spotify Web Helper] => C:\Users\white\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2346096 2015-12-24] (Spotify Ltd)
  73. HKU\S-1-5-21-3218771887-588826068-1908295815-1000\...\Run: [DAEMON Tools Lite Automount] => "A:\DAEMON Tools Lite\DTAgent.exe" -autorun
  74. HKU\S-1-5-21-3218771887-588826068-1908295815-1000\...\Run: [GoogleChromeAutoLaunch_B6D0DB56CE5AAB59590F37A745DCF721] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [741704 2015-12-11] (Google Inc.)
  75. HKU\S-1-5-21-3218771887-588826068-1908295815-1000\...\Run: [Skype] => "A:\skype\Phone\Skype.exe" /minimized /regrun
  76. HKU\S-1-5-21-3218771887-588826068-1908295815-1000\...\MountPoints2: {ef513bf3-893e-11e5-a35d-8c89a5c13dd1} - H:\setup.exe
  77. HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2013-12-29] (Microsoft Corporation)
  78.  
  79. ==================== Internet (Whitelisted) ====================
  80.  
  81. (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
  82.  
  83. Tcpip\Parameters: [DhcpNameServer] 81.26.226.3 81.26.228.3
  84. Tcpip\..\Interfaces\{08F7F551-BBE1-42FD-BD1B-17A8AC1350E3}: [NameServer] 8.8.8.8
  85. Tcpip\..\Interfaces\{08F7F551-BBE1-42FD-BD1B-17A8AC1350E3}: [DhcpNameServer] 81.26.226.3 81.26.228.3
  86.  
  87. Internet Explorer:
  88. ==================
  89. BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> A:\bin\ssv.dll [2014-05-18] (Oracle Corporation)
  90. BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> A:\bin\jp2ssv.dll [2014-05-18] (Oracle Corporation)
  91. Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
  92.  
  93. FireFox:
  94. ========
  95. FF ProfilePath: C:\Users\white\AppData\Roaming\Mozilla\Firefox\Profiles\662wjx75.default
  96. FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll [2015-12-28] ()
  97. FF Plugin: @esn/npbattlelog,version=2.7.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.0\npbattlelogx64.dll [2015-04-23] (EA Digital Illusions CE AB)
  98. FF Plugin: @java.com/DTPlugin,version=10.9.2 -> C:\Windows\system32\npDeployJava1.dll [2014-05-18] (Oracle Corporation)
  99. FF Plugin: @java.com/JavaPlugin,version=10.9.2 -> A:\bin\plugin2\npjp2.dll [2014-05-18] (Oracle Corporation)
  100. FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
  101. FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
  102. FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll [2015-12-28] ()
  103. FF Plugin-x32: @bankid.com/BankID säkerhetsprogram,version=6.0.1.5 -> C:\Program Files (x86)\BankID\npBispBrowser.dll [2014-05-12] (Finansiell ID-Teknik BID AB)
  104. FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [No File]
  105. FF Plugin-x32: @esn/npbattlelog,version=2.3.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll [No File]
  106. FF Plugin-x32: @esn/npbattlelog,version=2.7.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.0\npbattlelog.dll [2015-04-23] (EA Digital Illusions CE AB)
  107. FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
  108. FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
  109. FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-12-16] (NVIDIA Corporation)
  110. FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-12-16] (NVIDIA Corporation)
  111. FF Plugin-x32: @t.garena.com/garenatalk -> A:\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll [No File]
  112. FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
  113. FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
  114. FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
  115. FF Extension: Stylish - C:\Users\white\AppData\Roaming\Mozilla\Firefox\Profiles\662wjx75.default\extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi [2016-01-05]
  116. FF Extension: Adblock Plus - C:\Users\white\AppData\Roaming\Mozilla\Firefox\Profiles\662wjx75.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-01-05]
  117. FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird => not found
  118. FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird => not found
  119.  
  120. Chrome:
  121. =======
  122. CHR Profile: C:\Users\white\AppData\Local\Google\Chrome\User Data\Profile 1
  123. CHR Extension: (Google Presentationer) - C:\Users\white\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-04]
  124. CHR Extension: (Google Dokument) - C:\Users\white\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-04]
  125. CHR Extension: (Google Drive) - C:\Users\white\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
  126. CHR Extension: (YouTube) - C:\Users\white\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
  127. CHR Extension: (Ban Checker for Steam) - C:\Users\white\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\canbadmphamemnmdfngmcabnjmjgaiki [2015-06-07]
  128. CHR Extension: (Steam inventory helper) - C:\Users\white\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2016-01-02]
  129. CHR Extension: (Google Search) - C:\Users\white\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
  130. CHR Extension: (Google Kalkylark) - C:\Users\white\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-04]
  131. CHR Extension: (LoungeDestroyer) - C:\Users\white\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghahcnmfjfckcedfajbhekgknjdplfcl [2015-12-23]
  132. CHR Extension: (Google Dokument Offline) - C:\Users\white\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-18]
  133. CHR Extension: (AdBlock) - C:\Users\white\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-01-09]
  134. CHR Extension: (Tiësto) - C:\Users\white\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mnmeobddjkkgkglnogihcaejaleikhdh [2015-01-09]
  135. CHR Extension: (Betalning via Chrome Web Store) - C:\Users\white\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-26]
  136. CHR Extension: (Battlefield Play4Free) - C:\Users\white\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\oiokahphinmbmakkehgelkmpolmnbkdh [2015-01-11]
  137. CHR Extension: (Facebook Themes (Facebook Theme Gallery)) - C:\Users\white\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\phejagnmddcjhjblnacgmejghffmhjfp [2015-06-23]
  138. CHR Extension: (Gmail) - C:\Users\white\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
  139.  
  140. ==================== Services (Whitelisted) ========================
  141.  
  142. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  143.  
  144. S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [967040 2015-04-01] ()
  145. R3 Disc Soft Lite Bus Service; A:\DAEMON Tools Lite\DiscSoftBusService.exe [1268568 2015-06-18] (Disc Soft Ltd)
  146. S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [237352 2015-04-05] (EasyAntiCheat Ltd)
  147. R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1353720 2015-07-08] (ESET)
  148. R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1156216 2015-12-09] (NVIDIA Corporation)
  149. R2 HiPatchService; A:\Spel\HiPatchService.exe [9216 2015-03-12] (Hi-Rez Studios) [File not signed]
  150. R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-12-09] (NVIDIA Corporation)
  151. R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [8185464 2015-12-09] (NVIDIA Corporation)
  152. R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [6477432 2015-12-09] (NVIDIA Corporation)
  153. S3 Origin Client Service; A:\Origin\OriginClientService.exe [2104840 2015-12-23] (Electronic Arts)
  154. R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2014-07-08] ()
  155. R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2015-01-12] ()
  156. R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187048 2015-06-23] ()
  157. S2 SkypeUpdate; A:\skype\Updater\Updater.exe [327296 2015-07-09] (Skype Technologies)
  158. R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
  159.  
  160. ===================== Drivers (Whitelisted) ==========================
  161.  
  162. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  163.  
  164. R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2015-11-12] (Disc Soft Ltd)
  165. R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-01-14] (Disc Soft Ltd)
  166. R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [255240 2015-07-14] (ESET)
  167. S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
  168. U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [251632 2015-07-14] (ESET)
  169. R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [178520 2015-07-14] (ESET)
  170. R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [168208 2015-07-14] (ESET)
  171. R1 ESEADriver2; C:\Users\white\AppData\Local\Temp\ESEADriver2.sys [316768 2016-01-07] ()
  172. R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-12-09] (NVIDIA Corporation)
  173. R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
  174. S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [13536 2015-05-27] ()
  175. S3 rzdaendpt; C:\Windows\System32\DRIVERS\rzdaendpt.sys [43720 2015-08-13] (Razer Inc)
  176. R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-06-12] (Razer, Inc.)
  177. R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [129472 2015-06-27] (Razer, Inc.)
  178. S3 rzvkeyboard; C:\Windows\System32\DRIVERS\rzvkeyboard.sys [44232 2015-08-13] (Razer Inc)
  179. S3 ALSysIO; \??\C:\Users\white\AppData\Local\Temp\ALSysIO64.sys [X]
  180. S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
  181. S3 efavdrv; \??\C:\Windows\system32\drivers\efavdrv.sys [X]
  182. S3 GGSAFERDriver; \??\A:\Garena Plus\Room\safedrv.sys [X]
  183. S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
  184. S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
  185. S3 VGPU; System32\drivers\rdvgkmd.sys [X]
  186.  
  187. ==================== NetSvcs (Whitelisted) ===================
  188.  
  189. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  190.  
  191.  
  192. ==================== One Month Created files and folders ========
  193.  
  194. (If an entry is included in the fixlist, the file/folder will be moved.)
  195.  
  196. 2016-01-09 18:57 - 2016-01-09 18:57 - 00000000 ____D C:\Users\white\AppData\LocalLow\uTorrent
  197. 2016-01-09 09:21 - 2016-01-09 19:00 - 00000000 ____D C:\FRST
  198. 2016-01-09 01:47 - 2016-01-09 01:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
  199. 2016-01-07 00:26 - 2016-01-07 00:27 - 00407464 _____ C:\Windows\Minidump\010716-11310-01.dmp
  200. 2016-01-05 03:16 - 2016-01-05 03:16 - 00000894 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Waterfox.lnk
  201. 2016-01-05 03:16 - 2016-01-05 03:16 - 00000882 _____ C:\Users\Public\Desktop\Waterfox.lnk
  202. 2016-01-05 03:16 - 2016-01-05 03:16 - 00000000 ____D C:\Program Files\Waterfox
  203. 2016-01-04 20:29 - 2016-01-04 20:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
  204. 2016-01-04 20:29 - 2016-01-04 20:29 - 00000000 ____D C:\Program Files (x86)\Skype
  205. 2016-01-03 22:51 - 2016-01-03 22:51 - 00000534 _____ C:\Users\white\Desktop\ESEA Client.lnk
  206. 2016-01-03 22:51 - 2016-01-03 22:51 - 00000000 ____D C:\Users\white\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESEA
  207. 2015-12-23 02:49 - 2015-12-23 02:49 - 00000899 _____ C:\Users\Public\Desktop\Battlefield 4.lnk
  208. 2015-12-22 00:56 - 2015-12-16 15:53 - 00523384 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
  209. 2015-12-22 00:56 - 2015-12-16 15:53 - 00075056 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
  210. 2015-12-22 00:56 - 2015-12-16 15:39 - 00103032 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
  211. 2015-12-22 00:55 - 2015-12-16 18:34 - 42977072 _____ C:\Windows\system32\nvcompiler.dll
  212. 2015-12-22 00:55 - 2015-12-16 18:34 - 37609080 _____ C:\Windows\SysWOW64\nvcompiler.dll
  213. 2015-12-22 00:55 - 2015-12-16 18:34 - 31061624 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
  214. 2015-12-22 00:55 - 2015-12-16 18:34 - 24895792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
  215. 2015-12-22 00:55 - 2015-12-16 18:34 - 21122456 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
  216. 2015-12-22 00:55 - 2015-12-16 18:34 - 20663816 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
  217. 2015-12-22 00:55 - 2015-12-16 18:34 - 17561432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
  218. 2015-12-22 00:55 - 2015-12-16 18:34 - 17156968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
  219. 2015-12-22 00:55 - 2015-12-16 18:34 - 16981976 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
  220. 2015-12-22 00:55 - 2015-12-16 18:34 - 16286888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
  221. 2015-12-22 00:55 - 2015-12-16 18:34 - 12334200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
  222. 2015-12-22 00:55 - 2015-12-16 18:34 - 03168376 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
  223. 2015-12-22 00:55 - 2015-12-16 18:34 - 02755704 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
  224. 2015-12-22 00:55 - 2015-12-16 18:34 - 01915696 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436143.dll
  225. 2015-12-22 00:55 - 2015-12-16 18:34 - 01564976 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436143.dll
  226. 2015-12-22 00:55 - 2015-12-16 18:34 - 00938104 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
  227. 2015-12-22 00:55 - 2015-12-16 18:34 - 00872056 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
  228. 2015-12-22 00:55 - 2015-12-16 18:34 - 00734512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
  229. 2015-12-22 00:55 - 2015-12-16 18:34 - 00681592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
  230. 2015-12-22 00:55 - 2015-12-16 18:34 - 00502080 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
  231. 2015-12-22 00:55 - 2015-12-16 18:34 - 00469144 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
  232. 2015-12-22 00:55 - 2015-12-16 18:34 - 00423264 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
  233. 2015-12-22 00:55 - 2015-12-16 18:34 - 00416376 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
  234. 2015-12-22 00:55 - 2015-12-16 18:34 - 00388560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
  235. 2015-12-22 00:55 - 2015-12-16 18:34 - 00370808 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
  236. 2015-12-22 00:55 - 2015-12-16 18:34 - 00175368 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
  237. 2015-12-22 00:55 - 2015-12-16 18:34 - 00153392 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
  238. 2015-12-22 00:55 - 2015-12-16 18:34 - 00151184 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
  239. 2015-12-22 00:55 - 2015-12-16 18:34 - 00128696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
  240. 2015-12-17 16:54 - 2015-12-17 16:54 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
  241. 2015-12-17 16:53 - 2015-12-17 16:54 - 00000000 ____D C:\Users\white\Documents\Rockstar Games
  242. 2015-12-17 16:53 - 2015-12-17 16:53 - 00000000 ____D C:\Program Files\Rockstar Games
  243. 2015-12-10 19:15 - 2016-01-06 04:36 - 00000000 ____D C:\Users\white\AppData\Local\acquisition
  244. 2015-12-10 19:13 - 2016-01-04 21:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acquisition
  245.  
  246. ==================== One Month Modified files and folders ========
  247.  
  248. (If an entry is included in the fixlist, the file/folder will be moved.)
  249.  
  250. 2016-01-09 18:58 - 2013-12-27 16:47 - 00000000 ____D C:\Users\white\AppData\Roaming\Skype
  251. 2016-01-09 18:57 - 2015-02-05 15:57 - 00000990 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d04154103e9b7b.job
  252. 2016-01-09 18:57 - 2014-06-20 13:00 - 00000990 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf8c7f2c7d4452.job
  253. 2016-01-09 18:57 - 2014-01-02 00:39 - 00003138 _____ C:\Windows\System32\Tasks\FRAPS
  254. 2016-01-09 18:57 - 2013-12-28 19:58 - 00000000 ____D C:\Users\white\AppData\Roaming\uTorrent
  255. 2016-01-09 18:57 - 2013-12-27 16:35 - 00000000 ____D C:\ProgramData\NVIDIA
  256. 2016-01-09 18:57 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
  257. 2016-01-09 12:21 - 2013-12-27 15:55 - 00000000 ____D C:\Users\white
  258. 2016-01-09 12:17 - 2014-01-24 10:19 - 00000000 ____D C:\Users\white\AppData\Local\Battle.net
  259. 2016-01-09 12:10 - 2014-01-13 06:29 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
  260. 2016-01-09 11:26 - 2014-09-14 23:39 - 00000994 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cfd06cb2f7ad5b.job
  261. 2016-01-09 09:21 - 2009-07-14 04:20 - 00000000 ____D C:\Windows
  262. 2016-01-09 09:15 - 2009-07-14 05:45 - 00010016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
  263. 2016-01-09 09:15 - 2009-07-14 05:45 - 00010016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
  264. 2016-01-09 09:06 - 2009-07-14 06:13 - 00782470 _____ C:\Windows\system32\PerfStringBackup.INI
  265. 2016-01-09 09:06 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
  266. 2016-01-09 03:55 - 2014-03-24 19:54 - 00000000 ____D C:\Users\white\AppData\Roaming\TS3Client
  267. 2016-01-09 01:47 - 2014-12-27 15:14 - 00000000 ____D C:\ProgramData\ESET
  268. 2016-01-07 00:26 - 2014-09-22 07:34 - 00000000 ____D C:\Windows\Minidump
  269. 2016-01-06 20:04 - 2015-11-12 15:34 - 00003350 _____ C:\Windows\System32\Tasks\ESET Windows 10 upgrade – Refresh settings
  270. 2016-01-04 20:32 - 2014-03-08 04:42 - 00000000 ____D C:\Users\white\AppData\Roaming\Spotify
  271. 2016-01-04 20:32 - 2014-03-08 04:42 - 00000000 ____D C:\Users\white\AppData\Local\Spotify
  272. 2016-01-04 20:29 - 2014-03-27 20:17 - 00000000 ____D C:\Users\white\AppData\Local\Skype
  273. 2016-01-04 20:29 - 2013-12-27 16:47 - 00000000 ____D C:\ProgramData\Skype
  274. 2016-01-03 22:33 - 2015-11-12 17:05 - 00000000 ____D C:\Program Files\WajaIntEn
  275. 2016-01-02 22:10 - 2014-01-13 06:29 - 00796864 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
  276. 2016-01-02 22:10 - 2014-01-13 06:29 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
  277. 2016-01-02 22:10 - 2014-01-13 06:29 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
  278. 2015-12-30 23:56 - 2014-03-15 10:41 - 00226168 _____ C:\Windows\SysWOW64\PnkBstrB.exe
  279. 2015-12-30 23:56 - 2014-03-15 10:41 - 00226168 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
  280. 2015-12-30 22:58 - 2014-02-14 04:09 - 00000000 ____D C:\ProgramData\Origin
  281. 2015-12-28 21:23 - 2015-04-15 13:28 - 00000080 _____ C:\Users\white\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦
  282. 2015-12-22 00:57 - 2013-12-27 16:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
  283. 2015-12-22 00:57 - 2013-12-27 16:35 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
  284. 2015-12-22 00:53 - 2015-09-15 23:54 - 00001377 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
  285. 2015-12-18 10:31 - 2015-04-04 16:46 - 00000000 ___SD C:\Windows\SysWOW64\GWX
  286. 2015-12-18 10:31 - 2015-04-04 16:46 - 00000000 ___SD C:\Windows\system32\GWX
  287. 2015-12-16 23:27 - 2014-09-14 23:39 - 00002179 _____ C:\Users\Public\Desktop\Google Chrome.lnk
  288. 2015-12-16 18:34 - 2013-12-27 16:34 - 18716176 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
  289. 2015-12-16 18:34 - 2013-12-27 16:34 - 14005408 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
  290. 2015-12-16 18:34 - 2013-12-27 16:34 - 03637352 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
  291. 2015-12-16 18:34 - 2013-12-27 16:34 - 03211760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
  292. 2015-12-16 18:34 - 2013-12-27 16:34 - 00034848 _____ C:\Windows\system32\nvinfo.pb
  293. 2015-12-16 15:53 - 2014-10-25 17:51 - 02554488 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
  294. 2015-12-16 15:53 - 2013-12-27 16:35 - 06359672 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
  295. 2015-12-16 15:53 - 2013-12-27 16:35 - 02985080 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
  296. 2015-12-16 15:53 - 2013-12-27 16:35 - 01256240 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
  297. 2015-12-16 15:53 - 2013-12-27 16:35 - 00385328 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
  298. 2015-12-16 15:53 - 2013-12-27 16:35 - 00062768 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
  299. 2015-12-16 15:49 - 2013-12-27 16:35 - 06090019 _____ C:\Windows\system32\nvcoproc.bin
  300. 2015-12-10 07:55 - 2014-07-06 19:14 - 00000000 ____D C:\Users\white\AppData\Local\wf-launcher
  301. 2015-12-10 07:51 - 2014-07-06 19:14 - 00000000 ____D C:\ProgramData\GFACE
  302. 2015-12-10 07:17 - 2015-12-09 20:13 - 00000000 ____D C:\Users\white\Desktop\Path
  303.  
  304. ==================== Files in the root of some directories =======
  305.  
  306. 2014-01-14 01:31 - 2014-01-14 01:31 - 0045270 _____ () C:\Users\white\AppData\Roaming\room_v3.dat
  307. 2014-12-26 20:31 - 2014-12-26 20:31 - 0000000 _____ () C:\Users\white\AppData\Local\{06CECEEB-FB7D-455C-9CA8-8EE4643D7C03}
  308. 2015-04-15 13:40 - 2015-05-05 17:45 - 0014490 _____ () C:\ProgramData\HirezPipeError.txt
  309.  
  310. Some files in TEMP:
  311. ====================
  312. C:\Users\white\AppData\Local\Temp\nvSCPAPI.dll
  313. C:\Users\white\AppData\Local\Temp\nvSCPAPI64.dll
  314. C:\Users\white\AppData\Local\Temp\nvStereoApiI.dll
  315. C:\Users\white\AppData\Local\Temp\nvStInst.exe
  316. C:\Users\white\AppData\Local\Temp\Uninstaller-2140.exe
  317.  
  318.  
  319. ==================== Bamital & volsnap =================
  320.  
  321. (There is no automatic fix for files that do not pass verification.)
  322.  
  323. C:\Windows\system32\winlogon.exe => File is digitally signed
  324. C:\Windows\system32\wininit.exe => File is digitally signed
  325. C:\Windows\SysWOW64\wininit.exe => File is digitally signed
  326. C:\Windows\explorer.exe => File is digitally signed
  327. C:\Windows\SysWOW64\explorer.exe => File is digitally signed
  328. C:\Windows\system32\svchost.exe => File is digitally signed
  329. C:\Windows\SysWOW64\svchost.exe => File is digitally signed
  330. C:\Windows\system32\services.exe => File is digitally signed
  331. C:\Windows\system32\User32.dll => File is digitally signed
  332. C:\Windows\SysWOW64\User32.dll => File is digitally signed
  333. C:\Windows\system32\userinit.exe => File is digitally signed
  334. C:\Windows\SysWOW64\userinit.exe => File is digitally signed
  335. C:\Windows\system32\rpcss.dll => File is digitally signed
  336. C:\Windows\system32\dnsapi.dll => File is digitally signed
  337. C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
  338. C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
  339.  
  340.  
  341. LastRegBack: 2016-01-02 14:15
  342.  
  343. ==================== End of FRST.txt ============================
  344.  
  345.  
  346. Additional scan result of Farbar Recovery Scan Tool (x64) Version:07-01-2015
  347. Ran by white (2016-01-09 19:00:37)
  348. Running from A:\Downloads
  349. Windows 7 Ultimate Service Pack 1 (X64) (2013-12-27 14:55:49)
  350. Boot Mode: Normal
  351. ==========================================================
  352.  
  353.  
  354. ==================== Accounts: =============================
  355.  
  356. Administrator (S-1-5-21-3218771887-588826068-1908295815-500 - Administrator - Disabled)
  357. Guest (S-1-5-21-3218771887-588826068-1908295815-501 - Limited - Enabled)
  358. white (S-1-5-21-3218771887-588826068-1908295815-1000 - Administrator - Enabled) => C:\Users\white
  359.  
  360. ==================== Security Center ========================
  361.  
  362. (If an entry is included in the fixlist, it will be removed.)
  363.  
  364. AV: ESET NOD32 Antivirus 8.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
  365. AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
  366. AS: ESET NOD32 Antivirus 8.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
  367.  
  368. ==================== Installed Programs ======================
  369.  
  370. (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
  371.  
  372. µTorrent (HKU\S-1-5-21-3218771887-588826068-1908295815-1000\...\uTorrent) (Version: 3.4.5.41372 - BitTorrent Inc.)
  373. 7 Days to Die (HKLM-x32\...\Steam App 251570) (Version: - The Fun Pimps)
  374. 888poker (HKLM-x32\...\888poker) (Version: - )
  375. Acquisition version 0.4b (HKLM-x32\...\{53E25C0C-0305-47BB-9884-F0F202297AF4}_is1) (Version: 0.4b - )
  376. Adobe Acrobat Reader DC - Svenska (HKLM-x32\...\{AC76BA86-7AD7-1053-7B44-AC0F074E4100}) (Version: 15.009.20069 - Adobe Systems Incorporated)
  377. Adobe Flash Player 20 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 20.0.0.270 - Adobe Systems Incorporated)
  378. Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.267 - Adobe Systems Incorporated)
  379. AIDA64 Extreme v5.00 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.00 - FinalWire Ltd.)
  380. Arma 2 (HKLM-x32\...\Steam App 33910) (Version: - Bohemia Interactive)
  381. Arma 2: DayZ Mod (HKLM-x32\...\Steam App 224580) (Version: - Bohemia Interactive)
  382. Arma 2: Operation Arrowhead (HKLM-x32\...\Steam App 33930) (Version: - Bohemia Interactive)
  383. AutoHotkey 1.1.22.02 (HKLM\...\AutoHotkey) (Version: 1.1.22.02 - Lexikos)
  384. BankID säkerhetsprogram (HKLM-x32\...\{4B2557F9-8C03-4BE7-9984-4DE525076580}) (Version: 6.0.1.5 - Finansiell ID-Teknik BID AB)
  385. Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
  386. Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
  387. Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.7.2.45672 - Electronic Arts)
  388. Battlefield Play4Free (HKLM-x32\...\{87686C21-8A15-4b4d-A3F1-11141D9BE094}) (Version: - EA Digital illusions)
  389. Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.7.0 - EA Digital Illusions CE AB)
  390. BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version: - )
  391. BattlEye Uninstall (HKLM-x32\...\BattlEye for A2) (Version: - )
  392. CCleaner (HKLM\...\CCleaner) (Version: 5.12 - Piriform)
  393. Cheat Engine 6.3 (HKLM-x32\...\Cheat Engine 6.3_is1) (Version: - Cheat Engine)
  394. Chivalry: Medieval Warfare (HKLM-x32\...\Steam App 219640) (Version: - Torn Banner Studios)
  395. Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
  396. Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version: - Valve)
  397. CPUID CPU-Z 1.70 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
  398. DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.1.0.0074 - Disc Soft Ltd)
  399. DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.48.1.0347 - Disc Soft Ltd)
  400. DayZ (HKLM-x32\...\Steam App 221100) (Version: - Bohemia Interactive)
  401. DayZ Commander (HKLM-x32\...\{B3653588-3AC0-4A1D-950F-D96531E84374}) (Version: 0.92.91 - Dotjosh Studios)
  402. Dead Realm (HKLM-x32\...\Steam App 352460) (Version: - Section Studios)
  403. Depth (HKLM-x32\...\Steam App 274940) (Version: - Digital Confectioners)
  404. Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
  405. Dota 2 (HKLM-x32\...\Steam App 570) (Version: - Valve)
  406. ESEA Client (HKU\S-1-5-21-3218771887-588826068-1908295815-1000\...\ESEA) (Version: 5.0.0.0 - E-Sports Entertainment LLC)
  407. ESET NOD32 Antivirus (HKLM\...\{05968FD3-89BF-4905-A7CB-B9C597156069}) (Version: 8.0.319.1 - ESET, spol s r. o.)
  408. Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
  409. Glyph (HKLM-x32\...\Glyph) (Version: - Trion Worlds, Inc.)
  410. God Mode (HKLM-x32\...\Steam App 227480) (Version: - Old School Games)
  411. Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.)
  412. Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
  413. Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
  414. GPU Temp version 1.0 (HKLM-x32\...\{8C8711FD-0FC8-4801-B33E-ED19BB0350B1}_is1) (Version: 1.0 - gputemp.com)
  415. Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
  416. Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
  417. Gyazo 2.0.2 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version: - Nota Inc.)
  418. H1Z1 (HKLM-x32\...\Steam App 295110) (Version: - Sony Online Entertainment)
  419. Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
  420. Heroes of Newerth (HKLM-x32\...\hon) (Version: 2.3.0 - S2 Games)
  421. Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
  422. Intel(R) Network Connections 18.5.54.0 (HKLM\...\PROSetDX) (Version: 18.5.54.0 - Intel)
  423. Java 7 Update 9 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417009FF}) (Version: 7.0.90 - Oracle)
  424. Killing Floor (HKLM-x32\...\Steam App 1250) (Version: - Tripwire Interactive)
  425. Killing Floor 2 (HKLM-x32\...\Steam App 232090) (Version: - Tripwire Interactive)
  426. Killing Floor Mod: Defence Alliance 2 (HKLM-x32\...\Steam App 35420) (Version: - Defence Alliance Team)
  427. League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
  428. League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
  429. Left 4 Dead (HKLM-x32\...\Left 4 Dead_is1) (Version: 1.0.1.17 - FriendlyGameS.Ru)
  430. Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve)
  431. Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
  432. Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
  433. Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41105.0 - Microsoft Corporation)
  434. Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
  435. Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
  436. Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
  437. Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
  438. Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
  439. Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
  440. Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
  441. Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
  442. Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
  443. Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
  444. Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
  445. Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
  446. Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
  447. Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
  448. Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
  449. Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
  450. Minecraft1.7.9 (HKLM-x32\...\Minecraft1.7.9) (Version: - )
  451. Mozilla Firefox 42.0 (x86 sv-SE) (HKLM-x32\...\Mozilla Firefox 42.0 (x86 sv-SE)) (Version: 42.0 - Mozilla)
  452. Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 42.0 - Mozilla)
  453. MSI Afterburner 4.1.1 (HKLM-x32\...\Afterburner) (Version: 4.1.1 - MSI Co., LTD)
  454. Mumble 1.2.5 (HKLM-x32\...\{ECFA3E2B-BCEC-44F9-BB32-8BAAA3E95F04}) (Version: 1.2.5 - Thorvald Natvig)
  455. Nosgoth (HKLM-x32\...\Steam App 200110) (Version: 150223.102780 - Square Enix Ltd)
  456. NVIDIA 3D Vision Controller Driver 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
  457. NVIDIA 3D Vision Driver 361.43 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 361.43 - NVIDIA Corporation)
  458. NVIDIA GeForce Experience 2.8.1.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.8.1.21 - NVIDIA Corporation)
  459. NVIDIA Graphics Driver 361.43 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 361.43 - NVIDIA Corporation)
  460. NVIDIA HD Audio Driver 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
  461. NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
  462. Origin (HKLM-x32\...\Origin) (Version: 9.4.1.116 - Electronic Arts, Inc.)
  463. Patch testing for Chivalry (HKLM-x32\...\Steam App 232210) (Version: - )
  464. Path of Exile (HKLM-x32\...\{90A4562F-D4A1-4B65-906D-41F236CF6902}) (Version: 1.1.0.32068 - Grinding Gear Games)
  465. PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.990 - Even Balance, Inc.)
  466. Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.21.27748 - Razer Inc.)
  467. RivaTuner Statistics Server 6.3.0 (HKLM-x32\...\RTSS) (Version: 6.3.0 - Unwinder)
  468. Rocket League (HKLM-x32\...\Steam App 252950) (Version: - Psyonix)
  469. Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.6.9 - Rockstar Games)
  470. Serious Sam 3: BFE (HKLM-x32\...\Steam App 41070) (Version: - Croteam)
  471. SHIELD Streaming (Version: 4.1.0250 - NVIDIA Corporation) Hidden
  472. SHIELD Wireless Controller Driver (Version: 2.8.1.21 - NVIDIA Corporation) Hidden
  473. Skype™ 7.17 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.17.105 - Skype Technologies S.A.)
  474. Smite (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF017}) (Version: 2.3.2660.0 - Hi-Rez Studios)
  475. Spotify (HKU\S-1-5-21-3218771887-588826068-1908295815-1000\...\Spotify) (Version: 1.0.20.94.g8f8543b3 - Spotify AB)
  476. Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
  477. System Requirements Lab Detection (HKLM-x32\...\{0334CA3C-08D7-4E71-9BDC-4631CE2E68D9}) (Version: 2.2.4.0 - Husdawg, LLC)
  478. TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
  479. The Forest (HKLM-x32\...\Steam App 242760) (Version: - Endnight Games Ltd)
  480. The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.0.0.0 - GOG.com)
  481. TrackMania² Canyon Demo (HKLM-x32\...\Steam App 264850) (Version: - Nadeo)
  482. TrackMania² Stadium Demo (HKLM-x32\...\Steam App 233070) (Version: - Nadeo)
  483. Ultima 8 (HKLM-x32\...\{428C6B01-D292-46F9-9321-75668ED17DA2}) (Version: 1.0.0.1 - Electronic Arts)
  484. Uplay (HKLM-x32\...\Uplay) (Version: 7.5 - Ubisoft)
  485. Wajam (HKLM-x32\...\WajaIntEn) (Version: 1.54.5.6 (i1.0) - Wajam) <==== ATTENTION
  486. War Thunder (HKLM-x32\...\Steam App 236390) (Version: - Gaijin Entertainment)
  487. Warcraft III eSK 1.26.0.6401 (HKLM-x32\...\Warcraft III eSK 1.26.0.6401) (Version: - )
  488. Warface (HKLM-x32\...\Steam App 291480) (Version: - Crytek)
  489. Waterfox 40.1.0 (x64 en-US) (HKLM\...\Waterfox 40.1.0 (x64 en-US)) (Version: 40.1.0 - Mozilla)
  490. VC_CRT_x64 (Version: 1.02.0000 - Intel Corporation) Hidden
  491. Ventrilo Client for Windows x64 (HKLM\...\{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}) (Version: 3.0.8.0 - Flagship Industries, Inc.)
  492. WestwoodOnline (HKLM-x32\...\{BBCD6D56-8A26-4DDE-9482-DBC9C7B7341D}) (Version: 1.0.0.0 - WestwoodOnline)
  493. WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
  494. VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
  495. World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
  496. YTD Video Downloader 4.8.5 (HKLM-x32\...\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}) (Version: 4.8.5 - GreenTree Applications SRL) <==== ATTENTION
  497.  
  498. ==================== Custom CLSID (Whitelisted): ==========================
  499.  
  500. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  501.  
  502.  
  503. ==================== Scheduled Tasks (Whitelisted) =============
  504.  
  505. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  506.  
  507. Task: {29A83BCB-E2C6-49D1-84AF-18DC05091154} - System32\Tasks\GoogleUpdateTaskMachineUA1cfd06cb2f7ad5b => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
  508. Task: {3A6B9A28-DCBD-4E81-9723-25D1B07741C8} - System32\Tasks\FRAPS => D:\Fraps\fraps.exe [2011-10-22] (Beepa P/L)
  509. Task: {4DFC0183-C954-48E5-9F4F-EF2B03FD9DCF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
  510. Task: {513571B0-7346-4EED-A972-B5E0C4D501BB} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-02] (Adobe Systems Incorporated)
  511. Task: {5A40E926-9E86-4B89-9CFD-B12311724371} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
  512. Task: {6A1E7332-B9A6-4193-8721-B112A0584290} - System32\Tasks\CCleanerSkipUAC => A:\ccleaner\CCleaner.exe [2015-11-16] (Piriform Ltd)
  513. Task: {7E779C14-CF20-4476-B987-379DCAE10065} - System32\Tasks\{0B1E59AD-5930-4935-97CF-480152C61A93} => pcalua.exe -a A:\Spel\LOL\RADS\system\rads_user_kernel.exe
  514. Task: {934ED1C5-B81A-4246-BA98-EAD80452D761} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
  515. Task: {A1179505-F9CC-4AC9-A5B0-4FBA3ADA6428} - System32\Tasks\ESET Windows 10 upgrade – Refresh settings => C:\Program Files\Common Files\AV\ESET NOD32 Antivirus 8.0\upgrade.exe [2015-11-23] (ESET)
  516. Task: {C53EDE3E-5188-4960-B55F-C69065E475B9} - System32\Tasks\GoogleUpdateTaskMachineCore1d04154103e9b7b => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
  517. Task: {D1C27556-2753-46CB-B6DC-D6ADBF54516B} - System32\Tasks\GoogleUpdateTaskMachineCore1cf8c7f2c7d4452 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
  518. Task: {DD9F510C-95F4-499A-90C8-BAC5BC372FF4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => start sppsvc
  519. Task: {E1AA7D00-FF1C-465E-9377-CA92F64C2924} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
  520.  
  521. (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
  522.  
  523. Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
  524. Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf8c7f2c7d4452.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  525. Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d04154103e9b7b.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  526. Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cfd06cb2f7ad5b.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  527.  
  528. ==================== Shortcuts =============================
  529.  
  530. (The entries could be listed to be restored or removed.)
  531.  
  532. ==================== Loaded Modules (Whitelisted) ==============
  533.  
  534. 2013-12-27 16:35 - 2015-12-16 15:53 - 00126072 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
  535. 2015-12-22 00:53 - 2015-12-09 02:52 - 00217720 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
  536. 2014-03-15 10:41 - 2015-01-12 00:59 - 00076152 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
  537. 2015-06-23 21:11 - 2015-06-23 21:11 - 00187048 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
  538. 2015-04-13 15:27 - 2015-12-09 02:53 - 00011896 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
  539. 2015-12-16 23:27 - 2015-12-11 04:54 - 01583432 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libglesv2.dll
  540. 2015-12-16 23:27 - 2015-12-11 04:54 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libegl.dll
  541. 2015-12-05 10:21 - 2015-12-05 10:21 - 00933056 ____R () A:\skype\Phone\ssScreenVVS2.dll
  542. 2015-10-01 07:28 - 2015-10-01 07:28 - 00137728 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll
  543. 2013-12-27 16:50 - 2015-11-10 20:55 - 00778752 _____ () A:\Spel\Steam\SDL2.dll
  544. 2015-01-20 04:08 - 2015-07-03 17:12 - 04962816 _____ () A:\Spel\Steam\v8.dll
  545. 2015-01-20 04:08 - 2015-07-03 17:12 - 01556992 _____ () A:\Spel\Steam\icui18n.dll
  546. 2015-01-20 04:08 - 2015-07-03 17:12 - 01187840 _____ () A:\Spel\Steam\icuuc.dll
  547. 2014-05-21 20:39 - 2015-12-14 21:01 - 02547280 _____ () A:\Spel\Steam\video.dll
  548. 2014-08-28 22:03 - 2015-09-24 01:33 - 02549248 _____ () A:\Spel\Steam\libavcodec-56.dll
  549. 2014-08-28 22:03 - 2015-09-24 01:33 - 00442880 _____ () A:\Spel\Steam\libavutil-54.dll
  550. 2014-08-28 22:03 - 2015-09-24 01:33 - 00491008 _____ () A:\Spel\Steam\libavformat-56.dll
  551. 2014-08-28 22:03 - 2015-09-24 01:33 - 00332800 _____ () A:\Spel\Steam\libavresample-2.dll
  552. 2014-08-28 22:03 - 2015-09-24 01:33 - 00485888 _____ () A:\Spel\Steam\libswscale-3.dll
  553. 2013-12-27 16:50 - 2015-12-14 21:01 - 00804432 _____ () A:\Spel\Steam\bin\chromehtml.DLL
  554. 2015-07-24 18:15 - 2015-11-03 23:00 - 00201728 _____ () A:\Spel\Steam\bin\openvr_api.dll
  555. 2013-12-27 16:50 - 2015-11-17 01:31 - 47846176 _____ () A:\Spel\Steam\bin\libcef.dll
  556. 2015-01-20 04:08 - 2015-09-25 00:56 - 00119208 _____ () A:\Spel\Steam\winh264.dll
  557.  
  558. ==================== Alternate Data Streams (Whitelisted) =========
  559.  
  560. (If an entry is included in the fixlist, only the ADS will be removed.)
  561.  
  562.  
  563. ==================== Safe Mode (Whitelisted) ===================
  564.  
  565. (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
  566.  
  567.  
  568. ==================== EXE Association (Whitelisted) ===============
  569.  
  570. (If an entry is included in the fixlist, the registry item will be restored to default or removed.)
  571.  
  572.  
  573. ==================== Internet Explorer trusted/restricted ===============
  574.  
  575. (If an entry is included in the fixlist, it will be removed from the registry.)
  576.  
  577. IE trusted site: HKU\S-1-5-21-3218771887-588826068-1908295815-1000\...\clonewarsadventures.com -> clonewarsadventures.com
  578. IE trusted site: HKU\S-1-5-21-3218771887-588826068-1908295815-1000\...\freerealms.com -> freerealms.com
  579. IE trusted site: HKU\S-1-5-21-3218771887-588826068-1908295815-1000\...\soe.com -> soe.com
  580. IE trusted site: HKU\S-1-5-21-3218771887-588826068-1908295815-1000\...\sony.com -> sony.com
  581.  
  582. ==================== Hosts content: ===============================
  583.  
  584. (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
  585.  
  586. 2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
  587.  
  588.  
  589. ==================== Other Areas ============================
  590.  
  591. (Currently there is no automatic fix for this section.)
  592.  
  593. HKU\S-1-5-21-3218771887-588826068-1908295815-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\white\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
  594. DNS Servers: 8.8.8.8
  595. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
  596. Windows Firewall is enabled.
  597.  
  598. ==================== MSCONFIG/TASK MANAGER disabled items ==
  599.  
  600. (Currently there is no automatic fix for this section.)
  601.  
  602. MSCONFIG\startupreg: DAEMON Tools Lite => "A:\DAEMON Tools Lite\DTLite.exe" -autorun
  603. MSCONFIG\startupreg: EADM => "A:\Origin\Origin.exe" -AutoStart
  604. MSCONFIG\startupreg: uTorrent => "C:\Users\white\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
  605.  
  606. ==================== FirewallRules (Whitelisted) ===============
  607.  
  608. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  609.  
  610. FirewallRules: [{A798FA65-4874-41C7-B3D3-868FF7A917F7}] => (Allow) A:\Spel\Steam\Steam.exe
  611. FirewallRules: [{F18B8C10-E11B-4F41-8FAC-9CFAD934D1A6}] => (Allow) A:\Spel\Steam\Steam.exe
  612. FirewallRules: [{5B52D3F6-DDD6-4BC9-A1E4-C7AABBC69689}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
  613. FirewallRules: [{115D493B-9BE5-4008-80B4-FDE6FD574120}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
  614. FirewallRules: [{10CE6507-A790-4523-995C-1CA9B664C264}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
  615. FirewallRules: [{44DE51EF-951F-4D2D-914A-423A1A7B7B7A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
  616. FirewallRules: [TCP Query User{9CC715CD-A1B3-4A68-8FF4-CDDF24F6C0E7}C:\users\white\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\white\appdata\roaming\spotify\spotify.exe
  617. FirewallRules: [UDP Query User{95FF875E-B8F6-43F2-A440-6ACB694D7E37}C:\users\white\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\white\appdata\roaming\spotify\spotify.exe
  618. FirewallRules: [{68E93C16-70FF-49C9-B65E-5053E2B32633}] => (Allow) A:\Spel\Steam\SteamApps\common\dota 2 beta\dota.exe
  619. FirewallRules: [{B312270E-C58C-4654-B109-7257B7B41A11}] => (Allow) A:\Spel\Steam\SteamApps\common\dota 2 beta\dota.exe
  620. FirewallRules: [{D843037F-88FB-4C05-9F21-7BBF80D429AD}] => (Allow) A:\Spel\Steam\SteamApps\common\DayZ\DayZ.exe
  621. FirewallRules: [{E55313D9-2216-4590-8EEA-BCD4736E8EB4}] => (Allow) A:\Spel\Steam\SteamApps\common\DayZ\DayZ.exe
  622. FirewallRules: [{8D1811C7-3239-47D9-962C-6CD567164078}] => (Allow) A:\Spel\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
  623. FirewallRules: [{AE32907E-BF4F-4614-81BB-FFCE6A66A08D}] => (Allow) A:\Spel\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
  624. FirewallRules: [{537BBB05-6B43-43B4-82A6-8E7295A8BA17}] => (Allow) A:\Spel\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
  625. FirewallRules: [{6790CD17-D1FA-49F1-B3AA-2C9B30E34B9B}] => (Allow) A:\Spel\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
  626. FirewallRules: [{6DA5647F-C530-4B85-9F29-E69C65A1BFDF}] => (Allow) C:\Users\white\AppData\Roaming\uTorrent\uTorrent.exe
  627. FirewallRules: [{D9AB4F40-658C-4A71-B72B-4FD9BA16EA8E}] => (Allow) C:\Users\white\AppData\Roaming\uTorrent\uTorrent.exe
  628. FirewallRules: [TCP Query User{20787391-16E4-44D8-8321-3C729C14FB14}C:\users\white\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\white\appdata\roaming\spotify\spotify.exe
  629. FirewallRules: [UDP Query User{79FFC88D-4CA0-45E2-8830-7B1C866CD4B0}C:\users\white\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\white\appdata\roaming\spotify\spotify.exe
  630. FirewallRules: [{9C927B92-8828-42DF-A279-1FAEEFA1C06D}] => (Allow) A:\Spel\Steam\SteamApps\common\DayZ\DayZ.exe
  631. FirewallRules: [{9AB687E4-0988-4E5E-98C5-84B97C4E5AE3}] => (Allow) A:\Spel\Steam\SteamApps\common\DayZ\DayZ.exe
  632. FirewallRules: [{EDDE007A-5B9E-421A-B7D1-730AFC33761A}] => (Allow) A:\Spel\Steam\SteamApps\common\dota 2 beta\dota.exe
  633. FirewallRules: [{45ED2E8E-9F46-4DE6-BE42-A9E219F08ED6}] => (Allow) A:\Spel\Steam\SteamApps\common\dota 2 beta\dota.exe
  634. FirewallRules: [{029EACDF-A1C8-4779-8F09-8FDEC538D426}] => (Allow) A:\Spel\Steam\SteamApps\common\DayZ\DayZ.exe
  635. FirewallRules: [{9ECA640D-B3DE-4C99-825D-1B381EBD5668}] => (Allow) A:\Spel\Steam\SteamApps\common\DayZ\DayZ.exe
  636. FirewallRules: [{D82F819F-4EE1-431A-837D-32EA1CED4C31}] => (Allow) A:\Spel\Steam\SteamApps\common\DayZ\DayZ.exe
  637. FirewallRules: [{CF67B0D5-106A-4701-917C-A7F7BBE624CB}] => (Allow) A:\Spel\Steam\SteamApps\common\DayZ\DayZ.exe
  638. FirewallRules: [{CC4DB65F-5E28-417C-B194-DA7B686D15F2}] => (Allow) A:\Spel\Steam\SteamApps\common\dota 2 beta\dota.exe
  639. FirewallRules: [{6082504F-6BF5-461A-8027-A539ED9CEAFB}] => (Allow) A:\Spel\Steam\SteamApps\common\dota 2 beta\dota.exe
  640. FirewallRules: [{52254F3F-6493-4176-B4B1-329ADA3F6DA8}] => (Allow) A:\Spel\Steam\SteamApps\common\dota 2 beta\dota.exe
  641. FirewallRules: [{72EA3812-91FA-4927-8DD5-024DFF7AE56C}] => (Allow) A:\Spel\Steam\SteamApps\common\dota 2 beta\dota.exe
  642. FirewallRules: [{C295C2F8-A76A-4410-9AE9-235ED927CA99}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
  643. FirewallRules: [{91226099-5D36-4B0E-8FB5-8CFAE2A50943}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
  644. FirewallRules: [{80350AC0-F3E0-4A04-B1B7-0D2EBAB689C1}] => (Allow) A:\Garena Plus\ggdllhost.exe
  645. FirewallRules: [{7DAD93AC-13B4-4148-BC55-E0058F9E0B81}] => (Allow) A:\Garena Plus\Room\garena_room.exe
  646. FirewallRules: [TCP Query User{CBF6D4E9-F9D1-4AA3-A7FD-FF39B39A1868}A:\spel\left4dead\left4dead.exe] => (Allow) A:\spel\left4dead\left4dead.exe
  647. FirewallRules: [UDP Query User{8146EABC-110E-484E-A9D1-ED98167E50D5}A:\spel\left4dead\left4dead.exe] => (Allow) A:\spel\left4dead\left4dead.exe
  648. FirewallRules: [TCP Query User{DC6E19F7-2B51-4EA4-BF1C-9BF0D55BC493}A:\spel\left 4 dead\left4dead.exe] => (Allow) A:\spel\left 4 dead\left4dead.exe
  649. FirewallRules: [UDP Query User{EAE17DC0-0051-4B27-9A5F-9EF228DBE435}A:\spel\left 4 dead\left4dead.exe] => (Allow) A:\spel\left 4 dead\left4dead.exe
  650. FirewallRules: [TCP Query User{C9B5CF80-1F80-47CC-B4F8-C63BA5C867E9}C:\users\white\downloads\utorrent.exe] => (Allow) C:\users\white\downloads\utorrent.exe
  651. FirewallRules: [UDP Query User{096734DB-6B43-4138-9141-094E1C5666EA}C:\users\white\downloads\utorrent.exe] => (Allow) C:\users\white\downloads\utorrent.exe
  652. FirewallRules: [TCP Query User{2CE8E950-3261-4081-8981-4F064FE41732}A:\spel\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oa.exe] => (Allow) A:\spel\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oa.exe
  653. FirewallRules: [UDP Query User{BF10DBD9-29AC-44BE-86C7-9A8547F76CCE}A:\spel\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oa.exe] => (Allow) A:\spel\steam\steamapps\common\arma 2 operation arrowhead\expansion\beta\arma2oa.exe
  654. FirewallRules: [{232B57C6-0900-4172-9E85-EA7F42A640BC}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2581\Agent.exe
  655. FirewallRules: [{3907B2FB-6F74-4A95-892D-0E816F0EFD89}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2581\Agent.exe
  656. FirewallRules: [{B8DE9174-EB44-4CAF-87CA-6B13A96EE0F3}] => (Allow) A:\Spel\Battle.net\Battle.net.exe
  657. FirewallRules: [{EF3A4DC9-2D16-4807-B52D-E796C4C5B014}] => (Allow) A:\Spel\Battle.net\Battle.net.exe
  658. FirewallRules: [{C8122843-A1F9-4B92-B611-6395B9F7FBAD}] => (Allow) A:\Spel\Hearthstone\Hearthstone.exe
  659. FirewallRules: [{553D3D0A-723F-4DE6-A5C4-8ADFACB2BEBF}] => (Allow) A:\Spel\Hearthstone\Hearthstone.exe
  660. FirewallRules: [{C1C15995-0B96-47F3-8636-BDB67444E9CA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe
  661. FirewallRules: [{58C42324-2B61-4B53-9916-0874E245AE55}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe
  662. FirewallRules: [TCP Query User{009D0E2D-4B32-4D47-BD1A-601F30E11802}C:\programdata\battle.net\agent\agent.beta.2680\agent.exe] => (Block) C:\programdata\battle.net\agent\agent.beta.2680\agent.exe
  663. FirewallRules: [UDP Query User{921F68C4-E5A7-4A3D-A350-28288AA4782C}C:\programdata\battle.net\agent\agent.beta.2680\agent.exe] => (Block) C:\programdata\battle.net\agent\agent.beta.2680\agent.exe
  664. FirewallRules: [{09D4075C-A4A8-490D-B702-BE1C77CDE6ED}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
  665. FirewallRules: [{86B3D332-8B64-41D3-A909-836C12A5C8B4}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
  666. FirewallRules: [{EF36F37B-14D9-4401-9EB6-32F053AA7F91}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
  667. FirewallRules: [{AA9A4670-9B75-48C7-A138-390689404974}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
  668. FirewallRules: [{8C2FCB56-67F5-4CEB-8377-2D0F8F18D5BD}] => (Allow) A:\Spel\Steam\SteamApps\common\Counter-Strike Source\hl2.exe
  669. FirewallRules: [{A0CEA33B-9993-4E5C-82A1-368128470A83}] => (Allow) A:\Spel\Steam\SteamApps\common\Counter-Strike Source\hl2.exe
  670. FirewallRules: [{9C6D1745-3F09-4FA7-96EE-D674D5EF01CF}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
  671. FirewallRules: [{21118D2C-73E5-474A-A2F4-AC26C9E5B2D9}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
  672. FirewallRules: [{E01F4E56-6FBC-4508-8266-E742983ABB54}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
  673. FirewallRules: [{9FF079DB-1CF9-4417-A770-DDCEEB94ABD9}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
  674. FirewallRules: [{376CF7C9-1BB6-48EB-9DB5-49CA38720DEB}] => (Allow) A:\Spel\Diablo III\Diablo III.exe
  675. FirewallRules: [{5AFABE9D-7C34-4F9A-8096-6031697ACF37}] => (Allow) A:\Spel\Diablo III\Diablo III.exe
  676. FirewallRules: [{5D011EC6-8EFF-4297-B11B-8AC764A9078F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2787\Agent.exe
  677. FirewallRules: [{BC0F31D3-A586-47BE-8BD9-A533406450A0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2787\Agent.exe
  678. FirewallRules: [{8734E5A1-0CC4-4BA8-ABE7-85A4BA7F11BE}] => (Allow) A:\Spel\Steam\SteamApps\common\TacticalIntervention\bin\tacint.exe
  679. FirewallRules: [{F1164ECF-F737-4B47-99B6-A1BBE31B3574}] => (Allow) A:\Spel\Steam\SteamApps\common\TacticalIntervention\bin\tacint.exe
  680. FirewallRules: [{B2656865-16A8-4149-A357-B49D01A3DBD4}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
  681. FirewallRules: [{C21C4DC4-B93C-4BE6-B291-8F38BF38FAEE}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
  682. FirewallRules: [TCP Query User{0A5AD9A4-16EF-4C2A-98E6-CE4A9575FD8D}A:\bin\javaw.exe] => (Allow) A:\bin\javaw.exe
  683. FirewallRules: [UDP Query User{45504122-7BE2-4459-B0E3-D63E57460AF7}A:\bin\javaw.exe] => (Allow) A:\bin\javaw.exe
  684. FirewallRules: [{B4E12594-EEA4-4D85-916B-42EB0003BCF3}] => (Allow) A:\Spel\Steam\SteamApps\common\killingfloor\System\KillingFloor.exe
  685. FirewallRules: [{09E096B0-4951-4348-9435-4D935F18CD53}] => (Allow) A:\Spel\Steam\SteamApps\common\killingfloor\System\KillingFloor.exe
  686. FirewallRules: [TCP Query User{5492DE3B-33C1-4E27-BDE0-68556A565F5F}A:\spel\hon\hon.exe] => (Allow) A:\spel\hon\hon.exe
  687. FirewallRules: [UDP Query User{22BB42F7-3298-4CA3-B765-57149E39FAD3}A:\spel\hon\hon.exe] => (Allow) A:\spel\hon\hon.exe
  688. FirewallRules: [TCP Query User{8F7B5E65-096E-4D59-A8BA-0B28C77E6622}A:\spel\warcraft iii frozen throne esk\war3.exe] => (Allow) A:\spel\warcraft iii frozen throne esk\war3.exe
  689. FirewallRules: [UDP Query User{32EB0261-343C-4EFE-B512-5166EEFE4EB1}A:\spel\warcraft iii frozen throne esk\war3.exe] => (Allow) A:\spel\warcraft iii frozen throne esk\war3.exe
  690. FirewallRules: [{9E20724F-7FA8-4932-8B6D-5B0973401DF0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3023\Agent.exe
  691. FirewallRules: [{DAE40B24-A934-42F0-9143-50ADAA242766}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3023\Agent.exe
  692. FirewallRules: [{DF323431-EC11-4DDD-98EF-6CF8DE44B09B}] => (Allow) A:\Spel\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA_BE.exe
  693. FirewallRules: [{5F45D932-DE72-409B-8A80-DAAFC651EE4C}] => (Allow) A:\Spel\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA_BE.exe
  694. FirewallRules: [{AB8EB989-8615-4CA1-9232-D1750B615160}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3109\Agent.exe
  695. FirewallRules: [{F80F48F6-6341-418F-BC46-765ADA563E28}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3109\Agent.exe
  696. FirewallRules: [{129DE920-783C-4E17-A28D-7FE54381AD57}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3147\Agent.exe
  697. FirewallRules: [{DFC58B8F-438E-4355-AD7F-CACA50F3DC33}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3147\Agent.exe
  698. FirewallRules: [TCP Query User{BC8D3D82-8A2B-4083-BE27-6CCE380AD406}A:\spel\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe] => (Allow) A:\spel\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe
  699. FirewallRules: [UDP Query User{C8985C4F-1666-4050-9382-F34AE936B48B}A:\spel\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe] => (Allow) A:\spel\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe
  700. FirewallRules: [{15A18714-9434-4552-AC46-17EB15FBCDD4}] => (Allow) A:\Spel\Infestation Survivor Stories\Infestation.exe
  701. FirewallRules: [{E127DB69-F02C-48D6-9002-AA0D103F2FFA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3182\Agent.exe
  702. FirewallRules: [{880DCA0D-5E77-470B-8923-13FFA3089473}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3182\Agent.exe
  703. FirewallRules: [TCP Query User{D3630793-37CF-4E4D-B3F5-B2B3E9298EE6}A:\spel\hirezgames\smite\binaries\win32\smite.exe] => (Allow) A:\spel\hirezgames\smite\binaries\win32\smite.exe
  704. FirewallRules: [UDP Query User{1F7063D9-6D67-49CC-8D00-7CBA4C4DCF73}A:\spel\hirezgames\smite\binaries\win32\smite.exe] => (Allow) A:\spel\hirezgames\smite\binaries\win32\smite.exe
  705. FirewallRules: [{F4819107-17A2-45F9-9E78-232C613631CE}] => (Allow) A:\Spel\Steam\SteamApps\common\nosgoth\Binaries\Win32\Nosgoth.exe
  706. FirewallRules: [{CF24ECDC-A4D6-4E55-99BA-7078A2B11FB6}] => (Allow) A:\Spel\Steam\SteamApps\common\nosgoth\Binaries\Win32\Nosgoth.exe
  707. FirewallRules: [{73C3FDBD-65FE-4695-913B-996FB02E5AE5}] => (Allow) A:\Spel\Steam\bin\steamwebhelper.exe
  708. FirewallRules: [{5666E5E9-FACD-4DFF-8B6E-3DEE44D05FD2}] => (Allow) A:\Spel\Steam\bin\steamwebhelper.exe
  709. FirewallRules: [TCP Query User{A8419F6D-E39E-4179-B1A3-B2C0E377ED3E}C:\users\white\appdata\local\temp\rar$exa0.473\low light combat\low light combat.exe] => (Allow) C:\users\white\appdata\local\temp\rar$exa0.473\low light combat\low light combat.exe
  710. FirewallRules: [UDP Query User{DE40B3CF-E2E3-47A8-AF88-9FF0A409E0F0}C:\users\white\appdata\local\temp\rar$exa0.473\low light combat\low light combat.exe] => (Allow) C:\users\white\appdata\local\temp\rar$exa0.473\low light combat\low light combat.exe
  711. FirewallRules: [{628B8249-41D6-4B1A-ABD3-83B81923C4CC}] => (Allow) A:\Spel\Steam\SteamApps\common\7 Days To Die\7DaysToDie.exe
  712. FirewallRules: [{F858CB94-7EC7-4892-A1F6-54C40044208B}] => (Allow) A:\Spel\Steam\SteamApps\common\7 Days To Die\7DaysToDie.exe
  713. FirewallRules: [{E84FB71B-8179-42EA-A603-13D7CDAEB566}] => (Allow) A:\Spel\Steam\SteamApps\common\Gauntlet\bin\SomaLauncher.exe
  714. FirewallRules: [{354EDE61-1FD2-480E-AE4B-39FF0AB2ED34}] => (Allow) A:\Spel\Steam\SteamApps\common\Gauntlet\bin\SomaLauncher.exe
  715. FirewallRules: [{6873BFC5-01DE-48DF-B213-53C70EF253AB}] => (Allow) A:\Spel\Steam\SteamApps\common\7 Days To Die\7DaysToDie_EAC.exe
  716. FirewallRules: [{732C56B5-3790-4E98-8CD7-396D7DF326A5}] => (Allow) A:\Spel\Steam\SteamApps\common\7 Days To Die\7DaysToDie_EAC.exe
  717. FirewallRules: [{383C2994-175F-4BC8-9EE0-1A1D141ECB31}] => (Allow) A:\Spel\Steam\SteamApps\common\Rise of the Triad\Binaries\ROTTLauncher.exe
  718. FirewallRules: [{E774FE36-687E-469D-BFA1-7C1C6C32634D}] => (Allow) A:\Spel\Steam\SteamApps\common\Rise of the Triad\Binaries\ROTTLauncher.exe
  719. FirewallRules: [TCP Query User{D019BA88-30DB-438F-87EB-7DA7DC155EB9}A:\spel\steam\steamapps\common\rise of the triad\binaries\win32\rott.exe] => (Allow) A:\spel\steam\steamapps\common\rise of the triad\binaries\win32\rott.exe
  720. FirewallRules: [UDP Query User{C5DF587A-E62A-44CD-B26A-735A994C9BBF}A:\spel\steam\steamapps\common\rise of the triad\binaries\win32\rott.exe] => (Allow) A:\spel\steam\steamapps\common\rise of the triad\binaries\win32\rott.exe
  721. FirewallRules: [TCP Query User{781985E5-69E6-4FBE-BD73-0BC257257590}C:\programdata\battle.net\agent\agent.3235\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.3235\agent.exe
  722. FirewallRules: [UDP Query User{B6E2ABC3-886B-4363-8FAC-4F73F688BF38}C:\programdata\battle.net\agent\agent.3235\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.3235\agent.exe
  723. FirewallRules: [{79D6DF7C-E0C0-4567-AB20-ACA204D9E5FC}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe
  724. FirewallRules: [{4302A397-A54D-4FE8-AF8B-55078ACED20F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe
  725. FirewallRules: [{D95FA763-7C42-43F1-B122-9803C5155B6C}] => (Allow) A:\skype\Phone\Skype.exe
  726. FirewallRules: [{C4D53025-5944-43A3-9F63-2DDB21DD4511}] => (Allow) A:\Spel\Steam\SteamApps\common\Arma 2\arma2.exe
  727. FirewallRules: [{8BE19966-D65D-4435-A5E8-AE12386239F8}] => (Allow) A:\Spel\Steam\SteamApps\common\Arma 2\arma2.exe
  728. FirewallRules: [{32CB1037-8714-4F20-A6F6-F592E6B222BB}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3372\Agent.exe
  729. FirewallRules: [{41B2FE21-CCC3-4718-A5E1-194F5BAB09B1}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3372\Agent.exe
  730. FirewallRules: [TCP Query User{24501F90-0478-4692-923D-83D91085C80E}C:\programdata\battle.net\agent\agent.3427\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.3427\agent.exe
  731. FirewallRules: [UDP Query User{B88CA6E1-D786-41A6-A415-C18981D29B21}C:\programdata\battle.net\agent\agent.3427\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.3427\agent.exe
  732. FirewallRules: [{B0B4BE25-175A-4B91-AD6D-FFFF0E940D72}] => (Allow) A:\Spel\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
  733. FirewallRules: [{97AED6F3-C3AE-44C3-BF84-2D7F03CF84DB}] => (Allow) A:\Spel\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
  734. FirewallRules: [{5346B4BE-635D-4EDF-BB34-B93E48F3950B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3454\Agent.exe
  735. FirewallRules: [{606FE01D-CA11-4E24-994D-B88997BD6A06}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3454\Agent.exe
  736. FirewallRules: [{74C4494C-B7FA-43CE-B851-42F97C72C513}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe
  737. FirewallRules: [{B5FB2460-3B0A-48C9-B1DE-0F26E80F0D8C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe
  738. FirewallRules: [{B6B0574F-EB09-4F5D-8F2A-453B58EF4DB6}] => (Allow) A:\Spel\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
  739. FirewallRules: [{73C76E7E-2022-465A-B3AF-DAAA09946918}] => (Allow) A:\Spel\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
  740. FirewallRules: [{9609426C-F163-40A2-A7AC-094CE356B60D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
  741. FirewallRules: [{5EABB01A-79B8-463F-99CE-B82E992786E0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
  742. FirewallRules: [{2AA84806-7DAC-4368-A72F-113F6DB7FB9D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
  743. FirewallRules: [{DDED39DD-7256-476B-8192-16E9A34C0922}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
  744. FirewallRules: [{DD56D8C0-FBDA-4B57-A32B-82E86BCC054D}] => (Allow) A:\Spel\Steam\SteamApps\common\GodMode\bin\GodMode.exe
  745. FirewallRules: [{EDF86138-1BF8-4B24-BE0C-18985C7D577A}] => (Allow) A:\Spel\Steam\SteamApps\common\GodMode\bin\GodMode.exe
  746. FirewallRules: [TCP Query User{C254F8FE-687C-4777-8663-8BFBDD476EE8}A:\spel\far cry 4\bin\farcry4.exe] => (Allow) A:\spel\far cry 4\bin\farcry4.exe
  747. FirewallRules: [UDP Query User{F5AA84C4-0132-404A-BC1B-49EA95967D9A}A:\spel\far cry 4\bin\farcry4.exe] => (Allow) A:\spel\far cry 4\bin\farcry4.exe
  748. FirewallRules: [{1CF1C730-B44F-47A9-BB33-7CD2B3276647}] => (Allow) A:\Ventrilo\Ventrilo.exe
  749. FirewallRules: [{B3022239-8C24-4CA2-A30F-778AF5D44771}] => (Allow) A:\Ventrilo\Ventrilo.exe
  750. FirewallRules: [{693CD353-3CD9-484A-9969-9DE17DE9C8B9}] => (Allow) A:\Spel\Steam\SteamApps\common\DayZ\DayZ_BE.exe
  751. FirewallRules: [{1C3EE176-5BAF-49E9-B26D-D42DE890C49B}] => (Allow) A:\Spel\Steam\SteamApps\common\DayZ\DayZ_BE.exe
  752. FirewallRules: [{A02C99C4-2982-43EF-92A6-D24FEC153AE1}] => (Allow) A:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
  753. FirewallRules: [{AF845D1B-CE9F-40BD-A40F-E73D65C8F6BB}] => (Allow) A:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
  754. FirewallRules: [{DBC6506C-4A94-4222-B3BB-51BC7523B288}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3632\Agent.exe
  755. FirewallRules: [{0993422C-BF70-4867-896E-2F20D041D29A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3632\Agent.exe
  756. FirewallRules: [{C2A1EC62-5399-4F70-8CF8-053AC4483C27}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
  757. FirewallRules: [{61E32ACD-1D2D-418E-8AE3-798BC2A45A9E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
  758. FirewallRules: [{AC509FEB-CF17-4F99-8363-0D766E7AB91D}] => (Allow) A:\Spel\Steam\SteamApps\common\Serious Sam 3\Bin\Sam3.exe
  759. FirewallRules: [{2B54F958-1D5D-4ADA-845F-1DCEEF0D589C}] => (Allow) A:\Spel\Steam\SteamApps\common\Serious Sam 3\Bin\Sam3.exe
  760. FirewallRules: [{2B7848A9-8939-43E5-B43F-766DE756B267}] => (Allow) A:\Spel\Steam\SteamApps\common\Serious Sam 3\Bin\Sam3_Unrestricted.exe
  761. FirewallRules: [{8F2FCCA5-9831-4A61-ACEC-CA77677CDB6F}] => (Allow) A:\Spel\Steam\SteamApps\common\Serious Sam 3\Bin\Sam3_Unrestricted.exe
  762. FirewallRules: [{392B664E-A0A9-4827-9166-81D84D0B8413}] => (Allow) A:\Spel\lol.launcher.exe
  763. FirewallRules: [{8F9F9428-007D-4DD8-8141-E7646E8B3C68}] => (Allow) A:\Spel\lol.launcher.exe
  764. FirewallRules: [{5E8E3251-F2C6-4941-A948-AD7162BF1256}] => (Allow) A:\Spel\LoL\lol.launcher.exe
  765. FirewallRules: [{D0822593-D361-491E-8C3C-685664321475}] => (Allow) A:\Spel\LoL\lol.launcher.exe
  766. FirewallRules: [{6801E8A5-7F32-42D3-B85F-7D1B77571009}] => (Allow) A:\Spel\LoL\lol.launcher.exe
  767. FirewallRules: [{2E7CAD73-1D12-4C69-89F8-F3854357A163}] => (Allow) A:\Spel\LoL\lol.launcher.exe
  768. FirewallRules: [{FFF105E9-DD68-4C56-AA2B-396745BFD49C}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
  769. FirewallRules: [{C4CAA810-9DFB-4358-BD26-9E590B70B9B3}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
  770. FirewallRules: [{B861247E-BDD4-4D0E-9F58-13CB2D931EC9}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
  771. FirewallRules: [{78BA6E47-9628-4DE3-A8CE-A4FFFFC596CF}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
  772. FirewallRules: [{83AB0885-9CBF-4BE7-9815-1DC3B4BD34F0}] => (Allow) A:\Spel\Steam\SteamApps\common\H1Z1\LaunchPad.exe
  773. FirewallRules: [{E62664E0-20FB-40C6-9DD2-4A64A68ECD8D}] => (Allow) A:\Spel\Steam\SteamApps\common\H1Z1\LaunchPad.exe
  774. FirewallRules: [TCP Query User{E4B77015-30A5-424B-8575-0424BE623CBC}A:\spel\steam\steamapps\common\h1z1\h1z1.exe] => (Allow) A:\spel\steam\steamapps\common\h1z1\h1z1.exe
  775. FirewallRules: [UDP Query User{4759832F-0744-4A16-8D1C-C5ED53678931}A:\spel\steam\steamapps\common\h1z1\h1z1.exe] => (Allow) A:\spel\steam\steamapps\common\h1z1\h1z1.exe
  776. FirewallRules: [{0B0158B6-A599-4C72-B488-9E5BB15474CE}] => (Allow) A:\Spel\Steam\SteamApps\common\War Thunder\launcher.exe
  777. FirewallRules: [{7477E2FF-3200-4F8F-BAC8-E0DD79017415}] => (Allow) A:\Spel\Steam\SteamApps\common\War Thunder\launcher.exe
  778. FirewallRules: [TCP Query User{2DD29543-2CF7-47CA-97C4-C01B3F0E9084}A:\spel\steam\steamapps\common\war thunder\aces.exe] => (Allow) A:\spel\steam\steamapps\common\war thunder\aces.exe
  779. FirewallRules: [UDP Query User{8735B401-58E9-4E9D-9676-79B39309B69C}A:\spel\steam\steamapps\common\war thunder\aces.exe] => (Allow) A:\spel\steam\steamapps\common\war thunder\aces.exe
  780. FirewallRules: [TCP Query User{31A33BB3-B339-4931-9F5A-6500156E6E97}A:\downloads\warcraft3_eurobattle(patched 1.26)\warcraft iii frozen throne\war3.exe] => (Allow) A:\downloads\warcraft3_eurobattle(patched 1.26)\warcraft iii frozen throne\war3.exe
  781. FirewallRules: [UDP Query User{F1B0070E-361C-4BBC-A372-1D35806DBC17}A:\downloads\warcraft3_eurobattle(patched 1.26)\warcraft iii frozen throne\war3.exe] => (Allow) A:\downloads\warcraft3_eurobattle(patched 1.26)\warcraft iii frozen throne\war3.exe
  782. FirewallRules: [{5115E810-7A85-46F7-90A0-37A305DA8804}] => (Allow) A:\Downloads\Warcraft3_Eurobattle(Patched 1.26)\Warcraft III Frozen Throne\euroloader.exe
  783. FirewallRules: [{7235D10C-6AD1-4688-926C-3AA65220F09D}] => (Allow) A:\Downloads\Warcraft3_Eurobattle(Patched 1.26)\Warcraft III Frozen Throne\euroloader.exe
  784. FirewallRules: [{598D267A-1F58-4FB0-9E0E-B71F976F6C07}] => (Allow) A:\Downloads\Warcraft3_Eurobattle(Patched 1.26)\Warcraft III Frozen Throne\euroloader.exe
  785. FirewallRules: [{BA33D02C-7C01-487B-8FE6-9B36F75B2FCC}] => (Allow) A:\Downloads\Warcraft3_Eurobattle(Patched 1.26)\Warcraft III Frozen Throne\euroloader.exe
  786. FirewallRules: [{E9798B9F-45DD-445E-8485-FAD36D6F157E}] => (Allow) A:\Downloads\Warcraft3_Eurobattle(Patched 1.26)\Warcraft III Frozen Throne\Frozen Throne.exe
  787. FirewallRules: [{77A79C9A-E113-4F3D-8874-D743FC5975E4}] => (Allow) A:\Downloads\Warcraft3_Eurobattle(Patched 1.26)\Warcraft III Frozen Throne\Frozen Throne.exe
  788. FirewallRules: [{5D31B2B4-87A9-43BE-9D2E-8904C2D2E433}] => (Allow) A:\Downloads\Warcraft3_Eurobattle(Patched 1.26)\Warcraft III Frozen Throne\Frozen Throne.exe
  789. FirewallRules: [{71E4469B-0AE7-4D7D-8EDB-79484FD4F726}] => (Allow) A:\Downloads\Warcraft3_Eurobattle(Patched 1.26)\Warcraft III Frozen Throne\Frozen Throne.exe
  790. FirewallRules: [{6B4CFA81-2F3D-45CE-9AAF-662CF673E1D0}] => (Allow) A:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
  791. FirewallRules: [{066A3FCB-C36A-4498-B3BC-EB6431D83258}] => (Allow) A:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
  792. FirewallRules: [{C8849448-8B03-4360-9B1F-B699FD554D5C}] => (Allow) A:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
  793. FirewallRules: [{01E36A84-4E13-4066-908C-71E2954B9784}] => (Allow) A:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
  794. FirewallRules: [{6C5996F3-978F-401C-B5A0-C26EDE8820EC}] => (Allow) A:\Spel\StarCraft II\StarCraft II.exe
  795. FirewallRules: [{C7AC821C-64B7-4DF2-887B-A2DD29E772A2}] => (Allow) A:\Spel\StarCraft II\StarCraft II.exe
  796. FirewallRules: [TCP Query User{B2539432-C8DC-408B-8A16-74489E56003E}A:\spel\starcraft ii\versions\base32283\sc2.exe] => (Allow) A:\spel\starcraft ii\versions\base32283\sc2.exe
  797. FirewallRules: [UDP Query User{F4DC1AD5-3983-48D8-8326-D119ADD8EC1F}A:\spel\starcraft ii\versions\base32283\sc2.exe] => (Allow) A:\spel\starcraft ii\versions\base32283\sc2.exe
  798. FirewallRules: [TCP Query User{E956AEA4-AFD3-45A2-90A3-8C8A2556A0CB}A:\spel\gta5\gta5.exe] => (Allow) A:\spel\gta5\gta5.exe
  799. FirewallRules: [UDP Query User{E8C0F8C5-22E9-4B2B-ABDE-94D8C7236F91}A:\spel\gta5\gta5.exe] => (Allow) A:\spel\gta5\gta5.exe
  800. FirewallRules: [{757366F9-3654-4B0E-AD3C-D627671A35C7}] => (Allow) A:\Program Files (x86)\Origin Games\Ultima 8\Game\Game\DOSBox\DOSBox.exe
  801. FirewallRules: [{BD527762-053F-4992-BB7A-8D815098FBA9}] => (Allow) A:\Program Files (x86)\Origin Games\Ultima 8\Game\Game\DOSBox\DOSBox.exe
  802. FirewallRules: [{1DB73D4D-1039-4586-A460-66752143065D}] => (Allow) A:\Spel\Steam\SteamApps\common\chivalrymedievalwarfarebeta\Binaries\Win64\CMW.exe
  803. FirewallRules: [{B94C7E38-2CCC-4223-B5F1-B268A1003831}] => (Allow) A:\Spel\Steam\SteamApps\common\chivalrymedievalwarfarebeta\Binaries\Win64\CMW.exe
  804. FirewallRules: [{DCC327D1-CD0D-4DED-ADA9-F4CF97BF37CE}] => (Allow) A:\Spel\Steam\SteamApps\common\chivalrymedievalwarfarebeta\Binaries\Win32\CMW.exe
  805. FirewallRules: [{6F9FB6B3-3CC1-4CCE-AA02-AAEE2178D587}] => (Allow) A:\Spel\Steam\SteamApps\common\chivalrymedievalwarfarebeta\Binaries\Win32\CMW.exe
  806. FirewallRules: [{49B1215D-CF6D-42A8-B5CB-992631323D3D}] => (Allow) A:\Spel\Steam\SteamApps\common\chivalrymedievalwarfarebeta\ChivLauncher.exe
  807. FirewallRules: [{1075B3DC-AC20-49E0-92B6-DF2E2A3D7C9C}] => (Allow) A:\Spel\Steam\SteamApps\common\chivalrymedievalwarfarebeta\ChivLauncher.exe
  808. FirewallRules: [{3D1A40DB-3175-45CC-B49D-296627F554F2}] => (Allow) A:\Spel\Steam\SteamApps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe
  809. FirewallRules: [{18590ECD-DA91-426A-BF3C-6768B1F9970C}] => (Allow) A:\Spel\Steam\SteamApps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe
  810. FirewallRules: [{F85A24E5-483A-4E2D-B710-8B21CA94A783}] => (Allow) A:\Spel\Steam\SteamApps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe
  811. FirewallRules: [{8FDF364F-B176-4501-9AC2-115B941E0676}] => (Allow) A:\Spel\Steam\SteamApps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe
  812. FirewallRules: [{27D18EC5-94EB-4435-A58A-F5BEB9ADFB63}] => (Allow) A:\Spel\Steam\SteamApps\common\chivalrymedievalwarfare\ChivLauncher.exe
  813. FirewallRules: [{547BB5D4-18F9-4813-88E5-6328B803C29D}] => (Allow) A:\Spel\Steam\SteamApps\common\chivalrymedievalwarfare\ChivLauncher.exe
  814. FirewallRules: [{D39AB1F6-D263-49D2-97DC-1C3CF64987BA}] => (Allow) A:\Spel\Steam\SteamApps\common\dota 2 beta\game\bin\win32\dota2.exe
  815. FirewallRules: [{1DA712C1-DDEA-4A69-A9EB-9211CC93F284}] => (Allow) A:\Spel\Steam\SteamApps\common\dota 2 beta\game\bin\win32\dota2.exe
  816. FirewallRules: [{53FEAD9A-4E06-4C0E-BADD-C0A4765EFF55}] => (Allow) A:\Spel\Steam\SteamApps\common\dota 2 beta\game\bin\win64\dota2cfg.exe
  817. FirewallRules: [{5286E985-AED2-4CBC-B9BC-20BED0951A0E}] => (Allow) A:\Spel\Steam\SteamApps\common\dota 2 beta\game\bin\win64\dota2cfg.exe
  818. FirewallRules: [{439AE13D-8F0B-47DE-8DA1-477BA95CCE14}] => (Allow) A:\Spel\Steam\SteamApps\common\ManiaPlanet_TMCanyon\ManiaPlanetLauncher.exe
  819. FirewallRules: [{AC5F3B6A-0B70-438B-A1DA-28E3ADB565A8}] => (Allow) A:\Spel\Steam\SteamApps\common\ManiaPlanet_TMCanyon\ManiaPlanetLauncher.exe
  820. FirewallRules: [{C9E5F7D4-41A9-42AE-808A-9D2CFD6664C8}] => (Allow) A:\Spel\Steam\SteamApps\common\ManiaPlanet_TMCanyon\ManiaPlanet.exe
  821. FirewallRules: [{4D90C5C5-D44E-40DF-B3C8-712FEF5D4C33}] => (Allow) A:\Spel\Steam\SteamApps\common\ManiaPlanet_TMCanyon\ManiaPlanet.exe
  822. FirewallRules: [{FF530BF0-0FEB-457F-8B75-586DF23EC611}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
  823. FirewallRules: [{83A53C17-349D-4C45-A8B1-625A37C5A402}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
  824. FirewallRules: [{F8C9024A-ACF1-4115-8160-DDED62A9BFE1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
  825. FirewallRules: [{217FD7EE-1453-4EC9-AE98-4F2D5516AF7B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
  826. FirewallRules: [{F0283E77-205E-4AAB-A94E-CABB5EDFB847}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
  827. FirewallRules: [{5E0B8FA4-A403-4470-90F3-123CC26B6BF5}] => (Allow) A:\Spel\Steam\SteamApps\common\ManiaPlanet_TMStadium\ManiaPlanetLauncher.exe
  828. FirewallRules: [{F686DAA2-44D5-42A7-827F-47DE38E849C0}] => (Allow) A:\Spel\Steam\SteamApps\common\ManiaPlanet_TMStadium\ManiaPlanetLauncher.exe
  829. FirewallRules: [{FFE21928-92F2-4E8B-A486-EDD07B1E91DB}] => (Allow) A:\Spel\Steam\SteamApps\common\ManiaPlanet_TMStadium\ManiaPlanet.exe
  830. FirewallRules: [{C82B0944-3A02-4CB3-A05E-2FF0CA877670}] => (Allow) A:\Spel\Steam\SteamApps\common\ManiaPlanet_TMStadium\ManiaPlanet.exe
  831. FirewallRules: [{C80F0557-D9E4-4501-B516-EB635FA36F0E}] => (Allow) A:\Spel\Steam\SteamApps\common\DeadRealm\DeadRealm.exe
  832. FirewallRules: [{56B4A685-F39C-4FBA-84D0-6F10E669B457}] => (Allow) A:\Spel\Steam\SteamApps\common\DeadRealm\DeadRealm.exe
  833. FirewallRules: [TCP Query User{79345321-916E-4DA0-A462-83920AB801EF}A:\downloads\shit2\warcraft3_eurobattle(patched 1.26)\warcraft iii frozen throne\war3.exe] => (Allow) A:\downloads\shit2\warcraft3_eurobattle(patched 1.26)\warcraft iii frozen throne\war3.exe
  834. FirewallRules: [UDP Query User{64B3DE6B-EBDE-4EF4-BB8E-452230E7CBB8}A:\downloads\shit2\warcraft3_eurobattle(patched 1.26)\warcraft iii frozen throne\war3.exe] => (Allow) A:\downloads\shit2\warcraft3_eurobattle(patched 1.26)\warcraft iii frozen throne\war3.exe
  835. FirewallRules: [{1DCB2E4C-8ED3-43A0-813B-38415056EB56}] => (Allow) A:\Spel\Steam\SteamApps\common\dota 2 beta\game\bin\win64\dota2.exe
  836. FirewallRules: [{90CA504D-C87A-4066-8EF2-1EECE281D9F0}] => (Allow) A:\Spel\Steam\SteamApps\common\dota 2 beta\game\bin\win64\dota2.exe
  837. FirewallRules: [TCP Query User{B1E4CC13-6402-4D89-95E2-DFFABF9781D0}A:\program files (x86)\origin games\command and conquer red alert ii\game.exe] => (Allow) A:\program files (x86)\origin games\command and conquer red alert ii\game.exe
  838. FirewallRules: [UDP Query User{6FF039F0-3F2D-428B-B712-22B8583AB1A6}A:\program files (x86)\origin games\command and conquer red alert ii\game.exe] => (Allow) A:\program files (x86)\origin games\command and conquer red alert ii\game.exe
  839. FirewallRules: [TCP Query User{303F4CCE-EE86-4769-A7AB-9B2CEC53DECB}A:\program files (x86)\origin games\command and conquer red alert ii\gamemd.exe] => (Allow) A:\program files (x86)\origin games\command and conquer red alert ii\gamemd.exe
  840. FirewallRules: [UDP Query User{C2425B52-5199-4928-BB31-ED83042371DA}A:\program files (x86)\origin games\command and conquer red alert ii\gamemd.exe] => (Allow) A:\program files (x86)\origin games\command and conquer red alert ii\gamemd.exe
  841. FirewallRules: [{C6FA08E1-4E55-4711-B930-8199531D210F}] => (Allow) A:\Spel\Steam\SteamApps\common\Depth\Binaries\Win32\DepthGame.exe
  842. FirewallRules: [{1FD524A9-4A54-4A18-B00B-D80A3A908123}] => (Allow) A:\Spel\Steam\SteamApps\common\Depth\Binaries\Win32\DepthGame.exe
  843. FirewallRules: [TCP Query User{93E8B04A-1479-4B59-BE5F-88D08DFFB8C7}A:\spel\steam\steamapps\common\planetside 2\planetside2_x64.exe] => (Allow) A:\spel\steam\steamapps\common\planetside 2\planetside2_x64.exe
  844. FirewallRules: [UDP Query User{A36D6570-EF03-48F1-B740-8335FAF130E5}A:\spel\steam\steamapps\common\planetside 2\planetside2_x64.exe] => (Allow) A:\spel\steam\steamapps\common\planetside 2\planetside2_x64.exe
  845. FirewallRules: [{4FABF39C-F40D-499B-A61C-34421CD00764}] => (Allow) A:\Spel\Steam\SteamApps\common\The Forest\TheForest.exe
  846. FirewallRules: [{F8452F94-4AE0-44F0-A73B-DECAE3E98E57}] => (Allow) A:\Spel\Steam\SteamApps\common\The Forest\TheForest.exe
  847. FirewallRules: [{6167B22F-665C-49F7-AB09-1257D275730B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
  848. FirewallRules: [{F1018A8D-0758-4810-BFFE-BF21F4D75207}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
  849. FirewallRules: [{5AA3006C-31E3-4D64-B0BE-76BECA51D4C6}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  850. FirewallRules: [{76C220F8-AD72-42B3-A62F-455F52A56273}] => (Allow) A:\Spel\Steam\SteamApps\common\nosgoth\Binaries\Win32\Nosgoth.exe
  851. FirewallRules: [{0E35BD8F-289E-402E-BF9D-E313848D08F7}] => (Allow) A:\Spel\Steam\SteamApps\common\nosgoth\Binaries\Win32\Nosgoth.exe
  852. FirewallRules: [{072290A9-FDE7-402C-B381-DDD9EFFBA496}] => (Allow) A:\Spel\Steam\SteamApps\common\nosgoth\NosgothLauncher.exe
  853. FirewallRules: [{A0E516C1-6A02-4476-9BC7-99FAAFFA4743}] => (Allow) A:\Spel\Steam\SteamApps\common\nosgoth\NosgothLauncher.exe
  854. FirewallRules: [{992AB562-22C3-4AF7-A792-AC78E4DC2FA8}] => (Allow) A:\Spel\Steam\SteamApps\common\Warface\live\nw.exe
  855. FirewallRules: [{B436F57D-1C83-425F-AA4F-C0113C3C6A9E}] => (Allow) A:\Spel\Steam\SteamApps\common\Warface\live\nw.exe
  856. FirewallRules: [{FE5A2334-7965-41FF-B462-5944EC31EE4E}] => (Allow) A:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe
  857. FirewallRules: [{C8C4106A-F4EE-43D4-BE1A-04895C2D5338}] => (Allow) A:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe
  858. FirewallRules: [{8B52B177-E458-4846-85E9-EE16A704AB9F}] => (Allow) A:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe
  859. FirewallRules: [{58A9EE9B-08A9-47B6-804F-B9A242E83823}] => (Allow) A:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe
  860. FirewallRules: [{90A72C9A-8FE8-40C7-8E65-D58CCE2D56C7}] => (Allow) A:\Spel\Steam\SteamApps\common\rocketleague\Binaries\Win32\RocketLeague.exe
  861. FirewallRules: [{D998289B-1FEE-47BB-943B-E5D7E17CA555}] => (Allow) A:\Spel\Steam\SteamApps\common\rocketleague\Binaries\Win32\RocketLeague.exe
  862. FirewallRules: [{24A169FD-773C-4B3C-B596-230D2F7957A2}] => (Allow) C:\Program Files\Waterfox\waterfox.exe
  863. FirewallRules: [{2CD1D2C6-FB8E-4BB8-9528-1FA8452CBA8C}] => (Allow) C:\Program Files\Waterfox\waterfox.exe
  864. FirewallRules: [{754733C2-ACFD-4DEE-AD17-FBC466FC00ED}] => (Allow) A:\Spel\Steam\SteamApps\common\killingfloor2\Binaries\Win64\KFGame.exe
  865. FirewallRules: [{D0695E2E-10D9-48CF-B8D8-FECAD5BAE79E}] => (Allow) A:\Spel\Steam\SteamApps\common\killingfloor2\Binaries\Win64\KFGame.exe
  866.  
  867. ==================== Restore Points =========================
  868.  
  869.  
  870. ==================== Faulty Device Manager Devices =============
  871.  
  872. Name: SM Bus Controller
  873. Description: SM Bus Controller
  874. Class Guid:
  875. Manufacturer:
  876. Service:
  877. Problem: : The drivers for this device are not installed. (Code 28)
  878. Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
  879.  
  880. Name: Universal Serial Bus (USB) Controller
  881. Description: Universal Serial Bus (USB) Controller
  882. Class Guid:
  883. Manufacturer:
  884. Service:
  885. Problem: : The drivers for this device are not installed. (Code 28)
  886. Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
  887.  
  888.  
  889. ==================== Event log errors: =========================
  890.  
  891. Application errors:
  892. ==================
  893. Error: (01/03/2016 02:28:36 AM) (Source: Application Hang) (EventID: 1002) (User: )
  894. Description: The program csgo.exe version 0.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
  895.  
  896. Process ID: 284c
  897.  
  898. Start Time: 01d145c5fba6ae39
  899.  
  900. Termination Time: 336
  901.  
  902. Application Path: A:\Spel\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
  903.  
  904. Report Id:
  905.  
  906. Error: (12/22/2015 10:35:34 PM) (Source: Application Hang) (EventID: 1002) (User: )
  907. Description: The program PathOfExile.exe version 0.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
  908.  
  909. Process ID: 22bc
  910.  
  911. Start Time: 01d13d004993bbe3
  912.  
  913. Termination Time: 0
  914.  
  915. Application Path: A:\Spel\POE\PathOfExile.exe
  916.  
  917. Report Id:
  918.  
  919. Error: (12/22/2015 12:57:24 AM) (Source: Application Hang) (EventID: 1002) (User: )
  920. Description: The program RocketLeague.exe version 1.0.10897.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
  921.  
  922. Process ID: 20ec
  923.  
  924. Start Time: 01d13c4897434a3f
  925.  
  926. Termination Time: 2
  927.  
  928. Application Path: A:\Spel\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
  929.  
  930. Report Id:
  931.  
  932. Error: (12/18/2015 12:34:47 AM) (Source: Application Hang) (EventID: 1002) (User: )
  933. Description: The program dota2.exe version 0.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
  934.  
  935. Process ID: a4c
  936.  
  937. Start Time: 01d139237176c595
  938.  
  939. Termination Time: 10
  940.  
  941. Application Path: A:\Spel\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
  942.  
  943. Report Id:
  944.  
  945. Error: (12/17/2015 06:54:26 PM) (Source: Application Error) (EventID: 1000) (User: )
  946. Description: Faulting application name: PathOfExile.exe, version: 0.0.0.0, time stamp: 0x5671ee7a
  947. Faulting module name: MSVCR100.dll, version: 10.0.40219.325, time stamp: 0x4df2be1e
  948. Exception code: 0xc0000005
  949. Fault offset: 0x00002357
  950. Faulting process id: 0xd28
  951. Faulting application start time: 0xPathOfExile.exe0
  952. Faulting application path: PathOfExile.exe1
  953. Faulting module path: PathOfExile.exe2
  954. Report Id: PathOfExile.exe3
  955.  
  956. Error: (12/14/2015 03:57:50 AM) (Source: Application Hang) (EventID: 1002) (User: )
  957. Description: The program PathOfExile.exe version 0.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
  958.  
  959. Process ID: 2214
  960.  
  961. Start Time: 01d1361af2655bcd
  962.  
  963. Termination Time: 0
  964.  
  965. Application Path: A:\Spel\POE\PathOfExile.exe
  966.  
  967. Report Id:
  968.  
  969. Error: (12/11/2015 11:49:30 PM) (Source: Application Error) (EventID: 1000) (User: )
  970. Description: Faulting application name: PoESkillTree.exe, version: 2.2.3.767, time stamp: 0x56650966
  971. Faulting module name: dwrite.dll, version: 6.1.7601.19061, time stamp: 0x56423836
  972. Exception code: 0xc0000005
  973. Fault offset: 0x0005e326
  974. Faulting process id: 0x122c
  975. Faulting application start time: 0xPoESkillTree.exe0
  976. Faulting application path: PoESkillTree.exe1
  977. Faulting module path: PoESkillTree.exe2
  978. Report Id: PoESkillTree.exe3
  979.  
  980. Error: (12/11/2015 11:49:30 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
  981. Description: Application: PoESkillTree.exe
  982. Framework Version: v4.0.30319
  983. Description: The process was terminated due to an unhandled exception.
  984. Exception Info: exception code c0000005, exception address 72E4E326
  985.  
  986. Error: (12/09/2015 08:06:43 PM) (Source: Application Error) (EventID: 1000) (User: )
  987. Description: Faulting application name: PoESkillTree.exe, version: 2.2.3.767, time stamp: 0x56650966
  988. Faulting module name: KERNELBASE.dll, version: 6.1.7601.19045, time stamp: 0x56258f05
  989. Exception code: 0xe0434352
  990. Fault offset: 0x0000c42d
  991. Faulting process id: 0x1c0c
  992. Faulting application start time: 0xPoESkillTree.exe0
  993. Faulting application path: PoESkillTree.exe1
  994. Faulting module path: PoESkillTree.exe2
  995. Report Id: PoESkillTree.exe3
  996.  
  997. Error: (12/09/2015 08:06:41 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
  998. Description: Application: PoESkillTree.exe
  999. Framework Version: v4.0.30319
  1000. Description: The process was terminated due to an unhandled exception.
  1001. Exception Info: System.Windows.Markup.XamlParseException
  1002. Stack:
  1003. at System.Windows.Markup.WpfXamlLoader.Load(System.Xaml.XamlReader, System.Xaml.IXamlObjectWriterFactory, Boolean, System.Object, System.Xaml.XamlObjectWriterSettings, System.Uri)
  1004. at System.Windows.Markup.WpfXamlLoader.LoadBaml(System.Xaml.XamlReader, Boolean, System.Object, System.Xaml.Permissions.XamlAccessLevel, System.Uri)
  1005. at System.Windows.Markup.XamlReader.LoadBaml(System.IO.Stream, System.Windows.Markup.ParserContext, System.Object, Boolean)
  1006. at System.Windows.Application.LoadComponent(System.Object, System.Uri)
  1007. at POESKillTree.Views.App.InitializeComponent()
  1008. at POESKillTree.SkillTreeFiles.Bootstrap.Run()
  1009. at POESKillTree.SkillTreeFiles.Bootstrap.Main(System.String[])
  1010.  
  1011.  
  1012. System errors:
  1013. =============
  1014. Error: (01/09/2016 06:57:01 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 35) (User: NT AUTHORITY)
  1015. Description: Performance power management features on processor 7 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.
  1016.  
  1017. Error: (01/09/2016 06:57:01 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 35) (User: NT AUTHORITY)
  1018. Description: Performance power management features on processor 5 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.
  1019.  
  1020. Error: (01/09/2016 06:57:01 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 35) (User: NT AUTHORITY)
  1021. Description: Performance power management features on processor 3 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.
  1022.  
  1023. Error: (01/09/2016 06:57:01 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 35) (User: NT AUTHORITY)
  1024. Description: Performance power management features on processor 1 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.
  1025.  
  1026. Error: (01/09/2016 06:57:01 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 35) (User: NT AUTHORITY)
  1027. Description: Performance power management features on processor 6 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.
  1028.  
  1029. Error: (01/09/2016 06:57:01 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 35) (User: NT AUTHORITY)
  1030. Description: Performance power management features on processor 4 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.
  1031.  
  1032. Error: (01/09/2016 06:57:01 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 35) (User: NT AUTHORITY)
  1033. Description: Performance power management features on processor 2 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.
  1034.  
  1035. Error: (01/09/2016 06:57:01 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 35) (User: NT AUTHORITY)
  1036. Description: Performance power management features on processor 0 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.
  1037.  
  1038. Error: (01/09/2016 11:19:53 AM) (Source: volsnap) (EventID: 36) (User: )
  1039. Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.
  1040.  
  1041. Error: (01/09/2016 09:00:38 AM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 35) (User: NT AUTHORITY)
  1042. Description: Performance power management features on processor 7 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.
  1043.  
  1044.  
  1045. ==================== Memory info ===========================
  1046.  
  1047. Processor: Intel(R) Core(TM) i7-3770K CPU @ 3.50GHz
  1048. Percentage of memory in use: 24%
  1049. Total physical RAM: 16337.34 MB
  1050. Available physical RAM: 12352.96 MB
  1051. Total Virtual: 32672.89 MB
  1052. Available Virtual: 28640.68 MB
  1053.  
  1054. ==================== Drives ================================
  1055.  
  1056. Drive a: (Whiteboy) (Fixed) (Total:931.51 GB) (Free:206.01 GB) NTFS
  1057. Drive c: () (Fixed) (Total:111.69 GB) (Free:8.5 GB) NTFS
  1058. Drive d: (Ny volym) (Fixed) (Total:465.76 GB) (Free:216.22 GB) NTFS
  1059. Drive g: (Reserverad av systemet) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[system with boot components (obtained from drive)]
  1060.  
  1061. ==================== MBR & Partition Table ==================
  1062.  
  1063. ========================================================
  1064. Disk: 0 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 29B40DFF)
  1065. Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
  1066. Partition 2: (Not Active) - (Size=111.7 GB) - (Type=07 NTFS)
  1067.  
  1068. ========================================================
  1069. Disk: 1 (MBR Code: Windows 7 or Vista) (Size: 465.8 GB) (Disk ID: 89E69E57)
  1070. Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
  1071.  
  1072. ========================================================
  1073. Disk: 2 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 16E63406)
  1074. Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
  1075.  
  1076. ==================== End of Addition.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!