API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jun 4th, 2017
5,432
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 64.33 KB | None | 0 0
raw download clone embed print report
  1. Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-06-2017
  2. Ran by HxC (04-06-2017 14:11:45)
  3. Running from C:\Users\Blake\Downloads
  4. Windows 10 Education Version 1607 (X64) (2016-11-06 09:34:05)
  5. Boot Mode: Normal
  6. ==========================================================
  7.  
  8.  
  9. ==================== Accounts: =============================
  10.  
  11. Administrator (S-1-5-21-4026273077-4069470158-3539046228-500 - Administrator - Disabled)
  12. DefaultAccount (S-1-5-21-4026273077-4069470158-3539046228-503 - Limited - Disabled)
  13. Guest (S-1-5-21-4026273077-4069470158-3539046228-501 - Limited - Enabled)
  14. HxC (S-1-5-21-4026273077-4069470158-3539046228-1002 - Administrator - Enabled) => C:\Users\Blake
  15.  
  16. ==================== Security Center ========================
  17.  
  18. (If an entry is included in the fixlist, it will be removed.)
  19.  
  20. AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
  21. AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
  22.  
  23. ==================== Installed Programs ======================
  24.  
  25. (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
  26.  
  27. µTorrent (HKU\S-1-5-21-4026273077-4069470158-3539046228-1002\...\uTorrent) (Version: 3.5.0.43580 - BitTorrent Inc.)
  28. Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 17.009.20044 - Adobe Systems Incorporated)
  29. Adobe Photoshop CC 2015 (HKLM-x32\...\{793C2BF7-A4FE-4608-91C9-9282C5801C21}) (Version: 16.0 - Adobe Systems Incorporated)
  30. AMD Settings (HKLM\...\WUCCCApp) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.)
  31. AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.)
  32. Android Studio (HKLM\...\Android Studio) (Version: 1.0 - Google Inc.)
  33. ApowerPDF (HKLM-x32\...\8691C793-7B2C-46C5-9AB2-AB80D129A5EC_is1) (Version: 3.0.1.1013 - APOWERSOFT LIMITED)
  34. Application Profiles (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
  35. ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach)
  36. Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
  37. Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
  38. Call of Duty: Ghosts - Multiplayer (HKLM\...\Steam App 209170) (Version: - Infinity Ward)
  39. Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - )
  40. Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.1 - Canon Inc.)
  41. Canon MX410 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX410_series) (Version: - Canon Inc.)
  42. Catalyst Control Center Next Localization BR (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  43. Catalyst Control Center Next Localization CHS (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  44. Catalyst Control Center Next Localization CHT (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  45. Catalyst Control Center Next Localization CS (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  46. Catalyst Control Center Next Localization DA (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  47. Catalyst Control Center Next Localization DE (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  48. Catalyst Control Center Next Localization EL (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  49. Catalyst Control Center Next Localization ES (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  50. Catalyst Control Center Next Localization FI (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  51. Catalyst Control Center Next Localization FR (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  52. Catalyst Control Center Next Localization HU (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  53. Catalyst Control Center Next Localization IT (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  54. Catalyst Control Center Next Localization JA (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  55. Catalyst Control Center Next Localization KO (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  56. Catalyst Control Center Next Localization NL (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  57. Catalyst Control Center Next Localization NO (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  58. Catalyst Control Center Next Localization PL (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  59. Catalyst Control Center Next Localization RU (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  60. Catalyst Control Center Next Localization SV (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  61. Catalyst Control Center Next Localization TH (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  62. Catalyst Control Center Next Localization TR (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
  63. CCleaner (HKLM\...\CCleaner) (Version: 5.27 - Piriform)
  64. Cisco Packet Tracer 6.2 Student (HKLM-x32\...\Cisco Packet Tracer 6.2 Student_is1) (Version: - Cisco Systems, Inc.)
  65. Core Temp 1.6 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.6 - ALCPU)
  66. Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
  67. Counter-Strike: Source (HKLM\...\Steam App 240) (Version: - Valve)
  68. CPUID HWMonitor 1.30 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
  69. DOOM (HKLM-x32\...\DOOM_is1) (Version: - )
  70. e5 Secure Download Manager (HKLM-x32\...\{E846EAD1-CA01-458A-B16B-8F9B08D86270}) (Version: 3.2.249.0 - Kivuto Solutions Inc.)
  71. Epic Games Launcher (HKLM-x32\...\{2DE76AAC-8061-4D9B-B7BA-A7CFBE0F8048}) (Version: 1.1.86.0 - Epic Games, Inc.)
  72. Epic Games Launcher Prerequisites (x64) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
  73. Exodus (HKU\S-1-5-21-4026273077-4069470158-3539046228-1002\...\exodus) (Version: 1.21.0 - Exodus Movement Inc)
  74. FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version: - Image-Line)
  75. FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line)
  76. FlowStone FL 3.0 (HKLM-x32\...\FlowStone) (Version: - )
  77. Freestyle GunZ version 7.0 (HKLM-x32\...\{B46FB5E0-11F2-4C63-A2A5-32E30106CD0C}_is1) (Version: 7.0 - FreestylersWorld)
  78. Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.110 - Google Inc.)
  79. Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
  80. Gpg4win (2.3.3) (HKLM-x32\...\GPG4Win) (Version: 2.3.3 - The Gpg4win Project)
  81. Grand Theft Auto V Update (HKLM-x32\...\R3JhbmRUaGVmdEF1dG9W_is1) (Version: 1 - )
  82. GunZ 2: The Second Duel (HKLM\...\Steam App 242720) (Version: - Masangsoft, Inc.)
  83. Halo (HKLM-x32\...\4game_halo) (Version: - Innova Systems)
  84. Halo 2 for Windows Vista (HKLM-x32\...\Halo 2) (Version: - Microsoft Game Studios)
  85. Halo 2 for Windows Vista (x32 Version: 1.0.0.0 - Microsoft Corporation) Hidden
  86. Hola™ 1.34.855 - Better Internet (HKLM\...\Hola) (Version: 1.34.855 - Hola Networks Ltd.) <==== ATTENTION
  87. ICQ (version 10.0.12156) (HKU\S-1-5-21-4026273077-4069470158-3539046228-1002\...\icq.desktop) (Version: 10.0.12156 - ICQ)
  88. IL Download Manager (HKLM-x32\...\IL Download Manager) (Version: - Image-Line)
  89. Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
  90. Kingo ROOT version 1.4.9.2848 (HKLM-x32\...\{AE7675D6-0B31-494F-ABFA-822E1A0FDF17}_is1) (Version: 1.4.9.2848 - Kingosoft Technology Ltd.)
  91. Launcher Prerequisites (x64) (x32 Version: 1.0.0.0 - Epic Games, Inc.) Hidden
  92. LIVE gaming on Windows Runtime Version 1.0.6027 (HKLM-x32\...\{839916F4-D8B5-4407-BE6D-6D4EB9D96AF4}) (Version: 1.0.6027 - Microsoft Corporation)
  93. M2O Gaming - GunZ The Last Duel (HKLM-x32\...\M2O Gaming - GunZ The Last Duel) (Version: - )
  94. Malwarebytes version 3.0.4.1269 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.4.1269 - Malwarebytes)
  95. Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProPlusRetail - en-us) (Version: 16.0.8067.2115 - Microsoft Corporation)
  96. Microsoft OneDrive (HKU\S-1-5-21-4026273077-4069470158-3539046228-1002\...\OneDriveSetup.exe) (Version: 17.3.6799.0327 - Microsoft Corporation)
  97. Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
  98. Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
  99. Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
  100. Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
  101. Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
  102. Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
  103. Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
  104. Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
  105. Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
  106. Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24123 (HKLM-x32\...\{2cbcedbb-f38c-48a3-a3e1-6c6fd821a7f4}) (Version: 14.0.24123.0 - Microsoft Corporation)
  107. Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24123 (HKLM-x32\...\{206898cc-4b41-4d98-ac28-9f9ae57f91fe}) (Version: 14.0.24123.0 - Microsoft Corporation)
  108. MinerGate (HKLM-x32\...\MinerGate) (Version: 6.6 - Minergate Inc)
  109. Mozilla Firefox 53.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 53.0 (x86 en-US)) (Version: 53.0 - Mozilla)
  110. Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 53.0.0.6312 - Mozilla)
  111. Native Instruments Controller Editor (HKLM-x32\...\Native Instruments Controller Editor) (Version: 2.1.0.183 - Native Instruments)
  112. Native Instruments Drum Lab (HKLM-x32\...\Native Instruments Drum Lab) (Version: 1.2.0.6 - Native Instruments)
  113. Native Instruments Komplete Kontrol (HKLM-x32\...\Native Instruments Komplete Kontrol) (Version: 1.8.1.5 - Native Instruments)
  114. Native Instruments Komplete Kontrol Driver (HKLM-x32\...\Native Instruments Komplete Kontrol Driver) (Version: - Native Instruments)
  115. Native Instruments Kontakt 5 (HKLM-x32\...\Native Instruments Kontakt 5) (Version: 5.6.6.16 - Native Instruments)
  116. Native Instruments Maschine 2 (HKLM-x32\...\Native Instruments Maschine 2) (Version: 2.6.2.1 - Native Instruments)
  117. Native Instruments Maschine 2 Factory Library (HKLM-x32\...\Native Instruments Maschine 2 Factory Library) (Version: 1.3.0.10 - Native Instruments)
  118. Native Instruments Maschine Controller Driver (HKLM-x32\...\Native Instruments Maschine Controller Driver) (Version: - Native Instruments)
  119. Native Instruments Maschine Controller MK2 Driver (HKLM-x32\...\Native Instruments Maschine Controller MK2 Driver) (Version: - Native Instruments)
  120. Native Instruments Maschine Jam Driver (HKLM-x32\...\Native Instruments Maschine Jam Driver) (Version: - Native Instruments)
  121. Native Instruments Maschine Mikro Driver (HKLM-x32\...\Native Instruments Maschine Mikro Driver) (Version: - Native Instruments)
  122. Native Instruments Maschine Mikro MK2 Driver (HKLM-x32\...\Native Instruments Maschine Mikro MK2 Driver) (Version: - Native Instruments)
  123. Native Instruments Maschine Studio Driver (HKLM-x32\...\Native Instruments Maschine Studio Driver) (Version: - Native Instruments)
  124. Native Instruments Massive (HKLM-x32\...\Native Instruments Massive) (Version: 1.5.1.637 - Native Instruments)
  125. Native Instruments Monark (HKLM-x32\...\Native Instruments Monark) (Version: 1.3.0.3 - Native Instruments)
  126. Native Instruments Native Access (HKLM-x32\...\Native Instruments Native Access) (Version: 1.0.24.30 - Native Instruments)
  127. Native Instruments Queensbridge Story (HKLM-x32\...\Native Instruments Queensbridge Story) (Version: 1.0.0.8 - Native Instruments)
  128. Native Instruments Reaktor 5 (HKLM-x32\...\Native Instruments Reaktor 5) (Version: 5.9.4.1512 - Native Instruments)
  129. Native Instruments Reaktor 6 (HKLM-x32\...\Native Instruments Reaktor 6) (Version: 6.0.4.23 - Native Instruments)
  130. Native Instruments Reaktor Prism (HKLM-x32\...\Native Instruments Reaktor Prism) (Version: 1.6.0.2 - Native Instruments)
  131. Native Instruments Retro Machines Mk2 (HKLM-x32\...\Native Instruments Retro Machines Mk2) (Version: 1.3.0.4 - Native Instruments)
  132. Native Instruments Scarbee Mark I (HKLM-x32\...\Native Instruments Scarbee Mark I) (Version: 1.4.0.15 - Native Instruments)
  133. Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version: 2.6.0.137 - Native Instruments)
  134. Native Instruments Solid Bus Comp FX (HKLM-x32\...\Native Instruments Solid Bus Comp FX) (Version: 1.3.1.45 - Native Instruments)
  135. Native Instruments The Gentleman (HKLM-x32\...\Native Instruments The Gentleman) (Version: 1.2.0.3 - Native Instruments)
  136. Native Instruments Vintage Organs (HKLM-x32\...\Native Instruments Vintage Organs) (Version: 1.4.0.6 - Native Instruments)
  137. Native Instruments West Africa (HKLM-x32\...\Native Instruments West Africa) (Version: 1.3.0.3 - Native Instruments)
  138. NordVPN (HKLM-x32\...\NordVPN 6.0.0) (Version: 6.0.0 - NordVPN)
  139. NordVPN (x32 Version: 6.0.0 - NordVPN) Hidden
  140. Nox APP Player (HKLM-x32\...\Nox) (Version: 3.8.0.5 - Duodian Technology Co. Ltd.)
  141. NVIDIA PhysX (HKLM-x32\...\{80407BA7-7763-4395-AB98-5233F1B34E65}) (Version: 9.13.1220 - NVIDIA Corporation)
  142. OBS Studio (HKLM-x32\...\OBS Studio) (Version: 0.16.6 - OBS Project)
  143. Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.8067.2115 - Microsoft Corporation) Hidden
  144. Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.8067.2115 - Microsoft Corporation) Hidden
  145. Office 16 Click-to-Run Licensing Component (Version: 16.0.8067.2115 - Microsoft Corporation) Hidden
  146. Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7967.2073 - Microsoft Corporation) Hidden
  147. OpenIV (HKU\S-1-5-21-4026273077-4069470158-3539046228-1002\...\OpenIV) (Version: 2.9.903 - .black/OpenIV Team)
  148. Oracle VM VirtualBox 5.1.14 (HKLM\...\{6AE61854-0F78-49E3-ABCC-586FB43CE709}) (Version: 5.1.14 - Oracle Corporation)
  149. Origin (HKLM-x32\...\Origin) (Version: 10.4.11.52733 - Electronic Arts, Inc.)
  150. Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
  151. ParkControl (HKLM-x32\...\ParkControl) (Version: 1.1.8.2 - Bitsum)
  152. PAYDAY 2 (HKLM\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.)
  153. Process Lasso (HKLM-x32\...\ProcessLasso) (Version: 8.9.8.94 - Bitsum)
  154. Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
  155. Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.7.8 - Rockstar Games)
  156. RuneMate (HKLM-x32\...\5153-2584-1271-2038) (Version: 2.21.0.0 - Team RuneMate)
  157. RuneScape Launcher 1.2.7 (HKLM-x32\...\{FA52A2D0-298E-4D40-8BB7-39928627EA6A}) (Version: 1.2.7 - Jagex Ltd)
  158. RuneScape Launcher 2.2.4 (HKLM\...\RuneScape Launcher_is1) (Version: 2.2.4 - Jagex Ltd)
  159. SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.24.0 - SAMSUNG Electronics Co., Ltd.)
  160. Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
  161. Skype™ 7.8 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.8.102 - Skype Technologies S.A.)
  162. Soundcloud Manager version 3.314 (HKLM-x32\...\{858CE085-3225-43FD-ACDA-FB672C31ECDC}_is1) (Version: 3.314 - Rootjazz)
  163. Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
  164. SumatraPDF (HKLM\...\SumatraPDF) (Version: 3.1.2 - Krzysztof Kowalczyk)
  165. TAP-Windows 9.21.1 (HKLM\...\TAP-Windows) (Version: 9.21.1 - )
  166. TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.77242 - TeamViewer)
  167. Technitium MAC Address Changer v6.0 (HKLM-x32\...\TMACv6.0) (Version: 6.0 - Technitium)
  168. Telerik Fiddler (HKLM-x32\...\Fiddler2) (Version: 4.6.3.50306 - Telerik)
  169. Titanfall™ 2 (HKLM-x32\...\{4BD80373-FEE7-45B6-8249-6E8E98717405}) (Version: 1.0.0.4 - Electronic Arts, Inc.)
  170. Usenet.nl (HKLM-x32\...\Usenet.nl_is1) (Version: - )
  171. Visual CertExam Suite (HKLM-x32\...\Visual CertExam Suite_is1) (Version: - Avanset)
  172. VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
  173. VMware Workstation (HKLM\...\{F4C0A853-FA3B-4404-954B-799299EB5A98}) (Version: 12.1.1 - VMware, Inc.)
  174. Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0-7) (Version: 1.0.26.0 - LunarG, Inc.)
  175. Vulkan Run Time Libraries 1.0.26.0 (Version: 1.0.26.0 - LunarG, Inc.) Hidden
  176. Vulkan Run Time Libraries 1.0.37.0 (HKLM\...\VulkanRT1.0.37.0-2) (Version: 1.0.37.0 - LunarG, Inc.)
  177. Vulkan Run Time Libraries 1.0.37.0 (Version: 1.0.37.0 - LunarG, Inc.) Hidden
  178. Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1) (Version: 1.0.39.1 - LunarG, Inc.)
  179. Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
  180. Windows Driver Package - BigNox Corporation YSDrv System (01/20/2017 4.3.12) (HKLM\...\1FF524CF3E58304F349D809470EC4A689914A4D5) (Version: 01/20/2017 4.3.12 - BigNox Corporation)
  181. WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
  182. Xamarin Android Player (HKLM-x32\...\{eeddf5cb-ef7e-4e3e-9575-4c64b88296ab}) (Version: 0.6.5 - Xamarin)
  183. Xamarin Android Player (Version: 0.6.5 - Xamarin) Hidden
  184. Yahoo Search Set (HKLM-x32\...\Yahoo! SearchSet) (Version: - Yahoo Inc.)
  185.  
  186. ==================== Custom CLSID (Whitelisted): ==========================
  187.  
  188. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  189.  
  190. CustomCLSID: HKU\S-1-5-21-4026273077-4069470158-3539046228-1002_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
  191. CustomCLSID: HKU\S-1-5-21-4026273077-4069470158-3539046228-1002_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
  192. CustomCLSID: HKU\S-1-5-21-4026273077-4069470158-3539046228-1002_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
  193. CustomCLSID: HKU\S-1-5-21-4026273077-4069470158-3539046228-1002_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
  194. CustomCLSID: HKU\S-1-5-21-4026273077-4069470158-3539046228-1002_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
  195. CustomCLSID: HKU\S-1-5-21-4026273077-4069470158-3539046228-1002_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
  196.  
  197. ==================== Scheduled Tasks (Whitelisted) =============
  198.  
  199. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  200.  
  201. Task: {1C4B82EA-BC24-47B0-BF50-65C1E4854761} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-05-28] (Microsoft Corporation)
  202. Task: {229F0634-8FF8-4B6D-B5D2-6D8AA058F8F6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-17] (Google Inc.)
  203. Task: {31E5D161-2A74-4742-8476-02A734190B9F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated)
  204. Task: {398AA07B-1477-4FBD-9852-8EAE3BF5D27A} - System32\Tasks\NordVPN => C:\Program Files (x86)\NordVPN\NordVPN.exe [2017-03-02] (NordVPN)
  205. Task: {3B676A6E-AB7E-4412-B488-3E43A3601EA7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-05-28] (Microsoft Corporation)
  206. Task: {4F523269-E753-4ED3-AA45-90D6750337BE} - System32\Tasks\NordVPN Client auto-start => C:\Program Files\NordVPN\NordVPN Client.exe [2017-01-28] (NordVPN Inc.)
  207. Task: {55E10F2F-C77F-47C4-B464-7269F03111FD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-17] (Google Inc.)
  208. Task: {6B19F9B4-EF2D-4981-B333-854D8AD2A0BA} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-05-14] (Microsoft Corporation)
  209. Task: {6B4C7C7F-F2BA-4669-9942-266997F2BAE0} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-02-07] (Piriform Ltd)
  210. Task: {81F76551-B565-41FD-8EF0-C3864F42BCF3} - System32\Tasks\[email protected] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated)
  211. Task: {939F985A-6D68-4BCA-B5EF-9E286210A99A} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-05-28] ()
  212. Task: {957F4845-EB20-48B5-82CC-B34FFDC216EB} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [2017-04-24] (Advanced Micro Devices, Inc.)
  213. Task: {9D8EE20D-7C98-4AB1-B139-6CDAF888F25A} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-05-28] ()
  214. Task: {B8779293-28E9-4DF2-BA95-AC065395B22D} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Blake\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
  215. Task: {BDABC407-0189-4623-BDDA-2ED2DE1CC292} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-05-23] (Microsoft Corporation)
  216. Task: {C10F0A2D-DE4F-47FC-9B0B-C15F6F222AA0} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-05-14] (Microsoft Corporation)
  217.  
  218. (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
  219.  
  220.  
  221. ==================== Shortcuts =============================
  222.  
  223. (The entries could be listed to be restored or removed.)
  224.  
  225. ShortcutWithArgument: C:\Users\Blake\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\b8da4a38624bbb1e\Feedback.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=gfdkimpbcpahaombhbimeihdjnejgicl
  226.  
  227. ==================== Loaded Modules (Whitelisted) ==============
  228.  
  229. 2016-07-16 07:42 - 2016-07-16 07:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
  230. 2017-05-10 12:08 - 2017-04-27 20:49 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
  231. 2016-08-18 04:27 - 2016-08-18 04:27 - 00216576 _____ () C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
  232. 2017-01-18 20:39 - 2016-10-19 11:23 - 00017376 _____ () C:\Users\Blake\AppData\Local\Kingosoft\Kingo Root\update_27205\bin\KingoSoftService.exe
  233. 2017-01-28 21:49 - 2017-03-23 19:06 - 02259232 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\PoliciesControllerImpl.dll
  234. 2016-04-14 17:16 - 2016-04-14 17:16 - 12471368 _____ () C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
  235. 2016-11-03 08:44 - 2017-05-28 05:07 - 08931008 _____ () C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\1033\GrooveIntlResource.dll
  236. 2016-11-06 07:57 - 2016-11-06 07:57 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
  237. 2017-03-15 05:11 - 2017-03-04 02:31 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
  238. 2017-03-15 05:11 - 2017-03-04 02:30 - 00693248 _____ () C:\Windows\ShellExperiences\MtcUvc.dll
  239. 2017-05-17 02:56 - 2017-05-17 02:56 - 18441216 _____ () C:\Program Files\WindowsApps\Microsoft.3DBuilder_14.1.1302.0_x64__8wekyb3d8bbwe\Builder3D.exe
  240. 2017-05-17 02:56 - 2017-05-17 02:56 - 00204800 _____ () C:\Program Files\WindowsApps\Microsoft.3DBuilder_14.1.1302.0_x64__8wekyb3d8bbwe\Lib3mfUAP.dll
  241. 2017-03-02 10:25 - 2017-03-02 10:25 - 00411312 _____ () C:\Program Files (x86)\NordVPN\nordvpn-service.exe
  242. 2017-05-03 16:39 - 2017-05-03 16:40 - 00020480 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
  243. 2017-05-03 16:39 - 2017-05-03 16:40 - 26322944 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
  244. 2017-05-03 16:39 - 2017-05-03 16:40 - 00441856 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.AGM.Native.Windows.dll
  245. 2017-05-03 16:39 - 2017-05-03 16:40 - 02139648 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\MediaEngine.dll
  246. 2017-05-03 16:39 - 2017-05-03 16:40 - 02901928 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
  247. 2017-05-03 16:39 - 2017-05-03 16:40 - 00046080 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.Edit.Services.dll
  248. 2016-11-03 07:46 - 2016-11-03 07:46 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll
  249. 2017-05-03 16:39 - 2017-05-03 16:40 - 00641024 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll
  250. 2017-05-03 16:39 - 2017-05-03 16:40 - 01062400 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.Sharing.dll
  251. 2017-05-23 15:25 - 2017-05-23 15:25 - 03918848 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1705.1301.0_x64__8wekyb3d8bbwe\Calculator.exe
  252. 2017-05-24 15:06 - 2017-05-24 15:06 - 13096136 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8218.40507.0_x64__8wekyb3d8bbwe\Office.UI.Xaml.Core.dll
  253. 2017-05-25 16:00 - 2017-05-25 16:00 - 00074752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.16.595.0_x64__kzf8qxf38zg5c\SkypeHost.exe
  254. 2017-05-25 16:00 - 2017-05-25 16:00 - 00201728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.16.595.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
  255. 2017-04-07 07:08 - 2017-04-07 07:08 - 01695440 _____ () C:\Program Files\WindowsApps\Microsoft.Office.OneNote_17.8241.57621.0_x64__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll
  256. 2017-05-26 14:22 - 2017-05-26 14:22 - 13207240 _____ () C:\Program Files\WindowsApps\Microsoft.Office.OneNote_17.8241.57621.0_x64__8wekyb3d8bbwe\Office.UI.Xaml.Core.dll
  257. 2017-03-05 20:05 - 2017-03-05 20:05 - 01032960 _____ () C:\Program Files (x86)\Nox\bin\MultiPlayerManager.exe
  258. 2017-05-15 23:11 - 2017-05-09 05:13 - 03767640 _____ () C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\libglesv2.dll
  259. 2017-05-15 23:11 - 2017-05-09 05:13 - 00100696 _____ () C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\libegl.dll
  260. 2017-05-08 01:18 - 2017-05-08 01:18 - 10601984 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
  261. 2017-05-08 01:18 - 2017-05-08 01:18 - 02640384 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\MS.Entertainment.Common.Mobile.dll
  262. 2017-05-08 01:18 - 2017-05-08 01:18 - 00765440 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\WinStore.Vui.dll
  263. 2017-05-31 22:32 - 2017-05-31 22:32 - 23661056 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17042.14211.0_x64__8wekyb3d8bbwe\Video.UI.exe
  264. 2017-05-31 22:32 - 2017-05-31 22:32 - 09016320 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17042.14211.0_x64__8wekyb3d8bbwe\EntCommon.dll
  265. 2017-05-31 22:32 - 2017-05-31 22:32 - 03140520 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17042.14211.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
  266. 2017-03-15 05:11 - 2017-03-04 02:12 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
  267. 2017-03-15 05:11 - 2017-03-04 02:05 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
  268. 2017-03-15 05:11 - 2017-03-04 02:05 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
  269. 2017-05-10 12:08 - 2017-04-27 19:36 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
  270. 2017-05-10 12:08 - 2017-04-27 19:37 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
  271. 2017-06-01 23:49 - 2017-06-01 23:49 - 00016896 _____ () C:\Program Files\WindowsApps\Microsoft.XboxApp_29.29.31001.0_x64__8wekyb3d8bbwe\XboxApp.exe
  272. 2017-06-01 23:49 - 2017-06-01 23:49 - 33855488 _____ () C:\Program Files\WindowsApps\Microsoft.XboxApp_29.29.31001.0_x64__8wekyb3d8bbwe\XboxApp.dll
  273. 2016-11-03 07:46 - 2016-11-03 07:46 - 01651112 _____ () C:\Program Files\WindowsApps\Microsoft.XboxApp_29.29.31001.0_x64__8wekyb3d8bbwe\winsdkfb.dll
  274. 2017-03-05 20:05 - 2017-03-05 20:36 - 00367104 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\VBoxDDU.dll
  275. 2017-03-05 20:05 - 2017-03-05 20:36 - 03585536 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\VBoxRT.dll
  276. 2017-03-05 20:05 - 2017-03-05 20:05 - 00815104 _____ () C:\Program Files (x86)\Nox\bin\nox_adb.exe
  277. 2017-03-05 20:05 - 2017-03-05 20:36 - 00169392 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe
  278. 2017-03-05 20:05 - 2017-03-05 20:36 - 02460160 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\VBoxVMM.DLL
  279. 2017-03-05 20:05 - 2017-03-05 20:36 - 00662016 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\VBoxREM.dll
  280. 2017-03-05 20:05 - 2017-03-05 20:36 - 00021504 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\VBoxSharedClipboard.DLL
  281. 2017-03-05 20:05 - 2017-03-05 20:36 - 00038400 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\VBoxDragAndDropSvc.DLL
  282. 2017-03-05 20:05 - 2017-03-05 20:36 - 00039936 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\VBoxGuestPropSvc.DLL
  283. 2017-03-05 20:05 - 2017-03-05 20:36 - 00037376 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\VBoxGuestControlSvc.DLL
  284. 2017-03-05 20:05 - 2017-03-05 20:36 - 01480192 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\VBoxDD.DLL
  285. 2017-03-05 20:05 - 2017-03-05 20:36 - 00192512 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\VBoxDD2.dll
  286. 2017-03-05 20:05 - 2017-03-05 20:36 - 00031232 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\NOXa.dll
  287. 2017-03-05 20:05 - 2017-03-05 20:36 - 00032256 _____ () C:\Program Files (x86)\Bignox\BigNoxVM\RT\VBoxSharedFolders.DLL
  288. 2015-01-17 05:27 - 2015-01-17 05:27 - 34734712 _____ () C:\Program Files (x86)\Image-Line\Shared\dsp_ipp_x64.dll
  289. 2015-03-18 12:18 - 2015-03-18 12:18 - 00872056 _____ () C:\Program Files (x86)\Image-Line\Shared\QuickFontCache_x64.dll
  290. 2014-12-02 15:32 - 2014-12-02 15:32 - 00607352 _____ () C:\Program Files (x86)\Image-Line\Shared\freetype_x64.dll
  291. 2015-04-26 14:28 - 2015-04-26 14:28 - 04608312 _____ () C:\Program Files (x86)\Image-Line\FL Studio 12\Plugins\Fruity\Effects\Soundgoodizer\Soundgoodizer_x64.dll
  292. 2015-04-26 14:34 - 2015-04-26 14:34 - 02442520 _____ () C:\Program Files (x86)\Image-Line\FL Studio 12\Plugins\Fruity\Effects\Fruity Parametric EQ 2\Fruity Parametric EQ 2_x64.dll
  293. 2015-04-26 14:28 - 2015-04-26 14:28 - 02446648 _____ () C:\Program Files (x86)\Image-Line\FL Studio 12\Plugins\Fruity\Effects\Fruity Limiter\Fruity Limiter_x64.dll
  294. 2015-04-26 14:28 - 2015-04-26 14:28 - 02442040 _____ () C:\Program Files (x86)\Image-Line\FL Studio 12\Plugins\Fruity\Effects\Fruity Reeverb 2\Fruity Reeverb 2_x64.dll
  295. 2014-12-02 15:32 - 2014-12-02 15:32 - 00076408 _____ () C:\Program Files (x86)\Image-Line\Shared\Reverb_x64.dll
  296. 2016-08-18 04:14 - 2016-08-18 04:14 - 00222720 _____ () C:\Program Files (x86)\GNU\GnuPG\libksba-8.dll
  297. 2016-08-18 04:03 - 2016-08-18 04:03 - 00050176 _____ () C:\Program Files (x86)\GNU\GnuPG\libw32pth-0.dll
  298. 2016-08-18 04:14 - 2016-08-18 04:14 - 00073728 _____ () C:\Program Files (x86)\GNU\GnuPG\libassuan-0.dll
  299. 2016-08-18 04:17 - 2016-08-18 04:17 - 00751104 _____ () C:\Program Files (x86)\GNU\GnuPG\libgcrypt-20.dll
  300. 2016-08-18 04:09 - 2016-08-18 04:09 - 00103424 _____ () C:\Program Files (x86)\GNU\GnuPG\libgpg-error-0.dll
  301. 2016-04-14 17:16 - 2016-04-14 17:16 - 01309768 _____ () C:\Program Files (x86)\VMware\VMware Workstation\libxml2.dll
  302. 2016-04-14 17:16 - 2016-04-14 17:16 - 00173128 _____ () C:\Program Files (x86)\VMware\VMware Workstation\nfc-types.dll
  303. 2016-04-14 17:16 - 2016-04-14 17:16 - 00199752 _____ () C:\Program Files (x86)\VMware\VMware Workstation\LIBEXPAT.dll
  304. 2016-04-14 17:16 - 2016-04-14 17:16 - 00396872 _____ () C:\Program Files (x86)\VMware\VMware Workstation\ssoClient.dll
  305. 2017-05-15 11:27 - 2017-04-20 04:53 - 02493440 _____ () C:\Program Files (x86)\Origin\libGLESv2.dll
  306. 2017-03-05 20:05 - 2017-03-05 20:05 - 00277504 _____ () C:\Program Files (x86)\Nox\bin\VBoxApi.dll
  307. 2017-03-05 20:05 - 2017-03-05 20:05 - 00117262 _____ () C:\Program Files (x86)\Nox\bin\libgcc_s_dw2-1.dll
  308. 2017-03-05 20:05 - 2017-03-05 20:05 - 01026574 _____ () C:\Program Files (x86)\Nox\bin\libstdc++-6.dll
  309. 2017-03-05 20:05 - 2017-03-05 20:05 - 03758827 _____ () C:\Program Files (x86)\Nox\bin\icuin53.dll
  310. 2017-03-05 20:05 - 2017-03-05 20:05 - 02093901 _____ () C:\Program Files (x86)\Nox\bin\icuuc53.dll
  311. 2017-03-05 20:05 - 2017-03-05 20:05 - 03327416 _____ () C:\Program Files (x86)\Nox\bin\icudt53.dll
  312. 2017-03-05 20:05 - 2017-03-05 20:05 - 00019456 _____ () C:\Program Files (x86)\Nox\bin\QtQuick.2\qtquick2plugin.dll
  313. 2017-03-05 20:05 - 2017-03-05 20:05 - 00900608 _____ () C:\Program Files (x86)\Nox\bin\QtQuick\Controls\qtquickcontrolsplugin.dll
  314. 2017-03-05 20:05 - 2017-03-05 20:05 - 00007168 _____ () C:\Program Files (x86)\Nox\bin\firewall_mgr.dll
  315. 2017-03-05 20:05 - 2017-03-05 20:05 - 00169984 _____ () C:\Program Files (x86)\Nox\bin\glut32.dll
  316. 2017-03-05 20:05 - 2017-03-05 20:05 - 00199168 _____ () C:\Program Files (x86)\Nox\bin\NoxCommon.dll
  317. 2017-03-05 20:05 - 2017-03-05 20:05 - 00498688 _____ () C:\Program Files (x86)\Nox\bin\hlog4qt1.dll
  318. 2017-03-05 20:05 - 2017-03-05 20:05 - 00039424 _____ () C:\Program Files (x86)\Nox\bin\QtWebKit\qmlwebkitplugin.dll
  319.  
  320. ==================== Alternate Data Streams (Whitelisted) =========
  321.  
  322. (If an entry is included in the fixlist, only the ADS will be removed.)
  323.  
  324.  
  325. ==================== Safe Mode (Whitelisted) ===================
  326.  
  327. (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
  328.  
  329. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
  330. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PAexec => ""="Service"
  331. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
  332. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PAexec => ""="Service"
  333.  
  334. ==================== Association (Whitelisted) ===============
  335.  
  336. (If an entry is included in the fixlist, the registry item will be restored to default or removed.)
  337.  
  338.  
  339. ==================== Internet Explorer trusted/restricted ===============
  340.  
  341. (If an entry is included in the fixlist, it will be removed from the registry.)
  342.  
  343. IE trusted site: HKU\S-1-5-21-4026273077-4069470158-3539046228-1002\...\hola.org -> hxxp://hola.org
  344.  
  345. ==================== Hosts content: ===============================
  346.  
  347. (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
  348.  
  349. 2017-03-17 17:44 - 2017-04-11 14:16 - 00001074 _____ C:\WINDOWS\system32\Drivers\etc\hosts
  350.  
  351.  
  352. ==================== Other Areas ============================
  353.  
  354. (Currently there is no automatic fix for this section.)
  355.  
  356. HKU\S-1-5-21-4026273077-4069470158-3539046228-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Blake\Desktop\aXPHKyr.jpg
  357. DNS Servers: 78.46.223.24 - 162.242.211.137
  358. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
  359. Windows Firewall is enabled.
  360.  
  361. ==================== MSCONFIG/TASK MANAGER disabled items ==
  362.  
  363. HKLM\...\StartupApproved\Run: => "hola"
  364. HKLM\...\StartupApproved\Run: => "MacDrive 10 helper"
  365. HKLM\...\StartupApproved\Run: => "WindowsDefender"
  366. HKLM\...\StartupApproved\Run: => "Malwarebytes TrayApp"
  367. HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
  368. HKU\S-1-5-21-4026273077-4069470158-3539046228-1002\...\StartupApproved\StartupFolder: => "AutoMoparscape.lnk"
  369. HKU\S-1-5-21-4026273077-4069470158-3539046228-1002\...\StartupApproved\Run: => "BingSvc"
  370. HKU\S-1-5-21-4026273077-4069470158-3539046228-1002\...\StartupApproved\Run: => "OneDrive"
  371. HKU\S-1-5-21-4026273077-4069470158-3539046228-1002\...\StartupApproved\Run: => "Skype"
  372. HKU\S-1-5-21-4026273077-4069470158-3539046228-1002\...\StartupApproved\Run: => "Steam"
  373. HKU\S-1-5-21-4026273077-4069470158-3539046228-1002\...\StartupApproved\Run: => "BlueStacks Agent"
  374. HKU\S-1-5-21-4026273077-4069470158-3539046228-1002\...\StartupApproved\Run: => "MinerGateGui"
  375.  
  376. ==================== FirewallRules (Whitelisted) ===============
  377.  
  378. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  379.  
  380. FirewallRules: [{6B647266-B7D6-4BAB-80E9-69E6F9145732}] => (Block) %ProgramFiles% (x86)\Image-Line\FL Studio 11\FL.exe
  381. FirewallRules: [{FB123C77-A6D0-4481-9D24-67115E9CF6B2}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe
  382. FirewallRules: [{F19F118D-6217-490E-B625-4B4FF76F4E57}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe
  383. FirewallRules: [{55CE4715-8E43-4091-8E63-407099B6016F}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
  384. FirewallRules: [{97FECB77-9BC5-4D57-9F2A-4B5EA14B5C29}] => (Allow) C:\Users\Blake\AppData\Roaming\uTorrent\uTorrent.exe
  385. FirewallRules: [{4C773217-CD21-4A62-9523-3EC388229550}] => (Allow) C:\Users\Blake\AppData\Roaming\uTorrent\uTorrent.exe
  386. FirewallRules: [{D49D9397-5C1D-49BF-A6F9-EF078658F348}] => (Allow) C:\Users\Blake\AppData\Roaming\uTorrent\uTorrent.exe
  387. FirewallRules: [{2339734E-3F6C-4D22-AB36-44924DE55A40}] => (Allow) C:\Users\Blake\AppData\Roaming\uTorrent\uTorrent.exe
  388. FirewallRules: [{8696E579-E1AF-4434-A796-926F0831FF46}] => (Allow) C:\Users\Blake\AppData\Roaming\uTorrent\uTorrent.exe
  389. FirewallRules: [{D295B754-1D52-4559-9E4B-F6DE45F761BD}] => (Allow) C:\Users\Blake\AppData\Roaming\uTorrent\uTorrent.exe
  390. FirewallRules: [{98D53E5C-BC90-41C2-9160-3404E43044CE}] => (Block) C:\games\halo\halo_online.exe
  391. FirewallRules: [{EBBB1C7B-BA56-42F2-8FBD-20400B573343}] => (Block) C:\games\halo\halo_online.exe
  392. FirewallRules: [UDP Query User{5523CFE3-B576-456B-8884-743A24E40ADD}C:\games\halo\halo_online.exe] => (Allow) C:\games\halo\halo_online.exe
  393. FirewallRules: [TCP Query User{6DAB3CF9-7906-4F08-AE7A-CEBF2698C28E}C:\games\halo\halo_online.exe] => (Allow) C:\games\halo\halo_online.exe
  394. FirewallRules: [{DCF0D6D2-57BF-41E7-A76A-6183453F946F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
  395. FirewallRules: [{5D4AD684-5F75-4F74-A6F3-64484C06195E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
  396. FirewallRules: [{A4339E15-A114-47C6-A387-6C07ABDC5C8F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Source\hl2.exe
  397. FirewallRules: [{372D0FFB-3617-4EAC-9B82-FEF4C0D9D1B9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Source\hl2.exe
  398. FirewallRules: [{8831A76F-6432-4F0B-A8BF-FC24B8E3C118}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
  399. FirewallRules: [{78606DB9-8B5A-4ED9-BFC8-CCC7FE209AA3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
  400. FirewallRules: [{11D72E2F-9640-410C-8844-8C11AA37022F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GunZ 2 The Second Duel\Gunz2_Steam.exe
  401. FirewallRules: [{78396FA6-919E-4C1C-9C3F-6FB7819E3AF0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GunZ 2 The Second Duel\Gunz2_Steam.exe
  402. FirewallRules: [{39DFEABD-B6A8-40C5-821D-049427566FE8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
  403. FirewallRules: [{EBB0E094-B161-4E03-A6AF-FB4E3A820B08}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
  404. FirewallRules: [TCP Query User{28A201D8-982F-4CD7-97AC-004EEC9B2F4B}C:\program files (x86)\freestyle gunz\gunz.exe] => (Allow) C:\program files (x86)\freestyle gunz\gunz.exe
  405. FirewallRules: [UDP Query User{E6FC41A2-53D2-46E9-842F-3CE18B64FA76}C:\program files (x86)\freestyle gunz\gunz.exe] => (Allow) C:\program files (x86)\freestyle gunz\gunz.exe
  406. FirewallRules: [{7730E185-E63B-4531-9F0E-68C972B1CB19}] => (Block) %ProgramFiles% (x86)\Grand Theft Auto V\GTAVLauncher.exe
  407. FirewallRules: [{EEC44B3F-02C1-4238-AA05-0F50FF257CEA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Ghosts\iw6mp64_ship.exe
  408. FirewallRules: [{12BA1C42-3602-4A9B-A910-1CA853E9CEE4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Ghosts\iw6mp64_ship.exe
  409. FirewallRules: [TCP Query User{4FF5F692-F379-457F-B29A-31151CE6EB6C}C:\games\doom\doomx64vk.exe] => (Block) C:\games\doom\doomx64vk.exe
  410. FirewallRules: [UDP Query User{3F3170E1-AC55-4BD8-A0D9-E07CF93F0047}C:\games\doom\doomx64vk.exe] => (Block) C:\games\doom\doomx64vk.exe
  411. FirewallRules: [TCP Query User{5600085A-021E-4E8F-99BB-FEBCABEC0F37}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
  412. FirewallRules: [UDP Query User{A7AF4E68-19E7-4670-ADBC-C789DC83442E}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
  413. FirewallRules: [TCP Query User{147D3C2A-5FB9-4B12-AEC4-8378622053C2}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
  414. FirewallRules: [UDP Query User{8583155A-6896-4700-B6D1-71347E993F7A}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
  415. FirewallRules: [{6EB709C2-6FB8-47C4-B015-1C21696F4FBD}] => (Allow) C:\Program Files (x86)\Fiddler2\Fiddler.exe
  416. FirewallRules: [TCP Query User{F9C08B63-9C42-404E-AFBD-913EC7C4F77B}C:\users\blake\desktop\halo online\eldorado.exe] => (Allow) C:\users\blake\desktop\halo online\eldorado.exe
  417. FirewallRules: [UDP Query User{378D027E-A123-42BC-9FA7-FC13B952EAF0}C:\users\blake\desktop\halo online\eldorado.exe] => (Allow) C:\users\blake\desktop\halo online\eldorado.exe
  418. FirewallRules: [{DBDA5BCC-A0AB-4D08-983B-5F8760B47DC6}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
  419. FirewallRules: [{5347F075-0DBE-4B11-BF14-6FB6B62ACCE1}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
  420. FirewallRules: [{1EB43ED7-F37E-4A4B-9FE9-3B5E100C8F2C}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
  421. FirewallRules: [{46D104B4-9C31-417F-9F11-E3D3EC917DF4}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
  422. FirewallRules: [{6879B191-A591-4531-9C3E-CB95585147C4}] => (Allow) C:\Program Files (x86)\Microsoft Games\Halo 2\halo2.exe
  423. FirewallRules: [{63519163-0071-495A-9542-CFC15F6B7FFC}] => (Allow) C:\Program Files (x86)\Microsoft Games\Halo 2\halo2.exe
  424. FirewallRules: [{01DAC17C-0D64-4A95-826D-C44F4711F600}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
  425. FirewallRules: [{0A8DC552-F872-4014-A0A9-1A130EF05F72}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
  426. FirewallRules: [{26541420-7CE9-4C02-AD22-2FB6798C7CF3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
  427. FirewallRules: [{C0E7E16A-A372-43AD-8E67-808F7E4FB522}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
  428. FirewallRules: [{5C4A5C21-B775-4AFA-91FA-9F5F5DF499B5}] => (Allow) C:\Program Files (x86)\Nox\bin\Nox.exe
  429. FirewallRules: [{03A659DC-347E-46C9-BD0C-9E92FBA4CA28}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe
  430. FirewallRules: [VIRT-MIGL-In-TCP-NoScope] => (Allow) %systemroot%\system32\vmms.exe
  431. FirewallRules: [VIRT-REMOTEDESKTOP-In-TCP-NoScope] => (Allow) %systemroot%\system32\vmms.exe
  432. FirewallRules: [{9175D818-922A-44A6-91B7-B8CCAC40DE74}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
  433. FirewallRules: [{9C0C2F76-9480-4463-9F53-B26D0F62B152}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
  434. FirewallRules: [{F604D9CB-0328-4617-A848-2871629E78C7}] => (Allow) C:\Program Files\Xamarin Android Player\AndroidPlayer.exe
  435. FirewallRules: [{5642DFEE-F9F0-4DFA-BD60-42CF90D11382}] => (Allow) C:\Program Files\Xamarin Android Player\minimal_adb\adb.exe
  436. FirewallRules: [TCP Query User{B6939031-0812-4955-A790-BE6816F143C2}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
  437. FirewallRules: [UDP Query User{8716F13F-9B53-4129-BFA1-27C30DA00635}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
  438. FirewallRules: [TCP Query User{91C55DCB-AC7C-477F-8505-D10BBA9AD609}C:\program files (x86)\cisco packet tracer 6.2sv\bin\packettracer6.exe] => (Allow) C:\program files (x86)\cisco packet tracer 6.2sv\bin\packettracer6.exe
  439. FirewallRules: [UDP Query User{71447708-9784-4C97-B8D3-6D1BA47FC6FD}C:\program files (x86)\cisco packet tracer 6.2sv\bin\packettracer6.exe] => (Allow) C:\program files (x86)\cisco packet tracer 6.2sv\bin\packettracer6.exe
  440. FirewallRules: [{D97F4061-676A-4E0D-99F7-547CFCECA7E6}] => (Allow) C:\Program Files (x86)\Origin Games\Titanfall2\Titanfall2.exe
  441. FirewallRules: [{05904208-288B-488F-BB69-545E1C6EA4DB}] => (Allow) C:\Program Files (x86)\Origin Games\Titanfall2\Titanfall2.exe
  442. FirewallRules: [{8E3EF8D8-D82F-43D0-AB9E-97D0107DDA7B}] => (Allow) C:\Program Files (x86)\Origin Games\Titanfall2\Titanfall2_trial.exe
  443. FirewallRules: [{F6040D5E-486A-4CB3-8B4B-AB24D5C2055D}] => (Allow) C:\Program Files (x86)\Origin Games\Titanfall2\Titanfall2_trial.exe
  444. FirewallRules: [TCP Query User{68BAF093-5636-4BE7-BB88-32CEA4787581}C:\users\blake\desktop\stratis-qt-v2.0.0.2-win\stratis-qt.exe] => (Allow) C:\users\blake\desktop\stratis-qt-v2.0.0.2-win\stratis-qt.exe
  445. FirewallRules: [UDP Query User{14A51133-DBE0-4A56-876C-9A6EA3B785A9}C:\users\blake\desktop\stratis-qt-v2.0.0.2-win\stratis-qt.exe] => (Allow) C:\users\blake\desktop\stratis-qt-v2.0.0.2-win\stratis-qt.exe
  446. FirewallRules: [{45D6DF74-4ED1-4C54-B15F-0541A9D5E79C}] => (Block) %ProgramFiles%\Adobe\Adobe Photoshop CC 2015\Photoshop.exe
  447. FirewallRules: [{260D6F75-C435-4449-AD2F-7558DD064BEF}] => (Block) %ProgramFiles%\Adobe\Adobe Photoshop CC 2015\Photoshop.exe
  448. FirewallRules: [{88E9FC0A-D7B4-4144-92AE-CBF71FEA89FF}] => (Block) %ProgramFiles% (x86)\Grand Theft Auto V\GTA5.exe
  449. FirewallRules: [{B0AB6713-6EA9-4678-8DC1-68A6672CEB76}] => (Block) %ProgramFiles% (x86)\Grand Theft Auto V\GTAVLauncher.exe
  450. FirewallRules: [{FE4B95F7-801F-4B6E-99A5-2EEBE5A74ACF}] => (Block) %ProgramFiles% (x86)\Grand Theft Auto V\GTA5.exe
  451. FirewallRules: [{7CEA2A1B-3C7D-4F91-8203-CF5146C44C91}] => (Block) %ProgramFiles% (x86)\Grand Theft Auto V\GTAVLauncher.exe
  452. FirewallRules: [{1613F673-721F-4945-9FF4-FA433F6E0785}] => (Allow) C:\Program Files (x86)\Grand Theft Auto V\GTA5.exe
  453. FirewallRules: [{D3B46EE7-67A5-40A9-8791-681CF9FF1A6D}] => (Allow) C:\Program Files (x86)\Grand Theft Auto V\GTA5.exe
  454. FirewallRules: [TCP Query User{5CA65507-0623-4029-9A86-53C6CBF93EB4}C:\users\blake\jagexcache\jagexlauncher\bin\jagexlauncher.exe] => (Allow) C:\users\blake\jagexcache\jagexlauncher\bin\jagexlauncher.exe
  455. FirewallRules: [UDP Query User{BD8F05DA-746F-4BA9-B9EB-844B7273B36F}C:\users\blake\jagexcache\jagexlauncher\bin\jagexlauncher.exe] => (Allow) C:\users\blake\jagexcache\jagexlauncher\bin\jagexlauncher.exe
  456. FirewallRules: [{01ACAF2E-DB1A-4052-8073-E97D41D3747D}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
  457. FirewallRules: [{3D8D893A-B4DE-4522-A85B-B0B311ACFE9B}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
  458. FirewallRules: [{E9F8E3A0-4016-4C44-926C-F762AC4006CC}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
  459. FirewallRules: [{DBED781E-E83F-48F7-9229-3220054ADF1C}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
  460. FirewallRules: [TCP Query User{8F0BB3A4-7863-4D8D-9D7B-169B485DC420}C:\program files (x86)\image-line\fl studio 11\system\tools\bridge\64bit\ilbridge.exe] => (Allow) C:\program files (x86)\image-line\fl studio 11\system\tools\bridge\64bit\ilbridge.exe
  461. FirewallRules: [UDP Query User{8C37AADA-A04A-436B-8ACE-C0F9D7A61DA9}C:\program files (x86)\image-line\fl studio 11\system\tools\bridge\64bit\ilbridge.exe] => (Allow) C:\program files (x86)\image-line\fl studio 11\system\tools\bridge\64bit\ilbridge.exe
  462. FirewallRules: [TCP Query User{7A3AE05C-8D93-4F4F-8DB7-1B7E09599409}C:\program files\common files\native instruments\maschine 2\scanpluginsapp_win32.exe] => (Allow) C:\program files\common files\native instruments\maschine 2\scanpluginsapp_win32.exe
  463. FirewallRules: [UDP Query User{10197ABA-2E9D-419F-8D06-ECD36091848E}C:\program files\common files\native instruments\maschine 2\scanpluginsapp_win32.exe] => (Allow) C:\program files\common files\native instruments\maschine 2\scanpluginsapp_win32.exe
  464. FirewallRules: [TCP Query User{B8D75636-5898-474A-8EF3-D70A964F211C}C:\program files\common files\native instruments\maschine 2\scanpluginsapp_x64.exe] => (Allow) C:\program files\common files\native instruments\maschine 2\scanpluginsapp_x64.exe
  465. FirewallRules: [UDP Query User{53703A91-6324-43E8-8EA6-0AE4D181897C}C:\program files\common files\native instruments\maschine 2\scanpluginsapp_x64.exe] => (Allow) C:\program files\common files\native instruments\maschine 2\scanpluginsapp_x64.exe
  466. FirewallRules: [TCP Query User{A6141DFD-F8AC-45CA-9242-E79D90558E35}C:\program files\native instruments\maschine 2\maschine 2.exe] => (Allow) C:\program files\native instruments\maschine 2\maschine 2.exe
  467. FirewallRules: [UDP Query User{9E772CBB-281B-40E4-956A-3E2436BF1026}C:\program files\native instruments\maschine 2\maschine 2.exe] => (Allow) C:\program files\native instruments\maschine 2\maschine 2.exe
  468. FirewallRules: [TCP Query User{22529DAD-5FEA-47D9-B693-78D7AB437085}C:\program files (x86)\image-line\fl studio 12\fl64.exe] => (Allow) C:\program files (x86)\image-line\fl studio 12\fl64.exe
  469. FirewallRules: [UDP Query User{B9A562F8-FA01-4998-86E1-DF523E7064AE}C:\program files (x86)\image-line\fl studio 12\fl64.exe] => (Allow) C:\program files (x86)\image-line\fl studio 12\fl64.exe
  470. FirewallRules: [TCP Query User{AEEB7CDC-73E2-4666-8F33-3E1771F37D06}C:\program files (x86)\image-line\fl studio 12\fl.exe] => (Allow) C:\program files (x86)\image-line\fl studio 12\fl.exe
  471. FirewallRules: [UDP Query User{F45494EB-CA02-49C5-8D39-EE29713E7D76}C:\program files (x86)\image-line\fl studio 12\fl.exe] => (Allow) C:\program files (x86)\image-line\fl studio 12\fl.exe
  472. FirewallRules: [{6CD89160-F104-4B93-80F4-AB14F87585C0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
  473. FirewallRules: [{6685B03A-6C8F-488F-9B9C-6FBA626392C9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
  474. FirewallRules: [{F85DECC9-3CFE-4C4A-BE57-C5572A0C93B0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
  475. FirewallRules: [{314DB701-3518-4408-BB1F-F5D0E7E1A3C7}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
  476. FirewallRules: [{EFECD620-5F33-478C-848C-9A89365971D0}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  477. FirewallRules: [{5722A432-B384-49E2-8CED-5B06ED50EEC4}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
  478.  
  479. ==================== Restore Points =========================
  480.  
  481. 23-05-2017 08:22:05 Windows Update
  482. 31-05-2017 10:55:42 Windows Update
  483.  
  484. ==================== Faulty Device Manager Devices =============
  485.  
  486. Name: Hyper-V Virtual Switch Extension Adapter
  487. Description: Hyper-V Virtual Switch Extension Adapter
  488. Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
  489. Manufacturer: Microsoft
  490. Service: VMSMP
  491. Problem: : This device cannot start. (Code10)
  492. Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
  493. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
  494.  
  495. Name: Hyper-V Virtual Ethernet Adapter
  496. Description: Hyper-V Virtual Ethernet Adapter
  497. Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
  498. Manufacturer: Microsoft
  499. Service: VMSMP
  500. Problem: : This device is disabled. (Code 22)
  501. Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
  502.  
  503. Name:
  504. Description:
  505. Class Guid:
  506. Manufacturer:
  507. Service:
  508. Problem: : The drivers for this device are not installed. (Code 28)
  509. Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
  510.  
  511.  
  512. ==================== Event log errors: =========================
  513.  
  514. Application errors:
  515. ==================
  516. Error: (06/04/2017 04:49:05 AM) (Source: SideBySide) (EventID: 33) (User: )
  517. Description: Activation context generation failed for "c:\program files\amd\cim\bin64\SetACL64.exe".
  518. Dependent Assembly Microsoft.VC80.MFC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
  519. Please use sxstrace.exe for detailed diagnosis.
  520.  
  521. Error: (06/04/2017 04:48:45 AM) (Source: SideBySide) (EventID: 35) (User: )
  522. Description: Activation context generation failed for "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest".Error in manifest or policy file "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" on line 1.
  523. Component identity found in manifest does not match the identity of the component requested.
  524. Reference is UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
  525. Definition is UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
  526. Please use sxstrace.exe for detailed diagnosis.
  527.  
  528. Error: (06/04/2017 04:48:28 AM) (Source: SideBySide) (EventID: 33) (User: )
  529. Description: Activation context generation failed for "c:\program files\amd\cim\bin64\SetACL64.exe".
  530. Dependent Assembly Microsoft.VC80.MFC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
  531. Please use sxstrace.exe for detailed diagnosis.
  532.  
  533. Error: (06/03/2017 11:03:29 AM) (Source: Bonjour Service) (EventID: 100) (User: )
  534. Description: Client application registered 2 identical instances of service Blake._omni-live._tcp.local. port 1582.
  535.  
  536. Error: (06/03/2017 10:52:05 AM) (Source: Application Hang) (EventID: 1002) (User: )
  537. Description: The program FL.exe version 1.1.5.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
  538.  
  539. Process ID: 9a0
  540.  
  541. Start Time: 01d2dc6edeb2633b
  542.  
  543. Termination Time: 18
  544.  
  545. Application Path: C:\Program Files (x86)\Image-Line\FL Studio 12\FL.exe
  546.  
  547. Report Id: 31e18f53-486c-11e7-9c20-021f2cc83acd
  548.  
  549. Faulting package full name:
  550.  
  551. Faulting package-relative application ID:
  552.  
  553. Error: (06/03/2017 09:40:41 AM) (Source: Bonjour Service) (EventID: 100) (User: )
  554. Description: Client application registered 2 identical instances of service Blake._omni-live._tcp.local. port 1582.
  555.  
  556. Error: (06/03/2017 09:40:40 AM) (Source: Bonjour Service) (EventID: 100) (User: )
  557. Description: Client application registered 2 identical instances of service Blake._omni-live._tcp.local. port 1582.
  558.  
  559. Error: (06/03/2017 09:39:54 AM) (Source: Bonjour Service) (EventID: 100) (User: )
  560. Description: Client application registered 2 identical instances of service Blake._omni-live._tcp.local. port 1582.
  561.  
  562. Error: (06/03/2017 07:30:22 AM) (Source: Application Hang) (EventID: 1002) (User: )
  563. Description: The program FL64.exe version 1.1.5.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
  564.  
  565. Process ID: 2214
  566.  
  567. Start Time: 01d2dbea8cfb8d21
  568.  
  569. Termination Time: 35
  570.  
  571. Application Path: C:\Program Files (x86)\Image-Line\FL Studio 12\FL64.exe
  572.  
  573. Report Id: 0177ea58-4850-11e7-9c20-021f2cc83acd
  574.  
  575. Faulting package full name:
  576.  
  577. Faulting package-relative application ID:
  578.  
  579. Error: (06/03/2017 04:02:32 AM) (Source: SideBySide) (EventID: 33) (User: )
  580. Description: Activation context generation failed for "c:\program files\amd\cim\bin64\SetACL64.exe".
  581. Dependent Assembly Microsoft.VC80.MFC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
  582. Please use sxstrace.exe for detailed diagnosis.
  583.  
  584.  
  585. System errors:
  586. =============
  587. Error: (06/01/2017 05:35:37 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
  588. Description: The VMware Authorization Service service terminated unexpectedly. It has done this 1 time(s).
  589.  
  590. Error: (05/31/2017 08:13:55 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
  591. Description: The Adobe Genuine Software Integrity Service service terminated unexpectedly. It has done this 1 time(s).
  592.  
  593. Error: (05/24/2017 11:08:58 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
  594. Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
  595. {D63B10C5-BB46-4990-A94F-E40B9D520160}
  596. and APPID
  597. {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
  598. to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
  599.  
  600. Error: (05/15/2017 11:27:15 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
  601. Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
  602. {8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
  603. and APPID
  604. {F72671A9-012C-4725-9D2F-2A4D32D65169}
  605. to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
  606.  
  607. Error: (05/15/2017 11:21:56 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
  608. Description: The nordvpn-service service failed to start due to the following error:
  609. The service did not respond to the start or control request in a timely fashion.
  610.  
  611. Error: (05/15/2017 11:21:56 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
  612. Description: A timeout was reached (30000 milliseconds) while waiting for the nordvpn-service service to connect.
  613.  
  614. Error: (05/15/2017 11:21:55 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
  615. Description: The Origin Web Helper Service service failed to start due to the following error:
  616. The service did not respond to the start or control request in a timely fashion.
  617.  
  618. Error: (05/15/2017 11:21:55 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
  619. Description: A timeout was reached (30000 milliseconds) while waiting for the Origin Web Helper Service service to connect.
  620.  
  621. Error: (05/15/2017 11:21:03 AM) (Source: EventLog) (EventID: 6008) (User: )
  622. Description: The previous system shutdown at 6:10:32 AM on ‎5/‎15/‎2017 was unexpected.
  623.  
  624. Error: (05/15/2017 05:22:29 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
  625. Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
  626. {8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
  627. and APPID
  628. {F72671A9-012C-4725-9D2F-2A4D32D65169}
  629. to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
  630.  
  631.  
  632. CodeIntegrity:
  633. ===================================
  634. Date: 2017-04-19 15:31:41.797
  635. Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.
  636.  
  637. Date: 2017-04-18 10:41:41.198
  638. Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.
  639.  
  640. Date: 2017-04-17 15:34:44.043
  641. Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.
  642.  
  643. Date: 2017-03-28 14:50:03.453
  644. Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.
  645.  
  646. Date: 2017-03-28 14:50:02.631
  647. Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.
  648.  
  649. Date: 2017-03-28 14:49:27.708
  650. Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.
  651.  
  652. Date: 2017-03-20 04:44:32.235
  653. Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.
  654.  
  655. Date: 2017-03-19 13:27:25.975
  656. Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.
  657.  
  658. Date: 2017-02-06 12:36:38.725
  659. Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.
  660.  
  661. Date: 2017-02-06 12:36:33.157
  662. Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.
  663.  
  664.  
  665. ==================== Memory info ===========================
  666.  
  667. Processor: Intel(R) Core(TM) i5-2500 CPU @ 3.30GHz
  668. Percentage of memory in use: 80%
  669. Total physical RAM: 8174.28 MB
  670. Available physical RAM: 1611.72 MB
  671. Total Virtual: 17211.1 MB
  672. Available Virtual: 4459.63 MB
  673.  
  674. ==================== Drives ================================
  675.  
  676. Drive c: () (Fixed) (Total:1388.74 GB) (Free:334.07 GB) NTFS
  677. Drive i: (Blakes HDD) (Fixed) (Total:931.48 GB) (Free:819.85 GB) NTFS
  678.  
  679. ==================== MBR & Partition Table ==================
  680.  
  681. ========================================================
  682. Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: F3CD8237)
  683. Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
  684.  
  685. ==================== End of Addition.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!