Addition.txt

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17.02.2018
Ran by NB (18-02-2018 22:41:13)
Running from C:\Users\NB\Downloads
Windows 10 Pro Version 1709 16299.192 (X64) (2017-12-15 00:34:46)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1930647357-352460921-2443433937-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1930647357-352460921-2443433937-503 - Limited - Disabled)
Guest (S-1-5-21-1930647357-352460921-2443433937-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1930647357-352460921-2443433937-1004 - Limited - Enabled)
NB (S-1-5-21-1930647357-352460921-2443433937-1000 - Administrator - Enabled) => C:\Users\NB
WDAGUtilityAccount (S-1-5-21-1930647357-352460921-2443433937-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-1930647357-352460921-2443433937-1000\...\uTorrent) (Version: 3.5.1.44332 - BitTorrent Inc.)
Adobe After Effects CC 2017 (HKLM-x32\...\AEFT_14_2_1) (Version: 14.2.1 - Adobe Systems Incorporated)
Adobe Bridge CC 2017 (HKLM-x32\...\KBRG_7_0) (Version: 7.0 - Adobe Systems Incorporated)
Adobe Character Animator CC (Beta) (HKLM-x32\...\ANMLBETA_1_0_6) (Version: 1.0.6 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.3.0.256 - Adobe Systems Incorporated)
Adobe Dreamweaver CC 2017 (HKLM-x32\...\DRWV_17_5_0) (Version: 17.5.0 - Adobe Systems Incorporated)
Adobe Flash Player 26 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 26.0.0.151 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2017 (HKLM-x32\...\AME_11_1_2) (Version: 11.1.2 - Adobe Systems Incorporated)
Adobe Photoshop CC 2017 (HKLM-x32\...\PHSP_18_1_1) (Version: 18.1.1 - Adobe Systems Incorporated)
Advanced Spyware Remover (HKLM-x32\...\Advanced Spyware Remover_is1) (Version: 1.0 - IObit)
Advanced SystemCare 11 (HKLM-x32\...\Advanced SystemCare_is1) (Version: 11.1.0 - IObit)
Aimersoft Helper Compact 2.5.2 (HKLM-x32\...\{405147F7-FCC5-499B-A27E-EA6BD4A80435}_is1) (Version: 2.5.2 - Aimersoft)
Apple Application Support (32-bit) (HKLM-x32\...\{3D1290E6-1F77-46D5-A715-A56679C8D4E3}) (Version: 6.0.2 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{D0E45DEC-F4B9-4370-A9DF-66837789C2EF}) (Version: 6.0.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{E3C4B99B-BE71-4C27-8E3C-4FAE3C46E1D5}) (Version: 11.0.0.30 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{C1BBFD2A-BCDD-45B3-8C0B-66BD434970A8}) (Version: 2.4.8.1 - Apple Inc.)
ArtMoney SE v8.006 64-bits (HKLM-x32\...\ArtMoney SE_is1) (Version: 8.00.0 - System SoftLab)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach)
Audacity 2.2.1 (HKLM-x32\...\Audacity_is1) (Version: 2.2.1 - Audacity Team)
Auslogics Driver Updater (HKLM-x32\...\{23BB1B18-3537-48F7-BEF7-42BC65DBF993}_is1) (Version: 1.10.0.0 - Auslogics Labs Pty Ltd)
Auto Viewer (HKLM-x32\...\{F0E065FD-8AF6-4AAD-9609-F55C44075781}) (Version: 1.9.0 - Anh-Anh)
BeamNG.drive version final (HKLM-x32\...\BeamNG.drive_is1) (Version: final - The)
BlueStacks 3 (HKLM-x32\...\BlueStacks) (Version: 3.7.44.1625 - BlueStack Systems, Inc.)
BlueVoda Website Builder 18.9 (HKLM-x32\...\BlueVoda_Website_Builder_1.0) (Version: 18.9 - VodaHost)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Brother MFL-Pro Suite DCP-T500W (HKLM-x32\...\{BA07A125-6AC7-4293-89D6-391676FFD041}) (Version: 1.0.2.0 - Brother Industries, Ltd.)
Camtasia 9 (HKLM\...\{9A1BFE8E-398E-497D-B3BE-C1D8688010FC}) (Version: 9.1.1.2546 - TechSmith Corporation) Hidden
Camtasia 9 (HKLM-x32\...\{d298a2fc-0b3a-45ab-9711-d5ca8a3bda00}) (Version: 9.1.1.2546 - TechSmith Corporation)
Car Mechanic Simulator 2018 v.1.3.3 (HKLM-x32\...\Car Mechanic Simulator 2018_is1) (Version:  - )
CGSGameLauncher version 1.0.0.0 (HKLM-x32\...\{0C38A2C1-3851-40BC-A16D-465CA4431DCC}_is1) (Version: 1.0.0.0 - CrackedGameServers.Com)
Cheat Engine 6.7 (HKLM-x32\...\Cheat Engine 6.7_is1) (Version:  - Cheat Engine)
Connect (HKLM-x32\...\MAGIX_connector_is1) (Version: 2.5.1.84 - MAGIX Software GmbH)
CPUCooL (remove only) (HKLM-x32\...\CPUCooL) (Version:  - )
CPUID HWMonitor 1.32 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.32 - )
Discord (HKU\S-1-5-21-1930647357-352460921-2443433937-1000\...\Discord) (Version: 0.0.300 - Discord Inc.)
Driver Booster 5 (HKLM-x32\...\Driver Booster_is1) (Version: 5.1.0 - IObit)
EaseUS Partition Master 12.8 Trial Edition (HKLM-x32\...\EaseUS Partition Master Trial Edition_is1) (Version:  - EaseUS)
Epic Games Launcher (HKLM-x32\...\{5C62BEB3-DB6F-4B27-BCEB-F350F85B32D3}) (Version: 1.1.135.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Equalizer APO (HKLM\...\EqualizerAPO) (Version: 1.2 - )
Farming Simulator 2013 (HKLM-x32\...\FarmingSimulator2013INT_is1) (Version: 1.0 - GIANTS Software)
FileZilla Client 3.29.0 (HKLM-x32\...\FileZilla Client) (Version: 3.29.0 - Tim Kosse)
FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version:  - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version:  - Image-Line)
Flvto YouTube Downloader (HKLM-x32\...\Flvto YouTube Downloader) (Version: 1.0.9 - Hotger)
foobar2000 v1.3.16 (HKLM-x32\...\foobar2000) (Version: 1.3.16 - Peter Pawlowski)
fussbot YTG (64 bit) (HKLM\...\{07281CD2-8F60-444F-83B1-F6D7A839C32E}) (Version: 2.36 - fuss132)
Google Chrome (HKLM\...\{DA081EB6-F64C-358C-9BB0-AF1EA8001F34}) (Version: 63.0.3239.132 - Google, Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.0.0.11" - Rockstar Games)
GS Auto Clicker (HKLM-x32\...\GS Auto Clicker_is1) (Version: V3.1.3 - goldensoft.org)
Hideman 3.3.0.0 (HKLM\...\Hideman) (Version: 3.3.0.0 - )
Hurtworld [Steam] (HKLM-x32\...\{HURTWORLD-6B52-2B42-48D3-6FDF3A861253}_is1) (Version: Any - )
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version:  - Image-Line)
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
IObit Malware Fighter 5 (HKLM-x32\...\IObit Malware Fighter_is1) (Version: 5.5 - IObit)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 7.2.0.11 - IObit)
IOTransfer 2 (HKLM-x32\...\IOTransfer_is1) (Version: 2.0.1.5223 - IOTransfer)
iTunes (HKLM\...\{83B5554C-A279-4FB3-AD92-75381D46CC98}) (Version: 12.7.0.166 - Apple Inc.)
Java 8 Update 144 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
Java 8 Update 144 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
KeepVid Music(Version 8.2.3) (HKLM-x32\...\{ADBA24FE-D6F6-4B21-97F3-D58A327422E4}_is1) (Version: 8.2.3 - KeepVid)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Lisk Nano 1.3.2 (only current user) (HKU\S-1-5-21-1930647357-352460921-2443433937-1000\...\5cb54643-a0c0-58ee-97a6-2ab7b13c24f7) (Version: 1.3.2 - Lisk Foundation)
MAGIX Content and Soundpools (HKLM-x32\...\MAGIX_GlobalContent) (Version: 1.0.0.0 - MAGIX Software GmbH)
MAGIX Soundpool Music Maker - Feel good (HKLM\...\{2407E836-55C8-4F9E-900F-0A8F859CB930}) (Version: 1.0.0.0 - MAGIX Software GmbH) Hidden
Malwarebytes version 3.2.2.2018 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.2.2.2018 - Malwarebytes)
Microsoft OneDrive (HKU\S-1-5-21-1930647357-352460921-2443433937-1000\...\OneDriveSetup.exe) (Version: 17.005.0107.0008 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
MSI Afterburner 4.4.2 (HKLM-x32\...\Afterburner) (Version: 4.4.2 - MSI Co., LTD)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
Music Maker (HKLM\...\{D5FF45D3-3AE3-4490-85DE-04D059606382}) (Version: 25.0.2.44 - MAGIX Software GmbH) Hidden
Music Maker (HKLM-x32\...\MX.{D5FF45D3-3AE3-4490-85DE-04D059606382}) (Version: 25.0.2.44 - MAGIX Software GmbH)
My Summer Car v10.11.2017 (HKLM-x32\...\vsetop.com My Summer Car v10.11.2017_is1) (Version: 10.11.2017 - VseTop.Com)
MyPlaylist version 0.1 (HKLM-x32\...\{78365892-FABA-4ACF-B2B3-7C49925E12C6}_is1) (Version: 0.1 - MyPlaylistInc)
Need for Speed Payback version final (HKLM-x32\...\Need for Speed Payback_is1) (Version: final - The)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.5.1 - Notepad++ Team)
Nox APP Player (HKLM-x32\...\Nox) (Version: 5.1.0.0 - Duodian Technology Co. Ltd.)
NVIDIA 3D Vision Controller Driver 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.7.0.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.7.0.81 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.7.0.81 - NVIDIA Corporation) Hidden
NvvHci (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci) (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 20.0.1 - OBS Project)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
Oracle VM VirtualBox 5.1.28 (HKLM\...\{11BAF690-37C7-4A56-B518-3696BD15592F}) (Version: 5.1.28 - Oracle Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.10.24870 - Electronic Arts, Inc.)
PDFescape Desktop (HKLM-x32\...\PDFescape Desktop) (Version: 2.0.35.34126 - RedSoftware)
PDFescape Desktop Asian Fonts Pack (HKLM\...\{ED6ED3F9-31AC-4360-9F30-7909FC5B66CF}) (Version: 2.0.36.34130 - Red Software) Hidden
PDFescape Desktop Convert Module (HKLM\...\{88332A12-914F-43C2-A1F2-F5E225642EBD}) (Version: 2.0.36.34130 - Red Software) Hidden
PDFescape Desktop Create Module (HKLM\...\{1494D0BD-6284-43C2-87A1-5B2F7A5CA5C1}) (Version: 2.0.36.34130 - Red Software) Hidden
PDFescape Desktop Edit Module (HKLM\...\{37E3FFCA-6A24-4762-826F-4F43F0A97C2E}) (Version: 2.0.36.34130 - Red Software) Hidden
PDFescape Desktop Forms Module (HKLM\...\{6F3B51B6-B27B-4D14-96C5-4B1C1D1149B7}) (Version: 2.0.36.34130 - Red Software) Hidden
PDFescape Desktop Insert Module (HKLM\...\{2F895ED2-6998-4C39-8668-7117804D127A}) (Version: 2.0.36.34130 - Red Software) Hidden
PDFescape Desktop Review Module (HKLM\...\{9BC922F2-4D2F-4FD6-B7C8-9E1C63B3ED39}) (Version: 2.0.36.34130 - Red Software) Hidden
PDFescape Desktop Secure Module (HKLM\...\{D20659F5-61A5-4385-A267-77CF442C1CB0}) (Version: 2.0.36.34130 - Red Software) Hidden
PDFescape Desktop View Module (HKLM\...\{EC492F74-CD9C-419A-8FFA-C49319F59955}) (Version: 2.0.36.34130 - Red Software) Hidden
Pokki (HKU\S-1-5-21-1930647357-352460921-2443433937-1000\...\SweetLabs_AP) (Version: 0.269.7.981 - Pokki)
Prism Video File Converter (HKLM-x32\...\Prism) (Version: 3.04 - NCH Software)
Project CARS 2 (HKLM-x32\...\Project CARS 2_is1) (Version:  - )
PuTTY release 0.70 (64-bit) (HKLM\...\{45B3032F-22CC-40CD-9E97-4DA7095FA5A2}) (Version: 0.70.0.0 - Simon Tatham)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.21.00.830 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.72.410.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8264 - Realtek Semiconductor Corp.)
Refx Nexus (HKLM-x32\...\Refx Nexus) (Version: 2 - VstPlugins4FlStudio)
Reimage Repair (HKLM\...\Reimage Repair) (Version: 1.8.7.2 - Reimage) <==== ATTENTION
Roblox Player for NB (HKU\S-1-5-21-1930647357-352460921-2443433937-1000\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version:  - Roblox Corporation)
Roblox Studio for NB (HKU\S-1-5-21-1930647357-352460921-2443433937-1000\...\{2922D6F1-2865-4EFA-97A9-94EEAB3AFA14}) (Version:  - Roblox Corporation)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.3.1 - Rockstar Games)
Share YouTube Videos version 1 (HKLM-x32\...\{55DAC5D1-B178-42B2-86A3-94A3E0B4F3DD}_is1) (Version: 1 - )
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0380 - NVIDIA Corporation) Hidden
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.104 - Skype Technologies S.A.)
Smart Defrag 5 (HKLM-x32\...\Smart Defrag_is1) (Version: 5.8.0 - IObit)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version:  - )
Starter House (wersja 1.1) (HKLM-x32\...\{A4525CFD-AC9A-420D-9BA4-DDAA3B70D5C2}_is1) (Version: 1.1 - Virus Records)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Storj Share (64-bit) (HKLM\...\Storj Share) (Version: 7.3.2 - Storj Labs Inc.)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1254 - SUPERAntiSpyware.com)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.6 - TeamSpeak Systems GmbH)
TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.0.6447 - TeamViewer)
Trapcode Suite 14 (HKLM\...\Trapcode Suite 14 v14.0.1) (Version:  - Red Giant LLC)
TruckersMP Launcher 1.0.0.4 (HKLM\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 1.0.0.4 - TruckersMP Team)
Tube Thumper (HKLM-x32\...\Tube Thumper) (Version:  - )
Ultra MP4 Video Converter 6.0.0202 (HKLM-x32\...\Ultra MP4 Video Converter_is1) (Version:  - Aone Software)
VBCABLE, The Virtual Audio Cable (HKLM\...\VB:VBCABLE {87459874-1236-4469}) (Version:  - VB-Audio Software)
VirtualDJ 8 (HKLM-x32\...\{A71030FC-B46E-4DBD-AF8D-3867232E44CB}) (Version: 8.2.3324.0 - Atomix Productions)
Vita Concert Grand LE (HKLM\...\{172623AB-BC59-4D94-A1D9-E51F126FC3E3}) (Version: 2.4.0.95 - MAGIX Software GmbH) Hidden
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
WinCDEmu (HKLM-x32\...\WinCDEmu) (Version: 4.1 - Sysprogs)
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
ZAR X (HKLM\...\{85DA9B81-D7F9-4165-8E62-F776B57213F8}_is1) (Version:  - www.z-a-recovery.com)
ZIP Password Unlocker (HKLM-x32\...\{FC309FDB-7E37-47B9-9CCB-A4A9898507D1}_is1) (Version:  - ZIP Password Unlocker, Inc.)
Служба автоматического обновления программ (HKU\S-1-5-21-1930647357-352460921-2443433937-1000\...\MailRuUpdater) (Version:  - Mail.Ru) <==== ATTENTION

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

HKU\S-1-5-21-1930647357-352460921-2443433937-1000\...\ChromeHTML: ->  <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-1930647357-352460921-2443433937-1000_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1930647357-352460921-2443433937-1000_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1930647357-352460921-2443433937-1000_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1930647357-352460921-2443433937-1000_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1930647357-352460921-2443433937-1000_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1930647357-352460921-2443433937-1000_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1930647357-352460921-2443433937-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-01-04] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-01-04] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-01-04] ()
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-01-04] ()
ContextMenuHandlers1-x32: [Advanced Spyware Remover] -> {364BB365-5DF0-45D4-92C5-B0A4F0962C9D} => C:\Program Files (x86)\IObit\Advanced Spyware Remover\IS360Ext.dll [2009-12-10] (IObit)
ContextMenuHandlers1-x32: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2017-09-26] (IObit)
ContextMenuHandlers1-x32: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2017-08-29] ()
ContextMenuHandlers1-x32: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\ShellExt.dll [2017-09-29] (Microsoft Corporation)
ContextMenuHandlers1-x32: [IObit Malware Fighter] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2017-03-31] (IObit)
ContextMenuHandlers1-x32: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight.dll [2017-05-22] (IObit)
ContextMenuHandlers1-x32: [SmartDefragExtension] -> {189F1E63-33A7-404B-B2F6-8C76A452CC54} => C:\WINDOWS\System32\IObitSmartDefragExtension.dll [2016-03-25] (IObit)
ContextMenuHandlers1-x32: [WinCDEmu] -> {D0E37FD2-F675-426F-B09A-2CF37BA46FD5} => C:\Program Files (x86)\WinCDEmu\x64\WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU)
ContextMenuHandlers1-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers2-x32: [Advanced Spyware Remover] -> {364BB365-5DF0-45D4-92C5-B0A4F0962C9D} => C:\Program Files (x86)\IObit\Advanced Spyware Remover\IS360Ext.dll [2009-12-10] (IObit)
ContextMenuHandlers2-x32: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2017-09-26] (IObit)
ContextMenuHandlers2-x32: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\ShellExt.dll [2017-09-29] (Microsoft Corporation)
ContextMenuHandlers2-x32: [WinCDEmu] -> {A9901FCD-B4DF-43A1-BD5D-6C9F88679497} => C:\Program Files (x86)\WinCDEmu\x64\WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-21] (Malwarebytes)
ContextMenuHandlers4-x32: [Advanced Spyware Remover] -> {364BB365-5DF0-45D4-92C5-B0A4F0962C9D} => C:\Program Files (x86)\IObit\Advanced Spyware Remover\IS360Ext.dll [2009-12-10] (IObit)
ContextMenuHandlers4-x32: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2017-09-26] (IObit)
ContextMenuHandlers4-x32: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\ShellExt.dll [2017-09-29] (Microsoft Corporation)
ContextMenuHandlers4-x32: [IObit Malware Fighter] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2017-03-31] (IObit)
ContextMenuHandlers4-x32: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight.dll [2017-05-22] (IObit)
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} =>  -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-01-04] ()
ContextMenuHandlers6-x32: [Advanced Spyware Remover] -> {364BB365-5DF0-45D4-92C5-B0A4F0962C9D} => C:\Program Files (x86)\IObit\Advanced Spyware Remover\IS360Ext.dll [2009-12-10] (IObit)
ContextMenuHandlers6-x32: [IObit Malware Fighter] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2017-03-31] (IObit)
ContextMenuHandlers6-x32: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight.dll [2017-05-22] (IObit)
ContextMenuHandlers6-x32: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-21] (Malwarebytes)
ContextMenuHandlers6-x32: [SmartDefragExtension] -> {189F1E63-33A7-404B-B2F6-8C76A452CC54} => C:\WINDOWS\System32\IObitSmartDefragExtension.dll [2016-03-25] (IObit)
ContextMenuHandlers6-x32: [WinCDEmu] -> {A9901FCD-B4DF-43A1-BD5D-6C9F88679497} => C:\Program Files (x86)\WinCDEmu\x64\WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU)
ContextMenuHandlers6-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers6-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0343C6F5-F93D-490F-88E5-E06294EACFCE} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {05A4F6EC-3A80-4636-8BD5-370C32376F3A} - System32\Tasks\ASC11_SkipUac_NB => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [2017-12-26] (IObit)
Task: {080788B4-E805-479A-A4CC-D04D914E92EA} - System32\Tasks\SmartDefrag_Startup => C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe [2017-12-20] (IObit)
Task: {0A0F8AF0-316E-466E-B511-EC2EF888F737} - System32\Tasks\AdobeAAMUpdater-1.0-NB-PC-NB => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated)
Task: {152C0328-D4C6-4BAE-8CF1-60DE0DEEE3A2} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {152DCA62-E8FB-436A-B89A-8F34873168E2} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {205618AD-31BD-4EA6-8D67-A32FBC5A9F2A} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {213C0A17-5D50-4F59-B3AE-6581E047D594} - System32\Tasks\ASC11_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe [2017-12-26] (IObit)
Task: {25881D40-A3B8-4EBE-B098-4ACC24505572} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [2017-12-15] ()
Task: {29E802A5-A5DC-433A-AAF8-CD56D01A6D0B} - System32\Tasks\SUPERAntiSpyware Scheduled Task be4a1ef0-e169-4f18-a36f-f0a49fcd9c9d => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
Task: {2CF6D2DD-F3A4-4239-B8AD-7F65B66DFE56} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3701DBE2-41D3-4037-8DC0-914BF8FABB0B} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-07-19] (NVIDIA Corporation)
Task: {3976310D-E3FD-40DE-B898-E1AE04FE4D23} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\MpCmdRun.exe [2018-01-20] (Microsoft Corporation)
Task: {4E7252C5-688B-4752-B790-72854550E443} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-07-19] (NVIDIA Corporation)
Task: {5117A097-287D-404B-A889-356939359BE7} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {54A5590F-1294-4359-A1D2-94769F23DAC8} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {555950E4-B9A5-4BA7-8E2B-92E7EF5E78AB} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {55ABFCDC-050C-48F9-A805-CE4D8D5718CF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\MpCmdRun.exe [2018-01-20] (Microsoft Corporation)
Task: {5A1F56EC-7523-483C-9F02-8AEA0F48E38E} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {5EA475A7-7D39-4D1D-B744-F97BF35A1089} - System32\Tasks\SmartDefrag_AutoAnalyze => C:\Program Files (x86)\IObit\Smart Defrag\AutoDefrag.exe [2016-06-06] (IObit)
Task: {609DB9A3-D424-4944-92F0-AF43F3AD8D03} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {6555F25E-99FC-4C86-82EE-371218F8CA96} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2017-07-24] (Apple Inc.)
Task: {65F91B70-5567-4D65-B9B6-9955238E750E} - System32\Tasks\S-1-5-21-1930647357-352460921-2443433937-1000\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [2017-09-29] (Microsoft Corporation)
Task: {668CCC30-3707-488F-837A-F0B0D5365A2B} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\5.1.0\Scheduler.exe [2017-10-24] (IObit)
Task: {67308E01-93A6-4343-8B03-38590E3F7953} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-07-19] (NVIDIA Corporation)
Task: {6ACB6F2B-25D5-40FE-B991-4FB788342E2A} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-07-19] (NVIDIA Corporation)
Task: {6CF4B28E-35C5-4530-AE6D-BFE6B0568E47} - System32\Tasks\ReimageUpdater => C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [2017-09-11] (Reimage®) <==== ATTENTION
Task: {6F95D90B-4F24-4DAE-BF7A-800913C2BA0E} - System32\Tasks\LaunchChromeTask111 => C:\Program Files\FileZilla FTP Client\FileZilla.exe [2017-11-06] (FileZilla Project)
Task: {7A9333C9-CFEC-4950-8B15-E09ECD49EBCF} - System32\Tasks\IObitSelfCheckTask => C:\Program Files (x86)\IObit\Smart Defrag\IObitSelfCheck.exe [2016-10-18] (IObit)
Task: {811A5DA2-2919-4692-8B4A-CCBB35DFCCD9} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8333A1CE-A41E-4DA9-B450-A1047AA460E1} - System32\Tasks\Adobe Uninstaller => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2017-09-20] (Adobe Systems Incorporated)
Task: {899B0E83-75B3-4A28-897A-AA5E8103D857} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8BEEE456-6DEC-4692-BDCF-D57F60C60CB3} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-07-19] (NVIDIA Corporation)
Task: {8CFBE188-1900-4C6F-BEEE-3B4758E0A112} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {8F3FF6C1-3F4E-460F-B5A9-CE432F10ED47} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\MpCmdRun.exe [2018-01-20] (Microsoft Corporation)
Task: {920D1801-6946-4ADF-AD53-5D0C004F19F8} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {93655A0E-3214-4B5D-A02F-D37FB1F0E7E9} - System32\Tasks\AdobeGCInvoker-1.0-NB-PC-NB => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-01-05] (Adobe Systems, Incorporated)
Task: {9790DB1D-0EB3-44FB-879C-3CE9B0FFDA02} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-09-09] (Google Inc.)
Task: {9F2D1769-A19F-447A-B950-2A9D726F6700} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-07-19] (NVIDIA Corporation)
Task: {A53C91BD-0242-4DD3-8482-2880DDE0F798} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {B780F890-5676-4663-9342-6A1317B2C1E9} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {BA0221FA-DD20-4B25-9A95-BE7E06DF53AF} - System32\Tasks\IOTransfer SkipUAC (NB) => C:\Program Files (x86)\IOTransfer\IOT\IOTransfer.exe [2017-12-21] (IOTransfer Studio)
Task: {BA8050A3-EAEA-4B23-8989-6341E7D3EA73} - System32\Tasks\SUPERAntiSpyware Scheduled Task ec99f392-17c8-4221-ac04-624a2d658297 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
Task: {BB6B8798-7333-4903-82CC-D42EF2602F97} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {BBF1604F-11AD-48C7-B89F-CFD945E923BF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-09-09] (Google Inc.)
Task: {CBB7ED6C-8186-43ED-A405-DB43B7F2AE16} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\MpCmdRun.exe [2018-01-20] (Microsoft Corporation)
Task: {D19BBCD2-6997-4140-B5F9-968827C58909} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-07-19] (NVIDIA Corporation)
Task: {D239775D-3CAA-459D-8F02-A1C47F2102E8} - System32\Tasks\SweetLabs App Platform => C:\Users\NB\AppData\Local\SweetLabs App Platform\Engine\ServiceHostAppUpdater.exe [2016-09-15] (Pokki)
Task: {D38B912A-E209-4A75-9E7D-3CBA214B9E9D} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D44A752D-354D-4549-B0E2-BDE72CEC2409} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D717D88B-2C3F-4A68-BB9F-1D680D43E409} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {D99E6B15-0477-45C7-B3C1-BC2DDEB02F7B} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-07-19] (NVIDIA Corporation)
Task: {E48D570E-B96E-48DC-945B-D26F5EC3649C} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {EA884D77-4BA6-430C-B4AF-C9447624C18C} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {EE114EE3-86B6-4D6D-A9A6-B751832C00DC} - System32\Tasks\Connect => C:\Program Files (x86)\MAGIX\Connect\connect.exe [2017-05-10] (MAGIX Software GmbH)
Task: {F582482B-7CF4-4240-BCE7-582FF69FBB1B} - System32\Tasks\SmartDefrag_Update => C:\Program Files (x86)\IObit\Smart Defrag\AutoUpdate.exe [2017-07-28] (IObit)
Task: {FEF0302E-1B22-46C4-8AC9-BD94766C7FCD} - System32\Tasks\Driver Booster SkipUAC (NB) => C:\Program Files (x86)\IObit\Driver Booster\5.1.0\DriverBooster.exe [2017-11-16] (IObit)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Connect.job => C:\Program Files (x86)\MAGIX\Connect\connect.exe
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task be4a1ef0-e169-4f18-a36f-f0a49fcd9c9d.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task ec99f392-17c8-4221-ac04-624a2d658297.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


Shortcut: C:\Users\NB\Favorites\NCH Software Download Site.lnk -> hxxp://www.nchsoftware.com/index.htm
Shortcut: C:\Users\NB\Desktop\CRYPTO\marlin-0.9.0-win32\Start.bat.lnk -> C:\Users\NB\Desktop\CRYPTO\marlin-0.9.0-win32\Start.bat ()
Shortcut: C:\Users\NB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Online Help.lnk -> hxxp://www.virtualdj.com/wiki
Shortcut: C:\Users\NB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\www.virtualdj.com.lnk -> hxxp://www.virtualdj.com

ShortcutWithArgument: C:\Users\NB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikacje Chrome\Chrome RDP for Google Cloud Platform.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=mpbbnannobiobpnfblimoapbephgifkm

==================== Loaded Modules (Whitelisted) ==============

2017-09-29 14:41 - 2017-09-29 14:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-09-09 16:59 - 2017-10-09 19:38 - 002289096 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2011-12-01 17:11 - 2011-12-01 17:11 - 000743936 _____ () C:\Program Files (x86)\CPUCooL\CooLSrv.exe
2017-09-11 18:07 - 2005-04-22 05:36 - 000143360 _____ () C:\WINDOWS\system32\BrSNMP64.dll
2017-12-15 10:04 - 2017-12-15 10:04 - 000725288 _____ () C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
2018-01-04 09:04 - 2018-01-04 09:04 - 000649672 _____ () C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
2018-01-06 05:21 - 2018-01-03 10:20 - 004063064 _____ () C:\Program Files (x86)\Google\Chrome\Application\63.0.3239.132\libglesv2.dll
2018-01-06 05:21 - 2018-01-03 10:20 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\63.0.3239.132\libegl.dll
2017-12-16 21:14 - 2017-12-16 21:14 - 004307968 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1712.3351.0_x64__8wekyb3d8bbwe\Calculator.exe
2018-02-16 14:25 - 2018-02-16 14:27 - 025843200 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.18011.13411.0_x64__8wekyb3d8bbwe\Music.UI.exe
2018-02-16 14:25 - 2018-02-16 14:28 - 000306176 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.18011.13411.0_x64__8wekyb3d8bbwe\SharedUI.dll
2018-02-16 14:25 - 2018-02-16 14:26 - 006748672 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.18011.13411.0_x64__8wekyb3d8bbwe\EntCommon.dll
2017-12-15 12:31 - 2017-12-15 12:32 - 000902656 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.18011.13411.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.UI.Xaml.dll
2017-12-16 20:58 - 2017-12-16 21:00 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.18011.13411.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-02-16 14:25 - 2018-02-16 14:28 - 005527040 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.18011.13411.0_x64__8wekyb3d8bbwe\Music.Visuals.dll
2018-02-16 14:26 - 2018-02-16 14:32 - 000477696 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18011.13110.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2018-02-16 14:26 - 2018-02-16 14:32 - 061401088 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18011.13110.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2017-12-16 21:10 - 2017-12-16 21:15 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18011.13110.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2018-02-16 14:26 - 2018-02-16 14:33 - 000010240 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18011.13110.0_x64__8wekyb3d8bbwe\RenderingPlugin.dll
2018-02-16 14:26 - 2018-02-16 14:31 - 003741184 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18011.13110.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2017-12-16 21:10 - 2017-12-16 21:15 - 002270720 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18011.13110.0_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll
2018-02-16 14:26 - 2018-02-16 14:33 - 016183296 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18011.13110.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2018-02-16 14:26 - 2018-02-16 14:31 - 003592704 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18011.13110.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2018-02-16 14:26 - 2018-02-16 14:27 - 003226112 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18011.13110.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2018-01-31 14:15 - 2018-01-31 14:17 - 004601048 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18011.13110.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-02-16 14:26 - 2018-02-16 14:31 - 000090624 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18011.13110.0_x64__8wekyb3d8bbwe\BendRealityNode.dll
2018-02-16 14:26 - 2018-02-16 14:32 - 000043520 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18011.13110.0_x64__8wekyb3d8bbwe\Microsoft.Photos.Edit.Services.dll
2017-12-16 21:10 - 2017-12-16 21:15 - 001367040 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18011.13110.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll
2018-02-16 14:26 - 2018-02-16 14:33 - 000618496 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18011.13110.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-02-16 14:26 - 2018-02-16 14:33 - 000200192 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18011.13110.0_x64__8wekyb3d8bbwe\SKU.dll
2018-02-16 14:26 - 2018-02-16 14:31 - 000121856 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18011.13110.0_x64__8wekyb3d8bbwe\ExploreModel.dll
2018-02-16 14:26 - 2018-02-16 14:31 - 000046592 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18011.13110.0_x64__8wekyb3d8bbwe\ImageDecoding.dll
2017-09-29 14:41 - 2017-09-29 14:41 - 001909248 _____ () C:\Windows\ShellExperiences\PeopleCommonControls.dll
2017-09-29 14:41 - 2017-09-29 14:41 - 001266176 _____ () C:\Windows\ShellExperiences\PeopleBarFlyout.dll
2017-12-15 13:01 - 2017-11-26 13:26 - 002988032 _____ () C:\Windows\ShellExperiences\WindowsInternal.People.PeoplePicker.dll
2017-09-29 14:41 - 2017-09-29 14:41 - 002459648 _____ () C:\Windows\ShellExperiences\WindowsInternal.People.Relevance.dll
2017-12-15 13:03 - 2017-11-26 13:23 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-12-15 13:02 - 2017-11-26 13:01 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-01-31 14:16 - 2018-01-31 14:18 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1803.279.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2018-01-31 14:16 - 2018-01-31 14:18 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1803.279.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2018-01-31 14:16 - 2018-01-31 14:20 - 025135104 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1803.279.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2018-01-31 14:16 - 2018-01-31 14:19 - 002542592 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1803.279.0_x64__kzf8qxf38zg5c\skypert.dll
2018-02-16 14:25 - 2018-02-16 14:30 - 027138048 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17122.15711.0_x64__8wekyb3d8bbwe\Video.UI.exe
2018-02-16 14:25 - 2018-02-16 14:29 - 000306176 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17122.15711.0_x64__8wekyb3d8bbwe\SharedUI.dll
2018-02-16 14:25 - 2018-02-16 14:27 - 006687744 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17122.15711.0_x64__8wekyb3d8bbwe\EntCommon.dll
2017-12-16 20:58 - 2017-12-16 21:00 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17122.15711.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-07-19 20:55 - 2017-07-19 20:55 - 000665088 _____ () C:\Program Files\EqualizerAPO\EqualizerAPO.dll
2017-07-08 11:52 - 2017-07-08 11:52 - 002983917 _____ () C:\Program Files\EqualizerAPO\libfftw3f-3.dll
2015-11-22 21:05 - 2015-11-22 21:05 - 001530880 _____ () C:\Program Files\EqualizerAPO\libsndfile-1.dll
2017-12-24 22:10 - 2017-05-22 11:16 - 000442144 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl
2017-12-24 22:10 - 2017-05-22 11:16 - 000210720 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl
2017-12-24 22:10 - 2017-05-22 11:16 - 000059680 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl
2018-02-01 17:03 - 2016-11-30 11:26 - 000624960 _____ () C:\Program Files (x86)\IOTransfer\Updater\ProductStatistics.dll
2018-02-01 17:57 - 2017-08-04 13:44 - 000082720 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\GetProcessDLL.dll
2017-12-14 18:56 - 2017-12-14 18:56 - 000071680 _____ () C:\Program Files (x86)\MSI Afterburner\RTMUI.dll
2017-12-14 18:56 - 2017-12-14 18:56 - 000056832 _____ () C:\Program Files (x86)\MSI Afterburner\RTFC.dll
2017-12-14 18:56 - 2017-12-14 18:56 - 000357888 _____ () C:\Program Files (x86)\MSI Afterburner\RTUI.dll
2017-12-14 18:56 - 2017-12-14 18:56 - 000232448 _____ () C:\Program Files (x86)\MSI Afterburner\RTCore.dll
2017-12-14 18:57 - 2017-12-14 18:57 - 000566784 _____ () C:\Program Files (x86)\MSI Afterburner\RTHAL.dll
2017-12-24 22:10 - 2017-05-22 11:17 - 000899872 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\webres.dll
2017-12-24 22:10 - 2017-05-23 18:57 - 000631584 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\ProductStatistics.dll
2017-12-24 22:10 - 2017-05-22 11:16 - 000524064 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\sqlite3.dll
2018-02-03 13:07 - 2017-03-13 21:23 - 000758784 _____ () C:\Program Files (x86)\KeepVid\KeepVid Music\WUL.Core.dll
2018-02-03 13:09 - 2016-07-21 10:54 - 000137728 _____ () C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\CBSCreateVC.dll
2018-02-03 13:09 - 2016-10-08 17:03 - 001506304 _____ () C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\DAQExp.dll
2017-11-06 20:31 - 2017-11-06 20:31 - 000073384 _____ () C:\Program Files\FileZilla FTP Client\fzshellext.dll
2018-02-01 17:05 - 2016-12-12 16:52 - 000442144 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\madExcept_.bpl
2018-02-01 17:05 - 2016-12-12 16:52 - 000210720 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\madBasic_.bpl
2018-02-01 17:05 - 2016-12-12 16:52 - 000059680 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\madDisAsm_.bpl
2017-09-09 17:24 - 2017-11-29 06:09 - 000781088 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2017-09-09 17:24 - 2017-12-15 20:59 - 002558752 _____ () C:\Program Files (x86)\Steam\video.dll
2017-09-09 17:24 - 2016-09-01 02:02 - 004969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2017-12-15 11:44 - 2017-11-04 02:54 - 000351520 _____ () C:\Program Files (x86)\Steam\libavresample-3.dll
2017-12-15 11:44 - 2017-11-04 02:54 - 000695584 _____ () C:\Program Files (x86)\Steam\libavformat-57.dll
2017-12-15 11:44 - 2017-11-04 02:54 - 000783648 _____ () C:\Program Files (x86)\Steam\libswscale-4.dll
2017-12-15 11:44 - 2017-11-04 02:54 - 000847136 _____ () C:\Program Files (x86)\Steam\libavutil-55.dll
2017-09-09 17:24 - 2016-09-01 02:02 - 001195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2017-09-09 17:24 - 2016-09-01 02:02 - 001563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2017-12-15 11:44 - 2017-11-04 02:54 - 005137696 _____ () C:\Program Files (x86)\Steam\libavcodec-57.dll
2017-09-09 17:24 - 2017-12-15 20:59 - 000904992 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2017-09-09 17:24 - 2016-07-04 23:17 - 000266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2017-09-09 18:05 - 2017-09-07 03:04 - 000678400 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\SDL2.dll
2017-09-09 18:05 - 2017-10-31 05:44 - 071471904 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
2017-09-09 17:24 - 2015-09-25 00:52 - 000119208 _____ () C:\Program Files (x86)\Steam\winh264.dll
2018-02-01 17:57 - 2017-06-10 15:33 - 000631584 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\ProductStatistics.dll
2017-09-26 21:22 - 2017-09-26 21:22 - 001984000 ____R () C:\Program Files (x86)\Skype\Phone\skypert.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\WINDOWS\system32\Drivers\wqtjrtrz.sys:changelist [304]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-12-26 23:11 - 2017-10-21 10:34 - 000001327 _____ C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1       prod.telemetry.ros.rockstargames.com
127.0.0.1       prod.anticheat.ros.rockstargames.com
127.0.0.1       prod.badsport.ros.rockstargames.com
127.0.0.1       prod.modders.ros.rockstargames.com
127.0.0.1       prod.bans.ros.rockstargames.com
127.0.0.1       prod.report.ros.rockstargames.com
127.0.0.1       prod.reports.ros.rockstargames.com
127.0.0.1       prod.modder.ros.rockstargames.com
127.0.0.1       localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1930647357-352460921-2443433937-1000\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img1.jpg
DNS Servers: 192.168.8.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "ControlCenter4"
HKLM\...\StartupApproved\Run32: => "BrStsMon00"
HKLM\...\StartupApproved\Run32: => "BrHelp"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "Razer Synapse"
HKU\S-1-5-21-1930647357-352460921-2443433937-1000\...\StartupApproved\StartupFolder: => "CPUCooL.lnk"
HKU\S-1-5-21-1930647357-352460921-2443433937-1000\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-1930647357-352460921-2443433937-1000\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-1930647357-352460921-2443433937-1000\...\StartupApproved\Run: => "Flvto YouTube Downloader"
HKU\S-1-5-21-1930647357-352460921-2443433937-1000\...\StartupApproved\Run: => "MailRuUpdater"
HKU\S-1-5-21-1930647357-352460921-2443433937-1000\...\StartupApproved\Run: => "SUPERAntiSpyware"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{E0DA8935-48F5-4B0B-B597-F5CEB4622B91}] => (Allow) I:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{429A0197-CBBC-4975-B710-0402778642FC}] => (Allow) I:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{F1D36BC4-91FB-42B2-8776-29EE319E7762}] => (Allow) I:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{5B4012D7-58B1-4A65-A169-64181C4F4B97}] => (Allow) I:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{A8F15712-D22B-4E95-AACA-30473CC087E0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{19E24D8E-EFFC-4740-A07A-A26A0CBF3DD3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{495D5C40-FEDF-4137-9197-88E710025274}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{427BC921-F4D4-47E9-94FF-560DD3082F15}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{90EBF8F0-2869-4B08-BCF6-58D192D7C554}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Robocraft\Robocraft.exe
FirewallRules: [{3442A7C9-EBD8-4A23-93D6-466E476A8636}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Robocraft\Robocraft.exe
FirewallRules: [UDP Query User{719BF973-EE5D-414C-AC92-DB540D3E86EA}C:\program files (x86)\beamng.drive\bin64\beamng.drive.x64.exe] => (Allow) C:\program files (x86)\beamng.drive\bin64\beamng.drive.x64.exe
FirewallRules: [TCP Query User{3781CAED-ADAF-4EF0-A529-EA237975DF26}C:\program files (x86)\beamng.drive\bin64\beamng.drive.x64.exe] => (Allow) C:\program files (x86)\beamng.drive\bin64\beamng.drive.x64.exe
FirewallRules: [UDP Query User{5FE949BE-3B98-4436-92AA-3F70205E54BF}C:\games\my summer car v10.11.2017\mysummercar.exe] => (Allow) C:\games\my summer car v10.11.2017\mysummercar.exe
FirewallRules: [TCP Query User{23449DC3-F546-485A-AB91-020C368A7608}C:\games\my summer car v10.11.2017\mysummercar.exe] => (Allow) C:\games\my summer car v10.11.2017\mysummercar.exe
FirewallRules: [UDP Query User{F9ED3980-3698-4A04-B7E0-32382CD53FE2}C:\program files\adobe\adobe after effects cc 2017\support files\afterfx.exe] => (Allow) C:\program files\adobe\adobe after effects cc 2017\support files\afterfx.exe
FirewallRules: [TCP Query User{7058734A-4F20-4F13-88ED-16A93D934642}C:\program files\adobe\adobe after effects cc 2017\support files\afterfx.exe] => (Allow) C:\program files\adobe\adobe after effects cc 2017\support files\afterfx.exe
FirewallRules: [{4BFDF0DC-1727-4CD8-BFEC-DDB9A9238B0C}] => (Allow) C:\Program Files (x86)\MAGIX\Music Maker\25\MusicMaker.exe
FirewallRules: [{0DC7A3B3-9C3B-42E3-93AD-80B571465721}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{3C163997-C67A-4048-BA06-86AC6C3DF4FB}] => (Allow) I:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{43567F65-9BF8-4313-8951-15BB7F59E79F}] => (Allow) I:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{C39327BC-59C1-4E4B-B24E-246CAFE005FC}] => (Allow) I:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{74D9678C-75BF-4F21-9D8C-34F68763F80A}] => (Allow) I:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{F9ECD5D1-20DF-4527-AA72-67179B65214F}] => (Allow) LPort=8318
FirewallRules: [UDP Query User{116D2072-D401-46D4-96B0-90A8ABC45F07}C:\program files\java\jre1.8.0_144\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_144\bin\javaw.exe
FirewallRules: [TCP Query User{481D78C8-1F8D-43E1-AF23-628A61329868}C:\program files\java\jre1.8.0_144\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_144\bin\javaw.exe
FirewallRules: [{69B62F11-ABCC-44DE-8E0C-7EE08A0797A1}] => (Allow) I:\SteamLibrary\steamapps\common\Business Tour\BusinessTour.exe
FirewallRules: [{098F15F9-C6DB-48F1-BE4E-FC3A21C3BCB1}] => (Allow) I:\SteamLibrary\steamapps\common\Business Tour\BusinessTour.exe
FirewallRules: [UDP Query User{CA5665FA-9919-4CBE-B4CF-004AE503D5F2}C:\program files\adobe\adobe dreamweaver cc 2017\node\node.exe] => (Allow) C:\program files\adobe\adobe dreamweaver cc 2017\node\node.exe
FirewallRules: [TCP Query User{2D53BAB0-8D9D-4108-A8C6-463159891CEA}C:\program files\adobe\adobe dreamweaver cc 2017\node\node.exe] => (Allow) C:\program files\adobe\adobe dreamweaver cc 2017\node\node.exe
FirewallRules: [{44F4DB16-0926-4026-991D-ADACBBF394D0}] => (Allow) I:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{90878D01-B7EC-4F9B-AC5A-BB694725EB35}] => (Allow) I:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{E453E934-15F6-4969-A526-0524B41EE436}] => (Allow) LPort=54925
FirewallRules: [{8FC146FE-C49C-43DF-BE57-C1CC34CDA413}] => (Allow) C:\Program Files (x86)\BlueStacks\HD-Plus-Service.exe
FirewallRules: [{99FF07FD-45E3-4520-8DC0-0AA6608B0B4B}] => (Allow) C:\Users\NB\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{BADE365F-6188-40FD-9F51-FDEDA0B1FCA6}] => (Allow) C:\Users\NB\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{9B4D971A-EEC1-4F27-89AE-E7B21446AB25}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{553A9C8A-AA5A-4326-B654-2A515E8B2821}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{B32F6F89-1A79-4D18-8DC5-10324B756D3F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{6E93F616-9473-4158-B529-EFB90F61AB60}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{AE0B5787-73E1-4BE3-BF23-3642E06A16F4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{5A9B3026-C3CF-448D-A37F-4F3932BDEDA2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{166B62BC-5791-4457-B6EE-D6E009057300}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{D6A5D933-0F5E-40C6-B26E-456685552233}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{F5C1A2B0-BC17-4A6C-92DB-4BE374E9F176}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{FD3BABF4-5634-467F-B169-D07D9DE46E5A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{CAF17010-65A0-4B70-BF30-DCE53FD1EB7B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{811416DA-D967-47D1-BB65-3A775724E150}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{DEA93835-A5D1-462A-B718-B516CE660979}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{A524B119-FD76-4DFF-9385-960A59D056BA}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{8B499827-4813-47DC-8E72-FE0235842F2F}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [TCP Query User{1024308D-4645-4405-9BC8-9ABCC090C914}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [UDP Query User{2646B3B1-2EC5-4864-9C2F-0FE033B4F2C0}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [TCP Query User{383068E6-25C9-4929-A7E1-DBC8D13AA70B}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [UDP Query User{BBA02781-C252-45F3-939A-3ED42FC1C390}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [{E36D2360-BCB7-4709-92F4-316556E37F04}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.1.0\DriverBooster.exe
FirewallRules: [{92B61538-08FD-4AF5-A220-CF7310A7D987}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.1.0\DriverBooster.exe
FirewallRules: [{8FE3877D-7D31-41DD-8446-16391C21055A}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.1.0\DBDownloader.exe
FirewallRules: [{DB3B23E4-B866-4916-80BD-323DD1142C18}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.1.0\DBDownloader.exe
FirewallRules: [{AD323E9E-B664-4C84-B9F7-6C4E72D3B0F8}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.1.0\AutoUpdate.exe
FirewallRules: [{A0A8EDDB-29A8-4C15-836E-CB8B09E37246}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.1.0\AutoUpdate.exe
FirewallRules: [{48E46FCE-494D-479D-BC0A-C9DAD1B1ACE8}] => (Allow) I:\GRY\GTA5\GTA5.exe
FirewallRules: [{0EF1266A-93B2-4E6C-840F-C6AF3874627B}] => (Allow) I:\GRY\GTA5\GTA5.exe
FirewallRules: [TCP Query User{2CAD07E3-A970-4332-A326-5909F08E04D8}C:\users\nb\appdata\local\gamerhash\1.10.4\bin\claymore_cryptonote\nscpucnminer64.gh] => (Allow) C:\users\nb\appdata\local\gamerhash\1.10.4\bin\claymore_cryptonote\nscpucnminer64.gh
FirewallRules: [UDP Query User{1AFE5AA6-BBFA-4116-BD80-BC58CBE08F4A}C:\users\nb\appdata\local\gamerhash\1.10.4\bin\claymore_cryptonote\nscpucnminer64.gh] => (Allow) C:\users\nb\appdata\local\gamerhash\1.10.4\bin\claymore_cryptonote\nscpucnminer64.gh
FirewallRules: [{79F08689-A4CC-4E18-90F4-1EA8196CFC1D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{E0B0C898-5820-4E9B-B28F-32A02203E28A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{5F62E92E-B9BE-46E6-9441-C00EAB53A708}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{93AF20F6-E842-4E39-8646-35EE84E05DCE}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{BF770D90-F5E8-427E-BE7D-A657A4CEE86B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{919A6ED8-4A73-4347-98A5-CBA79EED3A0A}C:\users\nb\desktop\bytecoinwallet-win64\bytecoinwallet.exe] => (Allow) C:\users\nb\desktop\bytecoinwallet-win64\bytecoinwallet.exe
FirewallRules: [UDP Query User{211DF320-B2CA-453E-AA0E-60959D5FFCE1}C:\users\nb\desktop\bytecoinwallet-win64\bytecoinwallet.exe] => (Allow) C:\users\nb\desktop\bytecoinwallet-win64\bytecoinwallet.exe
FirewallRules: [TCP Query User{1C2A9148-A573-4727-98FF-3512BF80F161}C:\program files\adobe\adobe media encoder cc 2017\adobe media encoder.exe] => (Allow) C:\program files\adobe\adobe media encoder cc 2017\adobe media encoder.exe
FirewallRules: [UDP Query User{2AEF72B3-AA35-492E-989D-B09B1A37DC72}C:\program files\adobe\adobe media encoder cc 2017\adobe media encoder.exe] => (Allow) C:\program files\adobe\adobe media encoder cc 2017\adobe media encoder.exe
FirewallRules: [{1AE10DFC-DE55-4C7E-8FE0-C73B5EE87219}] => (Allow) I:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{A5ABB050-3C6C-4B7B-8432-9DF2ACAA2057}] => (Allow) I:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{530A667F-33EC-4900-8180-55795CA565D0}] => (Allow) I:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{6A2ABBEA-735D-4B46-8E0B-61D0D53C979B}] => (Allow) I:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [TCP Query User{0A56CD94-E287-442C-A5F8-B81A245FC28C}C:\users\nb\desktop\astroneer.v0.5.0.0 — kopia\astro\binaries\win64\astro-win64-shipping.exe] => (Allow) C:\users\nb\desktop\astroneer.v0.5.0.0 — kopia\astro\binaries\win64\astro-win64-shipping.exe
FirewallRules: [UDP Query User{78AFC384-4984-4925-90E2-6E6A74268B05}C:\users\nb\desktop\astroneer.v0.5.0.0 — kopia\astro\binaries\win64\astro-win64-shipping.exe] => (Allow) C:\users\nb\desktop\astroneer.v0.5.0.0 — kopia\astro\binaries\win64\astro-win64-shipping.exe
FirewallRules: [{45CE2C86-6276-4458-98BC-831ABD1CA3E4}] => (Allow) I:\SteamLibrary\steamapps\common\SCP Secret Laboratory\SCPSL.exe
FirewallRules: [{1E9C635D-4BF1-4910-8925-76D53CC1082D}] => (Allow) I:\SteamLibrary\steamapps\common\SCP Secret Laboratory\SCPSL.exe
FirewallRules: [{0652AD88-080B-4E2E-BEF0-109F7D99F43C}] => (Allow) I:\SteamLibrary\steamapps\common\SCP Secret Laboratory\LocalAdmin.exe
FirewallRules: [{EC5425AE-6733-4E96-9E46-DC24350629E5}] => (Allow) I:\SteamLibrary\steamapps\common\SCP Secret Laboratory\LocalAdmin.exe
FirewallRules: [TCP Query User{221F3795-F61A-4106-93BE-437D39EF10E9}C:\users\nb\desktop\scrap mechanic v0.1.23 [shranter]\release\scrapmechanic.exe] => (Allow) C:\users\nb\desktop\scrap mechanic v0.1.23 [shranter]\release\scrapmechanic.exe
FirewallRules: [UDP Query User{5CA3853A-BCBF-4316-824F-A801B9A6B742}C:\users\nb\desktop\scrap mechanic v0.1.23 [shranter]\release\scrapmechanic.exe] => (Allow) C:\users\nb\desktop\scrap mechanic v0.1.23 [shranter]\release\scrapmechanic.exe
FirewallRules: [TCP Query User{0DD1B709-7AFD-4CAF-BCCE-9FAB8F56DC76}C:\users\nb\desktop\scrap mechanic v0.2.9\release\scrapmechanic.exe] => (Allow) C:\users\nb\desktop\scrap mechanic v0.2.9\release\scrapmechanic.exe
FirewallRules: [UDP Query User{7CB6335D-1A10-4108-BF25-C38643199D7D}C:\users\nb\desktop\scrap mechanic v0.2.9\release\scrapmechanic.exe] => (Allow) C:\users\nb\desktop\scrap mechanic v0.2.9\release\scrapmechanic.exe
FirewallRules: [{559AA4E8-9E03-400F-B065-55DF600E42E6}] => (Allow) C:\Program Files (x86)\IObit\IObit Malware Fighter\Surfing Protection\FFNativeMessage.exe
FirewallRules: [{A4D66F86-090D-41EB-983D-CA313E973724}] => (Allow) C:\Program Files (x86)\IObit\IObit Malware Fighter\Surfing Protection\FFNativeMessage.exe
FirewallRules: [{F4F50427-F25E-48F0-9ECA-D4C0B33277F2}] => (Allow) I:\SteamLibrary\steamapps\common\Saints Row the Third\game_launcher.exe
FirewallRules: [{6CFECE1F-506E-4B33-BABC-14E3B91CB598}] => (Allow) I:\SteamLibrary\steamapps\common\Saints Row the Third\game_launcher.exe
FirewallRules: [{F8085669-0003-4E07-AF99-E77D9E43D483}] => (Allow) I:\SteamLibrary\steamapps\common\Saints Row the Third\SaintsRowTheThird.exe
FirewallRules: [{6556BFEB-9D37-427D-8C36-82EBE155D1B5}] => (Allow) I:\SteamLibrary\steamapps\common\Saints Row the Third\SaintsRowTheThird.exe
FirewallRules: [{791A26AF-AD83-4236-984E-356B98546E07}] => (Allow) I:\SteamLibrary\steamapps\common\Saints Row the Third\SaintsRowTheThird_DX11.exe
FirewallRules: [{5ECD8994-90DF-437D-ABCD-4EC5420260AF}] => (Allow) I:\SteamLibrary\steamapps\common\Saints Row the Third\SaintsRowTheThird_DX11.exe
FirewallRules: [{6306B216-741E-469E-B967-BB04456F945D}] => (Allow) C:\Program Files (x86)\Nox\bin\Nox.exe
FirewallRules: [{BB54539C-26B1-4CAB-BA0C-A9E289BA25EC}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe
FirewallRules: [TCP Query User{B3830E45-2291-4064-977E-8E2D5545F1E4}C:\users\nb\desktop\my.summer.car.v08.02.2018\mysummercar.exe] => (Allow) C:\users\nb\desktop\my.summer.car.v08.02.2018\mysummercar.exe
FirewallRules: [UDP Query User{C8A369F9-7643-4C59-AEA7-7637B201317A}C:\users\nb\desktop\my.summer.car.v08.02.2018\mysummercar.exe] => (Allow) C:\users\nb\desktop\my.summer.car.v08.02.2018\mysummercar.exe
FirewallRules: [TCP Query User{A4C95CF8-D977-4B29-9EA8-C880CC4B1696}C:\users\nb\desktop\gry\the.forest.v73\theforest.exe] => (Allow) C:\users\nb\desktop\gry\the.forest.v73\theforest.exe
FirewallRules: [UDP Query User{BEE61BA7-B935-41CB-8F5D-42281C2EBDE8}C:\users\nb\desktop\gry\the.forest.v73\theforest.exe] => (Allow) C:\users\nb\desktop\gry\the.forest.v73\theforest.exe
FirewallRules: [TCP Query User{6F48A164-C886-4264-8287-82BA510F0923}C:\users\nb\desktop\gry\scrap mechanic v0.2.9\release\scrapmechanic.exe] => (Allow) C:\users\nb\desktop\gry\scrap mechanic v0.2.9\release\scrapmechanic.exe
FirewallRules: [UDP Query User{BAE24158-0671-499A-BAB8-FC02C5213ECD}C:\users\nb\desktop\gry\scrap mechanic v0.2.9\release\scrapmechanic.exe] => (Allow) C:\users\nb\desktop\gry\scrap mechanic v0.2.9\release\scrapmechanic.exe
FirewallRules: [TCP Query User{5755DF3B-C557-4AD1-8156-4A19BA2A494E}C:\users\nb\desktop\siacoin\resources\app\sia\siad.exe] => (Allow) C:\users\nb\desktop\siacoin\resources\app\sia\siad.exe
FirewallRules: [UDP Query User{05BBDF69-25DE-4070-9907-27ECC8789B8E}C:\users\nb\desktop\siacoin\resources\app\sia\siad.exe] => (Allow) C:\users\nb\desktop\siacoin\resources\app\sia\siad.exe
FirewallRules: [{3b84eace-ef5b-48b2-8915-d0af376223d4}] => (Allow) C:\Program Files\Storj Share\Storj Share.exe
FirewallRules: [{a5a11823-472f-45be-b328-04e41f05cf63}] => (Allow) C:\Program Files\Storj Share\Storj Share.exe
FirewallRules: [{798937AB-86C5-4CF1-A892-DCD9F2ECE11C}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{E7AC3945-3620-4456-873C-D8FB3C5FE900}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [TCP Query User{AC004748-CE78-4334-8B09-1B969353D24C}C:\users\nb\desktop\crypto\siacoin\resources\app\sia\siad.exe] => (Allow) C:\users\nb\desktop\crypto\siacoin\resources\app\sia\siad.exe
FirewallRules: [UDP Query User{381BF569-12B0-4509-895C-BBFBDF942376}C:\users\nb\desktop\crypto\siacoin\resources\app\sia\siad.exe] => (Allow) C:\users\nb\desktop\crypto\siacoin\resources\app\sia\siad.exe
FirewallRules: [{B0C0FFEA-B971-49C4-B39E-99B3FA05AF30}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.74.380.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{8DF82463-EF54-4826-B3E0-60C100C45D6D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.74.380.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{EB86ED95-D068-4C48-B14F-12A58CB84790}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.74.380.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{FD08507B-5552-4850-BF2F-9BB42B4EF29E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.74.380.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{AD759CA1-5994-4FF5-8154-907C06647013}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.74.380.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{44E051D0-551D-4175-927C-550EB39FD129}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.74.380.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{1EACC600-1C4C-441B-87A3-075C1C8C93BD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.74.380.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{9AA4562A-AF08-4787-8A61-41941589CFE8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.74.380.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{C69E8396-22DD-408C-B598-3347B9098F01}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.74.380.0_x86__zpdnekdrzrea0\SpotifyWebHelper.exe
FirewallRules: [{7C193DF6-67A0-4FD8-9B1F-BD185CA1E325}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.74.380.0_x86__zpdnekdrzrea0\SpotifyWebHelper.exe
FirewallRules: [{0D4DC757-3CDA-437D-9E34-1559AA4DEC9B}] => (Allow) C:\Program Files (x86)\Farming Simulator 2013\FarmingSimulator2013.exe
FirewallRules: [{D40CE556-B88D-4290-AEC1-5A4B62C7730E}] => (Allow) C:\Program Files (x86)\Farming Simulator 2013\FarmingSimulator2013.exe
FirewallRules: [{E3AF8D0F-A4A3-4C14-9E9B-BD28DC121276}] => (Allow) C:\Program Files (x86)\Farming Simulator 2013\FarmingSimulator2013Game.exe
FirewallRules: [{0E446AAF-4FA4-480F-B9D5-F6E32B180F5C}] => (Allow) C:\Program Files (x86)\Farming Simulator 2013\FarmingSimulator2013Game.exe

==================== Restore Points =========================

09-02-2018 19:01:28 Scheduled Checkpoint
18-02-2018 00:11:18 Removed SlimCleaner Plus

==================== Faulty Device Manager Devices =============

Name: Generic USB Hub
Description: Generic USB Hub
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Generic USB Hub)
Service: usbhub
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (02/18/2018 10:21:41 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Nie można wygenerować kontekstu aktywacji dla „C:\Program Files (x86)\Audacity\audacity.exe”. Błąd w pliku manifestu lub w pliku zasad „” w wierszu .
Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna.
Składniki powodujące konflikt:
Składnik 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.16299.192_none_15c8cdae9364c23b.manifest.
Składnik 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.16299.192_none_5d760485a7e0eb41.manifest.

Error: (02/18/2018 07:12:10 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Nie można wygenerować kontekstu aktywacji dla „C:\Program Files (x86)\Audacity\audacity.exe”. Błąd w pliku manifestu lub w pliku zasad „” w wierszu .
Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna.
Składniki powodujące konflikt:
Składnik 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.16299.192_none_15c8cdae9364c23b.manifest.
Składnik 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.16299.192_none_5d760485a7e0eb41.manifest.

Error: (02/18/2018 02:18:39 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: FarmingSimulator2013Game.exe, wersja: 1.0.0.1, sygnatura czasowa: 0x506761f8
Nazwa modułu powodującego błąd: FarmingSimulator2013Game.exe, wersja: 1.0.0.1, sygnatura czasowa: 0x506761f8
Kod wyjątku: 0xc0000005
Przesunięcie błędu: 0x0006378b
Identyfikator procesu powodującego błąd: 0x489c
Godzina uruchomienia aplikacji powodującej błąd: 0x01d3a8badfa66e42
Ścieżka aplikacji powodującej błąd: C:\Program Files (x86)\Farming Simulator 2013\FarmingSimulator2013Game.exe
Ścieżka modułu powodującego błąd: C:\Program Files (x86)\Farming Simulator 2013\FarmingSimulator2013Game.exe
Identyfikator raportu: 7c913098-7302-4263-85ea-4212f4514faf
Pełna nazwa pakietu powodującego błąd:
Identyfikator aplikacji względem pakietu powodującego błąd:

Error: (02/18/2018 02:06:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: FarmingSimulator2013Game.exe, wersja: 1.0.0.1, sygnatura czasowa: 0x506761f8
Nazwa modułu powodującego błąd: FarmingSimulator2013Game.exe, wersja: 1.0.0.1, sygnatura czasowa: 0x506761f8
Kod wyjątku: 0xc0000005
Przesunięcie błędu: 0x0006378b
Identyfikator procesu powodującego błąd: 0x4ed8
Godzina uruchomienia aplikacji powodującej błąd: 0x01d3a8b81451d695
Ścieżka aplikacji powodującej błąd: C:\Program Files (x86)\Farming Simulator 2013\FarmingSimulator2013Game.exe
Ścieżka modułu powodującego błąd: C:\Program Files (x86)\Farming Simulator 2013\FarmingSimulator2013Game.exe
Identyfikator raportu: ff959366-5e1e-453f-8d2b-69ff8ce026e5
Pełna nazwa pakietu powodującego błąd:
Identyfikator aplikacji względem pakietu powodującego błąd:

Error: (02/18/2018 01:57:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: FarmingSimulator2013Game.exe, wersja: 1.0.0.1, sygnatura czasowa: 0x506761f8
Nazwa modułu powodującego błąd: FarmingSimulator2013Game.exe, wersja: 1.0.0.1, sygnatura czasowa: 0x506761f8
Kod wyjątku: 0xc0000005
Przesunięcie błędu: 0x0006378b
Identyfikator procesu powodującego błąd: 0x4294
Godzina uruchomienia aplikacji powodującej błąd: 0x01d3a8b7ce5f754a
Ścieżka aplikacji powodującej błąd: C:\Program Files (x86)\Farming Simulator 2013\FarmingSimulator2013Game.exe
Ścieżka modułu powodującego błąd: C:\Program Files (x86)\Farming Simulator 2013\FarmingSimulator2013Game.exe
Identyfikator raportu: af1f8814-e05a-4eb6-936f-953ec0fba8e0
Pełna nazwa pakietu powodującego błąd:
Identyfikator aplikacji względem pakietu powodującego błąd:

Error: (02/18/2018 01:55:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: FarmingSimulator2013Game.exe, wersja: 1.0.0.1, sygnatura czasowa: 0x506761f8
Nazwa modułu powodującego błąd: FarmingSimulator2013Game.exe, wersja: 1.0.0.1, sygnatura czasowa: 0x506761f8
Kod wyjątku: 0xc0000005
Przesunięcie błędu: 0x0006378b
Identyfikator procesu powodującego błąd: 0x3f88
Godzina uruchomienia aplikacji powodującej błąd: 0x01d3a8b794d5f21b
Ścieżka aplikacji powodującej błąd: C:\Program Files (x86)\Farming Simulator 2013\FarmingSimulator2013Game.exe
Ścieżka modułu powodującego błąd: C:\Program Files (x86)\Farming Simulator 2013\FarmingSimulator2013Game.exe
Identyfikator raportu: d8db5b72-62a2-48da-9944-3bf5aaab2841
Pełna nazwa pakietu powodującego błąd:
Identyfikator aplikacji względem pakietu powodującego błąd:

Error: (02/18/2018 01:53:54 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: FarmingSimulator2013Game.exe, wersja: 1.0.0.1, sygnatura czasowa: 0x506761f8
Nazwa modułu powodującego błąd: FarmingSimulator2013Game.exe, wersja: 1.0.0.1, sygnatura czasowa: 0x506761f8
Kod wyjątku: 0xc0000005
Przesunięcie błędu: 0x0006378b
Identyfikator procesu powodującego błąd: 0x4738
Godzina uruchomienia aplikacji powodującej błąd: 0x01d3a8b706015304
Ścieżka aplikacji powodującej błąd: C:\Program Files (x86)\Farming Simulator 2013\FarmingSimulator2013Game.exe
Ścieżka modułu powodującego błąd: C:\Program Files (x86)\Farming Simulator 2013\FarmingSimulator2013Game.exe
Identyfikator raportu: fe715481-4f92-4003-b7f4-77cc35aef088
Pełna nazwa pakietu powodującego błąd:
Identyfikator aplikacji względem pakietu powodującego błąd:

Error: (02/18/2018 01:14:59 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program explorer.exe w wersji 10.0.16299.192 przestał współpracować z systemem Windows i został zamknięty. Aby sprawdzić, czy jest dostępnych więcej informacji na temat tego problemu, sprawdź historię problemu w oknie Zabezpieczenia i konserwacja w Panelu sterowania.

Identyfikator procesu: 2230

Godzina rozpoczęcia: 01d3a88b33089bb9

Godzina zakończenia: 0

Ścieżka aplikacji: C:\Windows\explorer.exe

Identyfikator raportu: 4e9dc598-b8c2-4071-8eb1-9786d80927d7

Pełna nazwa pakietu powodującego błąd:

Identyfikator aplikacji względem pakietu powodującego błąd:


System errors:
=============
Error: (02/18/2018 02:34:18 PM) (Source: Disk) (EventID: 7) (User: )
Description: W urządzeniu \Device\Harddisk2\DR4 wystąpił zły blok.

Error: (02/18/2018 02:34:10 PM) (Source: Disk) (EventID: 7) (User: )
Description: W urządzeniu \Device\Harddisk2\DR4 wystąpił zły blok.

Error: (02/18/2018 02:34:03 PM) (Source: Disk) (EventID: 7) (User: )
Description: W urządzeniu \Device\Harddisk2\DR4 wystąpił zły blok.

Error: (02/18/2018 02:33:57 PM) (Source: Disk) (EventID: 7) (User: )
Description: W urządzeniu \Device\Harddisk2\DR4 wystąpił zły blok.

Error: (02/18/2018 02:33:49 PM) (Source: Disk) (EventID: 7) (User: )
Description: W urządzeniu \Device\Harddisk2\DR4 wystąpił zły blok.

Error: (02/18/2018 02:33:43 PM) (Source: Disk) (EventID: 7) (User: )
Description: W urządzeniu \Device\Harddisk2\DR4 wystąpił zły blok.

Error: (02/18/2018 02:33:37 PM) (Source: Disk) (EventID: 7) (User: )
Description: W urządzeniu \Device\Harddisk2\DR4 wystąpił zły blok.

Error: (02/18/2018 02:33:31 PM) (Source: Disk) (EventID: 7) (User: )
Description: W urządzeniu \Device\Harddisk2\DR4 wystąpił zły blok.


==================== Memory info ===========================

Processor: AMD FX(tm)-6300 Six-Core Processor
Percentage of memory in use: 61%
Total physical RAM: 8191.18 MB
Available physical RAM: 3177.64 MB
Total Virtual: 16383.18 MB
Available Virtual: 9139.35 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:481.84 GB) (Free:88.27 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (PLIKI) (Fixed) (Total:341.8 GB) (Free:341.66 GB) NTFS
Drive e: (FS2013) (CDROM) (Total:1.51 GB) (Free:0 GB) CDFS
Drive i: (GRY) (Fixed) (Total:449.22 GB) (Free:281.37 GB) NTFS
Drive m: (WINDOWS) (Fixed) (Total:528.12 GB) (Free:527.96 GB) NTFS
Drive y: (APPLE) (Fixed) (Total:527.34 GB) (Free:527.19 GB) NTFS

\\?\Volume{1c5c5584-0000-0000-0000-d07578000000}\ () (Fixed) (Total:0.45 GB) (Free:0.08 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 1397.3 GB) (Disk ID: 4648E693)
Partition 1: (Not Active) - (Size=341.8 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=527.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=528.1 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 1C5C5584)
Partition 1: (Active) - (Size=481.8 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=462 MB) - (Type=27)
Partition 3: (Not Active) - (Size=449.2 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================