Author Topic: [Resolved] Sluggish, unusual performance as of late. Unusual Bandwidth issues.  (Read 4681 times)

Offline Broly3k8

  • Bronze Member
  • Posts: 71
I'm not sure how to explain this, but over the past month or two my computer has slowly but surely degraded in performance. From performing slowly and sometimes oddly on the internet (websites not loading properly, and very rarely but sometimes hearing sounds that the page I am on isn't making.) to general bandwidth issues. It's all culminated to me believing something is wrong. Last month I thought maybe the insides were getting a little dirty, so I opened and cleaned it out. Seemed like things worked well the first 24 hours after doing that, but it's only kept degrading, until today when I was playing Tera and it stopped letting me Alt Tab  out of the game, and then after exiting the game altogether, my file explorer went all wonky and I couldn't get anything on the computer to load properly. So here I am.. Again. Also when I tried to run the DDS thing is said it could not run in compatibility mode, and when I searched a way to fix it on Google, it told me to use FRST instead. So here are the logs for that.

FRST:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:07-01-2015
Ran by amanda (administrator) on AMANDA (07-01-2016 14:37:09)
Running from C:\Users\amanda\Downloads
Loaded Profiles: amanda (Available Profiles: amanda & Shawn)
Platform: Windows 8.1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.EXE
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Scarlet.Crush Productions) C:\Program Files\Scarlet Crush Space Productions\bin\ScpService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Rosetta Stone Ltd.) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11\WLTRYSVC.EXE
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(TeamSpeak Systems GmbH) C:\Program Files (x86)\TeamSpeak 3 Client\ts3client_win32.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Hewlett-Packard ) C:\Program Files\IDT\WDM\Beats64.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11\WLTRAY.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeChat\LifeChat.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe
() C:\Users\amanda\AppData\Local\Viber\Viber.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\Hp\Digital Imaging\bin\hpqtra08.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Vimicro Corporation) C:\Program Files (x86)\Vimicro Corporation\VMUVC\VMonitor.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [BeatsOSDApp] => C:\Program Files\IDT\WDM\beats64.exe [41664 2012-08-22] (Hewlett-Packard )
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Program Files\Broadcom\Broadcom 802.11\WLTRAY.exe [10613760 2013-12-20] (Broadcom Corporation)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [8292120 2013-11-14] (Logitech Inc.)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2012-11-12] (IDT, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [557768 2015-02-03] (Adobe Systems Incorporated)
HKLM\...\Run: [LifeChat] => C:\Program Files\Microsoft LifeChat\LifeChat.exe [371712 2009-09-24] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2757424 2015-11-12] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)
HKLM-x32\...\Run: [VMonitorVMUVC] => C:\Program Files (x86)\Vimicro Corporation\VMUVC\VMonitor.exe [143360 2008-08-29] (Vimicro Corporation)
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\raptrstub.exe [55568 2015-05-04] (Raptr, Inc)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2694320 2015-02-15] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565448 2015-11-12] (LogMeIn Inc.)
HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\Overwolf.exe [37632 2014-01-30] (Overwolf LTD)
HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\Run: [SteelSeries Engine] => C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe [242688 2013-11-05] (SteelSeries ApS)
HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\Run: [Spotify Web Helper] => C:\Users\amanda\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1676344 2015-02-15] (Spotify Ltd)
HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\Run: [Razer Comms] => C:\Program Files (x86)\Razer\Comms\RazerComms.exe [2827584 2015-04-06] ()
HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1403304 2015-10-29] (Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\Run: [Viber] => C:\Users\amanda\AppData\Local\Viber\Viber.exe [51657424 2015-11-09] ()
HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8358680 2015-06-01] (Piriform Ltd)
HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\Run: [GoogleChromeAutoLaunch_80D2B08C757C10A992115C1FC2E4FD2B] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [741704 2015-12-10] (Google Inc.)
HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\MountPoints2: {ecad531b-ed11-11e4-bed4-a4db3043911e} - "J:\LaunchU3.exe" -a
HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\MountPoints2: {fb7ec2f6-4a6f-11e5-bee3-a4db3043911e} - "K:\LG_PC_Programs.exe"
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1403304 2015-10-29] (Garmin Ltd. or its subsidiaries)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-02-11] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-02-11] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-02-11] ()
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\amanda\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\amanda\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\amanda\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\amanda\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-10] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2013-12-14]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2015-02-23]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\Hp\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\Users\amanda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Curse.lnk [2015-01-12]
ShortcutTarget: Curse.lnk -> C:\Users\amanda\AppData\Roaming\Curse Client\Bin\Curse.exe (Curse, Inc)
Startup: C:\Users\amanda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip [2014-06-10] ()
Startup: C:\Users\amanda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-04-27]
ShortcutTarget: Dropbox.lnk -> C:\Users\amanda\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\amanda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk [2015-03-07]
ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
Startup: C:\Users\amanda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\hpqtra08.exe [2011-04-29] (Hewlett-Packard Co.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\..\Interfaces\{32AD7549-D251-432F-9240-8D3E714AFEC6}: [DhcpNameServer] 209.18.47.61 209.18.47.62
Tcpip\..\Interfaces\{90D3FA8C-3B83-4FB8-A51C-FE4BA51D697B}: [DhcpNameServer] 209.18.47.61 209.18.47.62

Internet Explorer:
==================
HKU\S-1-5-21-152001228-498363203-1698013675-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.msn.com/HPDSK13/1
HKU\S-1-5-21-152001228-498363203-1698013675-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.msn.com/HPDSK13/1
SearchScopes: HKLM-x32 -> DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL =
SearchScopes: HKU\S-1-5-21-152001228-498363203-1698013675-1001 -> URL hxxp://search.conduit.com/Results.aspx?ctid=CT3321738&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=4&UP=SP30482155-1739-47BD-9968-D96FFCC25A87&q={searchTerms}&SSPV=
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-12-17] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-06-26] (Oracle Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-12-17] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-06-26] (Oracle Corporation)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2015-03-03] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation.)
Toolbar: HKU\S-1-5-21-152001228-498363203-1698013675-1001 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  No File
Handler-x32: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files (x86)\Belarc\BelarcAdvisor\System\BAVoilaX.dll [2013-04-16] (Belarc, Inc.)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\amanda\AppData\Roaming\Mozilla\Firefox\Profiles\n8aqx9e5.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll [2015-12-29] ()
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-06-26] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-06-26] (Oracle Corporation)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2015-02-15] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll [2015-12-29] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2013-10-01] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-01-23] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-01-23] (Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-09-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2013-08-29] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2013-08-29] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\2\NP_wtapp.dll [2013-12-22] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2015-02-15] (Adobe Systems)
FF Plugin-x32: BYOND -> C:\Program Files (x86)\BYOND\bin\npbyond.dll [2008-07-08] (BYOND)
FF Plugin HKU\S-1-5-21-152001228-498363203-1698013675-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\amanda\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-01-26] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-152001228-498363203-1698013675-1001: thehappycloud.com/HappyCloudPlugin -> C:\ProgramData\HappyCloud\Application\npHappyCloudPlugin.dll [2013-11-17] (The Happy Cloud)
FF Plugin HKU\S-1-5-21-152001228-498363203-1698013675-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2015-11-29] ()

Chrome:
=======
CHR HomePage: Default -> hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRa0T-NJ1bNV5iGB7j76kR7EOZGkeQkbUBtqSnxyioASX7XiWPTst6pTQJVjiRUw3c_2qvcwsjS47YWpDL-YDLZ17tpFKFye7hfe7nS6fYBxW1dNkYoybXEmR1adRAfs4iRrHkKS3865NNCwIGKmHt8GU5JeWnJAgVg6fUb1l-LuJuAoOMtM,
CHR DefaultSearchKeyword: Default -> google.com_
CHR Profile: C:\Users\amanda\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\amanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-04]
CHR Extension: (Google Drive) - C:\Users\amanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\amanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Adblock Plus) - C:\Users\amanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-01-07]
CHR Extension: (Google Search) - C:\Users\amanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26]
CHR Extension: (Google Docs Offline) - C:\Users\amanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-26]
CHR Extension: (Reddit Enhancement Suite) - C:\Users\amanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb [2015-04-08]
CHR Extension: (Google Hangouts) - C:\Users\amanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\knipolnnllmklapflnccelgolnpehhpl [2015-12-24]
CHR Extension: (Chrome Web Store Payments) - C:\Users\amanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-31]
CHR Extension: (Click&Clean App) - C:\Users\amanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2015-10-27]
CHR Extension: (Gmail) - C:\Users\amanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-27]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2252504 2013-09-04] (Broadcom Corporation.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [936832 2015-03-11] ()
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2015-02-17] (BitRaider, LLC)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2802360 2015-11-24] (Microsoft Corporation)
R2 Ds3Service; C:\Program Files\Scarlet Crush Space Productions\bin\ScpService.exe [388352 2013-05-05] (Scarlet.Crush Productions)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-05-06] (WildTangent)
S3 Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [777744 2015-10-29] (Garmin Ltd. or its subsidiaries)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1156400 2015-11-12] (NVIDIA Corporation)
R2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2015-12-30] (Hi-Rez Studios) [File not signed]
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-11-04] (Hewlett-Packard Company) [File not signed]
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [File not signed]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [89864 2014-12-11] (Hewlett-Packard Company)
R2 Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129336 2013-01-30] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [167736 2013-01-30] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-11-12] (LogMeIn, Inc.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872688 2015-11-12] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [8133424 2015-11-12] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5915440 2015-11-12] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2015-12-19] (Electronic Arts)
S3 OverwolfUpdaterService; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [98560 2014-01-30] (Overwolf LTD)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187072 2015-02-04] ()
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [327680 2012-11-12] (IDT, Inc.) [File not signed]
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
R2 wltrysvc; C:\Program Files\Broadcom\Broadcom 802.11\bcmwltry.exe [6036480 2013-12-20] (Broadcom Corporation) [File not signed]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AndnetBus; C:\Windows\System32\drivers\lgandnetbus64.sys [20992 2015-01-21] (LG Electronics Inc.)
S3 AndNetDiag; C:\Windows\system32\DRIVERS\lgandnetdiag64.sys [30720 2015-01-26] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\system32\DRIVERS\lgandnetmodem64.sys [37376 2015-01-26] (LG Electronics Inc.)
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-09-04] (Broadcom Corporation.)
S3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [6957744 2013-12-20] (Broadcom Corporation)
R3 btwpanfl; C:\WINDOWS\system32\drivers\btwpanfl.sys [44912 2013-12-14] (Broadcom Corporation.)
R1 Capsax64Drv0; C:\Windows\System32\Drivers\Capsax64Drv0.sys [35976 2014-08-15] (Colasoft Co., Ltd.)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R1 CSN5PDTS82x64; C:\Windows\System32\Drivers\CSN5PDTS82x64.sys [34840 2012-10-24] (Colasoft Co., Ltd.)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-11-12] (LogMeIn Inc.)
R3 LGSHidFilt; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19760 2015-11-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-10] (NVIDIA Corporation)
R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [37184 2015-02-04] (Razer, Inc.)
R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [129600 2014-11-17] (Razer, Inc.)
R3 SAlphamHid; C:\Windows\System32\drivers\SAlpham64.sys [38016 2013-05-31] (SteelSeries Corporation)
R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-05] (Scarlet.Crush Productions)
S3 VBAudioVACMME; C:\Windows\system32\DRIVERS\vbaudio_cable64_win7.sys [41192 2013-07-11] (Windows (R) Win 7 DDK provider)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [76480 2014-11-17] (VMware, Inc.)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
S3 BRDriver64_1_3_3_E02B25FC; \??\C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [X]
S1 CSN5PDTS82; System32\Drivers\CSN5PDTS82.sys [X]
S1 CsNdisLWF; System32\Drivers\CsNdisLWF.sys [X]
S3 xhunter1; \??\C:\WINDOWS\xhunter1.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-01-07 14:37 - 2016-01-07 14:37 - 00031222 _____ C:\Users\amanda\Downloads\FRST.txt
2016-01-07 14:36 - 2016-01-07 14:37 - 00000000 ____D C:\FRST
2016-01-07 14:35 - 2016-01-07 14:35 - 02370560 _____ (Farbar) C:\Users\amanda\Downloads\FRST64.exe
2016-01-07 14:34 - 2016-01-07 14:34 - 00688779 _____ (Swearware) C:\Users\amanda\Downloads\Unconfirmed 350648.crdownload
2016-01-07 14:34 - 2016-01-07 14:34 - 00688779 _____ (Swearware) C:\Users\amanda\Downloads\Unconfirmed 316711.crdownload
2016-01-07 14:33 - 2016-01-07 14:33 - 00688992 _____ (Swearware) C:\Users\amanda\Downloads\dds.scr
2016-01-07 14:31 - 2016-01-07 14:31 - 00688992 _____ (Swearware) C:\Users\amanda\Desktop\dds.com
2016-01-07 01:50 - 2016-01-07 13:40 - 00000000 ____D C:\Users\amanda\AppData\Roaming\Tera_Awesomium
2016-01-05 11:12 - 2016-01-05 11:12 - 02048038 _____ (HUMANBALANCE Ltd. ) C:\Users\amanda\Downloads\setgalefreeus.exe
2016-01-05 11:12 - 2016-01-05 11:12 - 00000000 ____D C:\Users\amanda\AppData\Local\Humanbalance
2016-01-05 11:12 - 2016-01-05 11:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GraphicsGale FreeEdition
2016-01-05 11:12 - 2016-01-05 11:12 - 00000000 ____D C:\Program Files (x86)\GraphicsGale FreeEdition
2016-01-02 21:54 - 2016-01-02 21:54 - 00000000 ____D C:\Users\amanda\Documents\NCSOFT
2016-01-02 20:59 - 2016-01-02 20:59 - 01402840 _____ (NCSOFT) C:\Users\amanda\Downloads\Wildstar.exe
2015-12-31 20:06 - 2015-12-31 20:06 - 00001218 _____ C:\Users\amanda\Desktop\TechnicLauncher - Shortcut.lnk
2015-12-31 05:40 - 2015-12-31 05:40 - 00876429 _____ C:\Users\amanda\Downloads\SIMPLEX - Red Black.ts3_style
2015-12-31 05:37 - 2015-12-31 05:37 - 00726390 _____ C:\Users\amanda\Downloads\MeGaZ_theme.rar
2015-12-31 05:08 - 2015-12-31 05:09 - 04734232 _____ () C:\Users\amanda\Downloads\TechnicLauncher.exe
2015-12-29 23:35 - 2015-12-30 02:27 - 00000000 ____D C:\Users\amanda\AppData\Local\Darksiders2
2015-12-29 21:16 - 2015-12-29 21:17 - 03515600 _____ C:\Users\amanda\ts3_recording_15_12_29_21_16_49.wav
2015-12-29 01:42 - 2015-12-29 01:42 - 02275280 _____ C:\Users\amanda\ts3_recording_15_12_29_1_42_40.wav
2015-12-29 01:25 - 2015-12-29 01:26 - 17370320 _____ C:\Users\amanda\ts3_recording_15_12_29_1_25_17.wav
2015-12-28 02:18 - 2015-12-28 02:18 - 00000222 _____ C:\Users\amanda\Desktop\Path of Exile.url
2015-12-27 17:59 - 2015-12-27 17:59 - 00000220 _____ C:\Users\amanda\Desktop\Garry's Mod.url
2015-12-27 03:39 - 2015-12-27 03:39 - 00000222 _____ C:\Users\amanda\Desktop\Warframe.url
2015-12-26 01:24 - 2015-12-26 01:25 - 00000000 ____D C:\Users\amanda\AppData\Local\PAYDAY 2
2015-12-26 00:46 - 2015-12-26 00:46 - 00000222 _____ C:\Users\amanda\Desktop\PAYDAY 2.url
2015-12-26 00:17 - 2015-12-26 00:17 - 00000221 _____ C:\Users\amanda\Desktop\PAYDAY The Heist.url
2015-12-25 11:21 - 2015-12-25 11:21 - 00000222 _____ C:\Users\amanda\Desktop\Total War ROME II - Emperor Edition.url
2015-12-25 11:21 - 2015-12-25 11:21 - 00000222 _____ C:\Users\amanda\Desktop\Stranded Deep.url
2015-12-25 11:21 - 2015-12-25 11:21 - 00000222 _____ C:\Users\amanda\Desktop\Insurgency.url
2015-12-25 11:21 - 2015-12-25 11:21 - 00000222 _____ C:\Users\amanda\Desktop\Infinite Crisis.url
2015-12-25 11:21 - 2015-12-25 11:21 - 00000222 _____ C:\Users\amanda\Desktop\DayZ.url
2015-12-25 11:21 - 2015-12-25 11:21 - 00000222 _____ C:\Users\amanda\Desktop\Darksiders II Deathinitive Edition.url
2015-12-25 11:21 - 2015-12-25 11:21 - 00000222 _____ C:\Users\amanda\Desktop\Chivalry Medieval Warfare.url
2015-12-25 11:21 - 2015-12-25 11:21 - 00000222 _____ C:\Users\amanda\Desktop\Age of Empires II HD Edition.url
2015-12-25 11:21 - 2015-12-25 11:21 - 00000221 _____ C:\Users\amanda\Desktop\The Elder Scrolls V Skyrim.url
2015-12-25 11:21 - 2015-12-25 11:21 - 00000221 _____ C:\Users\amanda\Desktop\Grand Theft Auto Vice City.url
2015-12-25 11:21 - 2015-12-25 11:21 - 00000221 _____ C:\Users\amanda\Desktop\Grand Theft Auto San Andreas.url
2015-12-25 11:21 - 2015-12-25 11:21 - 00000221 _____ C:\Users\amanda\Desktop\Grand Theft Auto III.url
2015-12-25 11:21 - 2015-12-25 11:21 - 00000221 _____ C:\Users\amanda\Desktop\Dungeon Defenders.url
2015-12-25 11:21 - 2015-12-25 11:21 - 00000221 _____ C:\Users\amanda\Desktop\Darksiders.url
2015-12-25 11:21 - 2015-12-25 11:21 - 00000221 _____ C:\Users\amanda\Desktop\Darksiders II.url
2015-12-25 11:21 - 2015-12-25 11:21 - 00000220 _____ C:\Users\amanda\Desktop\Final DOOM.url
2015-12-25 11:21 - 2015-12-25 11:21 - 00000219 _____ C:\Users\amanda\Desktop\Dota 2.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000222 _____ C:\Users\amanda\Desktop\War for the Overworld.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000222 _____ C:\Users\amanda\Desktop\Torchlight II.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000222 _____ C:\Users\amanda\Desktop\Terraria.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000222 _____ C:\Users\amanda\Desktop\Strike Vector.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000222 _____ C:\Users\amanda\Desktop\Savage Lands.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000222 _____ C:\Users\amanda\Desktop\Saints Row IV.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000222 _____ C:\Users\amanda\Desktop\Rust.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000222 _____ C:\Users\amanda\Desktop\Rocket League.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000222 _____ C:\Users\amanda\Desktop\Plague Inc Evolved.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000222 _____ C:\Users\amanda\Desktop\Kingdoms of Amalur Reckoning.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000222 _____ C:\Users\amanda\Desktop\Just Cause 3.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000222 _____ C:\Users\amanda\Desktop\Just Cause 2 Multiplayer Mod.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000222 _____ C:\Users\amanda\Desktop\HELLDIVERS.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000222 _____ C:\Users\amanda\Desktop\Far Cry 4.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000222 _____ C:\Users\amanda\Desktop\Far Cry 3.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000222 _____ C:\Users\amanda\Desktop\Fallout 4.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000222 _____ C:\Users\amanda\Desktop\DRAGON BALL XENOVERSE.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000222 _____ C:\Users\amanda\Desktop\DOOM 3 BFG Edition.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000222 _____ C:\Users\amanda\Desktop\DARK SOULS II.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000222 _____ C:\Users\amanda\Desktop\Cities Skylines.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000222 _____ C:\Users\amanda\Desktop\Call of Duty Black Ops II.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000222 _____ C:\Users\amanda\Desktop\Call of Duty Black Ops II - Zombies.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000222 _____ C:\Users\amanda\Desktop\Call of Duty Black Ops II - Multiplayer.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000222 _____ C:\Users\amanda\Desktop\Baldur's Gate Enhanced Edition.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000221 _____ C:\Users\amanda\Desktop\Wargame European Escalation.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000221 _____ C:\Users\amanda\Desktop\The Witcher 2 Assassins of Kings Enhanced Edition.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000221 _____ C:\Users\amanda\Desktop\Supreme Commander 2.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000221 _____ C:\Users\amanda\Desktop\Saints Row The Third.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000221 _____ C:\Users\amanda\Desktop\R.U.S.E.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000221 _____ C:\Users\amanda\Desktop\Mount & Blade Warband.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000221 _____ C:\Users\amanda\Desktop\Might & Magic Heroes VI.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000221 _____ C:\Users\amanda\Desktop\FINAL FANTASY VIII.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000221 _____ C:\Users\amanda\Desktop\Fallout New Vegas.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000221 _____ C:\Users\amanda\Desktop\Fallout 3 - Game of the Year Edition.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000221 _____ C:\Users\amanda\Desktop\Burnout Paradise The Ultimate Box.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000221 _____ C:\Users\amanda\Desktop\Borderlands 2.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000220 _____ C:\Users\amanda\Desktop\The Ultimate DOOM.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000220 _____ C:\Users\amanda\Desktop\Sid Meier's Civilization V.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000220 _____ C:\Users\amanda\Desktop\Just Cause 2.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000220 _____ C:\Users\amanda\Desktop\DOOM II Hell on Earth.url
2015-12-25 00:54 - 2015-12-25 00:54 - 00000135 _____ C:\Users\amanda\Desktop\Sid Meier's Civilization III Complete.url
2015-12-24 22:12 - 2015-12-24 22:12 - 00000222 _____ C:\Users\amanda\Desktop\Grand Theft Auto V.url
2015-12-24 21:28 - 2015-12-24 21:28 - 00000219 _____ C:\Users\amanda\Desktop\Counter-Strike Global Offensive.url
2015-12-23 00:01 - 2015-12-23 00:11 - 00000000 ____D C:\Users\amanda\Documents\Banished
2015-12-22 23:35 - 2015-12-22 23:35 - 00000222 _____ C:\Users\amanda\Desktop\Banished.url
2015-12-19 13:58 - 2015-12-19 13:58 - 00000222 _____ C:\Users\amanda\Desktop\Company of Heroes (New Steam Version).url
2015-12-19 13:58 - 2015-12-19 13:58 - 00000221 _____ C:\Users\amanda\Desktop\Company of Heroes Tales of Valor.url
2015-12-19 13:58 - 2015-12-19 13:58 - 00000220 _____ C:\Users\amanda\Desktop\Company of Heroes.url
2015-12-19 13:58 - 2015-12-19 13:58 - 00000220 _____ C:\Users\amanda\Desktop\Company of Heroes Opposing Fronts.url
2015-12-19 13:00 - 2015-12-19 13:00 - 00000222 _____ C:\Users\amanda\Desktop\Company of Heroes 2.url
2015-12-17 01:38 - 2015-12-17 01:41 - 00497840 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-12-16 19:03 - 2015-12-16 19:05 - 218774172 _____ C:\Users\amanda\Downloads\5-10.rar
2015-12-16 14:39 - 2015-12-16 14:39 - 02515280 _____ C:\Users\amanda\ts3_recording_15_12_16_14_39_33.wav
2015-12-15 12:16 - 2015-12-15 12:16 - 00074510 _____ C:\Users\amanda\Downloads\A4651 Collins 3.pdf
2015-12-15 12:11 - 2015-12-15 12:11 - 00074539 _____ C:\Users\amanda\Downloads\A4651 Collins Filled.pdf
2015-12-14 03:49 - 2015-12-14 03:49 - 00000000 ____D C:\Users\amanda\Desktop\Factorio
2015-12-14 03:45 - 2015-12-14 03:48 - 219213195 _____ C:\Users\amanda\Downloads\Factorio_x64_0.12.20_121315.zip
2015-12-13 20:18 - 2015-12-13 20:18 - 00000000 ____D C:\Users\amanda\AppData\Roaming\Trove
2015-12-13 12:17 - 2015-12-13 12:17 - 00053146 _____ C:\Users\amanda\Downloads\A4651 Collins.pdf
2015-12-13 00:45 - 2015-12-13 00:45 - 00000000 ____D C:\Users\amanda\AppData\Roaming\Arrowhead
2015-12-13 00:44 - 2015-12-13 00:44 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2015-12-10 08:17 - 2015-12-12 11:24 - 00040430 _____ C:\Users\amanda\Desktop\Test 4 2.txt
2015-12-10 08:17 - 2015-12-10 08:17 - 00000000 _____ C:\Users\amanda\Desktop\Test $ 2.txt
2015-12-09 20:47 - 2015-12-12 16:59 - 00000194 _____ C:\Users\amanda\Desktop\ARK Survival Stuff.txt
2015-12-08 21:36 - 2015-12-29 08:36 - 09479872 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2015-12-08 20:13 - 2015-11-05 02:59 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2015-12-08 20:11 - 2015-11-11 10:21 - 25837568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-12-08 20:11 - 2015-11-11 09:41 - 20366848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-12-08 20:11 - 2015-11-09 18:13 - 00496640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-12-08 20:11 - 2015-11-09 18:08 - 02280448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-12-08 20:11 - 2015-11-09 18:02 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-12-08 20:11 - 2015-11-09 17:46 - 04514816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-12-08 20:11 - 2015-11-09 17:41 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-12-08 20:11 - 2015-11-09 17:17 - 02011136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-12-08 20:11 - 2015-11-09 17:12 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-12-08 20:11 - 2015-11-08 16:15 - 02887168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-12-08 20:11 - 2015-11-08 16:15 - 00571392 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-12-08 20:11 - 2015-11-08 16:04 - 05923840 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-12-08 20:11 - 2015-11-08 16:01 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-12-08 20:11 - 2015-11-08 15:25 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-12-08 20:11 - 2015-11-08 14:53 - 02487808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-12-08 20:11 - 2015-11-08 14:30 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-12-08 20:11 - 2015-10-22 11:43 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbdgeoqw.dll
2015-12-08 20:11 - 2015-10-22 11:43 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZST.DLL
2015-12-08 20:11 - 2015-10-22 11:43 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZEL.DLL
2015-12-08 20:11 - 2015-10-22 11:43 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZE.DLL
2015-12-08 20:11 - 2015-10-22 10:59 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbdgeoqw.dll
2015-12-08 20:11 - 2015-10-22 10:59 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZST.DLL
2015-12-08 20:11 - 2015-10-22 10:59 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZEL.DLL
2015-12-08 20:11 - 2015-10-22 10:59 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZE.DLL
2015-12-08 20:11 - 2015-10-22 10:21 - 01200128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2015-12-08 20:11 - 2015-10-22 10:21 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2015-12-08 20:11 - 2015-10-22 09:58 - 00868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2015-12-08 20:11 - 2015-10-22 09:58 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2015-12-08 20:11 - 2015-10-22 08:08 - 00513456 _____ C:\WINDOWS\SysWOW64\locale.nls
2015-12-08 20:11 - 2015-10-22 08:08 - 00513456 _____ C:\WINDOWS\system32\locale.nls
2015-12-08 20:10 - 2015-11-11 10:00 - 12856832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-12-08 20:10 - 2015-11-11 09:44 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2015-12-08 20:10 - 2015-11-11 09:44 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-12-08 20:10 - 2015-11-11 09:12 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-12-08 20:10 - 2015-11-09 18:11 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2015-12-08 20:10 - 2015-11-09 18:04 - 00476160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2015-12-08 20:10 - 2015-11-09 17:37 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-12-08 20:10 - 2015-11-09 17:36 - 02050560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-12-08 20:10 - 2015-11-09 17:36 - 00687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-12-08 20:10 - 2015-11-09 17:36 - 00325632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-12-08 20:10 - 2015-11-09 17:25 - 01048576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-12-08 20:10 - 2015-11-09 17:14 - 01311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-12-08 20:10 - 2015-11-08 16:02 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2015-12-08 20:10 - 2015-11-08 15:32 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2015-12-08 20:10 - 2015-11-08 15:32 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2015-12-08 20:10 - 2015-11-08 15:18 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-12-08 20:10 - 2015-11-08 15:16 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-12-08 20:10 - 2015-11-08 15:15 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-12-08 20:10 - 2015-11-08 15:15 - 00718336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-12-08 20:10 - 2015-11-08 15:14 - 14456832 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-12-08 20:10 - 2015-11-08 15:13 - 02123264 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-12-08 20:10 - 2015-11-08 14:53 - 02880000 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-12-08 20:10 - 2015-11-08 14:41 - 01546752 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-12-08 20:09 - 2015-11-22 00:59 - 07455064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-12-08 20:09 - 2015-11-22 00:59 - 01735000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-12-08 20:09 - 2015-11-22 00:59 - 01659568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-12-08 20:09 - 2015-11-22 00:59 - 01519592 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-12-08 20:09 - 2015-11-22 00:59 - 01487008 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-12-08 20:09 - 2015-11-22 00:59 - 01355848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-12-08 20:09 - 2015-11-22 00:58 - 01499920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-12-08 20:09 - 2015-11-21 12:32 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdm64.dll
2015-12-08 20:09 - 2015-11-21 11:50 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
2015-12-08 20:09 - 2015-11-21 10:59 - 01706496 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2015-12-08 20:09 - 2015-11-21 10:49 - 01344000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2015-12-08 20:09 - 2015-11-21 10:47 - 00522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2015-12-08 20:09 - 2015-11-21 10:40 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2015-12-08 20:09 - 2015-11-08 18:41 - 01540728 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2015-12-08 20:09 - 2015-11-08 16:30 - 04176384 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-12-08 20:09 - 2015-11-08 15:23 - 01994752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-12-08 20:09 - 2015-11-08 15:13 - 01383936 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-12-08 20:09 - 2015-11-08 15:01 - 01753600 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2015-12-08 20:09 - 2015-11-08 14:52 - 01559552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-12-08 20:09 - 2015-11-08 14:48 - 01376256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2015-12-08 20:09 - 2015-11-08 14:42 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2015-12-08 20:09 - 2015-10-28 09:49 - 02775552 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-12-08 20:09 - 2015-10-28 09:29 - 02462720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-12-08 20:09 - 2015-10-10 11:20 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2015-12-08 20:09 - 2015-10-03 13:41 - 01385280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2015-12-08 20:09 - 2015-10-03 13:41 - 01124384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2015-12-08 20:08 - 2015-11-20 16:47 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-12-08 20:08 - 2015-11-20 12:18 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2015-12-08 20:08 - 2015-11-20 10:58 - 03706880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-12-08 20:08 - 2015-11-20 10:47 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2015-12-08 20:08 - 2015-11-20 10:46 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2015-12-08 20:08 - 2015-11-20 10:44 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2015-12-08 20:08 - 2015-11-20 10:44 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2015-12-08 20:08 - 2015-11-20 10:43 - 00897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-12-08 20:08 - 2015-11-20 10:42 - 02243584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2015-12-08 20:08 - 2015-11-20 10:30 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2015-12-08 20:08 - 2015-11-20 10:29 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2015-12-08 20:08 - 2015-11-20 10:28 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2015-12-08 20:08 - 2015-11-20 10:27 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-12-08 20:08 - 2015-10-11 00:34 - 00468824 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-12-08 20:08 - 2015-10-11 00:34 - 00462168 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-12-08 20:08 - 2015-10-11 00:34 - 00443224 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2015-12-08 20:08 - 2015-10-11 00:34 - 00092504 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys
2015-12-08 20:08 - 2015-10-11 00:34 - 00027992 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys
2015-12-08 20:08 - 2015-10-10 12:41 - 00037376 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys
2015-12-08 20:08 - 2015-10-10 12:41 - 00030208 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbohci.sys
2015-12-08 20:08 - 2015-10-10 12:40 - 00078848 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winusb.sys
2015-12-08 20:08 - 2015-10-08 10:11 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2015-12-08 20:08 - 2015-10-08 09:50 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2015-12-08 20:08 - 2015-10-05 12:28 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2015-12-08 20:08 - 2015-10-05 12:25 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-01-07 14:36 - 2014-12-10 09:17 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-01-07 14:36 - 2013-08-22 07:36 - 00000000 ____D C:\Windows
2016-01-07 14:31 - 2015-09-27 16:44 - 00000000 ____D C:\Users\amanda\AppData\Roaming\ViberPC
2016-01-07 14:31 - 2014-10-25 12:25 - 00000000 __RDO C:\Users\amanda\OneDrive
2016-01-07 14:30 - 2014-12-11 23:14 - 00000000 ____D C:\ProgramData\VMware
2016-01-07 14:30 - 2014-03-15 23:35 - 00000000 ____D C:\Users\amanda\AppData\Local\LogMeIn Hamachi
2016-01-07 14:30 - 2014-01-31 21:26 - 00000000 ____D C:\Users\amanda\AppData\Roaming\TS3Client
2016-01-07 14:29 - 2014-10-25 11:11 - 00000000 ____D C:\ProgramData\NVIDIA
2016-01-07 14:29 - 2014-10-25 10:58 - 00000374 _____ C:\WINDOWS\Tasks\DriverToolkit Autorun.job
2016-01-07 14:29 - 2013-12-05 19:47 - 00000916 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-07 14:29 - 2013-08-22 08:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-01-07 14:29 - 2013-08-22 07:25 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-01-07 14:19 - 2014-06-30 19:06 - 00000000 ____D C:\Users\amanda\AppData\Local\CrashDumps
2016-01-07 14:19 - 2013-12-05 21:02 - 00000000 ____D C:\Program Files (x86)\Steam
2016-01-07 11:56 - 2013-08-22 09:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-01-07 11:56 - 2013-08-22 09:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-01-07 09:52 - 2013-12-05 19:18 - 00003922 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{72193BCD-8725-46A7-AF55-BD25CFC6A199}
2016-01-07 05:24 - 2013-12-05 19:15 - 00000000 ____D C:\Users\amanda\AppData\Local\Packages
2016-01-05 15:56 - 2013-12-05 19:23 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-152001228-498363203-1698013675-1001
2016-01-05 10:16 - 2014-09-24 01:15 - 00973304 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-01-05 10:16 - 2013-08-22 07:36 - 00000000 ____D C:\WINDOWS\Inf
2016-01-05 09:07 - 2015-09-08 10:12 - 00001125 _____ C:\Users\amanda\Desktop\nativelog.txt
2016-01-05 08:33 - 2014-08-10 10:51 - 00000000 ____D C:\Users\amanda\AppData\Roaming\vlc
2016-01-05 03:58 - 2015-04-13 20:38 - 00000080 _____ C:\Users\amanda\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦
2016-01-04 23:09 - 2014-03-14 16:28 - 00000000 ____D C:\Users\amanda\AppData\Roaming\.minecraft
2016-01-04 09:00 - 2015-09-27 16:45 - 00000000 ____D C:\Users\amanda\Documents\ViberDownloads
2016-01-02 22:48 - 2015-04-16 00:17 - 00000000 ____D C:\ProgramData\boost_interprocess
2016-01-02 11:42 - 2014-08-09 11:25 - 00000000 ____D C:\Users\amanda\AppData\Local\Battle.net
2016-01-01 17:35 - 2014-07-10 22:49 - 00000000 ____D C:\Users\amanda\AppData\Roaming\Skype
2016-01-01 08:59 - 2014-10-25 10:26 - 00000000 ____D C:\Users\amanda\AppData\Roaming\OBS
2016-01-01 07:46 - 2015-09-10 01:46 - 00000000 ____D C:\Users\amanda\AppData\Local\Warframe
2015-12-31 19:42 - 2014-02-02 14:08 - 00000000 ____D C:\Program Files (x86)\Hi-Rez Studios
2015-12-30 11:34 - 2012-07-26 01:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-12-30 03:20 - 2015-03-15 14:05 - 00000000 ____D C:\Program Files (x86)\Heroes of the Storm
2015-12-29 23:35 - 2013-12-05 22:15 - 00000000 ____D C:\Users\amanda\Documents\my games
2015-12-29 23:34 - 2014-11-01 14:53 - 00000000 ____D C:\WINDOWS\SysWOW64\directx
2015-12-29 22:34 - 2014-10-25 10:26 - 00000000 ____D C:\Program Files (x86)\OBS
2015-12-29 21:16 - 2014-10-25 11:17 - 00000000 ____D C:\Users\amanda
2015-12-29 18:18 - 2014-05-08 19:16 - 00000000 ____D C:\Users\amanda\AppData\Roaming\Mumble
2015-12-29 08:36 - 2014-12-10 09:17 - 00003718 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-12-28 18:00 - 2014-08-09 11:25 - 00000000 ____D C:\Program Files (x86)\Battle.net
2015-12-28 02:18 - 2014-01-31 20:38 - 00000000 ____D C:\Users\amanda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-12-26 02:48 - 2015-03-13 08:33 - 00826872 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-12-26 02:48 - 2015-03-13 08:33 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-12-25 21:15 - 2015-04-13 20:37 - 00000000 ____D C:\Program Files\Rockstar Games
2015-12-25 21:15 - 2015-04-13 20:37 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2015-12-25 16:20 - 2014-05-06 17:02 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-12-25 14:02 - 2014-08-09 21:07 - 00000000 ____D C:\Program Files (x86)\World of Warcraft
2015-12-23 15:38 - 2015-01-13 00:02 - 00000000 ____D C:\Users\amanda\AppData\Local\Deployment
2015-12-21 14:55 - 2014-03-30 20:10 - 00000000 ____D C:\Program Files (x86)\StarCraft II
2015-12-20 03:30 - 2015-01-12 23:59 - 00000000 ____D C:\Users\amanda\AppData\Roaming\Curse Client
2015-12-19 19:11 - 2014-01-01 00:23 - 00000000 ____D C:\ProgramData\Origin
2015-12-19 12:36 - 2014-01-01 00:23 - 00000000 ____D C:\Program Files (x86)\Origin
2015-12-18 19:27 - 2014-09-13 09:14 - 00000000 ____D C:\Program Files (x86)\Diablo III
2015-12-17 14:35 - 2015-04-04 04:28 - 00000000 ___SD C:\WINDOWS\SysWOW64\GWX
2015-12-17 14:35 - 2015-04-04 04:28 - 00000000 ___SD C:\WINDOWS\system32\GWX
2015-12-17 04:47 - 2013-08-22 09:36 - 00000000 ____D C:\WINDOWS\rescache
2015-12-17 02:00 - 2013-08-22 09:36 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2015-12-17 01:59 - 2014-09-19 14:23 - 00000000 ____D C:\Program Files\Microsoft Office 15
2015-12-13 10:56 - 2014-03-31 10:53 - 00000000 ____D C:\Users\amanda\Documents\Square Enix
2015-12-12 23:38 - 2014-08-09 11:25 - 00000000 ____D C:\Users\amanda\AppData\Roaming\Battle.net
2015-12-12 23:38 - 2014-03-30 19:57 - 00000000 ____D C:\ProgramData\Battle.net
2015-12-11 22:51 - 2014-06-13 22:19 - 00000000 ____D C:\Users\amanda\AppData\Roaming\FileZilla
2015-12-10 00:12 - 2014-12-02 15:02 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2015-12-09 02:51 - 2013-12-06 22:39 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-12-09 02:45 - 2013-12-06 22:39 - 140158008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-12-08 21:39 - 2014-05-07 17:15 - 00301728 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe

==================== Files in the root of some directories =======

2015-10-20 23:50 - 2015-10-20 23:50 - 0001445 _____ () C:\Users\amanda\AppData\Roaming\.minecraft - Shortcut.lnk
2014-07-31 14:30 - 2014-11-16 15:30 - 0000096 _____ () C:\Users\amanda\AppData\Roaming\WB.CFG
2014-01-01 16:53 - 2014-01-01 16:53 - 0000094 _____ () C:\Users\amanda\AppData\Local\fusioncache.dat
2015-02-23 12:48 - 2015-07-14 13:14 - 0001392 _____ () C:\ProgramData\hpzinstall.log

Some files in TEMP:
====================
C:\Users\amanda\AppData\Local\Temp\HiPatchSelfUpdateWindow.exe
C:\Users\amanda\AppData\Local\Temp\HiRezLauncherControls.dll
C:\Users\amanda\AppData\Local\Temp\SkypeSetup.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digit
« Last Edit: January 20, 2016, 09:29:49 PM by Hoov »

Offline Broly3k8

  • Bronze Member
  • Posts: 71
First one was too big. Here's the addition:

ADDITION:

Additional scan result of Farbar Recovery Scan Tool (x64) Version:07-01-2015
Ran by amanda (2016-01-07 14:37:57)
Running from C:\Users\amanda\Downloads
Windows 8.1 (X64) (2014-10-25 18:20:40)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-152001228-498363203-1698013675-500 - Administrator - Disabled)
amanda (S-1-5-21-152001228-498363203-1698013675-1001 - Administrator - Enabled) => C:\Users\amanda
ASPNET (S-1-5-21-152001228-498363203-1698013675-1004 - Limited - Enabled)
Guest (S-1-5-21-152001228-498363203-1698013675-501 - Limited - Disabled)
Shawn (S-1-5-21-152001228-498363203-1698013675-1005 - Administrator - Enabled) => C:\Users\Shawn
UpdatusUser (S-1-5-21-152001228-498363203-1698013675-1006 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

4 Elements II (x32 Version: 2.2.0.98 - WildTangent) Hidden
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
7500_7600_7700_Help1 (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
AbiWord 2.8.6 (HKLM-x32\...\AbiWord2) (Version: 2.8.6 - AbiSource Developers)
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.009.20079 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.9.1.474 - Adobe Systems Incorporated)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.267 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 5.7.1 64-bit (HKLM\...\{BC86B82C-8C0E-4408-9AC1-6B0F2D636963}) (Version: 5.7.1 - Adobe Systems Incorporated)
Age of Empires II: HD Edition (HKLM-x32\...\Steam App 221380) (Version:  - Hidden Path Entertainment, Ensemble Studios)
Age of Empires® III: Complete Collection (HKLM-x32\...\Steam App 105450) (Version:  - Ensemble Studios)
Airport Mania (x32 Version: 2.2.0.95 - WildTangent) Hidden
Alcor Micro USB Card Reader Driver  (HKLM-x32\...\InstallShield_{0DEB2EEB-BE9A-44B1-9D90-183250B61785}) (Version: 20.13.3317.03143 - Alcor Micro Corp.)
Alcor Micro USB Card Reader Driver  (x32 Version: 20.13.3317.03143 - Alcor Micro Corp.) Hidden
ANT Drivers Installer x64 (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ARK: Survival Evolved (HKLM-x32\...\Steam App 346110) (Version:  - Studio Wildcard)
Auto Clicker v1.5 (HKLM-x32\...\{C0A7E4F3-82CC-416B-82C6-BA06AACFD635}_is1) (Version: 1.5 - MurGee.com)
AutoKeyPresser (HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\72882b240bbfe40f) (Version: 0.0.0.4 - Microsoft)
Azteca (x32 Version: 2.2.0.97 - WildTangent) Hidden
Baldur's Gate: Enhanced Edition (HKLM-x32\...\Steam App 228280) (Version:  - Beamdog)
Banished (HKLM-x32\...\Steam App 242920) (Version:  - Shining Rock Software LLC)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Battleborn Closed Technical Test (HKLM-x32\...\Steam App 376500) (Version:  - )
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version:  - )
Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Belarc Advisor 8.4 (HKLM-x32\...\Belarc Advisor) (Version: 8.4.0.0 - Belarc Inc.)
Bing Bar (HKLM-x32\...\{16793295-2366-40F7-A045-A3E42A81365E}) (Version: 7.1.362.0 - Microsoft Corporation)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Borderlands 2 (HKLM-x32\...\Steam App 49520) (Version:  - Gearbox Software)
Bounce Symphony (x32 Version: 2.2.0.97 - WildTangent) Hidden
bpd_scan_Carrier (x32 Version: 3.00.0000 - Hewlett-Packard) Hidden
BPDSoftware (x32 Version: 140.0.001.000 - Hewlett-Packard) Hidden
BPDSoftware_Ini (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
Broadcom 802.11 Wireless LAN Adapter (HKLM\...\Broadcom 802.11 Wireless LAN Adapter) (Version: 6.30.66.1 - Broadcom Corporation)
Broadcom Bluetooth Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.6300 - Broadcom Corporation)
Broadcom Wireless Utility (HKLM\...\{4CDA59B9-7AD3-4283-9F5C-BC469FF975B6}) (Version: 6.30.66.1 - Broadcom Corporation)
BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
Build-a-lot (x32 Version: 2.2.0.98 - WildTangent) Hidden
Burnout Paradise: The Ultimate Box (HKLM-x32\...\Steam App 24740) (Version:  - Criterion Games)
BYOND (HKLM-x32\...\BYOND) (Version: 508.1299 - BYOND)
Call of Duty: Black Ops II - Multiplayer (HKLM-x32\...\Steam App 202990) (Version:  - Treyarch)
Call of Duty: Black Ops II - Zombies (HKLM-x32\...\Steam App 212910) (Version:  - )
Call of Duty: Black Ops II (HKLM-x32\...\Steam App 202970) (Version:  - Treyarch)
CCleaner (HKLM\...\CCleaner) (Version: 5.07 - Piriform)
Chivalry: Medieval Warfare (HKLM-x32\...\Steam App 219640) (Version:  - Torn Banner Studios)
Cities: Skylines (HKLM-x32\...\Steam App 255710) (Version:  - Colossal Order Ltd.)
Colasoft Capsa 8 Free (HKLM-x32\...\Colasoft Capsa 8 Free_is1) (Version: 8.0.0.8053 - Colasoft)
Command & Conquer™ 3 Tiberium Wars and Kane's Wrath (HKLM-x32\...\{35A2FE53-CC80-4D17-941F-3A7C82824FC7}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Command & Conquer™ 4 Tiberian Twilight (HKLM-x32\...\{BA4C8F9F-D81B-4AFE-AE5A-3837830F5B89}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Command & Conquer™ and The Covert Operations™ (HKLM-x32\...\{050E298D-C9B8-4582-A332-26201268A297}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Command & Conquer™ Red Alert 2 and Yuri’s Revenge (HKLM-x32\...\{F5275D1C-D133-486D-8F07-D6C571F0A8EC}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Command & Conquer™ The Ultimate Collection Additional Content (HKLM-x32\...\{1A882F29-BC18-4AC2-A71E-0FC30FA32568}) (Version: 1.0.0.0 - Electronic Arts)
Command & Conquer™ Tiberian Sun™ and Firestorm™ (HKLM-x32\...\{517FAF1E-3045-49DE-8079-107C2851389E}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Command & Conquer™: Generals and Zero Hour (HKLM-x32\...\{609F6FD5-4B22-4D7A-AD30-8C9DD480D5BE}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Company of Heroes (HKLM-x32\...\Steam App 4560) (Version:  - Relic Entertainment)
Company of Heroes (New Steam Version) (HKLM-x32\...\Steam App 228200) (Version:  - Relic)
Company of Heroes 2 (HKLM-x32\...\Steam App 231430) (Version:  - Relic Entertainment)
Company of Heroes: Opposing Fronts (HKLM-x32\...\Steam App 9340) (Version:  - Relic Entertainment)
Company of Heroes: Tales of Valor (HKLM-x32\...\Steam App 20540) (Version:  - Relic Entertainment)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
Cradle Of Egypt Collector's Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden
Cradle of Rome 2 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Curse (HKLM-x32\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Curse)
Curse at Twilight (x32 Version: 3.0.2.32 - WildTangent) Hidden
Curse Client (HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.3.5901 - CyberLink Corp.)
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.3.2509 - CyberLink Corp.)
Cyberlink PhotoDirector (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.1.3724 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.3.2301 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.3.2524 - CyberLink Corp.)
CyberLink PowerDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.8.5511 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DARK SOULS™ II (HKLM-x32\...\Steam App 236430) (Version:  - FromSoftware, Inc)
Darksiders (HKLM-x32\...\Steam App 50620) (Version:  - Vigil Games)
Darksiders II (HKLM-x32\...\Steam App 50650) (Version:  - Vigil Games)
Darksiders II: Deathinitive Edition (HKLM-x32\...\Steam App 388410) (Version:  - Gunfire Games)
DayZ (HKLM-x32\...\Steam App 221100) (Version:  - Bohemia Interactive)
DayZ Commander (HKLM-x32\...\{B3653588-3AC0-4A1D-950F-D96531E84374}) (Version: 0.92.91 - Dotjosh Studios)
DC Universe Online Live (HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\SOE-DC Universe Online Live) (Version:  - Sony Online Entertainment)
Delicious: Emily's Childhood Memories Premium Edition (x32 Version: 3.0.2.32 - WildTangent) Hidden
Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
DocProc (x32 Version: 140.0.185.000 - Hewlett-Packard) Hidden
DOOM 3: BFG Edition (HKLM-x32\...\Steam App 208200) (Version:  - id Software)
DOOM II: Hell on Earth (HKLM-x32\...\Steam App 2300) (Version:  - id Software)
Dota 2 (HKLM-x32\...\Steam App 570) (Version:  - Valve)
DRAGON BALL XENOVERSE (HKLM-x32\...\Steam App 323470) (Version:  - DIMPS)
Dropbox (HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\Dropbox) (Version: 3.4.4 - Dropbox, Inc.)
Dungeon Defenders (HKLM-x32\...\Steam App 65800) (Version:  - Trendy Entertainment)
Dungeon Keeper 2 (HKLM-x32\...\{ECAA3E8B-5AD9-42D5-8065-0158BD874864}) (Version: 1.0.0.1 - Electronic Arts)
Elevated Installer (x32 Version: 4.1.10.0 - Garmin Ltd or its subsidiaries) Hidden
Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company)
Epic Games Launcher (HKLM\...\{3AA63526-B2A9-4480-8C0F-13731E227BE9}) (Version: 1.1.38.0 - Epic Games, Inc.)
EVE Online (remove only) (HKLM-x32\...\EVE) (Version:  - CCP Games Ltd.)
Evernote v. 5.8.4 (HKLM-x32\...\{C15841A6-C20A-11E4-977D-00163E98E7D6}) (Version: 5.8.4.6870 - Evernote Corp.)
EverQuest (HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\soe-EverQuest) (Version: 1.0.3.183 - Sony Online Entertainment)
Fallout 3 - Game of the Year Edition (HKLM-x32\...\Steam App 22370) (Version:  - Bethesda Game Studios)
Fallout 4 (HKLM-x32\...\Steam App 377160) (Version:  - Bethesda Game Studios)
Fallout: New Vegas (HKLM-x32\...\Steam App 22380) (Version:  - Obsidian Entertainment)
Far Cry 4 (HKLM-x32\...\Steam App 298110) (Version:  - Ubisoft Montreal, Red Storm, Shanghai, Toronto, Kiev)
Far Cry® 3 (HKLM-x32\...\Steam App 220240) (Version:  - Ubisoft Montreal, Massive Entertainment, and Ubisoft Shanghai)
Farm Frenzy (x32 Version: 2.2.0.98 - WildTangent) Hidden
Fax (x32 Version: 140.0.307.000 - Hewlett-Packard) Hidden
FileZilla Client 3.14.1 (HKLM-x32\...\FileZilla Client) (Version: 3.14.1 - Tim Kosse)
Final DOOM (HKLM-x32\...\Steam App 2290) (Version:  - id Software)
FINAL FANTASY VIII (HKLM-x32\...\Steam App 39150) (Version:  - SQUARE ENIX)
Garmin Express (HKLM-x32\...\{b292f4e5-60ca-4bb8-8810-e5f908c3c1ff}) (Version: 4.1.10.0 - Garmin Ltd or its subsidiaries)
Garmin Express (x32 Version: 4.1.10.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (x32 Version: 4.1.10.0 - Garmin Ltd or its subsidiaries) Hidden
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Facepunch Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.)
Google Earth Pro (HKLM-x32\...\{44FC61F0-2F8A-11E3-8CAE-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden
GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Grand Theft Auto III (HKLM-x32\...\Steam App 12100) (Version:  - Rockstar Games)
Grand Theft Auto V (HKLM-x32\...\Steam App 271590) (Version:  - Rockstar North)
Grand Theft Auto: San Andreas (HKLM-x32\...\Steam App 12120) (Version:  - Rockstar Games)
Grand Theft Auto: Vice City (HKLM-x32\...\Steam App 12110) (Version:  - Rockstar Games)
GraphicsGale FreeEdition version 2.04.09 (HKLM-x32\...\GraphicsGale FreeEdition_is1) (Version:  - HUMANBALANCE Ltd.)
Happy Cloud Client (HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\HappyCloud) (Version: 4.54 - Happy Cloud, Inc.)
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
HELLDIVERS™ (HKLM-x32\...\Steam App 394510) (Version:  - Arrowhead Game Studios)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
House of 1000 Doors: Family Secrets (x32 Version: 2.2.0.98 - WildTangent) Hidden
HP Connected Music (Meridian - installer) (HKLM-x32\...\StartHPConnectedMusic) (Version: 1.0 - Meridian Audio Ltd)
HP Connected Music (Meridian - player) (HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\HPConnectedMusic) (Version: 1.1 (build 77) hp - Meridian Audio Ltd)
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP MyRoom (HKLM-x32\...\{9C35EDE5-4B0F-45E7-A438-314BA889948E}) (Version: 9.0.0.0 - Hewlett-Packard Company)
HP OfficeJet L7300/L7500/7600/7700 (HKLM\...\{E6A512D4-E5FB-4D42-8E83-D87F3A760802}) (Version: 14.0 - HP)
HP Quick Start (HKLM-x32\...\{574F0207-8E98-46CD-8F79-318348C98C46}) (Version: 1.0.4660.30220 - Hewlett-Packard)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.6263.4289 - Hewlett-Packard)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Support Assistant (HKLM-x32\...\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}) (Version: 7.4.45.4 - Hewlett-Packard Company)
HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 12.00.0000 - Hewlett-Packard)
HP Support Solutions Framework (HKLM-x32\...\{E35601C0-BA8E-4F32-919A-C7EF4CA81F67}) (Version: 11.51.0048 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6435.0 - IDT)
Infinite Crisis™ (HKLM-x32\...\Steam App 345520) (Version:  - Turbine, Inc.)
Insurgency (HKLM-x32\...\Steam App 222880) (Version:  - New World Interactive)
Integrated Camera (HKLM-x32\...\{71A51CC2-E7D3-11DB-A386-005056C00008}) (Version: 1.00.0000 - Vimicro Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1310 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.6.0.1033 - Intel Corporation)
Itibiti RTC (x32 Version: 0.0.1 - Itibiti Inc) Hidden
iTunes (HKLM\...\{D601CEAD-2E4F-4BBB-85CC-C29A4CE6A3C0}) (Version: 11.1.3.8 - Apple Inc.)
Java 8 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418045F0}) (Version: 8.0.450 - Oracle Corporation)
Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Just Cause 2 (HKLM-x32\...\Steam App 8190) (Version:  - Avalanche Studios)
Just Cause 2: Multiplayer Mod (HKLM-x32\...\Steam App 259080) (Version:  - Avalanche Studios)
Just Cause 3 (HKLM-x32\...\Steam App 225540) (Version:  - Avalanche Studios)
Kingdoms of Amalur: Reckoning™ (HKLM-x32\...\Steam App 102500) (Version:  - Big Huge Games)
L7500 (x32 Version: 140.0.001.000 - Hewlett-Packard) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.0) (Version: 3.0.0 - Riot Games)
League of Legends (x32 Version: 3.0.0 - Riot Games) Hidden
LG PC Suite (HKLM-x32\...\LG PC Suite) (Version: 5.3.25.20150529 - LG Electronics)
LG United Mobile Drivers (HKLM-x32\...\{4DE95ED9-0A29-4C4F-8463-35857CF9BA36}) (Version: 3.14.1 - LG Electronics)
Logitech Gaming Software 8.51 (HKLM\...\Logitech Gaming Software) (Version: 8.51.5 - Logitech Inc.)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.410 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.410 - LogMeIn, Inc.) Hidden
Luxor Evolved (x32 Version: 2.2.0.98 - WildTangent) Hidden
Mah Jong Medley (x32 Version: 2.2.0.95 - WildTangent) Hidden
Mahjongg Dimensions Deluxe: Tiles in Time (x32 Version: 2.2.0.98 - WildTangent) Hidden
Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
MechWarrior Online (HKLM-x32\...\{9f17023b-d04f-432b-b08a-3bb4c3a7ed3c}) (Version: 1.6.0.0 - Piranha Games Inc.)
MechWarrior Online (x32 Version: 1.6.1.0 - Piranha Games Inc.) Hidden
MegaTrainer eXperience V1.2.4.9 (HKLM-x32\...\MegaTrainer eXperience_is1) (Version:  - )
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft LifeChat (HKLM\...\{BD198331-FF8A-4DEB-9F30-A0AC56625A3B}) (Version: 1.40.224.0 - Microsoft)
Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 15.0.4779.1002 - Microsoft Corporation)
Microsoft SkyDrive (HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\SkyDriveSetup.exe) (Version: 16.4.6013.0910 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Might & Magic: Heroes VI (HKLM-x32\...\Steam App 48220) (Version:  - Blackhole)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Mount & Blade: Warband (HKLM-x32\...\Steam App 48700) (Version:  - TaleWorlds Entertainment)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
MPM (HKLM-x32\...\{B5A4C902-1636-48DB-8E38-F0DB102DDB59}) (Version: 1.00.0000 - Hewlett-Packard)
Mumble 1.2.7 (HKLM-x32\...\{CF8BBFA2-5502-4904-A9E9-8D5CAA8DF785}) (Version: 1.2.7 - Thorvald Natvig)
MusicBee 2.3 (HKLM-x32\...\MusicBee) (Version: 2.3 - Steven Mayall)
Muvic Smartbar (HKLM-x32\...\{AFF1052D-3D75-4A4F-9513-26A65E1F5E6D}) (Version: 11.81.58.18372 - PinWid Ltd.) <==== ATTENTION
My Game Long Name (HKLM\...\UDK-2745a679-f1e3-4dfe-8014-6bddbca135cd) (Version:  - Epic Games, Inc.)
Mystery P.I. - Curious Case of Counterfeit Cove (x32 Version: 2.2.0.98 - WildTangent) Hidden
Network64 (Version: 140.0.306.000 - Hewlett-Packard) Hidden
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.53.5 - Black Tree Gaming)
NVIDIA 3D Vision Driver 327.02 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 327.02 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.7.4.10 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.7.4.10 - NVIDIA Corporation)
NVIDIA Graphics Driver 327.02 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 327.02 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.18.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.18.0 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4779.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4779.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4779.1002 - Microsoft Corporation) Hidden
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 9.3.11.2762 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\{A7234617-513C-4292-A013-7DD915493BDA}) (Version: 0.49.305 - Overwolf)
Path of Exile (HKLM-x32\...\Steam App 238960) (Version:  - Grinding Gear Games)
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version:  - OVERKILL - a Starbreeze Studio.)
PAYDAY: The Heist (HKLM-x32\...\Steam App 24240) (Version:  - OVERKILL Software)
Peggle Nights (x32 Version: 2.2.0.98 - WildTangent) Hidden
Plague Inc: Evolved (HKLM-x32\...\Steam App 246620) (Version:  - Ndemic Creations)
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
ProductContext (x32 Version: 140.0.001.000 - Hewlett-Packard) Hidden
R.U.S.E (HKLM-x32\...\Steam App 21970) (Version:  - Eugen Systems)
Raptr (HKLM-x32\...\Raptr) (Version:  - )
Razer Comms (HKLM-x32\...\Razer Comms) (Version: 5.8 - Razer Inc.)
Realtek Card Reader (HKLM-x32\...\{F0A8BF4A-972F-41E0-9800-1EFE3BF28266}) (Version: 6.2.9200.30153 - Realtek Semiconductor Corp.)
Recovery Manager (x32 Version: 5.5.0.6208 - CyberLink Corp.) Hidden
Recuva (HKLM\...\Recuva) (Version: 1.52 - Piriform)
Roads of Rome 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Rocket League (HKLM-x32\...\Steam App 252950) (Version:  - Psyonix)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.6.9 - Rockstar Games)
Rosetta Stone Language Training (HKLM-x32\...\{00384623-4937-4D7D-BDD9-23513D1C50AB}) (Version: 5.0.37.0 - Rosetta Stone, Ltd)
Rosetta Stone Ltd Services (HKLM-x32\...\{3165E4A6-D5DE-46B0-8597-D55E2B826B84}) (Version: 3.2.21 - Rosetta Stone Ltd.)
Royal Envoy 2 Collector's Edition (x32 Version: 3.0.2.32 - WildTangent) Hidden
Rust (HKLM-x32\...\Steam App 252490) (Version:  - Facepunch Studios)
Saints Row IV (HKLM-x32\...\Steam App 206420) (Version:  - Deep Silver Volition)
Saints Row: The Third (HKLM-x32\...\Steam App 55230) (Version:  - Volition)
Savage Lands (HKLM-x32\...\Steam App 307880) (Version:  - Signal Studios)
Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
SHIELD Streaming (Version: 4.1.0240 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.7.4.10 - NVIDIA Corporation) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
Sid Meier's Civilization III: Complete (HKLM-x32\...\Steam App 3910) (Version:  - Firaxis Games)
Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version:  - 2K Games, Inc.)
Skulltag (HKLM-x32\...\Skulltag) (Version: 98d - Skulltag)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype™ 7.8 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.8.102 - Skype Technologies S.A.)
Smite (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF017}) (Version: 2.20.3140.0 - Hi-Rez Studios)
Smite Public Test (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF019}) (Version: 2.14.2981.1 - Hi-Rez Studios)
SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
Spotify (HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\Spotify) (Version: 0.9.15.27.g87efe634 - Spotify AB)
Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version:  - Bioware/EA)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
SteelSeries Engine (HKLM\...\SteelSeries Engine) (Version: 2.8.171.34768 - SteelSeries)
Stranded Deep (HKLM-x32\...\Steam App 313120) (Version:  - Beam Team Games)
Strike Vector (HKLM-x32\...\Steam App 246700) (Version:  - Ragequit Corporation)
Supreme Commander 2 (HKLM-x32\...\Steam App 40100) (Version:  - Gas Powered Games)
Tales of Lagoona (x32 Version: 2.2.0.110 - WildTangent) Hidden
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TEdit 3 (HKLM-x32\...\{56642CE5-5D04-4A3D-B774-754499672E39}) (Version: 3.5.14228.27 - BinaryConstruct)
TEdit 3 (HKLM-x32\...\{B81207ED-C990-4AB1-B5D5-A191EA253C0D}) (Version: 3.5.14064.0 - BinaryConstruct)
TERA (HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\teraenmasse) (Version:  - )
Terraria (HKLM-x32\...\Steam App 105600) (Version:  - Re-Logic)
The Elder Scrolls Online Beta (HKLM-x32\...\The Elder Scrolls Online Beta_is1) (Version: 0.3.4 - )
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)
The Sims 2: Ultimate Collection (HKLM-x32\...\{04450C18-F039-4B81-A621-70C3B0F523D5}) (Version: 1.0.0.0 - Electronic Arts)
The Ultimate DOOM (HKLM-x32\...\Steam App 2280) (Version:  - id Software)
The Witcher 2: Assassins of Kings Enhanced Edition (HKLM-x32\...\Steam App 20920) (Version:  - CD PROJEKT RED)
Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden
Torchlight II (HKLM-x32\...\Steam App 200710) (Version:  - Runic Games)
Total War: ROME II - Emperor Edition (HKLM-x32\...\Steam App 214950) (Version:  - Creative Assembly)
Total War: Rome II Additional Depots (HKLM-x32\...\Steam App 243660) (Version:  - )
TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Unity Web Player (HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\UnityWebPlayer) (Version: 4.6.2f1 - Unity Technologies ApS)
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 4.8 - Ubisoft)
Vacation Quest™ - Australia (x32 Version: 3.0.2.32 - WildTangent) Hidden
Ventrilo Client for Windows x64 (HKLM\...\{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}) (Version: 3.0.8.0 - Flagship Industries, Inc.)
Viber (HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\{e577cb09-2068-44fb-8eed-cfcc1617b010}) (Version: 5.3.0.1884 - Viber Media Inc.)
Viber (x32 Version: 5.3.0.1884 - Viber Media Inc.) Hidden
Vimicro USB2.0 UVC PC Camera (HKLM-x32\...\{71A51A91-E7D3-11DB-A386-005056C00008}) (Version: 2009.03.18 - Vimicro Corp.)
Virtual Audio Cable 4.10 (HKLM\...\Virtual Audio Cable 4.10) (Version:  - )
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
VMware Player (HKLM-x32\...\VMware_Player) (Version: 7.0.0 - VMware, Inc)
VMware Player (Version: 7.0.0 - VMware, Inc.) Hidden
War for the Overworld (HKLM-x32\...\Steam App 230190) (Version:  - Subterranean Games)
War Thunder Launcher 1.0.1.376 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version:  - Gaijin Entertainment)
Warframe (HKLM-x32\...\Steam App 230410) (Version:  - Digital Extremes)
Wargame: European Escalation (HKLM-x32\...\Steam App 58610) (Version:  - Eugen Systems)
WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden
WestwoodChat (HKLM-x32\...\{7CAE6A67-AF7B-4A6A-8705-8AFACA45BB60}) (Version: 1.0.0.0 - WestwoodChat)
WestwoodOnline (HKLM-x32\...\{BBCD6D56-8A26-4DDE-9482-DBC9C7B7341D}) (Version: 1.0.0.0 - WestwoodOnline)
WildStar (HKLM-x32\...\WildStar) (Version:  - NCSOFT)
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
WildTangent Games App (HP Games) (x32 Version: 4.0.10.5 - WildTangent) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.666  - Nullsoft, Inc)
Windows Driver Package - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows Driver Package - Silicon Labs Software (DSI_SiUSBXp_3_1) USB  (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
World of Tanks (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812NA}_is1) (Version:  - Wargaming.net)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version:  - Blizzard Entertainment)
XSplit Gamecaster (HKLM-x32\...\{13DCC429-29D0-48CF-8C68-A7196980A298}) (Version: 1.6.1404.2104 - SplitmediaLabs)
Youda Jewel Shop (x32 Version: 3.0.2.32 - WildTangent) Hidden
Zandronum (HKLM-x32\...\Zandronum) (Version: 1.2 - Zandronum)
Zuma's Revenge (x32 Version: 2.2.0.98 - WildTangent) Hidden

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-152001228-498363203-1698013675-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\amanda\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-152001228-498363203-1698013675-1001_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\amanda\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-152001228-498363203-1698013675-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\amanda\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-152001228-498363203-1698013675-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\amanda\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-152001228-498363203-1698013675-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\amanda\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-152001228-498363203-1698013675-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\amanda\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-152001228-498363203-1698013675-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\amanda\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-152001228-498363203-1698013675-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\amanda\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-152001228-498363203-1698013675-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\amanda\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-152001228-498363203-1698013675-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\amanda\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {084C8308-2B72-4217-9410-0727016A8295} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-06-01] (Piriform Ltd)
Task: {2897FE65-B8ED-427B-BBDB-F730052904A8} - System32\Tasks\CLMLSvc_P2G8 => c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2012-11-01] (CyberLink)
Task: {30C3783E-0FF3-4EEE-95B9-AAEF88283117} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-10-13] (Microsoft Corporation)
Task: {31417663-8278-4E88-9D8B-8923C9432799} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {339DC55E-F356-426D-9D4F-78DBA530F66B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {3B37B2E4-7561-46C8-9324-65FEA5835CCA} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-04] (Microsoft Corporation)
Task: {58C2AC00-9579-42C9-8C55-B5FBE2834FA0} - System32\Tasks\CLVDLauncher => c:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2012-11-01] (CyberLink Corp.)
Task: {5C8A6E3C-CD1F-49A9-BD56-A5F1824E0525} - System32\Tasks\DriverToolkit Autorun => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe
Task: {5FD45773-10FF-4ED2-9601-A69797650E18} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2015-12-17] (Microsoft Corporation)
Task: {9502B035-6A2C-4791-BBE0-51C2DFBB2169} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-29] (Adobe Systems Incorporated)
Task: {A8D7D868-1887-4443-B319-93B6033DB81A} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-04] (Microsoft Corporation)
Task: {AEF4999E-C2B0-48FC-A4BE-779F1F531C2C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {B92B7DAE-EE8E-47A2-8C7C-D67F52761545} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2013-10-15] (Hewlett-Packard)
Task: {BA48FCCD-F364-42BF-B684-E7B4DCC4D3D1} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {C3A27E5A-774E-4D73-B2BC-0894C5551AD7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {C7872E7B-79A9-417A-92D8-826DDD832864} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2013-10-15] (Hewlett-Packard)
Task: {D640EA22-2D2D-4FA3-8EF5-BFA623076486} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [2015-10-29] ()
Task: {E31E6D4D-6FA5-403C-B88F-CDA6264E2EA1} - System32\Tasks\LifeChatTask => C:\Program Files\Microsoft LifeChat\LifeChat.exe [2009-09-24] (Microsoft Corporation)
Task: {E62BF8FC-2018-4A1B-A676-6B57BFD1C2A5} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-10-13] (Microsoft Corporation)
Task: {F82D8B9B-8E43-40A4-96DA-474B3155FD88} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-12-09] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\DriverToolkit Autorun.job => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForamanda.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\WINDOWS\Tasks\WebReg Officejet Pro L7500 Series.job => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqwrg.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\amanda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Search.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://feed.helperbar.com/?publisher=MuvicAMBS&dpid=MuvicAMBS&co=US&userid=9a677688-6be7-2030-5982-8474eae17519&searchtype=sc&installDate=15/08/2014&barcodeid=131768&um=0

==================== Loaded Modules (Whitelisted) ==============

2013-03-22 14:27 - 2013-03-22 14:27 - 00049368 _____ () c:\Program Files\WIDCOMM\Bluetooth Software\btwleapi.dll
2014-09-24 16:59 - 2015-10-13 04:34 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2015-02-11 15:13 - 2015-02-11 15:13 - 00997536 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2015-10-30 03:14 - 2015-09-01 10:04 - 08901184 _____ () C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2015-02-04 18:24 - 2015-02-04 18:25 - 00187072 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2013-11-05 11:19 - 2013-11-05 11:19 - 00708096 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\SSEngineLib.dll
2013-11-05 11:19 - 2013-11-05 11:19 - 00175104 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\DBUtils.dll
2014-10-25 12:24 - 2014-10-25 12:24 - 00089915 ____N () C:\Users\amanda\AppData\Local\Temp\10d2ca4a-28d7-4d81-8c1e-dc42bb6c83fc\CliSecureRT64.dll
2013-11-05 11:19 - 2013-11-05 11:19 - 00280064 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\DriverCommunication.dll
2013-11-05 11:19 - 2013-11-05 11:19 - 00139776 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\ISSPlugin.dll
2013-11-05 11:19 - 2013-11-05 11:19 - 00148480 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\Localization.dll
2013-11-05 11:19 - 2013-11-05 11:19 - 00145408 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\Utilities.dll
2013-01-09 23:46 - 2013-01-09 23:46 - 00047616 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesDrivers\x2api.dll
2013-11-05 11:19 - 2013-11-05 11:19 - 09562112 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\SSEngineWinGui.dll
2013-01-09 23:46 - 2013-01-09 23:46 - 01102336 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\System.Data.SQLite.dll
2013-11-05 11:19 - 2013-11-05 11:19 - 00209408 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\CustomWPFColorPicker.dll
2013-11-05 11:19 - 2013-11-05 11:19 - 00349696 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\MousePlugin.dll
2013-11-05 11:19 - 2013-11-05 11:19 - 00171008 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\D3MousePlugin.dll
2013-11-05 11:19 - 2013-11-05 11:19 - 00173056 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\KKMousePlugin.dll
2013-11-05 11:19 - 2013-11-05 11:19 - 00171008 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\SRawPlugin.dll
2013-11-05 11:19 - 2013-11-05 11:19 - 00307200 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\MLGSenseiPlugin.dll
2013-11-05 11:19 - 2013-11-05 11:19 - 00154624 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\WoWGoldPlugin.dll
2013-11-05 11:19 - 2013-11-05 11:19 - 00170496 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\GW2MousePlugin.dll
2013-11-05 11:19 - 2013-11-05 11:19 - 00169472 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\CSGOMousePlugin.dll
2013-11-05 11:19 - 2013-11-05 11:19 - 00169984 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\DOTA2MousePlugin.dll
2013-11-05 11:19 - 2013-11-05 11:19 - 00157184 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\WoWWirelessPlugin.dll
2013-11-05 11:19 - 2013-11-05 11:19 - 00170496 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\CODMousePlugin.dll
2013-11-05 11:19 - 2013-11-05 11:19 - 00169984 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\WoTMousePlugin.dll
2015-11-14 12:18 - 2015-11-09 04:26 - 51657424 _____ () C:\Users\amanda\AppData\Local\Viber\Viber.exe
2015-05-04 13:25 - 2015-05-04 13:25 - 00055576 _____ () C:\Program Files\CCleaner\branding.dll
2013-09-13 19:51 - 2013-09-13 19:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2013-09-13 19:51 - 2013-09-13 19:51 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2015-12-04 09:43 - 2015-11-12 12:39 - 00012080 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2014-11-20 18:44 - 2014-11-20 18:44 - 01299136 _____ () C:\Program Files (x86)\VMware\VMware Player\libxml2.dll
2014-03-13 08:37 - 2015-10-26 01:11 - 00149480 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\quazip.dll
2013-10-23 06:15 - 2015-10-26 01:11 - 00090088 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\soundbackends\directsound_win32.dll
2013-10-23 06:15 - 2015-10-26 01:11 - 00103400 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win32.dll
2013-10-23 06:15 - 2015-10-26 01:11 - 00260072 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2013-10-23 06:15 - 2015-10-26 01:11 - 00369640 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll
2013-09-20 18:31 - 2012-06-07 21:34 - 00627216 _____ () c:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2012-06-08 12:34 - 2012-06-08 12:34 - 00016400 _____ () c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2015-11-14 12:18 - 2015-11-09 04:19 - 00089088 _____ () C:\Users\amanda\AppData\Local\Viber\qfacebook.dll
2015-11-14 12:18 - 2015-11-09 04:19 - 00389632 _____ () C:\Users\amanda\AppData\Local\Viber\imageformats\qsvg.dll
2015-11-14 12:18 - 2015-09-28 19:58 - 00012288 _____ () C:\Users\amanda\AppData\Local\Viber\QtQuick.2\qtquick2plugin.dll
2015-11-14 12:18 - 2015-09-29 08:25 - 00690176 _____ () C:\Users\amanda\AppData\Local\Viber\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-11-14 12:18 - 2015-09-29 08:26 - 00057856 _____ () C:\Users\amanda\AppData\Local\Viber\QtQuick\Layouts\qquicklayoutsplugin.dll
2015-11-14 12:18 - 2015-09-28 20:04 - 00184320 _____ () C:\Users\amanda\AppData\Local\Viber\QtMultimedia\declarative_multimedia.dll
2015-11-14 12:18 - 2015-09-28 19:58 - 00012288 _____ () C:\Users\amanda\AppData\Local\Viber\QtQuick\Window.2\windowplugin.dll
2015-11-14 12:18 - 2015-09-28 19:58 - 00012288 _____ () C:\Users\amanda\AppData\Local\Viber\QtQml\Models.2\modelsplugin.dll
2015-11-14 12:18 - 2015-09-29 08:34 - 00425984 _____ () C:\Users\amanda\AppData\Local\Viber\QtLocation\declarative_location.dll
2015-11-14 12:18 - 2015-09-28 20:03 - 00065024 _____ () C:\Users\amanda\AppData\Local\Viber\QtPositioning\declarative_positioning.dll
2015-11-14 12:18 - 2015-09-28 19:58 - 00044032 _____ () C:\Users\amanda\AppData\Local\Viber\QtQml\StateMachine\qtqmlstatemachine.dll
2015-10-16 04:02 - 2015-10-16 04:02 - 00039384 _____ () C:\Program Files\FileZilla FTP Client\fzshellext.dll
2015-12-16 18:06 - 2015-12-10 21:54 - 01583432 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libglesv2.dll
2015-12-16 18:06 - 2015-12-10 21:54 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libegl.dll
2013-09-20 18:24 - 2013-01-23 17:57 - 01199576 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-12-24 15:27 - 2015-12-24 07:46 - 16792256 _____ () C:\Users\amanda\AppData\Local\Google\Chrome\User Data\PepperFlash\20.0.0.267\pepflashplayer.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\.DEFAULT\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\.DEFAULT\...\freerealms.com -> freerealms.com
IE trusted site: HKU\.DEFAULT\...\soe.com -> soe.com
IE trusted site: HKU\.DEFAULT\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-19\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-19\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-19\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-19\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-20\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-20\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-20\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-20\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\sony.com -> sony.com

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 07:25 - 2013-08-22 07:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-152001228-498363203-1698013675-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\amanda\Downloads\No-Country-For-Old-Men_30262_4ea5fa772c058837cb0027d1_1320295952.jpg
DNS Servers: 209.18.47.61 - 209.18.47.62
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run: => "XboxStat"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "APSDaemon"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "Raptr"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\StartupApproved\StartupFolder: => "Dropbox.lnk"
HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\StartupApproved\StartupFolder: => "Curse.lnk"
HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\StartupApproved\StartupFolder: => "CurseClientStartup.ccip"
HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\StartupApproved\StartupFolder: => "EvernoteClipper.lnk"
HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\StartupApproved\Run: => "MurGee.com Auto Clicker"
HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_80D2B08C757C10A992115C1FC2E4FD2B"
HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\StartupApproved\Run: => "Overwolf"
HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\StartupApproved\Run: => "Razer Comms"
HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\StartupApproved\Run: => "GarminExpressTrayApp"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{B0CE58D2-64D9-45D3-BDC6-61DD829EFF80}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{1FFBEA81-8A2E-4477-A295-B120726BEFC9}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{B1FA5E1D-2700-4638-8598-F4E73F1A26CC}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [UDP Query User{E9CCB10E-BCCB-4C52-8CA1-4F135DDDFF6E}C:\program files (x86)\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe
FirewallRules: [TCP Query User{43BC1922-DD89-4F8F-9EDD-C2D075665DFE}C:\program files (x86)\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe
FirewallRules: [UDP Query User{E2AB1638-F6DE-4752-9080-7AA5A2978D7C}C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe
FirewallRules: [TCP Query User{46B72DD9-9435-4463-8ED5-F04998136045}C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe
FirewallRules: [{1377684F-E7CE-4E08-ACC5-81ABD5A2F7C8}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{5B988154-AC72-4FD2-95C9-ABEA88958BA8}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{1F5DB6F8-F64E-44CF-811E-7A1B913B51AE}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{78FC5ABA-C111-4563-B6F9-A13DDD0BF4F6}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{B950AF80-77C7-4E37-A530-A8F26462E2C8}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 2 Ultimate Collection\Fun with Pets\SP9\TSBin\Sims2EP9.exe
FirewallRules: [{C1A942C2-0613-4AD1-9A9B-B51BB530D498}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 2 Ultimate Collection\Fun with Pets\SP9\TSBin\Sims2EP9.exe
FirewallRules: [UDP Query User{779EA8B3-FCF8-4EFA-BF91-CE1199CF92D6}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [TCP Query User{9E445062-2B7B-4E9E-A2C5-5500960B6405}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [UDP Query User{448372BE-1D26-40FE-9D64-2CCED37AD821}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{196687DF-F1C8-49C8-8886-4565DAE46D5A}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{08DFF534-3EDB-4F02-9D02-56B95E656843}C:\program files (x86)\mumble\murmur.exe] => (Block) C:\program files (x86)\mumble\murmur.exe
FirewallRules: [TCP Query User{0AFB2F58-1C75-475C-A35D-3BD3D9840AA0}C:\program files (x86)\mumble\murmur.exe] => (Block) C:\program files (x86)\mumble\murmur.exe
FirewallRules: [{BC15C48F-3F00-42C9-A562-8A3D431AC583}] => (Allow) C:\Program Files (x86)\WarThunder\launcher.exe
FirewallRules: [{52739319-70E1-4ABE-B39C-E809DD578272}] => (Allow) C:\Program Files (x86)\WarThunder\launcher.exe
FirewallRules: [{75419022-DA16-40D4-A924-5C1415C28ADA}] => (Allow) C:\Program Files (x86)\WarThunder\launcher.exe
FirewallRules: [{3B3FB903-36FC-48C7-BC08-C1FCFA195FC0}] => (Allow) C:\Program Files (x86)\WarThunder\launcher.exe
FirewallRules: [{4ABB6913-3305-44CE-84AA-97AD8350CCB1}] => (Block) C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe
FirewallRules: [{65EB25A3-BBEE-48CF-AA7C-A5521E66F724}] => (Block) C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe
FirewallRules: [UDP Query User{39C7B98A-E8C6-4982-96A8-1557BCE92682}C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe
FirewallRules: [TCP Query User{B3668881-A40F-466F-BE57-51220F5BECA4}C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe
FirewallRules: [UDP Query User{6BA10A32-D1B4-49D6-BAD7-75A3D54C69B5}C:\program files (x86)\zandronum\zandronum.exe] => (Allow) C:\program files (x86)\zandronum\zandronum.exe
FirewallRules: [TCP Query User{168CE6E7-394C-47A9-BDFC-D1AF855EACAC}C:\program files (x86)\zandronum\zandronum.exe] => (Allow) C:\program files (x86)\zandronum\zandronum.exe
FirewallRules: [{A268AECC-4469-4BE6-9F02-E817FA5B3ABF}] => (Allow) %ProgramFiles% (x86)\Zandronum\zandronum.exe
FirewallRules: [{DDB0E2B2-1720-4D90-A285-2130264739F1}] => (Allow) %ProgramFiles% (x86)\Zandronum\zandronum.exe
FirewallRules: [{7C594688-5455-4D21-900F-D293AE047C9D}] => (Allow) %ProgramFiles% (x86)\Zandronum\zandronum.exe
FirewallRules: [{293DC730-C4E7-42D4-8A3A-A14043BC090F}] => (Allow) %ProgramFiles% (x86)\Zandronum\zandronum.exe
FirewallRules: [{3A421A7B-1FA5-4BD3-B8F9-D46FB0A76D20}] => (Allow) C:\Program Files (x86)\Skulltag\rcon_utility.exe
FirewallRules: [{E075AC34-7A1D-4A35-9D72-DD74714762C5}] => (Allow) C:\Program Files (x86)\Skulltag\rcon_utility.exe
FirewallRules: [{479BA144-CF18-41A3-AFE0-2A60AD7F9A77}] => (Allow) C:\Program Files (x86)\Skulltag\doomseeker.exe
FirewallRules: [{1EE8A46A-4E38-4798-8C1F-E516CCAB3828}] => (Allow) C:\Program Files (x86)\Skulltag\doomseeker.exe
FirewallRules: [{8AB14BBD-EDA4-43CA-961A-F24E7C702899}] => (Allow) C:\Program Files (x86)\Skulltag\skulltag.exe
FirewallRules: [{FB6CB5FB-A21D-43F0-BFAB-8892AAE0EFEB}] => (Allow) C:\Program Files (x86)\Skulltag\skulltag.exe
FirewallRules: [{5E37A5D3-476A-48E0-9609-0847B5F35CB7}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [{951DECF5-A1A9-4876-A180-4F18EBA143F6}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [{EA188C14-1365-4C53-98B2-9120E94E69EE}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{B3F35A0B-31AE-491C-9A1C-311DDB8B0CAC}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{3B0A3E23-DB58-4496-831D-9490E1631526}] => (Allow) C:\Program Files\7-Zip\7zFM.exe
FirewallRules: [{5AEA72D3-B6D4-4549-A221-6C4D6F43FD19}] => (Allow) C:\Program Files\7-Zip\7zFM.exe
FirewallRules: [{966B114B-8CE8-41BD-B1E8-1A7CC2EC5DE4}] => (Allow) C:\Program Files\7-Zip\7zFM.exe
FirewallRules: [{B2C81C5E-F4D4-4065-A446-9CD745453D5E}] => (Allow) C:\Program Files\7-Zip\7zFM.exe
FirewallRules: [{E7CDDE28-F5B9-4694-BFE5-ED210D63C8BF}] => (Allow) C:\Users\amanda\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{6B7CCB5E-5E50-4089-B430-EB6052425BD5}] => (Allow) C:\Users\amanda\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{80C88D2C-4116-4373-949B-ADA73FD892C4}] => (Allow) C:\Users\amanda\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{346712FE-B0D6-42FE-9E76-07C1E6B5EC94}] => (Allow) C:\Users\amanda\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [UDP Query User{0EB35B33-C4A2-43A6-90F0-7DBD4063FB25}C:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe


STILL TOO BIG SPLIT HERE!!!

Offline Broly3k8

  • Bronze Member
  • Posts: 71
SPLIT STARTS HERE

FirewallRules: [TCP Query User{39500488-A820-4543-9371-7BAC15B7598D}C:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe
FirewallRules: [{853158A0-DDA7-499B-9F3B-E73B54EAA3AA}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{EBD1A3C6-18C9-4372-9D9B-4E880F29C7D0}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [UDP Query User{B089C404-0A88-469C-AF48-24DE4074FC70}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [TCP Query User{F36D571C-B2BA-40B0-B7B2-D6A098115218}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [UDP Query User{5AAD9521-B8F9-4820-B993-F2C2A8999094}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [TCP Query User{179FE186-1C79-41C2-9CD2-FC077AA1F167}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [{0280A89F-2F2F-4497-A8BF-10F5C1E2056E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{820A38B2-19D6-4BD4-8DC2-41BAEB730260}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\DayZ\DayZ.exe
FirewallRules: [{536E03CA-8A04-4F1A-92F2-F12C8A5A1050}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{B1C73202-7580-4A49-A8B1-7C868AC1A5D2}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{0A7202E4-5507-4EC4-B171-0C236360D6B5}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{5F627900-AE82-4C20-A2A3-BA590E36F660}] => (Allow) C:\Program Files\Ventrilo\Ventrilo.exe
FirewallRules: [{C5ACC500-149E-4F81-9B28-AC7BB85DE0C7}] => (Allow) C:\Program Files\Ventrilo\Ventrilo.exe
FirewallRules: [{869ACD6E-E7F3-420F-B472-E45581504C30}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{C38572F1-F4B1-471A-AA70-E68749559FF7}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{47DDE9C9-66F2-4429-BF02-14E15805A192}] => (Allow) LPort=1900
FirewallRules: [{BCE3604F-D4BA-41C5-B4A2-440D33FDEFAB}] => (Allow) LPort=2869
FirewallRules: [{2CE8DB69-DB8B-46D8-88CA-5DB606C54F77}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{4B38F694-070C-48F9-98F3-C617F4D91F99}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{A781820D-D407-4988-8106-6EE0B8B38DBE}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{59B7C87D-88AD-4ADE-A549-08FDD71BC4D5}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{50274042-D22E-48A8-99B6-5DC29184C524}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{B01B09A6-BAE6-4FE8-9895-BE040E541175}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{F4F123AC-2228-4F40-9427-74F18B5AAA04}] => (Allow) %LocalAppData%\HPConnectedMusic\Application\spotify_helper.exe
FirewallRules: [{2D1C1A30-FB68-4DCD-ABC9-6F86D131F347}] => (Allow) %LocalAppData%\HPConnectedMusic\Application\spotify_helper.exe
FirewallRules: [{F47BA083-108B-42AF-99B0-4A3E4B97935F}] => (Allow) %LocalAppData%\HPConnectedMusic\Application\HPConnectedMusic.exe
FirewallRules: [{219478E0-B708-4CDA-A279-44D8CFA81E2C}] => (Allow) %LocalAppData%\HPConnectedMusic\Application\HPConnectedMusic.exe
FirewallRules: [{5E0F90FC-8D68-4453-923D-EAEBDA0AD206}] => (Allow) C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe
FirewallRules: [{21FD221B-BD54-470C-8F21-9FD429CF0D3A}] => (Allow) C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe
FirewallRules: [TCP Query User{D07698E3-04F5-471A-A795-2AAED602326A}C:\program files (x86)\hi-rez studios\hirezgames\smite pt\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\smite pt\binaries\win32\smite.exe
FirewallRules: [UDP Query User{D277CBC4-A0CC-41D2-B4EE-C2635291AC4D}C:\program files (x86)\hi-rez studios\hirezgames\smite pt\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\smite pt\binaries\win32\smite.exe
FirewallRules: [{E170C6E8-42CB-42FB-80CF-66350B30069D}] => (Block) C:\program files (x86)\hi-rez studios\hirezgames\smite pt\binaries\win32\smite.exe
FirewallRules: [{686B4DC1-EF0B-4556-9FD3-7FB9A0499193}] => (Block) C:\program files (x86)\hi-rez studios\hirezgames\smite pt\binaries\win32\smite.exe
FirewallRules: [TCP Query User{172E322C-7640-483F-ADF3-5827D9F4050A}C:\users\public\sony online entertainment\installed games\everquest\eqvoiceservice.exe] => (Allow) C:\users\public\sony online entertainment\installed games\everquest\eqvoiceservice.exe
FirewallRules: [UDP Query User{8A3C162B-13F2-4D0D-8918-E12F0D2D9CE9}C:\users\public\sony online entertainment\installed games\everquest\eqvoiceservice.exe] => (Allow) C:\users\public\sony online entertainment\installed games\everquest\eqvoiceservice.exe
FirewallRules: [{AB98956B-6560-4324-9E5C-E9DFE0A57810}] => (Block) C:\users\public\sony online entertainment\installed games\everquest\eqvoiceservice.exe
FirewallRules: [{0C377955-C031-4458-B6BF-1FB7FF8D8ABD}] => (Block) C:\users\public\sony online entertainment\installed games\everquest\eqvoiceservice.exe
FirewallRules: [{FE052CA1-D6BB-4967-B8DF-995F5831FE60}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\SoldierFront2\Binaries\Win32\sf2.exe
FirewallRules: [{ED98A68D-FA18-4872-8C55-524320991ED2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\SoldierFront2\Binaries\Win32\sf2.exe
FirewallRules: [TCP Query User{BB00CE0D-5068-4580-B27F-14D977459693}C:\program files (x86)\razer\comms\chatapplet.exe] => (Allow) C:\program files (x86)\razer\comms\chatapplet.exe
FirewallRules: [UDP Query User{9A7CD732-EE40-47E4-830D-156D4030866F}C:\program files (x86)\razer\comms\chatapplet.exe] => (Allow) C:\program files (x86)\razer\comms\chatapplet.exe
FirewallRules: [{2E8F25B9-70AD-4EE7-9B02-D75CB6B4CB56}] => (Block) C:\program files (x86)\razer\comms\chatapplet.exe
FirewallRules: [{B82B493B-1EDD-46B1-9C25-29F2C6BB8A9A}] => (Block) C:\program files (x86)\razer\comms\chatapplet.exe
FirewallRules: [{0CA3B447-6B14-4C53-B2EC-503E89098534}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{CCEE8A70-56DA-471B-94F7-5119E5853207}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{D39D36ED-D270-4E65-842C-081108C9BC92}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
FirewallRules: [{9A84621B-B659-420B-B411-AFD4A54B7E25}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
FirewallRules: [TCP Query User{FA687B13-717F-446C-83B2-C821F3841D35}C:\users\amanda\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\amanda\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{147FC7CC-5211-47BE-A9FE-06427F16819A}C:\users\amanda\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\amanda\appdata\roaming\spotify\spotify.exe
FirewallRules: [{FBCD38BC-BFBF-430E-BA9E-DF1401552EF5}] => (Block) C:\users\amanda\appdata\roaming\spotify\spotify.exe
FirewallRules: [{A814D2B6-BD46-4ACB-86A1-50EA8CC848FC}] => (Block) C:\users\amanda\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{6C8C7177-4626-4EB5-B754-8A8F500A64CC}C:\program files\java\jre7\bin\java.exe] => (Allow) C:\program files\java\jre7\bin\java.exe
FirewallRules: [UDP Query User{9B37273F-CE29-4478-AFA5-279DDA8BB61F}C:\program files\java\jre7\bin\java.exe] => (Allow) C:\program files\java\jre7\bin\java.exe
FirewallRules: [{883B82E2-37D0-4944-B5B9-855308E62561}] => (Block) C:\program files\java\jre7\bin\java.exe
FirewallRules: [{8FB27C30-E0C0-46B2-94DD-02E2A3660877}] => (Block) C:\program files\java\jre7\bin\java.exe
FirewallRules: [{3828EB62-E71E-43FD-BF97-721BF58A8A83}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{685B9FC7-FC4F-4EFC-8A47-DB794F423189}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{F4D6AE48-92A4-410F-A0AE-76CDE59DD976}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxm08.exe
FirewallRules: [{6E020226-22AA-46D0-88D8-608DDF59C047}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposfx08.exe
FirewallRules: [{75D1092A-0A25-4B7A-A209-AC4D55079947}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{0DE63B37-2E75-4BA1-B5BF-42AB53C1CC66}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{C0D9D315-EDDA-4403-B5D3-6EC7FB86E0A2}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{60FC6894-F04E-4EFB-AE60-407D6ED843BD}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpzwiz01.exe
FirewallRules: [{001D5ACD-6404-40FD-AAFB-E385E9EE5564}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{0E7AD876-8416-4140-A6A1-AEFA53112298}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{15BE6607-7217-4255-9C3E-FCEA0199DFDF}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxs08.exe
FirewallRules: [{5DEF0380-D9E4-4ABA-BC08-684EFA3E153E}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqfxt08.exe
FirewallRules: [{E1E010DA-4BED-496B-A2BB-EF4BA056AA50}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{00156443-4F1E-40C7-A017-47827010833A}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{6DBEFCBC-2D9C-4974-9318-2860782F4A5C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{221C43A0-96C1-4D00-961E-747A5B352BF7}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{F82AF282-5659-469C-8213-9504890D5F09}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{3ECA1917-F24A-4B72-A00F-04A10907B55C}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Generals Zero Hour\Generals.exe
FirewallRules: [{98C5F207-40DA-46C5-9138-750D406608BC}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Generals Zero Hour\Generals.exe
FirewallRules: [{1C152357-7D81-411D-AD13-674D14262C6A}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Tiberian Sun\TSLauncher.exe
FirewallRules: [{FF6734C4-154D-40EA-93E8-700C79F60FF7}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Tiberian Sun\TSLauncher.exe
FirewallRules: [{71432FA3-2BBF-4B9A-9742-6FFC24BA4FDD}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Red Alert II\RA2Launcher.exe
FirewallRules: [{75D53B51-EDB5-4488-8AFF-8F87CD872889}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Red Alert II\RA2Launcher.exe
FirewallRules: [{4875C9DB-56E3-4A17-A789-B2CF6099F183}] => (Allow) C:\Program Files (x86)\Origin Games\CNC and The Covert Operations\CNC95Launcher.exe
FirewallRules: [{01E51255-49E8-4197-BF63-890EC05B8137}] => (Allow) C:\Program Files (x86)\Origin Games\CNC and The Covert Operations\CNC95Launcher.exe
FirewallRules: [{27FA39E8-4088-4A63-B235-2DD3E25CCE8C}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer 3 TW and KW\CNC3Launcher.exe
FirewallRules: [{A4287ED6-E25C-4F4C-B4A1-2D652A9289AD}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer 3 TW and KW\CNC3Launcher.exe
FirewallRules: [{0720E36D-B234-4298-94F6-4FB1E0997810}] => (Allow) C:\Program Files (x86)\Origin Games\Command Conquer 4 Tiberian Twilight\CNC4.exe
FirewallRules: [{EAA43600-1706-44D0-8076-9516BF4DC9CC}] => (Allow) C:\Program Files (x86)\Origin Games\Command Conquer 4 Tiberian Twilight\CNC4.exe
FirewallRules: [{DB3658BB-F323-478A-B37E-431320D79554}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer The Ultimate Collection Additional Content\Launcher.exe
FirewallRules: [{FF3474A8-F3A5-4E0B-A7AD-F76BB71C7227}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer The Ultimate Collection Additional Content\Launcher.exe
FirewallRules: [TCP Query User{A2D775F0-625D-4CF8-8F4A-B475CA79D61D}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{87FF1336-BAB1-462A-AA00-BB8B56D8CFAE}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{29DC6DA5-93A5-4DF0-8A2D-0634A8922AC2}] => (Block) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{B2F4F5C8-6982-4544-8C4A-EDFAD215A455}] => (Block) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{2A0CBF14-BAD5-4C5D-BB7D-F1D3F90F48A4}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 2 Ultimate Collection\Fun with Pets\SP9\TSBin\Sims2EP9.exe
FirewallRules: [{B21A03BA-5907-4107-A2D2-C98FFD63BD36}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 2 Ultimate Collection\Fun with Pets\SP9\TSBin\Sims2EP9.exe
FirewallRules: [{702191EA-E9C5-41BA-8FC9-26EFA572B848}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Age Of Empires 3\bin\age3.exe
FirewallRules: [{23B93529-F92B-4C98-A7FC-9A1CDCCC7DE9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Age Of Empires 3\bin\age3.exe
FirewallRules: [{FF7B679B-EC2B-4FD8-B08E-88678EAA45EC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Age Of Empires 3\bin\age3x.exe
FirewallRules: [{15FC59CC-4D3F-496E-B8A6-BAC6336793F6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Age Of Empires 3\bin\age3x.exe
FirewallRules: [{EA29A6BD-3195-464B-B15C-A6FA0D17CCA7}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Age Of Empires 3\bin\age3y.exe
FirewallRules: [{123E1134-1073-410F-B743-B0BB13B181AB}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Age Of Empires 3\bin\age3y.exe
FirewallRules: [TCP Query User{437A2A92-3A7A-4940-882C-1B525F2BAB69}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{A02EEC41-23B5-4E38-8011-14131D78894A}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{6B8C2A4E-CA0A-4891-8199-C80DE7140B9D}] => (Allow) C:\ProgramData\HappyCloud\Cache\TERA\TERA-Launcher.exe
FirewallRules: [{A135C123-A009-424E-8015-4DB2CCA84BDC}] => (Allow) C:\ProgramData\HappyCloud\Cache\TERA\TERA-Launcher.exe
FirewallRules: [{669135BC-5D1B-42BF-88B9-EC125227C299}] => (Allow) C:\ProgramData\HappyCloud\Cache\TERA\Client\TL.exe
FirewallRules: [{E3B8D4D7-9767-49C9-9DBD-6E2591C5D920}] => (Allow) C:\ProgramData\HappyCloud\Cache\TERA\Client\TL.exe
FirewallRules: [{146DF0A6-0577-4E70-AE2D-8C7A11798C08}] => (Allow) C:\ProgramData\HappyCloud\Cache\TERA\Client\Binaries\TERA.exe
FirewallRules: [{EC0FCE17-7E1E-456C-84B7-7265E2A10774}] => (Allow) C:\ProgramData\HappyCloud\Cache\TERA\Client\Binaries\TERA.exe
FirewallRules: [{2E013F6B-DB1D-496B-9F6F-2CB92814D9C8}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{28D22D5D-7DB1-4294-A2B2-FFD8F3F951F5}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{14654A5B-3B5B-474D-835F-886A5F71E9A8}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{7E0D1A95-91B0-4925-BAC5-3F5F02BC768F}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{98E746D7-F881-488E-85A7-A3115C6E8B3D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{F5962FA2-FCDF-4817-8E61-78CE5D1D3E02}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [TCP Query User{EA4237E3-36D3-4E22-A55A-0B037C8DC9CB}C:\program files\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [UDP Query User{8A3F8710-4517-496F-ABD9-28DC874775F5}C:\program files\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [{45E17D50-ECDE-4BE8-863E-484140B81F1B}] => (Block) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [{186A605F-912F-4106-AB92-194B7B6E4ABD}] => (Block) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [TCP Query User{38F7EF01-E4ED-45D3-A190-ED6821DE6618}C:\program files (x86)\byond\bin\byond.exe] => (Allow) C:\program files (x86)\byond\bin\byond.exe
FirewallRules: [UDP Query User{E0895D87-16EC-4BB5-9E91-F51FB47658F4}C:\program files (x86)\byond\bin\byond.exe] => (Allow) C:\program files (x86)\byond\bin\byond.exe
FirewallRules: [{0868644E-72C1-4D86-8FA4-EB5CA51EF1F7}] => (Block) C:\program files (x86)\byond\bin\byond.exe
FirewallRules: [{113AE3F5-34F9-417A-BE84-14D30921A88C}] => (Block) C:\program files (x86)\byond\bin\byond.exe
FirewallRules: [{CA6589E5-D395-4C22-9791-E20FA55F9997}] => (Allow) C:\Program Files (x86)\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{456A808F-CD93-4460-B004-E8E05D930EFC}] => (Allow) C:\Program Files (x86)\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{D02B1ACE-09CB-4540-AFBF-83B9D9DA2E16}] => (Allow) C:\Program Files (x86)\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{B2897C69-D73B-49F5-AD8C-9D3F4BE9ADD4}] => (Allow) C:\Program Files (x86)\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [TCP Query User{5B45D624-0811-4A00-B2BA-F60331136314}C:\program files\epic games\unrealtournamentdev\engine\binaries\win64\ue4-win64-test.exe] => (Allow) C:\program files\epic games\unrealtournamentdev\engine\binaries\win64\ue4-win64-test.exe
FirewallRules: [UDP Query User{4011A9A9-BD88-4440-9DD2-5F1EA48F39EB}C:\program files\epic games\unrealtournamentdev\engine\binaries\win64\ue4-win64-test.exe] => (Allow) C:\program files\epic games\unrealtournamentdev\engine\binaries\win64\ue4-win64-test.exe
FirewallRules: [TCP Query User{08EAFD2A-DE89-4151-853C-C1AB69FE4317}C:\program files (x86)\starcraft ii\versions\base38215\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base38215\sc2_x64.exe
FirewallRules: [UDP Query User{04E2B7C6-E2C2-469F-8DFF-20651966B3C2}C:\program files (x86)\starcraft ii\versions\base38215\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base38215\sc2_x64.exe
FirewallRules: [{9158D8B3-422E-43F5-B96E-19463586FCCC}] => (Block) C:\program files (x86)\starcraft ii\versions\base38215\sc2_x64.exe
FirewallRules: [{819F4509-B8E6-4534-880D-7CB3549BC064}] => (Block) C:\program files (x86)\starcraft ii\versions\base38215\sc2_x64.exe
FirewallRules: [{B911D65F-EA82-416A-AC12-9166AC159719}] => (Allow) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneLtdServices.exe
FirewallRules: [{835644B2-6EF1-4F9B-9FD2-5A8328778A13}] => (Allow) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneLtdServices.exe
FirewallRules: [{B5952F12-2A0F-4EEC-AFDB-C70EB89FEBC1}] => (Allow) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe
FirewallRules: [{754D940A-411B-478E-BF03-3A89937AA5C4}] => (Allow) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe
FirewallRules: [{D9B23560-15EC-4889-8F48-F5BA9708324E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{40FD4F59-C7CA-421E-A2F2-02C871F4602C}] => (Allow) C:\Program Files (x86)\Origin Games\Dungeon Keeper 2\Game\Game\DKII-DX.exe
FirewallRules: [{50AAE85E-D29D-4F4B-B9CB-EB6E214C68ED}] => (Allow) C:\Program Files (x86)\Origin Games\Dungeon Keeper 2\Game\Game\DKII-DX.exe
FirewallRules: [TCP Query User{07D24821-4E46-450C-BA6F-BB0E6E47BD60}C:\program files (x86)\steam\steamapps\common\war for the overworld\wftogame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war for the overworld\wftogame.exe
FirewallRules: [UDP Query User{7A9D451B-4354-4DBA-9DBF-1C072BB1F520}C:\program files (x86)\steam\steamapps\common\war for the overworld\wftogame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war for the overworld\wftogame.exe
FirewallRules: [{A8A08EE9-BDFC-44D1-8D5C-5434A7D60EB1}] => (Block) C:\program files (x86)\steam\steamapps\common\war for the overworld\wftogame.exe
FirewallRules: [{ECCB5533-2F09-4408-B05F-C5C0F693E1B9}] => (Block) C:\program files (x86)\steam\steamapps\common\war for the overworld\wftogame.exe
FirewallRules: [TCP Query User{356CE1A7-0ED4-4F8A-96AD-9555BEF253B1}C:\program files (x86)\starcraft ii\versions\base38749\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base38749\sc2_x64.exe
FirewallRules: [UDP Query User{9930F54F-11B5-46A5-AFD1-13FF7CD3E59A}C:\program files (x86)\starcraft ii\versions\base38749\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base38749\sc2_x64.exe
FirewallRules: [{98987789-0539-4FAF-BFC8-CBAD308FD1D7}] => (Block) C:\program files (x86)\starcraft ii\versions\base38749\sc2_x64.exe
FirewallRules: [{334262FB-46B5-4F8C-AC2C-A36BDAC87821}] => (Block) C:\program files (x86)\starcraft ii\versions\base38749\sc2_x64.exe
FirewallRules: [TCP Query User{0FB89CCF-BBF5-4BA9-A05C-4265F2B350A1}C:\program files (x86)\heroes of the storm\versions\base38793\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base38793\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{B30A038C-902F-4311-8FE0-D0804E13CD2C}C:\program files (x86)\heroes of the storm\versions\base38793\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base38793\heroesofthestorm_x64.exe
FirewallRules: [{3BA6311C-1485-4D0F-A266-D8BCAAE0E4A3}] => (Block) C:\program files (x86)\heroes of the storm\versions\base38793\heroesofthestorm_x64.exe
FirewallRules: [{336D5810-B7D1-4CC7-B068-61D7D6E3BFAA}] => (Block) C:\program files (x86)\heroes of the storm\versions\base38793\heroesofthestorm_x64.exe
FirewallRules: [{F30D77A6-50BF-4E9F-9119-0C7D47D065ED}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Battleborn Closed Technical Test\Binaries\Win64\Battleborn.exe
FirewallRules: [{22168537-905C-4F21-8950-F84E2258AECA}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Battleborn Closed Technical Test\Binaries\Win64\Battleborn.exe
FirewallRules: [TCP Query User{AE829965-0DBD-44B5-B7D0-39C521BD3327}C:\program files (x86)\starcraft ii\support64\sc2editor_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\support64\sc2editor_x64.exe
FirewallRules: [UDP Query User{278BE8E5-2770-4381-B6D0-16E8C4CE69D8}C:\program files (x86)\starcraft ii\support64\sc2editor_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\support64\sc2editor_x64.exe
FirewallRules: [{14838F24-B177-4304-B3AD-43694B9044C2}] => (Block) C:\program files (x86)\starcraft ii\support64\sc2editor_x64.exe
FirewallRules: [{0D3359EB-4D7B-49F8-887B-4D058D1D6117}] => (Block) C:\program files (x86)\starcraft ii\support64\sc2editor_x64.exe
FirewallRules: [TCP Query User{D8B423BE-A141-468D-95A9-D5ABC5CC4352}C:\program files (x86)\heroes of the storm\versions\base39153\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base39153\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{29D5DDC3-5BE6-47B7-9B19-F422826A1326}C:\program files (x86)\heroes of the storm\versions\base39153\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base39153\heroesofthestorm_x64.exe
FirewallRules: [{24561F57-63F7-4DE0-80C2-A6416CDF6327}] => (Block) C:\program files (x86)\heroes of the storm\versions\base39153\heroesofthestorm_x64.exe
FirewallRules: [{E8E2CDDD-55D6-4BE1-84C4-3177E3A7D8B5}] => (Block) C:\program files (x86)\heroes of the storm\versions\base39153\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{A14F09EA-5959-4205-B6DA-66C3F3BFC40A}C:\program files (x86)\heroes of the storm\versions\base39271\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base39271\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{EC6A0517-35A9-4872-9831-37AB108DDACC}C:\program files (x86)\heroes of the storm\versions\base39271\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base39271\heroesofthestorm_x64.exe
FirewallRules: [{A5AAEE05-3DF4-4131-BBB5-7656800BC0F1}] => (Block) C:\program files (x86)\heroes of the storm\versions\base39271\heroesofthestorm_x64.exe
FirewallRules: [{2AEB61EC-AFAC-45C8-8B46-5AC438C47583}] => (Block) C:\program files (x86)\heroes of the storm\versions\base39271\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{1BEEC2DE-09AA-49AF-8814-396F7562A016}C:\program files (x86)\starcraft ii\versions\base38996\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base38996\sc2_x64.exe
FirewallRules: [UDP Query User{AB066D9E-56DC-428B-85F7-6A7AFBA2AF70}C:\program files (x86)\starcraft ii\versions\base38996\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base38996\sc2_x64.exe
FirewallRules: [{E378C99D-3B13-4104-B7B7-83BD1DDE5B94}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{27F817B3-3D3A-4283-B457-1AD3BE875EFC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{CF0295B1-1724-4915-8BB7-DB141057AB74}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{70C8FCD2-A6AF-4EC2-843B-804293A8C20A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{D3F52132-2B1C-4227-968A-6232082B6C8B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{BF4A577E-B405-4B8D-A4D2-D77EE9A2AD81}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{E8515136-0BE8-4E63-9A49-0766AA872854}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{7CA4AD8B-67D6-400F-BA64-A9EFBCADBA1B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{A96E4A1A-EDF3-4A58-8D96-23E956A82D72}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{1C8EA81E-F09D-454D-9AFF-D1D2C2FE61DE}C:\program files (x86)\heroes of the storm\versions\base39445\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base39445\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{0996E175-D5E2-438C-AEDE-9E4BF29828E3}C:\program files (x86)\heroes of the storm\versions\base39445\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base39445\heroesofthestorm_x64.exe
FirewallRules: [{2737B027-E843-4D89-A803-D14221C4739D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{4D21F1B0-DEF0-4FEB-82AB-6BE5E692124D}C:\program files (x86)\starcraft ii\versions\base39576\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base39576\sc2_x64.exe
FirewallRules: [UDP Query User{261F679A-2F6B-4120-B604-7AACFC222D23}C:\program files (x86)\starcraft ii\versions\base39576\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base39576\sc2_x64.exe
FirewallRules: [{5FA8212C-2297-4E96-82FA-F63E37D643FF}] => (Block) C:\program files (x86)\starcraft ii\versions\base39576\sc2_x64.exe
FirewallRules: [{3FB016E4-3B83-4490-A3E0-0CFEEF042B0D}] => (Block) C:\program files (x86)\starcraft ii\versions\base39576\sc2_x64.exe
FirewallRules: [{2BD058B8-62A3-4939-B0DC-5BF25C3A74DC}] => (Allow) J:\SteamLibrary\steamapps\common\Company of Heroes 2\RelicCoH2.exe
FirewallRules: [{937C3B1D-7A2B-4B64-A7B2-E854E083DC92}] => (Allow) J:\SteamLibrary\steamapps\common\Company of Heroes 2\RelicCoH2.exe
FirewallRules: [{70DF4CC0-C8B3-4654-B588-0D9B7A38E6DB}] => (Allow) J:\SteamLibrary\steamapps\common\Company of Heroes Relaunch\RelicCOH.exe
FirewallRules: [{2B2700BA-7FA6-4DE4-BE65-D96E0E0E1300}] => (Allow) J:\SteamLibrary\steamapps\common\Company of Heroes Relaunch\RelicCOH.exe
FirewallRules: [{049BA95D-B7AA-4BC7-9CBD-FFAACF55E244}] => (Allow) J:\SteamLibrary\steamapps\common\Company of Heroes\RelicCOH.exe
FirewallRules: [{8962A761-98E6-42AE-841D-E970E380B6A1}] => (Allow) J:\SteamLibrary\steamapps\common\Company of Heroes\RelicCOH.exe
FirewallRules: [TCP Query User{EAAB63A1-2EE6-4300-9E18-48C0C9596218}C:\users\amanda\desktop\factorio\factorio_0.12.20\bin\x64\factorio.exe] => (Allow) C:\users\amanda\desktop\factorio\factorio_0.12.20\bin\x64\factorio.exe
FirewallRules: [UDP Query User{63B86E37-526B-427C-AFDB-F258DB07FA39}C:\users\amanda\desktop\factorio\factorio_0.12.20\bin\x64\factorio.exe] => (Allow) C:\users\amanda\desktop\factorio\factorio_0.12.20\bin\x64\factorio.exe
FirewallRules: [{55E49EFE-7E45-4551-98C1-68B6E87A39B2}] => (Block) C:\users\amanda\desktop\factorio\factorio_0.12.20\bin\x64\factorio.exe
FirewallRules: [{ED82EC14-0E18-4B6E-B470-17EF223F4B1E}] => (Block) C:\users\amanda\desktop\factorio\factorio_0.12.20\bin\x64\factorio.exe
FirewallRules: [{C13E749F-E146-4290-A009-8F0EFCCB2FF1}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{3A5B1677-585F-431F-8583-76E6A4E73CF3}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{F7AAF205-DA4A-4222-8465-9D82CF3D20E8}] => (Allow) J:\SteamLibrary\steamapps\common\Banished\Application-steam-x64.exe
FirewallRules: [{2953E49E-86ED-4721-A799-49DC49D204F3}] => (Allow) J:\SteamLibrary\steamapps\common\Banished\Application-steam-x64.exe
FirewallRules: [{18C322C4-D812-4BFB-93B4-C677CD6C773E}] => (Allow) J:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{62D96033-EFD8-4BF9-AF30-2CE4A32D5FA7}] => (Allow) J:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{5F035D76-01BE-43ED-B08A-A8A4A79C4244}] => (Allow) J:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{84EABE88-0EF6-4213-896C-FAEFBD2813BA}] => (Allow) J:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{9899EA22-D10A-407C-9DF7-1D989624C89E}] => (Allow) J:\SteamLibrary\steamapps\common\the witcher 2\Launcher.exe
FirewallRules: [{970B3583-222F-41E6-91C2-D4006AD9A65E}] => (Allow) J:\SteamLibrary\steamapps\common\the witcher 2\Launcher.exe
FirewallRules: [{C65B47A3-ED4A-43C5-84CD-744867CA0CB5}] => (Allow) J:\SteamLibrary\steamapps\common\Wargame European Escalation\WarGame.exe
FirewallRules: [{0DB2A268-541A-44E3-B512-C728DED67D9D}] => (Allow) J:\SteamLibrary\steamapps\common\Wargame European Escalation\WarGame.exe
FirewallRules: [{8C555398-D309-4011-9C7F-FE3D5AD066D7}] => (Allow) J:\SteamLibrary\steamapps\common\War For The Overworld\WFTO.exe
FirewallRules: [{D88A929A-3ECB-4941-A0D6-D535029B8A05}] => (Allow) J:\SteamLibrary\steamapps\common\War For The Overworld\WFTO.exe
FirewallRules: [{D65A505E-AE6E-4EAB-B2D8-7781A5D7B692}] => (Allow) J:\SteamLibrary\steamapps\common\Ultimate Doom\base\dosbox.exe
FirewallRules: [{8BCCA0CB-8B4D-48B8-93DE-52750364C5D2}] => (Allow) J:\SteamLibrary\steamapps\common\Ultimate Doom\base\dosbox.exe
FirewallRules: [{6D1A1082-0E91-4C53-98D6-03DC9A880E79}] => (Allow) J:\SteamLibrary\steamapps\common\Torchlight II\ModLauncher.exe
FirewallRules: [{A64564B1-A702-427B-90C3-148979FC596A}] => (Allow) J:\SteamLibrary\steamapps\common\Torchlight II\ModLauncher.exe
FirewallRules: [{DAF11B02-51FC-430E-B785-AD463B9A4E65}] => (Allow) J:\SteamLibrary\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{AF120A7F-9CBA-4B81-B1AD-B5F60892E27E}] => (Allow) J:\SteamLibrary\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{F52A0FA9-67EA-45C9-B371-15C0A86EFAF6}] => (Allow) J:\SteamLibrary\steamapps\common\Supreme Commander 2\bin\SupremeCommander2.exe
FirewallRules: [{61C7C927-136F-452A-9BD0-02A9CB77DF0C}] => (Allow) J:\SteamLibrary\steamapps\common\Supreme Commander 2\bin\SupremeCommander2.exe
FirewallRules: [{D7E2132F-A63F-48B6-8349-0443DD632D23}] => (Allow) J:\SteamLibrary\steamapps\common\StrikeVector\Binaries\Win32\UDK.exe
FirewallRules: [{F52FB395-A754-42A0-A8E0-2AA687449079}] => (Allow) J:\SteamLibrary\steamapps\common\StrikeVector\Binaries\Win32\UDK.exe
FirewallRules: [{5E360944-48E3-4479-882E-84540812EC2A}] => (Allow) J:\SteamLibrary\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{1852371F-3A21-4685-8B2D-D7F891504267}] => (Allow) J:\SteamLibrary\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{26FCB9A0-CF7B-4799-8B66-5DD3ED4E8F51}] => (Allow) J:\SteamLibrary\steamapps\common\Sid Meier's Civilization III Complete\Conquests\Civ3Conquests.exe
FirewallRules: [{2FE8D900-272B-462C-82EF-66DE78A10009}] => (Allow) J:\SteamLibrary\steamapps\common\Sid Meier's Civilization III Complete\Conquests\Civ3Conquests.exe
FirewallRules: [{2CCA9B3E-653C-4909-A8BB-519DF5F4163C}] => (Allow) J:\SteamLibrary\steamapps\common\Savage Lands\SavageLands.exe
FirewallRules: [{347A541E-5CA1-4EE2-9FBA-FDD603622F04}] => (Allow) J:\SteamLibrary\steamapps\common\Savage Lands\SavageLands.exe
FirewallRules: [{E45416B3-30BB-485A-812A-79C33F9DF524}] => (Allow) J:\SteamLibrary\steamapps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{A7BF57EC-5E4B-42C2-9060-56B62A5E1A95}] => (Allow) J:\SteamLibrary\steamapps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{66901FBF-8EEA-413F-9BE9-812C110292C9}] => (Allow) J:\SteamLibrary\steamapps\common\Saints Row the Third\game_launcher.exe
FirewallRules: [{838F6A69-D35C-4902-BB70-97FE869D43CD}] => (Allow) J:\SteamLibrary\steamapps\common\Saints Row the Third\game_launcher.exe
FirewallRules: [{3BF09215-0E87-4316-8F70-41E25371E8E5}] => (Allow) J:\SteamLibrary\steamapps\common\Rust\Rust.exe
FirewallRules: [{AF1C3518-02D9-44C6-99F6-942D531F631B}] => (Allow) J:\SteamLibrary\steamapps\common\Rust\Rust.exe
FirewallRules: [{DFFEF2FE-317C-4D80-878F-700ACE1FD698}] => (Allow) J:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{F34431A8-A71F-4213-B82A-FAD6117D330E}] => (Allow) J:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{1BD8024F-7853-4F2A-8DE6-B336C45E1E13}] => (Allow) J:\SteamLibrary\steamapps\common\R.U.S.E\Ruse.exe
FirewallRules: [{4479F835-234B-4CF2-98BD-310030B55238}] => (Allow) J:\SteamLibrary\steamapps\common\R.U.S.E\Ruse.exe
FirewallRules: [{87EA0693-6D89-4944-BBE8-0DDB31E890D6}] => (Allow) J:\SteamLibrary\steamapps\common\PlagueInc\PlagueIncEvolved.exe
FirewallRules: [{9242D501-3FE8-4560-9B83-EE6FA1541CA0}] => (Allow) J:\SteamLibrary\steamapps\common\PlagueInc\PlagueIncEvolved.exe
FirewallRules: [{93600F15-3DF7-4327-8B09-DC2F38FB515C}] => (Allow) J:\SteamLibrary\steamapps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [{5BD56993-522F-47F1-9B77-2CFA4937F4F6}] => (Allow) J:\SteamLibrary\steamapps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [{AAF8827A-CA8A-43F7-9CEB-663E978327D6}] => (Allow) J:\SteamLibrary\steamapps\common\Might and Magic Heroes VI\Might & Magic Heroes VI.exe
FirewallRules: [{14118FE8-B9C7-479B-98B9-D384C78E9231}] => (Allow) J:\SteamLibrary\steamapps\common\Might and Magic Heroes VI\Might & Magic Heroes VI.exe
FirewallRules: [{AF560F45-69A5-436F-BEE9-29ED485A295F}] => (Allow) J:\SteamLibrary\steamapps\common\KOAReckoning\Reckoning.exe
FirewallRules: [{0ABF4194-A4EC-49BC-823F-CB012A2ADECC}] => (Allow) J:\SteamLibrary\steamapps\common\KOAReckoning\Reckoning.exe
FirewallRules: [{32B5513D-13DE-47C7-ACBB-6469F56539EB}] => (Allow) J:\SteamLibrary\steamapps\common\Just Cause 3\JustCause3.exe
FirewallRules: [{4E2B10B4-5F88-4C19-ADEC-C39336C781B6}] => (Allow) J:\SteamLibrary\steamapps\common\Just Cause 3\JustCause3.exe
FirewallRules: [{661CFBD8-B338-4AD6-99F8-0D306D005A2C}] => (Allow) J:\SteamLibrary\steamapps\common\Just Cause 2 - Multiplayer Mod\JcmpLauncher.exe
FirewallRules: [{B87A9CF1-1506-46F6-8F7D-F9BA393D28F3}] => (Allow) J:\SteamLibrary\steamapps\common\Just Cause 2 - Multiplayer Mod\JcmpLauncher.exe
FirewallRules: [{F16B6FBF-3CA4-4CB4-8DB1-21AAF162D0A7}] => (Allow) J:\SteamLibrary\steamapps\common\Just Cause 2\JustCause2.exe
FirewallRules: [{5F2B7B1F-BCA9-40B7-92E9-8322F48B76C0}] => (Allow) J:\SteamLibrary\steamapps\common\Just Cause 2\JustCause2.exe
FirewallRules: [{F49BB7D1-F7AC-4AB5-8DEF-4C13CF696DD6}] => (Allow) J:\SteamLibrary\steamapps\common\Helldivers\binaries\x64\helldivers.exe
FirewallRules: [{74946351-C3A0-4F94-AA76-CBE0718E2635}] => (Allow) J:\SteamLibrary\steamapps\common\Helldivers\binaries\x64\helldivers.exe
FirewallRules: [{9BB11650-1775-41E6-A4D2-6FFD750FA7CC}] => (Allow) J:\SteamLibrary\steamapps\common\Helldivers\binaries\x86\helldivers.exe
FirewallRules: [{86136FC6-4FB4-431A-B676-9492A853F7DF}] => (Allow) J:\SteamLibrary\steamapps\common\Helldivers\binaries\x86\helldivers.exe
FirewallRules: [{8DCE1920-E024-4AD0-97EC-35FA3E0A6C11}] => (Allow) J:\SteamLibrary\steamapps\common\FINAL FANTASY VIII\FF8_Launcher.exe
FirewallRules: [{AA81DBE4-C859-4A5E-81AA-0C62AD7775E7}] => (Allow) J:\SteamLibrary\steamapps\common\FINAL FANTASY VIII\FF8_Launcher.exe
FirewallRules: [{DFB81187-F8F6-4ED0-A00F-A2D204B654C7}] => (Allow) J:\SteamLibrary\steamapps\common\Far Cry 4\bin\FarCry4.exe
FirewallRules: [{7B0F7944-F1C0-47D4-90B3-2D9737A6767D}] => (Allow) J:\SteamLibrary\steamapps\common\Far Cry 4\bin\FarCry4.exe
FirewallRules: [{8B766A4E-2474-468D-B675-7144ECFE68DF}] => (Allow) J:\SteamLibrary\steamapps\common\Far Cry 3\bin\FC3UpdaterSteam.exe
FirewallRules: [{6ACCA42D-A985-4F74-B23C-4E894B19A5D1}] => (Allow) J:\SteamLibrary\steamapps\common\Far Cry 3\bin\FC3UpdaterSteam.exe
FirewallRules: [{0BBB4DAF-970D-4FD9-954E-4135AD69560C}] => (Allow) J:\SteamLibrary\steamapps\common\Fallout New Vegas\FalloutNVLauncher.exe
FirewallRules: [{883D4A5F-3B1D-4068-9973-BDA9F4147090}] => (Allow) J:\SteamLibrary\steamapps\common\Fallout New Vegas\FalloutNVLauncher.exe
FirewallRules: [{AC7326F3-BE0E-43FE-8A34-BE0F2F72E682}] => (Allow) J:\SteamLibrary\steamapps\common\Fallout 4\Fallout4Launcher.exe
FirewallRules: [{003CE570-79AF-4C57-8272-E6339BD19CF9}] => (Allow) J:\SteamLibrary\steamapps\common\Fallout 4\Fallout4Launcher.exe
FirewallRules: [{CFE2A969-B286-4C4D-8248-54BDA8D6E82F}] => (Allow) J:\SteamLibrary\steamapps\common\Fallout 3 goty\FalloutLauncher.exe
FirewallRules: [{95F70461-84D9-41C3-ACDA-23CE98C39F42}] => (Allow) J:\SteamLibrary\steamapps\common\Fallout 3 goty\FalloutLauncher.exe
FirewallRules: [{F55D43BA-A945-40A3-842A-7EA497ACD7C8}] => (Allow) J:\SteamLibrary\steamapps\common\DB Xenoverse\DBXV.exe
FirewallRules: [{E61D8DA9-2CD1-4B12-9111-080EDA71DDE0}] => (Allow) J:\SteamLibrary\steamapps\common\DB Xenoverse\DBXV.exe
FirewallRules: [{C75CC5DB-955E-4F12-AA60-A250616B9063}] => (Allow) J:\SteamLibrary\steamapps\common\DOOM 3 BFG Edition\Doom3BFG.exe
FirewallRules: [{07B0FBF8-A17B-4F91-84A2-1EBBEB2678D3}] => (Allow) J:\SteamLibrary\steamapps\common\DOOM 3 BFG Edition\Doom3BFG.exe
FirewallRules: [{A20C6153-EE57-4F1E-8686-C31B565DF37C}] => (Allow) J:\SteamLibrary\steamapps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{1CAEA47C-4D97-4B50-9C34-E215122EDED6}] => (Allow) J:\SteamLibrary\steamapps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{A76C6528-FBF9-49C9-BF06-3966F406EE53}] => (Allow) J:\SteamLibrary\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{8B2CD522-896C-4C08-9CD0-E836A9928033}] => (Allow) J:\SteamLibrary\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{BF513068-CA69-4918-A3D2-99EC3534BF53}] => (Allow) J:\SteamLibrary\steamapps\common\Call of Duty Black Ops II\t6zm.exe
FirewallRules: [{5BBD67FC-586D-4165-BF7E-B08C2FDA8F37}] => (Allow) J:\SteamLibrary\steamapps\common\Call of Duty Black Ops II\t6zm.exe
FirewallRules: [{1F804421-71BA-4CC4-A378-6F0F0EA13993}] => (Allow) J:\SteamLibrary\steamapps\common\Call of Duty Black Ops II\t6mp.exe
FirewallRules: [{5EE695A9-DCC9-47EF-94B6-570D5D528A6A}] => (Allow) J:\SteamLibrary\steamapps\common\Call of Duty Black Ops II\t6mp.exe
FirewallRules: [{3DAC3633-B3AE-483C-9A31-0FBA351D4E24}] => (Allow) J:\SteamLibrary\steamapps\common\Call of Duty Black Ops II\t6sp.exe
FirewallRules: [{5361ED49-B9ED-4323-A04F-866902E069E9}] => (Allow) J:\SteamLibrary\steamapps\common\Call of Duty Black Ops II\t6sp.exe
FirewallRules: [{E0DF336F-953D-4E07-A90A-E8A74E22E44E}] => (Allow) J:\SteamLibrary\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutParadise.exe
FirewallRules: [{F30B2D47-B2FC-47E9-A039-FE184F2FE0A3}] => (Allow) J:\SteamLibrary\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutParadise.exe
FirewallRules: [{EC464583-86B7-4299-BE6A-8A2746735575}] => (Allow) J:\SteamLibrary\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutConfigTool.exe
FirewallRules: [{31A0AE44-30CB-4EDB-804D-F407D136F211}] => (Allow) J:\SteamLibrary\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutConfigTool.exe


*** STILL TOO BIG!?

Offline Broly3k8

  • Bronze Member
  • Posts: 71
Hopefully this is the last split:

FirewallRules: [{D895ED6B-F554-48A5-A101-3DECBFEEB8D0}] => (Allow) J:\SteamLibrary\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{11DF1E35-A9BA-4BD9-B6DD-4EECA2E72A8D}] => (Allow) J:\SteamLibrary\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{C5ED3B78-11A7-45F0-ADED-9EE1FB707A93}] => (Allow) J:\SteamLibrary\steamapps\common\Baldur's Gate Enhanced Edition\Baldur.exe
FirewallRules: [{36C8F05F-CEB5-448A-8E0B-59EDE8320435}] => (Allow) J:\SteamLibrary\steamapps\common\Baldur's Gate Enhanced Edition\Baldur.exe
FirewallRules: [{2B2F9766-3900-4947-9BB2-88D58F1CA3FD}] => (Allow) J:\SteamLibrary\steamapps\common\Total War Rome II\launcher\launcher.exe
FirewallRules: [{F26581C2-0579-4E60-B8FD-13ABE7B687E3}] => (Allow) J:\SteamLibrary\steamapps\common\Total War Rome II\launcher\launcher.exe
FirewallRules: [{43E6B25E-21CB-402E-A15F-A94A60EEC7A2}] => (Allow) J:\SteamLibrary\steamapps\common\Stranded Deep\Stranded_Deep_x64.exe
FirewallRules: [{05595269-8156-4C75-886A-F15274298616}] => (Allow) J:\SteamLibrary\steamapps\common\Stranded Deep\Stranded_Deep_x64.exe
FirewallRules: [{32A9D453-879B-4537-858F-4FA722A34AEB}] => (Allow) J:\SteamLibrary\steamapps\common\insurgency2\insurgency.exe
FirewallRules: [{2F8E87EA-2DA6-4179-8EA8-80C14DE5128F}] => (Allow) J:\SteamLibrary\steamapps\common\insurgency2\insurgency.exe
FirewallRules: [{1BEFC032-488F-4ECD-9797-412814504884}] => (Allow) J:\SteamLibrary\steamapps\common\Infinite Crisis Steam\TurbineLauncher.exe
FirewallRules: [{EC6DD473-DB2A-43EF-8788-0B3864E804A5}] => (Allow) J:\SteamLibrary\steamapps\common\Infinite Crisis Steam\TurbineLauncher.exe
FirewallRules: [{B6C56DF9-0644-416B-88B2-2274429F2EDA}] => (Allow) J:\SteamLibrary\steamapps\common\Grand Theft Auto Vice City\gta-vc.exe
FirewallRules: [{0F15FE66-C708-4089-BC74-8E30CE886BD8}] => (Allow) J:\SteamLibrary\steamapps\common\Grand Theft Auto Vice City\gta-vc.exe
FirewallRules: [{61B77724-D8B2-414C-934E-C088774BEEC3}] => (Allow) J:\SteamLibrary\steamapps\common\Grand Theft Auto San Andreas\gta-sa.exe
FirewallRules: [{8463A720-B96B-4656-9B45-E6F57835ED5D}] => (Allow) J:\SteamLibrary\steamapps\common\Grand Theft Auto San Andreas\gta-sa.exe
FirewallRules: [{E3A3865B-A243-4327-9A5B-A6BCE4988D8C}] => (Allow) J:\SteamLibrary\steamapps\common\Grand Theft Auto 3\gta3.exe
FirewallRules: [{914CA33B-C521-4ED3-B637-48419F350544}] => (Allow) J:\SteamLibrary\steamapps\common\Grand Theft Auto 3\gta3.exe
FirewallRules: [{C250CE37-785A-4A87-9BC5-62F2D619C1FD}] => (Allow) J:\SteamLibrary\steamapps\common\Final Doom\base\dosbox.exe
FirewallRules: [{63159E75-DF81-498F-B0F6-0ECE3889E78A}] => (Allow) J:\SteamLibrary\steamapps\common\Final Doom\base\dosbox.exe
FirewallRules: [{B4A382FF-5E72-409D-9E38-3DA4840AC798}] => (Allow) J:\SteamLibrary\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{4BA94128-9660-44C1-A734-07060D5776D6}] => (Allow) J:\SteamLibrary\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{653663FC-7845-4379-9D5C-B0D0829C0D4A}] => (Allow) J:\SteamLibrary\steamapps\common\Dungeon Defenders\Binaries\Win32\DungeonDefenders.exe
FirewallRules: [{ECA7651E-DDAC-4EAA-82FD-8A714042ADA5}] => (Allow) J:\SteamLibrary\steamapps\common\Dungeon Defenders\Binaries\Win32\DungeonDefenders.exe
FirewallRules: [{FF63DCFF-ABB4-4496-BD88-AEDC8CD32DA1}] => (Allow) J:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8163C748-5461-4C36-9EEB-2C66D07E00DD}] => (Allow) J:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{56D0462C-423A-47D1-93C4-79D3B260A7BA}] => (Allow) J:\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [{BF881098-B381-4C4D-BCAF-2D718712BFEC}] => (Allow) J:\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [{B79BDD15-2BD7-47D8-B6CB-8C70C1B9278D}] => (Allow) J:\SteamLibrary\steamapps\common\Darksiders II Deathinitive Edition\Darksiders2.exe
FirewallRules: [{E2384E1D-032D-4617-ACEB-67A888FEC9E1}] => (Allow) J:\SteamLibrary\steamapps\common\Darksiders II Deathinitive Edition\Darksiders2.exe
FirewallRules: [{63E31523-0BA6-48EB-AEA6-270CD20196CE}] => (Allow) J:\SteamLibrary\steamapps\common\Darksiders 2\Darksiders2.exe
FirewallRules: [{A076EDC6-61AA-48E3-A4DD-F784334B277E}] => (Allow) J:\SteamLibrary\steamapps\common\Darksiders 2\Darksiders2.exe
FirewallRules: [{C966D513-9CDD-4B21-BC98-C2C5D35996E7}] => (Allow) J:\SteamLibrary\steamapps\common\Darksiders\DarksidersPC.exe
FirewallRules: [{095D6D1A-0F3D-494E-9486-04E511EBC838}] => (Allow) J:\SteamLibrary\steamapps\common\Darksiders\DarksidersPC.exe
FirewallRules: [{28BC7EF2-ACF7-4DA1-ADC4-C4C68F98DDD2}] => (Allow) J:\SteamLibrary\steamapps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe
FirewallRules: [{19CE8407-0728-411B-B332-62A6AB24611F}] => (Allow) J:\SteamLibrary\steamapps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe
FirewallRules: [{277DBB35-9CCE-4939-96BF-66BEBE022234}] => (Allow) J:\SteamLibrary\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe
FirewallRules: [{7ACF4AE3-73BC-474A-8731-3FBDF872678A}] => (Allow) J:\SteamLibrary\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe
FirewallRules: [{5218E59D-AEAD-4720-B372-617243A69350}] => (Allow) J:\SteamLibrary\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
FirewallRules: [{D16EC23E-B5CC-45AE-882C-2F3FA3B101E9}] => (Allow) J:\SteamLibrary\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
FirewallRules: [{40A6F993-2725-4014-A3C8-9A4B4B115728}] => (Allow) J:\SteamLibrary\steamapps\common\Age2HD\Launcher.exe
FirewallRules: [{EA0060C1-DA22-4673-B4F9-3F775D9AAE5B}] => (Allow) J:\SteamLibrary\steamapps\common\Age2HD\Launcher.exe
FirewallRules: [TCP Query User{853F153A-F20E-444D-97E2-D1E3D001FA40}J:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) J:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{D836105A-0AB1-4F10-80B2-28838BFC81AE}J:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) J:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{D7662FE3-4FCF-42F6-8C7D-36DADE518432}] => (Block) J:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{4D5133BF-FFB0-4A42-B3BA-8F35FDE39B12}] => (Block) J:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{F4ECBCA0-FB18-4FF3-A2C1-64C82840F67B}] => (Allow) J:\SteamLibrary\steamapps\common\PAYDAY The Heist\payday_win32_release.exe
FirewallRules: [{A5769101-9D14-4D46-879A-63CCF586CA58}] => (Allow) J:\SteamLibrary\steamapps\common\PAYDAY The Heist\payday_win32_release.exe
FirewallRules: [{4840F49A-9818-4602-8C0F-EB432E5EB96B}] => (Allow) J:\SteamLibrary\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{D0BF64EC-DFB5-4F2F-B9AB-977D5F90F3A6}] => (Allow) J:\SteamLibrary\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [TCP Query User{750C4D1B-38CC-4CDD-B6BE-B9984B31B3A5}C:\program files (x86)\heroes of the storm\versions\base39709\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base39709\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{428329C7-4B64-4D1A-852B-CA6B87D14A1B}C:\program files (x86)\heroes of the storm\versions\base39709\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base39709\heroesofthestorm_x64.exe
FirewallRules: [{E83F9252-EF67-4C5C-9219-EBBA1F8E4A99}] => (Block) C:\program files (x86)\heroes of the storm\versions\base39709\heroesofthestorm_x64.exe
FirewallRules: [{8F255824-2656-4994-AF4C-DA1EEE6D20C9}] => (Block) C:\program files (x86)\heroes of the storm\versions\base39709\heroesofthestorm_x64.exe
FirewallRules: [{660EA8F9-1E70-4427-8EB5-195B7FD7EA70}] => (Allow) J:\SteamLibrary\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{F4078F9F-781C-4F09-AF73-39E2E1FA3510}] => (Allow) J:\SteamLibrary\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{3477ABB7-CA9F-480B-96DE-BB3C9D8322C7}] => (Allow) J:\SteamLibrary\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{12A5A2F0-DBEE-4033-B151-BBF09E8037B8}] => (Allow) J:\SteamLibrary\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{2F103094-96AA-47A3-B547-7F9FE31AAEC4}] => (Allow) J:\SteamLibrary\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{8882351F-37FB-465B-81B3-EDFAA4653EBA}] => (Allow) J:\SteamLibrary\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{64B5DDEB-7F1F-417D-B962-FAFA5394C0DC}] => (Allow) J:\SteamLibrary\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{042037AB-5CD4-4C88-A30D-B672EC8D4D04}] => (Allow) J:\SteamLibrary\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{ECBD615E-3AB9-4F19-AE28-961475184934}] => (Allow) J:\SteamLibrary\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{04942D66-6017-4988-BC66-6D7DFEB00B93}] => (Allow) J:\SteamLibrary\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{DE9BB66E-E248-4374-8987-A517736D6A89}] => (Allow) J:\SteamLibrary\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{1214CAFF-B15C-4975-A6F5-CE1D70EE3F21}] => (Allow) J:\SteamLibrary\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{60954331-AD8A-4099-AF89-204B256D428C}] => (Allow) J:\SteamLibrary\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{48202B69-F640-474A-B972-1CFA0A96D05A}] => (Allow) J:\SteamLibrary\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{A862864D-905B-4E53-BBD7-79676DEA4781}] => (Allow) J:\SteamLibrary\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{82F611C0-B3DD-40CD-88F1-8DAC251D7374}] => (Allow) J:\SteamLibrary\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{2A02BA9D-676D-44B2-A83C-8620E668465B}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe

==================== Restore Points =========================

23-12-2015 07:04:10 Scheduled Checkpoint
24-12-2015 21:34:44 Installed DirectX
30-12-2015 11:33:07 Windows Update

==================== Faulty Device Manager Devices =============

Name: VMware Virtual Ethernet Adapter for VMnet1
Description: VMware Virtual Ethernet Adapter for VMnet1
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: VMware, Inc.
Service: VMnetAdapter
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: VMware Virtual Ethernet Adapter for VMnet8
Description: VMware Virtual Ethernet Adapter for VMnet8
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: VMware, Inc.
Service: VMnetAdapter
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Broadcom BCM943228HMB 802.11abgn 2x2 Wi-Fi Adapter
Description: Broadcom BCM943228HMB 802.11abgn 2x2 Wi-Fi Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Broadcom
Service: BCM43XX
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (01/07/2016 02:30:33 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest2" on line C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.

Error: (01/07/2016 02:19:54 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest2" on line C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.

Error: (01/07/2016 02:19:07 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest2" on line C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.

Error: (01/07/2016 02:19:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: TERA.exe, version: 2.0.1.1, time stamp: 0x56531eb4
Faulting module name: TERA.exe, version: 2.0.1.1, time stamp: 0x56531eb4
Exception code: 0xc0000005
Fault offset: 0x00e3f739
Faulting process id: 0x25d60
Faulting application start time: 0xTERA.exe0
Faulting application path: TERA.exe1
Faulting module path: TERA.exe2
Report Id: TERA.exe3
Faulting package full name: TERA.exe4
Faulting package-relative application ID: TERA.exe5

Error: (01/07/2016 11:55:47 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest2" on line C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.

Error: (01/07/2016 11:54:51 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest2" on line C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.

Error: (01/07/2016 11:54:24 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest2" on line C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.

Error: (01/07/2016 11:53:57 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest2" on line C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.

Error: (01/07/2016 11:52:59 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest2" on line C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.

Error: (01/07/2016 11:52:56 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest2" on line C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.


System errors:
=============
Error: (01/04/2016 11:27:08 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 10. The Windows SChannel error state is 10.

Error: (01/04/2016 11:27:08 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 10. The Windows SChannel error state is 10.

Error: (01/02/2016 11:52:04 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Windows Modules Installer service terminated with the following error:
%%16389

Error: (01/02/2016 11:51:46 AM) (Source: DCOM) (EventID: 10010) (User: AMANDA)
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (01/01/2016 11:58:14 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 10. The Windows SChannel error state is 10.

Error: (01/01/2016 11:58:14 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 10. The Windows SChannel error state is 10.

Error: (12/31/2015 10:11:47 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 10. The Windows SChannel error state is 10.

Error: (12/31/2015 10:11:47 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 10. The Windows SChannel error state is 10.

Error: (12/31/2015 10:09:44 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 10. The Windows SChannel error state is 10.

Error: (12/31/2015 10:09:44 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 10. The Windows SChannel error state is 10.


CodeIntegrity:
===================================
  Date: 2016-01-07 14:38:15.739
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-01-07 14:38:15.609
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-01-07 14:36:32.181
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-01-07 14:36:32.035
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-12-29 00:39:15.528
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-12-29 00:39:15.377
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-12-23 15:49:36.931
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-12-23 15:49:36.787
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-12-23 15:48:01.696
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-12-23 15:48:01.553
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7-4770 CPU @ 3.40GHz
Percentage of memory in use: 18%
Total physical RAM: 16337.12 MB
Available physical RAM: 13382.38 MB
Total Virtual: 18769.12 MB
Available Virtual: 15399.12 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:910.53 GB) (Free:435.94 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (Recovery Image) (Fixed) (Total:19.07 GB) (Free:2.39 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive i: (German_1) (CDROM) (Total:0.39 GB) (Free:0 GB) CDFS
Drive j: (Hitachi) (Fixed) (Total:3726.01 GB) (Free:648.7 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: C40B58FE)

Partition: GPT.
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 1.

==================== End of Addition.txt ============================

Offline Hoov

  • Malware Removal Mentors
  • Administrator
  • Diamond Member
  • Posts: 27141
  • Unwilling part owner of Gov't. Motors and Chrysler
    • Hoov's Personal Site
Platypuss will be helping you with your problem. Please wait for his first post.

Former Consumer Security MVP
2011-2014

If I am helping you and you don't hear from me for 24Hrs, send me a PM Please!

Offline Broly3k8

  • Bronze Member
  • Posts: 71
Platypuss will be helping you with your problem. Please wait for his first post.

Omg. I think you were one the first person to have ever helped me out way back when.. Wow. Glad to see you still around.

Offline Hoov

  • Malware Removal Mentors
  • Administrator
  • Diamond Member
  • Posts: 27141
  • Unwilling part owner of Gov't. Motors and Chrysler
    • Hoov's Personal Site
Still around, still collecting dust.

Former Consumer Security MVP
2011-2014

If I am helping you and you don't hear from me for 24Hrs, send me a PM Please!

Offline Foxfire

  • Malware Removal Staff
  • Bronze Member
  • Posts: 444

 Hello Broly3k8,

Thank you for the FRST logs. I am now analysing them & will have a reply shortly.  :)1

platypuss

Offline Foxfire

  • Malware Removal Staff
  • Bronze Member
  • Posts: 444

 Hello Broly3k8,
     I am Platypuss, I will be helping you with your problem.
   
Before we begin, please follow my simple rules:-
  • If you do not understand any instructions, Stop & Ask do not risk creating
          further problems.
  • Please do not run any tools unless instructed to do so because it may well
          cause unforseen damage to your machine.
  • It may help you to print out my instructions, so that mistakes are not made.
  • I am a trainee here but my instructions are checked by my mentor, there may be some delay but you will get a high quality of service.
  • Malware removal is frequently complex, it takes time to analyse logs, please be patient.   
  • I will advise you as soon as your computer is clean, until then it may still be infected !
[/COLOR]

Change Downloads  to Desktop  http://www.thewindowsclub.com/change-download-location-ie-chrome


How to change your download location to Desktop HERE

http://www.thewindowsclub.com/change-download-location-ie-chrome


Google Chrome -
  • Click the "Customize and control Google Chrome" button in the upper right-corner of the browser.
  • Choose Settings. at the bottom of the screen click the "Show advanced settings..." link.
  • Scroll down to find the Downloads section and click the Change... button.
  • Select your desktop and click OK.
Mozilla Firefox -
  • Click the "Open Menu" button in the upper right-corner of the browser.
  • Choose Options. In the downloads section, click the Browse button,
  • click on the Desktop folder and the click the "Select Folder" button.
  • Click OK to get out of the Options menu.
Internet Explorer -
  • Click the Tools menu in the upper right-corner of the browser. Select View downloads.
  • Select the Options link in the lower left of the window. Click Browse and select the Desktop.
  • Then choose the Select Folder button. Click OK to get out of the download options screen .
  • Now click Close to get out of the View Downloads screen.
NOTE: IE8 Does not support changing download locations in this manner. You will need to download the tool(s) to the default folder, usually Downloads, then copy them to the desktop.

Next,


NEXT
Follow the instructions in the following link to show hidden files:

http://www.bleepingcomputer.com/tutorials/how-to-see-hidden-files-in-windows/
>>>>>>>>>>>>>>>

NEXT
Please open your copy of Malwarebytes Anti-Malware.(MBAM)

• On the Settings tab > Detection and Protection sub tab, Detection Options, tick the box "Scan for rootkits".

• Under Non-Malware Protection sub tab Change PUP and PUM entries to Treat detections as Malware

• Click on the Scan tab, then click on Scan Now >> . If an update is available, click the Update Now button.

• A Threat Scan will begin.
• With some infections, you may or may not see this message box.
'Could not load DDA driver'

• Click 'Yes' to this message, to allow the driver to load after a restart.
• Allow the computer to restart. Continue with the rest of these instructions.
• When the scan is complete, click Apply Actions.

• Wait for the prompt to restart the computer to appear, then click on Yes.

• After the restart once you are back at your desktop, open MBAM once more.

To get the log from Malwarebytes do the following:

• Click on the History tab > Application Logs.

• Double click on the scan log which shows the Date and time of the scan just performed.
• Click Export  > From export you have three options:

 [1] Copy to Clipboard - if seleted right click to your reply and select "Paste" log will be pasted to your reply
[2] Text file (*.txt)        - if selected you will have to name the file and save to a place of choice, recommend "Desktop" then attach to reply
[3]  XML file (*.xml)      - if selected you will have to name the file and save to a place of choice, recommend "Desktop" then attach to reply


• Recommend you use "Copy to Clipboard, then Right click to your reply > select "Paste" that will copy the log to your reply…
 
platypuss




 


Offline Broly3k8

  • Bronze Member
  • Posts: 71
Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 1/10/2016
Scan Time: 7:20 PM
Logfile:
Administrator: Yes

Version: 2.1.8.1057
Malware Database: v2016.01.10.03
Rootkit Database: v2016.01.09.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 8.1
CPU: x64
File System: NTFS
User: amanda

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 418333
Time Elapsed: 19 min, 49 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)





___________________________________________________

Ummm... It detected nothing.. Which is good right?

Offline Foxfire

  • Malware Removal Staff
  • Bronze Member
  • Posts: 444


 
Quote
Ummm... It detected nothing.. Which is good right?
Yes, I did not see anything really nasty in your logs but more checks
still to do:-

Open notepad. Please copy the contents of the code box below.
To do this highlight the contents of the box and right click on it. Paste this into the open notepad.
Save it on the Desktop as fixlist.txt


Now run your copy of FRST64 and press the FIX button just once, and wait. DO NOT PRESS THE SCAN BUTTON.

If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
When finished FRST will generate a log on the Desktop (Fixlog.txt). Please post it to your reply.

NOTE. It's important that both files, FRST/FRST64 and fixlist.txt are in the same location or the fix will not work.

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
Code: [Select]
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-152001228-498363203-1698013675-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKLM-x32 -> DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL =
SearchScopes: HKU\S-1-5-21-152001228-498363203-1698013675-1001 -> URL hxxp://search.conduit.com/Results.aspx?ctid=CT3321738&
Toolbar: HKU\S-1-5-21-152001228-498363203-1698013675-1001 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  No File
CHR HomePage: Default -> hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRa0T-NJ1bNV5iGB7j76kR7EOZGkeQkbUBtqSnxyioASX7XiWPTst6pTQJVjiRUw3c_2qvcwsjS47YWpDL-YDLZ17tpFKFye7hfe7nS6fYBxW1dNkYoybXEmR1adRAfs4iRrHkKS3865NNCwIGKmHt8GU5JeWnJAgVg6fUb1l-LuJuAoOMtM,
ShortcutWithArgument: C:\Users\amanda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Search.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://feed.helperbar.com/?publisher=MuvicAMBS&dpid=MuvicAMBS&co=US&userid=9a677688-6be7-2030-5982-8474eae17519&searchtype=sc&installDate=15/08/2014&barcodeid=131768&um=0
>>>>>>>>>>>>>>>>>


Please download AdwCleaner]  onto your Desktop.

Take care NOT to click on any ad, such as PC Optimizer Pro. The correct link is the button labeled "Download from Bleeping Computer".
NOTE: If using Internet Explorer and you get an alert that stops the program downloading, click on Tools > Smartscreen Filter > Turn off Smartscreen Filter then click on OK in the box that opens. Then click on the link again.

  • Close your browser and double click the AdwCleaner icon on your desktop.
  • Click on the Scan in the Actions box
  • Please wait for the scan to finish..
  • When "Waiting for action.Please uncheck elements you want to keep" shows in top line..
       
  • Click on the Cleaning box.
  • Next click OK on the "Closing Programs" pop up box.
  • Click OK on the Information box & again OK to allow the necessary reboot

    After restart the AdwCleaner(C*)-Notepad log will appear, please copy/paste it in your next reply. Where * is the number relative to list of scans completed...
   
  • If you lose track of the log, it is saved in this folder C:\AdwCleaner\
>>>>>>>>>>>>>>>>>

Please download Junkware Removal Tool to your Desktop.

Please close your security software to avoid potential conflicts.
Run the tool by double-clicking it. If you are using Windows Vista or 7, right-mouse click it and select Run as administrator.
The tool will open and start scanning your system.
Please be patient as this can take a while to complete, depending on your system's specifications.
On completion, a log (JRT.txt) is saved to your Desktop and will automatically open.
Please post the contents of JRT.txt into your reply.
>>>>>>>>>>>>>>>>>>>>>>>

I need three logs please:-

FRST(fixlist.txt)
AdwCleaner
Junkware Removal Tool (JRT)

platypuss





Offline Foxfire

  • Malware Removal Staff
  • Bronze Member
  • Posts: 444

 Hello Broly3k8,

Are you having difficulties at all ?

platypuss

Offline Foxfire

  • Malware Removal Staff
  • Bronze Member
  • Posts: 444


  This thread is being closed due to inactivity.
If you need it reopened send me a PM.
This applies to the originator only. Anyone else please start a new thread.

Offline Broly3k8

  • Bronze Member
  • Posts: 71
I am deeply sorry for delay in response here, it has been a very rough few weeks. I ended up moving too the other side of my state about 2 days after the last instructions were received. Unfortunately I am now in Deep East Texas and my internet is less than desirable, so I've steered clear of any online activities and have been stick to single player stuff and or light browsing.

Things were going ok, what you'd expect from 4 people on an internet of less than 10mbs, until yesterday afternoon when I noticed all internet usage on my computer drop to dial up speeds. It took me 10 minutes just to get logged in here, and even start typing this out. Im not sure what to do as I hoped a simple restart would fix the problem, but it has not. I went ahead and did another FRST scan (still can't get the DDS thing to work), and will start copying that here now. Last time it took almost 4 posts to do it though so please bear with me.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:07-02-2016
Ran by amanda (administrator) on AMANDA (14-02-2016 19:25:03)
Running from C:\Users\amanda\Desktop
Loaded Profiles: amanda (Available Profiles: amanda & Shawn)
Platform: Windows 8.1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Scarlet.Crush Productions) C:\Program Files\Scarlet Crush Space Productions\bin\ScpService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Rosetta Stone Ltd.) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11\WLTRYSVC.EXE
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Microsoft Corporation) C:\Windows\System32\PrintIsolationHost.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Hewlett-Packard ) C:\Program Files\IDT\WDM\Beats64.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11\WLTRAY.EXE
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Hewlett-Packard Co.) C:\Users\amanda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\hpqtra08.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Vimicro Corporation) C:\Program Files (x86)\Vimicro Corporation\VMUVC\VMonitor.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\Hp\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\Hp\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\Hp\Digital Imaging\bin\hpqgpc01.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [BeatsOSDApp] => C:\Program Files\IDT\WDM\beats64.exe [41664 2012-08-22] (Hewlett-Packard )
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Program Files\Broadcom\Broadcom 802.11\WLTRAY.exe [10613760 2013-12-20] (Broadcom Corporation)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [8292120 2013-11-14] (Logitech Inc.)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2012-11-12] (IDT, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [557768 2015-02-03] (Adobe Systems Incorporated)
HKLM\...\Run: [LifeChat] => C:\Program Files\Microsoft LifeChat\LifeChat.exe [371712 2009-09-24] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2757424 2015-11-12] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)
HKLM-x32\...\Run: [VMonitorVMUVC] => C:\Program Files (x86)\Vimicro Corporation\VMUVC\VMonitor.exe [143360 2008-08-29] (Vimicro Corporation)
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\raptrstub.exe [55568 2015-05-04] (Raptr, Inc)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2694320 2015-02-15] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565448 2015-11-12] (LogMeIn Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [25122080 2016-02-08] (Dropbox, Inc.)
HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\Overwolf.exe [37632 2014-01-30] (Overwolf LTD)
HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\Run: [SteelSeries Engine] => C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe [242688 2013-11-05] (SteelSeries ApS)
HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\Run: [Spotify Web Helper] => C:\Users\amanda\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1676344 2015-02-15] (Spotify Ltd)
HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\Run: [Razer Comms] => C:\Program Files (x86)\Razer\Comms\RazerComms.exe [2827584 2015-04-06] ()
HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1403304 2016-01-28] (Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\Run: [Viber] => C:\Users\amanda\AppData\Local\Viber\Viber.exe [51657424 2015-11-09] ()
HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8358680 2015-06-01] (Piriform Ltd)
HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\MountPoints2: {ecad531b-ed11-11e4-bed4-a4db3043911e} - "J:\LaunchU3.exe" -a
HKU\S-1-5-21-152001228-498363203-1698013675-1001\...\MountPoints2: {fb7ec2f6-4a6f-11e5-bee3-a4db3043911e} - "L:\LG_PC_Programs.exe"
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1403304 2016-01-28] (Garmin Ltd. or its subsidiaries)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-02-11] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-02-11] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-02-11] ()
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.31.dll [2016-02-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.31.dll [2016-02-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.31.dll [2016-02-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.31.dll [2016-02-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.31.dll [2016-02-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.31.dll [2016-02-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.31.dll [2016-02-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.31.dll [2016-02-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.31.dll [2016-02-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.31.dll [2016-02-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.31.dll [2016-02-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.31.dll [2016-02-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.31.dll [2016-02-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.31.dll [2016-02-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.31.dll [2016-02-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.31.dll [2016-02-08] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2013-12-14]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2015-02-23]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\Hp\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\Users\amanda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Curse.lnk [2015-01-12]
ShortcutTarget: Curse.lnk -> C:\Users\amanda\AppData\Roaming\Curse Client\Bin\Curse.exe (Curse, Inc)
Startup: C:\Users\amanda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip [2014-06-10] ()
Startup: C:\Users\amanda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk [2015-03-07]
ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
Startup: C:\Users\amanda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\hpqtra08.exe [2011-04-29] (Hewlett-Packard Co.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\..\Interfaces\{32AD7549-D251-432F-9240-8D3E714AFEC6}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-152001228-498363203-1698013675-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.msn.com/HPDSK13/1
HKU\S-1-5-21-152001228-498363203-1698013675-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.msn.com/HPDSK13/1
SearchScopes: HKLM-x32 -> DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL =
SearchScopes: HKU\S-1-5-21-152001228-498363203-1698013675-1001 -> URL hxxp://search.conduit.com/Results.aspx?ctid=CT3321738&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=4&UP=SP30482155-1739-47BD-9968-D96FFCC25A87&q={searchTerms}&SSPV=
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-12-17] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-06-26] (Oracle Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2016-01-26] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-06-26] (Oracle Corporation)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2015-03-03] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation.)
Toolbar: HKU\S-1-5-21-152001228-498363203-1698013675-1001 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  No File
Handler-x32: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files (x86)\Belarc\BelarcAdvisor\System\BAVoilaX.dll [2013-04-16] (Belarc, Inc.)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\amanda\AppData\Roaming\Mozilla\Firefox\Profiles\n8aqx9e5.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_306.dll [2016-02-09] ()
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-06-26] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-06-26] (Oracle Corporation)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2015-02-15] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_306.dll [2016-02-09] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2013-10-01] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-01-23] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-01-23] (Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-09-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2013-08-29] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2013-08-29] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-01-30] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-01-30] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\2\NP_wtapp.dll [2013-12-22] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2015-02-15] (Adobe Systems)
FF Plugin-x32: BYOND -> C:\Program Files (x86)\BYOND\bin\npbyond.dll [2008-07-08] (BYOND)
FF Plugin HKU\S-1-5-21-152001228-498363203-1698013675-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\amanda\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-01-26] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-152001228-498363203-1698013675-1001: thehappycloud.com/HappyCloudPlugin -> C:\ProgramData\HappyCloud\Application\npHappyCloudPlugin.dll [2013-11-17] (The Happy Cloud)
FF Plugin HKU\S-1-5-21-152001228-498363203-1698013675-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2015-11-29] ()

Chrome:
=======
CHR HomePage: Default -> hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRa0T-NJ1bNV5iGB7j76kR7EOZGkeQkbUBtqSnxyioASX7XiWPTst6pTQJVjiRUw3c_2qvcwsjS47YWpDL-YDLZ17tpFKFye7hfe7nS6fYBxW1dNkYoybXEmR1adRAfs4iRrHkKS3865NNCwIGKmHt8GU5JeWnJAgVg6fUb1l-LuJuAoOMtM,
CHR DefaultSearchKeyword: Default -> google.com_
CHR Profile: C:\Users\amanda\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\amanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-04]
CHR Extension: (Google Drive) - C:\Users\amanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\amanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Adblock Plus) - C:\Users\amanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-02-04]
CHR Extension: (Google Search) - C:\Users\amanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26]
CHR Extension: (Google Docs Offline) - C:\Users\amanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-26]
CHR Extension: (Reddit Enhancement Suite) - C:\Users\amanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb [2016-01-15]
CHR Extension: (Google Hangouts) - C:\Users\amanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\knipolnnllmklapflnccelgolnpehhpl [2016-02-13]
CHR Extension: (Chrome Web Store Payments) - C:\Users\amanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-31]
CHR Extension: (Click&Clean App) - C:\Users\amanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2016-01-31]
CHR Extension: (Gmail) - C:\Users\amanda\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-27]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-01-08]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2252504 2013-09-04] (Broadcom Corporation.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [936832 2015-03-11] ()
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2015-02-17] (BitRaider, LLC)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2787512 2015-12-22] (Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-02-09] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-02-09] (Dropbox, Inc.)
R2 Ds3Service; C:\Program Files\Scarlet Crush Space Productions\bin\ScpService.exe [388352 2013-05-05] (Scarlet.Crush Productions)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-05-06] (WildTangent)
S3 Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [803856 2016-01-28] (Garmin Ltd. or its subsidiaries)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1156400 2015-11-12] (NVIDIA Corporation)
R2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2015-12-30] (Hi-Rez Studios) [File not signed]
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-11-04] (Hewlett-Packard Company) [File not signed]
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [File not signed]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [89864 2014-12-11] (Hewlett-Packard Company)
R2 Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129336 2013-01-30] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [167736 2013-01-30] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-11-12] (LogMeIn, Inc.)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872688 2015-11-12] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [8133424 2015-11-12] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5915440 2015-11-12] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2016-02-01] (Electronic Arts)
S3 OverwolfUpdaterService; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [98560 2014-01-30] (Overwolf LTD)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187072 2015-02-04] ()
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [327680 2012-11-12] (IDT, Inc.) [File not signed]
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
R2 wltrysvc; C:\Program Files\Broadcom\Broadcom 802.11\bcmwltry.exe [6036480 2013-12-20] (Broadcom Corporation) [File not signed]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AndnetBus; C:\Windows\System32\drivers\lgandnetbus64.sys [20992 2015-01-21] (LG Electronics Inc.)
S3 AndNetDiag; C:\Windows\system32\DRIVERS\lgandnetdiag64.sys [30720 2015-01-26] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\system32\DRIVERS\lgandnetmodem64.sys [37376 2015-01-26] (LG Electronics Inc.)
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-09-04] (Broadcom Corporation.)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [6957744 2013-12-20] (Broadcom Corporation)
R3 btwpanfl; C:\WINDOWS\system32\drivers\btwpanfl.sys [44912 2013-12-14] (Broadcom Corporation.)
R1 Capsax64Drv0; C:\Windows\System32\Drivers\Capsax64Drv0.sys [35976 2014-08-15] (Colasoft Co., Ltd.)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R1 CSN5PDTS82x64; C:\Windows\System32\Drivers\CSN5PDTS82x64.sys [34840 2012-10-24] (Colasoft Co., Ltd.)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
S3 hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-11-12] (LogMeIn Inc.)
R3 LGSHidFilt; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)
S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2016-02-13] (Malwarebytes)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19760 2015-11-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-10] (NVIDIA Corporation)
R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [37184 2015-02-04] (Razer, Inc.)
R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [129600 2014-11-17] (Razer, Inc.)
R3 SAlphamHid; C:\Windows\System32\drivers\SAlpham64.sys [38016 2013-05-31] (SteelSeries Corporation)
R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-05] (Scarlet.Crush Productions)
R3 sshid; C:\Windows\System32\drivers\sshid.sys [51400 2016-01-15] (SteelSeries ApS)
S3 VBAudioVACMME; C:\Windows\system32\DRIVERS\vbaudio_cable64_win7.sys [41192 2013-07-11] (Windows (R) Win 7 DDK provider)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [76480 2014-11-17] (VMware, Inc.)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
S3 BRDriver64_1_3_3_E02B25FC; \??\C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [X]
S1 CSN5PDTS82; System32\Drivers\CSN5PDTS82.sys [X]
S1 CsNdisLWF; System32\Drivers\CsNdisLWF.sys [X]
S3 xhunter1; \??\C:\WINDOWS\xhunter1.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-02-14 19:23 - 2016-02-14 19:23 - 02370560 _____ (Farbar) C:\Users\amanda\Desktop\FRST64.exe
2016-02-14 19:10 - 2016-02-14 19:12 - 00688992 _____ (Swearware) C:\Users\amanda\Desktop\dds (1).com
2016-02-14 18:45 - 2016-02-14 18:45 - 00497840 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-02-14 14:40 - 2016-02-14 14:40 - 00000000 ____D C:\Users\amanda\AppData\Local\ElevatedDiagnostics
2016-02-14 14:27 - 2016-02-14 18:37 - 00000435 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2016-02-11 22:59 - 2016-02-11 22:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-02-10 15:53 - 2016-02-10 15:54 - 03248720 _____ C:\Users\amanda\ts3_recording_16_02_10_15_53_50.wav
2016-02-10 02:01 - 2016-02-06 04:48 - 25839104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-02-10 02:01 - 2016-02-06 04:24 - 02887680 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-02-10 02:01 - 2016-02-06 04:01 - 20366848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-02-10 02:01 - 2016-02-06 03:43 - 02280448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-02-10 02:01 - 2016-02-06 03:32 - 14458368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-02-10 02:01 - 2016-02-06 03:16 - 12857856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-02-10 02:01 - 2016-02-06 03:09 - 01547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-02-10 02:01 - 2016-02-06 02:54 - 01312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-02-10 00:13 - 2016-01-22 02:01 - 22365992 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-02-10 00:13 - 2016-01-22 01:11 - 19794896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-02-10 00:13 - 2016-01-22 00:40 - 00571904 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-02-10 00:13 - 2016-01-22 00:29 - 06052352 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-02-10 00:13 - 2016-01-22 00:28 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2016-02-10 00:13 - 2016-01-22 00:27 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-02-10 00:13 - 2016-01-22 00:02 - 00496640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-02-10 00:13 - 2016-01-21 23:55 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-02-10 00:13 - 2016-01-21 23:52 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2016-02-10 00:13 - 2016-01-21 23:51 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-02-10 00:13 - 2016-01-21 23:50 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2016-02-10 00:13 - 2016-01-21 23:48 - 00718336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-02-10 00:13 - 2016-01-21 23:48 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-02-10 00:13 - 2016-01-21 23:47 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-02-10 00:13 - 2016-01-21 23:46 - 02123264 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-02-10 00:13 - 2016-01-21 23:35 - 04611072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-02-10 00:13 - 2016-01-21 23:31 - 02597376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-02-10 00:13 - 2016-01-21 23:31 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-02-10 00:13 - 2016-01-21 23:28 - 02880000 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-02-10 00:13 - 2016-01-21 23:27 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2016-02-10 00:13 - 2016-01-21 23:25 - 14467072 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-02-10 00:13 - 2016-01-21 23:25 - 00687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-02-10 00:13 - 2016-01-21 23:25 - 00325632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-02-10 00:13 - 2016-01-21 23:24 - 02050560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-02-10 00:13 - 2016-01-21 23:14 - 12879360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-02-10 00:13 - 2016-01-21 23:08 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-02-10 00:13 - 2016-01-21 23:07 - 02778624 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-02-10 00:13 - 2016-01-21 23:07 - 02120704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-02-10 00:13 - 2016-01-21 23:02 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-02-10 00:13 - 2016-01-21 22:58 - 02464256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-02-10 00:13 - 2016-01-19 13:14 - 07453024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-02-10 00:13 - 2016-01-19 13:13 - 02175008 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-02-10 00:13 - 2016-01-19 13:13 - 01063464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-02-10 00:13 - 2016-01-19 13:12 - 01737088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-02-10 00:13 - 2016-01-19 13:12 - 01133744 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-02-10 00:13 - 2016-01-19 12:23 - 01564496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-02-10 00:13 - 2016-01-19 12:23 - 01501496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-02-10 00:13 - 2016-01-19 12:23 - 00548024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2016-02-10 00:13 - 2016-01-19 12:15 - 00246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-02-10 00:13 - 2016-01-19 11:30 - 00862720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-02-10 00:13 - 2016-01-19 10:37 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2016-02-10 00:13 - 2016-01-14 19:42 - 00033472 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-02-10 00:13 - 2016-01-14 14:44 - 01362944 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-02-10 00:13 - 2016-01-14 14:44 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-02-10 00:13 - 2016-01-14 14:44 - 00696320 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-02-10 00:13 - 2016-01-14 14:44 - 00677376 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-02-10 00:13 - 2016-01-14 14:44 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-02-10 00:13 - 2016-01-14 14:44 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-02-10 00:13 - 2016-01-10 13:37 - 00442720 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-02-10 00:13 - 2016-01-10 12:39 - 00332640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-02-10 00:13 - 2016-01-10 12:15 - 00401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-02-10 00:13 - 2016-01-10 12:15 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-02-10 00:13 - 2016-01-10 11:50 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\cfgbkend.dll
2016-02-10 00:13 - 2016-01-10 11:43 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-02-10 00:13 - 2016-01-10 11:31 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msorcl32.dll
2016-02-10 00:13 - 2016-01-10 11:16 - 00898048 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2016-02-10 00:13 - 2016-01-10 11:14 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cfgbkend.dll
2016-02-10 00:13 - 2016-01-10 11:12 - 00532480 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2016-02-10 00:13 - 2016-01-10 11:09 - 01442304 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-02-10 00:13 - 2016-01-10 11:09 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2016-02-10 00:13 - 2016-01-10 11:02 - 00987648 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-02-10 00:13 - 2016-01-10 10:58 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxoci.dll
2016-02-10 00:13 - 2016-01-10 10:56 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2016-02-10 00:13 - 2016-01-10 10:51 - 00702976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2016-02-10 00:13 - 2016-01-10 10:49 - 00443392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EncDec.dll
2016-02-10 00:13 - 2016-01-10 10:43 - 00801792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-02-10 00:13 - 2016-01-10 10:40 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxoci.dll
2016-02-10 00:13 - 2016-01-07 12:34 - 04175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-02-10 00:13 - 2016-01-06 12:25 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2016-02-10 00:13 - 2015-12-29 09:45 - 07783936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-02-10 00:13 - 2015-12-29 09:45 - 07075328 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2016-02-10 00:13 - 2015-12-29 09:43 - 05267968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2016-02-10 00:13 - 2015-12-29 09:42 - 05264384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-02-10 00:13 - 2015-12-28 15:42 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSync.dll
2016-02-10 00:13 - 2015-12-28 14:31 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSync.dll
2016-02-10 00:12 - 2016-01-10 13:37 - 00136912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-02-10 00:12 - 2016-01-10 10:51 - 03707392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-02-10 00:12 - 2016-01-10 10:39 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2016-02-10 00:12 - 2016-01-10 10:38 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2016-02-10 00:12 - 2016-01-10 10:36 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2016-02-10 00:12 - 2016-01-10 10:36 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2016-02-10 00:12 - 2016-01-10 10:35 - 02243584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2016-02-10 00:12 - 2016-01-10 10:35 - 00897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-02-10 00:12 - 2016-01-10 10:29 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2016-02-10 00:12 - 2016-01-10 10:29 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2016-02-10 00:12 - 2016-01-10 10:27 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2016-02-10 00:12 - 2016-01-10 10:26 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-02-10 00:12 - 2015-12-17 12:29 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-02-10 00:12 - 2015-12-17 10:17 - 03547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-02-09 22:16 - 2016-02-09 22:16 - 00110359 _____ C:\Users\amanda\Documents\Texas Department of Public Safety.pdf
2016-02-09 00:51 - 2016-02-14 18:56 - 00000922 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2016-02-09 00:51 - 2016-02-14 18:46 - 00000918 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2016-02-09 00:51 - 2016-02-11 22:59 - 00000000 ____D C:\Program Files (x86)\Dropbox
2016-02-09 00:51 - 2016-02-09 00:51 - 00003894 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2016-02-09 00:51 - 2016-02-09 00:51 - 00003658 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2016-02-09 00:51 - 2016-02-09 00:51 - 00000000 ____D C:\Users\amanda\AppData\Local\Dropbox
2016-02-09 00:51 - 2016-02-09 00:51 - 00000000 ____D C:\ProgramData\Dropbox
2016-02-09 00:48 - 2016-02-09 00:49 - 00690072 _____ (Dropbox, Inc.) C:\Users\amanda\Desktop\DropboxInstaller.exe
2016-02-07 00:14 - 2016-02-07 00:51 - 00000000 ____D C:\Users\amanda\Documents\My Kindle Content
2016-02-07 00:13 - 2016-02-07 00:14 - 00000000 ____D C:\Users\amanda\AppData\Local\Amazon
2016-02-07 00:13 - 2016-02-07 00:13 - 00002292 _____ C:\Users\amanda\Desktop\Kindle.lnk
2016-02-07 00:13 - 2016-02-07 00:13 - 00000000 ____D C:\Users\amanda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon
2016-02-07 00:04 - 2016-02-07 00:12 - 43412816 _____ (Amazon.com) C:\Users\amanda\Desktop\KindleForPC-installer-1.14.43019.exe
2016-02-02 23:40 - 2016-02-02 23:40 - 00000000 ____H C:\Users\amanda\Documents\Default.rdp
2016-02-02 04:42 - 2016-02-02 04:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
2016-01-30 09:44 - 2016-01-30 09:44 - 00000000 ____D C:\amanda
2016-01-29 11:50 - 2016-01-29 11:50 - 00000000 ____D C:\ProgramData\Brother
2016-01-29 11:50 - 2016-01-29 11:50 - 00000000 _____ C:\WINDOWS\BRRBCOM.INI
2016-01-28 19:36 - 2016-01-28 19:36 - 00000000 ____D C:\Users\amanda\AppData\Roaming\FlacSquisher
2016-01-28 19:35 - 2016-01-28 19:35 - 00000000 ____D C:\Users\amanda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FlacSquisher
2016-01-28 19:35 - 2016-01-28 19:35 - 00000000 ____D C:\Program Files (x86)\FlacSquisher
2016-01-28 19:34 - 2016-01-28 19:34 - 02023451 _____ C:\Users\amanda\Desktop\FlacSquisher-1.3.5-Installer.exe
2016-01-27 00:12 - 2016-01-27 00:12 - 00000222 _____ C:\Users\amanda\Desktop\Fable Anniversary.url
2016-01-25 16:41 - 2016-02-14 16:42 - 00000887 _____ C:\Users\amanda\Desktop\Handbrake.lnk
2016-01-25 16:41 - 2016-02-03 14:50 - 00000000 ____D C:\Users\amanda\AppData\Roaming\HandBrake
2016-01-25 16:41 - 2016-01-25 16:41 - 00000843 _____ C:\Users\Shawn\Desktop\Handbrake.lnk
2016-01-25 16:41 - 2016-01-25 16:41 - 00000000 ____D C:\Users\amanda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Handbrake
2016-01-25 16:41 - 2016-01-25 16:41 - 00000000 ____D C:\Users\amanda\AppData\Roaming\HandBrake Team
2016-01-25 16:41 - 2016-01-25 16:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Handbrake
2016-01-25 16:41 - 2016-01-25 16:41 - 00000000 ____D C:\Program Files\Handbrake
2016-01-25 16:30 - 2016-01-25 16:30 - 00000000 ____D C:\WINDOWS\System32\Tasks\Western Digital
2016-01-25 16:29 - 2016-01-25 16:29 - 00008192 _____ C:\WINDOWS\SysWOW64\WDPABKP.dat
2016-01-25 16:29 - 2016-01-25 16:29 - 00000000 ____D C:\Users\amanda\AppData\Local\Western_Digital_Technolog
2016-01-25 16:29 - 2016-01-25 16:29 - 00000000 ____D C:\Users\amanda\AppData\Local\Western Digital
2016-01-25 16:28 - 2016-01-28 09:37 - 00000000 ____D C:\ProgramData\Western Digital
2016-01-16 19:15 - 2016-01-16 19:15 - 00000000 ____D C:\Users\amanda\Documents\Might & Magic Heroes VI
2016-01-16 19:15 - 2016-01-16 19:15 - 00000000 ____D C:\Users\amanda\AppData\Roaming\Might & Magic Heroes VI
2016-01-15 17:46 - 2016-01-15 17:46 - 00051400 _____ (SteelSeries ApS) C:\WINDOWS\system32\Drivers\sshid.sys

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-02-14 19:25 - 2016-01-07 14:39 - 00032867 _____ C:\Users\amanda\Desktop\FRST.txt
2016-02-14 19:24 - 2016-01-07 14:36 - 00000000 ____D C:\FRST
2016-02-14 19:06 - 2013-12-05 19:47 - 00000920 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-02-14 18:52 - 2014-09-24 01:15 - 00973304 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-02-14 18:52 - 2013-08-22 07:36 - 00000000 ____D C:\WINDOWS\Inf
2016-02-14 18:51 - 2014-10-25 12:25 - 00000000 __RDO C:\Users\amanda\OneDrive
2016-02-14 18:47 - 2014-03-15 23:35 - 00000000 ____D C:\Users\amanda\AppData\Local\LogMeIn Hamachi
2016-02-14 18:46 - 2014-12-11 23:14 - 00000000 ____D C:\ProgramData\VMware
2016-02-14 18:46 - 2014-10-25 10:58 - 00000374 _____ C:\WINDOWS\Tasks\DriverToolkit Autorun.job
2016-02-14 18:46 - 2013-12-05 19:47 - 00000916 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-02-14 18:45 - 2014-10-25 11:11 - 00000000 ____D C:\ProgramData\NVIDIA
2016-02-14 18:45 - 2013-08-22 08:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-02-14 18:45 - 2013-08-22 07:25 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-02-14 17:01 - 2013-08-22 09:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-02-14 16:58 - 2014-08-10 10:51 - 00000000 ____D C:\Users\amanda\AppData\Roaming\vlc
2016-02-14 16:42 - 2015-12-07 16:28 - 00001856 _____ C:\Users\Public\Desktop\FileZilla Client.lnk
2016-02-14 16:42 - 2015-10-03 12:09 - 00001721 _____ C:\Users\Public\Desktop\Recuva.lnk
2016-02-14 16:42 - 2014-09-13 12:00 - 00000953 _____ C:\Users\Public\Desktop\Nexus Mod Manager.lnk
2016-02-14 16:42 - 2014-05-08 15:00 - 00000885 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-02-14 16:36 - 2014-12-10 09:17 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-02-14 16:26 - 2015-09-08 10:12 - 00001125 _____ C:\Users\amanda\Desktop\nativelog.txt
2016-02-14 16:25 - 2014-01-31 21:26 - 00000000 ____D C:\Users\amanda\AppData\Roaming\TS3Client
2016-02-14 15:44 - 2013-12-05 19:18 - 00003922 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{72193BCD-8725-46A7-AF55-BD25CFC6A199}
2016-02-14 15:11 - 2014-03-14 16:28 - 00000000 ____D C:\Users\amanda\AppData\Roaming\.minecraft
2016-02-13 18:22 - 2015-09-27 16:45 - 00000000 ____D C:\Users\amanda\Documents\ViberDownloads
2016-02-13 16:58 - 2015-09-27 16:44 - 00000000 ____D C:\Users\amanda\AppData\Roaming\ViberPC
2016-02-13 16:58 - 2014-03-17 20:46 - 00000000 ___RD C:\Users\amanda\Dropbox
2016-02-13 16:58 - 2014-03-17 20:45 - 00000000 ____D C:\Users\amanda\AppData\Roaming\Dropbox
2016-02-13 15:19 - 2014-05-06 17:02 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-02-13 13:30 - 2014-06-30 19:06 - 00000000 ____D C:\Users\amanda\AppData\Local\CrashDumps
2016-02-13 13:30 - 2014-06-13 22:19 - 00000000 ____D C:\Users\amanda\AppData\Roaming\FileZilla
2016-02-13 13:30 - 2013-12-05 21:02 - 00000000 ____D C:\Program Files (x86)\Steam
2016-02-13 06:33 - 2013-08-22 09:36 - 00000000 ____D C:\WINDOWS\rescache
2016-02-13 02:09 - 2014-12-09 22:52 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-02-13 02:09 - 2014-09-24 00:53 - 00000000 ____D C:\Program Files\Windows Journal
2016-02-13 02:09 - 2013-08-22 09:36 - 00000000 ___RD C:\WINDOWS\ToastData
2016-02-12 21:34 - 2013-12-05 19:23 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-152001228-498363203-1698013675-1001
2016-02-10 16:07 - 2013-12-05 19:52 - 00002239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-02-10 15:53 - 2014-10-25 11:17 - 00000000 ____D C:\Users\amanda
2016-02-10 02:12 - 2013-08-22 09:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-02-10 02:12 - 2013-08-22 09:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-02-10 02:12 - 2012-07-26 01:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-02-10 02:08 - 2013-12-06 22:39 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-02-10 02:03 - 2013-12-06 22:39 - 146614896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-02-10 00:12 - 2015-11-11 02:15 - 00561952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-02-10 00:12 - 2015-11-11 02:15 - 00177496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-02-09 18:36 - 2014-12-10 09:17 - 00003718 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-02-09 00:55 - 2014-03-17 20:46 - 00001249 _____ C:\Users\amanda\Desktop\Dropbox.lnk
2016-02-08 13:25 - 2014-01-01 00:23 - 00000000 ____D C:\ProgramData\Origin
2016-02-08 12:13 - 2016-01-07 15:16 - 00590944 _____ C:\Users\amanda\Downloads\MinecraftLog.txt
2016-02-08 12:13 - 2016-01-07 15:16 - 00017964 _____ C:\Users\amanda\Downloads\FTBLauncherLog.txt
2016-02-08 10:38 - 2014-06-10 15:37 - 00000000 ____D C:\Users\amanda\AppData\Local\ftblauncher
2016-02-06 21:09 - 2013-12-05 19:15 - 00000000 ____D C:\Users\amanda\AppData\Local\Packages
2016-02-03 10:14 - 2014-07-28 08:49 - 00001743 _____ C:\Users\amanda\Desktop\ScpDriver - Shortcut.lnk
2016-02-03 10:14 - 2013-12-26 08:24 - 00000920 _____ C:\Users\amanda\Desktop\Ventrilo.lnk
2016-02-02 04:42 - 2015-05-23 16:15 - 00003554 _____ C:\WINDOWS\System32\Tasks\GarminUpdaterTask
2016-02-02 04:42 - 2015-05-23 16:15 - 00001913 _____ C:\Users\Public\Desktop\Garmin Express.lnk
2016-02-02 04:42 - 2015-05-23 16:15 - 00000000 ____D C:\Program Files (x86)\Garmin
2016-02-02 04:42 - 2013-04-03 18:17 - 00000000 ____D C:\ProgramData\Package Cache
2016-02-01 20:37 - 2015-03-13 08:33 - 00828920 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-02-01 20:37 - 2015-03-13 08:33 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-02-01 16:35 - 2014-01-01 00:23 - 00000000 ____D C:\Program Files (x86)\Origin
2016-01-30 18:18 - 2014-10-25 10:26 - 00000000 ____D C:\Users\amanda\AppData\Roaming\OBS
2016-01-30 09:44 - 2015-02-25 20:20 - 00000000 ____D C:\Users\amanda\Documents\My Scans
2016-01-30 02:01 - 2013-12-05 19:47 - 00003892 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-01-30 02:01 - 2013-12-05 19:47 - 00003656 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-01-27 22:13 - 2013-12-05 22:15 - 00000000 ____D C:\Users\amanda\Documents\my games
2016-01-27 00:12 - 2014-01-31 20:38 - 00000000 ____D C:\Users\amanda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-01-26 04:18 - 2013-08-22 09:36 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-01-26 04:17 - 2014-09-19 14:23 - 00000000 ____D C:\Program Files\Microsoft Office 15
2016-01-15 21:59 - 2015-02-23 17:04 - 00000000 ____D C:\Users\amanda\AppData\Local\Steam
2016-01-15 21:04 - 2013-08-22 09:36 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-01-15 21:01 - 2014-09-24 03:50 - 00000000 ___SD C:\WINDOWS\system32\CompatTel
2016-01-15 07:51 - 2015-08-31 08:49 - 00003886 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2016-01-15 07:50 - 2015-08-31 08:49 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

==================== Files in the root of some directories =======

2015-10-20 23:50 - 2015-10-20 23:50 - 0001445 _____ () C:\Users\amanda\AppData\Roaming\.minecraft - Shortcut.lnk
2014-07-31 14:30 - 2014-11-16 15:30 - 0000096 _____ () C:\Users\amanda\AppData\Roaming\WB.CFG
2014-01-01 16:53 - 2014-01-01 16:53 - 0000094 _____ () C:\Users\amanda\AppData\Local\fusioncache.dat
2015-02-23 12:48 - 2016-01-12 14:22 - 0001927 _____ () C:\ProgramData\hpzinstall.log

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-02-14 19:04

==================== End of FRST.txt =========================

Had to edit because I had put spaces and -'s anticipating having to break it up, but since it all fixed I took them out.

Offline Broly3k8

  • Bronze Member
  • Posts: 71
I'm sorry to double post like this but I figured I should give some more details.

When loading web pages it can either load it at normal speeds, or it loads them at dial up speeds (meaning 2-3 minutes for a single page to load.), and it does the dial up thing far more than normal. Forget clicking links, they don't work or load. Some times when a page is already open and working properly, itll randomly re-load. For instance when I started this post, I was into the second sentence when the page just randomly re-loaded.

It seems just my internet is affected by the current problems. The connection for the whole house right now is 10mbps. There are currently only 2 of us using it, and I am getting dial up speeds, while the other is getting 3-5 mbps. I know the other person isn't gaming or anything and is really only browsing tumblr and etc, while I am doing the same. We've been here 2 weeks now and this is the first time I've had any issue of this nature. I've reset the network adapted, but I had to google how to do that, and it didn't do anything. I dont want to do anything else for fear of messing everything up further than it already is, and to be honest network/internet troubleshooting seems ridiculously difficult. I'm not sure what is going on because it's only happening to my computer and my internet.