So I recently got assistance from you guys for a HDD problem, but then you said I might have malware, so here I am!
I think I did all the steps, I went to that prework thread and got all three text files, uninstalled the two P2P programs I knew I had (if theres any others I dont remember getting them), and now Im posting! Let me know if theres anything else you need, thanks guys!
FRST.txt
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 05-12-2016
Ran by Bryan (administrator) on BRYAN-PC (06-12-2016 22:08:03)
Running from C:\Users\Bryan\Downloads
Loaded Profiles: Bryan (Available Profiles: Bryan & DefaultAppPool)
Platform: Windows 10 Home Version 1607 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(QIHU 360 SOFTWARE CO. LIMITED) C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe
(QIHU 360 SOFTWARE CO. LIMITED) C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_1.1.41.0_x64__8wekyb3d8bbwe\Microsoft.StickyNotes.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Spotify Ltd) C:\Users\Bryan\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Samsung) C:\Program Files (x86)\SEC\Natural Color Pro\NCProTray.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(QIHU 360 SOFTWARE CO. LIMITED) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Windows\System32\PrintIsolationHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [IgfxTray] => C:\WINDOWS\system32\igfxtray.exe
HKLM\...\Run: [HotKeysCmds] => C:\WINDOWS\system32\hkcmd.exe
HKLM\...\Run: [Persistence] => C:\WINDOWS\system32\igfxpers.exe
HKLM\...\Run: [IntelliPoint] => c:\Program Files\Microsoft IntelliPoint\ipoint.exe [2417032 2011-08-01] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397752 2016-03-24] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-08-27] (Apple Inc.)
HKLM-x32\...\Run: [amd_dc_opt] => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [ConnectionCenter] => C:\Program Files (x86)\Citrix\ICA Client\concentr.exe [300400 2010-03-11] (Citrix Systems, Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [25122080 2016-02-16] (Dropbox, Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [139776 2015-01-29] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4517376 2014-11-11] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrHelp] => C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe [1939968 2014-10-22] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [QHSafeTray] => C:\Program Files (x86)\360\Total Security\safemon\360Tray.exe [345000 2016-11-25] (QIHU 360 SOFTWARE CO. LIMITED)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [598552 2016-06-22] (Oracle Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\Run: [Spotify Web Helper] => C:\Users\Bryan\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1176632 2014-06-28] (Spotify Ltd)
HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27230168 2016-11-15] (Skype Technologies S.A.)
HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe
HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\RunOnce: [Uninstall C:\Users\Bryan\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Bryan\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64"
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\D-Link AirPlus G Wireless Utility.lnk [2010-04-04]
ShortcutTarget: D-Link AirPlus G Wireless Utility.lnk -> C:\Program Files (x86)\D-Link\AirPlus G Wireless Adapter Utility\AIRPLUS.exe (D-Link)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NCProTray.lnk [2010-03-30]
ShortcutTarget: NCProTray.lnk -> C:\Program Files (x86)\SEC\Natural Color Pro\NCProTray.exe (Samsung)
Startup: C:\Users\Bryan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GameVox.lnk [2015-09-24]
ShortcutTarget: GameVox.lnk -> C:\Program Files (x86)\GameVox\GameVox.exe (GameVox LLC)
InternetURL: C:\Users\Bryan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\https---www.youtube.com-v-W-IL4tSg1x8&feature=youtu.be&autoplay=1.url -> URL: hxxps://www.youtube.com/v/W-IL4tSg1x8&feature=youtu.be&autoplay=1
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
ProxyServer: [S-1-5-21-3534269808-1485983137-1280583553-1000] => http=127.0.0.1:60190;https=127.0.0.1:60190
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{244551fa-f4f7-4d10-b506-eb7f183024c0}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{85e448af-b9ba-4d26-b108-bc168d199adc}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{a07d11a2-db66-4097-b889-d94922c1d720}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/
SearchScopes: HKLM -> {c9ab6446-7efc-47fe-966c-dc54324eff9f} URL =
SearchScopes: HKLM-x32 -> DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2801948
SearchScopes: HKLM-x32 -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2801948
SearchScopes: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000 -> DefaultScope {99653235-66E7-4294-A58A-C006B3CE06AB} URL = hxxp://search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=IEBD
SearchScopes: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=DCF1DF&PC=DCF1&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000 -> {0CAF6133-B363-4737-8A62-F8CE22CA518A} URL = hxxp://www.dregol.com/results.php?f=4&q={searchTerms}&a=drg_ir_15_15&cd=2XzuyEtN2Y1L1QzuyC0C0FtDyEzytD0E0CyE0EtByD0B0AyBtN0D0Tzu0StCtCzyyEtN1L2XzutAtFzytFzztFtBtN1L1CzutCyEtBzytDyD1V1QtN1L1G1B1V1N2Y1L1Qzu2SyDtD0ByBtCyD0FtAtGzy0DtCtBtGyEzyzytAtG0CtC0DyCtGtAtC0ByD0E0EtA0AtC0AyC0F2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0Czy0FtByB0ByByBtGzyyC0B0CtGyEzyyEyEtG0BtA0D0DtGzz0F0E0E0CzzyEyBtDtDtAzy2QtN0A0LzutB&cr=943314530&ir=
SearchScopes: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000 -> {3E762472-5EC9-4cc1-9400-8372E2898368} URL = hxxp://www.google.com/custom?client=pub-3794288947762788&forid=1&channel=1975384696&ie=UTF-8&oe=UTF-8&safe=active&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=en&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000 -> {4565BD94-6AA8-4B61-A848-A9323292E492} URL = hxxp://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=714647&p={searchTerms}
SearchScopes: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000 -> {99653235-66E7-4294-A58A-C006B3CE06AB} URL = hxxp://search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=IEBD
SearchScopes: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000 -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2801948
BHO: Skype add-on for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-05-14] (Skype Technologies S.A.)
BHO-x32: No Name -> {02478D38-C3F9-4efb-9B51-7695ECA05670} -> No File
BHO-x32: Vuze Remote Toolbar -> {05478A66-EDB6-4A22-A870-A5987F80A7DA} -> C:\Program Files (x86)\Vuze Remote Toolbar\IE\9.9\vuzeToolbarIE.dll [2014-10-10] (Spigot, Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll [2016-08-10] (Oracle Corporation)
BHO-x32: No Name -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> No File
BHO-x32: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-05-14] (Skype Technologies S.A.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-08-10] (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM-x32 - Vuze Remote Toolbar - {05478A66-EDB6-4A22-A870-A5987F80A7DA} - C:\Program Files (x86)\Vuze Remote Toolbar\IE\9.9\vuzeToolbarIE.dll [2014-10-10] (Spigot, Inc.)
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-05-14] (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-05-14] (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2016-09-23] (Skype Technologies)
Filter-x32: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2010-03-11] (Citrix Systems, Inc.)
Filter-x32: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2010-03-11] (Citrix Systems, Inc.)
FireFox:
========
FF ProfilePath: C:\Users\Bryan\AppData\Roaming\Mozilla\Firefox\Profiles\thahfu1s.default [2016-07-12]
FF user.js: detected! => C:\Users\Bryan\AppData\Roaming\Mozilla\Firefox\Profiles\thahfu1s.default\user.js [2013-08-13]
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\thahfu1s.default -> Yahoo
FF DefaultSearchEngine.US: Mozilla\Firefox\Profiles\thahfu1s.default -> NCH EN Customized Web Search
FF DefaultSearchUrl: Mozilla\Firefox\Profiles\thahfu1s.default -> hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2801948&SearchSource=3&q={searchTerms}
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\thahfu1s.default -> NCH EN Customized Web Search
FF Homepage: Mozilla\Firefox\Profiles\thahfu1s.default -> hxxp://search.conduit.com/?ctid=CT2801948&SearchSource=13
FF Keyword.URL: Mozilla\Firefox\Profiles\thahfu1s.default -> hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2801948&SearchSource=2&q=
FF Extension: (NCH EN Community Toolbar) - C:\Users\Bryan\AppData\Roaming\Mozilla\Firefox\Profiles\thahfu1s.default\Extensions\{37483b40-c254-4a72-bda4-22ee90182c1e} [2012-06-18] [not signed]
FF Extension: (Address Bar Search) - C:\Users\Bryan\AppData\Roaming\Mozilla\Firefox\Profiles\thahfu1s.default\Extensions\{4D6A6C8E-1EB2-46e1-8CAA-40DAFDE3ED93} [2014-10-16] [not signed]
FF Extension: (360 Internet Protection) - C:\Program Files (x86)\360\Total Security\safemon\webprotection_firefox [2016-07-01]
FF SearchPlugin: C:\Users\Bryan\AppData\Roaming\Mozilla\Firefox\Profiles\thahfu1s.default\searchplugins\avg-secure-search.xml [2014-11-06]
FF SearchPlugin: C:\Users\Bryan\AppData\Roaming\Mozilla\Firefox\Profiles\thahfu1s.default\searchplugins\conduit.xml [2012-06-14]
FF SearchPlugin: C:\Users\Bryan\AppData\Roaming\Mozilla\Firefox\Profiles\thahfu1s.default\searchplugins\Dregol.xml [2015-06-22]
FF Extension: (Skype Click to Call) - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-06-22] [not signed]
FF Extension: (Skype Click to Call) - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-06-22] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [WebProtection@360safe.com] - C:\Program Files (x86)\360\Total Security\safemon\webprotection_firefox
FF HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\Firefox\Extensions: [{8A9386B4-E958-4c4c-ADF4-8F26DB3E4829}] - C:\Program Files (x86)\PriceGong\2.1.0\FF => not found
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\wtu-secure-search.xml [2014-11-06]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_23_0_0_207.dll [2016-11-09] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_23_0_0_207.dll [2016-11-09] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll [2012-10-04] (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2012-08-08] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-20] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-08-10] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-08-10] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @nexon.net/NxGame -> C:\ProgramData\NexonUS\NGM\npNxGameUS.dll [2013-08-26] (Nexon)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-03-21] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-03-21] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin-x32: @raidcall.en/RCplugin -> C:\Users\Bryan\AppData\Roaming\raidcall\plugins\nprcplugin.dll [2014-03-10] (Raidcall)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-09-30] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3534269808-1485983137-1280583553-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2014-06-21] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\CCMSDK.dll [2010-03-11] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\cgpcfg.dll [2010-03-11] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\CgpCore.dll [2010-03-11] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\confmgr.dll [2010-03-11] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\ctxlogging.dll [2010-03-11] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\ctxmui.dll [2010-03-11] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\icafile.dll [2010-03-11] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\icalogon.dll [2010-03-11] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npicaN.dll [2010-03-11] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-09-30] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\sslsdk_b.dll [2009-10-05] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\TcpPServ.dll [2010-03-11] (Citrix Systems, Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.dregol.com/?f=1&a=drg_ir_15_15&cd=2XzuyEtN2Y1L1QzuyC0C0FtDyEzytD0E0CyE0EtByD0B0AyBtN0D0Tzu0StCtCzyyEtN1L2XzutAtFzytFzztFtBtN1L1CzutCyEtBzytDyD1V1QtN1L1G1B1V1N2Y1L1Qzu2SyDtD0ByBtCyD0FtAtGzy0DtCtBtGyEzyzytAtG0CtC0DyCtGtAtC0ByD0E0EtA0AtC0AyC0F2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0Czy0FtByB0ByByBtGzyyC0B0CtGyEzyyEyEtG0BtA0D0DtGzz0F0E0E0CzzyEyBtDtDtAzy2QtN0A0LzutB&cr=943314530&ir=
CHR StartupUrls: Default -> "hxxp://www.dregol.com/?f=7&a=drg_ir_15_15&cd=2XzuyEtN2Y1L1QzuyC0C0FtDyEzytD0E0CyE0EtByD0B0AyBtN0D0Tzu0StCtCzyyEtN1L2XzutAtFzytFzztFtBtN1L1CzutCyEtBzytDyD1V1QtN1L1G1B1V1N2Y1L1Qzu2SyDtD0ByBtCyD0FtAtGzy0DtCtBtGyEzyzytAtG0CtC0DyCtGtAtC0ByD0E0EtA0AtC0AyC0F2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0Czy0FtByB0ByByBtGzyyC0B0CtGyEzyyEyEtG0BtA0D0DtGzz0F0E0E0CzzyEyBtDtDtAzy2QtN0A0LzutB&cr=943314530&ir=",""
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default [2016-12-06]
CHR Extension: (Google Slides) - C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-04]
CHR Extension: (Duolingo on the Web) - C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiahmijlpehemcpleichkcokhegllfjl [2015-06-23]
CHR Extension: (Google Docs) - C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-04]
CHR Extension: (Google Drive) - C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-01]
CHR Extension: (YouTube) - C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Google Search) - C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-01]
CHR Extension: (Google Sheets) - C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-04]
CHR Extension: (Stylish) - C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe [2016-04-05]
CHR Extension: (Google Docs Offline) - C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (AdBlock) - C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-11-23]
CHR Extension: (TinEye Reverse Image Search) - C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\haebnnbpedcbhciplfhjjkbafijpncjl [2016-08-27]
CHR Extension: (Reddit Enhancement Suite) - C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb [2016-12-06]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-03]
CHR Extension: (Gmail) - C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR Extension: (Chrome Media Router) - C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-26]
CHR HKLM\...\Chrome\Extension: [ihokndmjeombjojnfkmapfnjeghjohim] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [gclijllifhfpomppedeljakfegbcpojn] - C:\Users\Bryan\AppData\Local\CRE\gclijllifhfpomppedeljakfegbcpojn.crx <not found>
CHR HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ihokndmjeombjojnfkmapfnjeghjohim] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gclijllifhfpomppedeljakfegbcpojn] - C:\Users\Bryan\AppData\Local\CRE\gclijllifhfpomppedeljakfegbcpojn.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [icdlfehblmklkikfigmjhbmmpmkmpooj] - C:\Program Files (x86)\Common Files\Spigot\GC\ErrorAssistant_1.3.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [ihokndmjeombjojnfkmapfnjeghjohim] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-05-14]
CHR HKLM-x32\...\Chrome\Extension: [mhkaekfpcppmmioggniknbnbdbcigpkk] - C:\Program Files (x86)\Common Files\Spigot\GC\coupons_2.4.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [ojpijjmpahflnipadmlpgbjmagmjchkk] - C:\Users\Bryan\AppData\Local\Temp\tbch.crx <not found>
StartMenuInternet: Google Chrome.IUQXFHMJJWWHTVALRXCKWCOXHM - C:\Users\Bryan\AppData\Local\Google\Chrome\Application\old_chrome.exe
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [289792 2014-10-23] (Brother Industries, Ltd.) [File not signed]
S3 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-08-24] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-08-24] (Dropbox, Inc.)
R2 DirMngr; C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe [224256 2011-03-02] () [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1164856 2016-03-24] (NVIDIA Corporation)
S3 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [8704 2015-08-21] (Hi-Rez Studios) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1881144 2016-03-24] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634232 2016-03-24] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-03-24] (NVIDIA Corporation)
R2 QHActiveDefense; C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe [928168 2016-11-25] (QIHU 360 SOFTWARE CO. LIMITED)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 360AntiHacker; C:\WINDOWS\System32\Drivers\360AntiHacker64.sys [160768 2016-08-01] (360.cn)
R3 360AvFlt; C:\WINDOWS\System32\DRIVERS\360AvFlt.sys [95232 2016-08-01] (360.cn)
R3 360AvFlt; C:\Windows\SysWOW64\DRIVERS\360AvFlt.sys [95232 2016-11-25] (360.cn)
R1 360Box64; C:\WINDOWS\System32\DRIVERS\360Box64.sys [339456 2016-11-25] (360.cn)
S3 360Camera; C:\WINDOWS\System32\Drivers\360Camera64.sys [57856 2016-08-01] (360.cn)
R1 360FsFlt; C:\WINDOWS\System32\DRIVERS\360FsFlt.sys [400384 2016-08-01] (360.cn)
R2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [314016 2012-07-20] ()
R1 BAPIDRV; C:\WINDOWS\System32\DRIVERS\BAPIDRV64.sys [197632 2016-09-09] (360.cn)
R3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [43680 2012-07-20] ()
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-03-24] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [56384 2016-03-21] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [589824 2016-07-16] (Realtek )
U5 vwifimp; C:\Windows\System32\Drivers\vwifimp.sys [39936 2016-07-16] (Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
U3 idsvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-12-06 22:08 - 2016-12-06 22:08 - 00032948 _____ C:\Users\Bryan\Downloads\FRST.txt
2016-12-06 22:07 - 2016-12-06 22:08 - 00000000 ____D C:\FRST
2016-12-06 17:43 - 2016-12-06 17:43 - 02419712 _____ (Farbar) C:\Users\Bryan\Downloads\FRST64.exe
2016-12-05 15:34 - 2016-12-05 15:34 - 00000022 _____ C:\WINDOWS\S.dirmngr
2016-12-05 15:27 - 2016-12-05 15:27 - 00038804 _____ C:\Users\Bryan\Downloads\drivecleanup.zip
2016-12-05 14:16 - 2016-12-05 14:16 - 00038637 _____ C:\Users\Bryan\Downloads\MTB (1).txt
2016-12-05 14:11 - 2016-12-05 14:15 - 00038637 _____ C:\Users\Bryan\Downloads\MTB.txt
2016-12-05 14:10 - 2016-12-05 14:10 - 00892416 _____ (Farbar) C:\Users\Bryan\Downloads\MiniToolBox.exe
2016-12-04 09:53 - 2016-12-04 10:20 - 00000000 ____D C:\Users\Bryan\Downloads\[Furi] Avatar - The Last Airbender [720p] (Full 3 Seasons + Extras)
2016-11-30 09:57 - 2016-11-30 10:46 - 00018437 _____ C:\Users\Bryan\Desktop\christmas.odt
2016-11-26 22:17 - 2016-11-26 22:34 - 890868411 ____R C:\Users\Bryan\Downloads\Trading.Places.1983.720p.BluRay.850MB.ShAaNiG.com.mkv
2016-11-26 22:16 - 2016-11-26 22:21 - 00000000 ____D C:\Users\Bryan\Downloads\Life (1999) [1080p]
2016-11-26 22:16 - 2016-11-26 22:20 - 00000000 ____D C:\Users\Bryan\Downloads\Coming to America
2016-11-26 22:15 - 2016-11-26 22:28 - 00000000 ____D C:\Users\Bryan\Downloads\Police Academy (1984)
2016-11-18 22:37 - 2016-11-18 22:43 - 00000000 ____D C:\Users\Bryan\Downloads\Pacific Rim (2013) [1080p]
2016-11-16 10:29 - 2016-11-16 10:29 - 00000000 ____D C:\Users\Bryan\Downloads\Cloverfield (2008) [1080p]
2016-11-16 10:29 - 2016-11-16 10:29 - 00000000 ____D C:\Users\Bryan\Downloads\10 Cloverfield Lane 2016 1080p HDRip x264 AAC-JYK
2016-11-16 10:28 - 2016-11-16 10:41 - 00000000 ____D C:\Users\Bryan\Downloads\Ant-Man 2015 1080p BluRay x264 DTS-JYK
2016-11-10 22:55 - 2016-11-10 22:59 - 00000000 ____D C:\Users\Bryan\Downloads\[ www.Torrenting.com ] - Sweeny Todd The Demon Barber Of Fleet Street 2007 DVDRIP Xvid AC3-BHRG
2016-11-10 09:12 - 2016-11-10 09:34 - 00000000 ____D C:\Users\Bryan\Downloads\Guardians of the Galaxy (2014) [1080p]
2016-11-10 09:11 - 2016-11-10 09:14 - 00000000 ____D C:\Users\Bryan\Downloads\Star.Wars.Episode.VII.The.Force.Awakens.2015.1080p.BluRay.x264.DTS-JYK
2016-11-10 00:33 - 2016-11-02 07:01 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2016-11-10 00:33 - 2016-11-02 07:01 - 00315744 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-11-10 00:33 - 2016-11-02 06:22 - 01570672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-11-10 00:33 - 2016-11-02 06:22 - 00601712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2016-11-10 00:33 - 2016-11-02 06:20 - 00590960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-11-10 00:33 - 2016-11-02 06:13 - 01883784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-11-10 00:33 - 2016-11-02 06:13 - 00773720 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-11-10 00:33 - 2016-11-02 06:13 - 00423776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-11-10 00:33 - 2016-11-02 06:12 - 02255712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-11-10 00:33 - 2016-11-02 06:12 - 00376672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-11-10 00:33 - 2016-11-02 06:12 - 00341344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-11-10 00:33 - 2016-11-02 06:10 - 02323728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2016-11-10 00:33 - 2016-11-02 06:09 - 02257104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-11-10 00:33 - 2016-11-02 06:08 - 00602464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-11-10 00:33 - 2016-11-02 06:08 - 00576408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-11-10 00:33 - 2016-11-02 06:08 - 00186424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2016-11-10 00:33 - 2016-11-02 06:08 - 00111968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-11-10 00:33 - 2016-11-02 06:05 - 06657176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2016-11-10 00:33 - 2016-11-02 06:05 - 03892352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-11-10 00:33 - 2016-11-02 06:05 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-11-10 00:33 - 2016-11-02 06:05 - 00951904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-11-10 00:33 - 2016-11-02 06:05 - 00405856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-11-10 00:33 - 2016-11-02 06:04 - 04312248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-11-10 00:33 - 2016-11-02 06:03 - 02750936 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-11-10 00:33 - 2016-11-02 06:03 - 00714592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2016-11-10 00:33 - 2016-11-02 06:02 - 00682816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-11-10 00:33 - 2016-11-02 06:02 - 00238056 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2016-11-10 00:33 - 2016-11-02 06:01 - 01425000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2016-11-10 00:33 - 2016-11-02 06:01 - 01415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2016-11-10 00:33 - 2016-11-02 06:01 - 01263856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-11-10 00:33 - 2016-11-02 06:01 - 00545936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-11-10 00:33 - 2016-11-02 06:01 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\input.dll
2016-11-10 00:33 - 2016-11-02 06:00 - 22223968 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-11-10 00:33 - 2016-11-02 06:00 - 08156080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-11-10 00:33 - 2016-11-02 06:00 - 01274712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-11-10 00:33 - 2016-11-02 06:00 - 00534096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2016-11-10 00:33 - 2016-11-02 05:59 - 04673304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-11-10 00:33 - 2016-11-02 05:50 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-11-10 00:33 - 2016-11-02 05:49 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2016-11-10 00:33 - 2016-11-02 05:49 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-11-10 00:33 - 2016-11-02 05:48 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2016-11-10 00:33 - 2016-11-02 05:48 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2016-11-10 00:33 - 2016-11-02 05:47 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-11-10 00:33 - 2016-11-02 05:46 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2016-11-10 00:33 - 2016-11-02 05:44 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-11-10 00:33 - 2016-11-02 05:44 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthExt.dll
2016-11-10 00:33 - 2016-11-02 05:43 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-11-10 00:33 - 2016-11-02 05:43 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-11-10 00:33 - 2016-11-02 05:43 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2016-11-10 00:33 - 2016-11-02 05:42 - 00632832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2016-11-10 00:33 - 2016-11-02 05:42 - 00549376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenterCPL.dll
2016-11-10 00:33 - 2016-11-02 05:42 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2016-11-10 00:33 - 2016-11-02 05:42 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-11-10 00:33 - 2016-11-02 05:42 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2016-11-10 00:33 - 2016-11-02 05:40 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontext.dll
2016-11-10 00:33 - 2016-11-02 05:40 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-11-10 00:33 - 2016-11-02 05:39 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2016-11-10 00:33 - 2016-11-02 05:39 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2016-11-10 00:33 - 2016-11-02 05:39 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAnimation.dll
2016-11-10 00:33 - 2016-11-02 05:38 - 22563840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-11-10 00:33 - 2016-11-02 05:38 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2016-11-10 00:33 - 2016-11-02 05:37 - 19415040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-11-10 00:33 - 2016-11-02 05:36 - 19415552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-11-10 00:33 - 2016-11-02 05:36 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-11-10 00:33 - 2016-11-02 05:36 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetailsUpdate.dll
2016-11-10 00:33 - 2016-11-02 05:34 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-11-10 00:33 - 2016-11-02 05:33 - 12349952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-11-10 00:33 - 2016-11-02 05:33 - 03307520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-11-10 00:33 - 2016-11-02 05:32 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\efsext.dll
2016-11-10 00:33 - 2016-11-02 05:31 - 03196416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2016-11-10 00:33 - 2016-11-02 05:31 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-11-10 00:33 - 2016-11-02 05:31 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2016-11-10 00:33 - 2016-11-02 05:31 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRHelper.dll
2016-11-10 00:33 - 2016-11-02 05:31 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-11-10 00:33 - 2016-11-02 05:31 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2016-11-10 00:33 - 2016-11-02 05:31 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-11-10 00:33 - 2016-11-02 05:31 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-11-10 00:33 - 2016-11-02 05:30 - 12175360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-11-10 00:33 - 2016-11-02 05:30 - 09131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-11-10 00:33 - 2016-11-02 05:30 - 00567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-11-10 00:33 - 2016-11-02 05:30 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-11-10 00:33 - 2016-11-02 05:30 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-11-10 00:33 - 2016-11-02 05:30 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2016-11-10 00:33 - 2016-11-02 05:30 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2016-11-10 00:33 - 2016-11-02 05:30 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-11-10 00:33 - 2016-11-02 05:29 - 07469056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-11-10 00:33 - 2016-11-02 05:29 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-11-10 00:33 - 2016-11-02 05:29 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2016-11-10 00:33 - 2016-11-02 05:29 - 00884224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-11-10 00:33 - 2016-11-02 05:29 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2016-11-10 00:33 - 2016-11-02 05:29 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2016-11-10 00:33 - 2016-11-02 05:29 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2016-11-10 00:33 - 2016-11-02 05:29 - 00276992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-11-10 00:33 - 2016-11-02 05:29 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2016-11-10 00:33 - 2016-11-02 05:29 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSM.dll
2016-11-10 00:33 - 2016-11-02 05:28 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-11-10 00:33 - 2016-11-02 05:28 - 04423680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-11-10 00:33 - 2016-11-02 05:28 - 00807424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2016-11-10 00:33 - 2016-11-02 05:28 - 00690176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-11-10 00:33 - 2016-11-02 05:28 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenterCPL.dll
2016-11-10 00:33 - 2016-11-02 05:28 - 00432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2016-11-10 00:33 - 2016-11-02 05:28 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCenter.dll
2016-11-10 00:33 - 2016-11-02 05:28 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-11-10 00:33 - 2016-11-02 05:28 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2016-11-10 00:33 - 2016-11-02 05:28 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2016-11-10 00:33 - 2016-11-02 05:28 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2016-11-10 00:33 - 2016-11-02 05:28 - 00240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-11-10 00:33 - 2016-11-02 05:28 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-11-10 00:33 - 2016-11-02 05:28 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chartv.dll
2016-11-10 00:33 - 2016-11-02 05:28 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-11-10 00:33 - 2016-11-02 05:28 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-11-10 00:33 - 2016-11-02 05:27 - 23677952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-11-10 00:33 - 2016-11-02 05:27 - 02458112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2016-11-10 00:33 - 2016-11-02 05:27 - 01388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-11-10 00:33 - 2016-11-02 05:27 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2016-11-10 00:33 - 2016-11-02 05:27 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-11-10 00:33 - 2016-11-02 05:27 - 00580608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2016-11-10 00:33 - 2016-11-02 05:27 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2016-11-10 00:33 - 2016-11-02 05:27 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-11-10 00:33 - 2016-11-02 05:27 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2016-11-10 00:33 - 2016-11-02 05:27 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-11-10 00:33 - 2016-11-02 05:26 - 02747392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2016-11-10 00:33 - 2016-11-02 05:26 - 02484736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2016-11-10 00:33 - 2016-11-02 05:26 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-11-10 00:33 - 2016-11-02 05:26 - 00912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2016-11-10 00:33 - 2016-11-02 05:26 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-11-10 00:33 - 2016-11-02 05:26 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2016-11-10 00:33 - 2016-11-02 05:26 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2016-11-10 00:33 - 2016-11-02 05:26 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2016-11-10 00:33 - 2016-11-02 05:26 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2016-11-10 00:33 - 2016-11-02 05:26 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-11-10 00:33 - 2016-11-02 05:25 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2016-11-10 00:33 - 2016-11-02 05:25 - 01556480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-11-10 00:33 - 2016-11-02 05:25 - 00956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-11-10 00:33 - 2016-11-02 05:25 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2016-11-10 00:33 - 2016-11-02 05:25 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2016-11-10 00:33 - 2016-11-02 05:25 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-11-10 00:33 - 2016-11-02 05:24 - 00940032 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontext.dll
2016-11-10 00:33 - 2016-11-02 05:23 - 03106304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2016-11-10 00:33 - 2016-11-02 05:23 - 02104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-11-10 00:33 - 2016-11-02 05:23 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2016-11-10 00:33 - 2016-11-02 05:23 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetailsUpdate.dll
2016-11-10 00:33 - 2016-11-02 05:22 - 13441024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-11-10 00:33 - 2016-11-02 05:22 - 13081600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-11-10 00:33 - 2016-11-02 05:22 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-11-10 00:33 - 2016-11-02 05:22 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-11-10 00:33 - 2016-11-02 05:21 - 05111296 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-11-10 00:33 - 2016-11-02 05:21 - 00942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-11-10 00:33 - 2016-11-02 05:20 - 02273792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-11-10 00:33 - 2016-11-02 05:20 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2016-11-10 00:33 - 2016-11-02 05:19 - 08127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-11-10 00:33 - 2016-11-02 05:19 - 08075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-11-10 00:33 - 2016-11-02 05:19 - 01586176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-11-10 00:33 - 2016-11-02 05:19 - 00981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-11-10 00:33 - 2016-11-02 05:19 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2016-11-10 00:33 - 2016-11-02 05:19 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll
2016-11-10 00:33 - 2016-11-02 05:19 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\chartv.dll
2016-11-10 00:33 - 2016-11-02 05:19 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-11-10 00:33 - 2016-11-02 05:18 - 01690112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-11-10 00:33 - 2016-11-02 05:18 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2016-11-10 00:33 - 2016-11-02 05:18 - 00836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2016-11-10 00:33 - 2016-11-02 05:18 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2016-11-10 00:33 - 2016-11-02 05:17 - 04746752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-11-10 00:33 - 2016-11-02 05:17 - 01282048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-11-10 00:33 - 2016-11-02 05:17 - 00982528 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-11-10 00:33 - 2016-11-02 05:17 - 00909824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-11-10 00:33 - 2016-11-02 05:17 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2016-11-10 00:33 - 2016-11-02 05:17 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2016-11-10 00:33 - 2016-11-02 05:16 - 03400192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2016-11-10 00:33 - 2016-11-02 05:16 - 03133440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2016-11-10 00:33 - 2016-11-02 05:16 - 02688512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-11-10 00:33 - 2016-11-02 05:16 - 02669056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-11-10 00:33 - 2016-11-02 05:16 - 02512384 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-11-10 00:33 - 2016-11-02 05:16 - 01779712 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-11-10 00:33 - 2016-11-02 05:16 - 01637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-11-10 00:33 - 2016-11-02 05:16 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-11-10 00:33 - 2016-11-02 05:16 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-11-10 00:33 - 2016-11-02 05:16 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-11-10 00:33 - 2016-11-02 05:16 - 00629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2016-11-10 00:33 - 2016-11-02 05:16 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2016-11-10 00:33 - 2016-11-02 05:16 - 00308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2016-11-10 00:33 - 2016-11-02 05:15 - 04708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-11-10 00:33 - 2016-11-02 05:15 - 02611200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-11-10 00:33 - 2016-11-02 05:15 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-11-10 00:33 - 2016-11-02 05:15 - 01348608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-11-10 00:33 - 2016-11-02 05:15 - 00842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-11-10 00:33 - 2016-11-02 05:15 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2016-11-10 00:33 - 2016-11-02 05:14 - 01726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-11-10 00:33 - 2016-11-02 05:13 - 03496960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2016-11-10 00:33 - 2016-11-02 05:13 - 03299840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2016-11-10 00:33 - 2016-11-02 05:13 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2016-11-10 00:33 - 2016-11-02 03:20 - 00446896 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-11-10 00:33 - 2016-08-01 23:30 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-11-10 00:32 - 2016-11-02 06:20 - 00378720 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-11-10 00:32 - 2016-11-02 06:15 - 01051112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-11-10 00:32 - 2016-11-02 06:15 - 00894096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-11-10 00:32 - 2016-11-02 06:14 - 07816544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-11-10 00:32 - 2016-11-02 06:13 - 01354320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-11-10 00:32 - 2016-11-02 06:13 - 01173496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-11-10 00:32 - 2016-11-02 06:05 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-11-10 00:32 - 2016-11-02 06:04 - 02678056 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-11-10 00:32 - 2016-11-02 06:04 - 00596832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2016-11-10 00:32 - 2016-11-02 06:02 - 00848736 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-11-10 00:32 - 2016-11-02 06:02 - 00148832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-11-10 00:32 - 2016-11-02 06:01 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-11-10 00:32 - 2016-11-02 06:00 - 04130432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-11-10 00:32 - 2016-11-02 06:00 - 01061968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-11-10 00:32 - 2016-11-02 05:56 - 01609920 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2016-11-10 00:32 - 2016-11-02 05:56 - 01572768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2016-11-10 00:32 - 2016-11-02 05:56 - 01418312 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-11-10 00:32 - 2016-11-02 05:56 - 00628552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-11-10 00:32 - 2016-11-02 05:56 - 00322912 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2016-11-10 00:32 - 2016-11-02 05:55 - 00048992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\iorate.sys
2016-11-10 00:32 - 2016-11-02 05:48 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efsext.dll
2016-11-10 00:32 - 2016-11-02 05:47 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2016-11-10 00:32 - 2016-11-02 05:47 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRHelper.dll
2016-11-10 00:32 - 2016-11-02 05:46 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2016-11-10 00:32 - 2016-11-02 05:45 - 00492032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2016-11-10 00:32 - 2016-11-02 05:45 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2016-11-10 00:32 - 2016-11-02 05:45 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
2016-11-10 00:32 - 2016-11-02 05:44 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2016-11-10 00:32 - 2016-11-02 05:43 - 00731136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8.dll
2016-11-10 00:32 - 2016-11-02 05:43 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll
2016-11-10 00:32 - 2016-11-02 05:42 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-11-10 00:32 - 2016-11-02 05:42 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2016-11-10 00:32 - 2016-11-02 05:41 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2016-11-10 00:32 - 2016-11-02 05:40 - 00548352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2016-11-10 00:32 - 2016-11-02 05:35 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinfo32.exe
2016-11-10 00:32 - 2016-11-02 05:34 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-11-10 00:32 - 2016-11-02 05:33 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-11-10 00:32 - 2016-11-02 05:32 - 00045056 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-11-10 00:32 - 2016-11-02 05:31 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-11-10 00:32 - 2016-11-02 05:31 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-11-10 00:32 - 2016-11-02 05:30 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2016-11-10 00:32 - 2016-11-02 05:29 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-11-10 00:32 - 2016-11-02 05:29 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-11-10 00:32 - 2016-11-02 05:28 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-11-10 00:32 - 2016-11-02 05:28 - 00321024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkUXBroker.dll
2016-11-10 00:32 - 2016-11-02 05:28 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-11-10 00:32 - 2016-11-02 05:26 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-11-10 00:32 - 2016-11-02 05:26 - 01595392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-11-10 00:32 - 2016-11-02 05:26 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-11-10 00:32 - 2016-11-02 05:26 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAnimation.dll
2016-11-10 00:32 - 2016-11-02 05:25 - 02256384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-11-10 00:32 - 2016-11-02 05:25 - 00772608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2016-11-10 00:32 - 2016-11-02 05:24 - 03778560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-11-10 00:32 - 2016-11-02 05:23 - 02356736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2016-11-10 00:32 - 2016-11-02 05:23 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2016-11-10 00:32 - 2016-11-02 05:22 - 00369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinfo32.exe
2016-11-10 00:32 - 2016-11-02 05:16 - 04148736 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-11-10 00:32 - 2016-11-02 05:16 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-11-10 00:32 - 2016-11-02 05:16 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-11-10 00:32 - 2016-11-02 05:15 - 03616768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-11-10 00:32 - 2016-11-02 04:11 - 00788624 _____ C:\WINDOWS\SysWOW64\locale.nls
2016-11-10 00:32 - 2016-11-02 04:11 - 00788624 _____ C:\WINDOWS\system32\locale.nls
2016-11-07 10:01 - 2016-11-07 10:01 - 00002087 _____ C:\Users\Bryan\.recently-used.xbel
2016-11-07 09:40 - 2016-11-07 09:40 - 00176394 _____ C:\Users\Bryan\Downloads\jellyka_le_grand_saut.zip
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-12-06 22:08 - 2016-02-14 19:02 - 00002185 _____ C:\WINDOWS\BRRBCOM.INI
2016-12-06 22:04 - 2016-08-09 07:24 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-12-06 17:45 - 2016-03-09 09:17 - 00000000 ____D C:\Users\Bryan\AppData\LocalLow\360WD
2016-12-06 17:37 - 2016-07-16 06:47 - 00000000 ___HD C:\Program Files\WindowsApps
2016-12-06 17:37 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-12-06 17:33 - 2016-08-09 07:32 - 00000000 ____D C:\Users\Bryan
2016-12-06 08:13 - 2012-07-05 10:25 - 00000000 ____D C:\Users\Bryan\Desktop\Important stuff
2016-12-06 08:11 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-12-05 21:58 - 2016-06-05 23:35 - 00001226 _____ C:\Users\Public\Desktop\360 Total Security.lnk
2016-12-05 21:58 - 2016-03-09 09:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\360 Security Center
2016-12-05 19:45 - 2010-04-01 12:17 - 00000000 ____D C:\Users\Bryan\AppData\Roaming\Skype
2016-12-05 15:34 - 2016-08-09 07:54 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-12-05 15:34 - 2016-08-09 07:27 - 00000000 ____D C:\ProgramData\NVIDIA
2016-12-05 15:33 - 2016-07-16 01:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2016-12-05 15:32 - 2013-10-14 20:15 - 00000000 ____D C:\Users\Bryan\Desktop\Jennifer
2016-12-05 15:32 - 2011-07-22 10:13 - 00000000 ____D C:\Users\Bryan\Desktop\Games
2016-12-05 11:05 - 2010-03-31 11:03 - 00000000 ____D C:\Users\Bryan\.gimp-2.6
2016-12-05 09:01 - 2010-04-01 12:17 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-12-05 09:01 - 2010-04-01 12:17 - 00000000 ____D C:\ProgramData\Skype
2016-12-05 00:16 - 2014-01-21 17:47 - 00000000 ____D C:\Users\Bryan\AppData\Local\Battle.net
2016-12-04 19:09 - 2014-01-21 17:47 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-12-04 13:05 - 2010-04-14 22:00 - 00000000 ____D C:\Users\Bryan\AppData\Roaming\Azureus
2016-12-04 13:05 - 2010-03-31 10:57 - 00000000 ____D C:\Users\Bryan\AppData\Roaming\uTorrent
2016-12-03 15:05 - 2010-05-01 19:04 - 00000000 ____D C:\Users\Bryan\AppData\Roaming\vlc
2016-12-03 07:52 - 2015-11-09 10:21 - 00000000 ____D C:\Users\Bryan\Desktop\Pics
2016-12-01 00:47 - 2014-01-21 17:49 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2016-12-01 00:40 - 2016-04-17 22:04 - 00000000 ____D C:\Program Files (x86)\Overwatch
2016-11-26 18:01 - 2016-07-16 20:51 - 00044552 _____ C:\Users\Bryan\Desktop\Budget.ods
2016-11-25 16:41 - 2015-09-10 20:19 - 00039044 _____ C:\Users\Bryan\Desktop\2016 Ledger.ods
2016-11-25 07:35 - 2016-03-09 09:17 - 00339456 _____ (360.cn) C:\WINDOWS\system32\Drivers\360Box64.sys
2016-11-25 07:35 - 2016-03-09 09:17 - 00095232 _____ (360.cn) C:\WINDOWS\SysWOW64\Drivers\360AvFlt.sys
2016-11-21 15:59 - 2015-09-24 11:39 - 00000000 ____D C:\Users\Bryan\AppData\Local\Packages
2016-11-15 21:09 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\rescache
2016-11-15 20:48 - 2013-09-23 13:30 - 00002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-11 09:55 - 2016-08-09 07:31 - 01283468 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-11-11 09:17 - 2016-07-16 06:45 - 00000000 ____D C:\WINDOWS\INF
2016-11-10 22:52 - 2015-09-10 00:42 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-11-10 22:50 - 2016-08-09 07:24 - 00243520 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-11-10 22:50 - 2013-05-16 09:31 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-11-10 12:48 - 2016-07-16 06:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-11-10 12:48 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-11-10 12:48 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-11-10 12:48 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-11-10 12:48 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-11-10 12:48 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-11-10 12:18 - 2016-07-16 06:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-11-09 12:07 - 2013-07-18 12:39 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-11-09 12:04 - 2010-04-03 22:30 - 141011376 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-11-09 00:05 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-11-09 00:05 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-11-08 00:30 - 2016-10-24 22:02 - 00000232 _____ C:\Users\Bryan\Desktop\STUFF.txt
2016-11-07 10:01 - 2010-03-31 11:04 - 00000000 ____D C:\Users\Bryan\AppData\Roaming\gtk-2.0
==================== Files in the root of some directories =======
2010-04-13 11:01 - 2010-05-29 18:01 - 0000004 _____ () C:\Users\Bryan\AppData\Roaming\FC0951
2010-04-13 11:01 - 2010-05-29 18:01 - 0870128 _____ () C:\Users\Bryan\AppData\Roaming\mcs.rma
2014-12-13 23:46 - 2014-12-13 23:46 - 0000064 _____ () C:\Users\Bryan\AppData\Local\96c19848fb4b5725e3dad3b802ffd897
2010-05-22 21:20 - 2010-05-22 21:20 - 0000600 _____ () C:\Users\Bryan\AppData\Local\PUTTY.RND
2012-08-15 21:59 - 2012-09-22 02:21 - 0000044 ___SH () C:\ProgramData\.zreglib
2010-04-01 12:18 - 2010-04-01 12:18 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
Some files in TEMP:
====================
C:\Users\Bryan\AppData\Local\Temp\i4jdel0.exe
C:\Users\Bryan\AppData\Local\Temp\SkypeSetup.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-11-30 21:21
==================== End of FRST.txt ============================
ADDITION.txt
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-12-2016
Ran by Bryan (06-12-2016 22:09:15)
Running from C:\Users\Bryan\Downloads
Windows 10 Home Version 1607 (X64) (2016-08-09 13:01:39)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3534269808-1485983137-1280583553-500 - Administrator - Disabled)
Bryan (S-1-5-21-3534269808-1485983137-1280583553-1000 - Administrator - Enabled) => C:\Users\Bryan
DefaultAccount (S-1-5-21-3534269808-1485983137-1280583553-503 - Limited - Disabled)
Guest (S-1-5-21-3534269808-1485983137-1280583553-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3534269808-1485983137-1280583553-1002 - Limited - Enabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: 360 Total Security (Enabled - Up to date) {0371CA44-3F80-A1D3-BECE-910620B58D50}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: 360 Total Security (Enabled - Up to date) {B8102BA0-19BA-AE5D-847E-AA745B32C7ED}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\uTorrent) (Version: 3.4.9.42973 - BitTorrent Inc.)
360 Total Security (HKLM-x32\...\360TotalSecurity) (Version: 9.0.0.1069 - 360 Security Center)
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - )
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 23.0.0.257 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.207 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.8.638 - Adobe Systems, Inc.)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
AMD Catalyst Install Manager (HKLM\...\{9AB0D5B6-4779-8C4F-CA91-A1FEDB56D7EC}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.)
And Yet It Moves 1.2.0 (HKLM-x32\...\{0CA6F2DA-0DCB-4627-8A0C-858E3833769F}_is1) (Version: - Broken Rules)
Apple Application Support (HKLM-x32\...\{63EC2120-1742-4625-AA47-C6A8AEC9C64C}) (Version: 2.2.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{7446FE8D-C1F9-4D42-AAAE-5DBCE58605A6}) (Version: 6.0.0.59 - Apple Inc.)
AppLogLibSetup (x32 Version: 1.0.2.0 - Brother Industries Ltd.) Hidden
ATI AVIVO64 Codecs (Version: 11.6.0.51125 - ATI Technologies Inc.) Hidden
ATI Problem Report Wizard (Version: 3.0.804.0 - ATI Technologies) Hidden
AutoREALM Version 2.2.1 (HKLM-x32\...\AutoREALM_is1) (Version: - )
AviSynth 2.5 (HKLM-x32\...\AviSynth) (Version: - )
Bastion (HKLM-x32\...\Bastion_is1) (Version: - )
Bastion (HKLM-x32\...\Steam App 107100) (Version: - Supergiant Games)
Batman: Arkham Asylum (HKLM-x32\...\{4E79A60F-15D2-4BEC-91AD-E41EC42E61B0}) (Version: 1.0.0.0 - Eidos Inc/Warner Brothers)
Batman: Arkham City™ (HKLM-x32\...\Steam App 57400) (Version: - Rocksteady)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Borderlands 2 (HKLM-x32\...\Borderlands 2_is1) (Version: - )
Braid (Version 1.015) (HKLM-x32\...\Braid_is1) (Version: - )
BrLauncher (x32 Version: 1.1.6.0 - Brother Industries Ltd.) Hidden
BrLogRx (x32 Version: 1.0.1.1 - Brother Industries Ltd.) Hidden
Brother PCFax Driver (x32 Version: 1.4.0.0 - Brother Industries Ltd.) Hidden
Brother Printer Driver (x32 Version: 1.1.0.0 - Brother Industries Ltd.) Hidden
Brother Scanner Driver (x32 Version: 1.0.5.2 - Brother Industries Ltd.) Hidden
BrotherHelpInstaller (x32 Version: 1.0.0.0 - Brother) Hidden
Browser Configuration Utility (HKLM-x32\...\{5B363E1D-8C36-4458-BAE4-D5081999E094}) (Version: 1.1.11.0 - DeviceVM) <==== ATTENTION
Browser Extensions (HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\{3A787631-66A2-4634-B928-A37E73B58FB6}) (Version: 2.8.8.11 - Spigot, Inc.) <==== ATTENTION
BrSupportTools (x32 Version: 1.0.9.0 - Brother Industries Ltd.) Hidden
Castle Crashers (HKLM-x32\...\Steam App 204360) (Version: - The Behemoth)
Character Builder (HKLM-x32\...\{626C034B-50B8-47BD-AF93-EEFD0FA78FF4}) (Version: 1.10.0000 - Wizards of the Coast)
Cities in Motion 2 (HKLM-x32\...\Steam App 225420) (Version: - Colossal Order Ltd.)
Citrix online plug-in - web (HKLM-x32\...\CitrixOnlinePluginPackWeb) (Version: 12.0.0.6410 - Citrix Systems, Inc.)
Cockatrice (HKLM-x32\...\Cockatrice) (Version: - )
Cogs (HKLM-x32\...\Cogs) (Version: - )
ControlCenter4 (x32 Version: 4.2.438.1 - Brother Insutries Ltd.) Hidden
ControlCenter4 CSDK (x32 Version: 4.2.3.1 - Brother Insutries Ltd.) Hidden
CPUID CPU-Z 1.75 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
Crayon Physics Deluxe version 55 (HKLM-x32\...\{4CA1E8E2-B2A9-40C1-8EC4-BBCB23BAAA19}_is1) (Version: 55 - Kloonigames, Ltd)
Crypt of the NecroDancer (HKLM-x32\...\Steam App 247080) (Version: - Brace Yourself Games)
Darksiders (HKLM-x32\...\Steam App 50620) (Version: - Vigil Games)
DeviceDetect (x32 Version: 1.0.3.4 - Brother Industries Ltd.) Hidden
DFOLauncher (HKLM-x32\...\DFO) (Version: - )
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Diablo III Beta (HKLM-x32\...\Diablo III Beta) (Version: 0.11.0.9359 - Blizzard Entertainment)
Discord (HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\Discord) (Version: 0.0.296 - Hammer & Chisel, Inc.)
D-Link AirPlus G Wireless LAN Adapter (HKLM-x32\...\{111B8587-C888-4B7B-A20D-8CC767437A90}) (Version: - )
Dolphin x86 (HKLM-x32\...\Dolphin x86) (Version: 4.0.2 - Dolphin Development Team)
Dropbox (HKLM-x32\...\Dropbox) (Version: 3.14.7 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.27.35 - Dropbox, Inc.) Hidden
Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD)
Epic Games Launcher (HKLM-x32\...\{F9E7706A-FCFE-40D2-9B58-45567B3E1F3F}) (Version: 1.1.69.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Far Cry® 3 Blood Dragon (HKLM-x32\...\Steam App 233270) (Version: - Ubisoft Montreal)
FocalBlade 2.0 Demo Plugin (HKLM-x32\...\FocalBlade 2.0 Demo Plugin_is1) (Version: - The Plugin Site)
Gameforge Live 2.0.11 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.11 - Gameforge)
GameVox 0.18.4.56 (HKLM-x32\...\{d1b6d93c-44b5-4130-bff4-95c9b6d141d3}) (Version: 0.18.4.56 - GameVox LLC)
GameVox 0.18.4.56 (x32 Version: 0.18.4.56 - GameVox LLC) Hidden
Gauntlet™ (HKLM-x32\...\Steam App 258970) (Version: - Arrowhead Game Studios)
Gigantic Installer (HKLM-x32\...\{fb714f96-ecf3-484b-b780-edbd9e241da7}) (Version: 1.0.0.2 - Motiga Inc.)
Gigantic Launcher (64-bit) (Version: 1.3.0.1 - Motiga Inc.) Hidden
GIMP 2.6.8 (HKLM-x32\...\WinGimp-2.0_is1) (Version: - )
Glyph (HKLM-x32\...\Glyph) (Version: - Trion Worlds, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.99 - Google Inc.)
Google Earth Plug-in (HKLM-x32\...\{57BB4801-61C8-4E74-9672-2160728A461E}) (Version: 7.1.5.1557 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Gpg4win (2.1.0) (HKLM-x32\...\GPG4Win) (Version: 2.1.0 - The Gpg4win Project)
Grey Cubes (HKLM-x32\...\Steam App 371500) (Version: - Deion Mobile)
GTK+ Runtime 2.14.7 rev a (remove only) (HKLM-x32\...\GTK 2.0) (Version: - )
Guacamelee! Gold Edition (HKLM-x32\...\Steam App 214770) (Version: - DrinkBox Studios)
Guardians of Graxia (HKLM-x32\...\Steam App 90500) (Version: - )
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
HEX 1.0 (HKLM-x32\...\{6EDED3CB-CAC5-4200-A534-CCA1732EAF23}_is1) (Version: 1.0 - Gameforge4d)
Hextech Repair Tool (HKLM-x32\...\{7F9A97E6-E666-11E5-B582-B88687E82322}) (Version: 1.0.16 - Riot Games, Inc.)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
HowToGuide (x32 Version: 1.0.1.0 - Brother Industries Ltd.) Hidden
HP Button Manager (HKLM-x32\...\{7390FC95-D842-448A-A3A2-C8DC89AEB83A}) (Version: 1.6.0.0 - Hewlett-Packard)
HP Webcam User's Guide (HKLM-x32\...\{D31612BB-C6D7-4142-96AE-16DB062354CF}) (Version: - Hewlett-Packard)
HydraVision (x32 Version: 4.2.184.0 - ATI Technologies Inc.) Hidden
InFlac 1.1.1 (HKLM-x32\...\InFlac) (Version: 1.1.1 - Michael Facquet)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
iTunes (HKLM\...\{1493B2AE-0261-47D2-B1AA-F4DAD0F6C48B}) (Version: 10.7.0.21 - Apple Inc.)
Jamestown: Legend of the Lost Colony (HKLM-x32\...\{DC76D52B-1266-4A73-9020-02694193B907}) (Version: 1.0.1 - Final Form Games)
Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
Landmark Beta (HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\SOE-Landmark Beta) (Version: 1.0.3.183 - Sony Online Entertainment)
Launcher Prerequisites (x64) (x32 Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 1.0020 - Riot Games) Hidden
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
LOOT (HKLM-x32\...\LOOT) (Version: 0.7.0 - LOOT Development Team)
Magic Duels (HKLM-x32\...\Steam App 316010) (Version: - Stainless Games Ltd.)
Magicka (HKLM-x32\...\Steam App 42910) (Version: - Arrowhead Game Studios)
MechWarrior Online (HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\{74d11f91-05cc-44f6-8e49-94fe7f33c79b}) (Version: 1.2.0.0 - Piranha Games Inc.)
MechWarrior Online (x32 Version: 1.2.0.0 - Piranha Games Inc.) Hidden
Media Player Classic - Home Cinema v1.5.2.3456 (HKLM-x32\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.5.2.3456 - MPC-HC Team)
Metal Slug 3 (HKLM-x32\...\Steam App 250180) (Version: - DotEmu)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft IntelliPoint 8.2 (HKLM\...\Microsoft IntelliPoint 8.2) (Version: 8.20.468.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (HKLM\...\{EE936C7A-EA40-31D5-9B65-8E3E089C3828}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 (HKLM-x32\...\{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}) (Version: 9.0.21022.218 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 RC Redistributable (x64) - 14.0.22816 (HKLM-x32\...\{e2495eb6-cca8-47aa-91ea-3410ca44d7b7}) (Version: 14.0.22816.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Middle-earth: Shadow of Mordor (HKLM\...\Steam App 241930) (Version: - Monolith Productions, Inc.)
Minimum (HKLM-x32\...\Steam App 214190) (Version: - Human Head Studios)
Mozilla Firefox 45.0.2 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 45.0.2 (x86 en-US)) (Version: 45.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 45.0.2 - Mozilla)
MTX (HKLM-x32\...\{6583D00E-0924-4950-8BE9-5D09FE70B333}) (Version: 1.0.0 - mektek.net)
Mumble 1.2.16 (HKLM-x32\...\{8C0C80AA-EA4D-4461-8B73-15A3A27F7D98}) (Version: 1.2.16 - Thorvald Natvig)
Natural Color Pro (HKLM-x32\...\{FC2C7405-BC58-4E11-8F51-29671BEAC06B}) (Version: 1.00.0005 - )
NetworkRepairTool (x32 Version: 1.2.11.0 - Brother Insutries Ltd.) Hidden
Nexon Game Manager (HKLM-x32\...\{EA2DB6E0-72C5-4ef9-A3A0-E6705F4A6A9E}) (Version: - )
NVIDIA 3D Vision Controller Driver 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 364.72 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 364.72 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.2.46 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.2.46 - NVIDIA Corporation)
NVIDIA Graphics Driver 364.72 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 364.72 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Oblivion (HKLM-x32\...\{35CB6715-41F8-4F99-8881-6FC75BF054B0}) (Version: 1.00.0000 - Bethesda Softworks)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice.org 3.4.1 (HKLM-x32\...\{9F1F2AEA-C72A-4DD6-991E-C5506A5625E4}) (Version: 3.41.9593 - Apache Software Foundation)
Orcs Must Die! (HKLM-x32\...\Steam App 102600) (Version: - Robot Entertainment)
Origin (HKLM-x32\...\Origin) (Version: 8.5.0.4554 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Path of Exile (HKLM-x32\...\{90A4562F-D4A1-4B65-906D-41F236CF6902}) (Version: 1.0.0.29375 - Grinding Gear Games)
PC-FAXReceive (x32 Version: 1.3.8.0 - Brother Insutries Ltd.) Hidden
PCFaxTx (x32 Version: 1.0.4.5 - Brother Industries Ltd.) Hidden
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2-r4600) (Version: - )
PicPick (HKLM-x32\...\PicPick) (Version: 2.3.0 - Wiziple)
Pidgin (HKLM-x32\...\Pidgin) (Version: 2.6.6 - )
Portal (HKLM-x32\...\Steam App 400) (Version: - Valve)
PowerISO (HKLM-x32\...\PowerISO) (Version: 5.9 - Power Software Ltd)
Project64 1.6 (HKLM-x32\...\{9559F7CA-5E34-4237-A2D9-D856464AD727}) (Version: 1.6 - Project64)
Psychonauts Demo (HKLM-x32\...\Steam App 3840) (Version: - Double Fine)
Puzzle Bots v1.0 (HKLM-x32\...\{12B839E5-8271-4888-B19F-4811A8D8770F}_is1) (Version: - Wadjet Eye Games)
Quantum Conundrum (HKLM-x32\...\Steam App 200010) (Version: - Airtight Games)
QuickTime (HKLM-x32\...\{0E64B098-8018-4256-BA23-C316A43AD9B0}) (Version: 7.72.80.56 - Apple Inc.)
RaidCall (HKLM-x32\...\RaidCall) (Version: 7.3.0-1.0.10926.49 - raidcall.com)
Realtek Ethernet Controller Driver For Windows Vista and Later (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0009 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5973 - Realtek Semiconductor Corp.)
RemoteSetup (x32 Version: 3.8.0.0 - Brother Industries Ltd.) Hidden
Reus (HKLM-x32\...\{D991ED13-3BDE-40B9-9C7D-C459E342C0D5}_is1) (Version: 1.3.1.0 - Abbey Games)
Rise of the Tomb Raider (HKLM\...\Steam App 391220) (Version: - Crystal Dynamics)
Saints Row IV (HKLM-x32\...\Steam App 206420) (Version: - Deep Silver Volition)
Samsung Data Migration (HKLM-x32\...\{3B304604-0BF5-488E-AB95-F2F2E31206F3}) (Version: 3.0 - Samsung)
Sanctum (HKLM-x32\...\Steam App 91600) (Version: - Coffee Stain Studios)
ScannerUtilityInstaller (x32 Version: 1.0.0.0 - Brother) Hidden
Shadowgrounds 1.05b (HKLM-x32\...\Shadowgrounds_is1) (Version: - Frozenbyte, Inc.)
Shadowrun Returns (HKLM-x32\...\Shadowrun Returns_is1) (Version: - Harebrained Holdings)
Shadowrun Returns (HKLM-x32\...\Steam App 234650) (Version: - Harebrained Schemes)
Shadowrun: Dragonfall - Director's Cut (HKLM-x32\...\Steam App 300550) (Version: - Harebrained Schemes)
Shadowrun: Hong Kong - Extended Edition (HKLM-x32\...\Steam App 346940) (Version: - Harebrained Schemes)
Shatter (HKLM-x32\...\{84D008A6-8159-442E-8FD8-0148EF42F3E0}) (Version: 1.0.5 - Sidhe Interactive)
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.2.46 - NVIDIA Corporation) Hidden
Skype Click to Call (HKLM-x32\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 6.9.12585 - Skype Technologies S.A.)
Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.)
Smite (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF017}) (Version: 2.12.2920.4 - Hi-Rez Studios)
SPORE™ (HKLM-x32\...\{9DF0196F-B6B8-4C3A-8790-DE42AA530101}) (Version: 1.00.0000 - Electronic Arts)
Spotify (HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\Spotify) (Version: 0.9.10.22.gf87988f9 - Spotify AB)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
Starbound (HKLM-x32\...\Steam App 211820) (Version: - )
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
StatusMonitor (x32 Version: 1.12.4.0 - Brother Insutries Ltd.) Hidden
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Switch Sound File Converter (HKLM-x32\...\Switch) (Version: - NCH Software)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System Requirements Lab (HKLM-x32\...\{9E1BAB75-EB78-440D-94C0-A3857BE2E733}) (Version: 4.1.71.0 - Husdawg, LLC)
Tales of Zestiria (HKLM\...\Steam App 351970) (Version: - BANDAI NAMCO Studio Inc.)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
Terraria (HKLM-x32\...\Steam App 105600) (Version: - )
Terrorhedron (HKLM-x32\...\Steam App 299720) (Version: - Dan Walters)
The Darkness II (HKLM-x32\...\The Darkness II_is1) (Version: - )
The Elder Scrolls V Skyrim Dragonborn (c) Bethesda Softworks version 1 (HKLM-x32\...\The Elder Scrolls V Skyrim Dragonborn (c) Bethes~300CD4A2_is1) (Version: 1 - )
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios)
The Stanley Parable (HKLM-x32\...\Steam App 221910) (Version: - Galactic Cafe)
The Wolf Among Us (HKLM-x32\...\Steam App 250320) (Version: - )
Transistor (HKLM-x32\...\Steam App 237930) (Version: - Supergiant Games)
Trine 1.09 (HKLM-x32\...\Trine_is1) (Version: - Frozenbyte, Inc.)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Uplay (HKLM-x32\...\Uplay) (Version: 2.1 - Ubisoft)
UsbRepairTool (x32 Version: 1.4.0.0 - Brother Insutries Ltd.) Hidden
Ventrilo Client (HKLM-x32\...\{789289CA-F73A-4A16-A331-54D498CE069F}) (Version: 3.0.5 - Flagship Industries, Inc.)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: - Elaborate Bytes)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.5.1 (HKLM\...\VulkanRT1.0.5.1) (Version: 1.0.5.1 - LunarG, Inc.)
Vuze (HKLM-x32\...\8461-7759-5462-8226) (Version: 5.7.2.0 - Azureus Software, Inc.)
Vuze Remote Toolbar v9.9 (HKLM-x32\...\{4B969F2F-E383-4EBD-8B34-EDA2D737D096}) (Version: 9.9 - Spigot, Inc.) <==== ATTENTION
VVVVVV version 2.0 (HKLM-x32\...\{C39601A7-9FF4-4148-A41B-93181E35D122}_is1) (Version: 2.0 - Terry Cavanagh)
WinDirStat 1.1.2 (HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\WinDirStat) (Version: - )
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR archiver (HKLM\...\WinRAR archiver) (Version: - )
wolfman-x (HKLM-x32\...\wolfman-x) (Version: - )
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {00C6896E-B9B8-41AE-A29A-21736796C03D} - System32\Tasks\{C5EF7A5E-A71D-4612-B1EF-EF01324E83B7} => pcalua.exe -a C:\Users\Bryan\Downloads\XBOX360Eng.exe -d C:\Users\Bryan\Downloads
Task: {05B1E339-F4C9-4517-B722-89D06C5F9283} - System32\Tasks\{45B9A611-6A72-478B-8D97-9CA8C093E8C9} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{4E79A60F-15D2-4BEC-91AD-E41EC42E61B0}\setup.exe" -c -runfromtemp -l0x0009 -removeonly
Task: {0CB7E6D1-1090-416D-B413-5ABAA6A9A786} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {122B7A12-C9DB-4645-A1D8-1EED56795338} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {157B46F2-A7BC-4E9B-8A8B-DCF1469CB341} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {17FF28B4-01CF-48DF-9FD3-9D44C98FAE58} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {186653D0-2616-474D-822A-BA7717C06468} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1BD4D10D-0E13-4A44-B061-7748355BA825} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {265F771F-4B79-4DA7-AC8C-4FD4EBBB4C26} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-08-24] (Dropbox, Inc.)
Task: {27FF1ACE-77AE-4DD2-ABC4-63AC7824A216} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {29F34EC9-1504-43B5-A7E5-3992EB83042E} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {2C94A6AC-4E94-49AA-BFEC-CA6715D5838F} - System32\Tasks\{1346A54B-F643-49CA-A380-C2712D7819C1} => pcalua.exe -a "C:\Users\Bryan\Documents\Vuze Downloads\Dungeons & Dragons - Character Builder\07 CB_Oct_2009.exe" -d "C:\Users\Bryan\Documents\Vuze Downloads\Dungeons & Dragons - Character Builder"
Task: {34DFE721-5B05-4151-8B49-2B15AD35F39D} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {37723692-5D04-4540-97C0-78E7E80FFEAE} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {39776033-3639-4CFF-B3F0-D3E166186F2A} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {4852CF62-AECB-4107-8218-CD5AFF616C58} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {49D19FFA-B5B7-4AD1-A9B7-7DD463033CE5} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {4A55BBC8-0419-4456-872E-360B9BC11EEE} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {4C3086EE-8C38-4F1C-BB8C-8BEEEF8B855C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-09-16] (Adobe Systems Incorporated)
Task: {571FE537-F861-4706-AE97-CC121265D995} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5A67B648-E6F4-40D6-918D-FCEEB121DD4C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {5BFCE883-EF1C-4824-A392-6D09E5F54BBF} - System32\Tasks\{AA7EEC8E-BF7E-4C73-8E64-90A32D5C2A1A} => pcalua.exe -a "C:\Users\Bryan\Documents\Vuze Downloads\Dungeons & Dragons - Character Builder\09 CB_Jan_2010.exe" -d "C:\Users\Bryan\Documents\Vuze Downloads\Dungeons & Dragons - Character Builder"
Task: {624DB11D-9A48-4054-A438-E538962C7346} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {62CE3F92-9560-4354-9AAC-B4E1766A97E5} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6848E300-9948-42C2-8B0A-C438060CC47A} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6F2B85AE-85DB-46A2-B01E-15610C28006E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {7B9891DA-A55C-4A43-80FB-2313C0F228A5} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {7D7CA63D-FABA-4AF6-B2E7-218561B58CFC} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8290ABE3-4049-4AF7-AE71-A90F12CB7647} - System32\Tasks\{D7800F6C-F764-4C79-B124-9E3AA70471DC} => pcalua.exe -a "C:\Users\Bryan\Desktop\New Folder\crack\UPDATE\assassins_creed_2_1.01_us.exe" -d "C:\Users\Bryan\Desktop\New Folder\crack\UPDATE"
Task: {83A238BD-45C6-41D0-9C4A-BDC07A1CC9E1} - System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe => c:\Program Files\Microsoft IntelliPoint\IPoint.exe [2011-08-01] (Microsoft Corporation)
Task: {848C5324-075C-467C-A726-19657AE71E55} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8C645592-6934-4799-87D2-75E17790E39C} - System32\Tasks\{852D79DA-9E6D-43AE-BA09-691A1176B8FA} => pcalua.exe -a "C:\Users\Bryan\Documents\Vuze Downloads\Dungeons & Dragons - Character Builder\08 CB_Nov_2009.exe" -d "C:\Users\Bryan\Documents\Vuze Downloads\Dungeons & Dragons - Character Builder"
Task: {8F019CD9-7319-4344-A511-3923CE659744} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {9084C9CB-5B7F-4B64-B362-5ED7C9DCD0FA} - System32\Tasks\{48F2B6BC-1E5A-4182-AE0E-81B6E1EEF2D7} => pcalua.exe -a "C:\Users\Bryan\Documents\Vuze Downloads\Mass Effect 2 Full DLC Pack 2011 -illiria\DP_Setup.exe" -d "C:\Users\Bryan\Documents\Vuze Downloads\Mass Effect 2 Full DLC Pack 2011 -illiria"
Task: {950C771E-8461-4B25-B839-3BE725D37F29} - \Safer-Networking\Spybot - Search and Destroy\Check for updates -> No File <==== ATTENTION
Task: {9931FF85-3351-42DE-8F34-B03F5B1AF536} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {9C7B6025-EAE0-4D78-A7DC-A49F25504B4A} - System32\Tasks\{4E8710E2-664D-498F-90C0-4B8CEBC28AF6} => pcalua.exe -a "C:\Program Files (x86)\Steam\steam.exe" -c steam://uninstall/12910
Task: {AD4D3F7F-1D77-425D-B26C-3B782769013F} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-08-24] (Dropbox, Inc.)
Task: {AECB5684-4A48-4980-B887-555DB5406C67} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {AF650805-499B-4717-817B-54ED677A76A0} - System32\Tasks\{B9E7CB81-77BB-4FDA-9A2C-ED13CC009FBE} => pcalua.exe -a "C:\program files (x86)\steam\steamapps\common\alien swarm\bin\addoninstaller.exe" -d "c:\program files (x86)\steam\steamapps\common\alien swarm" -c /register
Task: {B77FA3C9-F4A0-4C8B-992B-7BD7062C91AA} - System32\Tasks\{EA03FC6D-E036-49A6-BDF4-640D8C123B6F} => pcalua.exe -a D:\Setup.exe -d D:\
Task: {B9300E86-CD64-48F7-94DD-A456DD72D7C2} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-11-09] (Microsoft Corporation)
Task: {B9C2E9A6-1EB9-49B3-A703-1402FCAC6EA9} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {BBD59593-6DE4-4CC2-AB20-F3553D295A31} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {BF1174BF-859A-4DF8-8CA8-7C7042882E67} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {C5759DD7-35B7-4664-A8FD-289C8435B7A3} - \Safer-Networking\Spybot - Search and Destroy\Refresh immunization -> No File <==== ATTENTION
Task: {D4CC058D-6E8A-423C-92E2-75CAACBD282E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-09] (Adobe Systems Incorporated)
Task: {D7999EBD-BC8F-45D5-8664-AB3408E8385A} - \Safer-Networking\Spybot - Search and Destroy\Scan the system -> No File <==== ATTENTION
Task: {DB399A18-9BFA-4FC3-905E-155F9BB8F6EA} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E13EA930-A87B-4819-9872-458FE8488AB4} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {E46180A8-9666-4547-AE86-3E99A18B8A88} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E5250716-C46E-42C2-8A19-99388F88F6A4} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {EFF7FA9B-71DC-4715-8BA8-16EDA373369A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {F054FE4E-AC9F-4FC6-8C79-9581E0D91325} - System32\Tasks\0814avUpdateInfo => C:\ProgramData\Avg_Update_0814av\0814av_AVG-Secure-Search-Update.exe [2014-08-12] ()
Task: {F1DD8418-E09C-468F-8D34-004E1185B32A} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {F86A213F-DE25-47C3-BA16-D5DF653C4E0F} - System32\Tasks\{E2321764-CBCB-4E30-8CD4-553A205566D2} => pcalua.exe -a "C:\Users\Bryan\Documents\Vuze Downloads\Dungeons & Dragons - Character Builder\01 CB_Apr_2009.exe" -d "C:\Users\Bryan\Documents\Vuze Downloads\Dungeons & Dragons - Character Builder"
Task: {FB4D4D83-6484-4BE4-A897-CF12E8EC8E84} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2011-03-02 10:20 - 2011-03-02 10:20 - 00224256 _____ () C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
2016-04-25 10:16 - 2016-03-24 00:35 - 00368184 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2016-04-25 10:16 - 2016-03-24 00:35 - 00289848 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2016-04-25 10:16 - 2016-03-24 00:35 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2016-04-25 10:16 - 2016-03-24 00:35 - 03613240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2016-02-14 19:02 - 2005-04-22 13:36 - 00143360 _____ () C:\WINDOWS\system32\BrSNMP64.dll
2016-04-25 10:16 - 2016-03-24 00:35 - 02667576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2016-04-25 10:16 - 2016-03-24 00:35 - 01990200 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2016-04-25 10:16 - 2016-03-24 00:35 - 01842232 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2016-04-25 10:16 - 2016-03-24 00:35 - 00208952 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2016-07-16 06:42 - 2016-07-16 06:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-09-29 21:33 - 2016-09-15 12:25 - 02681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-08-09 07:27 - 2016-03-21 21:37 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-09-29 21:33 - 2016-09-15 12:25 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-09-29 21:33 - 2016-09-15 12:25 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-08-09 08:18 - 2016-08-09 08:18 - 00959168 _____ () C:\Users\Bryan\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2010-05-02 09:08 - 2010-03-15 10:28 - 00166400 _____ () C:\Program Files\WinRAR\rarext.dll
2016-03-09 09:17 - 2016-11-25 07:35 - 00782248 _____ () C:\Program Files (x86)\360\Total Security\MenuEx64.dll
2016-08-31 10:09 - 2016-08-31 10:09 - 01573584 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_1.1.41.0_x64__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll
2016-10-19 09:11 - 2016-10-19 09:11 - 00366080 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_1.1.41.0_x64__8wekyb3d8bbwe\Microsoft.Notes.Upgrade.dll
2016-09-20 22:20 - 2016-09-06 23:56 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-11-10 00:33 - 2016-11-02 05:30 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-11-10 00:33 - 2016-11-02 05:21 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-11-10 00:33 - 2016-11-02 05:15 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-11-10 00:33 - 2016-11-02 05:14 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-11-10 00:33 - 2016-11-02 05:15 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2016-11-10 00:33 - 2016-11-02 05:16 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-11-10 00:33 - 2016-11-02 05:17 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-04-25 10:16 - 2016-03-24 00:35 - 00035896 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2016-04-25 10:16 - 2016-03-24 00:35 - 00921656 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2016-11-16 20:03 - 2016-11-16 20:03 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2016-11-16 20:03 - 2016-11-16 20:03 - 00178688 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-11-16 20:03 - 2016-11-16 20:03 - 41609728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2016-11-22 19:05 - 2016-11-22 19:06 - 00019456 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2016-11-22 19:05 - 2016-11-22 19:06 - 20433408 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2016-06-02 19:05 - 2016-06-02 19:05 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll
2016-11-22 19:05 - 2016-11-22 19:06 - 01046528 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Microsoft.Sharing.dll
2016-11-22 19:05 - 2016-11-22 19:06 - 00353792 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Photos.Inking.dll
2011-06-24 21:56 - 2011-06-24 21:56 - 00087328 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2011-06-24 21:56 - 2011-06-24 21:56 - 01241888 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2011-03-02 10:11 - 2011-03-02 10:11 - 00038400 _____ () C:\Program Files (x86)\GNU\GnuPG\libw32pth-0.dll
2011-03-02 10:16 - 2011-03-02 10:16 - 00073216 _____ () C:\Program Files (x86)\GNU\GnuPG\libassuan-0.dll
2011-03-02 10:16 - 2011-03-02 10:16 - 00208384 _____ () C:\Program Files (x86)\GNU\GnuPG\libksba-8.dll
2011-03-02 10:17 - 2011-03-02 10:17 - 00603136 _____ () C:\Program Files (x86)\GNU\GnuPG\libgcrypt-11.dll
2011-03-02 10:13 - 2011-03-02 10:13 - 00048640 _____ () C:\Program Files (x86)\GNU\GnuPG\libgpg-error-0.dll
2016-03-09 09:17 - 2016-11-25 07:35 - 00099240 _____ () C:\Program Files (x86)\360\Total Security\deepscan\qutmload.dll
2016-04-25 10:16 - 2016-03-24 00:35 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-03-09 09:17 - 2016-11-25 07:35 - 00584616 _____ () C:\Program Files (x86)\360\Total Security\safemon\wdui2.dll
2016-11-15 20:48 - 2016-11-08 15:29 - 01819240 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libglesv2.dll
2016-11-15 20:48 - 2016-11-08 15:29 - 00093288 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\sony.com -> sony.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\123simsen.com -> www.123simsen.com
There are 7545 more sites.
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-13 21:34 - 2010-12-29 17:20 - 00428463 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 123haustiereundmehr.com
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 www.123moviedownload.com
127.0.0.1 123moviedownload.com
There are 14741 more lines.
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Bryan\Desktop\Pics\Keepers\New Orleans 10-2015\IMAG0147.jpg
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Button Manager.lnk => C:\Windows\pss\HP Button Manager.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Bryan^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^MagicDisc.lnk => C:\Windows\pss\MagicDisc.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Bryan^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.4.1.lnk => C:\Windows\pss\OpenOffice.org 3.4.1.lnk.Startup
MSCONFIG\startupreg: C3 => C:\Program Files (x86)\Vivox\C3\c3.exe
MSCONFIG\startupreg: HydraVisionDesktopManager => "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: SearchSettings => "C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe"
MSCONFIG\startupreg: Spotify => "C:\Users\Bryan\AppData\Roaming\Spotify\spotify.exe" /uri spotify:autostart
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Bryan\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: VirtualCloneDrive => "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
HKLM\...\StartupApproved\Run: => "RtHDVCpl"
HKLM\...\StartupApproved\Run: => "IntelliPoint"
HKLM\...\StartupApproved\Run32: => "AVG_UI"
HKLM\...\StartupApproved\Run32: => "BCU"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKLM\...\StartupApproved\Run32: => "PWRISOVM.EXE"
HKLM\...\StartupApproved\Run32: => "AvgUi"
HKLM\...\StartupApproved\Run32: => "StartCCC"
HKLM\...\StartupApproved\Run32: => "BrHelp"
HKLM\...\StartupApproved\Run32: => "ControlCenter4"
HKLM\...\StartupApproved\Run32: => "BrStsMon00"
HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\StartupApproved\StartupFolder: => "GameVox.lnk"
HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\StartupApproved\Run: => "Skype"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => LPort=139
FirewallRules: [MSMQ-In-TCP] => %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => LPort=808
FirewallRules: [{9E566EC4-B07A-48A8-9591-95E69F7E1266}] => C:\Program Files (x86)\Steam\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [{9092EA15-0FFB-445C-B7DE-47685B75F530}] => C:\Program Files (x86)\Steam\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [{08122964-936D-4D84-AAA4-BA6ACFC45B21}] => C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{E8D03A6D-82F1-46BE-8AE2-4BD4D8FF82DA}] => C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{76E601CD-1552-4750-82FC-F5C5A5BE78A4}] => C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{762E0C23-15C1-4124-A575-51D98A9E11A0}] => C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{8DDA7BAD-C1DF-4523-B664-B7FC527E08B1}] => C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{B5790F62-6704-4FBE-B077-CE0C7F98C4FE}] => C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{18CEBEEE-6437-46CF-A519-8D66B90851CC}] => C:\Program Files (x86)\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
FirewallRules: [{ED650210-475C-44B3-A183-02F40D3BE1F0}] => C:\Program Files (x86)\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
FirewallRules: [{603D3FDF-2DF2-40E4-8220-DB4BCCFC83E2}] => C:\Program Files (x86)\Steam\steamapps\common\Magic Duels\MagicDuels.exe
FirewallRules: [{E72591A9-DDF4-4D89-ABB0-D83349FB27D1}] => C:\Program Files (x86)\Steam\steamapps\common\Magic Duels\MagicDuels.exe
FirewallRules: [{BF504995-1C75-4C86-9FB6-34463C5295AD}] => C:\Program Files (x86)\GameforgeLive\gfl_client.exe
FirewallRules: [{70FCDB59-3668-4EED-9B55-A5301FBE73EE}] => C:\Program Files (x86)\360\Total Security\softmgr\360InstantSetup.exe
FirewallRules: [{D9D1185D-506D-4EB1-942D-B212A093A4D1}] => C:\Program Files (x86)\360\Total Security\softmgr\360InstantSetup.exe
FirewallRules: [{35DE6871-869C-49EE-AF15-2FEA0A854B4D}] => C:\Program Files (x86)\Vuze\Azureus.exe
FirewallRules: [{55E6FC19-C522-4B85-8D81-C73467A316D1}] => C:\Program Files (x86)\Vuze\Azureus.exe
FirewallRules: [UDP Query User{D0E9B37C-DEE1-4D03-98B1-51EACB25A7DF}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [TCP Query User{B5293982-D661-4FE9-B0A8-3A641A5CA624}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [UDP Query User{39664CC1-4E67-443D-9FFD-7CB38679E3C0}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [TCP Query User{4C48D48E-9211-4F9A-96DD-BBA4EF92B26F}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [{6D2EB750-6B33-4FEA-88B7-1A7C7E28BF90}] => C:\Program Files (x86)\Steam\steamapps\common\Rise of the Tomb Raider\ROTTR.exe
FirewallRules: [{05AE6CB3-349C-41C5-8584-34EF5EFD3418}] => C:\Program Files (x86)\Steam\steamapps\common\Rise of the Tomb Raider\ROTTR.exe
FirewallRules: [{075FEC8B-6E4D-4CBF-8320-ADDF2DBF4053}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{FC178713-DFF0-4770-89B1-D50080EF2AEF}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{66E2E888-0495-467B-8F0A-382773990B87}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{0B026A64-46AD-4150-BE1E-C4B7A0F96C0A}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{503F90E6-E5B0-4AD3-BE36-41D7F19B3AB3}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{9B8276F7-808C-4D3D-A4D7-59E184DED9B4}] => C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{3F51B2E5-E86F-4BA7-B1E3-B8DAB090993E}] => C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [UDP Query User{02F80957-5EB0-436E-87D6-4227168645F4}C:\program files (x86)\java\jre1.8.0_91\bin\jp2launcher.exe] => C:\program files (x86)\java\jre1.8.0_91\bin\jp2launcher.exe
FirewallRules: [TCP Query User{9ADE4919-4BB0-44EC-B2E3-FDED38404505}C:\program files (x86)\java\jre1.8.0_91\bin\jp2launcher.exe] => C:\program files (x86)\java\jre1.8.0_91\bin\jp2launcher.exe
FirewallRules: [UDP Query User{A4F588E9-B2C9-46B2-A6BE-C562107AEEAF}C:\program files (x86)\java\jre1.8.0_31\bin\jp2launcher.exe] => C:\program files (x86)\java\jre1.8.0_31\bin\jp2launcher.exe
FirewallRules: [TCP Query User{3B001959-5CFF-47AD-9C72-38F5625BF88A}C:\program files (x86)\java\jre1.8.0_31\bin\jp2launcher.exe] => C:\program files (x86)\java\jre1.8.0_31\bin\jp2launcher.exe
FirewallRules: [{A247CA7F-B597-4C9C-9836-204094337673}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{71A64160-579C-449C-BB0D-E4EEC2C6600D}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [UDP Query User{1F57335E-3E17-4A7E-AED9-26A8178385FD}C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe] => C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe
FirewallRules: [TCP Query User{EFDD72A9-D6BE-4145-A654-1DBD9FCBA791}C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe] => C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe
FirewallRules: [UDP Query User{DD6A64A1-0883-417E-9389-E42CF77AD2F7}C:\program files (x86)\overwatch\overwatch.exe] => C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [TCP Query User{B4DA0C7E-4768-47C0-BF75-63804B8F1177}C:\program files (x86)\overwatch\overwatch.exe] => C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [UDP Query User{D466861B-7FFD-4A16-B2DC-786708773A73}C:\program files (x86)\heroes of the storm\versions\base42178\heroesofthestorm_x64.exe] => C:\program files (x86)\heroes of the storm\versions\base42178\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{6F626A2B-EF2D-43C4-AFF0-1D25E33B6F2A}C:\program files (x86)\heroes of the storm\versions\base42178\heroesofthestorm_x64.exe] => C:\program files (x86)\heroes of the storm\versions\base42178\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{434756D2-F79C-4E2C-B81C-FFCF1C0E45BD}C:\program files (x86)\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe] => C:\program files (x86)\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{2D082E90-5A70-4D10-BFB9-161917D73D4B}C:\program files (x86)\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe] => C:\program files (x86)\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe
FirewallRules: [{3CAE2205-90F6-4721-8F4B-B8A46720B421}] => C:\Program Files (x86)\360\Total Security\LiveUpdate360.exe
FirewallRules: [{D7863F6D-2937-4ABF-A9C7-762D4089D18B}] => C:\Program Files (x86)\360\Total Security\LiveUpdate360.exe
FirewallRules: [UDP Query User{89DC9B87-EE47-4115-A2F0-1325A1409CCA}C:\program files (x86)\heroes of the storm\versions\base41150\heroesofthestorm_x64.exe] => C:\program files (x86)\heroes of the storm\versions\base41150\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{55661E35-A578-47C2-A96B-6145CF5808C9}C:\program files (x86)\heroes of the storm\versions\base41150\heroesofthestorm_x64.exe] => C:\program files (x86)\heroes of the storm\versions\base41150\heroesofthestorm_x64.exe
FirewallRules: [{6550343A-62BB-44A0-8DC6-9E607D0C811E}] => C:\Program Files (x86)\Steam\steamapps\common\GreyCubes\GreyCubes.exe
FirewallRules: [{471E32BC-2906-4CFC-B180-95077AB38F43}] => C:\Program Files (x86)\Steam\steamapps\common\GreyCubes\GreyCubes.exe
FirewallRules: [{BC821BCA-E3A7-49BD-B04B-E136B84E2DED}] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{BED30BB2-EBB3-41E1-93B6-599CD8AEB783}] => c:\program files (x86)\pc-faxreceive\brengineprocess.exe
FirewallRules: [{4147B5C8-E5B0-45A1-B9D8-902D0CC33FE7}] => c:\program files (x86)\pc-faxreceive\brengineprocess.exe
FirewallRules: [{44AD2575-DA35-4BF9-8AB0-11D879605CF4}] => LPort=54925
FirewallRules: [{41D64912-84F6-4E80-A17F-76AC40AF2F9E}] => H:\Install\wlan_wiz\.\wlan_assistant\waw.exe
FirewallRules: [{DFF42BB2-28A3-48A0-8D27-E2EF6CBB1C3A}] => C:\Program Files (x86)\Steam\steamapps\common\Shadowrun Hong Kong\SRHK.exe
FirewallRules: [{994B3964-0476-4A9A-9711-DAC5A3BD686F}] => C:\Program Files (x86)\Steam\steamapps\common\Shadowrun Hong Kong\SRHK.exe
FirewallRules: [{18A9C170-840D-4FC9-9886-8A91FAE60863}] => C:\Program Files (x86)\Steam\steamapps\common\Shadowrun Dragonfall Director's Cut\Dragonfall.exe
FirewallRules: [{FEC087F1-9094-41A1-ADE6-EE409D832DA5}] => C:\Program Files (x86)\Steam\steamapps\common\Shadowrun Dragonfall Director's Cut\Dragonfall.exe
FirewallRules: [{9136D434-E9D0-4684-9209-D4F6A85DF931}] => C:\Program Files (x86)\Steam\steamapps\common\Shadowrun Returns\Shadowrun.exe
FirewallRules: [{6785A6B5-EBA1-4530-93B4-6EEE7B13F893}] => C:\Program Files (x86)\Steam\steamapps\common\Shadowrun Returns\Shadowrun.exe
FirewallRules: [{3F20995C-CCAD-4E25-A72D-E916A289D7D6}] => C:\Program Files (x86)\Steam\steamapps\common\Crypt of the NecroDancer\NecroDancer.exe
FirewallRules: [{EA59C345-E6EC-4028-B81C-9BA47240188A}] => C:\Program Files (x86)\Steam\steamapps\common\Crypt of the NecroDancer\NecroDancer.exe
FirewallRules: [{11939EDC-08DD-4734-94D4-DED455054EB0}] => C:\Program Files (x86)\Steam\steamapps\common\tribes\Binaries\Win32\HirezBridge.exe
FirewallRules: [{618FD6B9-4479-433E-9384-80E4D89C2AC5}] => C:\Program Files (x86)\Steam\steamapps\common\tribes\Binaries\Win32\HirezBridge.exe
FirewallRules: [UDP Query User{798962EE-15E4-4868-BF1C-CC79057E5349}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [TCP Query User{CD1F5F34-98AF-463D-99F5-50EB51B22B2D}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [{E1D6D9F5-2595-4018-B364-82332D89D9AB}] => C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{9BDE7E94-0018-4014-80CC-028622CC8AD9}] => C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{B9C2ADD9-66E5-420C-A910-904787DFB8BA}] => C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{2DC518D2-61EE-49DB-90A8-9AAD437CADBB}] => C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{C8ECC68D-4C22-4B3A-998B-0C8F854490C7}] => C:\Program Files (x86)\Steam\steamapps\common\Terrorhedron\terrorhedron.exe
FirewallRules: [{802D1EF5-5AAD-4DD0-9FC4-18FE8043E11B}] => C:\Program Files (x86)\Steam\steamapps\common\Terrorhedron\terrorhedron.exe
FirewallRules: [UDP Query User{D59F117C-178A-4060-B743-0A74FF5A09A1}C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe] => C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{9B338196-9173-4F65-992F-6AFA22B47DED}C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe] => C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{EFCBB1A7-70FA-47A1-A58B-FDBDC2475DE8}C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe] => C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{666411AE-82A2-4924-933B-EB20CF38E43B}C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe] => C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{7E1D0833-1F1F-48C7-8EE8-1F776959F6F3}C:\program files (x86)\starcraft ii\versions\base32283\sc2.exe] => C:\program files (x86)\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [TCP Query User{A14A18D7-CF4F-4E96-B093-B592F1FBA43A}C:\program files (x86)\starcraft ii\versions\base32283\sc2.exe] => C:\program files (x86)\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [UDP Query User{03C67C2D-7B87-4767-8433-7BE61A6FC990}C:\program files (x86)\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe] => C:\program files (x86)\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{6B543A5F-822E-4C69-B9FA-9F4E1EB48F92}C:\program files (x86)\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe] => C:\program files (x86)\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe
FirewallRules: [{35E8104A-80E1-43EE-B0E0-59A5352D0583}] => C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [{5BDEDC1A-AD9B-44E9-B403-2A3A012D7EF2}] => C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [UDP Query User{39CD56F9-DABA-4034-92D9-7AD4004AD623}C:\users\bryan\desktop\buddha\brutallegend_nosteam.exe] => C:\users\bryan\desktop\buddha\brutallegend_nosteam.exe
FirewallRules: [TCP Query User{88368CA8-32EE-42D5-8AB7-82CE6365F40A}C:\users\bryan\desktop\buddha\brutallegend_nosteam.exe] => C:\users\bryan\desktop\buddha\brutallegend_nosteam.exe
FirewallRules: [UDP Query User{7A1F51D1-3632-4B11-8BA9-E54517261E83}C:\users\bryan\desktop\games\lol\league of legends rads.clean\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => C:\users\bryan\desktop\games\lol\league of legends rads.clean\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe
FirewallRules: [TCP Query User{2A05E62B-8C98-4A33-95BD-7EAC3B7746CD}C:\users\bryan\desktop\games\lol\league of legends rads.clean\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => C:\users\bryan\desktop\games\lol\league of legends rads.clean\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe
FirewallRules: [UDP Query User{77A268AF-91CB-4A92-92A3-2B07659CA7A6}C:\users\bryan\desktop\games\lol\league of legends rads.clean\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => C:\users\bryan\desktop\games\lol\league of legends rads.clean\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe
FirewallRules: [TCP Query User{A67342FB-DA71-4F53-AE7D-937A95E92E3A}C:\users\bryan\desktop\games\lol\league of legends rads.clean\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => C:\users\bryan\desktop\games\lol\league of legends rads.clean\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe
FirewallRules: [{A16F141D-8DE7-4BF7-8A02-9100A8EBEBF4}] => C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{20124EDE-FF02-4FD3-A19A-20ADDAE3A2E2}] => C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{716DB04A-DEDF-44B3-9C3F-384A49A65425}] => C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe
FirewallRules: [{BA61FB2E-14B2-489F-B947-3C16C5E62F10}] => C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe
FirewallRules: [{E6F110BD-B933-44ED-BFAC-A48FC1813A1E}] => C:\Program Files (x86)\Steam\steamapps\common\Gauntlet\binaries\gauntlet.exe
FirewallRules: [{611E2ED2-EF41-41E1-B1B9-1FE7C30BD7F1}] => C:\Program Files (x86)\Steam\steamapps\common\Gauntlet\binaries\gauntlet.exe
FirewallRules: [{D462D622-7424-420F-A6E9-A0A1DBACEA4C}] => C:\Program Files (x86)\Steam\steamapps\common\Minimum\Binaries\Win32\MinGame-Win32-F.exe
FirewallRules: [{25AF45A0-96B8-4A0A-B7F2-9947F121120F}] => C:\Program Files (x86)\Steam\steamapps\common\Minimum\Binaries\Win32\MinGame-Win32-F.exe
FirewallRules: [{1EF8459F-BE85-45B7-A773-DC07F3C873CA}] => C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{E11CC037-C9FE-4719-B2F9-63C7FF5F499D}] => C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [UDP Query User{6EB512C9-5C4E-456F-A6B7-0A6EDBFFC86D}C:\program files (x86)\raidcall\raidcall.exe] => C:\program files (x86)\raidcall\raidcall.exe
FirewallRules: [TCP Query User{E638A225-13E3-4173-9451-95498EFB8561}C:\program files (x86)\raidcall\raidcall.exe] => C:\program files (x86)\raidcall\raidcall.exe
FirewallRules: [{6AE8C68A-AB1A-4BD5-981F-44EF23D7C884}] => C:\Program Files (x86)\AVG\AVG2014\avgmfapx.exe
FirewallRules: [{8DD07586-7E40-40A3-B01B-9DCB27C4C8AF}] => C:\Program Files (x86)\AVG\AVG2014\avgmfapx.exe
FirewallRules: [{96C60E76-977E-4AE0-8D2F-5AF68AFD7377}] => C:\ProgramData\Battle.net\Agent\Agent.3182\Agent.exe
FirewallRules: [{6CAA783B-C9A8-43CB-904C-78C5D90A427E}] => C:\ProgramData\Battle.net\Agent\Agent.3182\Agent.exe
FirewallRules: [{8364C997-6A39-429B-8D11-8C64060CD09B}] => C:\Program Files (x86)\Steam\steamapps\common\Transistor\x64\Transistor.exe
FirewallRules: [{9286ADB7-4398-4D92-9D87-8F209D8C306E}] => C:\Program Files (x86)\Steam\steamapps\common\Transistor\x64\Transistor.exe
FirewallRules: [UDP Query User{21413504-E150-4082-A1A0-23A4321C976D}C:\users\bryan\appdata\roaming\spotify\spotify.exe] => C:\users\bryan\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{06F3700B-0D12-41AB-A7E0-0CB0B94CCB21}C:\users\bryan\appdata\roaming\spotify\spotify.exe] => C:\users\bryan\appdata\roaming\spotify\spotify.exe
FirewallRules: [{0FD9C62D-42DA-48A5-8CB8-CF056E4717DB}] => C:\Program Files (x86)\Steam\steamapps\common\Guacamelee\Guac.exe
FirewallRules: [{35911189-710F-446D-940E-CA9B9EC83D70}] => C:\Program Files (x86)\Steam\steamapps\common\Guacamelee\Guac.exe
FirewallRules: [{84ACEAEE-87FA-4A15-907B-0854AF5D0FCD}] => C:\Program Files (x86)\Steam\steamapps\common\CastleCrashers\castle.exe
FirewallRules: [{3F04CBFF-5728-409B-B456-1CF036D0748A}] => C:\Program Files (x86)\Steam\steamapps\common\CastleCrashers\castle.exe
FirewallRules: [UDP Query User{334B2E83-981B-408E-BE92-6153DD276216}C:\program files (x86)\steam\steamapps\common\far cry 3 blood dragon\bin\fc3_blooddragon_d3d11.exe] => C:\program files (x86)\steam\steamapps\common\far cry 3 blood dragon\bin\fc3_blooddragon_d3d11.exe
FirewallRules: [TCP Query User{F8D22EF4-9B63-4E94-B274-AEF53FE20BBF}C:\program files (x86)\steam\steamapps\common\far cry 3 blood dragon\bin\fc3_blooddragon_d3d11.exe] => C:\program files (x86)\steam\steamapps\common\far cry 3 blood dragon\bin\fc3_blooddragon_d3d11.exe
FirewallRules: [{D6DF2DB6-AFEA-4CFF-B7E7-6727AF1D9E43}] => C:\Program Files (x86)\Steam\steamapps\common\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11.exe
FirewallRules: [{5D31DE24-EC07-42C2-B583-53C456DF82B7}] => C:\Program Files (x86)\Steam\steamapps\common\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11.exe
FirewallRules: [{FDA33696-0734-40EC-A931-B83F5AD12256}] => C:\Program Files (x86)\Steam\steamapps\common\Far Cry 3 Blood Dragon\bin\fc3_blooddragon.exe
FirewallRules: [{8DF8A7FE-02C3-4181-977E-54D62D4C5EE0}] => C:\Program Files (x86)\Steam\steamapps\common\Far Cry 3 Blood Dragon\bin\fc3_blooddragon.exe
FirewallRules: [{124566D7-35DC-4FE6-842A-3CDB8B2512A9}] => C:\Program Files (x86)\Steam\steamapps\common\The Stanley Parable\stanley.exe
FirewallRules: [{BD77128A-B577-498D-92E6-067C42553BB1}] => C:\Program Files (x86)\Steam\steamapps\common\The Stanley Parable\stanley.exe
FirewallRules: [{7EC214F6-A630-4976-8C83-5E008D6F2F6E}] => C:\Program Files (x86)\Steam\steamapps\common\Metal Slug 3\mslug3.exe
FirewallRules: [{5AD689C0-664F-4C9F-B42D-F0351B628B8E}] => C:\Program Files (x86)\Steam\steamapps\common\Metal Slug 3\mslug3.exe
FirewallRules: [{97933098-53FC-4DD8-B205-B8FE0EB81EC6}] => C:\Program Files (x86)\Steam\steamapps\common\Far Cry 3 Blood Dragon\bin\FC3BDUpdaterSteam.exe
FirewallRules: [{2300E685-86C6-4D19-A4DD-F7175327EBF0}] => C:\Program Files (x86)\Steam\steamapps\common\Far Cry 3 Blood Dragon\bin\FC3BDUpdaterSteam.exe
FirewallRules: [{E2D06D7E-A938-419B-B85A-F70958E04043}] => C:\Program Files (x86)\Steam\steamapps\common\Portal\hl2.exe
FirewallRules: [{89998022-A5F1-4FAC-A1D3-A0263985ECC8}] => C:\Program Files (x86)\Steam\steamapps\common\Portal\hl2.exe
FirewallRules: [{D4F8B765-715A-4640-A0DE-8A86AF3F86EE}] => C:\Program Files (x86)\Steam\steamapps\common\Cities in Motion 2\CIM2.exe
FirewallRules: [{F691A4D9-AF39-4103-B745-DB9F36224E20}] => C:\Program Files (x86)\Steam\steamapps\common\Cities in Motion 2\CIM2.exe
FirewallRules: [{B0F88646-504A-4A7B-950B-EED785C77567}] => C:\Program Files (x86)\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{E9E3196C-B6EB-4C9E-8184-871CE0F7CFB5}] => C:\Program Files (x86)\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{96F0F257-96E1-40E4-A5B2-3CBD029F8551}] => C:\ProgramData\Battle.net\Agent\Agent.2816\Agent.exe
FirewallRules: [{070EB91E-B6F5-4F71-A4F3-BCED83654097}] => C:\ProgramData\Battle.net\Agent\Agent.2816\Agent.exe
FirewallRules: [UDP Query User{2689827B-6FD0-4E75-A9F7-EC2772A80490}C:\users\public\sony online entertainment\installed games\landmark beta\landmark64.exe] => C:\users\public\sony online entertainment\installed games\landmark beta\landmark64.exe
FirewallRules: [TCP Query User{C894BC77-3E49-454C-96ED-564F863561FB}C:\users\public\sony online entertainment\installed games\landmark beta\landmark64.exe] => C:\users\public\sony online entertainment\installed games\landmark beta\landmark64.exe
FirewallRules: [{E1A4B4AE-A9BC-4673-88BE-61AD1DC46434}] => LPort=41780
FirewallRules: [{70B70EBF-2AD4-40E7-A949-5E410787BCB6}] => C:\ProgramData\Battle.net\Agent\Agent.2787\Agent.exe
FirewallRules: [{5B4AE735-AFF4-402D-8BD9-B7E07D2B300A}] => C:\ProgramData\Battle.net\Agent\Agent.2787\Agent.exe
FirewallRules: [{70501A5B-8B45-4E34-8F7B-21F1518837ED}] => C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{C63F34E1-AA47-4A77-A50E-635C0491336B}] => C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{E6630FA5-217D-46F4-AD75-784B70D21ABC}] => C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{EAC9FDCC-C217-444E-B908-E270D9E590BB}] => C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{2A18F852-EF79-4D6E-9BE0-5354918596F2}] => C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{FEB8D9CC-C745-4850-AD00-3F484A472535}] => C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{E27A4E54-8D39-4982-AB7C-D71D6299D76F}] => C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{EEFD95FC-19C9-4EE2-A821-B12A9B8C9119}] => C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{B814655E-1174-49A3-8618-005535F2DEA3}] => C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{6F18D558-5250-4213-813C-A6C06F98ACD0}] => C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{645FFBE9-A7F4-4493-8E53-F0D4ACC7A5F0}] => C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
FirewallRules: [{919D23F6-8514-4938-ABF3-E0F1CE985C86}] => C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
FirewallRules: [{8B89B26B-FF90-4BDD-984F-A000BBF5BEC4}] => C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
FirewallRules: [{8759C267-DC07-4A16-A8AB-F848A7F43101}] => C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
FirewallRules: [{0AA93C04-A152-45B5-8713-71C19F4B9E3A}] => C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{08DA9E08-A80E-487D-9CC7-6192A82389F7}] => C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{9D4734CE-041B-4E9D-9282-ABD99D0797EF}] => C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe
FirewallRules: [{CFF74111-C8BB-4448-86C6-8D96DFB3147F}] => C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe
FirewallRules: [UDP Query User{D9F66DB9-9EBB-42A8-B468-A7E56EE5C3A0}C:\program files (x86)\hearthstone\hearthstone.exe] => C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{B4386D80-A2C8-4AE0-ABAA-20E224DB2E7B}C:\program files (x86)\hearthstone\hearthstone.exe] => C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [{28871463-7E43-45FA-91D1-3949EF48D281}] => C:\ProgramData\Battle.net\Agent\Agent.beta.2581\Agent.exe
FirewallRules: [{048BD6AE-726E-4AAD-AE50-1243BDE9079A}] => C:\ProgramData\Battle.net\Agent\Agent.beta.2581\Agent.exe
FirewallRules: [{EC73E2A6-6B64-4AB6-98DA-3B6D3C44D596}] => C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{CAA59CA1-AA5C-4D2D-A4E4-43C1020CDC86}] => C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{06F3B6F4-2E84-4E08-9FB9-5BFA59F0BDDE}] => C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{92AC38A5-CF73-4179-BDB1-769786FEB5B1}] => C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{48B63789-5FDA-4D5D-A07D-7679D783757E}] => C:\Program Files (x86)\Steam\steamapps\common\Cities in Motion 2\CIM2.exe
FirewallRules: [{3DCB33F0-B43D-4602-A894-E687017FA893}] => C:\Program Files (x86)\Steam\steamapps\common\Cities in Motion 2\CIM2.exe
FirewallRules: [{CF75BE7F-FB53-44AF-A6EE-D9F9CE595C17}] => C:\Program Files (x86)\Steam\steamapps\common\The Wolf Among Us\TheWolfAmongUs.exe
FirewallRules: [{5A1070D0-F30F-4F7D-B199-2E1FB58082D8}] => C:\Program Files (x86)\Steam\steamapps\common\The Wolf Among Us\TheWolfAmongUs.exe
FirewallRules: [{F66A788D-3577-429F-A45A-37D330F2DA39}] => C:\Program Files (x86)\Steam\steamapps\common\terraria\Terraria.exe
FirewallRules: [{A2AE031C-73A8-4DC9-A27D-947EECD51269}] => C:\Program Files (x86)\Steam\steamapps\common\terraria\Terraria.exe
FirewallRules: [UDP Query User{260E5D78-F85D-4F3C-8B37-6399A2B663EE}C:\users\bryan\desktop\games\diablo iii\diablo iii.exe] => C:\users\bryan\desktop\games\diablo iii\diablo iii.exe
FirewallRules: [TCP Query User{3C2CA2C5-9307-4BE7-99CC-57CF34F9FF62}C:\users\bryan\desktop\games\diablo iii\diablo iii.exe] => C:\users\bryan\desktop\games\diablo iii\diablo iii.exe
FirewallRules: [{9A8AC6FF-764B-4471-A796-D1AC04B4F5D5}] => C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{55108AEA-6854-4010-BF99-F48FF6FEA8A7}] => C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{E5AC228F-12E9-486B-A9C8-4BF8EB0B7493}] => C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe
FirewallRules: [{E498D5AE-C2E8-488D-B53B-DD19F778EDD3}] => C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe
FirewallRules: [{C541E6F5-4458-4EB1-8873-043C981F5F8A}] => C:\Program Files (x86)\Steam\steamapps\common\Cities in Motion 2\CIM2.exe
FirewallRules: [{801E951F-C6A6-4D6E-AB44-4A3522356E3E}] => C:\Program Files (x86)\Steam\steamapps\common\Cities in Motion 2\CIM2.exe
FirewallRules: [{B37A1EF8-0339-45CF-B210-91E75A8A694A}] => C:\Program Files (x86)\Steam\steamapps\common\magicka\Magicka.exe
FirewallRules: [{437E4EEE-FE64-4EFB-95FD-5E49546F66DB}] => C:\Program Files (x86)\Steam\steamapps\common\magicka\Magicka.exe
FirewallRules: [{2B5F5E03-461F-4BA8-8196-774A5B462C88}] => C:\Program Files (x86)\Steam\steamapps\common\Sanctum\Binaries\Win32\SanctumGame-Win32-Shipping.exe
FirewallRules: [{AD1D22C6-0DAA-4857-AE3B-90FF94CFF789}] => C:\Program Files (x86)\Steam\steamapps\common\Sanctum\Binaries\Win32\SanctumGame-Win32-Shipping.exe
FirewallRules: [{35C5E7AC-795D-4611-94BB-06B4348CF27B}] => C:\Program Files (x86)\Steam\steamapps\common\Orcs Must Die!\Build\release\OrcsMustDie.exe
FirewallRules: [{F6E11555-3E12-4D1A-9CC1-FED91097527B}] => C:\Program Files (x86)\Steam\steamapps\common\Orcs Must Die!\Build\release\OrcsMustDie.exe
FirewallRules: [{51FDD51D-3095-4A3D-B056-85625FF29DC1}] => C:\Program Files (x86)\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{DA487981-E544-4C29-B76B-B785F3AE4871}] => C:\Program Files (x86)\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{72448827-E1A9-4A13-8C8D-D40E64F13BFA}] => C:\Program Files (x86)\Steam\steamapps\common\terraria\Terraria.exe
FirewallRules: [{5F1AFCE7-A31F-42E7-B40B-366B1016159F}] => C:\Program Files (x86)\Steam\steamapps\common\terraria\Terraria.exe
FirewallRules: [{ACD6E62D-2B07-4FDB-BEC5-5E02BA2F7A4D}] => C:\Program Files (x86)\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{91950408-1004-4109-9756-2FD110451641}] => C:\Program Files (x86)\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{70D1B7C8-BD96-4E8F-812B-CDED40263C6C}] => C:\Program Files (x86)\Steam\steamapps\common\Torchlight II\ModLauncher.exe
FirewallRules: [{18DE0414-E8EC-46E0-9ED7-EE9F8A5A9DA4}] => C:\Program Files (x86)\Steam\steamapps\common\Torchlight II\ModLauncher.exe
FirewallRules: [{84CBBD64-E939-4684-8614-37D7DDC4ED61}] => C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe
FirewallRules: [{EAF912D8-C026-41B0-A7D0-16600352FC54}] => C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe
FirewallRules: [{33226855-E53D-4AAC-949E-C52A8894A609}] => C:\Users\Bryan\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{997DC675-2DB0-4954-A1A1-984EAF29BDD8}] => C:\Users\Bryan\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [UDP Query User{174FD12E-025A-417F-A984-5E1EE1956381}C:\users\bryan\desktop\games\xcom\binaries\win32\xcomgame.exe] => C:\users\bryan\desktop\games\xcom\binaries\win32\xcomgame.exe
FirewallRules: [TCP Query User{52479641-5794-424C-AFE6-04C703A47952}C:\users\bryan\desktop\games\xcom\binaries\win32\xcomgame.exe] => C:\users\bryan\desktop\games\xcom\binaries\win32\xcomgame.exe
FirewallRules: [UDP Query User{CF87F131-ECFE-4380-91C8-EAE38CB63CDB}C:\users\bryan\desktop\games\shadowrun returns\shadowrun.exe] => C:\users\bryan\desktop\games\shadowrun returns\shadowrun.exe
FirewallRules: [TCP Query User{5620B819-E770-492D-9C9C-B89F2DFDCDBC}C:\users\bryan\desktop\games\shadowrun returns\shadowrun.exe] => C:\users\bryan\desktop\games\shadowrun returns\shadowrun.exe
FirewallRules: [{B310331A-050E-4B39-B7F2-BFFA462A84C1}] => C:\ProgramData\NexonUS\NGM\NGM.exe
FirewallRules: [{E398740C-904E-462B-9FE4-06728285BDE1}] => C:\ProgramData\NexonUS\NGM\NGM.exe
FirewallRules: [{92B937C8-88F3-4B60-A6C8-471453F1F619}] => C:\Program Files (x86)\Vuze\Azureus.exe
FirewallRules: [{D9C56EDF-A784-45D7-9E06-C1CEAAEEB8F3}] => C:\Program Files (x86)\Vuze\Azureus.exe
FirewallRules: [{F05130D0-45A0-47B9-BE53-D57522F07E73}] => C:\Program Files (x86)\SimpleFiles\SimpleFiles.exe
FirewallRules: [{E374A6AC-CA32-4DA3-AB40-6656E8AE7260}] => C:\Program Files (x86)\SimpleFiles\SimpleFiles.exe
FirewallRules: [{D0F767E3-2937-4831-9697-00B91662FDEB}] => C:\Program Files (x86)\SimpleFiles\downloader.exe
FirewallRules: [{89C14663-C5CD-475F-9396-ABF33C8C5505}] => C:\Program Files (x86)\SimpleFiles\downloader.exe
FirewallRules: [{6CFA0D4F-5FDC-471F-B010-2B78EBFB905F}] => C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{627A87B1-7DC2-49D0-9236-479D62177775}] => C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [UDP Query User{416DADD7-B24C-4598-BDB6-EDA1189C7DFE}C:\users\bryan\desktop\games\borderlands 2\binaries\win32\borderlands2.exe] => C:\users\bryan\desktop\games\borderlands 2\binaries\win32\borderlands2.exe
FirewallRules: [TCP Query User{16D04A8E-E273-41A7-800A-CAA529AF3463}C:\users\bryan\desktop\games\borderlands 2\binaries\win32\borderlands2.exe] => C:\users\bryan\desktop\games\borderlands 2\binaries\win32\borderlands2.exe
FirewallRules: [{EC4EC9E3-73F6-49D2-8D72-95003B4ADF51}] => C:\Program Files (x86)\Steam\steamapps\common\portal 2\portal2.exe
FirewallRules: [{7F428D11-6572-4077-BC26-641528542151}] => C:\Program Files (x86)\Steam\steamapps\common\portal 2\portal2.exe
FirewallRules: [UDP Query User{00F4757D-10EF-4BE5-A34B-780A60F7BA18}C:\program files (x86)\gazillion entertainment\marvel heroes\unrealengine3\binaries\win32\marvelgame.exe] => C:\program files (x86)\gazillion entertainment\marvel heroes\unrealengine3\binaries\win32\marvelgame.exe
FirewallRules: [TCP Query User{4129A878-90F3-4695-B5C7-0C1F91A2A5FB}C:\program files (x86)\gazillion entertainment\marvel heroes\unrealengine3\binaries\win32\marvelgame.exe] => C:\program files (x86)\gazillion entertainment\marvel heroes\unrealengine3\binaries\win32\marvelgame.exe
FirewallRules: [UDP Query User{9A5E8F79-E8AF-4C9A-B01D-676D4F0016D1}C:\users\bryan\desktop\games\cryptic studios\neverwinter\live\gameclient.exe] => C:\users\bryan\desktop\games\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [TCP Query User{615BD100-37E7-4F79-81CB-94729B68A651}C:\users\bryan\desktop\games\cryptic studios\neverwinter\live\gameclient.exe] => C:\users\bryan\desktop\games\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [{35AD4802-8C83-4B07-B452-A0B7356B0BC9}] => C:\Users\Bryan\Desktop\Games\StarCraft II\Versions\Base24944\SC2.exe
FirewallRules: [UDP Query User{A171F493-7C7F-4E48-AC37-77501E87558E}C:\users\bryan\desktop\games\starcraft ii\versions\base24944\sc2.exe] => C:\users\bryan\desktop\games\starcraft ii\versions\base24944\sc2.exe
FirewallRules: [TCP Query User{C14C52DF-3EF8-44C1-AA02-4C2261D3EC25}C:\users\bryan\desktop\games\starcraft ii\versions\base24944\sc2.exe] => C:\users\bryan\desktop\games\starcraft ii\versions\base24944\sc2.exe
FirewallRules: [{C0DD6ECA-BEE9-4716-A20A-280A79DB58CB}] => C:\Users\Bryan\Desktop\Games\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [{0F6B0BAC-BDA8-46C4-9316-E9C67CA3AD6B}] => C:\Users\Bryan\Desktop\Games\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [{9EA21BE7-1646-4C18-910F-4832F6CAA166}] => C:\Users\Bryan\Desktop\Games\StarCraft II\StarCraft II.exe
FirewallRules: [{18AC3981-DBB5-4850-B541-846F6951F757}] => C:\Users\Bryan\Desktop\Games\StarCraft II\StarCraft II.exe
FirewallRules: [{0266900B-959B-4023-8B24-47B19D00864D}] => C:\ProgramData\Battle.net\Agent\Agent.1737\Agent.exe
FirewallRules: [{9D2D0D67-000C-46B6-9243-FFF2FFCCDFFB}] => C:\ProgramData\Battle.net\Agent\Agent.1737\Agent.exe
FirewallRules: [UDP Query User{4308CA1B-9504-46D7-855D-AF6F4618BF9A}C:\users\bryan\desktop\games\american mcgee's alice\alice.exe] => C:\users\bryan\desktop\games\american mcgee's alice\alice.exe
FirewallRules: [TCP Query User{20705DE3-DB4D-4867-9C8F-8C011B163C3C}C:\users\bryan\desktop\games\american mcgee's alice\alice.exe] => C:\users\bryan\desktop\games\american mcgee's alice\alice.exe
FirewallRules: [UDP Query User{EFEDF1EE-E3A3-4AA7-8482-5C5DAC107923}C:\games\dragon age origins\bin_ship\daorigins.exe] => C:\games\dragon age origins\bin_ship\daorigins.exe
FirewallRules: [TCP Query User{7D43BB66-71AA-49EF-89E9-61C603B8E4A0}C:\games\dragon age origins\bin_ship\daorigins.exe] => C:\games\dragon age origins\bin_ship\daorigins.exe
FirewallRules: [{3B537105-2EB1-433D-BAE1-E6C372315CE0}] => C:\Program Files (x86)\Origin Games\Mass Effect 3\Binaries\Win32\MassEffect3.exe
FirewallRules: [{30BC539D-A754-4FA3-8CCC-AE711406FF75}] => C:\Program Files (x86)\Origin Games\Mass Effect 3\Binaries\Win32\MassEffect3.exe
FirewallRules: [{8FC3D814-3A30-406F-94F7-FF52E711E4B0}] => C:\Program Files (x86)\Steam\steamapps\common\Bastion\Bastion.exe
FirewallRules: [{651F1A35-0995-4DED-A109-62F9E1E777EA}] => C:\Program Files (x86)\Steam\steamapps\common\Bastion\Bastion.exe
FirewallRules: [{2466B98D-7BC7-4033-9DFF-FE778BAE340E}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{97F8D1AD-CE0B-4603-AC5B-C237A16334B8}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [UDP Query User{E112F174-7F42-491C-80E5-6FD1A1323EAE}C:\users\bryan\appdata\roaming\spotify\spotify.exe] => C:\users\bryan\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{F2F35F4F-F4CD-4AAE-9548-6F4C1D897993}C:\users\bryan\appdata\roaming\spotify\spotify.exe] => C:\users\bryan\appdata\roaming\spotify\spotify.exe
FirewallRules: [{0DEC6317-9CAB-4859-997F-8DB11F32458D}] => C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
FirewallRules: [{95B3D747-1FB0-41ED-AB31-DA75B8618BD6}] => C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
FirewallRules: [{FBC3B58E-1941-467B-9F52-B6C104ACC713}] => C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
FirewallRules: [{B6734C83-96F8-4B63-A8DE-23D143C78CAC}] => C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
FirewallRules: [UDP Query User{0513B191-C2A8-4796-8CAF-18242FD96C54}C:\users\bryan\desktop\revolt-srttc3\saints row the third\saintsrowthethird.exe] => C:\users\bryan\desktop\revolt-srttc3\saints row the third\saintsrowthethird.exe
FirewallRules: [TCP Query User{354218D4-6588-40B9-AA97-0FC2DCC35D58}C:\users\bryan\desktop\revolt-srttc3\saints row the third\saintsrowthethird.exe] => C:\users\bryan\desktop\revolt-srttc3\saints row the third\saintsrowthethird.exe
FirewallRules: [UDP Query User{A22C708E-4CD8-4EFD-96BC-54F2D5BD95BF}C:\users\bryan\desktop\revolt-srttc3\saints row the third\saintsrowthethird_dx11.exe] => C:\users\bryan\desktop\revolt-srttc3\saints row the third\saintsrowthethird_dx11.exe
FirewallRules: [TCP Query User{81FC9BE9-98EF-4AE1-B437-756945BBB513}C:\users\bryan\desktop\revolt-srttc3\saints row the third\saintsrowthethird_dx11.exe] => C:\users\bryan\desktop\revolt-srttc3\saints row the third\saintsrowthethird_dx11.exe
FirewallRules: [UDP Query User{A3595B56-8A14-4415-9EC6-7EBCDC6B25FE}C:\program files (x86)\meteorentertainment\hawken\installedhawkenfiles\binaries\win32\hawkengame-win32-shipping.exe] => C:\program files (x86)\meteorentertainment\hawken\installedhawkenfiles\binaries\win32\hawkengame-win32-shipping.exe
FirewallRules: [TCP Query User{65B1A8B1-9B6C-4668-9263-D5E243C0F260}C:\program files (x86)\meteorentertainment\hawken\installedhawkenfiles\binaries\win32\hawkengame-win32-shipping.exe] => C:\program files (x86)\meteorentertainment\hawken\installedhawkenfiles\binaries\win32\hawkengame-win32-shipping.exe
FirewallRules: [{8428D6A3-A4F7-4C1B-90E9-09E80BAC6D37}] => C:\users\bryan\desktop\games\zsnes\zsnesw.exe
FirewallRules: [{AD5A956B-A58C-4138-9BDE-BA123FAC8FB8}] => C:\users\bryan\desktop\games\zsnes\zsnesw.exe
FirewallRules: [UDP Query User{A68FB468-CD63-40D4-9B92-75F1FFA0653B}C:\users\bryan\desktop\games\zsnes\zsnesw.exe] => C:\users\bryan\desktop\games\zsnes\zsnesw.exe
FirewallRules: [TCP Query User{1A7BD4A1-12A5-411C-A26A-085A905D8011}C:\users\bryan\desktop\games\zsnes\zsnesw.exe] => C:\users\bryan\desktop\games\zsnes\zsnesw.exe
FirewallRules: [{2659B2B8-0350-4B81-AB60-41541535F513}] => C:\ProgramData\Battle.net\Agent\Agent.1363\Agent.exe
FirewallRules: [{E9E9FA3F-DCEC-4CCC-8AAD-863F9A9BBE68}] => C:\ProgramData\Battle.net\Agent\Agent.1363\Agent.exe
FirewallRules: [UDP Query User{D618277B-A9BB-41EB-9222-56361FB67BA4}C:\programdata\battle.net\agent\agent.1363\agent.exe] => C:\programdata\battle.net\agent\agent.1363\agent.exe
FirewallRules: [TCP Query User{E9CB6109-006B-4E82-859D-1160A63436A7}C:\programdata\battle.net\agent\agent.1363\agent.exe] => C:\programdata\battle.net\agent\agent.1363\agent.exe
FirewallRules: [{B2E534E0-7029-46DD-BC64-3898FD902DED}] => C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [UDP Query User{6D75354D-26C5-418A-8FE8-75838164F075}C:\program files (x86)\steam\steamapps\common\tribes\binaries\win32\tribesascend.exe] => C:\program files (x86)\steam\steamapps\common\tribes\binaries\win32\tribesascend.exe
FirewallRules: [TCP Query User{6A67094C-9BF4-4978-9642-1F6EE9F2FCC0}C:\program files (x86)\steam\steamapps\common\tribes\binaries\win32\tribesascend.exe] => C:\program files (x86)\steam\steamapps\common\tribes\binaries\win32\tribesascend.exe
FirewallRules: [{EEFD4C0F-4AA6-4526-AE77-C5FC519AF44D}] => C:\ProgramData\Battle.net\Agent\Agent.1267\Agent.exe
FirewallRules: [{10D848E5-57C3-4AE9-8FCA-6B0CD147603B}] => C:\ProgramData\Battle.net\Agent\Agent.1267\Agent.exe
FirewallRules: [{B1B5E204-C7BB-4547-983A-B19168CBDEC8}] => C:\ProgramData\Battle.net\Agent\Agent.1267\Agent.exe
FirewallRules: [{06B3132D-E85F-4D49-A717-F2D52D6E9861}] => C:\ProgramData\Battle.net\Agent\Agent.1267\Agent.exe
FirewallRules: [{7EFCD947-AC8F-4F67-8BE4-5CD96FA9FA55}] => C:\ProgramData\Battle.net\Agent\Agent.1225\Agent.exe
FirewallRules: [{75441330-B6EA-45CB-BB98-81FEF7452CA7}] => C:\ProgramData\Battle.net\Agent\Agent.1225\Agent.exe
FirewallRules: [UDP Query User{68367603-BE2E-4A8B-ADF2-0921BCC1B4E7}C:\program files (x86)\java\jre7\bin\javaw.exe] => C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{90382EC0-F081-48D2-8AFD-52CF157E3156}C:\program files (x86)\java\jre7\bin\javaw.exe] => C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [{7EE6CD41-AC92-48A9-9822-AC8A5802BF0E}] => C:\Program Files (x86)\Steam\steamapps\common\magicka\Magicka.exe
FirewallRules: [{9D3E8C14-AA59-4F4F-97AE-D6DE695D8F85}] => C:\Program Files (x86)\Steam\steamapps\common\magicka\Magicka.exe
FirewallRules: [{82700A77-55EA-4C0C-87CF-8024BA919DD2}] => C:\Program Files (x86)\Steam\steamapps\common\Quantum Conundrum\Binaries\Win32\TryGame-Win32-Shipping.exe
FirewallRules: [{163A5991-5D3A-45BF-A442-4281BCD095DD}] => C:\Program Files (x86)\Steam\steamapps\common\Quantum Conundrum\Binaries\Win32\TryGame-Win32-Shipping.exe
FirewallRules: [UDP Query User{5462DBCB-F5C2-4B45-97D0-D5C9A5440F07}C:\program files (x86)\java\jre7\bin\java.exe] => C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [TCP Query User{F5C989F3-9B7A-4626-AF53-11E0511E0C50}C:\program files (x86)\java\jre7\bin\java.exe] => C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [{B4C99863-FA53-464A-AD21-E78E5FF147F3}] => C:\Program Files (x86)\Steam\steamapps\common\risen\bin\Risen.exe
FirewallRules: [{D5F3B9F3-56E8-4774-8B8F-C853FCC80192}] => C:\Program Files (x86)\Steam\steamapps\common\risen\bin\Risen.exe
FirewallRules: [{8914ED7E-89F7-4DD9-A9E0-D96CB9A5DF43}] => C:\Program Files (x86)\Steam\steamapps\common\alien swarm\swarm.exe
FirewallRules: [{41697514-D0B0-4D50-BB64-EAFE281EC0C2}] => C:\Program Files (x86)\Steam\steamapps\common\alien swarm\swarm.exe
FirewallRules: [UDP Query User{D6B98206-8C83-4B84-AAA5-78816B229B1D}C:\program files (x86)\digsby\lib\digsby-app.exe] => C:\program files (x86)\digsby\lib\digsby-app.exe
FirewallRules: [TCP Query User{F41E1B22-104B-46A9-88C5-9DC319AE78FA}C:\program files (x86)\digsby\lib\digsby-app.exe] => C:\program files (x86)\digsby\lib\digsby-app.exe
FirewallRules: [UDP Query User{3503C39D-0C50-47D0-B06A-FAA56160FDD0}C:\users\bryan\desktop\old computer stuff\program files\utorrent.exe] => C:\users\bryan\desktop\old computer stuff\program files\utorrent.exe
FirewallRules: [TCP Query User{E85F5DE2-2B33-42BC-B6A8-D2679A2BE6AE}C:\users\bryan\desktop\old computer stuff\program files\utorrent.exe] => C:\users\bryan\desktop\old computer stuff\program files\utorrent.exe
FirewallRules: [UDP Query User{0757A4C3-FE4E-498B-A7C9-E6D1A97AB1D9}C:\program files (x86)\java\jre6\bin\javaw.exe] => C:\program files (x86)\java\jre6\bin\javaw.exe
FirewallRules: [TCP Query User{9F2EC895-A678-4E41-920B-79793C880048}C:\program files (x86)\java\jre6\bin\javaw.exe] => C:\program files (x86)\java\jre6\bin\javaw.exe
FirewallRules: [UDP Query User{F3B4B097-4B46-4B60-AC29-D9691F0643F5}C:\windows\syswow64\javaw.exe] => C:\windows\syswow64\javaw.exe
FirewallRules: [TCP Query User{B0755C08-56DF-4608-872F-60BE4972B9D6}C:\windows\syswow64\javaw.exe] => C:\windows\syswow64\javaw.exe
FirewallRules: [{C6D8F762-861C-41FA-8252-87F2907D919F}] => C:\programdata\battle.net\agent\agent.1040\agent.exe
FirewallRules: [{58A28F31-46EB-43B7-AE7F-3965E84ABC67}] => C:\programdata\battle.net\agent\agent.1040\agent.exe
FirewallRules: [UDP Query User{2E88636A-1A25-459E-8F0A-EC19AF2D4B93}C:\programdata\battle.net\agent\agent.1040\agent.exe] => C:\programdata\battle.net\agent\agent.1040\agent.exe
FirewallRules: [TCP Query User{89B3696F-A2F7-4061-A3EE-5EC67E479E74}C:\programdata\battle.net\agent\agent.1040\agent.exe] => C:\programdata\battle.net\agent\agent.1040\agent.exe
FirewallRules: [{63E5A8C8-C2F6-400A-BEE9-204F842D8CC8}] => C:\ProgramData\Battle.net\Agent\Agent.998\Agent.exe
FirewallRules: [{98247830-E9D1-441A-B6CC-D9C33D9E40CF}] => C:\ProgramData\Battle.net\Agent\Agent.998\Agent.exe
FirewallRules: [{A9770BBD-BC42-4AAF-98E7-B4400C865B8A}] => C:\ProgramData\Battle.net\Agent\Agent.976\Agent.exe
FirewallRules: [{F4B92E5E-AA68-42B8-8150-1372E20B9CD9}] => C:\ProgramData\Battle.net\Agent\Agent.976\Agent.exe
FirewallRules: [{F8805339-783C-4B89-825D-E8DF4339423E}] => C:\Users\Bryan\Desktop\Games\Diablo III\Diablo III.exe
FirewallRules: [{AF4C7476-1286-40E0-8AB0-0F53ED8C604F}] => C:\Users\Bryan\Desktop\Games\Diablo III\Diablo III.exe
FirewallRules: [{DE2FE3BB-375A-4866-93C0-121066431C92}] => C:\ProgramData\Battle.net\Agent\Agent.954\Agent.exe
FirewallRules: [{884454D1-84EF-4D26-B98A-8E2C7376F6AD}] => C:\ProgramData\Battle.net\Agent\Agent.954\Agent.exe
FirewallRules: [{18AABB47-D377-4CA2-93A4-A3537F2F405A}] => C:\programdata\battle.net\agent\agent.913\agent.exe
FirewallRules: [{90E2EDCE-64A4-43A1-86F9-5245B9FB1E45}] => C:\programdata\battle.net\agent\agent.913\agent.exe
FirewallRules: [UDP Query User{2529E915-527D-4CF4-B2F4-EB0CC8004049}C:\programdata\battle.net\agent\agent.913\agent.exe] => C:\programdata\battle.net\agent\agent.913\agent.exe
FirewallRules: [TCP Query User{207E5950-6A72-4C06-BDFB-AF546AC269A8}C:\programdata\battle.net\agent\agent.913\agent.exe] => C:\programdata\battle.net\agent\agent.913\agent.exe
FirewallRules: [{768848AE-4700-4AFB-94F7-AEB441F121A0}] => C:\users\bryan\downloads\diablo-iii-8370-enus-installer-downloader.exe
FirewallRules: [{45DC97A7-AD93-4260-8709-B8BB5CBD4509}] => C:\users\bryan\downloads\diablo-iii-8370-enus-installer-downloader.exe
FirewallRules: [UDP Query User{2189E65C-56E9-4E22-9921-D14332D39425}C:\users\bryan\downloads\diablo-iii-8370-enus-installer-downloader.exe] => C:\users\bryan\downloads\diablo-iii-8370-enus-installer-downloader.exe
FirewallRules: [TCP Query User{C7D28AB0-2C1D-4B45-9AE6-BE4A22CF4A67}C:\users\bryan\downloads\diablo-iii-8370-enus-installer-downloader.exe] => C:\users\bryan\downloads\diablo-iii-8370-enus-installer-downloader.exe
FirewallRules: [{F284799B-10D7-412A-9AEA-26B09B7C49D6}] => C:\Program Files (x86)\Diablo III Beta\Diablo III.exe
FirewallRules: [{4CB8DA33-87F8-4D25-83C7-D643D7C27B4B}] => C:\Program Files (x86)\Diablo III Beta\Diablo III.exe
FirewallRules: [{255120CD-3A79-43B8-9C21-CAD1B19BBD47}] => C:\ProgramData\Battle.net\Agent\Agent.868\Agent.exe
FirewallRules: [{DA89BB9F-F039-4A84-BFCE-BEFB395E4468}] => C:\ProgramData\Battle.net\Agent\Agent.868\Agent.exe
FirewallRules: [{1246314F-5CC7-4758-A6C8-C9FC08116073}] => C:\programdata\battle.net\agent\agent.515\agent.exe
FirewallRules: [{7EBF384C-5F80-49D7-A165-C7AD2AD1FB0D}] => C:\programdata\battle.net\agent\agent.515\agent.exe
FirewallRules: [{4C53DA91-F98C-47F4-B922-B49F1AF971A7}] => C:\ProgramData\Battle.net\Agent\Agent.515\Agent.exe
FirewallRules: [{3B5A8567-00A0-4F8F-B085-7B3AD33B1B75}] => C:\ProgramData\Battle.net\Agent\Agent.515\Agent.exe
FirewallRules: [UDP Query User{36666E71-C065-45AD-B4C0-F7C0374E82FC}C:\programdata\battle.net\agent\agent.515\agent.exe] => C:\programdata\battle.net\agent\agent.515\agent.exe
FirewallRules: [TCP Query User{FE28B2CD-FB48-48FC-8320-A262B85E32E1}C:\programdata\battle.net\agent\agent.515\agent.exe] => C:\programdata\battle.net\agent\agent.515\agent.exe
FirewallRules: [{AC5DF75C-0AD3-447F-8A56-6EBCD8727BD8}] => C:\users\bryan\desktop\games\rock of ages\binaries\win32\roa.exe
FirewallRules: [{B36332A3-4F65-4FFA-887B-DAD99CAF1103}] => C:\users\bryan\desktop\games\rock of ages\binaries\win32\roa.exe
FirewallRules: [UDP Query User{009306FF-7EE3-4AD3-8B65-56BED9E611C9}C:\users\bryan\desktop\games\rock of ages\binaries\win32\roa.exe] => C:\users\bryan\desktop\games\rock of ages\binaries\win32\roa.exe
FirewallRules: [TCP Query User{6847E9B4-8AD7-480A-8448-29D5B63595DD}C:\users\bryan\desktop\games\rock of ages\binaries\win32\roa.exe] => C:\users\bryan\desktop\games\rock of ages\binaries\win32\roa.exe
FirewallRules: [{A4CC5867-F34A-4B34-902A-453B749FEE15}] => C:\Program Files (x86)\Steam\steamapps\common\batman2\RunLauncher.bat
FirewallRules: [{366E23FC-1E66-42F2-B58D-CF5F86CBDEC5}] => C:\Program Files (x86)\Steam\steamapps\common\batman2\RunLauncher.bat
FirewallRules: [{A96D9A3A-D008-4237-9015-43864FD98FDB}] => C:\Program Files (x86)\Steam\steamapps\common\batman2\Binaries\Win32\BatmanAC.exe
FirewallRules: [{7CF2AF8E-3DA5-449B-AE04-97A2042866BE}] => C:\Program Files (x86)\Steam\steamapps\common\batman2\Binaries\Win32\BatmanAC.exe
FirewallRules: [{5CEDDA55-2EA9-40EF-A024-2DADA8675E69}] => C:\Program Files (x86)\Mass Effect 2\MassEffect2Launcher.exe
FirewallRules: [{0D674119-30CC-4250-B662-F8467CCE6AAD}] => C:\Program Files (x86)\Mass Effect 2\MassEffect2Launcher.exe
FirewallRules: [{449D4B69-4C02-4FF5-8FB5-AE9A04206655}] => C:\Program Files (x86)\Mass Effect 2\Binaries\MassEffect2.exe
FirewallRules: [{1EBD32CC-5EBD-41DE-837D-6BFC0FEA31D9}] => C:\Program Files (x86)\Mass Effect 2\Binaries\MassEffect2.exe
FirewallRules: [{A32BDF1F-763C-4BE3-9480-C37C168070A0}] => C:\users\bryan\desktop\games\saints row the third\saintsrowthethird_dx11.exe
FirewallRules: [{F88706F4-235A-4856-B7DA-AEC16EB1AFFF}] => C:\users\bryan\desktop\games\saints row the third\saintsrowthethird_dx11.exe
FirewallRules: [UDP Query User{F2F9F55C-6D6E-45D3-8D72-C070554E05C0}C:\users\bryan\desktop\games\saints row the third\saintsrowthethird_dx11.exe] => C:\users\bryan\desktop\games\saints row the third\saintsrowthethird_dx11.exe
FirewallRules: [TCP Query User{26157C2B-1A6C-41B6-BABF-2EE54BCBC033}C:\users\bryan\desktop\games\saints row the third\saintsrowthethird_dx11.exe] => C:\users\bryan\desktop\games\saints row the third\saintsrowthethird_dx11.exe
FirewallRules: [{D6927868-52E2-4059-AAE0-E10A3C59CAA8}] => C:\Program Files (x86)\Steam\steamapps\common\guardians of graxia\GuardiansOfGraxia.exe
FirewallRules: [{2E602496-B0C3-4D20-B008-03DAF022C5EB}] => C:\Program Files (x86)\Steam\steamapps\common\guardians of graxia\GuardiansOfGraxia.exe
FirewallRules: [{B5EFE865-6B44-40D9-95E0-A18B07CC5C92}] => C:\Program Files (x86)\Steam\steamapps\common\deus ex\System\DeusEx.exe
FirewallRules: [{D20BD56D-1BED-4709-A8C5-1E2E1D37A414}] => C:\Program Files (x86)\Steam\steamapps\common\deus ex\System\DeusEx.exe
FirewallRules: [{F802BB65-396C-4A88-B4CB-BFFEF98ADC97}] => C:\Program Files (x86)\Steam\steamapps\common\psychonauts demo\Psychonauts.exe
FirewallRules: [{B7DDA240-63B4-4806-8904-376AAB97BF34}] => C:\Program Files (x86)\Steam\steamapps\common\psychonauts demo\Psychonauts.exe
FirewallRules: [{151E2DD4-6B4C-4CEF-AA58-17E034D2F71E}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{F42D31B7-369A-4DFB-B083-7F4674740D0A}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{0E1DCA0E-C85D-45CC-9884-4BF37979548F}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{1DDFD0C7-9357-4597-AE8F-C59A304B0CAE}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [UDP Query User{9FE96430-F155-4931-A31F-AF41EA54514C}C:\program files (x86)\starcraft ii\versions\base15405\sc2.exe] => C:\program files (x86)\starcraft ii\versions\base15405\sc2.exe
FirewallRules: [TCP Query User{599E4734-CD50-46A3-8302-05EF59547B1B}C:\program files (x86)\starcraft ii\versions\base15405\sc2.exe] => C:\program files (x86)\starcraft ii\versions\base15405\sc2.exe
FirewallRules: [{0B4E5B3C-9A46-4151-8FDD-B3021A9ABE34}] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{4539A85C-B17F-46EC-81F6-95BF25E05716}] => C:\Users\Bryan\Desktop\Games\Humble Bundle\Steel Storm\SteelStorm\steelstorm-dedicated.exe
FirewallRules: [{15848BC7-86E8-4CB1-884E-BE1DEEFF953D}] => C:\Users\Bryan\Desktop\Games\Humble Bundle\Steel Storm\SteelStorm\steelstorm-dedicated.exe
FirewallRules: [{C0A8CFDB-B338-492D-9203-C4091D0D1EA9}] => C:\Users\Bryan\Desktop\Games\Humble Bundle\Steel Storm\SteelStorm\steelstorm.exe
FirewallRules: [{F4940868-C249-4852-8230-72E1D47BC7EB}] => C:\Users\Bryan\Desktop\Games\Humble Bundle\Steel Storm\SteelStorm\steelstorm.exe
FirewallRules: [UDP Query User{6875B0B9-3605-43F0-AC83-9B877341B4E0}C:\program files (x86)\videolan\vlc\vlc.exe] => C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [TCP Query User{53DA6FA3-3D5A-44E9-B025-2E8D5C5CFA2F}C:\program files (x86)\videolan\vlc\vlc.exe] => C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{C3FB04EE-B3DC-4A48-AE31-5CE92F405C8D}C:\windows\syswow64\javaw.exe] => C:\windows\syswow64\javaw.exe
FirewallRules: [TCP Query User{C0604AE2-3ED0-4552-9F78-8D25E7D58CD1}C:\windows\syswow64\javaw.exe] => C:\windows\syswow64\javaw.exe
FirewallRules: [{72EF7842-CF32-495F-AF2A-71C00DB07E23}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{543D9BAC-C7C6-448D-8BEB-E332F7F4F240}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [UDP Query User{D20D28CA-2EB0-4AE8-ACE2-C6D20DE9D1FE}C:\program files (x86)\lolreplay\lolreplay.exe] => C:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [TCP Query User{C52E4426-80FC-4871-BAA5-013742B4AF9F}C:\program files (x86)\lolreplay\lolreplay.exe] => C:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [{8B9E0157-E3F0-4606-AA65-F788D1E1F82A}] => C:\Program Files (x86)\Steam\steamapps\common\portal 2\portal2.exe
FirewallRules: [{CF039847-DB87-46B5-9A53-A604DC7C90B7}] => C:\Program Files (x86)\Steam\steamapps\common\portal 2\portal2.exe
FirewallRules: [{E9653953-C315-4712-B914-C42ABA00756C}] => LPort=8383
FirewallRules: [{ACD8D107-4348-4AEC-BFAA-3A56534E535A}] => LPort=8383
FirewallRules: [{5B81A9D6-54AB-4696-85AF-E5A784BB2927}] => C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{F756527B-9EAF-4044-B6B3-535C3BBD72B0}] => C:\Program Files (x86)\Ubisoft\Prince of Persia\PrinceOfPersia_Launcher.exe
FirewallRules: [{0B90D9FE-1C01-4289-8E07-4C643F56680C}] => C:\Program Files (x86)\Ubisoft\Prince of Persia\PrinceOfPersia_Launcher.exe
FirewallRules: [{96BA3B5E-CA15-467F-8369-A8259D6F6AA8}] => C:\Program Files (x86)\Ubisoft\Prince of Persia\Prince of Persia.exe
FirewallRules: [{8E88D8B6-7BFB-482B-953B-82A7BC581C3A}] => C:\Program Files (x86)\Ubisoft\Prince of Persia\Prince of Persia.exe
FirewallRules: [{1CA334E8-9353-4BB0-91BD-8F48CFD2A86A}] => C:\Program Files (x86)\Steam\steamapps\common\deus ex\System\DeusEx.exe
FirewallRules: [{39F95B8E-E46F-44C9-9A90-FC694C90CFD7}] => C:\Program Files (x86)\Steam\steamapps\common\deus ex\System\DeusEx.exe
FirewallRules: [{3B2964A7-ADBD-4653-B0B3-68AC51DDD4FB}] => C:\Program Files (x86)\Steam\steamapps\common\darksiders\DarksidersPC.exe
FirewallRules: [{9398F45B-5441-4011-8FBB-0550526C4571}] => C:\Program Files (x86)\Steam\steamapps\common\darksiders\DarksidersPC.exe
FirewallRules: [UDP Query User{CD7170F6-8A88-48D8-B1F9-BE53DE7851BD}C:\users\bryan\downloads\championsonlinef2p.exe] => C:\users\bryan\downloads\championsonlinef2p.exe
FirewallRules: [TCP Query User{6D8CE278-BFE4-4A12-A5D5-866DBA8F00A2}C:\users\bryan\downloads\championsonlinef2p.exe] => C:\users\bryan\downloads\championsonlinef2p.exe
FirewallRules: [{0140B2EB-D980-46BD-81B3-8EE79941CAEA}] => C:\Program Files (x86)\Eidos\Batman Arkham Asylum\Binaries\ShippingPC-BmGame.exe
FirewallRules: [{0A5618E9-77F5-4880-9917-B50E87C05082}] => C:\Program Files (x86)\Eidos\Batman Arkham Asylum\Binaries\ShippingPC-BmGame.exe
FirewallRules: [{5C79E22C-82AE-48A0-AEE4-87BD7B11F19C}] => C:\Program Files (x86)\Steam\steamapps\common\alien swarm\swarm.exe
FirewallRules: [{C375E066-EC2C-48A1-9B8C-8FE047F856CC}] => C:\Program Files (x86)\Steam\steamapps\common\alien swarm\swarm.exe
FirewallRules: [UDP Query User{3D7993DC-1496-4878-B2DD-C8C5C6F1238D}C:\program files (x86)\ea games\dead space 2\deadspace2.exe] => C:\program files (x86)\ea games\dead space 2\deadspace2.exe
FirewallRules: [TCP Query User{34359F0E-B7A4-4962-B7FC-DF25DB2FFE1C}C:\program files (x86)\ea games\dead space 2\deadspace2.exe] => C:\program files (x86)\ea games\dead space 2\deadspace2.exe
FirewallRules: [UDP Query User{6C19D0A3-E0F6-4269-846B-7ED014CB6C2D}C:\users\public\games\world of warcraft\temp\wow-4.0.0.2104-enus-tools-downloader.exe] => C:\users\public\games\world of warcraft\temp\wow-4.0.0.2104-enus-tools-downloader.exe
FirewallRules: [TCP Query User{CC0D6DE2-F2F9-4AC6-9959-D605B88F5457}C:\users\public\games\world of warcraft\temp\wow-4.0.0.2104-enus-tools-downloader.exe] => C:\users\public\games\world of warcraft\temp\wow-4.0.0.2104-enus-tools-downloader.exe
FirewallRules: [UDP Query User{51BC7F9A-8C95-4EDF-91ED-0F811122A674}C:\program files (x86)\miranda im\miranda32.exe] => C:\program files (x86)\miranda im\miranda32.exe
FirewallRules: [TCP Query User{9F38B8B0-8032-4D2B-8D1D-E3D830D83904}C:\program files (x86)\miranda im\miranda32.exe] => C:\program files (x86)\miranda im\miranda32.exe
FirewallRules: [UDP Query User{B74FE95C-57BA-4BD5-8106-8EB58B68B404}C:\program files (x86)\digsby\lib\digsby-app.exe] => C:\program files (x86)\digsby\lib\digsby-app.exe
FirewallRules: [TCP Query User{94A85E3D-0DEA-4E6D-A972-058A73C971E8}C:\program files (x86)\digsby\lib\digsby-app.exe] => C:\program files (x86)\digsby\lib\digsby-app.exe
FirewallRules: [UDP Query User{F955361F-A67F-4EA6-8664-74AE43DB315E}C:\program files (x86)\winamp\winamp.exe] => C:\program files (x86)\winamp\winamp.exe
FirewallRules: [TCP Query User{B4CEBC1A-9900-4134-8656-3D0F6C05163C}C:\program files (x86)\winamp\winamp.exe] => C:\program files (x86)\winamp\winamp.exe
FirewallRules: [UDP Query User{E88B36AF-1F7E-4315-8B5F-CCF03F536F08}C:\users\public\games\world of warcraft\temp\wow-4.0.0.1807-to-4.0.0.2103-enus-tools-downloader.exe] => C:\users\public\games\world of warcraft\temp\wow-4.0.0.1807-to-4.0.0.2103-enus-tools-downloader.exe
FirewallRules: [TCP Query User{4F9354B6-88C2-4889-9794-FF4A0F9C2084}C:\users\public\games\world of warcraft\temp\wow-4.0.0.1807-to-4.0.0.2103-enus-tools-downloader.exe] => C:\users\public\games\world of warcraft\temp\wow-4.0.0.1807-to-4.0.0.2103-enus-tools-downloader.exe
FirewallRules: [UDP Query User{827E3673-C2AF-407F-9D62-D7A70724FC01}C:\users\public\games\world of warcraft\temp\wow-4.0.0.1807-to-4.0.0.2072-enus-tools-downloader.exe] => C:\users\public\games\world of warcraft\temp\wow-4.0.0.1807-to-4.0.0.2072-enus-tools-downloader.exe
FirewallRules: [TCP Query User{74AB80CF-7147-4CAA-9424-6A57A44A41DA}C:\users\public\games\world of warcraft\temp\wow-4.0.0.1807-to-4.0.0.2072-enus-tools-downloader.exe] => C:\users\public\games\world of warcraft\temp\wow-4.0.0.1807-to-4.0.0.2072-enus-tools-downloader.exe
FirewallRules: [UDP Query User{0A0C2F18-2CB6-40F7-A095-988D847C9838}C:\users\public\games\world of warcraft\temp\wow-4.0.0.1807-to-4.0.0.1987-enus-tools-downloader.exe] => C:\users\public\games\world of warcraft\temp\wow-4.0.0.1807-to-4.0.0.1987-enus-tools-downloader.exe
FirewallRules: [TCP Query User{E392E762-BD09-4EC2-9C3C-1EC9762ECDCD}C:\users\public\games\world of warcraft\temp\wow-4.0.0.1807-to-4.0.0.1987-enus-tools-downloader.exe] => C:\users\public\games\world of warcraft\temp\wow-4.0.0.1807-to-4.0.0.1987-enus-tools-downloader.exe
FirewallRules: [UDP Query User{FD0F35E9-85AF-4AB8-9E4C-244F0329134B}C:\users\public\games\world of warcraft\blizzard downloader.exe] => C:\users\public\games\world of warcraft\blizzard downloader.exe
FirewallRules: [TCP Query User{05D6BFB5-4C5C-4902-B745-67E43033FF64}C:\users\public\games\world of warcraft\blizzard downloader.exe] => C:\users\public\games\world of warcraft\blizzard downloader.exe
FirewallRules: [{B7DE2249-6B5F-4406-A7BB-7472821C6B25}] => C:\Users\Public\Games\World of Warcraft\Launcher.patch.exe
FirewallRules: [{E293AB2A-8D18-4A0D-945D-B13488428CA1}] => C:\Users\Public\Games\World of Warcraft\Launcher.patch.exe
FirewallRules: [UDP Query User{BACFB1E7-E372-4C35-AA3F-B65895DC3E79}C:\users\public\games\world of warcraft\wow-3.3.5.12340-x86-win-enus-bkgnd-downloader.exe] => C:\users\public\games\world of warcraft\wow-3.3.5.12340-x86-win-enus-bkgnd-downloader.exe
FirewallRules: [TCP Query User{A3B061EA-A8DA-425A-9474-E4E79C2EF0E4}C:\users\public\games\world of warcraft\wow-3.3.5.12340-x86-win-enus-bkgnd-downloader.exe] => C:\users\public\games\world of warcraft\wow-3.3.5.12340-x86-win-enus-bkgnd-downloader.exe
FirewallRules: [UDP Query User{E3B3D654-EEFC-43BC-AE12-77E70A08F584}C:\users\public\games\world of warcraft\backgrounddownloader.exe] => C:\users\public\games\world of warcraft\backgrounddownloader.exe
FirewallRules: [TCP Query User{ADEB8810-459F-4BD2-BD9D-C087943086E1}C:\users\public\games\world of warcraft\backgrounddownloader.exe] => C:\users\public\games\world of warcraft\backgrounddownloader.exe
FirewallRules: [UDP Query User{EE853FC0-1489-42E7-9B9D-FF94F3578FEB}C:\users\public\games\world of warcraft\wow-3.3.5.12213-to-3.3.5.12340-enus-downloader.exe] => C:\users\public\games\world of warcraft\wow-3.3.5.12213-to-3.3.5.12340-enus-downloader.exe
FirewallRules: [TCP Query User{C3CFD481-B654-4B64-AE09-6432FD464B8B}C:\users\public\games\world of warcraft\wow-3.3.5.12213-to-3.3.5.12340-enus-downloader.exe] => C:\users\public\games\world of warcraft\wow-3.3.5.12213-to-3.3.5.12340-enus-downloader.exe
FirewallRules: [UDP Query User{DF5497B2-79D5-43D1-8611-9C561DF4237B}C:\users\public\games\world of warcraft\wow-3.3.3.11723-to-3.3.5.12213-enus-downloader.exe] => C:\users\public\games\world of warcraft\wow-3.3.3.11723-to-3.3.5.12213-enus-downloader.exe
FirewallRules: [TCP Query User{16E22943-C391-4884-8520-C57A99422AFE}C:\users\public\games\world of warcraft\wow-3.3.3.11723-to-3.3.5.12213-enus-downloader.exe] => C:\users\public\games\world of warcraft\wow-3.3.3.11723-to-3.3.5.12213-enus-downloader.exe
FirewallRules: [UDP Query User{94A9A63A-D082-410F-BAD1-446C7885EBE0}C:\users\public\games\world of warcraft\wow-3.3.3.11685-to-3.3.3.11723-enus-downloader.exe] => C:\users\public\games\world of warcraft\wow-3.3.3.11685-to-3.3.3.11723-enus-downloader.exe
FirewallRules: [TCP Query User{EC44B5A2-3A6C-48E6-86A5-5CABF70D243B}C:\users\public\games\world of warcraft\wow-3.3.3.11685-to-3.3.3.11723-enus-downloader.exe] => C:\users\public\games\world of warcraft\wow-3.3.3.11685-to-3.3.3.11723-enus-downloader.exe
FirewallRules: [UDP Query User{90B53262-472F-41F6-BE6F-C6F5D0ABE2C7}C:\users\public\games\world of warcraft\wow-3.3.2.11403-to-3.3.3.11685-enus-downloader.exe] => C:\users\public\games\world of warcraft\wow-3.3.2.11403-to-3.3.3.11685-enus-downloader.exe
FirewallRules: [TCP Query User{E86AE798-0E65-4CC4-9DE7-9F1DFE754516}C:\users\public\games\world of warcraft\wow-3.3.2.11403-to-3.3.3.11685-enus-downloader.exe] => C:\users\public\games\world of warcraft\wow-3.3.2.11403-to-3.3.3.11685-enus-downloader.exe
FirewallRules: [UDP Query User{B67DB5B2-E7AA-49BB-A686-C1D0A284270B}C:\users\public\games\world of warcraft\wow-3.3.0.11159-to-3.3.2.11403-enus-downloader.exe] => C:\users\public\games\world of warcraft\wow-3.3.0.11159-to-3.3.2.11403-enus-downloader.exe
FirewallRules: [TCP Query User{51A78AFF-E26B-443D-ABE1-9C3C04109B56}C:\program files (x86)\skype\phone\skype.exe] => C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{9125917A-5A06-4FBC-838D-22EB39F6B303}C:\program files (x86)\skype\phone\skype.exe] => C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{B5BC8789-B8BA-4D7D-8AD3-780D695D9157}] => C:\Program Files (x86)\Steam\steamapps\common\Tales of Zestiria\Tales of Zestiria.exe
FirewallRules: [{AACF6567-1A60-4F52-B3C0-BF111EDCAC08}] => C:\Program Files (x86)\Steam\steamapps\common\Tales of Zestiria\Tales of Zestiria.exe
FirewallRules: [{29DA3996-E52B-40B7-90BD-28C14235EB3A}] => C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe
FirewallRules: [{98D6F387-3346-4B98-A7B1-19BF9675D2A4}] => C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe
FirewallRules: [{1DB16166-FB6F-4958-A6B7-AD9A0BDA4E03}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{EC1D1A12-40C0-4D9F-B7A9-56C5F1DE8986}] => C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe
FirewallRules: [{F4C094DE-406E-4A4D-A31F-768506BF5CF4}] => C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service
==================== Restore Points =========================
19-11-2016 16:10:45 Scheduled Checkpoint
27-11-2016 12:55:19 Scheduled Checkpoint
06-12-2016 17:50:59 Scheduled Checkpoint
==================== Faulty Device Manager Devices =============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (12/06/2016 05:51:12 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
System Error:
Access is denied.
.
Error: (12/06/2016 05:49:30 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "BITS" in DLL "C:\Windows\System32\bitsperf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
Error: (12/04/2016 01:05:33 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15609
Error: (12/04/2016 01:05:33 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15609
Error: (12/04/2016 01:05:33 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (12/04/2016 01:38:31 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15562
Error: (12/04/2016 01:38:31 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15562
Error: (12/04/2016 01:38:31 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (12/03/2016 08:43:57 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Microsoft.Photos.exe, version: 1.0.1611.18000, time stamp: 0x582f93e9
Faulting module name: dcomp.dll, version: 10.0.14393.0, time stamp: 0x5789983d
Exception code: 0xc00001ad
Fault offset: 0x000000000005ed14
Faulting process id: 0x254c
Faulting application start time: 0x01d24d64a141a7f3
Faulting application path: C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
Faulting module path: C:\WINDOWS\SYSTEM32\dcomp.dll
Report Id: 8f3c8c96-ed47-473e-8c13-169aab866a3a
Faulting package full name: Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe
Faulting package-relative application ID: App
Error: (12/03/2016 07:31:10 AM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2116-11-09T12:31:08Z. Error Code: 0x8007071A.
System errors:
=============
Error: (12/06/2016 05:36:56 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80073d02: Microsoft Sticky Notes.
Error: (12/06/2016 05:33:42 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
and APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (12/06/2016 08:13:05 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80073d02: Microsoft Sticky Notes.
Error: (12/06/2016 08:10:09 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
and APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (12/05/2016 03:38:56 PM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume D:.
The Master File Table (MFT) contains a corrupted file record. The file reference number is 0x5000000000005. The name of the file is "<unable to determine file name>".
Error: (12/05/2016 03:38:56 PM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume D:.
The Master File Table (MFT) contains a corrupted file record. The file reference number is 0x5000000000005. The name of the file is "<unable to determine file name>".
Error: (12/05/2016 03:38:39 PM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume D:.
The Master File Table (MFT) contains a corrupted file record. The file reference number is 0x5000000000005. The name of the file is "<unable to determine file name>".
Error: (12/05/2016 03:38:39 PM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume D:.
The Master File Table (MFT) contains a corrupted file record. The file reference number is 0x5000000000005. The name of the file is "<unable to determine file name>".
Error: (12/05/2016 03:38:38 PM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume D:.
The Master File Table (MFT) contains a corrupted file record. The file reference number is 0x5000000000005. The name of the file is "<unable to determine file name>".
Error: (12/05/2016 03:38:37 PM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume D:.
The Master File Table (MFT) contains a corrupted file record. The file reference number is 0x5000000000005. The name of the file is "<unable to determine file name>".
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-6500 CPU @ 3.20GHz
Percentage of memory in use: 47%
Total physical RAM: 8125.07 MB
Available physical RAM: 4299.5 MB
Total Virtual: 16317.07 MB
Available Virtual: 11888.11 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:595.63 GB) (Free:119.42 GB) NTFS
Drive f: (New Volume) (Fixed) (Total:111.79 GB) (Free:111.68 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596.2 GB) (Disk ID: A81E88F8)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=595.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: A650D531)
Partition 1: (Not Active) - (Size=111.8 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
aswMBR.txt
aswMBR version 1.0.1.2290 Copyright(c) 2014 AVAST Software
Run date: 2016-12-06 22:23:43
-----------------------------
22:23:43.778 OS Version: Windows x64 6.2.9200
22:23:43.778 Number of processors: 4 586 0x5E03
22:23:43.779 ComputerName: BRYAN-PC UserName: Bryan
22:23:51.611 Initialize success
22:23:51.799 VM: initialized successfully
22:23:51.799 VM: Intel CPU supported
22:23:54.516 VM: not used
22:24:10.573 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000035
22:24:10.573 Disk 0 Vendor: WDC_WD6401AALS-00L3B2 01.03B01 Size: 610480MB BusType: 11
22:24:10.573 Disk 1 \Device\Harddisk1\DR1 -> \Device\00000037
22:24:10.573 Disk 1 Vendor: SanDisk_SDSSDA120G Z22000RL Size: 114473MB BusType: 11
22:24:10.972 Disk 0 MBR read successfully
22:24:10.972 Disk 0 MBR scan
22:24:10.972 Disk 0 Windows 7 default MBR code
22:24:11.019 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
22:24:11.050 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 609928 MB offset 206848
22:24:11.108 Disk 0 Partition 3 00 27 Hidden NTFS WinRE NTFS 450 MB offset 1249339392
22:24:11.406 Disk 0 scanning C:\WINDOWS\system32\drivers
22:24:26.898 Service scanning
22:24:35.916 Modules scanning
22:24:35.919 Disk 0 trace - called modules:
22:24:35.934 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys storport.sys hal.dll storahci.sys
22:24:35.934 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xffffd781a8f8e060]
22:24:35.934 3 CLASSPNP.SYS[fffff80150395efb] -> nt!IofCallDriver -> [0xffffd781a8d7c040]
22:24:35.934 5 ACPI.sys[fffff8014f264571] -> nt!IofCallDriver -> [0xffffd781a8d7de40]
22:24:35.950 7 ACPI.sys[fffff8014f264571] -> nt!IofCallDriver -> \Device\00000035[0xffffd781a8d85060]
22:24:35.950 Disk 0 statistics 16783/0/0 @ 0.67 MB/s
22:24:35.950 Scan finished successfully
22:24:49.740 Disk 0 MBR has been saved successfully to "C:\Users\Bryan\Desktop\MBR.dat"
22:24:49.740 The log file has been saved successfully to "C:\Users\Bryan\Desktop\aswMBR.txt"
I think I did all the steps, I went to that prework thread and got all three text files, uninstalled the two P2P programs I knew I had (if theres any others I dont remember getting them), and now Im posting! Let me know if theres anything else you need, thanks guys!
FRST.txt
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 05-12-2016
Ran by Bryan (administrator) on BRYAN-PC (06-12-2016 22:08:03)
Running from C:\Users\Bryan\Downloads
Loaded Profiles: Bryan (Available Profiles: Bryan & DefaultAppPool)
Platform: Windows 10 Home Version 1607 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(QIHU 360 SOFTWARE CO. LIMITED) C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe
(QIHU 360 SOFTWARE CO. LIMITED) C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_1.1.41.0_x64__8wekyb3d8bbwe\Microsoft.StickyNotes.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Spotify Ltd) C:\Users\Bryan\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Samsung) C:\Program Files (x86)\SEC\Natural Color Pro\NCProTray.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(QIHU 360 SOFTWARE CO. LIMITED) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Windows\System32\PrintIsolationHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [IgfxTray] => C:\WINDOWS\system32\igfxtray.exe
HKLM\...\Run: [HotKeysCmds] => C:\WINDOWS\system32\hkcmd.exe
HKLM\...\Run: [Persistence] => C:\WINDOWS\system32\igfxpers.exe
HKLM\...\Run: [IntelliPoint] => c:\Program Files\Microsoft IntelliPoint\ipoint.exe [2417032 2011-08-01] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397752 2016-03-24] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-08-27] (Apple Inc.)
HKLM-x32\...\Run: [amd_dc_opt] => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [ConnectionCenter] => C:\Program Files (x86)\Citrix\ICA Client\concentr.exe [300400 2010-03-11] (Citrix Systems, Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [25122080 2016-02-16] (Dropbox, Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [139776 2015-01-29] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4517376 2014-11-11] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrHelp] => C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe [1939968 2014-10-22] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [QHSafeTray] => C:\Program Files (x86)\360\Total Security\safemon\360Tray.exe [345000 2016-11-25] (QIHU 360 SOFTWARE CO. LIMITED)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [598552 2016-06-22] (Oracle Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\Run: [Spotify Web Helper] => C:\Users\Bryan\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1176632 2014-06-28] (Spotify Ltd)
HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27230168 2016-11-15] (Skype Technologies S.A.)
HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe
HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\RunOnce: [Uninstall C:\Users\Bryan\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Bryan\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64"
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\D-Link AirPlus G Wireless Utility.lnk [2010-04-04]
ShortcutTarget: D-Link AirPlus G Wireless Utility.lnk -> C:\Program Files (x86)\D-Link\AirPlus G Wireless Adapter Utility\AIRPLUS.exe (D-Link)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NCProTray.lnk [2010-03-30]
ShortcutTarget: NCProTray.lnk -> C:\Program Files (x86)\SEC\Natural Color Pro\NCProTray.exe (Samsung)
Startup: C:\Users\Bryan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GameVox.lnk [2015-09-24]
ShortcutTarget: GameVox.lnk -> C:\Program Files (x86)\GameVox\GameVox.exe (GameVox LLC)
InternetURL: C:\Users\Bryan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\https---www.youtube.com-v-W-IL4tSg1x8&feature=youtu.be&autoplay=1.url -> URL: hxxps://www.youtube.com/v/W-IL4tSg1x8&feature=youtu.be&autoplay=1
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
ProxyServer: [S-1-5-21-3534269808-1485983137-1280583553-1000] => http=127.0.0.1:60190;https=127.0.0.1:60190
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{244551fa-f4f7-4d10-b506-eb7f183024c0}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{85e448af-b9ba-4d26-b108-bc168d199adc}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{a07d11a2-db66-4097-b889-d94922c1d720}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/
SearchScopes: HKLM -> {c9ab6446-7efc-47fe-966c-dc54324eff9f} URL =
SearchScopes: HKLM-x32 -> DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2801948
SearchScopes: HKLM-x32 -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2801948
SearchScopes: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000 -> DefaultScope {99653235-66E7-4294-A58A-C006B3CE06AB} URL = hxxp://search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=IEBD
SearchScopes: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=DCF1DF&PC=DCF1&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000 -> {0CAF6133-B363-4737-8A62-F8CE22CA518A} URL = hxxp://www.dregol.com/results.php?f=4&q={searchTerms}&a=drg_ir_15_15&cd=2XzuyEtN2Y1L1QzuyC0C0FtDyEzytD0E0CyE0EtByD0B0AyBtN0D0Tzu0StCtCzyyEtN1L2XzutAtFzytFzztFtBtN1L1CzutCyEtBzytDyD1V1QtN1L1G1B1V1N2Y1L1Qzu2SyDtD0ByBtCyD0FtAtGzy0DtCtBtGyEzyzytAtG0CtC0DyCtGtAtC0ByD0E0EtA0AtC0AyC0F2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0Czy0FtByB0ByByBtGzyyC0B0CtGyEzyyEyEtG0BtA0D0DtGzz0F0E0E0CzzyEyBtDtDtAzy2QtN0A0LzutB&cr=943314530&ir=
SearchScopes: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000 -> {3E762472-5EC9-4cc1-9400-8372E2898368} URL = hxxp://www.google.com/custom?client=pub-3794288947762788&forid=1&channel=1975384696&ie=UTF-8&oe=UTF-8&safe=active&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=en&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000 -> {4565BD94-6AA8-4B61-A848-A9323292E492} URL = hxxp://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=714647&p={searchTerms}
SearchScopes: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000 -> {99653235-66E7-4294-A58A-C006B3CE06AB} URL = hxxp://search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=IEBD
SearchScopes: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000 -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2801948
BHO: Skype add-on for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-05-14] (Skype Technologies S.A.)
BHO-x32: No Name -> {02478D38-C3F9-4efb-9B51-7695ECA05670} -> No File
BHO-x32: Vuze Remote Toolbar -> {05478A66-EDB6-4A22-A870-A5987F80A7DA} -> C:\Program Files (x86)\Vuze Remote Toolbar\IE\9.9\vuzeToolbarIE.dll [2014-10-10] (Spigot, Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll [2016-08-10] (Oracle Corporation)
BHO-x32: No Name -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> No File
BHO-x32: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-05-14] (Skype Technologies S.A.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-08-10] (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM-x32 - Vuze Remote Toolbar - {05478A66-EDB6-4A22-A870-A5987F80A7DA} - C:\Program Files (x86)\Vuze Remote Toolbar\IE\9.9\vuzeToolbarIE.dll [2014-10-10] (Spigot, Inc.)
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-05-14] (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-05-14] (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2016-09-23] (Skype Technologies)
Filter-x32: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2010-03-11] (Citrix Systems, Inc.)
Filter-x32: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2010-03-11] (Citrix Systems, Inc.)
FireFox:
========
FF ProfilePath: C:\Users\Bryan\AppData\Roaming\Mozilla\Firefox\Profiles\thahfu1s.default [2016-07-12]
FF user.js: detected! => C:\Users\Bryan\AppData\Roaming\Mozilla\Firefox\Profiles\thahfu1s.default\user.js [2013-08-13]
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\thahfu1s.default -> Yahoo
FF DefaultSearchEngine.US: Mozilla\Firefox\Profiles\thahfu1s.default -> NCH EN Customized Web Search
FF DefaultSearchUrl: Mozilla\Firefox\Profiles\thahfu1s.default -> hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2801948&SearchSource=3&q={searchTerms}
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\thahfu1s.default -> NCH EN Customized Web Search
FF Homepage: Mozilla\Firefox\Profiles\thahfu1s.default -> hxxp://search.conduit.com/?ctid=CT2801948&SearchSource=13
FF Keyword.URL: Mozilla\Firefox\Profiles\thahfu1s.default -> hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2801948&SearchSource=2&q=
FF Extension: (NCH EN Community Toolbar) - C:\Users\Bryan\AppData\Roaming\Mozilla\Firefox\Profiles\thahfu1s.default\Extensions\{37483b40-c254-4a72-bda4-22ee90182c1e} [2012-06-18] [not signed]
FF Extension: (Address Bar Search) - C:\Users\Bryan\AppData\Roaming\Mozilla\Firefox\Profiles\thahfu1s.default\Extensions\{4D6A6C8E-1EB2-46e1-8CAA-40DAFDE3ED93} [2014-10-16] [not signed]
FF Extension: (360 Internet Protection) - C:\Program Files (x86)\360\Total Security\safemon\webprotection_firefox [2016-07-01]
FF SearchPlugin: C:\Users\Bryan\AppData\Roaming\Mozilla\Firefox\Profiles\thahfu1s.default\searchplugins\avg-secure-search.xml [2014-11-06]
FF SearchPlugin: C:\Users\Bryan\AppData\Roaming\Mozilla\Firefox\Profiles\thahfu1s.default\searchplugins\conduit.xml [2012-06-14]
FF SearchPlugin: C:\Users\Bryan\AppData\Roaming\Mozilla\Firefox\Profiles\thahfu1s.default\searchplugins\Dregol.xml [2015-06-22]
FF Extension: (Skype Click to Call) - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-06-22] [not signed]
FF Extension: (Skype Click to Call) - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-06-22] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [WebProtection@360safe.com] - C:\Program Files (x86)\360\Total Security\safemon\webprotection_firefox
FF HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\Firefox\Extensions: [{8A9386B4-E958-4c4c-ADF4-8F26DB3E4829}] - C:\Program Files (x86)\PriceGong\2.1.0\FF => not found
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\wtu-secure-search.xml [2014-11-06]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_23_0_0_207.dll [2016-11-09] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_23_0_0_207.dll [2016-11-09] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll [2012-10-04] (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2012-08-08] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-20] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-08-10] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-08-10] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @nexon.net/NxGame -> C:\ProgramData\NexonUS\NGM\npNxGameUS.dll [2013-08-26] (Nexon)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-03-21] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-03-21] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin-x32: @raidcall.en/RCplugin -> C:\Users\Bryan\AppData\Roaming\raidcall\plugins\nprcplugin.dll [2014-03-10] (Raidcall)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-09-30] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3534269808-1485983137-1280583553-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2014-06-21] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\CCMSDK.dll [2010-03-11] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\cgpcfg.dll [2010-03-11] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\CgpCore.dll [2010-03-11] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\confmgr.dll [2010-03-11] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\ctxlogging.dll [2010-03-11] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\ctxmui.dll [2010-03-11] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\icafile.dll [2010-03-11] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\icalogon.dll [2010-03-11] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npicaN.dll [2010-03-11] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-09-30] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\sslsdk_b.dll [2009-10-05] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\TcpPServ.dll [2010-03-11] (Citrix Systems, Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.dregol.com/?f=1&a=drg_ir_15_15&cd=2XzuyEtN2Y1L1QzuyC0C0FtDyEzytD0E0CyE0EtByD0B0AyBtN0D0Tzu0StCtCzyyEtN1L2XzutAtFzytFzztFtBtN1L1CzutCyEtBzytDyD1V1QtN1L1G1B1V1N2Y1L1Qzu2SyDtD0ByBtCyD0FtAtGzy0DtCtBtGyEzyzytAtG0CtC0DyCtGtAtC0ByD0E0EtA0AtC0AyC0F2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0Czy0FtByB0ByByBtGzyyC0B0CtGyEzyyEyEtG0BtA0D0DtGzz0F0E0E0CzzyEyBtDtDtAzy2QtN0A0LzutB&cr=943314530&ir=
CHR StartupUrls: Default -> "hxxp://www.dregol.com/?f=7&a=drg_ir_15_15&cd=2XzuyEtN2Y1L1QzuyC0C0FtDyEzytD0E0CyE0EtByD0B0AyBtN0D0Tzu0StCtCzyyEtN1L2XzutAtFzytFzztFtBtN1L1CzutCyEtBzytDyD1V1QtN1L1G1B1V1N2Y1L1Qzu2SyDtD0ByBtCyD0FtAtGzy0DtCtBtGyEzyzytAtG0CtC0DyCtGtAtC0ByD0E0EtA0AtC0AyC0F2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0Czy0FtByB0ByByBtGzyyC0B0CtGyEzyyEyEtG0BtA0D0DtGzz0F0E0E0CzzyEyBtDtDtAzy2QtN0A0LzutB&cr=943314530&ir=",""
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default [2016-12-06]
CHR Extension: (Google Slides) - C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-04]
CHR Extension: (Duolingo on the Web) - C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiahmijlpehemcpleichkcokhegllfjl [2015-06-23]
CHR Extension: (Google Docs) - C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-04]
CHR Extension: (Google Drive) - C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-01]
CHR Extension: (YouTube) - C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Google Search) - C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-01]
CHR Extension: (Google Sheets) - C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-04]
CHR Extension: (Stylish) - C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe [2016-04-05]
CHR Extension: (Google Docs Offline) - C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (AdBlock) - C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-11-23]
CHR Extension: (TinEye Reverse Image Search) - C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\haebnnbpedcbhciplfhjjkbafijpncjl [2016-08-27]
CHR Extension: (Reddit Enhancement Suite) - C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb [2016-12-06]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-03]
CHR Extension: (Gmail) - C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR Extension: (Chrome Media Router) - C:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-26]
CHR HKLM\...\Chrome\Extension: [ihokndmjeombjojnfkmapfnjeghjohim] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [gclijllifhfpomppedeljakfegbcpojn] - C:\Users\Bryan\AppData\Local\CRE\gclijllifhfpomppedeljakfegbcpojn.crx <not found>
CHR HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ihokndmjeombjojnfkmapfnjeghjohim] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gclijllifhfpomppedeljakfegbcpojn] - C:\Users\Bryan\AppData\Local\CRE\gclijllifhfpomppedeljakfegbcpojn.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [icdlfehblmklkikfigmjhbmmpmkmpooj] - C:\Program Files (x86)\Common Files\Spigot\GC\ErrorAssistant_1.3.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [ihokndmjeombjojnfkmapfnjeghjohim] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-05-14]
CHR HKLM-x32\...\Chrome\Extension: [mhkaekfpcppmmioggniknbnbdbcigpkk] - C:\Program Files (x86)\Common Files\Spigot\GC\coupons_2.4.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [ojpijjmpahflnipadmlpgbjmagmjchkk] - C:\Users\Bryan\AppData\Local\Temp\tbch.crx <not found>
StartMenuInternet: Google Chrome.IUQXFHMJJWWHTVALRXCKWCOXHM - C:\Users\Bryan\AppData\Local\Google\Chrome\Application\old_chrome.exe
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [289792 2014-10-23] (Brother Industries, Ltd.) [File not signed]
S3 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-08-24] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-08-24] (Dropbox, Inc.)
R2 DirMngr; C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe [224256 2011-03-02] () [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1164856 2016-03-24] (NVIDIA Corporation)
S3 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [8704 2015-08-21] (Hi-Rez Studios) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1881144 2016-03-24] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634232 2016-03-24] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-03-24] (NVIDIA Corporation)
R2 QHActiveDefense; C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe [928168 2016-11-25] (QIHU 360 SOFTWARE CO. LIMITED)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 360AntiHacker; C:\WINDOWS\System32\Drivers\360AntiHacker64.sys [160768 2016-08-01] (360.cn)
R3 360AvFlt; C:\WINDOWS\System32\DRIVERS\360AvFlt.sys [95232 2016-08-01] (360.cn)
R3 360AvFlt; C:\Windows\SysWOW64\DRIVERS\360AvFlt.sys [95232 2016-11-25] (360.cn)
R1 360Box64; C:\WINDOWS\System32\DRIVERS\360Box64.sys [339456 2016-11-25] (360.cn)
S3 360Camera; C:\WINDOWS\System32\Drivers\360Camera64.sys [57856 2016-08-01] (360.cn)
R1 360FsFlt; C:\WINDOWS\System32\DRIVERS\360FsFlt.sys [400384 2016-08-01] (360.cn)
R2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [314016 2012-07-20] ()
R1 BAPIDRV; C:\WINDOWS\System32\DRIVERS\BAPIDRV64.sys [197632 2016-09-09] (360.cn)
R3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [43680 2012-07-20] ()
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-03-24] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [56384 2016-03-21] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [589824 2016-07-16] (Realtek )
U5 vwifimp; C:\Windows\System32\Drivers\vwifimp.sys [39936 2016-07-16] (Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
U3 idsvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-12-06 22:08 - 2016-12-06 22:08 - 00032948 _____ C:\Users\Bryan\Downloads\FRST.txt
2016-12-06 22:07 - 2016-12-06 22:08 - 00000000 ____D C:\FRST
2016-12-06 17:43 - 2016-12-06 17:43 - 02419712 _____ (Farbar) C:\Users\Bryan\Downloads\FRST64.exe
2016-12-05 15:34 - 2016-12-05 15:34 - 00000022 _____ C:\WINDOWS\S.dirmngr
2016-12-05 15:27 - 2016-12-05 15:27 - 00038804 _____ C:\Users\Bryan\Downloads\drivecleanup.zip
2016-12-05 14:16 - 2016-12-05 14:16 - 00038637 _____ C:\Users\Bryan\Downloads\MTB (1).txt
2016-12-05 14:11 - 2016-12-05 14:15 - 00038637 _____ C:\Users\Bryan\Downloads\MTB.txt
2016-12-05 14:10 - 2016-12-05 14:10 - 00892416 _____ (Farbar) C:\Users\Bryan\Downloads\MiniToolBox.exe
2016-12-04 09:53 - 2016-12-04 10:20 - 00000000 ____D C:\Users\Bryan\Downloads\[Furi] Avatar - The Last Airbender [720p] (Full 3 Seasons + Extras)
2016-11-30 09:57 - 2016-11-30 10:46 - 00018437 _____ C:\Users\Bryan\Desktop\christmas.odt
2016-11-26 22:17 - 2016-11-26 22:34 - 890868411 ____R C:\Users\Bryan\Downloads\Trading.Places.1983.720p.BluRay.850MB.ShAaNiG.com.mkv
2016-11-26 22:16 - 2016-11-26 22:21 - 00000000 ____D C:\Users\Bryan\Downloads\Life (1999) [1080p]
2016-11-26 22:16 - 2016-11-26 22:20 - 00000000 ____D C:\Users\Bryan\Downloads\Coming to America
2016-11-26 22:15 - 2016-11-26 22:28 - 00000000 ____D C:\Users\Bryan\Downloads\Police Academy (1984)
2016-11-18 22:37 - 2016-11-18 22:43 - 00000000 ____D C:\Users\Bryan\Downloads\Pacific Rim (2013) [1080p]
2016-11-16 10:29 - 2016-11-16 10:29 - 00000000 ____D C:\Users\Bryan\Downloads\Cloverfield (2008) [1080p]
2016-11-16 10:29 - 2016-11-16 10:29 - 00000000 ____D C:\Users\Bryan\Downloads\10 Cloverfield Lane 2016 1080p HDRip x264 AAC-JYK
2016-11-16 10:28 - 2016-11-16 10:41 - 00000000 ____D C:\Users\Bryan\Downloads\Ant-Man 2015 1080p BluRay x264 DTS-JYK
2016-11-10 22:55 - 2016-11-10 22:59 - 00000000 ____D C:\Users\Bryan\Downloads\[ www.Torrenting.com ] - Sweeny Todd The Demon Barber Of Fleet Street 2007 DVDRIP Xvid AC3-BHRG
2016-11-10 09:12 - 2016-11-10 09:34 - 00000000 ____D C:\Users\Bryan\Downloads\Guardians of the Galaxy (2014) [1080p]
2016-11-10 09:11 - 2016-11-10 09:14 - 00000000 ____D C:\Users\Bryan\Downloads\Star.Wars.Episode.VII.The.Force.Awakens.2015.1080p.BluRay.x264.DTS-JYK
2016-11-10 00:33 - 2016-11-02 07:01 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2016-11-10 00:33 - 2016-11-02 07:01 - 00315744 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-11-10 00:33 - 2016-11-02 06:22 - 01570672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-11-10 00:33 - 2016-11-02 06:22 - 00601712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2016-11-10 00:33 - 2016-11-02 06:20 - 00590960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-11-10 00:33 - 2016-11-02 06:13 - 01883784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-11-10 00:33 - 2016-11-02 06:13 - 00773720 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-11-10 00:33 - 2016-11-02 06:13 - 00423776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-11-10 00:33 - 2016-11-02 06:12 - 02255712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-11-10 00:33 - 2016-11-02 06:12 - 00376672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-11-10 00:33 - 2016-11-02 06:12 - 00341344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-11-10 00:33 - 2016-11-02 06:10 - 02323728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2016-11-10 00:33 - 2016-11-02 06:09 - 02257104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-11-10 00:33 - 2016-11-02 06:08 - 00602464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-11-10 00:33 - 2016-11-02 06:08 - 00576408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-11-10 00:33 - 2016-11-02 06:08 - 00186424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2016-11-10 00:33 - 2016-11-02 06:08 - 00111968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-11-10 00:33 - 2016-11-02 06:05 - 06657176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2016-11-10 00:33 - 2016-11-02 06:05 - 03892352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-11-10 00:33 - 2016-11-02 06:05 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-11-10 00:33 - 2016-11-02 06:05 - 00951904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-11-10 00:33 - 2016-11-02 06:05 - 00405856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-11-10 00:33 - 2016-11-02 06:04 - 04312248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-11-10 00:33 - 2016-11-02 06:03 - 02750936 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-11-10 00:33 - 2016-11-02 06:03 - 00714592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2016-11-10 00:33 - 2016-11-02 06:02 - 00682816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-11-10 00:33 - 2016-11-02 06:02 - 00238056 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2016-11-10 00:33 - 2016-11-02 06:01 - 01425000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2016-11-10 00:33 - 2016-11-02 06:01 - 01415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2016-11-10 00:33 - 2016-11-02 06:01 - 01263856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-11-10 00:33 - 2016-11-02 06:01 - 00545936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-11-10 00:33 - 2016-11-02 06:01 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\input.dll
2016-11-10 00:33 - 2016-11-02 06:00 - 22223968 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-11-10 00:33 - 2016-11-02 06:00 - 08156080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-11-10 00:33 - 2016-11-02 06:00 - 01274712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-11-10 00:33 - 2016-11-02 06:00 - 00534096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2016-11-10 00:33 - 2016-11-02 05:59 - 04673304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-11-10 00:33 - 2016-11-02 05:50 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-11-10 00:33 - 2016-11-02 05:49 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2016-11-10 00:33 - 2016-11-02 05:49 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-11-10 00:33 - 2016-11-02 05:48 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2016-11-10 00:33 - 2016-11-02 05:48 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2016-11-10 00:33 - 2016-11-02 05:47 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-11-10 00:33 - 2016-11-02 05:46 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2016-11-10 00:33 - 2016-11-02 05:44 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-11-10 00:33 - 2016-11-02 05:44 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthExt.dll
2016-11-10 00:33 - 2016-11-02 05:43 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-11-10 00:33 - 2016-11-02 05:43 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-11-10 00:33 - 2016-11-02 05:43 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2016-11-10 00:33 - 2016-11-02 05:42 - 00632832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2016-11-10 00:33 - 2016-11-02 05:42 - 00549376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenterCPL.dll
2016-11-10 00:33 - 2016-11-02 05:42 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2016-11-10 00:33 - 2016-11-02 05:42 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-11-10 00:33 - 2016-11-02 05:42 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2016-11-10 00:33 - 2016-11-02 05:40 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontext.dll
2016-11-10 00:33 - 2016-11-02 05:40 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-11-10 00:33 - 2016-11-02 05:39 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2016-11-10 00:33 - 2016-11-02 05:39 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2016-11-10 00:33 - 2016-11-02 05:39 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAnimation.dll
2016-11-10 00:33 - 2016-11-02 05:38 - 22563840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-11-10 00:33 - 2016-11-02 05:38 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2016-11-10 00:33 - 2016-11-02 05:37 - 19415040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-11-10 00:33 - 2016-11-02 05:36 - 19415552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-11-10 00:33 - 2016-11-02 05:36 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-11-10 00:33 - 2016-11-02 05:36 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetailsUpdate.dll
2016-11-10 00:33 - 2016-11-02 05:34 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-11-10 00:33 - 2016-11-02 05:33 - 12349952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-11-10 00:33 - 2016-11-02 05:33 - 03307520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-11-10 00:33 - 2016-11-02 05:32 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\efsext.dll
2016-11-10 00:33 - 2016-11-02 05:31 - 03196416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2016-11-10 00:33 - 2016-11-02 05:31 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-11-10 00:33 - 2016-11-02 05:31 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2016-11-10 00:33 - 2016-11-02 05:31 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRHelper.dll
2016-11-10 00:33 - 2016-11-02 05:31 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-11-10 00:33 - 2016-11-02 05:31 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2016-11-10 00:33 - 2016-11-02 05:31 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-11-10 00:33 - 2016-11-02 05:31 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-11-10 00:33 - 2016-11-02 05:30 - 12175360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-11-10 00:33 - 2016-11-02 05:30 - 09131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-11-10 00:33 - 2016-11-02 05:30 - 00567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-11-10 00:33 - 2016-11-02 05:30 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-11-10 00:33 - 2016-11-02 05:30 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-11-10 00:33 - 2016-11-02 05:30 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2016-11-10 00:33 - 2016-11-02 05:30 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2016-11-10 00:33 - 2016-11-02 05:30 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-11-10 00:33 - 2016-11-02 05:29 - 07469056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-11-10 00:33 - 2016-11-02 05:29 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-11-10 00:33 - 2016-11-02 05:29 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2016-11-10 00:33 - 2016-11-02 05:29 - 00884224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-11-10 00:33 - 2016-11-02 05:29 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2016-11-10 00:33 - 2016-11-02 05:29 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2016-11-10 00:33 - 2016-11-02 05:29 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2016-11-10 00:33 - 2016-11-02 05:29 - 00276992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-11-10 00:33 - 2016-11-02 05:29 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2016-11-10 00:33 - 2016-11-02 05:29 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSM.dll
2016-11-10 00:33 - 2016-11-02 05:28 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-11-10 00:33 - 2016-11-02 05:28 - 04423680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-11-10 00:33 - 2016-11-02 05:28 - 00807424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2016-11-10 00:33 - 2016-11-02 05:28 - 00690176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-11-10 00:33 - 2016-11-02 05:28 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenterCPL.dll
2016-11-10 00:33 - 2016-11-02 05:28 - 00432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2016-11-10 00:33 - 2016-11-02 05:28 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCenter.dll
2016-11-10 00:33 - 2016-11-02 05:28 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-11-10 00:33 - 2016-11-02 05:28 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2016-11-10 00:33 - 2016-11-02 05:28 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2016-11-10 00:33 - 2016-11-02 05:28 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2016-11-10 00:33 - 2016-11-02 05:28 - 00240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-11-10 00:33 - 2016-11-02 05:28 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-11-10 00:33 - 2016-11-02 05:28 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chartv.dll
2016-11-10 00:33 - 2016-11-02 05:28 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-11-10 00:33 - 2016-11-02 05:28 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-11-10 00:33 - 2016-11-02 05:27 - 23677952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-11-10 00:33 - 2016-11-02 05:27 - 02458112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2016-11-10 00:33 - 2016-11-02 05:27 - 01388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-11-10 00:33 - 2016-11-02 05:27 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2016-11-10 00:33 - 2016-11-02 05:27 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-11-10 00:33 - 2016-11-02 05:27 - 00580608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2016-11-10 00:33 - 2016-11-02 05:27 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2016-11-10 00:33 - 2016-11-02 05:27 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-11-10 00:33 - 2016-11-02 05:27 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2016-11-10 00:33 - 2016-11-02 05:27 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-11-10 00:33 - 2016-11-02 05:26 - 02747392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2016-11-10 00:33 - 2016-11-02 05:26 - 02484736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2016-11-10 00:33 - 2016-11-02 05:26 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-11-10 00:33 - 2016-11-02 05:26 - 00912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2016-11-10 00:33 - 2016-11-02 05:26 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-11-10 00:33 - 2016-11-02 05:26 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2016-11-10 00:33 - 2016-11-02 05:26 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2016-11-10 00:33 - 2016-11-02 05:26 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2016-11-10 00:33 - 2016-11-02 05:26 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2016-11-10 00:33 - 2016-11-02 05:26 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-11-10 00:33 - 2016-11-02 05:25 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2016-11-10 00:33 - 2016-11-02 05:25 - 01556480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-11-10 00:33 - 2016-11-02 05:25 - 00956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-11-10 00:33 - 2016-11-02 05:25 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2016-11-10 00:33 - 2016-11-02 05:25 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2016-11-10 00:33 - 2016-11-02 05:25 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-11-10 00:33 - 2016-11-02 05:24 - 00940032 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontext.dll
2016-11-10 00:33 - 2016-11-02 05:23 - 03106304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2016-11-10 00:33 - 2016-11-02 05:23 - 02104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-11-10 00:33 - 2016-11-02 05:23 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2016-11-10 00:33 - 2016-11-02 05:23 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetailsUpdate.dll
2016-11-10 00:33 - 2016-11-02 05:22 - 13441024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-11-10 00:33 - 2016-11-02 05:22 - 13081600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-11-10 00:33 - 2016-11-02 05:22 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-11-10 00:33 - 2016-11-02 05:22 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-11-10 00:33 - 2016-11-02 05:21 - 05111296 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-11-10 00:33 - 2016-11-02 05:21 - 00942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-11-10 00:33 - 2016-11-02 05:20 - 02273792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-11-10 00:33 - 2016-11-02 05:20 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2016-11-10 00:33 - 2016-11-02 05:19 - 08127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-11-10 00:33 - 2016-11-02 05:19 - 08075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-11-10 00:33 - 2016-11-02 05:19 - 01586176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-11-10 00:33 - 2016-11-02 05:19 - 00981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-11-10 00:33 - 2016-11-02 05:19 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2016-11-10 00:33 - 2016-11-02 05:19 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll
2016-11-10 00:33 - 2016-11-02 05:19 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\chartv.dll
2016-11-10 00:33 - 2016-11-02 05:19 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-11-10 00:33 - 2016-11-02 05:18 - 01690112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-11-10 00:33 - 2016-11-02 05:18 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2016-11-10 00:33 - 2016-11-02 05:18 - 00836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2016-11-10 00:33 - 2016-11-02 05:18 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2016-11-10 00:33 - 2016-11-02 05:17 - 04746752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-11-10 00:33 - 2016-11-02 05:17 - 01282048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-11-10 00:33 - 2016-11-02 05:17 - 00982528 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-11-10 00:33 - 2016-11-02 05:17 - 00909824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-11-10 00:33 - 2016-11-02 05:17 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2016-11-10 00:33 - 2016-11-02 05:17 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2016-11-10 00:33 - 2016-11-02 05:16 - 03400192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2016-11-10 00:33 - 2016-11-02 05:16 - 03133440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2016-11-10 00:33 - 2016-11-02 05:16 - 02688512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-11-10 00:33 - 2016-11-02 05:16 - 02669056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-11-10 00:33 - 2016-11-02 05:16 - 02512384 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-11-10 00:33 - 2016-11-02 05:16 - 01779712 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-11-10 00:33 - 2016-11-02 05:16 - 01637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-11-10 00:33 - 2016-11-02 05:16 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-11-10 00:33 - 2016-11-02 05:16 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-11-10 00:33 - 2016-11-02 05:16 - 00770560 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-11-10 00:33 - 2016-11-02 05:16 - 00629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2016-11-10 00:33 - 2016-11-02 05:16 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2016-11-10 00:33 - 2016-11-02 05:16 - 00308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2016-11-10 00:33 - 2016-11-02 05:15 - 04708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-11-10 00:33 - 2016-11-02 05:15 - 02611200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-11-10 00:33 - 2016-11-02 05:15 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-11-10 00:33 - 2016-11-02 05:15 - 01348608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-11-10 00:33 - 2016-11-02 05:15 - 00842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-11-10 00:33 - 2016-11-02 05:15 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2016-11-10 00:33 - 2016-11-02 05:14 - 01726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-11-10 00:33 - 2016-11-02 05:13 - 03496960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2016-11-10 00:33 - 2016-11-02 05:13 - 03299840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2016-11-10 00:33 - 2016-11-02 05:13 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2016-11-10 00:33 - 2016-11-02 03:20 - 00446896 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-11-10 00:33 - 2016-08-01 23:30 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-11-10 00:32 - 2016-11-02 06:20 - 00378720 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-11-10 00:32 - 2016-11-02 06:15 - 01051112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-11-10 00:32 - 2016-11-02 06:15 - 00894096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-11-10 00:32 - 2016-11-02 06:14 - 07816544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-11-10 00:32 - 2016-11-02 06:13 - 01354320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-11-10 00:32 - 2016-11-02 06:13 - 01173496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-11-10 00:32 - 2016-11-02 06:05 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-11-10 00:32 - 2016-11-02 06:04 - 02678056 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-11-10 00:32 - 2016-11-02 06:04 - 00596832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2016-11-10 00:32 - 2016-11-02 06:02 - 00848736 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-11-10 00:32 - 2016-11-02 06:02 - 00148832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-11-10 00:32 - 2016-11-02 06:01 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-11-10 00:32 - 2016-11-02 06:00 - 04130432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-11-10 00:32 - 2016-11-02 06:00 - 01061968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-11-10 00:32 - 2016-11-02 05:56 - 01609920 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2016-11-10 00:32 - 2016-11-02 05:56 - 01572768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2016-11-10 00:32 - 2016-11-02 05:56 - 01418312 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-11-10 00:32 - 2016-11-02 05:56 - 00628552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-11-10 00:32 - 2016-11-02 05:56 - 00322912 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2016-11-10 00:32 - 2016-11-02 05:55 - 00048992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\iorate.sys
2016-11-10 00:32 - 2016-11-02 05:48 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efsext.dll
2016-11-10 00:32 - 2016-11-02 05:47 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2016-11-10 00:32 - 2016-11-02 05:47 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRHelper.dll
2016-11-10 00:32 - 2016-11-02 05:46 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2016-11-10 00:32 - 2016-11-02 05:45 - 00492032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2016-11-10 00:32 - 2016-11-02 05:45 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2016-11-10 00:32 - 2016-11-02 05:45 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
2016-11-10 00:32 - 2016-11-02 05:44 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2016-11-10 00:32 - 2016-11-02 05:43 - 00731136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8.dll
2016-11-10 00:32 - 2016-11-02 05:43 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll
2016-11-10 00:32 - 2016-11-02 05:42 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-11-10 00:32 - 2016-11-02 05:42 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2016-11-10 00:32 - 2016-11-02 05:41 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2016-11-10 00:32 - 2016-11-02 05:40 - 00548352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2016-11-10 00:32 - 2016-11-02 05:35 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinfo32.exe
2016-11-10 00:32 - 2016-11-02 05:34 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-11-10 00:32 - 2016-11-02 05:33 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-11-10 00:32 - 2016-11-02 05:32 - 00045056 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-11-10 00:32 - 2016-11-02 05:31 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-11-10 00:32 - 2016-11-02 05:31 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-11-10 00:32 - 2016-11-02 05:30 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2016-11-10 00:32 - 2016-11-02 05:29 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-11-10 00:32 - 2016-11-02 05:29 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-11-10 00:32 - 2016-11-02 05:28 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-11-10 00:32 - 2016-11-02 05:28 - 00321024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkUXBroker.dll
2016-11-10 00:32 - 2016-11-02 05:28 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-11-10 00:32 - 2016-11-02 05:26 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-11-10 00:32 - 2016-11-02 05:26 - 01595392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-11-10 00:32 - 2016-11-02 05:26 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-11-10 00:32 - 2016-11-02 05:26 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAnimation.dll
2016-11-10 00:32 - 2016-11-02 05:25 - 02256384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-11-10 00:32 - 2016-11-02 05:25 - 00772608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2016-11-10 00:32 - 2016-11-02 05:24 - 03778560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-11-10 00:32 - 2016-11-02 05:23 - 02356736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2016-11-10 00:32 - 2016-11-02 05:23 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2016-11-10 00:32 - 2016-11-02 05:22 - 00369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinfo32.exe
2016-11-10 00:32 - 2016-11-02 05:16 - 04148736 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-11-10 00:32 - 2016-11-02 05:16 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-11-10 00:32 - 2016-11-02 05:16 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-11-10 00:32 - 2016-11-02 05:15 - 03616768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-11-10 00:32 - 2016-11-02 04:11 - 00788624 _____ C:\WINDOWS\SysWOW64\locale.nls
2016-11-10 00:32 - 2016-11-02 04:11 - 00788624 _____ C:\WINDOWS\system32\locale.nls
2016-11-07 10:01 - 2016-11-07 10:01 - 00002087 _____ C:\Users\Bryan\.recently-used.xbel
2016-11-07 09:40 - 2016-11-07 09:40 - 00176394 _____ C:\Users\Bryan\Downloads\jellyka_le_grand_saut.zip
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-12-06 22:08 - 2016-02-14 19:02 - 00002185 _____ C:\WINDOWS\BRRBCOM.INI
2016-12-06 22:04 - 2016-08-09 07:24 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-12-06 17:45 - 2016-03-09 09:17 - 00000000 ____D C:\Users\Bryan\AppData\LocalLow\360WD
2016-12-06 17:37 - 2016-07-16 06:47 - 00000000 ___HD C:\Program Files\WindowsApps
2016-12-06 17:37 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-12-06 17:33 - 2016-08-09 07:32 - 00000000 ____D C:\Users\Bryan
2016-12-06 08:13 - 2012-07-05 10:25 - 00000000 ____D C:\Users\Bryan\Desktop\Important stuff
2016-12-06 08:11 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-12-05 21:58 - 2016-06-05 23:35 - 00001226 _____ C:\Users\Public\Desktop\360 Total Security.lnk
2016-12-05 21:58 - 2016-03-09 09:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\360 Security Center
2016-12-05 19:45 - 2010-04-01 12:17 - 00000000 ____D C:\Users\Bryan\AppData\Roaming\Skype
2016-12-05 15:34 - 2016-08-09 07:54 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-12-05 15:34 - 2016-08-09 07:27 - 00000000 ____D C:\ProgramData\NVIDIA
2016-12-05 15:33 - 2016-07-16 01:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2016-12-05 15:32 - 2013-10-14 20:15 - 00000000 ____D C:\Users\Bryan\Desktop\Jennifer
2016-12-05 15:32 - 2011-07-22 10:13 - 00000000 ____D C:\Users\Bryan\Desktop\Games
2016-12-05 11:05 - 2010-03-31 11:03 - 00000000 ____D C:\Users\Bryan\.gimp-2.6
2016-12-05 09:01 - 2010-04-01 12:17 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-12-05 09:01 - 2010-04-01 12:17 - 00000000 ____D C:\ProgramData\Skype
2016-12-05 00:16 - 2014-01-21 17:47 - 00000000 ____D C:\Users\Bryan\AppData\Local\Battle.net
2016-12-04 19:09 - 2014-01-21 17:47 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-12-04 13:05 - 2010-04-14 22:00 - 00000000 ____D C:\Users\Bryan\AppData\Roaming\Azureus
2016-12-04 13:05 - 2010-03-31 10:57 - 00000000 ____D C:\Users\Bryan\AppData\Roaming\uTorrent
2016-12-03 15:05 - 2010-05-01 19:04 - 00000000 ____D C:\Users\Bryan\AppData\Roaming\vlc
2016-12-03 07:52 - 2015-11-09 10:21 - 00000000 ____D C:\Users\Bryan\Desktop\Pics
2016-12-01 00:47 - 2014-01-21 17:49 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2016-12-01 00:40 - 2016-04-17 22:04 - 00000000 ____D C:\Program Files (x86)\Overwatch
2016-11-26 18:01 - 2016-07-16 20:51 - 00044552 _____ C:\Users\Bryan\Desktop\Budget.ods
2016-11-25 16:41 - 2015-09-10 20:19 - 00039044 _____ C:\Users\Bryan\Desktop\2016 Ledger.ods
2016-11-25 07:35 - 2016-03-09 09:17 - 00339456 _____ (360.cn) C:\WINDOWS\system32\Drivers\360Box64.sys
2016-11-25 07:35 - 2016-03-09 09:17 - 00095232 _____ (360.cn) C:\WINDOWS\SysWOW64\Drivers\360AvFlt.sys
2016-11-21 15:59 - 2015-09-24 11:39 - 00000000 ____D C:\Users\Bryan\AppData\Local\Packages
2016-11-15 21:09 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\rescache
2016-11-15 20:48 - 2013-09-23 13:30 - 00002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-11 09:55 - 2016-08-09 07:31 - 01283468 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-11-11 09:17 - 2016-07-16 06:45 - 00000000 ____D C:\WINDOWS\INF
2016-11-10 22:52 - 2015-09-10 00:42 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-11-10 22:50 - 2016-08-09 07:24 - 00243520 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-11-10 22:50 - 2013-05-16 09:31 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-11-10 12:48 - 2016-07-16 06:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-11-10 12:48 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-11-10 12:48 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-11-10 12:48 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-11-10 12:48 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-11-10 12:48 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-11-10 12:18 - 2016-07-16 06:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-11-09 12:07 - 2013-07-18 12:39 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-11-09 12:04 - 2010-04-03 22:30 - 141011376 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-11-09 00:05 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-11-09 00:05 - 2016-07-16 06:47 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-11-08 00:30 - 2016-10-24 22:02 - 00000232 _____ C:\Users\Bryan\Desktop\STUFF.txt
2016-11-07 10:01 - 2010-03-31 11:04 - 00000000 ____D C:\Users\Bryan\AppData\Roaming\gtk-2.0
==================== Files in the root of some directories =======
2010-04-13 11:01 - 2010-05-29 18:01 - 0000004 _____ () C:\Users\Bryan\AppData\Roaming\FC0951
2010-04-13 11:01 - 2010-05-29 18:01 - 0870128 _____ () C:\Users\Bryan\AppData\Roaming\mcs.rma
2014-12-13 23:46 - 2014-12-13 23:46 - 0000064 _____ () C:\Users\Bryan\AppData\Local\96c19848fb4b5725e3dad3b802ffd897
2010-05-22 21:20 - 2010-05-22 21:20 - 0000600 _____ () C:\Users\Bryan\AppData\Local\PUTTY.RND
2012-08-15 21:59 - 2012-09-22 02:21 - 0000044 ___SH () C:\ProgramData\.zreglib
2010-04-01 12:18 - 2010-04-01 12:18 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
Some files in TEMP:
====================
C:\Users\Bryan\AppData\Local\Temp\i4jdel0.exe
C:\Users\Bryan\AppData\Local\Temp\SkypeSetup.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-11-30 21:21
==================== End of FRST.txt ============================
ADDITION.txt
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-12-2016
Ran by Bryan (06-12-2016 22:09:15)
Running from C:\Users\Bryan\Downloads
Windows 10 Home Version 1607 (X64) (2016-08-09 13:01:39)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3534269808-1485983137-1280583553-500 - Administrator - Disabled)
Bryan (S-1-5-21-3534269808-1485983137-1280583553-1000 - Administrator - Enabled) => C:\Users\Bryan
DefaultAccount (S-1-5-21-3534269808-1485983137-1280583553-503 - Limited - Disabled)
Guest (S-1-5-21-3534269808-1485983137-1280583553-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3534269808-1485983137-1280583553-1002 - Limited - Enabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: 360 Total Security (Enabled - Up to date) {0371CA44-3F80-A1D3-BECE-910620B58D50}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: 360 Total Security (Enabled - Up to date) {B8102BA0-19BA-AE5D-847E-AA745B32C7ED}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\uTorrent) (Version: 3.4.9.42973 - BitTorrent Inc.)
360 Total Security (HKLM-x32\...\360TotalSecurity) (Version: 9.0.0.1069 - 360 Security Center)
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - )
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 23.0.0.257 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.207 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.8.638 - Adobe Systems, Inc.)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
AMD Catalyst Install Manager (HKLM\...\{9AB0D5B6-4779-8C4F-CA91-A1FEDB56D7EC}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.)
And Yet It Moves 1.2.0 (HKLM-x32\...\{0CA6F2DA-0DCB-4627-8A0C-858E3833769F}_is1) (Version: - Broken Rules)
Apple Application Support (HKLM-x32\...\{63EC2120-1742-4625-AA47-C6A8AEC9C64C}) (Version: 2.2.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{7446FE8D-C1F9-4D42-AAAE-5DBCE58605A6}) (Version: 6.0.0.59 - Apple Inc.)
AppLogLibSetup (x32 Version: 1.0.2.0 - Brother Industries Ltd.) Hidden
ATI AVIVO64 Codecs (Version: 11.6.0.51125 - ATI Technologies Inc.) Hidden
ATI Problem Report Wizard (Version: 3.0.804.0 - ATI Technologies) Hidden
AutoREALM Version 2.2.1 (HKLM-x32\...\AutoREALM_is1) (Version: - )
AviSynth 2.5 (HKLM-x32\...\AviSynth) (Version: - )
Bastion (HKLM-x32\...\Bastion_is1) (Version: - )
Bastion (HKLM-x32\...\Steam App 107100) (Version: - Supergiant Games)
Batman: Arkham Asylum (HKLM-x32\...\{4E79A60F-15D2-4BEC-91AD-E41EC42E61B0}) (Version: 1.0.0.0 - Eidos Inc/Warner Brothers)
Batman: Arkham City™ (HKLM-x32\...\Steam App 57400) (Version: - Rocksteady)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Borderlands 2 (HKLM-x32\...\Borderlands 2_is1) (Version: - )
Braid (Version 1.015) (HKLM-x32\...\Braid_is1) (Version: - )
BrLauncher (x32 Version: 1.1.6.0 - Brother Industries Ltd.) Hidden
BrLogRx (x32 Version: 1.0.1.1 - Brother Industries Ltd.) Hidden
Brother PCFax Driver (x32 Version: 1.4.0.0 - Brother Industries Ltd.) Hidden
Brother Printer Driver (x32 Version: 1.1.0.0 - Brother Industries Ltd.) Hidden
Brother Scanner Driver (x32 Version: 1.0.5.2 - Brother Industries Ltd.) Hidden
BrotherHelpInstaller (x32 Version: 1.0.0.0 - Brother) Hidden
Browser Configuration Utility (HKLM-x32\...\{5B363E1D-8C36-4458-BAE4-D5081999E094}) (Version: 1.1.11.0 - DeviceVM) <==== ATTENTION
Browser Extensions (HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\{3A787631-66A2-4634-B928-A37E73B58FB6}) (Version: 2.8.8.11 - Spigot, Inc.) <==== ATTENTION
BrSupportTools (x32 Version: 1.0.9.0 - Brother Industries Ltd.) Hidden
Castle Crashers (HKLM-x32\...\Steam App 204360) (Version: - The Behemoth)
Character Builder (HKLM-x32\...\{626C034B-50B8-47BD-AF93-EEFD0FA78FF4}) (Version: 1.10.0000 - Wizards of the Coast)
Cities in Motion 2 (HKLM-x32\...\Steam App 225420) (Version: - Colossal Order Ltd.)
Citrix online plug-in - web (HKLM-x32\...\CitrixOnlinePluginPackWeb) (Version: 12.0.0.6410 - Citrix Systems, Inc.)
Cockatrice (HKLM-x32\...\Cockatrice) (Version: - )
Cogs (HKLM-x32\...\Cogs) (Version: - )
ControlCenter4 (x32 Version: 4.2.438.1 - Brother Insutries Ltd.) Hidden
ControlCenter4 CSDK (x32 Version: 4.2.3.1 - Brother Insutries Ltd.) Hidden
CPUID CPU-Z 1.75 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
Crayon Physics Deluxe version 55 (HKLM-x32\...\{4CA1E8E2-B2A9-40C1-8EC4-BBCB23BAAA19}_is1) (Version: 55 - Kloonigames, Ltd)
Crypt of the NecroDancer (HKLM-x32\...\Steam App 247080) (Version: - Brace Yourself Games)
Darksiders (HKLM-x32\...\Steam App 50620) (Version: - Vigil Games)
DeviceDetect (x32 Version: 1.0.3.4 - Brother Industries Ltd.) Hidden
DFOLauncher (HKLM-x32\...\DFO) (Version: - )
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Diablo III Beta (HKLM-x32\...\Diablo III Beta) (Version: 0.11.0.9359 - Blizzard Entertainment)
Discord (HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\Discord) (Version: 0.0.296 - Hammer & Chisel, Inc.)
D-Link AirPlus G Wireless LAN Adapter (HKLM-x32\...\{111B8587-C888-4B7B-A20D-8CC767437A90}) (Version: - )
Dolphin x86 (HKLM-x32\...\Dolphin x86) (Version: 4.0.2 - Dolphin Development Team)
Dropbox (HKLM-x32\...\Dropbox) (Version: 3.14.7 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.27.35 - Dropbox, Inc.) Hidden
Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD)
Epic Games Launcher (HKLM-x32\...\{F9E7706A-FCFE-40D2-9B58-45567B3E1F3F}) (Version: 1.1.69.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Far Cry® 3 Blood Dragon (HKLM-x32\...\Steam App 233270) (Version: - Ubisoft Montreal)
FocalBlade 2.0 Demo Plugin (HKLM-x32\...\FocalBlade 2.0 Demo Plugin_is1) (Version: - The Plugin Site)
Gameforge Live 2.0.11 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.11 - Gameforge)
GameVox 0.18.4.56 (HKLM-x32\...\{d1b6d93c-44b5-4130-bff4-95c9b6d141d3}) (Version: 0.18.4.56 - GameVox LLC)
GameVox 0.18.4.56 (x32 Version: 0.18.4.56 - GameVox LLC) Hidden
Gauntlet™ (HKLM-x32\...\Steam App 258970) (Version: - Arrowhead Game Studios)
Gigantic Installer (HKLM-x32\...\{fb714f96-ecf3-484b-b780-edbd9e241da7}) (Version: 1.0.0.2 - Motiga Inc.)
Gigantic Launcher (64-bit) (Version: 1.3.0.1 - Motiga Inc.) Hidden
GIMP 2.6.8 (HKLM-x32\...\WinGimp-2.0_is1) (Version: - )
Glyph (HKLM-x32\...\Glyph) (Version: - Trion Worlds, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.99 - Google Inc.)
Google Earth Plug-in (HKLM-x32\...\{57BB4801-61C8-4E74-9672-2160728A461E}) (Version: 7.1.5.1557 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Gpg4win (2.1.0) (HKLM-x32\...\GPG4Win) (Version: 2.1.0 - The Gpg4win Project)
Grey Cubes (HKLM-x32\...\Steam App 371500) (Version: - Deion Mobile)
GTK+ Runtime 2.14.7 rev a (remove only) (HKLM-x32\...\GTK 2.0) (Version: - )
Guacamelee! Gold Edition (HKLM-x32\...\Steam App 214770) (Version: - DrinkBox Studios)
Guardians of Graxia (HKLM-x32\...\Steam App 90500) (Version: - )
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
HEX 1.0 (HKLM-x32\...\{6EDED3CB-CAC5-4200-A534-CCA1732EAF23}_is1) (Version: 1.0 - Gameforge4d)
Hextech Repair Tool (HKLM-x32\...\{7F9A97E6-E666-11E5-B582-B88687E82322}) (Version: 1.0.16 - Riot Games, Inc.)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
HowToGuide (x32 Version: 1.0.1.0 - Brother Industries Ltd.) Hidden
HP Button Manager (HKLM-x32\...\{7390FC95-D842-448A-A3A2-C8DC89AEB83A}) (Version: 1.6.0.0 - Hewlett-Packard)
HP Webcam User's Guide (HKLM-x32\...\{D31612BB-C6D7-4142-96AE-16DB062354CF}) (Version: - Hewlett-Packard)
HydraVision (x32 Version: 4.2.184.0 - ATI Technologies Inc.) Hidden
InFlac 1.1.1 (HKLM-x32\...\InFlac) (Version: 1.1.1 - Michael Facquet)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
iTunes (HKLM\...\{1493B2AE-0261-47D2-B1AA-F4DAD0F6C48B}) (Version: 10.7.0.21 - Apple Inc.)
Jamestown: Legend of the Lost Colony (HKLM-x32\...\{DC76D52B-1266-4A73-9020-02694193B907}) (Version: 1.0.1 - Final Form Games)
Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
Landmark Beta (HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\SOE-Landmark Beta) (Version: 1.0.3.183 - Sony Online Entertainment)
Launcher Prerequisites (x64) (x32 Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 1.0020 - Riot Games) Hidden
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
LOOT (HKLM-x32\...\LOOT) (Version: 0.7.0 - LOOT Development Team)
Magic Duels (HKLM-x32\...\Steam App 316010) (Version: - Stainless Games Ltd.)
Magicka (HKLM-x32\...\Steam App 42910) (Version: - Arrowhead Game Studios)
MechWarrior Online (HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\{74d11f91-05cc-44f6-8e49-94fe7f33c79b}) (Version: 1.2.0.0 - Piranha Games Inc.)
MechWarrior Online (x32 Version: 1.2.0.0 - Piranha Games Inc.) Hidden
Media Player Classic - Home Cinema v1.5.2.3456 (HKLM-x32\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.5.2.3456 - MPC-HC Team)
Metal Slug 3 (HKLM-x32\...\Steam App 250180) (Version: - DotEmu)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft IntelliPoint 8.2 (HKLM\...\Microsoft IntelliPoint 8.2) (Version: 8.20.468.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (HKLM\...\{EE936C7A-EA40-31D5-9B65-8E3E089C3828}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 (HKLM-x32\...\{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}) (Version: 9.0.21022.218 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 RC Redistributable (x64) - 14.0.22816 (HKLM-x32\...\{e2495eb6-cca8-47aa-91ea-3410ca44d7b7}) (Version: 14.0.22816.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Middle-earth: Shadow of Mordor (HKLM\...\Steam App 241930) (Version: - Monolith Productions, Inc.)
Minimum (HKLM-x32\...\Steam App 214190) (Version: - Human Head Studios)
Mozilla Firefox 45.0.2 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 45.0.2 (x86 en-US)) (Version: 45.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 45.0.2 - Mozilla)
MTX (HKLM-x32\...\{6583D00E-0924-4950-8BE9-5D09FE70B333}) (Version: 1.0.0 - mektek.net)
Mumble 1.2.16 (HKLM-x32\...\{8C0C80AA-EA4D-4461-8B73-15A3A27F7D98}) (Version: 1.2.16 - Thorvald Natvig)
Natural Color Pro (HKLM-x32\...\{FC2C7405-BC58-4E11-8F51-29671BEAC06B}) (Version: 1.00.0005 - )
NetworkRepairTool (x32 Version: 1.2.11.0 - Brother Insutries Ltd.) Hidden
Nexon Game Manager (HKLM-x32\...\{EA2DB6E0-72C5-4ef9-A3A0-E6705F4A6A9E}) (Version: - )
NVIDIA 3D Vision Controller Driver 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 364.72 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 364.72 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.2.46 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.2.46 - NVIDIA Corporation)
NVIDIA Graphics Driver 364.72 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 364.72 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Oblivion (HKLM-x32\...\{35CB6715-41F8-4F99-8881-6FC75BF054B0}) (Version: 1.00.0000 - Bethesda Softworks)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice.org 3.4.1 (HKLM-x32\...\{9F1F2AEA-C72A-4DD6-991E-C5506A5625E4}) (Version: 3.41.9593 - Apache Software Foundation)
Orcs Must Die! (HKLM-x32\...\Steam App 102600) (Version: - Robot Entertainment)
Origin (HKLM-x32\...\Origin) (Version: 8.5.0.4554 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Path of Exile (HKLM-x32\...\{90A4562F-D4A1-4B65-906D-41F236CF6902}) (Version: 1.0.0.29375 - Grinding Gear Games)
PC-FAXReceive (x32 Version: 1.3.8.0 - Brother Insutries Ltd.) Hidden
PCFaxTx (x32 Version: 1.0.4.5 - Brother Industries Ltd.) Hidden
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2-r4600) (Version: - )
PicPick (HKLM-x32\...\PicPick) (Version: 2.3.0 - Wiziple)
Pidgin (HKLM-x32\...\Pidgin) (Version: 2.6.6 - )
Portal (HKLM-x32\...\Steam App 400) (Version: - Valve)
PowerISO (HKLM-x32\...\PowerISO) (Version: 5.9 - Power Software Ltd)
Project64 1.6 (HKLM-x32\...\{9559F7CA-5E34-4237-A2D9-D856464AD727}) (Version: 1.6 - Project64)
Psychonauts Demo (HKLM-x32\...\Steam App 3840) (Version: - Double Fine)
Puzzle Bots v1.0 (HKLM-x32\...\{12B839E5-8271-4888-B19F-4811A8D8770F}_is1) (Version: - Wadjet Eye Games)
Quantum Conundrum (HKLM-x32\...\Steam App 200010) (Version: - Airtight Games)
QuickTime (HKLM-x32\...\{0E64B098-8018-4256-BA23-C316A43AD9B0}) (Version: 7.72.80.56 - Apple Inc.)
RaidCall (HKLM-x32\...\RaidCall) (Version: 7.3.0-1.0.10926.49 - raidcall.com)
Realtek Ethernet Controller Driver For Windows Vista and Later (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0009 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5973 - Realtek Semiconductor Corp.)
RemoteSetup (x32 Version: 3.8.0.0 - Brother Industries Ltd.) Hidden
Reus (HKLM-x32\...\{D991ED13-3BDE-40B9-9C7D-C459E342C0D5}_is1) (Version: 1.3.1.0 - Abbey Games)
Rise of the Tomb Raider (HKLM\...\Steam App 391220) (Version: - Crystal Dynamics)
Saints Row IV (HKLM-x32\...\Steam App 206420) (Version: - Deep Silver Volition)
Samsung Data Migration (HKLM-x32\...\{3B304604-0BF5-488E-AB95-F2F2E31206F3}) (Version: 3.0 - Samsung)
Sanctum (HKLM-x32\...\Steam App 91600) (Version: - Coffee Stain Studios)
ScannerUtilityInstaller (x32 Version: 1.0.0.0 - Brother) Hidden
Shadowgrounds 1.05b (HKLM-x32\...\Shadowgrounds_is1) (Version: - Frozenbyte, Inc.)
Shadowrun Returns (HKLM-x32\...\Shadowrun Returns_is1) (Version: - Harebrained Holdings)
Shadowrun Returns (HKLM-x32\...\Steam App 234650) (Version: - Harebrained Schemes)
Shadowrun: Dragonfall - Director's Cut (HKLM-x32\...\Steam App 300550) (Version: - Harebrained Schemes)
Shadowrun: Hong Kong - Extended Edition (HKLM-x32\...\Steam App 346940) (Version: - Harebrained Schemes)
Shatter (HKLM-x32\...\{84D008A6-8159-442E-8FD8-0148EF42F3E0}) (Version: 1.0.5 - Sidhe Interactive)
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.2.46 - NVIDIA Corporation) Hidden
Skype Click to Call (HKLM-x32\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 6.9.12585 - Skype Technologies S.A.)
Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.)
Smite (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF017}) (Version: 2.12.2920.4 - Hi-Rez Studios)
SPORE™ (HKLM-x32\...\{9DF0196F-B6B8-4C3A-8790-DE42AA530101}) (Version: 1.00.0000 - Electronic Arts)
Spotify (HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\Spotify) (Version: 0.9.10.22.gf87988f9 - Spotify AB)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
Starbound (HKLM-x32\...\Steam App 211820) (Version: - )
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
StatusMonitor (x32 Version: 1.12.4.0 - Brother Insutries Ltd.) Hidden
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Switch Sound File Converter (HKLM-x32\...\Switch) (Version: - NCH Software)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System Requirements Lab (HKLM-x32\...\{9E1BAB75-EB78-440D-94C0-A3857BE2E733}) (Version: 4.1.71.0 - Husdawg, LLC)
Tales of Zestiria (HKLM\...\Steam App 351970) (Version: - BANDAI NAMCO Studio Inc.)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
Terraria (HKLM-x32\...\Steam App 105600) (Version: - )
Terrorhedron (HKLM-x32\...\Steam App 299720) (Version: - Dan Walters)
The Darkness II (HKLM-x32\...\The Darkness II_is1) (Version: - )
The Elder Scrolls V Skyrim Dragonborn (c) Bethesda Softworks version 1 (HKLM-x32\...\The Elder Scrolls V Skyrim Dragonborn (c) Bethes~300CD4A2_is1) (Version: 1 - )
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios)
The Stanley Parable (HKLM-x32\...\Steam App 221910) (Version: - Galactic Cafe)
The Wolf Among Us (HKLM-x32\...\Steam App 250320) (Version: - )
Transistor (HKLM-x32\...\Steam App 237930) (Version: - Supergiant Games)
Trine 1.09 (HKLM-x32\...\Trine_is1) (Version: - Frozenbyte, Inc.)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Uplay (HKLM-x32\...\Uplay) (Version: 2.1 - Ubisoft)
UsbRepairTool (x32 Version: 1.4.0.0 - Brother Insutries Ltd.) Hidden
Ventrilo Client (HKLM-x32\...\{789289CA-F73A-4A16-A331-54D498CE069F}) (Version: 3.0.5 - Flagship Industries, Inc.)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: - Elaborate Bytes)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.5.1 (HKLM\...\VulkanRT1.0.5.1) (Version: 1.0.5.1 - LunarG, Inc.)
Vuze (HKLM-x32\...\8461-7759-5462-8226) (Version: 5.7.2.0 - Azureus Software, Inc.)
Vuze Remote Toolbar v9.9 (HKLM-x32\...\{4B969F2F-E383-4EBD-8B34-EDA2D737D096}) (Version: 9.9 - Spigot, Inc.) <==== ATTENTION
VVVVVV version 2.0 (HKLM-x32\...\{C39601A7-9FF4-4148-A41B-93181E35D122}_is1) (Version: 2.0 - Terry Cavanagh)
WinDirStat 1.1.2 (HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\WinDirStat) (Version: - )
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR archiver (HKLM\...\WinRAR archiver) (Version: - )
wolfman-x (HKLM-x32\...\wolfman-x) (Version: - )
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {00C6896E-B9B8-41AE-A29A-21736796C03D} - System32\Tasks\{C5EF7A5E-A71D-4612-B1EF-EF01324E83B7} => pcalua.exe -a C:\Users\Bryan\Downloads\XBOX360Eng.exe -d C:\Users\Bryan\Downloads
Task: {05B1E339-F4C9-4517-B722-89D06C5F9283} - System32\Tasks\{45B9A611-6A72-478B-8D97-9CA8C093E8C9} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{4E79A60F-15D2-4BEC-91AD-E41EC42E61B0}\setup.exe" -c -runfromtemp -l0x0009 -removeonly
Task: {0CB7E6D1-1090-416D-B413-5ABAA6A9A786} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {122B7A12-C9DB-4645-A1D8-1EED56795338} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {157B46F2-A7BC-4E9B-8A8B-DCF1469CB341} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {17FF28B4-01CF-48DF-9FD3-9D44C98FAE58} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {186653D0-2616-474D-822A-BA7717C06468} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1BD4D10D-0E13-4A44-B061-7748355BA825} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {265F771F-4B79-4DA7-AC8C-4FD4EBBB4C26} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-08-24] (Dropbox, Inc.)
Task: {27FF1ACE-77AE-4DD2-ABC4-63AC7824A216} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {29F34EC9-1504-43B5-A7E5-3992EB83042E} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {2C94A6AC-4E94-49AA-BFEC-CA6715D5838F} - System32\Tasks\{1346A54B-F643-49CA-A380-C2712D7819C1} => pcalua.exe -a "C:\Users\Bryan\Documents\Vuze Downloads\Dungeons & Dragons - Character Builder\07 CB_Oct_2009.exe" -d "C:\Users\Bryan\Documents\Vuze Downloads\Dungeons & Dragons - Character Builder"
Task: {34DFE721-5B05-4151-8B49-2B15AD35F39D} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {37723692-5D04-4540-97C0-78E7E80FFEAE} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {39776033-3639-4CFF-B3F0-D3E166186F2A} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {4852CF62-AECB-4107-8218-CD5AFF616C58} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {49D19FFA-B5B7-4AD1-A9B7-7DD463033CE5} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {4A55BBC8-0419-4456-872E-360B9BC11EEE} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {4C3086EE-8C38-4F1C-BB8C-8BEEEF8B855C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-09-16] (Adobe Systems Incorporated)
Task: {571FE537-F861-4706-AE97-CC121265D995} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5A67B648-E6F4-40D6-918D-FCEEB121DD4C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {5BFCE883-EF1C-4824-A392-6D09E5F54BBF} - System32\Tasks\{AA7EEC8E-BF7E-4C73-8E64-90A32D5C2A1A} => pcalua.exe -a "C:\Users\Bryan\Documents\Vuze Downloads\Dungeons & Dragons - Character Builder\09 CB_Jan_2010.exe" -d "C:\Users\Bryan\Documents\Vuze Downloads\Dungeons & Dragons - Character Builder"
Task: {624DB11D-9A48-4054-A438-E538962C7346} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {62CE3F92-9560-4354-9AAC-B4E1766A97E5} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6848E300-9948-42C2-8B0A-C438060CC47A} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6F2B85AE-85DB-46A2-B01E-15610C28006E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {7B9891DA-A55C-4A43-80FB-2313C0F228A5} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {7D7CA63D-FABA-4AF6-B2E7-218561B58CFC} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8290ABE3-4049-4AF7-AE71-A90F12CB7647} - System32\Tasks\{D7800F6C-F764-4C79-B124-9E3AA70471DC} => pcalua.exe -a "C:\Users\Bryan\Desktop\New Folder\crack\UPDATE\assassins_creed_2_1.01_us.exe" -d "C:\Users\Bryan\Desktop\New Folder\crack\UPDATE"
Task: {83A238BD-45C6-41D0-9C4A-BDC07A1CC9E1} - System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe => c:\Program Files\Microsoft IntelliPoint\IPoint.exe [2011-08-01] (Microsoft Corporation)
Task: {848C5324-075C-467C-A726-19657AE71E55} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8C645592-6934-4799-87D2-75E17790E39C} - System32\Tasks\{852D79DA-9E6D-43AE-BA09-691A1176B8FA} => pcalua.exe -a "C:\Users\Bryan\Documents\Vuze Downloads\Dungeons & Dragons - Character Builder\08 CB_Nov_2009.exe" -d "C:\Users\Bryan\Documents\Vuze Downloads\Dungeons & Dragons - Character Builder"
Task: {8F019CD9-7319-4344-A511-3923CE659744} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {9084C9CB-5B7F-4B64-B362-5ED7C9DCD0FA} - System32\Tasks\{48F2B6BC-1E5A-4182-AE0E-81B6E1EEF2D7} => pcalua.exe -a "C:\Users\Bryan\Documents\Vuze Downloads\Mass Effect 2 Full DLC Pack 2011 -illiria\DP_Setup.exe" -d "C:\Users\Bryan\Documents\Vuze Downloads\Mass Effect 2 Full DLC Pack 2011 -illiria"
Task: {950C771E-8461-4B25-B839-3BE725D37F29} - \Safer-Networking\Spybot - Search and Destroy\Check for updates -> No File <==== ATTENTION
Task: {9931FF85-3351-42DE-8F34-B03F5B1AF536} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {9C7B6025-EAE0-4D78-A7DC-A49F25504B4A} - System32\Tasks\{4E8710E2-664D-498F-90C0-4B8CEBC28AF6} => pcalua.exe -a "C:\Program Files (x86)\Steam\steam.exe" -c steam://uninstall/12910
Task: {AD4D3F7F-1D77-425D-B26C-3B782769013F} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-08-24] (Dropbox, Inc.)
Task: {AECB5684-4A48-4980-B887-555DB5406C67} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {AF650805-499B-4717-817B-54ED677A76A0} - System32\Tasks\{B9E7CB81-77BB-4FDA-9A2C-ED13CC009FBE} => pcalua.exe -a "C:\program files (x86)\steam\steamapps\common\alien swarm\bin\addoninstaller.exe" -d "c:\program files (x86)\steam\steamapps\common\alien swarm" -c /register
Task: {B77FA3C9-F4A0-4C8B-992B-7BD7062C91AA} - System32\Tasks\{EA03FC6D-E036-49A6-BDF4-640D8C123B6F} => pcalua.exe -a D:\Setup.exe -d D:\
Task: {B9300E86-CD64-48F7-94DD-A456DD72D7C2} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-11-09] (Microsoft Corporation)
Task: {B9C2E9A6-1EB9-49B3-A703-1402FCAC6EA9} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {BBD59593-6DE4-4CC2-AB20-F3553D295A31} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {BF1174BF-859A-4DF8-8CA8-7C7042882E67} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {C5759DD7-35B7-4664-A8FD-289C8435B7A3} - \Safer-Networking\Spybot - Search and Destroy\Refresh immunization -> No File <==== ATTENTION
Task: {D4CC058D-6E8A-423C-92E2-75CAACBD282E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-09] (Adobe Systems Incorporated)
Task: {D7999EBD-BC8F-45D5-8664-AB3408E8385A} - \Safer-Networking\Spybot - Search and Destroy\Scan the system -> No File <==== ATTENTION
Task: {DB399A18-9BFA-4FC3-905E-155F9BB8F6EA} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E13EA930-A87B-4819-9872-458FE8488AB4} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {E46180A8-9666-4547-AE86-3E99A18B8A88} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E5250716-C46E-42C2-8A19-99388F88F6A4} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {EFF7FA9B-71DC-4715-8BA8-16EDA373369A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {F054FE4E-AC9F-4FC6-8C79-9581E0D91325} - System32\Tasks\0814avUpdateInfo => C:\ProgramData\Avg_Update_0814av\0814av_AVG-Secure-Search-Update.exe [2014-08-12] ()
Task: {F1DD8418-E09C-468F-8D34-004E1185B32A} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {F86A213F-DE25-47C3-BA16-D5DF653C4E0F} - System32\Tasks\{E2321764-CBCB-4E30-8CD4-553A205566D2} => pcalua.exe -a "C:\Users\Bryan\Documents\Vuze Downloads\Dungeons & Dragons - Character Builder\01 CB_Apr_2009.exe" -d "C:\Users\Bryan\Documents\Vuze Downloads\Dungeons & Dragons - Character Builder"
Task: {FB4D4D83-6484-4BE4-A897-CF12E8EC8E84} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2011-03-02 10:20 - 2011-03-02 10:20 - 00224256 _____ () C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
2016-04-25 10:16 - 2016-03-24 00:35 - 00368184 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2016-04-25 10:16 - 2016-03-24 00:35 - 00289848 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2016-04-25 10:16 - 2016-03-24 00:35 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2016-04-25 10:16 - 2016-03-24 00:35 - 03613240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2016-02-14 19:02 - 2005-04-22 13:36 - 00143360 _____ () C:\WINDOWS\system32\BrSNMP64.dll
2016-04-25 10:16 - 2016-03-24 00:35 - 02667576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2016-04-25 10:16 - 2016-03-24 00:35 - 01990200 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2016-04-25 10:16 - 2016-03-24 00:35 - 01842232 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2016-04-25 10:16 - 2016-03-24 00:35 - 00208952 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2016-07-16 06:42 - 2016-07-16 06:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-09-29 21:33 - 2016-09-15 12:25 - 02681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-08-09 07:27 - 2016-03-21 21:37 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-09-29 21:33 - 2016-09-15 12:25 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-09-29 21:33 - 2016-09-15 12:25 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-08-09 08:18 - 2016-08-09 08:18 - 00959168 _____ () C:\Users\Bryan\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2010-05-02 09:08 - 2010-03-15 10:28 - 00166400 _____ () C:\Program Files\WinRAR\rarext.dll
2016-03-09 09:17 - 2016-11-25 07:35 - 00782248 _____ () C:\Program Files (x86)\360\Total Security\MenuEx64.dll
2016-08-31 10:09 - 2016-08-31 10:09 - 01573584 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_1.1.41.0_x64__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll
2016-10-19 09:11 - 2016-10-19 09:11 - 00366080 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_1.1.41.0_x64__8wekyb3d8bbwe\Microsoft.Notes.Upgrade.dll
2016-09-20 22:20 - 2016-09-06 23:56 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-11-10 00:33 - 2016-11-02 05:30 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-11-10 00:33 - 2016-11-02 05:21 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-11-10 00:33 - 2016-11-02 05:15 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-11-10 00:33 - 2016-11-02 05:14 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-11-10 00:33 - 2016-11-02 05:15 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2016-11-10 00:33 - 2016-11-02 05:16 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-11-10 00:33 - 2016-11-02 05:17 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-04-25 10:16 - 2016-03-24 00:35 - 00035896 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2016-04-25 10:16 - 2016-03-24 00:35 - 00921656 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2016-11-16 20:03 - 2016-11-16 20:03 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2016-11-16 20:03 - 2016-11-16 20:03 - 00178688 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-11-16 20:03 - 2016-11-16 20:03 - 41609728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2016-11-22 19:05 - 2016-11-22 19:06 - 00019456 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2016-11-22 19:05 - 2016-11-22 19:06 - 20433408 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2016-06-02 19:05 - 2016-06-02 19:05 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll
2016-11-22 19:05 - 2016-11-22 19:06 - 01046528 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Microsoft.Sharing.dll
2016-11-22 19:05 - 2016-11-22 19:06 - 00353792 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Photos.Inking.dll
2011-06-24 21:56 - 2011-06-24 21:56 - 00087328 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2011-06-24 21:56 - 2011-06-24 21:56 - 01241888 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2011-03-02 10:11 - 2011-03-02 10:11 - 00038400 _____ () C:\Program Files (x86)\GNU\GnuPG\libw32pth-0.dll
2011-03-02 10:16 - 2011-03-02 10:16 - 00073216 _____ () C:\Program Files (x86)\GNU\GnuPG\libassuan-0.dll
2011-03-02 10:16 - 2011-03-02 10:16 - 00208384 _____ () C:\Program Files (x86)\GNU\GnuPG\libksba-8.dll
2011-03-02 10:17 - 2011-03-02 10:17 - 00603136 _____ () C:\Program Files (x86)\GNU\GnuPG\libgcrypt-11.dll
2011-03-02 10:13 - 2011-03-02 10:13 - 00048640 _____ () C:\Program Files (x86)\GNU\GnuPG\libgpg-error-0.dll
2016-03-09 09:17 - 2016-11-25 07:35 - 00099240 _____ () C:\Program Files (x86)\360\Total Security\deepscan\qutmload.dll
2016-04-25 10:16 - 2016-03-24 00:35 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-03-09 09:17 - 2016-11-25 07:35 - 00584616 _____ () C:\Program Files (x86)\360\Total Security\safemon\wdui2.dll
2016-11-15 20:48 - 2016-11-08 15:29 - 01819240 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libglesv2.dll
2016-11-15 20:48 - 2016-11-08 15:29 - 00093288 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\sony.com -> sony.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\123simsen.com -> www.123simsen.com
There are 7545 more sites.
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-13 21:34 - 2010-12-29 17:20 - 00428463 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 123haustiereundmehr.com
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 www.123moviedownload.com
127.0.0.1 123moviedownload.com
There are 14741 more lines.
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Bryan\Desktop\Pics\Keepers\New Orleans 10-2015\IMAG0147.jpg
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Button Manager.lnk => C:\Windows\pss\HP Button Manager.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Bryan^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^MagicDisc.lnk => C:\Windows\pss\MagicDisc.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Bryan^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.4.1.lnk => C:\Windows\pss\OpenOffice.org 3.4.1.lnk.Startup
MSCONFIG\startupreg: C3 => C:\Program Files (x86)\Vivox\C3\c3.exe
MSCONFIG\startupreg: HydraVisionDesktopManager => "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: SearchSettings => "C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe"
MSCONFIG\startupreg: Spotify => "C:\Users\Bryan\AppData\Roaming\Spotify\spotify.exe" /uri spotify:autostart
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Bryan\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: VirtualCloneDrive => "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
HKLM\...\StartupApproved\Run: => "RtHDVCpl"
HKLM\...\StartupApproved\Run: => "IntelliPoint"
HKLM\...\StartupApproved\Run32: => "AVG_UI"
HKLM\...\StartupApproved\Run32: => "BCU"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKLM\...\StartupApproved\Run32: => "PWRISOVM.EXE"
HKLM\...\StartupApproved\Run32: => "AvgUi"
HKLM\...\StartupApproved\Run32: => "StartCCC"
HKLM\...\StartupApproved\Run32: => "BrHelp"
HKLM\...\StartupApproved\Run32: => "ControlCenter4"
HKLM\...\StartupApproved\Run32: => "BrStsMon00"
HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\StartupApproved\StartupFolder: => "GameVox.lnk"
HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3534269808-1485983137-1280583553-1000\...\StartupApproved\Run: => "Skype"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => LPort=139
FirewallRules: [MSMQ-In-TCP] => %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => LPort=808
FirewallRules: [{9E566EC4-B07A-48A8-9591-95E69F7E1266}] => C:\Program Files (x86)\Steam\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [{9092EA15-0FFB-445C-B7DE-47685B75F530}] => C:\Program Files (x86)\Steam\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [{08122964-936D-4D84-AAA4-BA6ACFC45B21}] => C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{E8D03A6D-82F1-46BE-8AE2-4BD4D8FF82DA}] => C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{76E601CD-1552-4750-82FC-F5C5A5BE78A4}] => C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{762E0C23-15C1-4124-A575-51D98A9E11A0}] => C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{8DDA7BAD-C1DF-4523-B664-B7FC527E08B1}] => C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{B5790F62-6704-4FBE-B077-CE0C7F98C4FE}] => C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{18CEBEEE-6437-46CF-A519-8D66B90851CC}] => C:\Program Files (x86)\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
FirewallRules: [{ED650210-475C-44B3-A183-02F40D3BE1F0}] => C:\Program Files (x86)\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
FirewallRules: [{603D3FDF-2DF2-40E4-8220-DB4BCCFC83E2}] => C:\Program Files (x86)\Steam\steamapps\common\Magic Duels\MagicDuels.exe
FirewallRules: [{E72591A9-DDF4-4D89-ABB0-D83349FB27D1}] => C:\Program Files (x86)\Steam\steamapps\common\Magic Duels\MagicDuels.exe
FirewallRules: [{BF504995-1C75-4C86-9FB6-34463C5295AD}] => C:\Program Files (x86)\GameforgeLive\gfl_client.exe
FirewallRules: [{70FCDB59-3668-4EED-9B55-A5301FBE73EE}] => C:\Program Files (x86)\360\Total Security\softmgr\360InstantSetup.exe
FirewallRules: [{D9D1185D-506D-4EB1-942D-B212A093A4D1}] => C:\Program Files (x86)\360\Total Security\softmgr\360InstantSetup.exe
FirewallRules: [{35DE6871-869C-49EE-AF15-2FEA0A854B4D}] => C:\Program Files (x86)\Vuze\Azureus.exe
FirewallRules: [{55E6FC19-C522-4B85-8D81-C73467A316D1}] => C:\Program Files (x86)\Vuze\Azureus.exe
FirewallRules: [UDP Query User{D0E9B37C-DEE1-4D03-98B1-51EACB25A7DF}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [TCP Query User{B5293982-D661-4FE9-B0A8-3A641A5CA624}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [UDP Query User{39664CC1-4E67-443D-9FFD-7CB38679E3C0}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [TCP Query User{4C48D48E-9211-4F9A-96DD-BBA4EF92B26F}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [{6D2EB750-6B33-4FEA-88B7-1A7C7E28BF90}] => C:\Program Files (x86)\Steam\steamapps\common\Rise of the Tomb Raider\ROTTR.exe
FirewallRules: [{05AE6CB3-349C-41C5-8584-34EF5EFD3418}] => C:\Program Files (x86)\Steam\steamapps\common\Rise of the Tomb Raider\ROTTR.exe
FirewallRules: [{075FEC8B-6E4D-4CBF-8320-ADDF2DBF4053}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{FC178713-DFF0-4770-89B1-D50080EF2AEF}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{66E2E888-0495-467B-8F0A-382773990B87}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{0B026A64-46AD-4150-BE1E-C4B7A0F96C0A}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{503F90E6-E5B0-4AD3-BE36-41D7F19B3AB3}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{9B8276F7-808C-4D3D-A4D7-59E184DED9B4}] => C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{3F51B2E5-E86F-4BA7-B1E3-B8DAB090993E}] => C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [UDP Query User{02F80957-5EB0-436E-87D6-4227168645F4}C:\program files (x86)\java\jre1.8.0_91\bin\jp2launcher.exe] => C:\program files (x86)\java\jre1.8.0_91\bin\jp2launcher.exe
FirewallRules: [TCP Query User{9ADE4919-4BB0-44EC-B2E3-FDED38404505}C:\program files (x86)\java\jre1.8.0_91\bin\jp2launcher.exe] => C:\program files (x86)\java\jre1.8.0_91\bin\jp2launcher.exe
FirewallRules: [UDP Query User{A4F588E9-B2C9-46B2-A6BE-C562107AEEAF}C:\program files (x86)\java\jre1.8.0_31\bin\jp2launcher.exe] => C:\program files (x86)\java\jre1.8.0_31\bin\jp2launcher.exe
FirewallRules: [TCP Query User{3B001959-5CFF-47AD-9C72-38F5625BF88A}C:\program files (x86)\java\jre1.8.0_31\bin\jp2launcher.exe] => C:\program files (x86)\java\jre1.8.0_31\bin\jp2launcher.exe
FirewallRules: [{A247CA7F-B597-4C9C-9836-204094337673}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{71A64160-579C-449C-BB0D-E4EEC2C6600D}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [UDP Query User{1F57335E-3E17-4A7E-AED9-26A8178385FD}C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe] => C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe
FirewallRules: [TCP Query User{EFDD72A9-D6BE-4145-A654-1DBD9FCBA791}C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe] => C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe
FirewallRules: [UDP Query User{DD6A64A1-0883-417E-9389-E42CF77AD2F7}C:\program files (x86)\overwatch\overwatch.exe] => C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [TCP Query User{B4DA0C7E-4768-47C0-BF75-63804B8F1177}C:\program files (x86)\overwatch\overwatch.exe] => C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [UDP Query User{D466861B-7FFD-4A16-B2DC-786708773A73}C:\program files (x86)\heroes of the storm\versions\base42178\heroesofthestorm_x64.exe] => C:\program files (x86)\heroes of the storm\versions\base42178\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{6F626A2B-EF2D-43C4-AFF0-1D25E33B6F2A}C:\program files (x86)\heroes of the storm\versions\base42178\heroesofthestorm_x64.exe] => C:\program files (x86)\heroes of the storm\versions\base42178\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{434756D2-F79C-4E2C-B81C-FFCF1C0E45BD}C:\program files (x86)\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe] => C:\program files (x86)\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{2D082E90-5A70-4D10-BFB9-161917D73D4B}C:\program files (x86)\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe] => C:\program files (x86)\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe
FirewallRules: [{3CAE2205-90F6-4721-8F4B-B8A46720B421}] => C:\Program Files (x86)\360\Total Security\LiveUpdate360.exe
FirewallRules: [{D7863F6D-2937-4ABF-A9C7-762D4089D18B}] => C:\Program Files (x86)\360\Total Security\LiveUpdate360.exe
FirewallRules: [UDP Query User{89DC9B87-EE47-4115-A2F0-1325A1409CCA}C:\program files (x86)\heroes of the storm\versions\base41150\heroesofthestorm_x64.exe] => C:\program files (x86)\heroes of the storm\versions\base41150\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{55661E35-A578-47C2-A96B-6145CF5808C9}C:\program files (x86)\heroes of the storm\versions\base41150\heroesofthestorm_x64.exe] => C:\program files (x86)\heroes of the storm\versions\base41150\heroesofthestorm_x64.exe
FirewallRules: [{6550343A-62BB-44A0-8DC6-9E607D0C811E}] => C:\Program Files (x86)\Steam\steamapps\common\GreyCubes\GreyCubes.exe
FirewallRules: [{471E32BC-2906-4CFC-B180-95077AB38F43}] => C:\Program Files (x86)\Steam\steamapps\common\GreyCubes\GreyCubes.exe
FirewallRules: [{BC821BCA-E3A7-49BD-B04B-E136B84E2DED}] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{BED30BB2-EBB3-41E1-93B6-599CD8AEB783}] => c:\program files (x86)\pc-faxreceive\brengineprocess.exe
FirewallRules: [{4147B5C8-E5B0-45A1-B9D8-902D0CC33FE7}] => c:\program files (x86)\pc-faxreceive\brengineprocess.exe
FirewallRules: [{44AD2575-DA35-4BF9-8AB0-11D879605CF4}] => LPort=54925
FirewallRules: [{41D64912-84F6-4E80-A17F-76AC40AF2F9E}] => H:\Install\wlan_wiz\.\wlan_assistant\waw.exe
FirewallRules: [{DFF42BB2-28A3-48A0-8D27-E2EF6CBB1C3A}] => C:\Program Files (x86)\Steam\steamapps\common\Shadowrun Hong Kong\SRHK.exe
FirewallRules: [{994B3964-0476-4A9A-9711-DAC5A3BD686F}] => C:\Program Files (x86)\Steam\steamapps\common\Shadowrun Hong Kong\SRHK.exe
FirewallRules: [{18A9C170-840D-4FC9-9886-8A91FAE60863}] => C:\Program Files (x86)\Steam\steamapps\common\Shadowrun Dragonfall Director's Cut\Dragonfall.exe
FirewallRules: [{FEC087F1-9094-41A1-ADE6-EE409D832DA5}] => C:\Program Files (x86)\Steam\steamapps\common\Shadowrun Dragonfall Director's Cut\Dragonfall.exe
FirewallRules: [{9136D434-E9D0-4684-9209-D4F6A85DF931}] => C:\Program Files (x86)\Steam\steamapps\common\Shadowrun Returns\Shadowrun.exe
FirewallRules: [{6785A6B5-EBA1-4530-93B4-6EEE7B13F893}] => C:\Program Files (x86)\Steam\steamapps\common\Shadowrun Returns\Shadowrun.exe
FirewallRules: [{3F20995C-CCAD-4E25-A72D-E916A289D7D6}] => C:\Program Files (x86)\Steam\steamapps\common\Crypt of the NecroDancer\NecroDancer.exe
FirewallRules: [{EA59C345-E6EC-4028-B81C-9BA47240188A}] => C:\Program Files (x86)\Steam\steamapps\common\Crypt of the NecroDancer\NecroDancer.exe
FirewallRules: [{11939EDC-08DD-4734-94D4-DED455054EB0}] => C:\Program Files (x86)\Steam\steamapps\common\tribes\Binaries\Win32\HirezBridge.exe
FirewallRules: [{618FD6B9-4479-433E-9384-80E4D89C2AC5}] => C:\Program Files (x86)\Steam\steamapps\common\tribes\Binaries\Win32\HirezBridge.exe
FirewallRules: [UDP Query User{798962EE-15E4-4868-BF1C-CC79057E5349}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [TCP Query User{CD1F5F34-98AF-463D-99F5-50EB51B22B2D}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [{E1D6D9F5-2595-4018-B364-82332D89D9AB}] => C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{9BDE7E94-0018-4014-80CC-028622CC8AD9}] => C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{B9C2ADD9-66E5-420C-A910-904787DFB8BA}] => C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{2DC518D2-61EE-49DB-90A8-9AAD437CADBB}] => C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{C8ECC68D-4C22-4B3A-998B-0C8F854490C7}] => C:\Program Files (x86)\Steam\steamapps\common\Terrorhedron\terrorhedron.exe
FirewallRules: [{802D1EF5-5AAD-4DD0-9FC4-18FE8043E11B}] => C:\Program Files (x86)\Steam\steamapps\common\Terrorhedron\terrorhedron.exe
FirewallRules: [UDP Query User{D59F117C-178A-4060-B743-0A74FF5A09A1}C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe] => C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{9B338196-9173-4F65-992F-6AFA22B47DED}C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe] => C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{EFCBB1A7-70FA-47A1-A58B-FDBDC2475DE8}C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe] => C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{666411AE-82A2-4924-933B-EB20CF38E43B}C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe] => C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{7E1D0833-1F1F-48C7-8EE8-1F776959F6F3}C:\program files (x86)\starcraft ii\versions\base32283\sc2.exe] => C:\program files (x86)\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [TCP Query User{A14A18D7-CF4F-4E96-B093-B592F1FBA43A}C:\program files (x86)\starcraft ii\versions\base32283\sc2.exe] => C:\program files (x86)\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [UDP Query User{03C67C2D-7B87-4767-8433-7BE61A6FC990}C:\program files (x86)\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe] => C:\program files (x86)\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{6B543A5F-822E-4C69-B9FA-9F4E1EB48F92}C:\program files (x86)\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe] => C:\program files (x86)\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe
FirewallRules: [{35E8104A-80E1-43EE-B0E0-59A5352D0583}] => C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [{5BDEDC1A-AD9B-44E9-B403-2A3A012D7EF2}] => C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [UDP Query User{39CD56F9-DABA-4034-92D9-7AD4004AD623}C:\users\bryan\desktop\buddha\brutallegend_nosteam.exe] => C:\users\bryan\desktop\buddha\brutallegend_nosteam.exe
FirewallRules: [TCP Query User{88368CA8-32EE-42D5-8AB7-82CE6365F40A}C:\users\bryan\desktop\buddha\brutallegend_nosteam.exe] => C:\users\bryan\desktop\buddha\brutallegend_nosteam.exe
FirewallRules: [UDP Query User{7A1F51D1-3632-4B11-8BA9-E54517261E83}C:\users\bryan\desktop\games\lol\league of legends rads.clean\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => C:\users\bryan\desktop\games\lol\league of legends rads.clean\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe
FirewallRules: [TCP Query User{2A05E62B-8C98-4A33-95BD-7EAC3B7746CD}C:\users\bryan\desktop\games\lol\league of legends rads.clean\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => C:\users\bryan\desktop\games\lol\league of legends rads.clean\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe
FirewallRules: [UDP Query User{77A268AF-91CB-4A92-92A3-2B07659CA7A6}C:\users\bryan\desktop\games\lol\league of legends rads.clean\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => C:\users\bryan\desktop\games\lol\league of legends rads.clean\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe
FirewallRules: [TCP Query User{A67342FB-DA71-4F53-AE7D-937A95E92E3A}C:\users\bryan\desktop\games\lol\league of legends rads.clean\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => C:\users\bryan\desktop\games\lol\league of legends rads.clean\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe
FirewallRules: [{A16F141D-8DE7-4BF7-8A02-9100A8EBEBF4}] => C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{20124EDE-FF02-4FD3-A19A-20ADDAE3A2E2}] => C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{716DB04A-DEDF-44B3-9C3F-384A49A65425}] => C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe
FirewallRules: [{BA61FB2E-14B2-489F-B947-3C16C5E62F10}] => C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe
FirewallRules: [{E6F110BD-B933-44ED-BFAC-A48FC1813A1E}] => C:\Program Files (x86)\Steam\steamapps\common\Gauntlet\binaries\gauntlet.exe
FirewallRules: [{611E2ED2-EF41-41E1-B1B9-1FE7C30BD7F1}] => C:\Program Files (x86)\Steam\steamapps\common\Gauntlet\binaries\gauntlet.exe
FirewallRules: [{D462D622-7424-420F-A6E9-A0A1DBACEA4C}] => C:\Program Files (x86)\Steam\steamapps\common\Minimum\Binaries\Win32\MinGame-Win32-F.exe
FirewallRules: [{25AF45A0-96B8-4A0A-B7F2-9947F121120F}] => C:\Program Files (x86)\Steam\steamapps\common\Minimum\Binaries\Win32\MinGame-Win32-F.exe
FirewallRules: [{1EF8459F-BE85-45B7-A773-DC07F3C873CA}] => C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{E11CC037-C9FE-4719-B2F9-63C7FF5F499D}] => C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [UDP Query User{6EB512C9-5C4E-456F-A6B7-0A6EDBFFC86D}C:\program files (x86)\raidcall\raidcall.exe] => C:\program files (x86)\raidcall\raidcall.exe
FirewallRules: [TCP Query User{E638A225-13E3-4173-9451-95498EFB8561}C:\program files (x86)\raidcall\raidcall.exe] => C:\program files (x86)\raidcall\raidcall.exe
FirewallRules: [{6AE8C68A-AB1A-4BD5-981F-44EF23D7C884}] => C:\Program Files (x86)\AVG\AVG2014\avgmfapx.exe
FirewallRules: [{8DD07586-7E40-40A3-B01B-9DCB27C4C8AF}] => C:\Program Files (x86)\AVG\AVG2014\avgmfapx.exe
FirewallRules: [{96C60E76-977E-4AE0-8D2F-5AF68AFD7377}] => C:\ProgramData\Battle.net\Agent\Agent.3182\Agent.exe
FirewallRules: [{6CAA783B-C9A8-43CB-904C-78C5D90A427E}] => C:\ProgramData\Battle.net\Agent\Agent.3182\Agent.exe
FirewallRules: [{8364C997-6A39-429B-8D11-8C64060CD09B}] => C:\Program Files (x86)\Steam\steamapps\common\Transistor\x64\Transistor.exe
FirewallRules: [{9286ADB7-4398-4D92-9D87-8F209D8C306E}] => C:\Program Files (x86)\Steam\steamapps\common\Transistor\x64\Transistor.exe
FirewallRules: [UDP Query User{21413504-E150-4082-A1A0-23A4321C976D}C:\users\bryan\appdata\roaming\spotify\spotify.exe] => C:\users\bryan\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{06F3700B-0D12-41AB-A7E0-0CB0B94CCB21}C:\users\bryan\appdata\roaming\spotify\spotify.exe] => C:\users\bryan\appdata\roaming\spotify\spotify.exe
FirewallRules: [{0FD9C62D-42DA-48A5-8CB8-CF056E4717DB}] => C:\Program Files (x86)\Steam\steamapps\common\Guacamelee\Guac.exe
FirewallRules: [{35911189-710F-446D-940E-CA9B9EC83D70}] => C:\Program Files (x86)\Steam\steamapps\common\Guacamelee\Guac.exe
FirewallRules: [{84ACEAEE-87FA-4A15-907B-0854AF5D0FCD}] => C:\Program Files (x86)\Steam\steamapps\common\CastleCrashers\castle.exe
FirewallRules: [{3F04CBFF-5728-409B-B456-1CF036D0748A}] => C:\Program Files (x86)\Steam\steamapps\common\CastleCrashers\castle.exe
FirewallRules: [UDP Query User{334B2E83-981B-408E-BE92-6153DD276216}C:\program files (x86)\steam\steamapps\common\far cry 3 blood dragon\bin\fc3_blooddragon_d3d11.exe] => C:\program files (x86)\steam\steamapps\common\far cry 3 blood dragon\bin\fc3_blooddragon_d3d11.exe
FirewallRules: [TCP Query User{F8D22EF4-9B63-4E94-B274-AEF53FE20BBF}C:\program files (x86)\steam\steamapps\common\far cry 3 blood dragon\bin\fc3_blooddragon_d3d11.exe] => C:\program files (x86)\steam\steamapps\common\far cry 3 blood dragon\bin\fc3_blooddragon_d3d11.exe
FirewallRules: [{D6DF2DB6-AFEA-4CFF-B7E7-6727AF1D9E43}] => C:\Program Files (x86)\Steam\steamapps\common\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11.exe
FirewallRules: [{5D31DE24-EC07-42C2-B583-53C456DF82B7}] => C:\Program Files (x86)\Steam\steamapps\common\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11.exe
FirewallRules: [{FDA33696-0734-40EC-A931-B83F5AD12256}] => C:\Program Files (x86)\Steam\steamapps\common\Far Cry 3 Blood Dragon\bin\fc3_blooddragon.exe
FirewallRules: [{8DF8A7FE-02C3-4181-977E-54D62D4C5EE0}] => C:\Program Files (x86)\Steam\steamapps\common\Far Cry 3 Blood Dragon\bin\fc3_blooddragon.exe
FirewallRules: [{124566D7-35DC-4FE6-842A-3CDB8B2512A9}] => C:\Program Files (x86)\Steam\steamapps\common\The Stanley Parable\stanley.exe
FirewallRules: [{BD77128A-B577-498D-92E6-067C42553BB1}] => C:\Program Files (x86)\Steam\steamapps\common\The Stanley Parable\stanley.exe
FirewallRules: [{7EC214F6-A630-4976-8C83-5E008D6F2F6E}] => C:\Program Files (x86)\Steam\steamapps\common\Metal Slug 3\mslug3.exe
FirewallRules: [{5AD689C0-664F-4C9F-B42D-F0351B628B8E}] => C:\Program Files (x86)\Steam\steamapps\common\Metal Slug 3\mslug3.exe
FirewallRules: [{97933098-53FC-4DD8-B205-B8FE0EB81EC6}] => C:\Program Files (x86)\Steam\steamapps\common\Far Cry 3 Blood Dragon\bin\FC3BDUpdaterSteam.exe
FirewallRules: [{2300E685-86C6-4D19-A4DD-F7175327EBF0}] => C:\Program Files (x86)\Steam\steamapps\common\Far Cry 3 Blood Dragon\bin\FC3BDUpdaterSteam.exe
FirewallRules: [{E2D06D7E-A938-419B-B85A-F70958E04043}] => C:\Program Files (x86)\Steam\steamapps\common\Portal\hl2.exe
FirewallRules: [{89998022-A5F1-4FAC-A1D3-A0263985ECC8}] => C:\Program Files (x86)\Steam\steamapps\common\Portal\hl2.exe
FirewallRules: [{D4F8B765-715A-4640-A0DE-8A86AF3F86EE}] => C:\Program Files (x86)\Steam\steamapps\common\Cities in Motion 2\CIM2.exe
FirewallRules: [{F691A4D9-AF39-4103-B745-DB9F36224E20}] => C:\Program Files (x86)\Steam\steamapps\common\Cities in Motion 2\CIM2.exe
FirewallRules: [{B0F88646-504A-4A7B-950B-EED785C77567}] => C:\Program Files (x86)\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{E9E3196C-B6EB-4C9E-8184-871CE0F7CFB5}] => C:\Program Files (x86)\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{96F0F257-96E1-40E4-A5B2-3CBD029F8551}] => C:\ProgramData\Battle.net\Agent\Agent.2816\Agent.exe
FirewallRules: [{070EB91E-B6F5-4F71-A4F3-BCED83654097}] => C:\ProgramData\Battle.net\Agent\Agent.2816\Agent.exe
FirewallRules: [UDP Query User{2689827B-6FD0-4E75-A9F7-EC2772A80490}C:\users\public\sony online entertainment\installed games\landmark beta\landmark64.exe] => C:\users\public\sony online entertainment\installed games\landmark beta\landmark64.exe
FirewallRules: [TCP Query User{C894BC77-3E49-454C-96ED-564F863561FB}C:\users\public\sony online entertainment\installed games\landmark beta\landmark64.exe] => C:\users\public\sony online entertainment\installed games\landmark beta\landmark64.exe
FirewallRules: [{E1A4B4AE-A9BC-4673-88BE-61AD1DC46434}] => LPort=41780
FirewallRules: [{70B70EBF-2AD4-40E7-A949-5E410787BCB6}] => C:\ProgramData\Battle.net\Agent\Agent.2787\Agent.exe
FirewallRules: [{5B4AE735-AFF4-402D-8BD9-B7E07D2B300A}] => C:\ProgramData\Battle.net\Agent\Agent.2787\Agent.exe
FirewallRules: [{70501A5B-8B45-4E34-8F7B-21F1518837ED}] => C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{C63F34E1-AA47-4A77-A50E-635C0491336B}] => C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{E6630FA5-217D-46F4-AD75-784B70D21ABC}] => C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{EAC9FDCC-C217-444E-B908-E270D9E590BB}] => C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{2A18F852-EF79-4D6E-9BE0-5354918596F2}] => C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{FEB8D9CC-C745-4850-AD00-3F484A472535}] => C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{E27A4E54-8D39-4982-AB7C-D71D6299D76F}] => C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{EEFD95FC-19C9-4EE2-A821-B12A9B8C9119}] => C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{B814655E-1174-49A3-8618-005535F2DEA3}] => C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{6F18D558-5250-4213-813C-A6C06F98ACD0}] => C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{645FFBE9-A7F4-4493-8E53-F0D4ACC7A5F0}] => C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
FirewallRules: [{919D23F6-8514-4938-ABF3-E0F1CE985C86}] => C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
FirewallRules: [{8B89B26B-FF90-4BDD-984F-A000BBF5BEC4}] => C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
FirewallRules: [{8759C267-DC07-4A16-A8AB-F848A7F43101}] => C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
FirewallRules: [{0AA93C04-A152-45B5-8713-71C19F4B9E3A}] => C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{08DA9E08-A80E-487D-9CC7-6192A82389F7}] => C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{9D4734CE-041B-4E9D-9282-ABD99D0797EF}] => C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe
FirewallRules: [{CFF74111-C8BB-4448-86C6-8D96DFB3147F}] => C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe
FirewallRules: [UDP Query User{D9F66DB9-9EBB-42A8-B468-A7E56EE5C3A0}C:\program files (x86)\hearthstone\hearthstone.exe] => C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{B4386D80-A2C8-4AE0-ABAA-20E224DB2E7B}C:\program files (x86)\hearthstone\hearthstone.exe] => C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [{28871463-7E43-45FA-91D1-3949EF48D281}] => C:\ProgramData\Battle.net\Agent\Agent.beta.2581\Agent.exe
FirewallRules: [{048BD6AE-726E-4AAD-AE50-1243BDE9079A}] => C:\ProgramData\Battle.net\Agent\Agent.beta.2581\Agent.exe
FirewallRules: [{EC73E2A6-6B64-4AB6-98DA-3B6D3C44D596}] => C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{CAA59CA1-AA5C-4D2D-A4E4-43C1020CDC86}] => C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{06F3B6F4-2E84-4E08-9FB9-5BFA59F0BDDE}] => C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{92AC38A5-CF73-4179-BDB1-769786FEB5B1}] => C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{48B63789-5FDA-4D5D-A07D-7679D783757E}] => C:\Program Files (x86)\Steam\steamapps\common\Cities in Motion 2\CIM2.exe
FirewallRules: [{3DCB33F0-B43D-4602-A894-E687017FA893}] => C:\Program Files (x86)\Steam\steamapps\common\Cities in Motion 2\CIM2.exe
FirewallRules: [{CF75BE7F-FB53-44AF-A6EE-D9F9CE595C17}] => C:\Program Files (x86)\Steam\steamapps\common\The Wolf Among Us\TheWolfAmongUs.exe
FirewallRules: [{5A1070D0-F30F-4F7D-B199-2E1FB58082D8}] => C:\Program Files (x86)\Steam\steamapps\common\The Wolf Among Us\TheWolfAmongUs.exe
FirewallRules: [{F66A788D-3577-429F-A45A-37D330F2DA39}] => C:\Program Files (x86)\Steam\steamapps\common\terraria\Terraria.exe
FirewallRules: [{A2AE031C-73A8-4DC9-A27D-947EECD51269}] => C:\Program Files (x86)\Steam\steamapps\common\terraria\Terraria.exe
FirewallRules: [UDP Query User{260E5D78-F85D-4F3C-8B37-6399A2B663EE}C:\users\bryan\desktop\games\diablo iii\diablo iii.exe] => C:\users\bryan\desktop\games\diablo iii\diablo iii.exe
FirewallRules: [TCP Query User{3C2CA2C5-9307-4BE7-99CC-57CF34F9FF62}C:\users\bryan\desktop\games\diablo iii\diablo iii.exe] => C:\users\bryan\desktop\games\diablo iii\diablo iii.exe
FirewallRules: [{9A8AC6FF-764B-4471-A796-D1AC04B4F5D5}] => C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{55108AEA-6854-4010-BF99-F48FF6FEA8A7}] => C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{E5AC228F-12E9-486B-A9C8-4BF8EB0B7493}] => C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe
FirewallRules: [{E498D5AE-C2E8-488D-B53B-DD19F778EDD3}] => C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe
FirewallRules: [{C541E6F5-4458-4EB1-8873-043C981F5F8A}] => C:\Program Files (x86)\Steam\steamapps\common\Cities in Motion 2\CIM2.exe
FirewallRules: [{801E951F-C6A6-4D6E-AB44-4A3522356E3E}] => C:\Program Files (x86)\Steam\steamapps\common\Cities in Motion 2\CIM2.exe
FirewallRules: [{B37A1EF8-0339-45CF-B210-91E75A8A694A}] => C:\Program Files (x86)\Steam\steamapps\common\magicka\Magicka.exe
FirewallRules: [{437E4EEE-FE64-4EFB-95FD-5E49546F66DB}] => C:\Program Files (x86)\Steam\steamapps\common\magicka\Magicka.exe
FirewallRules: [{2B5F5E03-461F-4BA8-8196-774A5B462C88}] => C:\Program Files (x86)\Steam\steamapps\common\Sanctum\Binaries\Win32\SanctumGame-Win32-Shipping.exe
FirewallRules: [{AD1D22C6-0DAA-4857-AE3B-90FF94CFF789}] => C:\Program Files (x86)\Steam\steamapps\common\Sanctum\Binaries\Win32\SanctumGame-Win32-Shipping.exe
FirewallRules: [{35C5E7AC-795D-4611-94BB-06B4348CF27B}] => C:\Program Files (x86)\Steam\steamapps\common\Orcs Must Die!\Build\release\OrcsMustDie.exe
FirewallRules: [{F6E11555-3E12-4D1A-9CC1-FED91097527B}] => C:\Program Files (x86)\Steam\steamapps\common\Orcs Must Die!\Build\release\OrcsMustDie.exe
FirewallRules: [{51FDD51D-3095-4A3D-B056-85625FF29DC1}] => C:\Program Files (x86)\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{DA487981-E544-4C29-B76B-B785F3AE4871}] => C:\Program Files (x86)\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{72448827-E1A9-4A13-8C8D-D40E64F13BFA}] => C:\Program Files (x86)\Steam\steamapps\common\terraria\Terraria.exe
FirewallRules: [{5F1AFCE7-A31F-42E7-B40B-366B1016159F}] => C:\Program Files (x86)\Steam\steamapps\common\terraria\Terraria.exe
FirewallRules: [{ACD6E62D-2B07-4FDB-BEC5-5E02BA2F7A4D}] => C:\Program Files (x86)\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{91950408-1004-4109-9756-2FD110451641}] => C:\Program Files (x86)\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{70D1B7C8-BD96-4E8F-812B-CDED40263C6C}] => C:\Program Files (x86)\Steam\steamapps\common\Torchlight II\ModLauncher.exe
FirewallRules: [{18DE0414-E8EC-46E0-9ED7-EE9F8A5A9DA4}] => C:\Program Files (x86)\Steam\steamapps\common\Torchlight II\ModLauncher.exe
FirewallRules: [{84CBBD64-E939-4684-8614-37D7DDC4ED61}] => C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe
FirewallRules: [{EAF912D8-C026-41B0-A7D0-16600352FC54}] => C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe
FirewallRules: [{33226855-E53D-4AAC-949E-C52A8894A609}] => C:\Users\Bryan\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{997DC675-2DB0-4954-A1A1-984EAF29BDD8}] => C:\Users\Bryan\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [UDP Query User{174FD12E-025A-417F-A984-5E1EE1956381}C:\users\bryan\desktop\games\xcom\binaries\win32\xcomgame.exe] => C:\users\bryan\desktop\games\xcom\binaries\win32\xcomgame.exe
FirewallRules: [TCP Query User{52479641-5794-424C-AFE6-04C703A47952}C:\users\bryan\desktop\games\xcom\binaries\win32\xcomgame.exe] => C:\users\bryan\desktop\games\xcom\binaries\win32\xcomgame.exe
FirewallRules: [UDP Query User{CF87F131-ECFE-4380-91C8-EAE38CB63CDB}C:\users\bryan\desktop\games\shadowrun returns\shadowrun.exe] => C:\users\bryan\desktop\games\shadowrun returns\shadowrun.exe
FirewallRules: [TCP Query User{5620B819-E770-492D-9C9C-B89F2DFDCDBC}C:\users\bryan\desktop\games\shadowrun returns\shadowrun.exe] => C:\users\bryan\desktop\games\shadowrun returns\shadowrun.exe
FirewallRules: [{B310331A-050E-4B39-B7F2-BFFA462A84C1}] => C:\ProgramData\NexonUS\NGM\NGM.exe
FirewallRules: [{E398740C-904E-462B-9FE4-06728285BDE1}] => C:\ProgramData\NexonUS\NGM\NGM.exe
FirewallRules: [{92B937C8-88F3-4B60-A6C8-471453F1F619}] => C:\Program Files (x86)\Vuze\Azureus.exe
FirewallRules: [{D9C56EDF-A784-45D7-9E06-C1CEAAEEB8F3}] => C:\Program Files (x86)\Vuze\Azureus.exe
FirewallRules: [{F05130D0-45A0-47B9-BE53-D57522F07E73}] => C:\Program Files (x86)\SimpleFiles\SimpleFiles.exe
FirewallRules: [{E374A6AC-CA32-4DA3-AB40-6656E8AE7260}] => C:\Program Files (x86)\SimpleFiles\SimpleFiles.exe
FirewallRules: [{D0F767E3-2937-4831-9697-00B91662FDEB}] => C:\Program Files (x86)\SimpleFiles\downloader.exe
FirewallRules: [{89C14663-C5CD-475F-9396-ABF33C8C5505}] => C:\Program Files (x86)\SimpleFiles\downloader.exe
FirewallRules: [{6CFA0D4F-5FDC-471F-B010-2B78EBFB905F}] => C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{627A87B1-7DC2-49D0-9236-479D62177775}] => C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [UDP Query User{416DADD7-B24C-4598-BDB6-EDA1189C7DFE}C:\users\bryan\desktop\games\borderlands 2\binaries\win32\borderlands2.exe] => C:\users\bryan\desktop\games\borderlands 2\binaries\win32\borderlands2.exe
FirewallRules: [TCP Query User{16D04A8E-E273-41A7-800A-CAA529AF3463}C:\users\bryan\desktop\games\borderlands 2\binaries\win32\borderlands2.exe] => C:\users\bryan\desktop\games\borderlands 2\binaries\win32\borderlands2.exe
FirewallRules: [{EC4EC9E3-73F6-49D2-8D72-95003B4ADF51}] => C:\Program Files (x86)\Steam\steamapps\common\portal 2\portal2.exe
FirewallRules: [{7F428D11-6572-4077-BC26-641528542151}] => C:\Program Files (x86)\Steam\steamapps\common\portal 2\portal2.exe
FirewallRules: [UDP Query User{00F4757D-10EF-4BE5-A34B-780A60F7BA18}C:\program files (x86)\gazillion entertainment\marvel heroes\unrealengine3\binaries\win32\marvelgame.exe] => C:\program files (x86)\gazillion entertainment\marvel heroes\unrealengine3\binaries\win32\marvelgame.exe
FirewallRules: [TCP Query User{4129A878-90F3-4695-B5C7-0C1F91A2A5FB}C:\program files (x86)\gazillion entertainment\marvel heroes\unrealengine3\binaries\win32\marvelgame.exe] => C:\program files (x86)\gazillion entertainment\marvel heroes\unrealengine3\binaries\win32\marvelgame.exe
FirewallRules: [UDP Query User{9A5E8F79-E8AF-4C9A-B01D-676D4F0016D1}C:\users\bryan\desktop\games\cryptic studios\neverwinter\live\gameclient.exe] => C:\users\bryan\desktop\games\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [TCP Query User{615BD100-37E7-4F79-81CB-94729B68A651}C:\users\bryan\desktop\games\cryptic studios\neverwinter\live\gameclient.exe] => C:\users\bryan\desktop\games\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [{35AD4802-8C83-4B07-B452-A0B7356B0BC9}] => C:\Users\Bryan\Desktop\Games\StarCraft II\Versions\Base24944\SC2.exe
FirewallRules: [UDP Query User{A171F493-7C7F-4E48-AC37-77501E87558E}C:\users\bryan\desktop\games\starcraft ii\versions\base24944\sc2.exe] => C:\users\bryan\desktop\games\starcraft ii\versions\base24944\sc2.exe
FirewallRules: [TCP Query User{C14C52DF-3EF8-44C1-AA02-4C2261D3EC25}C:\users\bryan\desktop\games\starcraft ii\versions\base24944\sc2.exe] => C:\users\bryan\desktop\games\starcraft ii\versions\base24944\sc2.exe
FirewallRules: [{C0DD6ECA-BEE9-4716-A20A-280A79DB58CB}] => C:\Users\Bryan\Desktop\Games\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [{0F6B0BAC-BDA8-46C4-9316-E9C67CA3AD6B}] => C:\Users\Bryan\Desktop\Games\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [{9EA21BE7-1646-4C18-910F-4832F6CAA166}] => C:\Users\Bryan\Desktop\Games\StarCraft II\StarCraft II.exe
FirewallRules: [{18AC3981-DBB5-4850-B541-846F6951F757}] => C:\Users\Bryan\Desktop\Games\StarCraft II\StarCraft II.exe
FirewallRules: [{0266900B-959B-4023-8B24-47B19D00864D}] => C:\ProgramData\Battle.net\Agent\Agent.1737\Agent.exe
FirewallRules: [{9D2D0D67-000C-46B6-9243-FFF2FFCCDFFB}] => C:\ProgramData\Battle.net\Agent\Agent.1737\Agent.exe
FirewallRules: [UDP Query User{4308CA1B-9504-46D7-855D-AF6F4618BF9A}C:\users\bryan\desktop\games\american mcgee's alice\alice.exe] => C:\users\bryan\desktop\games\american mcgee's alice\alice.exe
FirewallRules: [TCP Query User{20705DE3-DB4D-4867-9C8F-8C011B163C3C}C:\users\bryan\desktop\games\american mcgee's alice\alice.exe] => C:\users\bryan\desktop\games\american mcgee's alice\alice.exe
FirewallRules: [UDP Query User{EFEDF1EE-E3A3-4AA7-8482-5C5DAC107923}C:\games\dragon age origins\bin_ship\daorigins.exe] => C:\games\dragon age origins\bin_ship\daorigins.exe
FirewallRules: [TCP Query User{7D43BB66-71AA-49EF-89E9-61C603B8E4A0}C:\games\dragon age origins\bin_ship\daorigins.exe] => C:\games\dragon age origins\bin_ship\daorigins.exe
FirewallRules: [{3B537105-2EB1-433D-BAE1-E6C372315CE0}] => C:\Program Files (x86)\Origin Games\Mass Effect 3\Binaries\Win32\MassEffect3.exe
FirewallRules: [{30BC539D-A754-4FA3-8CCC-AE711406FF75}] => C:\Program Files (x86)\Origin Games\Mass Effect 3\Binaries\Win32\MassEffect3.exe
FirewallRules: [{8FC3D814-3A30-406F-94F7-FF52E711E4B0}] => C:\Program Files (x86)\Steam\steamapps\common\Bastion\Bastion.exe
FirewallRules: [{651F1A35-0995-4DED-A109-62F9E1E777EA}] => C:\Program Files (x86)\Steam\steamapps\common\Bastion\Bastion.exe
FirewallRules: [{2466B98D-7BC7-4033-9DFF-FE778BAE340E}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{97F8D1AD-CE0B-4603-AC5B-C237A16334B8}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [UDP Query User{E112F174-7F42-491C-80E5-6FD1A1323EAE}C:\users\bryan\appdata\roaming\spotify\spotify.exe] => C:\users\bryan\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{F2F35F4F-F4CD-4AAE-9548-6F4C1D897993}C:\users\bryan\appdata\roaming\spotify\spotify.exe] => C:\users\bryan\appdata\roaming\spotify\spotify.exe
FirewallRules: [{0DEC6317-9CAB-4859-997F-8DB11F32458D}] => C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
FirewallRules: [{95B3D747-1FB0-41ED-AB31-DA75B8618BD6}] => C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
FirewallRules: [{FBC3B58E-1941-467B-9F52-B6C104ACC713}] => C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
FirewallRules: [{B6734C83-96F8-4B63-A8DE-23D143C78CAC}] => C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
FirewallRules: [UDP Query User{0513B191-C2A8-4796-8CAF-18242FD96C54}C:\users\bryan\desktop\revolt-srttc3\saints row the third\saintsrowthethird.exe] => C:\users\bryan\desktop\revolt-srttc3\saints row the third\saintsrowthethird.exe
FirewallRules: [TCP Query User{354218D4-6588-40B9-AA97-0FC2DCC35D58}C:\users\bryan\desktop\revolt-srttc3\saints row the third\saintsrowthethird.exe] => C:\users\bryan\desktop\revolt-srttc3\saints row the third\saintsrowthethird.exe
FirewallRules: [UDP Query User{A22C708E-4CD8-4EFD-96BC-54F2D5BD95BF}C:\users\bryan\desktop\revolt-srttc3\saints row the third\saintsrowthethird_dx11.exe] => C:\users\bryan\desktop\revolt-srttc3\saints row the third\saintsrowthethird_dx11.exe
FirewallRules: [TCP Query User{81FC9BE9-98EF-4AE1-B437-756945BBB513}C:\users\bryan\desktop\revolt-srttc3\saints row the third\saintsrowthethird_dx11.exe] => C:\users\bryan\desktop\revolt-srttc3\saints row the third\saintsrowthethird_dx11.exe
FirewallRules: [UDP Query User{A3595B56-8A14-4415-9EC6-7EBCDC6B25FE}C:\program files (x86)\meteorentertainment\hawken\installedhawkenfiles\binaries\win32\hawkengame-win32-shipping.exe] => C:\program files (x86)\meteorentertainment\hawken\installedhawkenfiles\binaries\win32\hawkengame-win32-shipping.exe
FirewallRules: [TCP Query User{65B1A8B1-9B6C-4668-9263-D5E243C0F260}C:\program files (x86)\meteorentertainment\hawken\installedhawkenfiles\binaries\win32\hawkengame-win32-shipping.exe] => C:\program files (x86)\meteorentertainment\hawken\installedhawkenfiles\binaries\win32\hawkengame-win32-shipping.exe
FirewallRules: [{8428D6A3-A4F7-4C1B-90E9-09E80BAC6D37}] => C:\users\bryan\desktop\games\zsnes\zsnesw.exe
FirewallRules: [{AD5A956B-A58C-4138-9BDE-BA123FAC8FB8}] => C:\users\bryan\desktop\games\zsnes\zsnesw.exe
FirewallRules: [UDP Query User{A68FB468-CD63-40D4-9B92-75F1FFA0653B}C:\users\bryan\desktop\games\zsnes\zsnesw.exe] => C:\users\bryan\desktop\games\zsnes\zsnesw.exe
FirewallRules: [TCP Query User{1A7BD4A1-12A5-411C-A26A-085A905D8011}C:\users\bryan\desktop\games\zsnes\zsnesw.exe] => C:\users\bryan\desktop\games\zsnes\zsnesw.exe
FirewallRules: [{2659B2B8-0350-4B81-AB60-41541535F513}] => C:\ProgramData\Battle.net\Agent\Agent.1363\Agent.exe
FirewallRules: [{E9E9FA3F-DCEC-4CCC-8AAD-863F9A9BBE68}] => C:\ProgramData\Battle.net\Agent\Agent.1363\Agent.exe
FirewallRules: [UDP Query User{D618277B-A9BB-41EB-9222-56361FB67BA4}C:\programdata\battle.net\agent\agent.1363\agent.exe] => C:\programdata\battle.net\agent\agent.1363\agent.exe
FirewallRules: [TCP Query User{E9CB6109-006B-4E82-859D-1160A63436A7}C:\programdata\battle.net\agent\agent.1363\agent.exe] => C:\programdata\battle.net\agent\agent.1363\agent.exe
FirewallRules: [{B2E534E0-7029-46DD-BC64-3898FD902DED}] => C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [UDP Query User{6D75354D-26C5-418A-8FE8-75838164F075}C:\program files (x86)\steam\steamapps\common\tribes\binaries\win32\tribesascend.exe] => C:\program files (x86)\steam\steamapps\common\tribes\binaries\win32\tribesascend.exe
FirewallRules: [TCP Query User{6A67094C-9BF4-4978-9642-1F6EE9F2FCC0}C:\program files (x86)\steam\steamapps\common\tribes\binaries\win32\tribesascend.exe] => C:\program files (x86)\steam\steamapps\common\tribes\binaries\win32\tribesascend.exe
FirewallRules: [{EEFD4C0F-4AA6-4526-AE77-C5FC519AF44D}] => C:\ProgramData\Battle.net\Agent\Agent.1267\Agent.exe
FirewallRules: [{10D848E5-57C3-4AE9-8FCA-6B0CD147603B}] => C:\ProgramData\Battle.net\Agent\Agent.1267\Agent.exe
FirewallRules: [{B1B5E204-C7BB-4547-983A-B19168CBDEC8}] => C:\ProgramData\Battle.net\Agent\Agent.1267\Agent.exe
FirewallRules: [{06B3132D-E85F-4D49-A717-F2D52D6E9861}] => C:\ProgramData\Battle.net\Agent\Agent.1267\Agent.exe
FirewallRules: [{7EFCD947-AC8F-4F67-8BE4-5CD96FA9FA55}] => C:\ProgramData\Battle.net\Agent\Agent.1225\Agent.exe
FirewallRules: [{75441330-B6EA-45CB-BB98-81FEF7452CA7}] => C:\ProgramData\Battle.net\Agent\Agent.1225\Agent.exe
FirewallRules: [UDP Query User{68367603-BE2E-4A8B-ADF2-0921BCC1B4E7}C:\program files (x86)\java\jre7\bin\javaw.exe] => C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{90382EC0-F081-48D2-8AFD-52CF157E3156}C:\program files (x86)\java\jre7\bin\javaw.exe] => C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [{7EE6CD41-AC92-48A9-9822-AC8A5802BF0E}] => C:\Program Files (x86)\Steam\steamapps\common\magicka\Magicka.exe
FirewallRules: [{9D3E8C14-AA59-4F4F-97AE-D6DE695D8F85}] => C:\Program Files (x86)\Steam\steamapps\common\magicka\Magicka.exe
FirewallRules: [{82700A77-55EA-4C0C-87CF-8024BA919DD2}] => C:\Program Files (x86)\Steam\steamapps\common\Quantum Conundrum\Binaries\Win32\TryGame-Win32-Shipping.exe
FirewallRules: [{163A5991-5D3A-45BF-A442-4281BCD095DD}] => C:\Program Files (x86)\Steam\steamapps\common\Quantum Conundrum\Binaries\Win32\TryGame-Win32-Shipping.exe
FirewallRules: [UDP Query User{5462DBCB-F5C2-4B45-97D0-D5C9A5440F07}C:\program files (x86)\java\jre7\bin\java.exe] => C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [TCP Query User{F5C989F3-9B7A-4626-AF53-11E0511E0C50}C:\program files (x86)\java\jre7\bin\java.exe] => C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [{B4C99863-FA53-464A-AD21-E78E5FF147F3}] => C:\Program Files (x86)\Steam\steamapps\common\risen\bin\Risen.exe
FirewallRules: [{D5F3B9F3-56E8-4774-8B8F-C853FCC80192}] => C:\Program Files (x86)\Steam\steamapps\common\risen\bin\Risen.exe
FirewallRules: [{8914ED7E-89F7-4DD9-A9E0-D96CB9A5DF43}] => C:\Program Files (x86)\Steam\steamapps\common\alien swarm\swarm.exe
FirewallRules: [{41697514-D0B0-4D50-BB64-EAFE281EC0C2}] => C:\Program Files (x86)\Steam\steamapps\common\alien swarm\swarm.exe
FirewallRules: [UDP Query User{D6B98206-8C83-4B84-AAA5-78816B229B1D}C:\program files (x86)\digsby\lib\digsby-app.exe] => C:\program files (x86)\digsby\lib\digsby-app.exe
FirewallRules: [TCP Query User{F41E1B22-104B-46A9-88C5-9DC319AE78FA}C:\program files (x86)\digsby\lib\digsby-app.exe] => C:\program files (x86)\digsby\lib\digsby-app.exe
FirewallRules: [UDP Query User{3503C39D-0C50-47D0-B06A-FAA56160FDD0}C:\users\bryan\desktop\old computer stuff\program files\utorrent.exe] => C:\users\bryan\desktop\old computer stuff\program files\utorrent.exe
FirewallRules: [TCP Query User{E85F5DE2-2B33-42BC-B6A8-D2679A2BE6AE}C:\users\bryan\desktop\old computer stuff\program files\utorrent.exe] => C:\users\bryan\desktop\old computer stuff\program files\utorrent.exe
FirewallRules: [UDP Query User{0757A4C3-FE4E-498B-A7C9-E6D1A97AB1D9}C:\program files (x86)\java\jre6\bin\javaw.exe] => C:\program files (x86)\java\jre6\bin\javaw.exe
FirewallRules: [TCP Query User{9F2EC895-A678-4E41-920B-79793C880048}C:\program files (x86)\java\jre6\bin\javaw.exe] => C:\program files (x86)\java\jre6\bin\javaw.exe
FirewallRules: [UDP Query User{F3B4B097-4B46-4B60-AC29-D9691F0643F5}C:\windows\syswow64\javaw.exe] => C:\windows\syswow64\javaw.exe
FirewallRules: [TCP Query User{B0755C08-56DF-4608-872F-60BE4972B9D6}C:\windows\syswow64\javaw.exe] => C:\windows\syswow64\javaw.exe
FirewallRules: [{C6D8F762-861C-41FA-8252-87F2907D919F}] => C:\programdata\battle.net\agent\agent.1040\agent.exe
FirewallRules: [{58A28F31-46EB-43B7-AE7F-3965E84ABC67}] => C:\programdata\battle.net\agent\agent.1040\agent.exe
FirewallRules: [UDP Query User{2E88636A-1A25-459E-8F0A-EC19AF2D4B93}C:\programdata\battle.net\agent\agent.1040\agent.exe] => C:\programdata\battle.net\agent\agent.1040\agent.exe
FirewallRules: [TCP Query User{89B3696F-A2F7-4061-A3EE-5EC67E479E74}C:\programdata\battle.net\agent\agent.1040\agent.exe] => C:\programdata\battle.net\agent\agent.1040\agent.exe
FirewallRules: [{63E5A8C8-C2F6-400A-BEE9-204F842D8CC8}] => C:\ProgramData\Battle.net\Agent\Agent.998\Agent.exe
FirewallRules: [{98247830-E9D1-441A-B6CC-D9C33D9E40CF}] => C:\ProgramData\Battle.net\Agent\Agent.998\Agent.exe
FirewallRules: [{A9770BBD-BC42-4AAF-98E7-B4400C865B8A}] => C:\ProgramData\Battle.net\Agent\Agent.976\Agent.exe
FirewallRules: [{F4B92E5E-AA68-42B8-8150-1372E20B9CD9}] => C:\ProgramData\Battle.net\Agent\Agent.976\Agent.exe
FirewallRules: [{F8805339-783C-4B89-825D-E8DF4339423E}] => C:\Users\Bryan\Desktop\Games\Diablo III\Diablo III.exe
FirewallRules: [{AF4C7476-1286-40E0-8AB0-0F53ED8C604F}] => C:\Users\Bryan\Desktop\Games\Diablo III\Diablo III.exe
FirewallRules: [{DE2FE3BB-375A-4866-93C0-121066431C92}] => C:\ProgramData\Battle.net\Agent\Agent.954\Agent.exe
FirewallRules: [{884454D1-84EF-4D26-B98A-8E2C7376F6AD}] => C:\ProgramData\Battle.net\Agent\Agent.954\Agent.exe
FirewallRules: [{18AABB47-D377-4CA2-93A4-A3537F2F405A}] => C:\programdata\battle.net\agent\agent.913\agent.exe
FirewallRules: [{90E2EDCE-64A4-43A1-86F9-5245B9FB1E45}] => C:\programdata\battle.net\agent\agent.913\agent.exe
FirewallRules: [UDP Query User{2529E915-527D-4CF4-B2F4-EB0CC8004049}C:\programdata\battle.net\agent\agent.913\agent.exe] => C:\programdata\battle.net\agent\agent.913\agent.exe
FirewallRules: [TCP Query User{207E5950-6A72-4C06-BDFB-AF546AC269A8}C:\programdata\battle.net\agent\agent.913\agent.exe] => C:\programdata\battle.net\agent\agent.913\agent.exe
FirewallRules: [{768848AE-4700-4AFB-94F7-AEB441F121A0}] => C:\users\bryan\downloads\diablo-iii-8370-enus-installer-downloader.exe
FirewallRules: [{45DC97A7-AD93-4260-8709-B8BB5CBD4509}] => C:\users\bryan\downloads\diablo-iii-8370-enus-installer-downloader.exe
FirewallRules: [UDP Query User{2189E65C-56E9-4E22-9921-D14332D39425}C:\users\bryan\downloads\diablo-iii-8370-enus-installer-downloader.exe] => C:\users\bryan\downloads\diablo-iii-8370-enus-installer-downloader.exe
FirewallRules: [TCP Query User{C7D28AB0-2C1D-4B45-9AE6-BE4A22CF4A67}C:\users\bryan\downloads\diablo-iii-8370-enus-installer-downloader.exe] => C:\users\bryan\downloads\diablo-iii-8370-enus-installer-downloader.exe
FirewallRules: [{F284799B-10D7-412A-9AEA-26B09B7C49D6}] => C:\Program Files (x86)\Diablo III Beta\Diablo III.exe
FirewallRules: [{4CB8DA33-87F8-4D25-83C7-D643D7C27B4B}] => C:\Program Files (x86)\Diablo III Beta\Diablo III.exe
FirewallRules: [{255120CD-3A79-43B8-9C21-CAD1B19BBD47}] => C:\ProgramData\Battle.net\Agent\Agent.868\Agent.exe
FirewallRules: [{DA89BB9F-F039-4A84-BFCE-BEFB395E4468}] => C:\ProgramData\Battle.net\Agent\Agent.868\Agent.exe
FirewallRules: [{1246314F-5CC7-4758-A6C8-C9FC08116073}] => C:\programdata\battle.net\agent\agent.515\agent.exe
FirewallRules: [{7EBF384C-5F80-49D7-A165-C7AD2AD1FB0D}] => C:\programdata\battle.net\agent\agent.515\agent.exe
FirewallRules: [{4C53DA91-F98C-47F4-B922-B49F1AF971A7}] => C:\ProgramData\Battle.net\Agent\Agent.515\Agent.exe
FirewallRules: [{3B5A8567-00A0-4F8F-B085-7B3AD33B1B75}] => C:\ProgramData\Battle.net\Agent\Agent.515\Agent.exe
FirewallRules: [UDP Query User{36666E71-C065-45AD-B4C0-F7C0374E82FC}C:\programdata\battle.net\agent\agent.515\agent.exe] => C:\programdata\battle.net\agent\agent.515\agent.exe
FirewallRules: [TCP Query User{FE28B2CD-FB48-48FC-8320-A262B85E32E1}C:\programdata\battle.net\agent\agent.515\agent.exe] => C:\programdata\battle.net\agent\agent.515\agent.exe
FirewallRules: [{AC5DF75C-0AD3-447F-8A56-6EBCD8727BD8}] => C:\users\bryan\desktop\games\rock of ages\binaries\win32\roa.exe
FirewallRules: [{B36332A3-4F65-4FFA-887B-DAD99CAF1103}] => C:\users\bryan\desktop\games\rock of ages\binaries\win32\roa.exe
FirewallRules: [UDP Query User{009306FF-7EE3-4AD3-8B65-56BED9E611C9}C:\users\bryan\desktop\games\rock of ages\binaries\win32\roa.exe] => C:\users\bryan\desktop\games\rock of ages\binaries\win32\roa.exe
FirewallRules: [TCP Query User{6847E9B4-8AD7-480A-8448-29D5B63595DD}C:\users\bryan\desktop\games\rock of ages\binaries\win32\roa.exe] => C:\users\bryan\desktop\games\rock of ages\binaries\win32\roa.exe
FirewallRules: [{A4CC5867-F34A-4B34-902A-453B749FEE15}] => C:\Program Files (x86)\Steam\steamapps\common\batman2\RunLauncher.bat
FirewallRules: [{366E23FC-1E66-42F2-B58D-CF5F86CBDEC5}] => C:\Program Files (x86)\Steam\steamapps\common\batman2\RunLauncher.bat
FirewallRules: [{A96D9A3A-D008-4237-9015-43864FD98FDB}] => C:\Program Files (x86)\Steam\steamapps\common\batman2\Binaries\Win32\BatmanAC.exe
FirewallRules: [{7CF2AF8E-3DA5-449B-AE04-97A2042866BE}] => C:\Program Files (x86)\Steam\steamapps\common\batman2\Binaries\Win32\BatmanAC.exe
FirewallRules: [{5CEDDA55-2EA9-40EF-A024-2DADA8675E69}] => C:\Program Files (x86)\Mass Effect 2\MassEffect2Launcher.exe
FirewallRules: [{0D674119-30CC-4250-B662-F8467CCE6AAD}] => C:\Program Files (x86)\Mass Effect 2\MassEffect2Launcher.exe
FirewallRules: [{449D4B69-4C02-4FF5-8FB5-AE9A04206655}] => C:\Program Files (x86)\Mass Effect 2\Binaries\MassEffect2.exe
FirewallRules: [{1EBD32CC-5EBD-41DE-837D-6BFC0FEA31D9}] => C:\Program Files (x86)\Mass Effect 2\Binaries\MassEffect2.exe
FirewallRules: [{A32BDF1F-763C-4BE3-9480-C37C168070A0}] => C:\users\bryan\desktop\games\saints row the third\saintsrowthethird_dx11.exe
FirewallRules: [{F88706F4-235A-4856-B7DA-AEC16EB1AFFF}] => C:\users\bryan\desktop\games\saints row the third\saintsrowthethird_dx11.exe
FirewallRules: [UDP Query User{F2F9F55C-6D6E-45D3-8D72-C070554E05C0}C:\users\bryan\desktop\games\saints row the third\saintsrowthethird_dx11.exe] => C:\users\bryan\desktop\games\saints row the third\saintsrowthethird_dx11.exe
FirewallRules: [TCP Query User{26157C2B-1A6C-41B6-BABF-2EE54BCBC033}C:\users\bryan\desktop\games\saints row the third\saintsrowthethird_dx11.exe] => C:\users\bryan\desktop\games\saints row the third\saintsrowthethird_dx11.exe
FirewallRules: [{D6927868-52E2-4059-AAE0-E10A3C59CAA8}] => C:\Program Files (x86)\Steam\steamapps\common\guardians of graxia\GuardiansOfGraxia.exe
FirewallRules: [{2E602496-B0C3-4D20-B008-03DAF022C5EB}] => C:\Program Files (x86)\Steam\steamapps\common\guardians of graxia\GuardiansOfGraxia.exe
FirewallRules: [{B5EFE865-6B44-40D9-95E0-A18B07CC5C92}] => C:\Program Files (x86)\Steam\steamapps\common\deus ex\System\DeusEx.exe
FirewallRules: [{D20BD56D-1BED-4709-A8C5-1E2E1D37A414}] => C:\Program Files (x86)\Steam\steamapps\common\deus ex\System\DeusEx.exe
FirewallRules: [{F802BB65-396C-4A88-B4CB-BFFEF98ADC97}] => C:\Program Files (x86)\Steam\steamapps\common\psychonauts demo\Psychonauts.exe
FirewallRules: [{B7DDA240-63B4-4806-8904-376AAB97BF34}] => C:\Program Files (x86)\Steam\steamapps\common\psychonauts demo\Psychonauts.exe
FirewallRules: [{151E2DD4-6B4C-4CEF-AA58-17E034D2F71E}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{F42D31B7-369A-4DFB-B083-7F4674740D0A}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{0E1DCA0E-C85D-45CC-9884-4BF37979548F}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{1DDFD0C7-9357-4597-AE8F-C59A304B0CAE}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [UDP Query User{9FE96430-F155-4931-A31F-AF41EA54514C}C:\program files (x86)\starcraft ii\versions\base15405\sc2.exe] => C:\program files (x86)\starcraft ii\versions\base15405\sc2.exe
FirewallRules: [TCP Query User{599E4734-CD50-46A3-8302-05EF59547B1B}C:\program files (x86)\starcraft ii\versions\base15405\sc2.exe] => C:\program files (x86)\starcraft ii\versions\base15405\sc2.exe
FirewallRules: [{0B4E5B3C-9A46-4151-8FDD-B3021A9ABE34}] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{4539A85C-B17F-46EC-81F6-95BF25E05716}] => C:\Users\Bryan\Desktop\Games\Humble Bundle\Steel Storm\SteelStorm\steelstorm-dedicated.exe
FirewallRules: [{15848BC7-86E8-4CB1-884E-BE1DEEFF953D}] => C:\Users\Bryan\Desktop\Games\Humble Bundle\Steel Storm\SteelStorm\steelstorm-dedicated.exe
FirewallRules: [{C0A8CFDB-B338-492D-9203-C4091D0D1EA9}] => C:\Users\Bryan\Desktop\Games\Humble Bundle\Steel Storm\SteelStorm\steelstorm.exe
FirewallRules: [{F4940868-C249-4852-8230-72E1D47BC7EB}] => C:\Users\Bryan\Desktop\Games\Humble Bundle\Steel Storm\SteelStorm\steelstorm.exe
FirewallRules: [UDP Query User{6875B0B9-3605-43F0-AC83-9B877341B4E0}C:\program files (x86)\videolan\vlc\vlc.exe] => C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [TCP Query User{53DA6FA3-3D5A-44E9-B025-2E8D5C5CFA2F}C:\program files (x86)\videolan\vlc\vlc.exe] => C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{C3FB04EE-B3DC-4A48-AE31-5CE92F405C8D}C:\windows\syswow64\javaw.exe] => C:\windows\syswow64\javaw.exe
FirewallRules: [TCP Query User{C0604AE2-3ED0-4552-9F78-8D25E7D58CD1}C:\windows\syswow64\javaw.exe] => C:\windows\syswow64\javaw.exe
FirewallRules: [{72EF7842-CF32-495F-AF2A-71C00DB07E23}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{543D9BAC-C7C6-448D-8BEB-E332F7F4F240}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [UDP Query User{D20D28CA-2EB0-4AE8-ACE2-C6D20DE9D1FE}C:\program files (x86)\lolreplay\lolreplay.exe] => C:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [TCP Query User{C52E4426-80FC-4871-BAA5-013742B4AF9F}C:\program files (x86)\lolreplay\lolreplay.exe] => C:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [{8B9E0157-E3F0-4606-AA65-F788D1E1F82A}] => C:\Program Files (x86)\Steam\steamapps\common\portal 2\portal2.exe
FirewallRules: [{CF039847-DB87-46B5-9A53-A604DC7C90B7}] => C:\Program Files (x86)\Steam\steamapps\common\portal 2\portal2.exe
FirewallRules: [{E9653953-C315-4712-B914-C42ABA00756C}] => LPort=8383
FirewallRules: [{ACD8D107-4348-4AEC-BFAA-3A56534E535A}] => LPort=8383
FirewallRules: [{5B81A9D6-54AB-4696-85AF-E5A784BB2927}] => C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{F756527B-9EAF-4044-B6B3-535C3BBD72B0}] => C:\Program Files (x86)\Ubisoft\Prince of Persia\PrinceOfPersia_Launcher.exe
FirewallRules: [{0B90D9FE-1C01-4289-8E07-4C643F56680C}] => C:\Program Files (x86)\Ubisoft\Prince of Persia\PrinceOfPersia_Launcher.exe
FirewallRules: [{96BA3B5E-CA15-467F-8369-A8259D6F6AA8}] => C:\Program Files (x86)\Ubisoft\Prince of Persia\Prince of Persia.exe
FirewallRules: [{8E88D8B6-7BFB-482B-953B-82A7BC581C3A}] => C:\Program Files (x86)\Ubisoft\Prince of Persia\Prince of Persia.exe
FirewallRules: [{1CA334E8-9353-4BB0-91BD-8F48CFD2A86A}] => C:\Program Files (x86)\Steam\steamapps\common\deus ex\System\DeusEx.exe
FirewallRules: [{39F95B8E-E46F-44C9-9A90-FC694C90CFD7}] => C:\Program Files (x86)\Steam\steamapps\common\deus ex\System\DeusEx.exe
FirewallRules: [{3B2964A7-ADBD-4653-B0B3-68AC51DDD4FB}] => C:\Program Files (x86)\Steam\steamapps\common\darksiders\DarksidersPC.exe
FirewallRules: [{9398F45B-5441-4011-8FBB-0550526C4571}] => C:\Program Files (x86)\Steam\steamapps\common\darksiders\DarksidersPC.exe
FirewallRules: [UDP Query User{CD7170F6-8A88-48D8-B1F9-BE53DE7851BD}C:\users\bryan\downloads\championsonlinef2p.exe] => C:\users\bryan\downloads\championsonlinef2p.exe
FirewallRules: [TCP Query User{6D8CE278-BFE4-4A12-A5D5-866DBA8F00A2}C:\users\bryan\downloads\championsonlinef2p.exe] => C:\users\bryan\downloads\championsonlinef2p.exe
FirewallRules: [{0140B2EB-D980-46BD-81B3-8EE79941CAEA}] => C:\Program Files (x86)\Eidos\Batman Arkham Asylum\Binaries\ShippingPC-BmGame.exe
FirewallRules: [{0A5618E9-77F5-4880-9917-B50E87C05082}] => C:\Program Files (x86)\Eidos\Batman Arkham Asylum\Binaries\ShippingPC-BmGame.exe
FirewallRules: [{5C79E22C-82AE-48A0-AEE4-87BD7B11F19C}] => C:\Program Files (x86)\Steam\steamapps\common\alien swarm\swarm.exe
FirewallRules: [{C375E066-EC2C-48A1-9B8C-8FE047F856CC}] => C:\Program Files (x86)\Steam\steamapps\common\alien swarm\swarm.exe
FirewallRules: [UDP Query User{3D7993DC-1496-4878-B2DD-C8C5C6F1238D}C:\program files (x86)\ea games\dead space 2\deadspace2.exe] => C:\program files (x86)\ea games\dead space 2\deadspace2.exe
FirewallRules: [TCP Query User{34359F0E-B7A4-4962-B7FC-DF25DB2FFE1C}C:\program files (x86)\ea games\dead space 2\deadspace2.exe] => C:\program files (x86)\ea games\dead space 2\deadspace2.exe
FirewallRules: [UDP Query User{6C19D0A3-E0F6-4269-846B-7ED014CB6C2D}C:\users\public\games\world of warcraft\temp\wow-4.0.0.2104-enus-tools-downloader.exe] => C:\users\public\games\world of warcraft\temp\wow-4.0.0.2104-enus-tools-downloader.exe
FirewallRules: [TCP Query User{CC0D6DE2-F2F9-4AC6-9959-D605B88F5457}C:\users\public\games\world of warcraft\temp\wow-4.0.0.2104-enus-tools-downloader.exe] => C:\users\public\games\world of warcraft\temp\wow-4.0.0.2104-enus-tools-downloader.exe
FirewallRules: [UDP Query User{51BC7F9A-8C95-4EDF-91ED-0F811122A674}C:\program files (x86)\miranda im\miranda32.exe] => C:\program files (x86)\miranda im\miranda32.exe
FirewallRules: [TCP Query User{9F38B8B0-8032-4D2B-8D1D-E3D830D83904}C:\program files (x86)\miranda im\miranda32.exe] => C:\program files (x86)\miranda im\miranda32.exe
FirewallRules: [UDP Query User{B74FE95C-57BA-4BD5-8106-8EB58B68B404}C:\program files (x86)\digsby\lib\digsby-app.exe] => C:\program files (x86)\digsby\lib\digsby-app.exe
FirewallRules: [TCP Query User{94A85E3D-0DEA-4E6D-A972-058A73C971E8}C:\program files (x86)\digsby\lib\digsby-app.exe] => C:\program files (x86)\digsby\lib\digsby-app.exe
FirewallRules: [UDP Query User{F955361F-A67F-4EA6-8664-74AE43DB315E}C:\program files (x86)\winamp\winamp.exe] => C:\program files (x86)\winamp\winamp.exe
FirewallRules: [TCP Query User{B4CEBC1A-9900-4134-8656-3D0F6C05163C}C:\program files (x86)\winamp\winamp.exe] => C:\program files (x86)\winamp\winamp.exe
FirewallRules: [UDP Query User{E88B36AF-1F7E-4315-8B5F-CCF03F536F08}C:\users\public\games\world of warcraft\temp\wow-4.0.0.1807-to-4.0.0.2103-enus-tools-downloader.exe] => C:\users\public\games\world of warcraft\temp\wow-4.0.0.1807-to-4.0.0.2103-enus-tools-downloader.exe
FirewallRules: [TCP Query User{4F9354B6-88C2-4889-9794-FF4A0F9C2084}C:\users\public\games\world of warcraft\temp\wow-4.0.0.1807-to-4.0.0.2103-enus-tools-downloader.exe] => C:\users\public\games\world of warcraft\temp\wow-4.0.0.1807-to-4.0.0.2103-enus-tools-downloader.exe
FirewallRules: [UDP Query User{827E3673-C2AF-407F-9D62-D7A70724FC01}C:\users\public\games\world of warcraft\temp\wow-4.0.0.1807-to-4.0.0.2072-enus-tools-downloader.exe] => C:\users\public\games\world of warcraft\temp\wow-4.0.0.1807-to-4.0.0.2072-enus-tools-downloader.exe
FirewallRules: [TCP Query User{74AB80CF-7147-4CAA-9424-6A57A44A41DA}C:\users\public\games\world of warcraft\temp\wow-4.0.0.1807-to-4.0.0.2072-enus-tools-downloader.exe] => C:\users\public\games\world of warcraft\temp\wow-4.0.0.1807-to-4.0.0.2072-enus-tools-downloader.exe
FirewallRules: [UDP Query User{0A0C2F18-2CB6-40F7-A095-988D847C9838}C:\users\public\games\world of warcraft\temp\wow-4.0.0.1807-to-4.0.0.1987-enus-tools-downloader.exe] => C:\users\public\games\world of warcraft\temp\wow-4.0.0.1807-to-4.0.0.1987-enus-tools-downloader.exe
FirewallRules: [TCP Query User{E392E762-BD09-4EC2-9C3C-1EC9762ECDCD}C:\users\public\games\world of warcraft\temp\wow-4.0.0.1807-to-4.0.0.1987-enus-tools-downloader.exe] => C:\users\public\games\world of warcraft\temp\wow-4.0.0.1807-to-4.0.0.1987-enus-tools-downloader.exe
FirewallRules: [UDP Query User{FD0F35E9-85AF-4AB8-9E4C-244F0329134B}C:\users\public\games\world of warcraft\blizzard downloader.exe] => C:\users\public\games\world of warcraft\blizzard downloader.exe
FirewallRules: [TCP Query User{05D6BFB5-4C5C-4902-B745-67E43033FF64}C:\users\public\games\world of warcraft\blizzard downloader.exe] => C:\users\public\games\world of warcraft\blizzard downloader.exe
FirewallRules: [{B7DE2249-6B5F-4406-A7BB-7472821C6B25}] => C:\Users\Public\Games\World of Warcraft\Launcher.patch.exe
FirewallRules: [{E293AB2A-8D18-4A0D-945D-B13488428CA1}] => C:\Users\Public\Games\World of Warcraft\Launcher.patch.exe
FirewallRules: [UDP Query User{BACFB1E7-E372-4C35-AA3F-B65895DC3E79}C:\users\public\games\world of warcraft\wow-3.3.5.12340-x86-win-enus-bkgnd-downloader.exe] => C:\users\public\games\world of warcraft\wow-3.3.5.12340-x86-win-enus-bkgnd-downloader.exe
FirewallRules: [TCP Query User{A3B061EA-A8DA-425A-9474-E4E79C2EF0E4}C:\users\public\games\world of warcraft\wow-3.3.5.12340-x86-win-enus-bkgnd-downloader.exe] => C:\users\public\games\world of warcraft\wow-3.3.5.12340-x86-win-enus-bkgnd-downloader.exe
FirewallRules: [UDP Query User{E3B3D654-EEFC-43BC-AE12-77E70A08F584}C:\users\public\games\world of warcraft\backgrounddownloader.exe] => C:\users\public\games\world of warcraft\backgrounddownloader.exe
FirewallRules: [TCP Query User{ADEB8810-459F-4BD2-BD9D-C087943086E1}C:\users\public\games\world of warcraft\backgrounddownloader.exe] => C:\users\public\games\world of warcraft\backgrounddownloader.exe
FirewallRules: [UDP Query User{EE853FC0-1489-42E7-9B9D-FF94F3578FEB}C:\users\public\games\world of warcraft\wow-3.3.5.12213-to-3.3.5.12340-enus-downloader.exe] => C:\users\public\games\world of warcraft\wow-3.3.5.12213-to-3.3.5.12340-enus-downloader.exe
FirewallRules: [TCP Query User{C3CFD481-B654-4B64-AE09-6432FD464B8B}C:\users\public\games\world of warcraft\wow-3.3.5.12213-to-3.3.5.12340-enus-downloader.exe] => C:\users\public\games\world of warcraft\wow-3.3.5.12213-to-3.3.5.12340-enus-downloader.exe
FirewallRules: [UDP Query User{DF5497B2-79D5-43D1-8611-9C561DF4237B}C:\users\public\games\world of warcraft\wow-3.3.3.11723-to-3.3.5.12213-enus-downloader.exe] => C:\users\public\games\world of warcraft\wow-3.3.3.11723-to-3.3.5.12213-enus-downloader.exe
FirewallRules: [TCP Query User{16E22943-C391-4884-8520-C57A99422AFE}C:\users\public\games\world of warcraft\wow-3.3.3.11723-to-3.3.5.12213-enus-downloader.exe] => C:\users\public\games\world of warcraft\wow-3.3.3.11723-to-3.3.5.12213-enus-downloader.exe
FirewallRules: [UDP Query User{94A9A63A-D082-410F-BAD1-446C7885EBE0}C:\users\public\games\world of warcraft\wow-3.3.3.11685-to-3.3.3.11723-enus-downloader.exe] => C:\users\public\games\world of warcraft\wow-3.3.3.11685-to-3.3.3.11723-enus-downloader.exe
FirewallRules: [TCP Query User{EC44B5A2-3A6C-48E6-86A5-5CABF70D243B}C:\users\public\games\world of warcraft\wow-3.3.3.11685-to-3.3.3.11723-enus-downloader.exe] => C:\users\public\games\world of warcraft\wow-3.3.3.11685-to-3.3.3.11723-enus-downloader.exe
FirewallRules: [UDP Query User{90B53262-472F-41F6-BE6F-C6F5D0ABE2C7}C:\users\public\games\world of warcraft\wow-3.3.2.11403-to-3.3.3.11685-enus-downloader.exe] => C:\users\public\games\world of warcraft\wow-3.3.2.11403-to-3.3.3.11685-enus-downloader.exe
FirewallRules: [TCP Query User{E86AE798-0E65-4CC4-9DE7-9F1DFE754516}C:\users\public\games\world of warcraft\wow-3.3.2.11403-to-3.3.3.11685-enus-downloader.exe] => C:\users\public\games\world of warcraft\wow-3.3.2.11403-to-3.3.3.11685-enus-downloader.exe
FirewallRules: [UDP Query User{B67DB5B2-E7AA-49BB-A686-C1D0A284270B}C:\users\public\games\world of warcraft\wow-3.3.0.11159-to-3.3.2.11403-enus-downloader.exe] => C:\users\public\games\world of warcraft\wow-3.3.0.11159-to-3.3.2.11403-enus-downloader.exe
FirewallRules: [TCP Query User{51A78AFF-E26B-443D-ABE1-9C3C04109B56}C:\program files (x86)\skype\phone\skype.exe] => C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{9125917A-5A06-4FBC-838D-22EB39F6B303}C:\program files (x86)\skype\phone\skype.exe] => C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{B5BC8789-B8BA-4D7D-8AD3-780D695D9157}] => C:\Program Files (x86)\Steam\steamapps\common\Tales of Zestiria\Tales of Zestiria.exe
FirewallRules: [{AACF6567-1A60-4F52-B3C0-BF111EDCAC08}] => C:\Program Files (x86)\Steam\steamapps\common\Tales of Zestiria\Tales of Zestiria.exe
FirewallRules: [{29DA3996-E52B-40B7-90BD-28C14235EB3A}] => C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe
FirewallRules: [{98D6F387-3346-4B98-A7B1-19BF9675D2A4}] => C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe
FirewallRules: [{1DB16166-FB6F-4958-A6B7-AD9A0BDA4E03}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{EC1D1A12-40C0-4D9F-B7A9-56C5F1DE8986}] => C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe
FirewallRules: [{F4C094DE-406E-4A4D-A31F-768506BF5CF4}] => C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service
==================== Restore Points =========================
19-11-2016 16:10:45 Scheduled Checkpoint
27-11-2016 12:55:19 Scheduled Checkpoint
06-12-2016 17:50:59 Scheduled Checkpoint
==================== Faulty Device Manager Devices =============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (12/06/2016 05:51:12 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
System Error:
Access is denied.
.
Error: (12/06/2016 05:49:30 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "BITS" in DLL "C:\Windows\System32\bitsperf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.
Error: (12/04/2016 01:05:33 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15609
Error: (12/04/2016 01:05:33 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15609
Error: (12/04/2016 01:05:33 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (12/04/2016 01:38:31 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15562
Error: (12/04/2016 01:38:31 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15562
Error: (12/04/2016 01:38:31 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (12/03/2016 08:43:57 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Microsoft.Photos.exe, version: 1.0.1611.18000, time stamp: 0x582f93e9
Faulting module name: dcomp.dll, version: 10.0.14393.0, time stamp: 0x5789983d
Exception code: 0xc00001ad
Fault offset: 0x000000000005ed14
Faulting process id: 0x254c
Faulting application start time: 0x01d24d64a141a7f3
Faulting application path: C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
Faulting module path: C:\WINDOWS\SYSTEM32\dcomp.dll
Report Id: 8f3c8c96-ed47-473e-8c13-169aab866a3a
Faulting package full name: Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe
Faulting package-relative application ID: App
Error: (12/03/2016 07:31:10 AM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2116-11-09T12:31:08Z. Error Code: 0x8007071A.
System errors:
=============
Error: (12/06/2016 05:36:56 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80073d02: Microsoft Sticky Notes.
Error: (12/06/2016 05:33:42 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
and APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (12/06/2016 08:13:05 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80073d02: Microsoft Sticky Notes.
Error: (12/06/2016 08:10:09 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
and APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (12/05/2016 03:38:56 PM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume D:.
The Master File Table (MFT) contains a corrupted file record. The file reference number is 0x5000000000005. The name of the file is "<unable to determine file name>".
Error: (12/05/2016 03:38:56 PM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume D:.
The Master File Table (MFT) contains a corrupted file record. The file reference number is 0x5000000000005. The name of the file is "<unable to determine file name>".
Error: (12/05/2016 03:38:39 PM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume D:.
The Master File Table (MFT) contains a corrupted file record. The file reference number is 0x5000000000005. The name of the file is "<unable to determine file name>".
Error: (12/05/2016 03:38:39 PM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume D:.
The Master File Table (MFT) contains a corrupted file record. The file reference number is 0x5000000000005. The name of the file is "<unable to determine file name>".
Error: (12/05/2016 03:38:38 PM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume D:.
The Master File Table (MFT) contains a corrupted file record. The file reference number is 0x5000000000005. The name of the file is "<unable to determine file name>".
Error: (12/05/2016 03:38:37 PM) (Source: Ntfs) (EventID: 55) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume D:.
The Master File Table (MFT) contains a corrupted file record. The file reference number is 0x5000000000005. The name of the file is "<unable to determine file name>".
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-6500 CPU @ 3.20GHz
Percentage of memory in use: 47%
Total physical RAM: 8125.07 MB
Available physical RAM: 4299.5 MB
Total Virtual: 16317.07 MB
Available Virtual: 11888.11 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:595.63 GB) (Free:119.42 GB) NTFS
Drive f: (New Volume) (Fixed) (Total:111.79 GB) (Free:111.68 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596.2 GB) (Disk ID: A81E88F8)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=595.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: A650D531)
Partition 1: (Not Active) - (Size=111.8 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
aswMBR.txt
aswMBR version 1.0.1.2290 Copyright(c) 2014 AVAST Software
Run date: 2016-12-06 22:23:43
-----------------------------
22:23:43.778 OS Version: Windows x64 6.2.9200
22:23:43.778 Number of processors: 4 586 0x5E03
22:23:43.779 ComputerName: BRYAN-PC UserName: Bryan
22:23:51.611 Initialize success
22:23:51.799 VM: initialized successfully
22:23:51.799 VM: Intel CPU supported
22:23:54.516 VM: not used
22:24:10.573 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000035
22:24:10.573 Disk 0 Vendor: WDC_WD6401AALS-00L3B2 01.03B01 Size: 610480MB BusType: 11
22:24:10.573 Disk 1 \Device\Harddisk1\DR1 -> \Device\00000037
22:24:10.573 Disk 1 Vendor: SanDisk_SDSSDA120G Z22000RL Size: 114473MB BusType: 11
22:24:10.972 Disk 0 MBR read successfully
22:24:10.972 Disk 0 MBR scan
22:24:10.972 Disk 0 Windows 7 default MBR code
22:24:11.019 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
22:24:11.050 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 609928 MB offset 206848
22:24:11.108 Disk 0 Partition 3 00 27 Hidden NTFS WinRE NTFS 450 MB offset 1249339392
22:24:11.406 Disk 0 scanning C:\WINDOWS\system32\drivers
22:24:26.898 Service scanning
22:24:35.916 Modules scanning
22:24:35.919 Disk 0 trace - called modules:
22:24:35.934 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys storport.sys hal.dll storahci.sys
22:24:35.934 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xffffd781a8f8e060]
22:24:35.934 3 CLASSPNP.SYS[fffff80150395efb] -> nt!IofCallDriver -> [0xffffd781a8d7c040]
22:24:35.934 5 ACPI.sys[fffff8014f264571] -> nt!IofCallDriver -> [0xffffd781a8d7de40]
22:24:35.950 7 ACPI.sys[fffff8014f264571] -> nt!IofCallDriver -> \Device\00000035[0xffffd781a8d85060]
22:24:35.950 Disk 0 statistics 16783/0/0 @ 0.67 MB/s
22:24:35.950 Scan finished successfully
22:24:49.740 Disk 0 MBR has been saved successfully to "C:\Users\Bryan\Desktop\MBR.dat"
22:24:49.740 The log file has been saved successfully to "C:\Users\Bryan\Desktop\aswMBR.txt"