Solved Problems with Graphics Card

vGriz · Apr 17, 2018

I noticed my computer having some issues with running. The computer ran fine, until I started gaming and then about 4 hours into gaming the computer started to have performance issues. I do not know what possed me to check the temp of the graphics card, but I did and found it running at 62-63 C. I saw there was an update for my graphics card and I am running the update now. However, when I went to open up the software for the graphics card to grab the update I got 2 errors.

Any ideas about what these errors might mean. The program that I was opening is call "GeForce Experience".

Rustys · Apr 17, 2018

vGriz said:
I saw there was an update for my graphics card and I am running the update now. However, when I went to open up the software for the graphics card to grab the update I got 2 errors.

What told you that thee was the update?

vGriz · Apr 17, 2018

The GeForce Experience software.

Rustys · Apr 17, 2018

Have you tried un-installing the software and then put back in the original test it and let us know.

vGriz · Apr 17, 2018

So I thought it was take 4 hours for the GPU to heat up to 63C, but its only taking a couple of minutes. I have not run anything that is graphic intensive, just opened up the web browser.

Rustys · Apr 17, 2018

Have you looked to make sure that the fan is working and that there is no dust that may need to be cleared.

vGriz · Apr 17, 2018

Yea, I pooped open the case last night to see if the fans were running. Confirmed that they are running. I blew out the fans before turning on the computer. I have been looking all over the web to see if the temp is normal. Apparently this temp is normal.

Reference site.

jmarket · Apr 17, 2018

Did you try un-installing GeForce, then grabbing a fresh copy from nVidia's website? I've had botched GeForce updates before.

vGriz · Apr 18, 2018

Yea, I uninstalled and reinstalled. That fixed the two errors I was getting, that I noted in my first post. I am thinking about doing a fresh install of windows 7, though I don't want to lose all the stuff I have on here now. Would all I have to do is copy my user profile onto say a USB and then I do not know where to go from there.

gus · Apr 18, 2018

If you are going to reinstall Windows there are several ways you can save your data, but either copy your required data to somewhere external first, or make a usual regular backup image to an external device which you can later explore and retrieve any folder or files from. Copying your user profile is fruitless.

vGriz · Apr 18, 2018

O okay, I did the copying of user profiles for one company and then just added their user profile back in. Just to ask, without looking anything up. Does Windows 7 have something built in for creating images?

jmarket · Apr 18, 2018

It's not as simple as user profiles.

Those only store desktop settings, system configuration, etc. It does NOT store files. You would need to make a clone of the data

Evan Omo · Apr 18, 2018

Hi vGriz. To answer your question yes Windows 7 does include that functionality for creating a system image. See this link, How to Create a System Image Backup in Windows 7, 8, or 10.

vGriz · Apr 18, 2018

So I need a HDD to clone the data to, will that clone the OS? If the HDD is an internal drive, how would I go about cloning the drive?
I lost my window 7 disk, so I decided to buy a new Windows 7 key. The Windows 7 version I have now is the Home Premium and the one I got is for the Ultimate. I figure since the Windows 7 Keys are so cheap now, why not upgrade. I mainly bought the new key, just for the upgrade because of how cheap it was. Any conflict with the imaging on that? or any conflict at all?

I would probably also need to create a boot disk with the Windows 7 Ultimate correct? If so, how do I go about doing that?

Also with the performance issues I thought maybe it could be that I am infected and went ahead and did some prework. Should I post that in here, or make another post?

gus · Apr 18, 2018

What you need is an image backup, you clone discs when you want to fit a new drive in place of the old one. You need to image your drive to either an internal or external drive, just not to the same drive as your O/S is on. Windows 7 does have built in image software but you may find the free versions of Macrium Reflect or Aomei offer far more features. The boot discs that can and should be created with Macrium or Aomei will only be required if the pc becomes unbootable.

vGriz · Apr 18, 2018

Here is my plan, I bought a new HDD. Going to put Windows 7 Ultimate on it and use that. The HDD I am currently(old) using will be removed. I would like to ensure that the computer is clean before this happens. Also, if I do that, can I connect the old HDD to the computer and pull files from it?

I am adding the prework files for infected computers.

vGriz · Apr 18, 2018

ASWMBR Expanded

Code:

aswMBR version 1.0.1.2290 Copyright(c) 2014 AVAST Software
Run date: 2018-04-17 01:05:49
-----------------------------
01:05:49.440    OS Version: Windows x64 6.1.7601 Service Pack 1
01:05:49.440    Number of processors: 4 586 0x2A07
01:05:49.441    ComputerName: RAZGRIZ-MONSTER  UserName: Razgriz
01:05:51.051    Initialize success
01:05:51.070    VM: initialized successfully
01:05:51.072    VM: Intel CPU supported virtualized
01:05:52.859    VM: supported disk I/O ataport.SYS
01:06:00.860    AVAST engine defs: 18041604
01:06:03.743    Disk 0  \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-1
01:06:03.745    Disk 0 Vendor: Hitachi_HDT721010SLA360 ST6OA3AA Size: 953869MB BusType: 3
01:06:03.748    Disk 1  \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP1T1L0-3
01:06:03.750    Disk 1 Vendor: WDC_WD4004FZWX-00GBGB0 81.H0A81 Size: 3815447MB BusType: 3
01:06:03.755    Disk 2 (boot) \Device\Harddisk2\DR2 -> \Device\Ide\IdeDeviceP0T0L0-0
01:06:03.757    Disk 2 Vendor: WDC_WD5000AAKX-001CA0 15.01H15 Size: 476940MB BusType: 3
01:06:03.902    Disk 2 MBR read successfully
01:06:03.904    Disk 2 MBR scan
01:06:03.908    Disk 2 Windows 7 default MBR code
01:06:03.910    Disk 2 Partition 1 80 (A) 07      HPFS/NTFS NTFS          100 MB offset 2048
01:06:03.917    Disk 2 Boot: NTFS     code=1
01:06:03.930    Disk 2 Partition 2 00     07      HPFS/NTFS NTFS       476838 MB offset 206848
01:06:03.949    Disk 2 scanning C:\Windows\system32\drivers
01:06:15.723    Service scanning
01:06:39.535    Modules scanning
01:06:39.540    Disk 2 trace - called modules:
01:06:39.564    ntoskrnl.exe CLASSPNP.SYS disk.sys aswArPot.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
01:06:39.568    1 nt!IofCallDriver -> \Device\Harddisk2\DR2[0xfffffa800dc0b590]
01:06:39.571    3 aswArPot.sys[fffff880044c7356] -> nt!IofCallDriver -> [0xfffffa800d5f7e40]
01:06:39.574    5 ACPI.sys[fffff88000eee7a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa800d874060]
01:06:40.628    AVAST engine scan C:\Windows
01:06:44.495    AVAST engine scan C:\Windows\system32
01:09:42.691    AVAST engine scan C:\Windows\system32\drivers
01:09:59.213    AVAST engine scan C:\Users\Razgriz
03:32:18.646    AVAST engine scan C:\ProgramData
04:19:43.897    Disk 2 statistics 9413252/0/0 @ 0.45 MB/s
04:19:43.903    Scan finished successfully
11:31:14.659    Disk 2 MBR has been saved successfully to "E:\PreWork\MBR.dat"
11:31:14.700    The log file has been saved successfully to "E:\PreWork\aswMBR.txt"

FRST EXPANDED

Code:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15.04.2018
Ran by Razgriz (administrator) on RAZGRIZ-MONSTER (16-04-2018 02:25:42)
Running from C:\Users\Razgriz\Desktop
Loaded Profiles: Razgriz (Available Profiles: Razgriz & Da Herro)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 10 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files (x86)\Blizzard\Bonjour Service\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NETGEAR Inc.) C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe
(Valve Corporation) S:\Steam\Steam.exe
(A-Volute) C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe
(Spotify Ltd) C:\Users\Razgriz\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Gigabyte Technology CO., LTD.) C:\Program Files (x86)\GIGABYTE\smart6\timelock\TimeMgmtDaemon.exe
(Gigabyte Technology CO., LTD.) C:\Program Files (x86)\GIGABYTE\smart6\timelock\AlarmClock.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Valve Corporation) S:\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) S:\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Valve Corporation) S:\Steam\bin\cef\cef.win7\steamwebhelper.exe
() C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
() C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe
() C:\Program Files (x86)\NETGEAR Genie\bin\genie2_tray.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
(Razer, Inc.) C:\Users\Razgriz\AppData\Local\Razer\InGameEngine\cache\RzStats.Manager\rzcefrenderprocess.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(General Workings, Inc.) D:\Streamlabs\Streamlabs OBS\Streamlabs OBS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

"Path" (D:\Python 3.6.5\Scripts\;D:\Python 3.6.5\ -> %SystemRoot%\System32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SystemRoot%\System32\WindowsPowerShell\v1.0\;D:\Python 3.6.5\Scripts\;D:\Python 3.6.5\) <==== Repaired successfully
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [242392 2018-04-10] (AVAST Software)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-10] (Realtek Semiconductor)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [315880 2018-01-05] (Adobe Systems, Incorporated)
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596664 2017-08-30] (Razer Inc.)
HKLM-x32\...\Run: [DSATray] => C:\Program Files (x86)\Intel Driver and Support Assistant\DsaTray.exe [131360 2017-09-18] (Intel)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\RunOnce: [SBrowserCheck] => C:\ProgramData\Avast Software\Avast\SecureBrowser\avast_browser_setup_checker.exe [4788840 2018-04-04] ()
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\Run: [NETGEARGenie] => C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe [611584 2016-03-09] (NETGEAR Inc.)
HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\Run: [Steam] => S:\Steam\steam.exe [3199776 2018-04-02] (Valve Corporation)
HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\Run: [Spotify Web Helper] => C:\Users\Razgriz\AppData\Roaming\Spotify\SpotifyWebHelper.exe [782736 2018-03-29] (Spotify Ltd)
HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Mystify.scr [242688 2010-11-20] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: [S-1-5-21-3994983153-2067325683-1543746672-1000] => localhost:8080
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2F4BED18-818D-41C1-83CE-056A6CCA2793}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{60388A25-1E56-4199-800C-75C6E2C61144}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{B5F41E7A-4F6A-4A1B-9DC0-F847F5559AA1}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{FD709ACB-07C9-4328-8C18-29D3883D3C04}: [DhcpNameServer] 172.20.10.1

Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.yahoo.com/?fr=yset_ie_syc_oracle&type=orcl_hpset
SearchScopes: HKLM -> {8CDE19E6-71C2-4B46-89B7-35F6A18C571A} URL =
SearchScopes: HKLM-x32 -> DefaultScope value is missing
SearchScopes: HKU\.DEFAULT -> {075D5C18-1C41-48a7-8BBA-CA221BA00058} URL = hxxp://search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=IEBDSV
SearchScopes: HKU\.DEFAULT -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SPLBR1&pc=SPLH
SearchScopes: HKU\.DEFAULT -> {BAEED091-9C78-4e20-BBF4-D3FD86FF34C7} URL = hxxp://www.google.com/cse?cx=partner-pub-3794288947762788%3A7941509802&ie=UTF-8&sa=Search&siteurl=www.google.com%2Fcse%2Fhome%3Fcx%3Dpartner-pub-3794288947762788%3A7941509802&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3994983153-2067325683-1543746672-1000 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3994983153-2067325683-1543746672-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3994983153-2067325683-1543746672-1000 -> {9B97950D-482C-1D79-568F-FC7B9D40C785} URL = hxxp://www.bing.com/search?q={searchTerms}&pc=Z192&form=ZGAIDF&install_date=20110818&iesrc={referrer:source}
SearchScopes: HKU\S-1-5-21-3994983153-2067325683-1543746672-1000 -> {DE0487C4-23B3-40a2-8335-5AB5C28AB17A} URL = hxxp://www.google.com/cse?cx=partner-pub-3794288947762788%3A7941509802&ie=UTF-8&sa=Search&siteurl=www.google.com%2Fcse%2Fhome%3Fcx%3Dpartner-pub-3794288947762788%3A7941509802&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3994983153-2067325683-1543746672-1000 -> {EA50AF74-0E25-462c-BA91-27E604663227} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SPLBR1&pc=SPLH
SearchScopes: HKU\S-1-5-21-3994983153-2067325683-1543746672-1000 -> {FF35D975-19EE-43C4-B161-BB06EEC9B786} URL = hxxps://search.yahoo.com/search?p={searchTerms}&intl=us&fr=yset_ie_syc_oracle&type=orcl_default&partnerexternal-oracle=external-oracle
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2018-04-09] (Microsoft Corporation)
BHO: GBHO.BHO -> {45d30484-7ded-43d9-957a-d2fd1f046511} -> C:\Windows\System32\mscoree.dll [2010-11-04] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll [2017-06-04] (Oracle Corporation)
BHO: PDN64BitBookMarkActivator.BookMark64BitActivator -> {887cdc33-0de3-4fd5-a5d3-eccd4b4b396c} -> C:\Windows\System32\mscoree.dll [2010-11-04] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2018-02-19] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2018-04-09] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-06-04] (Oracle Corporation)
BHO-x32: RealPlayer Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2012-05-30] (RealPlayer)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2018-04-09] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-06-04] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2018-02-19] (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL [2018-04-09] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2018-04-09] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-06-04] (Oracle Corporation)
Toolbar: HKLM - Smart Recovery 2 - {1d09c093-f71e-43c3-b948-19316cbd695e} - C:\Windows\System32\mscoree.dll [2010-11-04] (Microsoft Corporation)
DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {0D41B8C5-2599-4893-8183-00195EC8D5F9} hxxp://support.asus.com/select/asusTek_sys_ctrl3.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/130321/CTPID.cab
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-04-09] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2018-04-09] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-04-09] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2018-04-09] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-04-09] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2018-04-09] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-04-09] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2018-04-09] (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} -  No File

FireFox:
========
FF ProfilePath: C:\Users\Razgriz\AppData\Roaming\Mozilla\Firefox\Profiles\j98tm9ci.default [2018-04-15]
FF user.js: detected! => C:\Users\Razgriz\AppData\Roaming\Mozilla\Firefox\Profiles\j98tm9ci.default\user.js [2016-03-24]
FF Homepage: Mozilla\Firefox\Profiles\j98tm9ci.default -> hxxps://bb.cod.edu/webapps/login/
FF NewTab: Mozilla\Firefox\Profiles\j98tm9ci.default -> hxxp://www.google.com/
FF Extension: (Avast SafePrice) - C:\Users\Razgriz\AppData\Roaming\Mozilla\Firefox\Profiles\j98tm9ci.default\Extensions\sp@avast.com.xpi [2018-03-12]
FF Extension: (Avast Online Security) - C:\Users\Razgriz\AppData\Roaming\Mozilla\Firefox\Profiles\j98tm9ci.default\Extensions\wrc@avast.com.xpi [2017-10-11]
FF Extension: (TLS 1.3 gradual roll-out) - C:\Users\Razgriz\AppData\Roaming\Mozilla\Firefox\Profiles\j98tm9ci.default\features\{5490d3cb-2039-447d-86d3-7ce7d8048630}\tls13-rollout-bug1442042@mozilla.org.xpi [2018-04-02] [Legacy]
FF Extension: (No Name) - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2017-08-25] [not signed]
FF Extension: (Skype Click to Call) - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-04-11] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext => not found
FF HKLM-x32\...\Firefox\Extensions: [{97E22097-9A2F-45b1-8DAF-36AD648C7EF4}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF Extension: (RealPlayer Browser Record Plugin) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2015-07-12] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_27_0_0_183.dll [2017-11-07] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-06-04] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-06-04] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-04-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_183.dll [2017-11-07] ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.)
FF Plugin-x32: @esn/esnlaunch,version=2.1.7 -> C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB)
FF Plugin-x32: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-06-04] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-06-04] (Oracle Corporation)
FF Plugin-x32: @live.heroesandgenerals.com/npretox -> R:\Heroes & Generals\live\npretox-1.0.6.1\npretoxlive-1.0.6.1.dll [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-04-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2018-04-09] (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-13] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-13] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=1.1.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-02-22] (Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxps://www.google.com/
CHR StartupUrls: Default -> "hxxps://www.google.com/","hxxps://search.yahoo.com/?type=523482&fr=yo-yhp-ch"
CHR NewTab: Default ->  Not-active:"chrome-extension://commhkacjheiacaopdonmodahaoadoln/newtab.html"
CHR Profile: C:\Users\Razgriz\AppData\Local\Google\Chrome\User Data\Default [2018-04-16]
CHR Extension: (BetterTTV) - C:\Users\Razgriz\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2017-12-27]
CHR Extension: (Docs) - C:\Users\Razgriz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-12-27]
CHR Extension: (Google Drive) - C:\Users\Razgriz\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\Razgriz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Honey) - C:\Users\Razgriz\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2018-04-14]
CHR Extension: (Adblock Plus) - C:\Users\Razgriz\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2018-01-26]
CHR Extension: (Yahoo Partner) - C:\Users\Razgriz\AppData\Local\Google\Chrome\User Data\Default\Extensions\commhkacjheiacaopdonmodahaoadoln [2017-09-09]
CHR Extension: (Google Search) - C:\Users\Razgriz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Adobe Acrobat) - C:\Users\Razgriz\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-08]
CHR Extension: (Avast SafePrice) - C:\Users\Razgriz\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2018-03-13]
CHR Extension: (Google Docs Offline) - C:\Users\Razgriz\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (Avast Online Security) - C:\Users\Razgriz\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-03-13]
CHR Extension: (Pinterest Save Button) - C:\Users\Razgriz\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2017-12-27]
CHR Extension: (TweetDeck by Twitter) - C:\Users\Razgriz\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdpomandigafcibbmofojjchbcdagbl [2016-04-15]
CHR Extension: (VLC) - C:\Users\Razgriz\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhafecgfkakfbhlbjffclfaomoliicpm [2015-03-26]
CHR Extension: (FullStream) - C:\Users\Razgriz\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkchcbdilffpbpkknniliidiflhbagkl [2015-12-14]
CHR Extension: (Twitch Now) - C:\Users\Razgriz\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlmbdmpjmlijibeockamioakdpmhjnpk [2018-02-13]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Razgriz\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-04]
CHR Extension: (Enhanced Steam) - C:\Users\Razgriz\AppData\Local\Google\Chrome\User Data\Default\Extensions\okadibdjfemgnhjiembecghcbfknbfhg [2018-03-31]
CHR Extension: (Gmail) - C:\Users\Razgriz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR Extension: (Chrome Media Router) - C:\Users\Razgriz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-03-23]
CHR Extension: (Twitch Giveaways) - C:\Users\Razgriz\AppData\Local\Google\Chrome\User Data\Default\Extensions\poohjpljfecljomfhhimjhddddlidhdd [2018-04-11]
CHR HKLM-x32\...\Chrome\Extension: [commhkacjheiacaopdonmodahaoadoln] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx <not found>

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2319848 2018-01-05] (Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7603408 2018-04-10] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [313640 2018-04-10] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [423744 2018-04-10] (AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6076936 2018-03-27] ()
R2 Bonjour Service; C:\Program Files (x86)\Blizzard\Bonjour Service\mDNSResponder.exe [390504 2017-12-27] (Apple Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [7761584 2018-03-03] (Microsoft Corporation)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2014-03-05] (Creative Labs) [File not signed]
S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2014-03-05] (Creative Labs) [File not signed]
S3 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [294912 2010-09-29] (Creative Technology Ltd) [File not signed]
S2 DSAService; C:\Program Files (x86)\Intel Driver and Support Assistant\DSAService.exe [22816 2017-09-18] (Intel)
R2 ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe [824592 2017-03-07] ()
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6479136 2018-03-27] (Malwarebytes)
S3 NETGEARGenieDaemon; C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe [232192 2016-03-09] (NETGEAR)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [521064 2018-01-10] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [521064 2018-01-10] (NVIDIA Corporation)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1450824 2017-09-10] (Overwolf LTD)
S3 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2015-11-06] ()
S3 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2015-11-06] ()
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [189264 2017-07-19] ()
R2 RzSurroundVADStreamingService; C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe [4254720 2015-07-28] (A-Volute) [File not signed]
R2 Smart TimeLock; C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe [114688 2009-10-13] (Gigabyte Technology CO., LTD.) [File not signed]
S2 SystemUsageReportSvc_QUEENCREEK; C:\Program Files\Intel Driver and Support Assistant\SUR\SurSvc.exe [157456 2017-03-07] ()
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10945776 2017-12-15] (TeamViewer GmbH)
S3 USER_ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe [824592 2017-03-07] ()
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S3 HiPatchService; R:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [X]
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
S3 Origin Client Service; "R:\Origin\OriginClientService.exe" [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 61883; C:\Windows\System32\DRIVERS\61883.sys [60288 2009-07-13] (Microsoft Corporation)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21104 2011-01-10] ()
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [196640 2018-04-10] (AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdrivera.sys [227504 2018-03-13] (AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsha.sys [199440 2018-03-13] (AVAST Software)
R0 aswblog; C:\Windows\System32\drivers\aswbloga.sys [343752 2018-03-13] (AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniva.sys [57680 2018-03-13] (AVAST Software)
S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [46968 2018-04-10] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [41832 2017-09-03] (AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [147224 2018-04-12] (AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2018-01-21] (AVAST Software)
R1 aswNetSec; C:\Windows\System32\drivers\aswNetSec.sys [633984 2018-04-10] (AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [111352 2018-04-10] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84368 2018-04-10] (AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1026696 2018-04-10] (AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [460520 2018-04-10] (AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [205976 2018-04-10] (AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [380528 2018-04-10] (AVAST Software)
S3 EagleX64; no ImagePath
S3 ElgatoGC656Y; C:\Windows\System32\Drivers\ElgatoGC656.sys [43488 2015-11-06] (UB658)
R3 ElgatoVAD; C:\Windows\System32\DRIVERS\ElgatoVAD.sys [28800 2016-08-16] (Elgato Systems GmbH)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [76192 2018-03-19] ()
S3 GGSAFERDriver; no ImagePath
S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2011-09-29] ()
S3 IOMap; C:\Windows\system32\drivers\IOMap64.sys [23680 2010-02-22] (ASUSTeK Computer Inc.)
S4 LMIRfsClientNP; no ImagePath
S3 MarvinBus; C:\Windows\System32\DRIVERS\MarvinBus64.sys [261120 2005-09-23] (Pinnacle Systems GmbH) [File not signed]
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [193768 2018-04-12] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [112864 2018-04-15] (Malwarebytes)
R3 MBAMProtection; C:\Windows\System32\DRIVERS\mbam.sys [44768 2018-04-15] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [253664 2018-04-15] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [93816 2018-04-15] (Malwarebytes)
R2 NPF; C:\Windows\system32\drivers\npf.sys [35344 2016-05-06] (CACE Technologies, Inc.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [32104 2018-01-10] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [59240 2017-12-14] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [57792 2017-11-27] (NVIDIA Corporation)
S3 PCASp50; C:\Windows\System32\Drivers\PCASp50.sys [45752 2009-10-28] (Printing Communications Assoc., Inc. (PCAUSA))
S3 rzdaendpt; C:\Windows\System32\DRIVERS\rzdaendpt.sys [43720 2015-08-13] (Razer Inc)
R3 rzendpt; C:\Windows\System32\DRIVERS\rzendpt.sys [50392 2015-08-13] (Razer Inc)
S3 RZMAELSTROMVADService; C:\Windows\System32\drivers\RzMaelstromVAD.sys [32768 2014-06-09] (Windows (R) Win 7 DDK provider)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [43256 2017-07-18] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [137208 2017-08-19] (Razer, Inc.)
R3 RZSURROUNDVADService; C:\Windows\System32\drivers\RzSurroundVAD.sys [49176 2016-10-16] (Windows (R) Win 7 DDK provider)
S3 rzvkeyboard; C:\Windows\System32\DRIVERS\rzvkeyboard.sys [44232 2015-08-13] (Razer Inc)
S3 Said11a9; C:\Windows\System32\DRIVERS\Said11a9.sys [26368 2013-04-30] (Saitek)
S3 SaiK11a9; C:\Windows\System32\DRIVERS\SaiK11a9.sys [180992 2013-04-30] (Saitek)
S3 SaiKa109; C:\Windows\System32\DRIVERS\SaiKa109.sys [179904 2014-04-14] (Saitek)
R3 SaiMini; C:\Windows\System32\DRIVERS\SaiMini.sys [25120 2013-04-30] (Saitek)
R3 SaiNtBus; C:\Windows\System32\drivers\SaiBus.sys [51560 2014-04-14] (Saitek)
R3 semav6msr64; C:\Windows\system32\drivers\semav6msr64.sys [21984 2016-10-18] ()
S1 EIO64; system32\DRIVERS\EIO64.sys [X]
S3 EtronHub3; System32\Drivers\EtronHub3.sys [X]
S3 EtronXHCI; System32\Drivers\EtronXHCI.sys [X]
S2 LMIInfo; \??\C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys [X]
S1 SDHookDriver; \??\C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHookDrv64.sys [X]
S3 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [X]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-04-16 02:25 - 2018-04-16 02:27 - 000035318 _____ C:\Users\Razgriz\Desktop\FRST.txt
2018-04-16 02:24 - 2018-04-16 02:24 - 002403328 _____ (Farbar) C:\Users\Razgriz\Desktop\FRST64.exe
2018-04-15 21:23 - 2018-04-15 23:23 - 000093816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2018-04-15 21:22 - 2018-04-15 21:22 - 000000000 _____ C:\Windows\system32\last.dump
2018-04-15 21:20 - 2018-04-15 21:20 - 000253664 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2018-04-14 22:13 - 2018-04-15 21:22 - 000112864 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2018-04-12 22:24 - 2018-04-12 22:24 - 000003162 _____ C:\Windows\System32\Tasks\{EED64AFA-CBDE-4742-B9DD-DB3ED633AA36}
2018-04-11 16:12 - 2018-04-15 21:22 - 000044768 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2018-04-11 16:11 - 2018-04-12 16:06 - 000193768 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2018-04-11 16:08 - 2018-04-11 16:08 - 000001827 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2018-04-11 16:08 - 2018-04-11 16:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2018-04-11 16:08 - 2018-03-19 12:57 - 000076192 _____ C:\Windows\system32\Drivers\mbae64.sys
2018-04-11 16:07 - 2018-04-11 16:07 - 000000000 ____D C:\ProgramData\Malwarebytes
2018-04-11 00:05 - 2018-04-11 00:05 - 000001527 _____ C:\Users\Razgriz\AppData\Local\recently-used.xbel
2018-04-10 23:39 - 2018-04-10 23:39 - 000000000 ____D C:\Users\Razgriz\.thumbnails
2018-04-10 23:34 - 2018-04-10 23:43 - 000000000 ____D C:\Users\Razgriz\AppData\Local\gtk-2.0
2018-04-10 23:16 - 2018-04-11 00:05 - 000000000 ____D C:\Users\Razgriz\.gimp-2.8
2018-04-10 23:16 - 2018-04-10 23:16 - 000000644 _____ C:\Users\Public\Desktop\GIMP 2.lnk
2018-04-10 23:16 - 2018-04-10 23:16 - 000000644 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk
2018-04-10 23:16 - 2018-04-10 23:16 - 000000000 ____D C:\Users\Razgriz\AppData\Local\gegl-0.2
2018-04-10 23:16 - 2018-04-10 23:16 - 000000000 ____D C:\Users\Razgriz\AppData\Local\fontconfig
2018-04-10 23:13 - 2018-04-10 23:14 - 089579672 _____ (The GIMP Team ) C:\Users\Razgriz\Downloads\gimp-2.8.22-setup.exe
2018-04-10 03:50 - 2018-04-10 03:50 - 000376536 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2018-04-09 18:25 - 2018-04-09 18:25 - 000000000 ____D C:\Users\Razgriz\.idlerc
2018-04-09 18:15 - 2018-04-09 18:15 - 000000000 ____D C:\Users\Razgriz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.6
2018-04-09 18:14 - 2018-04-09 18:14 - 000000000 ____D C:\Users\Razgriz\AppData\Local\Package Cache
2018-04-09 18:12 - 2018-04-09 18:12 - 030735232 _____ (Python Software Foundation) C:\Users\Razgriz\Downloads\python-3.6.5.exe
2018-04-09 18:11 - 2018-04-12 21:52 - 000000000 ____D C:\Users\Razgriz\Desktop\Triviabot
2018-04-09 15:50 - 2018-04-09 15:50 - 000003190 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3994983153-2067325683-1543746672-1000
2018-04-09 15:50 - 2018-04-09 15:50 - 000002173 _____ C:\Users\Razgriz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2018-04-09 02:11 - 2018-04-09 02:11 - 000460362 _____ C:\Users\Razgriz\Desktop\Dagda.rar
2018-04-09 01:05 - 2018-04-09 01:05 - 000000000 ____D C:\Users\Razgriz\Documents\Custom Office Templates
2018-04-09 00:50 - 2018-04-09 15:50 - 000000000 ___RD C:\Users\Razgriz\OneDrive
2018-04-09 00:50 - 2018-04-09 00:50 - 000000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2018-04-09 00:45 - 2018-04-09 00:45 - 000002339 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business 2016.lnk
2018-04-09 00:45 - 2018-04-09 00:45 - 000002334 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2018-04-09 00:45 - 2018-04-09 00:45 - 000002333 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2018-04-09 00:45 - 2018-04-09 00:45 - 000002297 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2018-04-09 00:45 - 2018-04-09 00:45 - 000002296 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2018-04-09 00:45 - 2018-04-09 00:45 - 000002290 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2018-04-09 00:45 - 2018-04-09 00:45 - 000002284 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2018-04-09 00:45 - 2018-04-09 00:45 - 000002276 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2018-04-09 00:45 - 2018-04-09 00:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016 Tools
2018-04-09 00:44 - 2018-04-09 00:47 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-04-09 00:34 - 2018-04-09 00:34 - 000000000 ____D C:\Program Files\Microsoft Office 15
2018-04-09 00:33 - 2018-04-09 00:33 - 004632864 _____ (Microsoft Corporation) C:\Users\Razgriz\Downloads\Setup.X86.en-us_O365ProPlusRetail_09d67ab7-a5eb-4f6c-8e20-2d34b2cc8ff6_TX_PR_b_64_.exe
2018-04-09 00:21 - 2018-04-09 00:21 - 000000000 ____D C:\Users\Razgriz\Desktop\Dagda
2018-04-09 00:19 - 2018-04-09 00:19 - 000353706 _____ C:\Users\Razgriz\Downloads\Document1.pdf
2018-04-04 17:00 - 2018-04-04 17:00 - 000000000 ____D C:\Users\Razgriz\AppData\Roaming\Streamlabs OBS
2018-03-29 01:25 - 2018-03-29 01:25 - 000000000 ____D C:\ProgramData\RSI PTU Launcher
2018-03-29 00:08 - 2018-03-29 01:25 - 000000000 ____D C:\Users\Razgriz\AppData\Roaming\rsiptulauncher
2018-03-29 00:08 - 2018-03-29 00:08 - 000001059 _____ C:\Users\Public\Desktop\RSI PTU Launcher.lnk
2018-03-29 00:05 - 2018-03-29 00:05 - 095011208 _____ (Cloud Imperium Games) C:\Users\Razgriz\Downloads\RSI-Setup-1.0.0-ptu.33.exe
2018-03-28 16:08 - 2018-03-28 16:08 - 000897688 _____ (Python Software Foundation) C:\Windows\pyw.exe
2018-03-28 16:08 - 2018-03-28 16:08 - 000897688 _____ (Python Software Foundation) C:\Windows\py.exe
2018-03-27 23:58 - 2018-03-28 00:16 - 000008960 _____ C:\Users\Razgriz\Downloads\Tree_Fall_Small-Daniel_Simion-1639156552.mp3.sfk
2018-03-27 23:55 - 2018-03-27 23:57 - 000009680 _____ C:\Users\Razgriz\Downloads\Bullets Guns Cannons-SoundBible.com-409023104.mp3.sfk
2018-03-26 03:15 - 2018-04-06 00:36 - 000000000 ____D C:\Users\Razgriz\AppData\Roaming\rsilauncher
2018-03-26 03:15 - 2018-03-29 00:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roberts Space Industries
2018-03-26 03:15 - 2018-03-26 03:15 - 000001011 _____ C:\Users\Public\Desktop\RSI Launcher.lnk
2018-03-26 03:12 - 2018-03-26 03:13 - 095015624 _____ (Cloud Imperium Games) C:\Users\Razgriz\Downloads\RSI-Setup-1.0.0.exe
2018-03-26 02:22 - 2018-03-26 02:22 - 000011168 _____ C:\Users\Razgriz\Downloads\twitchtriviabot-master.zip
2018-03-26 02:22 - 2018-03-26 02:22 - 000003166 _____ C:\Windows\System32\Tasks\{94B13AC1-B447-4D77-A56C-A8B09E46F69A}
2018-03-26 02:14 - 2018-03-26 02:14 - 019161088 _____ C:\Users\Razgriz\Downloads\python-2.7.13.msi
2018-03-26 02:13 - 2018-03-26 02:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Python 2.7
2018-03-26 02:11 - 2018-03-26 02:11 - 020082688 _____ C:\Users\Razgriz\Downloads\python-2.7.13.amd64.msi

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-04-16 02:27 - 2015-03-14 19:05 - 000000000 _____ C:\Windows\system32\RzSurroundVADAudioDeviceManager_log.txt
2018-04-16 02:25 - 2016-03-24 21:36 - 000000000 ____D C:\FRST
2018-04-16 02:18 - 2015-12-03 22:04 - 000000000 ____D C:\Users\Razgriz\AppData\Local\Spotify
2018-04-16 02:07 - 2018-03-09 01:44 - 000000000 ____D C:\Users\Razgriz\AppData\Roaming\slobs-client
2018-04-16 02:07 - 2014-01-17 16:16 - 000000000 ____D C:\Users\Razgriz\AppData\Local\CrashDumps
2018-04-16 02:00 - 2016-06-08 22:02 - 000000000 ____D C:\Users\Razgriz\AppData\Roaming\Factorio
2018-04-16 00:23 - 2015-12-03 22:03 - 000000000 ____D C:\Users\Razgriz\AppData\Roaming\Spotify
2018-04-15 22:36 - 2009-07-13 23:45 - 000014240 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-04-15 22:36 - 2009-07-13 23:45 - 000014240 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-04-15 21:38 - 2011-08-02 21:25 - 000000000 ____D C:\ProgramData\NVIDIA
2018-04-15 21:29 - 2017-04-04 22:14 - 000004168 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2018-04-15 21:23 - 2012-11-29 05:45 - 000000000 ____D C:\Users\Razgriz\AppData\Local\NETGEARGenie
2018-04-15 21:15 - 2009-07-14 00:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-04-15 00:20 - 2016-11-16 21:42 - 000000000 ____D C:\Users\Razgriz\AppData\LocalLow\Mozilla
2018-04-15 00:08 - 2018-02-04 22:10 - 000000000 ____D C:\Users\Razgriz\AppData\Local\FalloutShelter
2018-04-12 23:41 - 2018-03-09 03:45 - 000000865 _____ C:\Users\Public\Desktop\Streamlabs Chatbot.lnk
2018-04-12 15:06 - 2017-04-04 22:14 - 000147224 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2018-04-12 07:53 - 2011-08-13 16:12 - 000000000 ____D C:\Users\Razgriz\AppData\Roaming\TS3Client
2018-04-12 01:56 - 2017-04-21 19:01 - 000000000 ____D C:\Users\Razgriz\AppData\Roaming\obs-studio
2018-04-10 23:39 - 2011-08-02 21:10 - 000000000 ____D C:\Users\Razgriz
2018-04-10 16:49 - 2015-11-16 18:09 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-04-10 16:48 - 2015-10-26 21:26 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2018-04-10 03:50 - 2017-11-19 00:43 - 000196640 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2018-04-10 03:50 - 2017-04-04 22:14 - 000460520 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2018-04-10 03:50 - 2017-04-04 22:14 - 000380528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2018-04-10 03:50 - 2017-04-04 22:14 - 000205976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2018-04-10 03:50 - 2017-04-04 22:14 - 000111352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2018-04-10 03:50 - 2017-04-04 22:14 - 000084368 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2018-04-10 03:50 - 2017-04-04 22:14 - 000046968 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2018-04-10 03:49 - 2018-01-21 23:53 - 000633984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetSec.sys
2018-04-10 03:49 - 2017-04-04 22:14 - 001026696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2018-04-09 18:14 - 2016-11-15 22:26 - 000000000 ____D C:\ProgramData\Package Cache
2018-04-09 15:26 - 2011-08-02 22:05 - 000156088 _____ C:\Users\Razgriz\AppData\Local\GDIPFONTCACHEV1.DAT
2018-04-09 15:22 - 2009-07-13 23:45 - 000567640 _____ C:\Windows\system32\FNTCACHE.DAT
2018-04-09 00:55 - 2011-12-03 19:25 - 000000000 ____D C:\Users\Razgriz\AppData\LocalLow\Temp
2018-04-09 00:49 - 2011-08-02 21:58 - 000000000 ____D C:\Users\Razgriz\AppData\Roaming\Skype
2018-04-09 00:47 - 2011-08-19 00:09 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2018-04-09 00:47 - 2009-07-13 22:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2018-04-09 00:45 - 2009-07-13 22:20 - 000000000 ____D C:\Windows\inf
2018-04-09 00:44 - 2011-08-19 00:07 - 000000000 ____D C:\Program Files\Microsoft Office
2018-04-08 21:15 - 2017-10-24 14:37 - 000000000 ____D C:\Program Files (x86)\Intel Driver and Support Assistant
2018-04-06 00:26 - 2016-09-14 21:05 - 000000000 ____D C:\Users\Razgriz\AppData\Local\Star Citizen
2018-04-04 01:55 - 2017-12-11 19:04 - 000000000 ____D C:\Users\Razgriz\AppData\Roaming\discord
2018-04-03 22:42 - 2011-08-29 18:56 - 000000000 ____D C:\Users\Razgriz\Documents\My Games
2018-04-03 21:37 - 2013-09-13 17:08 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-04-02 17:40 - 2017-08-25 23:11 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-03-29 00:07 - 2012-12-15 05:28 - 000000000 ____D C:\Windows\SysWOW64\directx
2018-03-28 00:22 - 2016-12-05 00:07 - 000000000 ____D C:\Users\Razgriz\AppData\Roaming\Publish Providers
2018-03-22 23:12 - 2014-05-30 02:23 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-03-22 23:12 - 2014-05-30 02:23 - 000002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk

==================== Files in the root of some directories =======

2011-09-29 02:08 - 2010-11-16 12:49 - 000148195 _____ () C:\Program Files (x86)\Common Files\BookViewer.xap
2014-12-29 01:57 - 2014-12-29 01:59 - 271406815 _____ () C:\Users\Razgriz\AppData\Roaming\.minecraft.7z
2013-03-24 04:59 - 2013-03-24 04:59 - 000000000 _____ () C:\Users\Razgriz\AppData\Roaming\MinecraftLog.txt
2013-03-02 22:12 - 2013-03-02 22:12 - 000045270 _____ () C:\Users\Razgriz\AppData\Roaming\room_v3.dat
2013-01-19 20:07 - 2013-01-26 03:26 - 000703117 _____ () C:\Users\Razgriz\AppData\Roaming\technic-launcher.jar
2013-01-19 20:07 - 2013-01-19 20:07 - 000703007 _____ () C:\Users\Razgriz\AppData\Roaming\technic-launcher.jar.bak
2012-09-15 18:26 - 2017-10-24 15:30 - 000000600 _____ () C:\Users\Razgriz\AppData\Roaming\winscp.rnd
2011-09-29 01:49 - 2011-12-31 03:40 - 000007680 _____ () C:\Users\Razgriz\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-02-21 22:32 - 2016-04-15 15:13 - 000000600 _____ () C:\Users\Razgriz\AppData\Local\PUTTY.RND
2018-04-11 00:05 - 2018-04-11 00:05 - 000001527 _____ () C:\Users\Razgriz\AppData\Local\recently-used.xbel
2011-08-03 19:06 - 2017-04-24 14:51 - 000007620 _____ () C:\Users\Razgriz\AppData\Local\resmon.resmoncfg
2017-01-25 15:18 - 2017-03-05 21:09 - 000019456 _____ () C:\Users\Razgriz\AppData\Local\WebpageIcons.db

Some files in TEMP:
====================
2018-02-19 23:53 - 2018-02-27 04:27 - 000000180 _____ () C:\Users\Razgriz\AppData\Local\Temp\00e481b5e22dbe1f649fcddd505d3eb7.dll
2018-02-19 23:53 - 2018-03-29 05:04 - 000000017 _____ () C:\Users\Razgriz\AppData\Local\Temp\540377d955c5c37149c14c6714653a6c.dll
2017-10-24 15:18 - 2017-04-20 09:17 - 000050720 _____ (HP Inc.) C:\Users\Razgriz\AppData\Local\Temp\ACLMInstaller.exe
2017-05-08 20:24 - 2017-05-08 20:24 - 000008720 _____ () C:\Users\Razgriz\AppData\Local\Temp\BullseyeCoverage-2-x86.dll
2017-11-11 00:36 - 2017-11-11 00:36 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Razgriz\AppData\Local\Temp\jansi-64-2451875471334640654.dll
2017-10-10 23:46 - 2017-10-10 23:46 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Razgriz\AppData\Local\Temp\jansi-64-3900870693683101797.dll
2017-11-14 20:13 - 2017-11-14 20:13 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Razgriz\AppData\Local\Temp\jansi-64-518148016368217652.dll
2017-10-11 00:53 - 2017-10-11 00:53 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Razgriz\AppData\Local\Temp\jansi-64-7837935908874846357.dll
2018-03-09 01:14 - 2018-03-08 23:11 - 068724528 _____ (Malwarebytes                                                ) C:\Users\Razgriz\AppData\Local\Temp\mb3-setup-consumer-3.4.4.2398-1.0.322-1.0.4190.exe
2018-04-11 15:55 - 2018-04-11 02:36 - 071942408 _____ (Malwarebytes                                                ) C:\Users\Razgriz\AppData\Local\Temp\mb3-setup-consumer-3.4.5.2467-1.0.342-1.0.4514.exe
2016-12-05 22:58 - 2018-01-03 19:01 - 000763104 _____ (NVIDIA Corporation) C:\Users\Razgriz\AppData\Local\Temp\nvSCPAPI.dll
2017-10-24 14:24 - 2018-01-23 17:42 - 000877440 _____ (NVIDIA Corporation) C:\Users\Razgriz\AppData\Local\Temp\nvSCPAPI64.dll
2017-10-24 14:21 - 2018-01-23 17:42 - 000373744 _____ (NVIDIA Corporation) C:\Users\Razgriz\AppData\Local\Temp\nvStInst.exe
2017-10-24 15:29 - 2013-12-13 01:31 - 001696416 _____ (Trion Worlds Inc.) C:\Users\Razgriz\AppData\Local\Temp\riftuninstall.exe
2017-07-26 03:06 - 2017-07-26 03:06 - 000000000 _____ () C:\Users\Razgriz\AppData\Local\Temp\SolarWinds-ResponseTimeViewer-v1.0-GNS.exe
2017-10-24 13:45 - 2014-01-20 04:38 - 000354392 ____R (CANON INC.) C:\Users\Razgriz\AppData\Local\Temp\uninstall.exe
2017-08-04 20:01 - 2017-08-04 20:01 - 007194312 _____ (Microsoft Corporation) C:\Users\Razgriz\AppData\Local\Temp\vcredist_2013.x64.exe
2017-06-13 03:43 - 2017-06-13 03:43 - 014749120 _____ (Microsoft Corporation) C:\Users\Razgriz\AppData\Local\Temp\vc_redist.x64.exe
2017-08-04 20:01 - 2017-08-04 20:01 - 015254384 _____ (Microsoft Corporation) C:\Users\Razgriz\AppData\Local\Temp\vc_redist_2017.x64.exe
2017-07-26 03:06 - 2017-07-26 03:06 - 000000000 _____ () C:\Users\Razgriz\AppData\Local\Temp\Wireshark-win64-2.2.6.exe
2017-10-24 14:58 - 2006-05-24 14:10 - 000455600 _____ (Macrovision Corporation) C:\Users\Razgriz\AppData\Local\Temp\_is3497.exe
2017-10-24 15:09 - 2006-05-24 12:10 - 000455600 _____ (Macrovision Corporation) C:\Users\Razgriz\AppData\Local\Temp\_is98E5.exe
2017-10-24 14:55 - 2006-05-24 14:10 - 000455600 _____ (Macrovision Corporation) C:\Users\Razgriz\AppData\Local\Temp\_is9B45.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


ATTENTION: ==> Could not access BCD.

LastRegBack: 2018-02-27 19:54

==================== End of FRST.txt ============================

ADDITION EXTENDED

Code:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15.04.2018
Ran by Razgriz (16-04-2018 02:28:08)
Running from C:\Users\Razgriz\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2011-08-03 02:10:40)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3994983153-2067325683-1543746672-500 - Administrator - Disabled)
Da Herro (S-1-5-21-3994983153-2067325683-1543746672-1008 - Limited - Enabled) => C:\Users\Da Herro
Guest (S-1-5-21-3994983153-2067325683-1543746672-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3994983153-2067325683-1543746672-1007 - Limited - Enabled)
Razgriz (S-1-5-21-3994983153-2067325683-1543746672-1000 - Administrator - Enabled) => C:\Users\Razgriz

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

. . (HKLM\...\{8FD6FE5A-E1E1-47F3-BBE6-FE2B1364DCB8}) (Version: 7.1 - Intel) Hidden
. . . (HKLM-x32\...\{2394186A-5445-4293-B739-352009350342}) (Version: 3.0.0.9 - Intel) Hidden
@BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.11 - GIGABYTE)
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 18.011.20038 - Adobe Systems Incorporated)
Adobe Flash Player 27 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 27.0.0.159 - Adobe Systems Incorporated)
Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.183 - Adobe Systems Incorporated)
Apple Application Support (32-bit) (HKLM-x32\...\{9BA1A894-B42F-4805-BC8C-349C905A3930}) (Version: 5.3.1 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{7EAC8A42-9FAC-4F6B-AABF-C08C9F2E0F13}) (Version: 5.3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.13 - Michael Tippach)
ASUS nVidia Driver (HKLM-x32\...\{EEA080A7-4331-4593-A071-D0862A8178B9}) (Version: 1.00.0000 - ASUSTek) Hidden
Auto Clicker v1.4 (HKLM-x32\...\{C0A7E4F3-82CC-416B-82C6-BA06AACFD635}_is1) (Version: 1.4 - MurGee.com)
Avast Premier (HKLM-x32\...\Avast Antivirus) (Version: 18.3.2333 - AVAST Software)
Battlefield Play4Free (HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\{87686C21-8A15-4b4d-A3F1-11141D9BE094}) (Version:  - EA Digital illusions)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
Blizzard App (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
CameraHelperMsi (HKLM-x32\...\{15634701-BACE-4449-8B25-1567DA8C9FD3}) (Version: 13.31.1038.0 - Logitech) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 3.22 - Piriform)
Cisco Packet Tracer 7.0 64Bit (HKLM\...\Cisco Packet Tracer 7.0 64Bit_is1) (Version:  - Cisco Systems, Inc.)
Cisco Packet Tracer 7.1 64Bit (HKLM\...\Cisco Packet Tracer 7.1 64Bit_is1) (Version: 7.1.0.0222 - Cisco Systems, Inc.)
Corel Painter Photo Essentials 4 (HKLM-x32\...\{707EB912-C597-49D8-9460-46CC9AB03EBE}) (Version: 4.1 - Corel Corporation) Hidden
Corel PaintShop Photo Pro X3 (HKLM-x32\...\{DE4BF4BE-3CDC-43B5-BBDA-DDDA73103111}) (Version: 1.00.0000 - Corel Corporation) Hidden
CPUID CPU-Z 1.77 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
Curse (HKLM-x32\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Curse)
DC Mod Manager (HKLM-x32\...\DC Mod Manager) (Version:  - )
Destiny 2 (HKLM-x32\...\Destiny 2) (Version:  - Blizzard Entertainment)
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
Discord (HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\Discord) (Version: 0.0.300 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 390.77 - NVIDIA Corporation) Hidden
DivX Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.5 - DivX, LLC)
DZLauncher version 0.1.5.0 (HKLM-x32\...\{1E299AE2-74C8-4CD8-6B17-A86E0ED3C4D2}_is1) (Version: 0.1.5.0 - Maca134)
Easy Tune 6 B11.0512.1 (HKLM-x32\...\{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE) Hidden
Easy Tune 6 B11.0512.1 (HKLM-x32\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
Elgato Game Capture HD (HKLM\...\{4281A206-158E-4C28-B078-397188759F60}) (Version: 3.20.33.1533 - Elgato Systems GmbH)
Epic Games Launcher (HKLM-x32\...\{8FEB5B5F-0777-4E9D-8705-06F0A2295544}) (Version: 1.1.143.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
erLT (HKLM-x32\...\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}) (Version: 1.20.138.34 - Logitech, Inc.) Hidden
EVGA OC Scanner X 2.2.2 (HKLM-x32\...\{CB92C58B-7BDF-48E3-92E3-51768DCCA585}_is1) (Version:  - EVGA)
EVGA Precision X 3.0.3 (HKLM-x32\...\PrecisionX) (Version: 3.0.3 - EVGA Corporation)
Game Capture HD v2.3.3.40 (HKLM-x32\...\Software_Elgato_Game Capture HD) (Version: 2.3.3.40 - Elgato Systems)
Game Capture HD60 Pro v1.1.0.149 (HKLM-x32\...\Software_Elgato_Game Capture HD60 Pro) (Version: 1.1.0.149 - Elgato Systems)
Game Capture HD60 S v1.1.0.160 (HKLM-x32\...\Software_Elgato_Game Capture HD60 S) (Version: 1.1.0.160 - Elgato Systems)
Game Capture HD60 v2.1.1.4 (HKLM-x32\...\Software_Elgato_Game Capture HD60) (Version: 2.1.1.4 - Elgato Systems)
GIMP 2.8.22 (HKLM\...\GIMP-2_is1) (Version: 2.8.22 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 65.0.3325.181 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Hearthstone Deck Tracker (HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\HearthstoneDeckTracker) (Version: 1.1.1.1 - HearthSim)
ICA (HKLM-x32\...\{DEAEB5DB-04FA-489D-94EF-8600898B93EE}) (Version: 1.6.1.224 - Corel Corporation) Hidden
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.6.0 - LIGHTNING UK!)
Innkeeper (HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\Innkeeper) (Version: 0.4.2 - Curse Inc.)
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1118 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{01f3f6b8-1a81-4b10-b51f-f69af12e1d69}) (Version: 3.0.0.9 - Intel)
Intel® RealSense™ SDK Runtime (HKLM-x32\...\ARP_for_prd_rs_sdk_runtime_10.0.26.0396) (Version: 10.0.26.0396 - Intel Corporation)
Intel® RealSense™ SDK Runtime Gold (x86): Core (HKLM-x32\...\{4BAB7070-1D73-11E6-8844-2C44FD873B55}) (Version: 10.0.26.396 - Intel Corporation) Hidden
Intel® RealSense™ SDK Runtime Gold (x86): Core: Calibration (HKLM-x32\...\{676C639E-1D73-11E6-BF2F-2C44FD873B55}) (Version: 10.0.26.396 - Intel Corporation) Hidden
Intel® RealSense™ SDK Runtime Gold (x86): User Segmentation (HKLM-x32\...\{51040000-1D73-11E6-A45D-2C44FD873B55}) (Version: 10.0.26.396 - Intel Corporation) Hidden
Internet TV for Windows Media Center (HKLM-x32\...\{9D318C86-AF4C-409F-A6AC-7183FF4CF424}) (Version: 4.2.2.0 - Microsoft Corporation)
IPM_PSP_CL (HKLM-x32\...\{DE99075E-7D25-4B96-B32E-BFE6FBFAA644}) (Version: 1.00.0000 - Your Company Name) Hidden
IPM_PSP_COM (HKLM-x32\...\{DEF8C145-CC4F-4DAA-AD5C-E707C07AEE50}) (Version: 1.00.0000 - Your Company Name) Hidden
iTunes (HKLM\...\{9D0D2A8B-7E7B-4D88-8D50-24286ED6A5EB}) (Version: 12.5.5.5 - Apple Inc.)
Java 8 Update 121 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
Java 8 Update 131 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
Java 8 Update 131 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
join.me (HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\JoinMe) (Version: 3.3.0.5346 - LogMeIn, Inc.)
Knoll Light Factory EZ Studio 15 (HKLM-x32\...\Knoll Light Factory EZ Studio 15) (Version:  - )
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\{79BF4901-1EC4-4726-B3C2-A7859706C6E7}) (Version: 3.0.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
Logitech Vid HD (HKLM-x32\...\Logitech Vid) (Version: 7.2 (7248) - Logitech Inc..)
Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.0 - Logitech Inc.)
LOLReplay (HKLM-x32\...\LOLReplay) (Version: 0.8.5.2 - www.leaguereplays.com)
LWS VideoEffects (HKLM\...\{138A4072-9E64-46BD-B5F9-DB2BB395391F}) (Version: 13.30.1379.0 - Logitech) Hidden
Magic Bullet Looks Studio 15 (HKLM-x32\...\Magic Bullet Looks Studio 15) (Version:  - )
Malwarebytes version 3.4.5.2467 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.4.5.2467 - Malwarebytes)
Microsoft .NET Framework 4.7.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft Flight Simulator SimConnect Client v10.0.61259.0 (HKLM-x32\...\{D61CA184-3F6D-4A50-B2CC-7A18447D6A8D}) (Version: 10.0.61259.0 - Microsoft Corporation)
Microsoft Flight Simulator SimConnect Client v10.0.62615.0 (HKLM-x32\...\{33D89314-361A-4495-A1E1-0ACBCE08F78D}) (Version: 10.0.62615.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D}) (Version: 3.5.95.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office 365 ProPlus - en-us (HKLM\...\O365ProPlusRetail - en-us) (Version: 16.0.8431.2236 - Microsoft Corporation)
Microsoft Office Professional 2010 (HKLM\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\OneDriveSetup.exe) (Version: 18.025.0204.0009 - Microsoft Corporation)
Microsoft Outlook Hotmail Connector 64-bit (HKLM\...\{95140000-0081-0409-1000-0000000FF1CE}) (Version: 14.0.6123.5001 - Microsoft Corporation)
Microsoft Urban Assault (HKLM-x32\...\Urban Assault 1.0) (Version:  - )
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25017 (HKLM-x32\...\{e9d78d68-c26c-4da7-9158-99355d8ef3ad}) (Version: 14.10.25017.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
MorphVOX Pro (HKLM-x32\...\{1DDBB040-3BEB-4057-90BB-B38B5E081D1B}) (Version: 4.3.21 - Screaming Bee)
Mozilla Firefox 59.0.2 (x64 en-US) (HKLM\...\Mozilla Firefox 59.0.2 (x64 en-US)) (Version: 59.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 59.0.2.6656 - Mozilla)
Mozilla Thunderbird 52.6.0 (x86 en-US) (HKLM-x32\...\Mozilla Thunderbird 52.6.0 (x86 en-US)) (Version: 52.6.0 - Mozilla)
MSI to redistribute MS VS2005 CRT libraries (HKLM-x32\...\{A8D93648-9F7F-407D-915C-62044644C3DA}) (Version: 8.0.50727.42 - The Firebird Project)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
Netflix in Windows Media Center (HKLM-x32\...\{0CA72D12-F6C6-4D43-A2A0-41F5AA17E2B6}) (Version: 3.3.101.0 - Microsoft Corporation)
NETGEAR Genie (HKLM-x32\...\NETGEAR Genie) (Version: 2.4.15.07 - NETGEAR Inc.)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.63.14 - Black Tree Gaming)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 5.9.6.2 - )
NVIDIA 3D Vision Controller Driver 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA Display Control Panel (HKLM\...\NVIDIA Display Control Panel) (Version: 6.14.12.5919 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.12.0.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.12.0.84 - NVIDIA Corporation)
NVIDIA Graphics Driver 390.77 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 390.77 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.36.6 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.36.6 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 18.0.1 - OBS Project)
obs-websocket version 4.0.0 (HKLM-x32\...\{117EE44F-48E1-49E5-A381-CC8D9195CF35}_is1) (Version: 4.0.0 - Stéphane Lepin)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.8431.2236 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.8431.2236 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.8326.2076 - Microsoft Corporation) Hidden
ON_OFF Charge B11.0110.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
Origin (HKLM-x32\...\Origin) (Version: 9.10.1.1501 - Electronic Arts, Inc.)
osu! (HKLM-x32\...\{f94da7f3-fcb7-4aaa-9891-5f4aa082b4e6}) (Version: latest - ppy Pty Ltd)
Overwatch (HKLM-x32\...\Overwatch) (Version:  - Blizzard Entertainment)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.107.36.0 - Overwolf Ltd.)
Pinnacle Studio 15 (HKLM-x32\...\{1362E602-9625-42D3-B57F-CDA9D26F9DA8}) (Version: 15.0.0.7593 - Pinnacle Systems)
Pinnacle Studio 15 Ultimate Collection Plugins (HKLM-x32\...\{BC7BED89-618B-4E89-8ADF-75D47F276223}) (Version: 15.0.0.7593 - Pinnacle Systems)
Pinnacle Studio Bonus Content (HKLM-x32\...\{FC030CB5-46A6-4229-AD6E-0AC869F509C8}) (Version: 15.0.0.51 - Pinnacle Systems)
Plants vs. Zombies (HKLM-x32\...\BFG-Plants vs Zombies) (Version:  - )
Plants vs. Zombies™ (HKLM-x32\...\{5E6536C2-E79A-49CF-83EA-817AD81F9FC8}) (Version: 1.2.0.1093 - Electronic Arts, Inc.)
PSPPContent (HKLM-x32\...\{DE8B9311-ADE7-4EDE-B121-326CAA3D225D}) (Version: 1.00.0000 - Corel Corporation) Hidden
PSPPRO_DCRAW (HKLM-x32\...\{DEF1928A-FC01-48E7-A7E6-4651D42EF6A1}) (Version: 13.0.0 - Corel Corporation) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.994 - Even Balance, Inc.)
Python 2.7.13 (64-bit) (HKLM\...\{4A656C6C-D24A-473F-9747-3A8D00907A04}) (Version: 2.7.13150 - Python Software Foundation)
Python 2.7.13 (HKLM-x32\...\{4A656C6C-D24A-473F-9747-3A8D00907A03}) (Version: 2.7.13150 - Python Software Foundation)
Python 3.6.5 (32-bit) (HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\{3346977b-49da-4095-8f4d-f56f103e52e9}) (Version: 3.6.5150.0 - Python Software Foundation)
Python 3.6.5 Add to Path (32-bit) (HKLM-x32\...\{1D3BE06D-5E44-48FF-8D61-B744808EBE46}) (Version: 3.6.5150.0 - Python Software Foundation) Hidden
Python 3.6.5 Core Interpreter (32-bit) (HKLM-x32\...\{58E1C809-82C5-4EDF-B69B-188A6C81F21F}) (Version: 3.6.5150.0 - Python Software Foundation) Hidden
Python 3.6.5 Development Libraries (32-bit) (HKLM-x32\...\{21FD2EE0-8D55-49DC-A1B0-771696DDEE98}) (Version: 3.6.5150.0 - Python Software Foundation) Hidden
Python 3.6.5 Documentation (32-bit) (HKLM-x32\...\{5C613D87-0AED-48A9-A216-3A3783463D6C}) (Version: 3.6.5150.0 - Python Software Foundation) Hidden
Python 3.6.5 Executables (32-bit) (HKLM-x32\...\{9107CF1A-A09C-4035-B29E-E79B4098AB8C}) (Version: 3.6.5150.0 - Python Software Foundation) Hidden
Python 3.6.5 pip Bootstrap (32-bit) (HKLM-x32\...\{C024F06C-0E37-4529-945F-7920A9CFFD78}) (Version: 3.6.5150.0 - Python Software Foundation) Hidden
Python 3.6.5 Standard Library (32-bit) (HKLM-x32\...\{8C2E8A7D-95CC-491C-AB9C-DE785A137D00}) (Version: 3.6.5150.0 - Python Software Foundation) Hidden
Python 3.6.5 Tcl/Tk Support (32-bit) (HKLM-x32\...\{052FD2FB-034D-4CDD-864E-798DE45C742A}) (Version: 3.6.5150.0 - Python Software Foundation) Hidden
Python 3.6.5 Test Suite (32-bit) (HKLM-x32\...\{86533809-919A-4858-AFC4-4226B86C5291}) (Version: 3.6.5150.0 - Python Software Foundation) Hidden
Python 3.6.5 Utility Scripts (32-bit) (HKLM-x32\...\{5C0C82E9-B580-4EE4-894A-4451A23B0E2C}) (Version: 3.6.5150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{8A66FEC2-E443-4219-B9AC-F9B10607B57C}) (Version: 3.6.6295.0 - Python Software Foundation)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.21.00.830 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.38.113.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6662 - Realtek Semiconductor Corp.)
RealUpgrade 1.1 (HKLM-x32\...\{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}) (Version: 1.1.0 - RealNetworks, Inc.) Hidden
Red Giant ToonIt Studio 15 (HKLM-x32\...\Red Giant ToonIt Studio 15) (Version:  - )
Red Light Center 3D Client (HKLM-x32\...\Red Light Center 3D Client) (Version: 1.9.4045 - Utherverse Digital Inc)
RSI Launcher 1.0.0 (HKLM\...\81bfc699-f883-50c7-b674-2483b6baae23) (Version: 1.0.0 - Cloud Imperium Games)
RSI PTU Launcher 1.0.1-ptu.3 (HKLM\...\94a6df8a-d3f9-558d-bb04-097c192530b9) (Version: 1.0.1-ptu.3 - Cloud Imperium Games)
SafeZone Stable 4.58.2552.909 (HKLM-x32\...\SafeZone 4.58.2552.909) (Version: 4.58.2552.909 - Avast Software) Hidden
SAM Broadcaster 2013 (HKLM-x32\...\SAM3) (Version: 2013 - Spacial Audio Solutions, LLC)
SAM VIBE (HKLM-x32\...\{3F33A735-E688-407C-B5C5-5FFDDE63C371}) (Version: 1.0.51666 - Spacial Audio Solutions, LLC)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
Setup (HKLM-x32\...\{DE612A3D-0DCC-4055-BB6A-0036F31158A0}) (Version: 1.6.1.224 - Corel Corporation) Hidden
SlimDX Runtime .NET 4.0 x64 (January 2012) (HKLM\...\{A2199A06-89C4-4187-AA4A-3A9676FB799D}) (Version: 2.0.13.43 - SlimDX Group)
Smart 6 B11.0512.1 (HKLM-x32\...\{3B35725F-C623-4A1E-B5CC-99C0868679E3}) (Version: 1.00.0000 - GIGABYTE)
Sound Blaster X-Fi (HKLM-x32\...\{0C9D0200-FA32-44B7-BBB3-7C03F700C4A0}) (Version: 1.0 - Creative Technology Limited)
Speccy (HKLM\...\Speccy) (Version: 1.16 - Piriform)
Spotify (HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\Spotify) (Version: 1.0.77.338.g758ebd78 - Spotify AB)
StarCraft (HKLM-x32\...\StarCraft) (Version:  - Blizzard Entertainment)
StarCraft II (HKLM-x32\...\StarCraft II) (Version:  - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
StreamLabels 0.2.8 (only current user) (HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\8000d50a-fcb7-5b38-8a3b-a02a0ec79daa) (Version: 0.2.8 - Streamlabs)
Streamlabs Chatbot version 1.0.2.46 (HKLM-x32\...\{08D3C5BB-C492-4916-B111-725081845380}_is1) (Version: 1.0.2.46 - Streamlabs)
Streamlabs OBS 0.8.16 (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.8.16 - General Workings, Inc.)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.0.6447 - TeamViewer)
Trapcode 3DStroke Studio 15 (HKLM-x32\...\Trapcode 3DStroke Studio 15) (Version:  - )
Trapcode Particular Studio (HKLM-x32\...\Trapcode Particular Studio) (Version:  - )
Trapcode Shine Studio 15 (HKLM-x32\...\Trapcode Shine Studio 15) (Version:  - )
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Uplay (HKLM-x32\...\Uplay) (Version: 46.0 - Ubisoft)
VC80CRTRedist - 8.0.50727.6195 (HKLM-x32\...\{933B4015-4618-4716-A828-5289FC03165F}) (Version: 1.2.0 - DivX, Inc) Hidden
Vegas Pro 11.0 (64-bit) (HKLM\...\{7DA57CC0-029B-11E2-A4C0-F04DA23A5C58}) (Version: 11.0.701 - Sony)
Viscera Cleanup Detail: alpha v0.25
(HKLM\...\UDK-8c26ea36-8b06-4101-82a8-7a7c9c76fda3) (Version:  - RuneStorm
)
Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
vPilot (HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\vPilot) (Version: 2.1.2 - Ross Carlson)
Warcraft III (HKLM-x32\...\Warcraft III) (Version:  - Blizzard Entertainment)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3994983153-2067325683-1543746672-1000_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\Razgriz\AppData\Local\Microsoft\OneDrive\17.3.6743.1212\amd64\FileCoAuthLib64.dll => No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-04-10] (AVAST Software)
ShellIconOverlayIdentifiers-x32-x32-x32-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  -> No File
ShellIconOverlayIdentifiers-x32-x32-x32-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  -> No File
ShellIconOverlayIdentifiers-x32-x32-x32-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} =>  -> No File
ShellIconOverlayIdentifiers-x32-x32-x32-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} =>  -> No File
ShellIconOverlayIdentifiers-x32-x32-x32-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  -> No File
ShellIconOverlayIdentifiers-x32-x32-x32-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} =>  -> No File
ShellIconOverlayIdentifiers-x32-x32-x32-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  -> No File
ShellIconOverlayIdentifiers-x32-x32-x32-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} =>  -> No File
ContextMenuHandlers1: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} =>  -> No File
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-04-10] (AVAST Software)
ContextMenuHandlers1: [Corel.Paint.Shop.Pro.Photo] -> {B1D2CD8F-45E9-49d1-838A-AAA5780D94B7} =>  -> No File
ContextMenuHandlers1: [jZip] -> {E677C7AD-2B66-4539-AA29-3771A1CFEDA9} =>  -> No File
ContextMenuHandlers1: [Notepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_04.dll [2011-07-18] ()
ContextMenuHandlers1: [UnLockerMenu] -> {A6FF0E3A-8437-482C-8E04-4F9E15C57538} =>  -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers2: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} =>  -> No File
ContextMenuHandlers2: [Corel.Paint.Shop.Pro.Photo] -> {B1D2CD8F-45E9-49d1-838A-AAA5780D94B7} =>  -> No File
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-04-10] (AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-03-27] (Malwarebytes)
ContextMenuHandlers4: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} =>  -> No File
ContextMenuHandlers4: [Corel.Paint.Shop.Pro.Photo] -> {B1D2CD8F-45E9-49d1-838A-AAA5780D94B7} =>  -> No File
ContextMenuHandlers4: [UnLockerMenu] -> {A6FF0E3A-8437-482C-8E04-4F9E15C57538} =>  -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2018-01-23] (NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-04-10] (AVAST Software)
ContextMenuHandlers6: [jZip] -> {E677C7AD-2B66-4539-AA29-3771A1CFEDA9} =>  -> No File
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-03-27] (Malwarebytes)
ContextMenuHandlers6: [UnLockerMenu] -> {A6FF0E3A-8437-482C-8E04-4F9E15C57538} =>  -> No File
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0C267AD2-D6D4-4426-AC79-87558B02FF0F} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-01-10] (NVIDIA Corporation)
Task: {0DEF8137-17CB-4508-A077-E4A9F2130FF3} - System32\Tasks\{7DE0019E-906F-42CE-9243-DBD6AFB417B9} => C:\Windows\system32\pcalua.exe -a C:\Users\Razgriz\Downloads\dow-140.exe -d C:\Users\Razgriz\Downloads
Task: {0E99D33F-4B41-4536-A305-C0665B679EBC} - System32\Tasks\Adobe Uninstaller => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
Task: {14FCFB3D-B7AE-48CD-B26F-F53E311FEE0D} - System32\Tasks\ASC7U_SkipUac_Razgriz => C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\ASC.exe
Task: {1520F92A-0708-4FAF-B978-B4296CCFCBBE} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-3994983153-2067325683-1543746672-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-03-06] (RealNetworks, Inc.)
Task: {16DCDD04-015E-46B3-83EE-C9FA9610D7A6} - System32\Tasks\{AABC23A9-A0C5-45C3-B54C-A35247FF0A1A} => C:\Windows\system32\pcalua.exe -a X:\XenoSetup_6_0_Win7-32.exe -d X:\
Task: {1C918618-BB48-4CFB-8710-3900F83C434B} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-01-10] (NVIDIA Corporation)
Task: {238F7D3B-08B8-49A1-A160-C5224DCB17A0} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-04-10] (AVAST Software)
Task: {3396B251-4D86-4243-88AF-061B450C2724} - System32\Tasks\AdobeGCInvoker-1.0-Razgriz-Monster-Razgriz => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-01-05] (Adobe Systems, Incorporated)
Task: {369C8E28-4148-4BEC-8B91-988ACA6FAF1F} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-01-10] (NVIDIA Corporation)
Task: {37B543A8-FD86-42D3-B4E3-6D4D82B193E8} - System32\Tasks\{EE69EB80-981C-4B47-B645-99B7ABAAC9A5} => C:\Windows\system32\pcalua.exe -a "R:\Programs\steamapps\common\Dawn of War Dark Crusade\DXP2-111-120.EXE" -d "R:\Programs\steamapps\common\Dawn of War Dark Crusade"
Task: {3A49AA48-4C90-4A30-B0DA-A66181EE212B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {45E5D458-5961-4853-9EE7-B3A0C2779619} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-3994983153-2067325683-1543746672-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-03-06] (RealNetworks, Inc.)
Task: {4A6CEDC7-5E36-4BAD-AD79-C492A0529D0E} - \Game_Booster_AutoUpdate -> No File <==== ATTENTION
Task: {536E858F-9DE5-49CB-B30A-85CA8B3257B9} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {552B4589-7983-4A29-A1A0-FBCF07B38DA9} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-01-10] (NVIDIA Corporation)
Task: {56F6AF4D-A2EC-40C5-AA72-42E35274B2BC} - \{29FF2B89-B136-477B-83FC-77BB9CF95F9F} -> No File <==== ATTENTION
Task: {5C7BAF81-53E5-4EEC-B549-B9931B4FA3BC} - System32\Tasks\{8244DB44-7D02-487E-85A8-9A3E72ECC0D3} => C:\Windows\system32\pcalua.exe -a C:\Windows\unvise32.exe -c R:\Video Editing\Studio\Plugins\RTFx\klfezstudio.log
Task: {5CD329A1-3E0E-47C1-A222-796BC4BA732C} - System32\Tasks\{41669A96-6262-4B4A-B37F-7D7FFF2B5961} => C:\Windows\system32\pcalua.exe -a C:\Users\Razgriz\Downloads\045DC-MultiplayFix(1).exe -d C:\Users\Razgriz\Downloads
Task: {6AE182BD-1812-4823-A45A-6AD56AB84EC9} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-04-09] ()
Task: {6B0F938D-1106-47FD-9AFA-24CFCC83EA14} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-03-03] (Microsoft Corporation)
Task: {74BA64ED-DD8B-4E8A-9FED-D40BA34A61E6} - System32\Tasks\{801056AA-58F1-4728-9E1B-36D85B95F3AD} => C:\Windows\system32\pcalua.exe -a C:\Users\Razgriz\Downloads\045DC-MultiplayFix(2).exe -d C:\Users\Razgriz\Downloads
Task: {7A3140C2-0F51-48F3-9CDE-2C4DB19A2B72} - System32\Tasks\{5B810E15-3FED-419B-8303-2485379B4295} => C:\Windows\system32\pcalua.exe -a R:\Programs\steam.exe -c steam://uninstall/56400
Task: {7BAAA765-FE9B-4362-BF61-994D85A778D3} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-01-10] (NVIDIA Corporation)
Task: {7FAEF2A5-D01C-44F2-B8E3-838767C91E9F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-03-03] (Microsoft Corporation)
Task: {7FE0C16C-0CD6-4BE5-B6FF-B16A7C822759} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2018-04-13] (AVAST Software)
Task: {8B171659-12B0-4ED5-B63A-B911FA73B519} - \gg_uac_daemon_Razgriz -> No File <==== ATTENTION
Task: {91B5F916-63A0-4D9E-83A4-ACF9A1EC388E} - System32\Tasks\SafeZone scheduled Autoupdate 1491362305 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-08-04] (Avast Software)
Task: {93BB877F-4646-4C1A-8373-05CE4981B829} - \ASC7_PerformanceMonitor -> No File <==== ATTENTION
Task: {94CAF232-6E72-4DB1-9F0C-3F89A4F6EF1E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-01-10] (NVIDIA Corporation)
Task: {978A40F4-358E-4CDC-8DC3-BD1EFE2A0D0E} - System32\Tasks\{B90D7699-13D7-4B8C-BD39-E20A6C44B56F} => C:\Windows\system32\pcalua.exe -a C:\Users\Razgriz\Downloads\MCMA2_Installer.exe -d "C:\Program Files (x86)\Mozilla Firefox"
Task: {99B10365-D9AC-40BF-B159-3757C8752017} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-01-10] (NVIDIA Corporation)
Task: {9E61AEC5-CF83-4A1A-8B47-59E10BA05913} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-3994983153-2067325683-1543746672-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-03-06] (RealNetworks, Inc.)
Task: {9EBA8E58-2F53-43BB-B72E-4FF9E3C90FA7} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\Windows\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\task.vbs"
Task: {A09FAD00-87BD-4EDD-804A-FD5827620094} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2018-04-09] (Microsoft Corporation)
Task: {A277E501-EC2A-41FC-83A1-6D87814B4DD3} - System32\Tasks\{45157C44-C25A-452D-BF86-8A3D0DD51D62} => R:\SteamLibrary\steamapps\common\Fallout 3 goty\Fallout3.exe
Task: {A7BE918F-795D-4525-8849-654F8371813B} - \Razer_Game_Booster_AutoUpdate -> No File <==== ATTENTION
Task: {AAB10A97-F77E-4853-9AD9-3EFD00953FFA} - System32\Tasks\{133105B3-884A-4C43-AFBB-908D2501CF75} => C:\Windows\system32\pcalua.exe -a "R:\programs\steamapps\common\left 4 dead 2\bin\addoninstaller.exe" -d "r:\programs\steamapps\common\left 4 dead 2" -c /register
Task: {B53DEDC1-978F-4076-977B-78F01F3C2523} - System32\Tasks\{94B13AC1-B447-4D77-A56C-A8B09E46F69A} => C:\Windows\system32\pcalua.exe -a "D:\Python 2.7.13\Scripts\easy_install-2.7.exe" -d "D:\Python 2.7.13\Scripts"
Task: {B6A29DDD-9D17-4856-BF99-3043B105FEA4} - System32\Tasks\RealCreateProcessScheduledTask294987485S-1-5-21-3994983153-2067325683-1543746672-1000 => c:\program files (x86)\real\realplayer\update\realsched.exe
Task: {C143DAED-70E4-4DF2-BD17-A7EC796D5FBF} - System32\Tasks\{6A895E3B-E07F-40A4-8315-33A3F806DAD2} => C:\Windows\system32\pcalua.exe -a C:\Users\Razgriz\Downloads\STRIKE7_keyboard_7_0_33_91_x64_Software.exe -d C:\Users\Razgriz\Downloads
Task: {C22DC14B-DF89-4FB4-930C-41843E3C172E} - System32\Tasks\{29D988D3-C207-4F58-A01F-6BB75FB56E88} => C:\Windows\system32\pcalua.exe -a "C:\Users\Razgriz\AppData\Local\TeamSpeak 3 Client\plugins\ts3overlay\InstallHook.exe" -d "C:\Users\Razgriz\AppData\Local\TeamSpeak 3 Client\plugins\ts3overlay\" -c 10000
Task: {C23D5D09-756A-4938-AD69-3C0E91639AD2} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2017-09-10] (Overwolf LTD)
Task: {C37770FB-7720-44C6-92EA-DD3DEA466216} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {C3E23DD2-F3A0-4C85-9587-5C3BFB50DBB6} - \{99B51226-1C54-4B4F-B8E3-37CBF764DF18} -> No File <==== ATTENTION
Task: {C5BE4C0E-AE98-415C-94F5-D3A2572D8730} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {D8F24532-8AF7-4160-972A-4C4BC89CCE98} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2018-04-09] (Microsoft Corporation)
Task: {E3E37664-3930-4393-9C5C-C7DB4C63EEDA} - System32\Tasks\{4A0675DB-0AD2-454E-88B7-0AA53D498FB1} => C:\Windows\system32\pcalua.exe -a C:\Users\Razgriz\Downloads\ASIO4ALL_2_13_English.exe -d C:\Users\Razgriz\Downloads
Task: {E4A3AAAE-7A5B-4AC7-A313-9191B8B05A74} - System32\Tasks\{F8F4EFF6-76A0-437F-972B-E5EF7345F23B} => C:\Windows\system32\pcalua.exe -a X:\SETUP.EXE -d X:\
Task: {E4A6A6FF-DEB0-4A17-9186-FC1A6388F697} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-04-09] ()
Task: {E851523C-7ED4-45AA-9D3D-9C17D1B08E10} - System32\Tasks\{D2D9D40A-E853-4C3B-81C1-FD85D0352779} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{32F27FAA-60D1-4EC3-8502-51AEC72BF50F}\setup.exe" -c -runfromtemp -l0x0009 -removeonly
Task: {E975E00A-B5EB-43FB-8DA9-F7E505E5D85C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-02-09] (Adobe Systems Incorporated)
Task: {EA02F4AE-FBD2-4E03-8D8C-FEB36CEB9505} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2018-04-09] (Microsoft Corporation)
Task: {ED190EFD-C844-419B-8E30-EEB4B98E6AD1} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-01-10] (NVIDIA Corporation)
Task: {F0E292C9-2C4F-4868-856F-C21691492310} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2016-03-17] (Intel Corporation)
Task: {F3B10C5A-18B4-4997-8B52-1BE157AB0218} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-3994983153-2067325683-1543746672-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-03-06] (RealNetworks, Inc.)
Task: {F521C8C7-C013-486D-874C-6B9C1E21F3C2} - System32\Tasks\{EED64AFA-CBDE-4742-B9DD-DB3ED633AA36} => C:\Windows\system32\pcalua.exe -a "D:\Python 3.6.5\Scripts\easy_install-3.6.exe" -d "D:\Python 3.6.5\Scripts"
Task: {F79FF697-8CBA-46AA-8154-857887B321A2} - System32\Tasks\{8617DA05-D6B3-4CA8-A0AF-21ED722B2D4A} => C:\Windows\system32\pcalua.exe -a C:\Users\Razgriz\Downloads\dow-140.exe -d C:\Users\Razgriz\Downloads
Task: {F9AA9ED9-8ECC-4D8E-A421-4A7B77DED9B8} - System32\Tasks\{C1453BD7-E685-4B4C-9B48-8EF620695222} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}\SETUP.EXE" -c -runfromtemp -l0x0409  -removeonly
Task: {FA1A344B-B524-4908-9A30-1A8C080869D5} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-11-07] (Adobe Systems Incorporated)
Task: {FE7F30FB-6113-4A0F-9E2F-192D546EF13A} - System32\Tasks\{9E0051CD-FC0E-4A37-AEE2-5C997E325ED0} => C:\Windows\system32\pcalua.exe -a C:\Users\Razgriz\Downloads\vbrun60sp5.exe -d "C:\Program Files (x86)\Mozilla Firefox"
Task: {FE801E0F-6222-4729-A157-2FA112885471} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2012-08-22] (Piriform Ltd)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


Shortcut: C:\Users\Razgriz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SAM Broadcaster\Help\Help Center.lnk -> hxxp://spacial.com/help-center?filter=sam-broadcaste

==================== Loaded Modules (Whitelisted) ==============

2016-09-01 18:12 - 2016-09-01 18:12 - 000092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2017-01-13 14:56 - 2017-01-13 14:56 - 001353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2011-08-02 21:45 - 2011-08-02 21:45 - 000008704 _____ () C:\Windows\assembly\GAC_64\GBHO\1.0.0.0__709f1911357dc329\GBHO.dll
2011-07-18 16:04 - 2011-07-18 16:04 - 000301568 _____ () C:\Program Files (x86)\Notepad++\NppShell_04.dll
2016-11-19 18:19 - 2018-01-10 09:05 - 001269096 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2018-01-09 18:20 - 2018-01-23 19:19 - 000544240 _____ () C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\DisplayDriverAnalyzer\_DisplayDriverCrashAnalyzer64.dll
2017-07-19 18:09 - 2017-07-19 18:09 - 000189264 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2018-04-11 16:08 - 2018-03-12 15:09 - 002300192 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2018-04-11 16:08 - 2018-03-27 13:47 - 002492704 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2017-07-28 21:45 - 2017-07-28 21:45 - 000298448 _____ () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
2017-10-24 14:36 - 2017-03-07 19:15 - 000824592 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe
2017-10-24 14:36 - 2017-03-07 19:18 - 001981712 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_modeler.dll
2017-10-24 14:36 - 2017-03-07 19:10 - 000248080 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\acpi_battery_input.dll
2017-10-24 14:36 - 2017-03-07 19:09 - 000213776 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\wifi_input.dll
2017-10-24 14:36 - 2017-03-07 19:10 - 000175376 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\devices_use_input.dll
2017-10-24 14:36 - 2017-03-07 19:09 - 000204048 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_system_power_state_input.dll
2017-10-24 14:36 - 2017-03-07 19:08 - 000337680 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_process_input.dll
2017-10-24 14:36 - 2017-03-07 19:05 - 000148240 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_winstat_input.dll
2017-10-24 14:36 - 2017-03-07 19:05 - 000178448 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_acdc_setting_input.dll
2017-10-24 14:36 - 2017-03-07 19:10 - 000213776 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\sema_thermal_input.dll
2017-10-24 14:36 - 2017-03-07 19:06 - 000229648 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_quality_and_reliability_input.dll
2017-10-24 14:36 - 2017-03-07 19:07 - 000225040 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_sampler_input.dll
2017-10-24 14:36 - 2017-03-07 19:05 - 000212752 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_stress_odometer_input.dll
2017-10-24 14:36 - 2017-03-07 19:07 - 000220432 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_turbo_input.dll
2016-03-09 04:39 - 2016-03-09 04:39 - 000080640 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\genie2_tray.exe
2018-04-04 16:59 - 2018-04-03 11:46 - 001944576 ____N () D:\Streamlabs\Streamlabs OBS\ffmpeg.dll
2018-03-22 23:12 - 2018-03-20 01:00 - 004435288 _____ () C:\Program Files (x86)\Google\Chrome\Application\65.0.3325.181\libglesv2.dll
2018-03-22 23:12 - 2018-03-20 01:00 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\65.0.3325.181\libegl.dll
2018-04-10 03:49 - 2018-04-10 03:49 - 000349912 _____ () C:\Program Files\AVAST Software\Avast\streamback_avast.dll
2018-04-10 03:49 - 2018-04-10 03:49 - 000295640 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2018-04-10 03:49 - 2018-04-10 03:49 - 000282840 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
2018-04-10 03:49 - 2018-04-10 03:49 - 000763608 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2018-04-10 03:50 - 2018-04-10 03:50 - 000911064 _____ () C:\Program Files\AVAST Software\Avast\anen.dll
2018-04-10 03:49 - 2018-04-10 03:49 - 000172760 _____ () C:\Program Files\AVAST Software\Avast\hns_tools.dll
2018-04-10 03:49 - 2018-04-10 03:49 - 000969944 _____ () C:\Program Files\AVAST Software\Avast\shepherdsync.dll
2018-04-10 03:49 - 2018-04-10 03:49 - 000501464 _____ () C:\Program Files\AVAST Software\Avast\gui_cache.dll
2018-04-15 21:29 - 2018-04-15 21:29 - 005816976 _____ () C:\Program Files\AVAST Software\Avast\defs\18041500\algo.dll
2016-11-19 18:19 - 2018-01-10 09:05 - 001042280 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2018-03-13 00:15 - 2018-03-13 00:15 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2018-04-10 03:49 - 2018-04-10 03:49 - 000281816 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2014-12-21 11:07 - 2014-12-21 11:07 - 000119822 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\libgcc_s_dw2-1.dll
2014-12-21 11:07 - 2014-12-21 11:07 - 001026062 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\libstdc++-6.dll
2016-04-12 01:06 - 2016-04-12 01:06 - 000607232 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\Genie.dll
2016-04-12 21:58 - 2016-04-12 21:58 - 001648128 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\SvtNetworkTool.dll
2016-03-31 02:01 - 2016-03-31 02:01 - 000163840 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Airprint.dll
2016-03-17 21:18 - 2016-03-17 21:18 - 000590848 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Internet.dll
2016-04-14 01:24 - 2016-04-14 01:24 - 006815744 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Map.dll
2016-02-26 05:07 - 2016-02-26 05:07 - 000049152 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\QRCode.dll
2016-01-14 21:08 - 2016-01-14 21:08 - 001125888 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\qwt.dll
2016-03-31 02:04 - 2016-03-31 02:04 - 002975232 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_MyMedia.dll
2012-06-27 17:23 - 2012-06-27 17:23 - 000111616 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\libvlc.dll
2012-06-27 17:23 - 2012-06-27 17:23 - 002285056 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\libvlccore.dll
2016-02-24 20:33 - 2016-02-24 20:33 - 000907776 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_NetworkProblem.dll
2016-02-22 03:25 - 2016-02-22 03:25 - 000116224 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\DragonNetTool.dll
2016-04-14 00:30 - 2016-04-14 00:30 - 001144832 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_ParentalControl.dll
2016-02-25 23:49 - 2016-02-25 23:49 - 011209216 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Resource.dll
2016-04-14 00:30 - 2016-04-14 00:30 - 002519552 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_RouterConfiguration.dll
2016-02-29 05:01 - 2016-02-29 05:01 - 000242176 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Statistics.dll
2016-04-14 00:30 - 2016-04-14 00:30 - 000842752 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Ui.dll
2016-03-17 21:18 - 2016-03-17 21:18 - 000414720 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\GeniePlugin_Wireless.dll
2016-01-14 21:06 - 2016-01-14 21:06 - 000057344 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\DiagnosePlugin.dll
2016-03-02 23:17 - 2016-03-02 23:17 - 000146944 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\DiagnoseDll.dll
2015-08-24 03:41 - 2015-08-24 03:41 - 002360622 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\drivers\libntgr_api.dll
2016-03-02 23:17 - 2016-03-02 23:17 - 000072192 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\SVTUtils.dll
2016-03-02 23:17 - 2016-03-02 23:17 - 000074752 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\NetcardApi.dll
2016-03-02 23:17 - 2016-03-02 23:17 - 000136704 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\airprintdll.dll
2012-06-27 17:23 - 2012-06-27 17:23 - 000219648 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\plugins\access\libdshow_plugin.dll
2012-06-27 17:23 - 2012-06-27 17:23 - 000049664 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\plugins\audio_output\libaout_directx_plugin.dll
2012-06-27 17:23 - 2012-06-27 17:23 - 000051200 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\plugins\audio_output\libwaveout_plugin.dll
2012-06-27 17:23 - 2012-06-27 17:23 - 000070144 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\plugins\video_output\libdirectx_plugin.dll
2012-06-27 17:23 - 2012-06-27 17:23 - 000037376 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\plugins\mmxext\libmemcpymmxext_plugin.dll
2012-06-27 17:23 - 2012-06-27 17:23 - 000051200 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\plugins\control\libhotkeys_plugin.dll
2016-02-24 20:32 - 2016-02-24 20:32 - 000632832 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\InnerPlugin_Update.dll
2016-03-03 00:13 - 2016-03-03 00:13 - 000433664 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\InnerPlugin_WirelessExport.dll
2016-01-14 21:23 - 2016-01-14 21:23 - 000026112 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\WSetupApiPlugin.dll
2016-04-12 01:13 - 2016-04-12 01:13 - 000067072 _____ () C:\Program Files (x86)\NETGEAR Genie\bin\WSetupDll.dll
2017-04-29 16:45 - 2018-01-10 21:05 - 000784672 _____ () S:\Steam\SDL2.dll
2017-04-29 16:45 - 2016-08-31 20:02 - 004969248 _____ () S:\Steam\v8.dll
2017-04-29 16:45 - 2016-08-31 20:02 - 001563936 _____ () S:\Steam\icui18n.dll
2017-04-29 16:45 - 2016-08-31 20:02 - 001195296 _____ () S:\Steam\icuuc.dll
2017-04-29 16:45 - 2018-04-02 18:34 - 002631968 _____ () S:\Steam\video.dll
2017-12-17 22:09 - 2017-12-19 20:43 - 005137696 _____ () S:\Steam\libavcodec-57.dll
2017-12-17 22:09 - 2017-12-19 20:43 - 000847136 _____ () S:\Steam\libavutil-55.dll
2017-12-17 22:09 - 2017-12-19 20:43 - 000695584 _____ () S:\Steam\libavformat-57.dll
2017-12-17 22:09 - 2017-12-19 20:43 - 000351520 _____ () S:\Steam\libavresample-3.dll
2017-12-17 22:09 - 2017-12-19 20:43 - 000783648 _____ () S:\Steam\libswscale-4.dll
2017-04-29 16:45 - 2018-04-02 18:34 - 000977184 _____ () S:\Steam\bin\chromehtml.DLL
2017-04-29 16:45 - 2016-07-04 17:17 - 000266560 _____ () S:\Steam\openvr_api.dll
2017-12-19 05:31 - 2017-12-19 05:31 - 000143824 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll
2017-06-09 18:15 - 2017-09-06 21:04 - 000678400 _____ () S:\Steam\bin\cef\cef.win7\SDL2.dll
2017-04-29 16:46 - 2017-12-13 16:16 - 071471392 _____ () S:\Steam\bin\cef\cef.win7\libcef.dll
2017-04-29 16:45 - 2015-09-24 18:52 - 000119208 _____ () S:\Steam\winh264.dll
2017-11-23 19:33 - 2017-04-13 12:58 - 050656768 _____ () C:\Users\Razgriz\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libcef.dll
2017-11-23 19:33 - 2017-04-13 12:58 - 001874944 _____ () C:\Users\Razgriz\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libglesv2.dll
2017-11-23 19:33 - 2017-04-13 12:58 - 000075264 _____ () C:\Users\Razgriz\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libegl.dll
2016-11-19 18:19 - 2018-01-10 09:05 - 066908520 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Windows\Temp:$DATA [34]
AlternateDataStreams: C:\ProgramData\TEMP:373E1720 [118]
AlternateDataStreams: C:\Users\Public\AppData:CSM [464]
AlternateDataStreams: C:\Users\Razgriz\AppData\Local\Temp:$DATA [34]
AlternateDataStreams: C:\Users\Razgriz\AppData\Local\Temp:$DATA [16]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\.DEFAULT\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\.DEFAULT\...\freerealms.com -> freerealms.com
IE trusted site: HKU\.DEFAULT\...\soe.com -> soe.com
IE trusted site: HKU\.DEFAULT\...\sony.com -> sony.com
IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

There are 7871 more sites.

IE trusted site: HKU\S-1-5-19\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-19\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-19\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-19\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-20\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-20\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-20\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-20\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\sharepoint.com -> hxxps://dupageedu-files.sharepoint.com
IE trusted site: HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\sony.com -> sony.com
IE restricted site: HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\...\1-se.com -> 1-se.com

There are 11408 more sites.


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 21:34 - 2016-03-25 21:32 - 000000831 _____ C:\Windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3994983153-2067325683-1543746672-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Razgriz\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 0) (EnableLUA: 0)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\Services: RealNetworks Downloader Resolver Service => 3
MSCONFIG\Services: TeamViewer => 2
MSCONFIG\startupfolder: C:^Users^Razgriz^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^DesktopVideoPlayer.lnk => C:\Windows\pss\DesktopVideoPlayer.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: CanonQuickMenu => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
MSCONFIG\startupreg: Discord => C:\Users\Razgriz\AppData\Local\Discord\app-0.0.299\Discord.exe
MSCONFIG\startupreg: Elgato Sound Capture => C:\Program Files\Elgato\SoundCapture\SoundCapture.exe -hide_settings
MSCONFIG\startupreg: GarenaPlus => "d:\garena plus\garenamessenger.exe" -autolaunch
MSCONFIG\startupreg: iCloudDrive => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
MSCONFIG\startupreg: iCloudPhotos => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
MSCONFIG\startupreg: iCloudServices => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: Logitech Vid => "c:\program files (x86)\logitech\vid hd\vid.exe" -bootmode
MSCONFIG\startupreg: ShadowPlay => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
MSCONFIG\startupreg: SPIRunE => Rundll32 SPIRunE.dll,RunDLLEntry
MSCONFIG\startupreg: Spotify => "C:\Users\Razgriz\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
MSCONFIG\startupreg: Spotify Web Helper => C:\Users\Razgriz\AppData\Roaming\Spotify\SpotifyWebHelper.exe --autostart
MSCONFIG\startupreg: SpybotPostWindows10UpgradeReInstall => "C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe"
MSCONFIG\startupreg: Steam => "R:\Programs\steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: TkBellExe => "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe"  -osboot
MSCONFIG\startupreg: VolPanel => "C:\Program Files (x86)\Creative\Sound Blaster X-Fi\Sound Blaster Panel\VolPanlu.exe" /r
MSCONFIG\startupreg: XboxStat => "C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{F3F6645F-0EE4-4A60-9BE3-3FB857B6A248}C:\users\razgriz\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\razgriz\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{B3F778A7-C5BD-4E97-87AD-64A4414D3E8A}C:\users\razgriz\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\razgriz\appdata\roaming\spotify\spotify.exe
FirewallRules: [{670F2EA5-426C-4F4E-A24C-3829EB508720}] => (Allow) R:\Programs\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{07BFDB17-01DE-4884-A338-89E15FE42363}] => (Allow) R:\Programs\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{EC707EBC-D74E-4501-9B79-817132A609A9}] => (Allow) R:\SteamLibrary\SteamApps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{79579412-9137-4224-B06A-FF21D2A31707}] => (Allow) R:\SteamLibrary\SteamApps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [TCP Query User{C3B8482A-275A-4CAD-AFD8-A5B8D02E7261}R:\steamlibrary\steamapps\common\theculling\victory\binaries\win64\victory.exe] => (Allow) R:\steamlibrary\steamapps\common\theculling\victory\binaries\win64\victory.exe
FirewallRules: [UDP Query User{BA9D0D06-252D-4B2C-9A27-CA6844E0A21D}R:\steamlibrary\steamapps\common\theculling\victory\binaries\win64\victory.exe] => (Allow) R:\steamlibrary\steamapps\common\theculling\victory\binaries\win64\victory.exe
FirewallRules: [{3459E244-684C-4945-A921-53164D3DE48B}] => (Allow) R:\Programs\Steam.exe
FirewallRules: [{9988EBB1-2546-4547-BEA5-EC0FADB08416}] => (Allow) R:\Programs\Steam.exe
FirewallRules: [{B0A3F693-36A3-48EF-B3A8-038035A80FF7}] => (Allow) R:\Programs\bin\steamwebhelper.exe
FirewallRules: [{6ECD851F-3301-4EE3-B7A0-9CD2E0BB63AE}] => (Allow) R:\Programs\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{C15FDC7C-77BC-4983-B61E-C66A0710FD43}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe
FirewallRules: [UDP Query User{33E643C9-EB0C-46BE-85E0-27EF49F39424}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe
FirewallRules: [TCP Query User{FF9517C5-1CFB-4AAE-8E0F-DE3AC33D3C08}C:\deepbot - twitch streamer assistant\deepbot.exe] => (Allow) C:\deepbot - twitch streamer assistant\deepbot.exe
FirewallRules: [UDP Query User{97CD89E4-64DC-4B48-A073-EB0F0D709E3C}C:\deepbot - twitch streamer assistant\deepbot.exe] => (Allow) C:\deepbot - twitch streamer assistant\deepbot.exe
FirewallRules: [TCP Query User{594558EC-862D-4DB0-A26F-41BCAFE3BB88}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{7938C09E-11AD-4BFD-ABB4-2A26021DDBCC}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [{8B9E41F8-9FF9-4B81-98F0-E3466772B6D1}] => (Allow) R:\SteamLibrary\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [{0833D79C-CB7F-4817-9F4B-30122CC2EFA7}] => (Allow) R:\SteamLibrary\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [{6CF38328-1936-494A-A9F3-8F19236F82D4}] => (Allow) R:\SteamLibrary\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{E0275085-7851-4472-9573-7716E93831E2}] => (Allow) R:\SteamLibrary\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{4B1FE195-5B08-4D8B-99E0-26DE9088B4D0}] => (Allow) R:\SteamLibrary\SteamApps\common\Call of Duty Black Ops III\BlackOps3.exe
FirewallRules: [{AB788FE0-64CA-40DC-ADF2-E5D40182F1E9}] => (Allow) R:\SteamLibrary\SteamApps\common\Call of Duty Black Ops III\BlackOps3.exe
FirewallRules: [{F51DBA0D-BF9B-415C-B10B-4366F9BBB8F3}] => (Allow) R:\SteamLibrary\SteamApps\common\H1Z1 Test\LaunchPad.exe
FirewallRules: [{7BA7E9CD-FC18-480E-B39D-FA6F6B86BEA9}] => (Allow) R:\SteamLibrary\SteamApps\common\H1Z1 Test\LaunchPad.exe
FirewallRules: [{3D17D187-73E8-4BCB-AEE6-87F79D15938B}] => (Allow) R:\SteamLibrary\SteamApps\common\Warhammer 40,000 - Eternal Crusade\EternalCrusadeClient.exe
FirewallRules: [{4A0279A1-7BCF-4D51-931E-C89FAC513F94}] => (Allow) R:\SteamLibrary\SteamApps\common\Warhammer 40,000 - Eternal Crusade\EternalCrusadeClient.exe
FirewallRules: [{068A40F8-C3D5-4217-8BA8-DAC2F8D9269F}] => (Allow) R:\SteamLibrary\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{7B03835A-1C49-42F6-84AA-34AC12AAA37D}] => (Allow) R:\SteamLibrary\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{1609F723-16F7-4A04-ACF1-5473D8AB91BD}] => (Allow) R:\SteamLibrary\SteamApps\common\H1Z1\LaunchPad.exe
FirewallRules: [{C2F0FCE4-5DC3-4228-AA94-C7837B50804D}] => (Allow) R:\SteamLibrary\SteamApps\common\H1Z1\LaunchPad.exe
FirewallRules: [{98D24799-87BE-40C7-ACE4-2324D310A793}] => (Allow) R:\SteamLibrary\SteamApps\common\The Forest\TheForest.exe
FirewallRules: [{AA2966E3-0811-4339-89A5-126871A61279}] => (Allow) R:\SteamLibrary\SteamApps\common\The Forest\TheForest.exe
FirewallRules: [{EA333756-3AA6-429C-9C7A-BA664FF6FF4F}] => (Allow) R:\SteamLibrary\SteamApps\common\Anno 2205\Bin\Win64\Anno2205.exe
FirewallRules: [{B0EAA835-5693-4DE7-BC1E-55A53991DD07}] => (Allow) R:\SteamLibrary\SteamApps\common\Anno 2205\Bin\Win64\Anno2205.exe
FirewallRules: [TCP Query User{9A5A89FC-92CD-4EB2-8B70-7A44FF502DC1}R:\warcraft iii\war3.exe] => (Allow) R:\warcraft iii\war3.exe
FirewallRules: [UDP Query User{47D6A862-144B-4911-9A51-CFFB4962D47F}R:\warcraft iii\war3.exe] => (Allow) R:\warcraft iii\war3.exe
FirewallRules: [TCP Query User{E87728D6-8061-40E6-8EDD-A757D2FF0BB4}R:\blizzard\starcraft\starcraft.exe] => (Allow) R:\blizzard\starcraft\starcraft.exe
FirewallRules: [UDP Query User{BE561E7E-EF6C-4207-831E-03C53C70DD30}R:\blizzard\starcraft\starcraft.exe] => (Allow) R:\blizzard\starcraft\starcraft.exe
FirewallRules: [TCP Query User{B3E18749-5A53-4588-8979-836D667BB745}C:\program files\java\jre1.8.0_77\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_77\bin\javaw.exe
FirewallRules: [UDP Query User{D11E6AF1-5E87-4400-9652-A5E1FCA91B56}C:\program files\java\jre1.8.0_77\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_77\bin\javaw.exe
FirewallRules: [{0ED17E86-6654-486E-A101-5AABB1C98D5F}] => (Allow) R:\SteamLibrary\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA_BE.exe
FirewallRules: [{21E9808D-343A-4DA5-9BE7-B9F6602C2677}] => (Allow) R:\SteamLibrary\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA_BE.exe
FirewallRules: [{DBD357E2-D7D6-41C2-9782-0187259E6031}] => (Allow) R:\SteamLibrary\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{F73A84B4-D55A-4865-B3F1-0627D89C1867}] => (Allow) R:\SteamLibrary\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [TCP Query User{591E9464-D692-46B2-AADF-38271B8AA917}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe
FirewallRules: [UDP Query User{BC18F656-7411-4413-B045-7659C1EA9BB0}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe
FirewallRules: [{37C3AEDD-454A-4935-A12D-D6235B6DFD8C}] => (Allow) R:\Programs\steamapps\common\Dawn of War II - Retribution\DOW2.exe
FirewallRules: [{656C5EEB-2F29-4580-A524-867B8A9B2479}] => (Allow) R:\Programs\steamapps\common\Dawn of War II - Retribution\DOW2.exe
FirewallRules: [{BD1417F7-084F-4EB8-85FF-E018727990E0}] => (Allow) R:\Programs\steamapps\common\Kerbal Space Program\KSP_x64.exe
FirewallRules: [{D27C18A2-976A-4A6B-B553-A6B02BEB8F5E}] => (Allow) R:\Programs\steamapps\common\Kerbal Space Program\KSP_x64.exe
FirewallRules: [{302ADAEE-B80B-4DAD-99F7-D93E4EAB3FF8}] => (Allow) R:\Programs\steamapps\common\Kerbal Space Program\KSP.exe
FirewallRules: [{2D4749D8-D7A3-4950-A76F-24D6CFFDF4E0}] => (Allow) R:\Programs\steamapps\common\Kerbal Space Program\KSP.exe
FirewallRules: [{E247AF00-1635-4D06-8352-82C2B7847300}] => (Allow) R:\Programs\steamapps\common\dota 2 test\game\bin\win64\dota2.exe
FirewallRules: [{90EE13B1-A0DA-458B-9FBA-948277D7D1BB}] => (Allow) R:\Programs\steamapps\common\dota 2 test\game\bin\win64\dota2.exe
FirewallRules: [{C43CC8BF-A5AF-4064-AAE0-0F2B7B3C2437}] => (Allow) R:\Programs\steamapps\common\Left 4 Dead 2 Beta\left4dead2_beta.exe
FirewallRules: [{530E3196-89E4-42B6-A731-32F3674ACF4D}] => (Allow) R:\Programs\steamapps\common\Left 4 Dead 2 Beta\left4dead2_beta.exe
FirewallRules: [{67B57658-D089-4EC6-8BF4-0308071125A3}] => (Allow) R:\SteamLibrary\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{E2F79FBD-F109-47A7-BE8A-D82B037F8D1D}] => (Allow) R:\SteamLibrary\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{4A993E1A-9DC0-4157-A92D-4D74DDFFA039}] => (Allow) R:\SteamLibrary\SteamApps\common\Planetbase\Planetbase.exe
FirewallRules: [{085F9A87-55A4-4C5C-BEA0-0AC6EAD26E48}] => (Allow) R:\SteamLibrary\SteamApps\common\Planetbase\Planetbase.exe
FirewallRules: [{A4903E11-4BB9-46DC-9ADD-F13754C0268D}] => (Allow) R:\Programs\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{85CAB7A5-1217-4DB5-BB07-008EAFD83B7E}] => (Allow) R:\Programs\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [TCP Query User{C99705C9-53EE-496C-A5F2-F98707930263}R:\programs\steamapps\common\dawn of war dark crusade\darkcrusade.exe] => (Allow) R:\programs\steamapps\common\dawn of war dark crusade\darkcrusade.exe
FirewallRules: [UDP Query User{A0BECC20-E484-4DBD-8DB7-3E5F4DE3AFA4}R:\programs\steamapps\common\dawn of war dark crusade\darkcrusade.exe] => (Allow) R:\programs\steamapps\common\dawn of war dark crusade\darkcrusade.exe
FirewallRules: [{435C4A87-7543-46BF-9CB2-FE6512B756A3}] => (Allow) R:\SteamLibrary\SteamApps\common\Banished\Application-steam-x64.exe
FirewallRules: [{20DCB877-ADB4-4730-80E7-FFCE27D3ECBE}] => (Allow) R:\SteamLibrary\SteamApps\common\Banished\Application-steam-x64.exe
FirewallRules: [{1686C624-FF35-45A8-8C82-3B4ED8D4917C}] => (Allow) R:\SteamLibrary\SteamApps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{136828B1-F8E3-4128-90A0-F74FABE3B376}] => (Allow) R:\SteamLibrary\SteamApps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [TCP Query User{2AD2D780-DF35-4630-AA53-EF325ED93CD9}R:\steamlibrary\steamapps\common\orion dino beatdown\binaries\win32\dinohordegame.exe] => (Allow) R:\steamlibrary\steamapps\common\orion dino beatdown\binaries\win32\dinohordegame.exe
FirewallRules: [UDP Query User{026E7602-4DBB-4788-9F53-E833712F3000}R:\steamlibrary\steamapps\common\orion dino beatdown\binaries\win32\dinohordegame.exe] => (Allow) R:\steamlibrary\steamapps\common\orion dino beatdown\binaries\win32\dinohordegame.exe
FirewallRules: [{FEB145D1-3BE7-41FA-8355-3837FE96D688}] => (Allow) R:\SteamLibrary\SteamApps\common\Don't Starve Together Beta\bin\dontstarve_steam.exe
FirewallRules: [{FBA4EC96-E45C-48E9-AC73-0C55B81ABB8C}] => (Allow) R:\SteamLibrary\SteamApps\common\Don't Starve Together Beta\bin\dontstarve_steam.exe
FirewallRules: [{1482A5DE-5EB3-430B-92F9-50C8B2F28E39}] => (Allow) R:\SteamLibrary\SteamApps\common\Prison Architect\Prison Architect.exe
FirewallRules: [{E4E9B368-4480-4036-A2C6-C4FFFA18F13C}] => (Allow) R:\SteamLibrary\SteamApps\common\Prison Architect\Prison Architect.exe
FirewallRules: [{D30E60C8-6226-4FB4-AC92-2195CC533C69}] => (Allow) R:\SteamLibrary\SteamApps\common\Prison Architect\Prison Architect Safe Mode.exe
FirewallRules: [{3FC31361-2888-4BB2-8369-5FAEBC49E695}] => (Allow) R:\SteamLibrary\SteamApps\common\Prison Architect\Prison Architect Safe Mode.exe
FirewallRules: [TCP Query User{24E9CDC2-74A9-43C9-BF97-C1C0D453C6B1}C:\users\razgriz\desktop\ant colony\eotu64ugtest0.03\eotu\binaries\win64\eotu-win64-shipping.exe] => (Allow) C:\users\razgriz\desktop\ant colony\eotu64ugtest0.03\eotu\binaries\win64\eotu-win64-shipping.exe
FirewallRules: [UDP Query User{B3C091E6-6762-4E6A-A68D-E19F856D2009}C:\users\razgriz\desktop\ant colony\eotu64ugtest0.03\eotu\binaries\win64\eotu-win64-shipping.exe] => (Allow) C:\users\razgriz\desktop\ant colony\eotu64ugtest0.03\eotu\binaries\win64\eotu-win64-shipping.exe
FirewallRules: [TCP Query User{C06A22EF-3371-46EA-BFE2-BA840DBFCE22}C:\users\razgriz\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\razgriz\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{3DF51228-0DAF-4406-BA7D-50DC6BD55CE5}C:\users\razgriz\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\razgriz\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{5C070168-C8F0-4CD8-A1C4-DD142A9688E8}D:\cloud imperium games\patcher\cigpatcher.exe] => (Allow) D:\cloud imperium games\patcher\cigpatcher.exe
FirewallRules: [UDP Query User{CA0D21D9-BF58-44AC-A19D-B5A81179C029}D:\cloud imperium games\patcher\cigpatcher.exe] => (Allow) D:\cloud imperium games\patcher\cigpatcher.exe
FirewallRules: [TCP Query User{E2091ADB-C85F-47F9-8A67-75ED9F3F060B}R:\programs\steamapps\common\call of duty world at war\codwaw.exe] => (Allow) R:\programs\steamapps\common\call of duty world at war\codwaw.exe
FirewallRules: [UDP Query User{F81DCEC6-FC11-42C6-8753-E79EDA31153B}R:\programs\steamapps\common\call of duty world at war\codwaw.exe] => (Allow) R:\programs\steamapps\common\call of duty world at war\codwaw.exe
FirewallRules: [TCP Query User{A03487C1-44A1-48D5-BA94-81456A0E6EA2}R:\programs\steamapps\common\call of duty modern warfare 2\iw4sp.exe] => (Allow) R:\programs\steamapps\common\call of duty modern warfare 2\iw4sp.exe
FirewallRules: [UDP Query User{8A3F53FF-E316-449C-B012-8D8A376049BC}R:\programs\steamapps\common\call of duty modern warfare 2\iw4sp.exe] => (Allow) R:\programs\steamapps\common\call of duty modern warfare 2\iw4sp.exe
FirewallRules: [TCP Query User{D9CEAD00-4235-4493-BAE5-32F0C257937E}R:\programs\steamapps\common\call of duty modern warfare 3\iw5sp.exe] => (Allow) R:\programs\steamapps\common\call of duty modern warfare 3\iw5sp.exe
FirewallRules: [UDP Query User{B73D96B4-EDCB-49A7-AE52-D5720F29111A}R:\programs\steamapps\common\call of duty modern warfare 3\iw5sp.exe] => (Allow) R:\programs\steamapps\common\call of duty modern warfare 3\iw5sp.exe
FirewallRules: [{1DAC65B5-65C1-49CA-9D99-8E090C88EE34}] => (Allow) R:\Programs\steamapps\common\SteamVRPerformanceTest\bin\win64\vr.exe
FirewallRules: [{BD0778D0-E49F-487E-8A04-6DC6F9FC6CB9}] => (Allow) R:\Programs\steamapps\common\SteamVRPerformanceTest\bin\win64\vr.exe
FirewallRules: [TCP Query User{0A9BBB5A-93DF-4B3B-B084-67DFB8FDDD1B}R:\programs\steamapps\common\call of duty ghosts\iw6sp64_ship.exe] => (Allow) R:\programs\steamapps\common\call of duty ghosts\iw6sp64_ship.exe
FirewallRules: [UDP Query User{65B1FA6E-1FC0-4440-8C5B-51952E3CEB04}R:\programs\steamapps\common\call of duty ghosts\iw6sp64_ship.exe] => (Allow) R:\programs\steamapps\common\call of duty ghosts\iw6sp64_ship.exe
FirewallRules: [TCP Query User{6E6ED535-BE16-4060-B338-6150317560F4}R:\programs\steamapps\common\call of duty black ops ii\t6mp.exe] => (Allow) R:\programs\steamapps\common\call of duty black ops ii\t6mp.exe
FirewallRules: [UDP Query User{D3ED199C-F095-4C19-85AA-40482A37F608}R:\programs\steamapps\common\call of duty black ops ii\t6mp.exe] => (Allow) R:\programs\steamapps\common\call of duty black ops ii\t6mp.exe
FirewallRules: [TCP Query User{EC7E60C3-7F4C-461C-8A4C-EEACE4AFCA1C}R:\programs\steamapps\common\call of duty black ops ii\t6sp.exe] => (Allow) R:\programs\steamapps\common\call of duty black ops ii\t6sp.exe
FirewallRules: [UDP Query User{099A80F8-58DD-4C1C-810E-78119C36E64B}R:\programs\steamapps\common\call of duty black ops ii\t6sp.exe] => (Allow) R:\programs\steamapps\common\call of duty black ops ii\t6sp.exe
FirewallRules: [TCP Query User{6606E0F9-6CD7-43C5-B9E7-0ACFC81DB55E}D:\cloud imperium games\starcitizen\public\bin64\starcitizen.exe] => (Allow) D:\cloud imperium games\starcitizen\public\bin64\starcitizen.exe
FirewallRules: [UDP Query User{64EBD3FD-1D14-4892-8128-7BD2E0183DD7}D:\cloud imperium games\starcitizen\public\bin64\starcitizen.exe] => (Allow) D:\cloud imperium games\starcitizen\public\bin64\starcitizen.exe
FirewallRules: [TCP Query User{BE885DE9-A1AF-4754-9049-F7D86FD3BC4A}R:\steamlibrary\steamapps\common\call of duty advanced warfare\s1_sp64_ship.exe] => (Allow) R:\steamlibrary\steamapps\common\call of duty advanced warfare\s1_sp64_ship.exe
FirewallRules: [UDP Query User{BEF80F5F-C1B3-4ED9-A5D3-62394E8E7C4A}R:\steamlibrary\steamapps\common\call of duty advanced warfare\s1_sp64_ship.exe] => (Allow) R:\steamlibrary\steamapps\common\call of duty advanced warfare\s1_sp64_ship.exe
FirewallRules: [TCP Query User{30ECA9CC-B830-4A8F-9B07-3F45F0751368}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{6A27A697-821B-4C58-B9F8-69B03D7E06F8}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{8E5D1A3A-772F-48BE-BCFD-71B65EB258F8}] => (Allow) R:\Programs\steamapps\common\Dawn of War Gold\W40k.exe
FirewallRules: [{787415C5-1A10-4F0D-ACB7-173B00EC811C}] => (Allow) R:\Programs\steamapps\common\Dawn of War Gold\W40k.exe
FirewallRules: [{03F74395-8C2E-42BD-963C-572A317FD417}] => (Allow) R:\Programs\steamapps\common\Dawn of War Gold\W40kWA.exe
FirewallRules: [{4241A056-A592-4386-898A-2DA813FD0443}] => (Allow) R:\Programs\steamapps\common\Dawn of War Gold\W40kWA.exe
FirewallRules: [{79E40906-28E7-4C98-B84B-054F64830598}] => (Allow) R:\SteamLibrary\SteamApps\common\Dawn of War Soulstorm\Soulstorm.exe
FirewallRules: [{FD39F9E1-9A0E-4527-989E-DDA229624FEC}] => (Allow) R:\SteamLibrary\SteamApps\common\Dawn of War Soulstorm\Soulstorm.exe
FirewallRules: [TCP Query User{6611F6C1-D759-4F2F-A48C-D52CC5CE4E49}C:\program files (x86)\utherverse digital inc\utherverse vww client\utherverse.exe] => (Allow) C:\program files (x86)\utherverse digital inc\utherverse vww client\utherverse.exe
FirewallRules: [UDP Query User{A797C79E-4F0A-49FD-8DF8-40835AF39D02}C:\program files (x86)\utherverse digital inc\utherverse vww client\utherverse.exe] => (Allow) C:\program files (x86)\utherverse digital inc\utherverse vww client\utherverse.exe
FirewallRules: [TCP Query User{DA730DED-330D-441E-B5A7-E98C97E0230C}C:\program files\java\jre1.8.0_77\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_77\bin\java.exe
FirewallRules: [UDP Query User{A77CB97C-D430-4448-81BD-FBA1A860AA5D}C:\program files\java\jre1.8.0_77\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_77\bin\java.exe
FirewallRules: [TCP Query User{8BB9B8BA-A011-4CC8-A942-6292320662AC}C:\program files (x86)\battle.net\battle.net.8098\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8098\battle.net.exe
FirewallRules: [UDP Query User{79314B96-487B-4A51-9668-F6D01C6EF1B6}C:\program files (x86)\battle.net\battle.net.8098\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8098\battle.net.exe
FirewallRules: [{BC07E5EB-EF73-477B-9D51-D04C06638EE3}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{ACEBE7B9-4DB6-4487-838A-40429D91F318}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3BFA370A-6984-4055-A542-C55EB9688D32}] => (Allow) R:\Programs\steamapps\common\SKILL\Binaries\Win32\sf2.exe
FirewallRules: [{E31AF1A0-7C16-4276-BEF7-E5E24E228811}] => (Allow) R:\Programs\steamapps\common\SKILL\Binaries\Win32\sf2.exe
FirewallRules: [{982E83ED-3C1C-40A6-A7F1-AF3EE5353B8A}] => (Allow) R:\Programs\steamapps\common\Farming Simulator 17\x64\FarmingSimulator2017Game.exe
FirewallRules: [{E5C1EF44-C3AC-4C3B-BB36-5D3489B509CA}] => (Allow) R:\Programs\steamapps\common\Farming Simulator 17\x64\FarmingSimulator2017Game.exe
FirewallRules: [{7362A450-85A3-48FF-BE23-E4F13866DECA}] => (Allow) R:\Programs\steamapps\common\Farming Simulator 17\x86\FarmingSimulator2017Game.exe
FirewallRules: [{8E612C25-995E-4B4B-A69C-47C8997D9FEA}] => (Allow) R:\Programs\steamapps\common\Farming Simulator 17\x86\FarmingSimulator2017Game.exe
FirewallRules: [{A92F5B2A-72CF-438F-9832-3A42B62C4D81}] => (Allow) R:\Programs\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{F3536176-389A-43CB-80E2-6FFA21EFABBF}] => (Allow) R:\Programs\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{5CDDAAE1-3B95-4A03-A69D-BFF436CEEC65}] => (Allow) R:\Programs\steamapps\common\Call of Duty Modern Warfare Remastered\h1_sp64_ship.exe
FirewallRules: [{67BAD5AC-4B7B-4075-BA2A-20BFEF63E7AC}] => (Allow) R:\Programs\steamapps\common\Call of Duty Modern Warfare Remastered\h1_sp64_ship.exe
FirewallRules: [{24788561-9E3C-494A-9F27-0D64F0E6E205}] => (Allow) R:\Programs\steamapps\common\Call of Duty Modern Warfare Remastered\h1_mp64_ship.exe
FirewallRules: [{1D1C40A2-ED98-4148-B65F-C1FF07CE49D6}] => (Allow) R:\Programs\steamapps\common\Call of Duty Modern Warfare Remastered\h1_mp64_ship.exe
FirewallRules: [{B2D9D007-CFF4-4E4E-A91F-252370FF0BA6}] => (Allow) R:\Programs\steamapps\common\Call of Duty - Infinite Warfare\iw7_ship.exe
FirewallRules: [{B8DCD094-98D8-4808-8C65-FCA9C53525EF}] => (Allow) R:\Programs\steamapps\common\Call of Duty - Infinite Warfare\iw7_ship.exe
FirewallRules: [{059A02F7-3162-49C1-ADD0-7901D0A4DE8B}] => (Allow) R:\SteamLibrary\SteamApps\common\Factorio\bin\x64\factorio.exe
FirewallRules: [{AADEFCAF-2913-4638-B217-B72823365E74}] => (Allow) R:\SteamLibrary\SteamApps\common\Factorio\bin\x64\factorio.exe
FirewallRules: [TCP Query User{1FFBFCE7-50D0-40D0-B26D-E96A9DD679DD}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [UDP Query User{73CF5479-71BB-44BD-A02E-BE24ED3D281A}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [TCP Query User{E03624F3-AF2F-4AB0-B6CC-1C254CBB35C9}C:\program files\java\jre1.8.0_77\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_77\bin\javaw.exe
FirewallRules: [UDP Query User{150F0975-B43E-4CE2-BC87-721BE63395DC}C:\program files\java\jre1.8.0_77\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_77\bin\javaw.exe
FirewallRules: [{82FF8E00-1C6D-4D01-986D-F0F28CAF689D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{DD77DFE0-3901-40A1-8549-45B2BCE8D69A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{4F14C3FF-F1FD-4391-B708-58A76B7829DE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{3E2041E0-B939-4E51-B81F-2584508A2DAE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{B666414A-27E6-4C66-8B49-2C7599C5D1A5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{B50DAB59-6ACD-45EC-B6DA-3B1C8EC00C11}] => (Allow) R:\SteamLibrary\SteamApps\common\Viscera\Binaries\UDKLift.exe
FirewallRules: [{22C8A2E8-51E7-4925-9907-AE5F228F63A9}] => (Allow) R:\SteamLibrary\SteamApps\common\Viscera\Binaries\UDKLift.exe
FirewallRules: [{5C535003-3DDD-4747-BE86-6FD560B3D3BF}] => (Allow) R:\Programs\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe
FirewallRules: [{F70E1FBA-E71A-4CE8-A7A8-4F1C4DFB477F}] => (Allow) R:\Programs\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe
FirewallRules: [{613D8CF1-95D2-47D5-8DC1-760E6332CBE6}] => (Allow) R:\SteamLibrary\SteamApps\common\Viscera Cleanup Detail Shadow Warrior\Binaries\Win64\UDK.exe
FirewallRules: [{D19DD23D-8469-4A9B-810F-D30D061C26BA}] => (Allow) R:\SteamLibrary\SteamApps\common\Viscera Cleanup Detail Shadow Warrior\Binaries\Win64\UDK.exe
FirewallRules: [{46672331-9BFC-407B-83EE-71213365A853}] => (Allow) R:\Programs\steamapps\common\Universe Sandbox 2\Universe Sandbox x64.exe
FirewallRules: [{B4CBF362-EA39-47C7-BA35-01ADB3BCA90E}] => (Allow) R:\Programs\steamapps\common\Universe Sandbox 2\Universe Sandbox x64.exe
FirewallRules: [{1ED55876-93E2-4797-8CAB-4A182F5C8344}] => (Allow) R:\Programs\steamapps\common\Universe Sandbox 2\Universe Sandbox VR.exe
FirewallRules: [{37E8E8CA-3FB5-4E3F-B3EA-960173FFB93E}] => (Allow) R:\Programs\steamapps\common\Universe Sandbox 2\Universe Sandbox VR.exe
FirewallRules: [TCP Query User{B4BF3016-7C22-4DDF-8AC1-46B5028BAC80}R:\programs\steamapps\common\h1z1 king of the kill\h1z1.exe] => (Allow) R:\programs\steamapps\common\h1z1 king of the kill\h1z1.exe
FirewallRules: [UDP Query User{B4953154-694C-4B7D-8D65-A814A495FBC6}R:\programs\steamapps\common\h1z1 king of the kill\h1z1.exe] => (Allow) R:\programs\steamapps\common\h1z1 king of the kill\h1z1.exe
FirewallRules: [TCP Query User{B162BD80-2178-421B-93AB-6C91A4AF8AD0}C:\users\razgriz\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\razgriz\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{7AB01654-F682-42F7-BFEC-016906983FA5}C:\users\razgriz\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\razgriz\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{2F74868D-EE25-468A-8291-C7DCE18D8DD1}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe
FirewallRules: [UDP Query User{A715C1DD-26A5-42E1-9036-D45322474FC1}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe
FirewallRules: [{ECCB7F3D-0800-41E8-AE1C-F1428D2B1B63}] => (Allow) R:\Programs\steamapps\common\RimWorld\RimWorldWin.exe
FirewallRules: [{5A483F80-04A0-4977-B726-8226362C3F42}] => (Allow) R:\Programs\steamapps\common\RimWorld\RimWorldWin.exe
FirewallRules: [TCP Query User{9C1D5F1A-FD62-4173-996B-B4A7C243F15A}C:\program files\cisco packet tracer 7.0\bin\packettracer7.exe] => (Allow) C:\program files\cisco packet tracer 7.0\bin\packettracer7.exe
FirewallRules: [UDP Query User{642B6469-4328-40B0-B343-4057C56C6894}C:\program files\cisco packet tracer 7.0\bin\packettracer7.exe] => (Allow) C:\program files\cisco packet tracer 7.0\bin\packettracer7.exe
FirewallRules: [{88C8C104-95E1-47C3-B21E-BF6B7DFDD88E}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{2A1835C3-7B22-45B8-8DE1-CC1EB743A422}] => (Allow) R:\Programs\steamapps\common\Farming Simulator 17\x64\FarmingSimulator2017Game.exe
FirewallRules: [{429DE7A7-A17F-4F03-9612-A91E98D8DEE8}] => (Allow) R:\Programs\steamapps\common\Farming Simulator 17\x64\FarmingSimulator2017Game.exe
FirewallRules: [TCP Query User{5F048CB7-306A-488C-A367-D39C78BE36F4}R:\programs\steamapps\common\call of duty 4\iw3mp.exe] => (Allow) R:\programs\steamapps\common\call of duty 4\iw3mp.exe
FirewallRules: [UDP Query User{34708BA5-61C5-4B88-86ED-2EB71AADD90A}R:\programs\steamapps\common\call of duty 4\iw3mp.exe] => (Allow) R:\programs\steamapps\common\call of duty 4\iw3mp.exe
FirewallRules: [{B6A35171-3800-4947-ACC4-8D7584B7029F}] => (Allow) R:\SteamLibrary\SteamApps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{25A8109B-1FF7-4017-AC5C-4E0F1F9E33FB}] => (Allow) R:\SteamLibrary\SteamApps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{53C310D5-96E2-4E4B-8F96-FBD5AF9068A2}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{20B3F577-E460-4660-A2BF-4E482DD93EFC}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{34CCC11C-688F-4917-874A-15FBB81081B6}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{A97EDC70-6023-448C-A5C1-64CED2504CC9}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{169069D3-E334-468C-969B-AB2A1D23F9D2}] => (Allow) D:\SteamLibrary\steamapps\common\FSX\fsx.exe
FirewallRules: [{7F5F21D5-82EB-4784-AD1F-09BBE8BFE1A7}] => (Allow) D:\SteamLibrary\steamapps\common\FSX\fsx.exe
FirewallRules: [TCP Query User{026EA8E5-4A4A-4A96-BCB7-BCC8A884F9A7}D:\programs\vpilot\vpilot.exe] => (Allow) D:\programs\vpilot\vpilot.exe
FirewallRules: [UDP Query User{55AC182F-BCA7-40B6-A7D0-76DE9E3F07E0}D:\programs\vpilot\vpilot.exe] => (Allow) D:\programs\vpilot\vpilot.exe
FirewallRules: [{F26AC1C1-D639-4D06-BF5D-D6853D1B9460}] => (Allow) D:\SteamLibrary\steamapps\common\Batman Arkham Origins\SinglePlayer\Binaries\Win32\BatmanOrigins.exe
FirewallRules: [{908FDCC7-C28C-425C-B51D-A0F12CBCC923}] => (Allow) D:\SteamLibrary\steamapps\common\Batman Arkham Origins\SinglePlayer\Binaries\Win32\BatmanOrigins.exe
FirewallRules: [{0AC883E8-BD8F-4196-A6EA-C144F08FD9E3}] => (Allow) D:\SteamLibrary\steamapps\common\Batman Arkham Origins\Online\Binaries\Win32\BatmanOriginsOnline.exe
FirewallRules: [{1FAA02B0-BEF1-4A69-94DE-7277DB327629}] => (Allow) D:\SteamLibrary\steamapps\common\Batman Arkham Origins\Online\Binaries\Win32\BatmanOriginsOnline.exe
FirewallRules: [TCP Query User{DC2136CB-50D7-4E1E-B78D-02D2CDB6BD81}C:\program files (x86)\java\jre1.8.0_77\bin\jp2launcher.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_77\bin\jp2launcher.exe
FirewallRules: [UDP Query User{B05CA14B-9079-4E10-921E-E5C746A4CBE0}C:\program files (x86)\java\jre1.8.0_77\bin\jp2launcher.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_77\bin\jp2launcher.exe
FirewallRules: [{7B73F8EE-B60E-48DE-AA26-62360746B521}] => (Allow) D:\SteamLibrary\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{77A9CBBD-193D-49FE-AD8A-DCE11C496799}] => (Allow) D:\SteamLibrary\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [TCP Query User{46245B42-3522-4E86-9E2A-2983FACFE6F5}R:\programs\steamapps\common\call of duty modern warfare 3\iw5mp.exe] => (Allow) R:\programs\steamapps\common\call of duty modern warfare 3\iw5mp.exe
FirewallRules: [UDP Query User{48551751-4886-481A-9EA8-A1F37A204653}R:\programs\steamapps\common\call of duty modern warfare 3\iw5mp.exe] => (Allow) R:\programs\steamapps\common\call of duty modern warfare 3\iw5mp.exe
FirewallRules: [{4842AD1B-3BA5-4050-92D9-8100A00BDDC0}] => (Allow) R:\Programs\steamapps\common\Call of Duty 4\iw3sp.exe
FirewallRules: [{A54AA059-0E6E-48E9-B55E-115253FD8B6F}] => (Allow) R:\Programs\steamapps\common\Call of Duty 4\iw3sp.exe
FirewallRules: [{55DEAB3D-52E8-4906-A2F9-BB1C71799BED}] => (Allow) D:\SteamLibrary\steamapps\common\Osiris\OsirisNewDawn.exe
FirewallRules: [{C8FDD6EC-C582-4C46-A01B-F840BE579FC2}] => (Allow) D:\SteamLibrary\steamapps\common\Osiris\OsirisNewDawn.exe
FirewallRules: [TCP Query User{2C18C33B-D476-4D1E-933B-A46AD19BB8D1}C:\program files (x86)\java\jre1.8.0_121\bin\jp2launcher.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_121\bin\jp2launcher.exe
FirewallRules: [UDP Query User{DEFCC187-0940-4322-A3FD-6E8633510E8E}C:\program files (x86)\java\jre1.8.0_121\bin\jp2launcher.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_121\bin\jp2launcher.exe
FirewallRules: [{62103E01-38C1-4325-AFBE-195CE76FED63}] => (Allow) R:\SteamLibrary\SteamApps\common\Call of Duty Advanced Warfare\s1_mp64_ship.exe
FirewallRules: [{AE7DD69F-EBB2-4A0B-B731-78771D278B67}] => (Allow) R:\SteamLibrary\SteamApps\common\Call of Duty Advanced Warfare\s1_mp64_ship.exe
FirewallRules: [{2D198FCA-FE1D-4271-8DFC-C0EC1FC1FCCE}] => (Allow) D:\SteamLibrary\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{44BC4FD0-3826-4DAF-82DB-D26CFC27EBCB}] => (Allow) D:\SteamLibrary\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{156589C3-F2A7-4328-B7A8-67DAA2E91EB2}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{BAA973CD-E65F-4ACD-A5FB-59F794EAF7DE}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [TCP Query User{6F0EB065-B8CF-455B-9962-9F6C92FDC0D4}R:\programs\steamapps\common\call of duty ghosts\iw6mp64_ship.exe] => (Allow) R:\programs\steamapps\common\call of duty ghosts\iw6mp64_ship.exe
FirewallRules: [UDP Query User{176D604F-1F06-4EB3-BBA7-8ED3553C5864}R:\programs\steamapps\common\call of duty ghosts\iw6mp64_ship.exe] => (Allow) R:\programs\steamapps\common\call of duty ghosts\iw6mp64_ship.exe
FirewallRules: [{52020F51-F060-44A8-BD9E-7585EBB87F61}] => (Allow) R:\Programs\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{9C9AE3E4-05F2-43A0-8E43-F9D3DDD14337}] => (Allow) R:\Programs\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{C87CDB4D-324F-4FE0-A762-B5C0EC2AC38F}] => (Allow) D:\Steam Client\Steam.exe
FirewallRules: [{903CCB67-CCD3-430F-8149-22E915F41F04}] => (Allow) D:\Steam Client\Steam.exe
FirewallRules: [{32632C65-7906-4CFF-9C3B-0ACEC55018DD}] => (Allow) D:\Steam Client\steamapps\common\Dawn of War III\RelicDoW3.exe
FirewallRules: [{5B791815-8F91-40EC-A086-64940F211F2E}] => (Allow) D:\Steam Client\steamapps\common\Dawn of War III\RelicDoW3.exe
FirewallRules: [{43434F82-A548-4D47-94BE-BA0185F95812}] => (Allow) S:\Steam\Steam.exe
FirewallRules: [{5E428D99-FCEE-4EF2-9572-4C7E2AA514AD}] => (Allow) S:\Steam\Steam.exe
FirewallRules: [{290C83D7-C659-48EF-BFCC-2EBD36056D4C}] => (Allow) S:\Steam\steamapps\common\Dawn of War III\RelicDoW3.exe
FirewallRules: [{04166321-0984-4C68-8649-9043CA3DBF46}] => (Allow) S:\Steam\steamapps\common\Dawn of War III\RelicDoW3.exe
FirewallRules: [{9ACDE02A-0394-4D39-8FAC-6613FC17643E}] => (Allow) S:\Steam\steamapps\common\Orion Dino Beatdown\Binaries\Win32\DinoHordeGame.exe
FirewallRules: [{C8D7D63F-051A-4355-A2C7-A225A75A89D4}] => (Allow) S:\Steam\steamapps\common\Orion Dino Beatdown\Binaries\Win32\DinoHordeGame.exe
FirewallRules: [{2195F32A-4D75-40F5-A3E4-B8718B52DE8C}] => (Allow) S:\Steam\steamapps\common\Call of Duty 4\iw3sp.exe
FirewallRules: [{DDE948BC-652A-406D-A5FF-A8219842CE1E}] => (Allow) S:\Steam\steamapps\common\Call of Duty 4\iw3sp.exe
FirewallRules: [{35BB826D-2005-4319-8523-219F2EC0A14C}] => (Allow) S:\Steam\steamapps\common\Call of Duty 4\iw3mp.exe
FirewallRules: [{59454451-FB41-4008-900F-ABDD84691F04}] => (Allow) S:\Steam\steamapps\common\Call of Duty 4\iw3mp.exe
FirewallRules: [{AF6F0123-A769-4A75-B167-01D2A99E7D25}] => (Allow) S:\Steam\steamapps\common\Osiris\OsirisNewDawn.exe
FirewallRules: [{18A6DC82-0775-4E87-ACDB-D89F4F7D2724}] => (Allow) S:\Steam\steamapps\common\Osiris\OsirisNewDawn.exe
FirewallRules: [{2912A663-4597-48A9-93E5-E39C5D53100C}] => (Allow) S:\Steam\steamapps\common\RimWorld\RimWorldWin.exe
FirewallRules: [{AEA59A64-9D29-4497-B638-D6BA155A65FE}] => (Allow) S:\Steam\steamapps\common\RimWorld\RimWorldWin.exe
FirewallRules: [{94E2D9BE-3BAB-4FE4-8315-BC0ABC012A70}] => (Allow) S:\Steam\steamapps\common\Planetbase\Planetbase.exe
FirewallRules: [{AA599C0E-7DA6-4C8E-8C77-447CE8702FC1}] => (Allow) S:\Steam\steamapps\common\Planetbase\Planetbase.exe
FirewallRules: [{C354D7CB-0352-42E6-A78B-B11EC1236549}] => (Allow) S:\Steam\steamapps\common\Dawn of War Gold\W40kWA.exe
FirewallRules: [{3AD67191-3629-4284-AC14-44B984E8C1A6}] => (Allow) S:\Steam\steamapps\common\Dawn of War Gold\W40kWA.exe
FirewallRules: [{9FDE86BE-DDC7-4898-A532-48F93C84834F}] => (Allow) S:\Steam\steamapps\common\Dawn of War Gold\W40k.exe
FirewallRules: [{59523CC0-69C4-4933-96D4-0CE67EBFAEBF}] => (Allow) S:\Steam\steamapps\common\Dawn of War Gold\W40k.exe
FirewallRules: [{21EC1B08-937E-46D7-A497-07EA9BADAC34}] => (Allow) S:\Steam\steamapps\common\Dawn of War Dark Crusade\darkcrusade.exe
FirewallRules: [{549B9CBB-C8A1-441B-8DDC-E171CB854894}] => (Allow) S:\Steam\steamapps\common\Dawn of War Dark Crusade\darkcrusade.exe
FirewallRules: [{F5A95670-A136-43A7-A7E0-7F49EA8F6B01}] => (Allow) S:\Steam\steamapps\common\Prison Architect\Prison Architect.exe
FirewallRules: [{E143ECF8-DC88-49BE-AF0C-57B1C499BE1B}] => (Allow) S:\Steam\steamapps\common\Prison Architect\Prison Architect.exe
FirewallRules: [{5E13B3A5-C7AB-43B9-A684-6038E490FD49}] => (Allow) S:\Steam\steamapps\common\Prison Architect\Prison Architect Safe Mode.exe
FirewallRules: [{DAAF9685-BF62-4D62-A830-F06FAEF2B022}] => (Allow) S:\Steam\steamapps\common\Prison Architect\Prison Architect Safe Mode.exe
FirewallRules: [{F8A1907F-038E-45AE-A865-C0326AC93D97}] => (Allow) S:\Steam\steamapps\common\Banished\Application-steam-x64.exe
FirewallRules: [{C8CCB2CD-19A0-40F9-88A9-6536ADD4695F}] => (Allow) S:\Steam\steamapps\common\Banished\Application-steam-x64.exe
FirewallRules: [{F4C89B4A-1C7E-4691-A7AD-480B9B9BC214}] => (Allow) S:\Steam\steamapps\common\Quiplash\Quiplash.exe
FirewallRules: [{361BB638-0B4F-42D5-9A94-71C430797021}] => (Allow) S:\Steam\steamapps\common\Quiplash\Quiplash.exe
FirewallRules: [{5A8151DE-9A05-46FB-ABFC-B1DE4B4B7321}] => (Allow) S:\Steam\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{A8D82A23-969C-4240-8865-2E7965631790}] => (Allow) S:\Steam\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{18F97518-A753-470A-BEA7-0518A5C4ED6C}] => (Allow) S:\Steam\steamapps\common\Dawn of War Soulstorm\Soulstorm.exe
FirewallRules: [{763D5D2E-9B63-45CD-AF26-D61C0557B2CF}] => (Allow) S:\Steam\steamapps\common\Dawn of War Soulstorm\Soulstorm.exe
FirewallRules: [{4F47EB18-8238-4868-A4C6-B8063949A22B}] => (Allow) S:\Steam\steamapps\common\Dawn of War 2\DOW2.exe
FirewallRules: [{A6CAE73D-0997-4B16-9F43-59FD8D5022AB}] => (Allow) S:\Steam\steamapps\common\Dawn of War 2\DOW2.exe
FirewallRules: [{EF392073-7D0F-464E-81FD-8D86B1139F08}] => (Allow) S:\Steam\steamapps\common\Dawn of War II - Retribution\DOW2.exe
FirewallRules: [{8518B779-5F0E-45BD-A798-3FB18CE4A0D5}] => (Allow) S:\Steam\steamapps\common\Dawn of War II - Retribution\DOW2.exe
FirewallRules: [{B36EA990-FB9C-4F6F-B96F-EE82361AB058}] => (Allow) S:\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{19123E05-77B8-483F-BD43-7FCFC20E4025}] => (Allow) S:\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{6666782A-2FF6-4012-9BD5-D1162FA70D10}] => (Allow) S:\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{D80F5402-DEA7-4274-9E27-4DEBE94E3BD3}] => (Allow) S:\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{BAC2E574-D410-448B-852D-EC98AE90A51A}] => (Allow) S:\Steam\steamapps\common\Anno 2070\Anno5.exe
FirewallRules: [{8359DA6A-B8FB-4BE9-B57E-C09756A6E559}] => (Allow) S:\Steam\steamapps\common\Anno 2070\Anno5.exe
FirewallRules: [{9A594B63-0AC2-41DD-91B3-ABB032266079}] => (Allow) S:\Steam\steamapps\common\Tropico 5\Tropico5Steam.exe
FirewallRules: [{733B959D-AB06-4068-AB9D-05B40D210E2A}] => (Allow) S:\Steam\steamapps\common\Tropico 5\Tropico5Steam.exe
FirewallRules: [{483DDDF9-5DB9-4964-B653-8398F8AF8F6E}] => (Allow) S:\Steam\steamapps\common\Warhammer 40,000 - Eternal Crusade\EternalCrusadeClient.exe
FirewallRules: [{D88E8DB9-0F5F-4C42-B714-9128690A1A00}] => (Allow) S:\Steam\steamapps\common\Warhammer 40,000 - Eternal Crusade\EternalCrusadeClient.exe
FirewallRules: [{09648EF8-CB34-4274-B1F7-2A7E9FECA3E6}] => (Allow) S:\Steam\steamapps\common\Call of Duty Black Ops II\t6sp.exe
FirewallRules: [{A604B1CE-83AD-42D3-AF3D-EBE5F5F1BD05}] => (Allow) S:\Steam\steamapps\common\Call of Duty Black Ops II\t6sp.exe
FirewallRules: [{27DC970B-271E-45AF-B30A-9CBC598ADD13}] => (Allow) S:\Steam\steamapps\common\Call of Duty Black Ops II\t6mp.exe
FirewallRules: [{476A919E-0A51-425F-85CD-1EE50E88D2CE}] => (Allow) S:\Steam\steamapps\common\Call of Duty Black Ops II\t6mp.exe
FirewallRules: [{614B324A-B14B-4F9E-9984-5B60824DEF6E}] => (Allow) S:\Steam\steamapps\common\Batman Arkham Origins\SinglePlayer\Binaries\Win32\BatmanOrigins.exe
FirewallRules: [{5E2D8AF7-37FC-4DDA-BAB4-85EC5563D66A}] => (Allow) S:\Steam\steamapps\common\Batman Arkham Origins\SinglePlayer\Binaries\Win32\BatmanOrigins.exe
FirewallRules: [{D30E856B-7F07-4095-8BD2-37A88B80C1BB}] => (Allow) S:\Steam\steamapps\common\Batman Arkham Origins\Online\Binaries\Win32\BatmanOriginsOnline.exe
FirewallRules: [{1C3852CC-1B70-45ED-8094-8DB92A479895}] => (Allow) S:\Steam\steamapps\common\Batman Arkham Origins\Online\Binaries\Win32\BatmanOriginsOnline.exe
FirewallRules: [{AA0A0A82-0A7E-4BE0-BE21-3CD33ACD9F5F}] => (Allow) S:\Steam\steamapps\common\Call of Duty World at War\CoDWaW.exe
FirewallRules: [{3C3C1107-2D13-4406-ADEC-6075BB50209C}] => (Allow) S:\Steam\steamapps\common\Call of Duty World at War\CoDWaW.exe
FirewallRules: [{FCF07652-D88E-423B-A513-A6B7688C8361}] => (Allow) S:\Steam\steamapps\common\Call of Duty World at War\CoDWaWmp.exe
FirewallRules: [{C08BA2CE-AC23-49FE-8E5D-BB502567756D}] => (Allow) S:\Steam\steamapps\common\Call of Duty World at War\CoDWaWmp.exe
FirewallRules: [{EC791771-8A4F-423C-99DD-ABC8AD935D74}] => (Allow) S:\Steam\steamapps\common\Call of Duty Modern Warfare 2\iw4sp.exe
FirewallRules: [{F449FC56-2604-46C9-B04A-BB847277988A}] => (Allow) S:\Steam\steamapps\common\Call of Duty Modern Warfare 2\iw4sp.exe
FirewallRules: [{7102F349-341A-4544-BDA9-E8A371C85397}] => (Allow) S:\Steam\steamapps\common\Call of Duty Modern Warfare 2\iw4mp.exe
FirewallRules: [{5775053C-8CE8-4C01-8EAB-2D7E4E5BFC12}] => (Allow) S:\Steam\steamapps\common\Call of Duty Modern Warfare 2\iw4mp.exe
FirewallRules: [{71759FE2-07C6-4DB6-AE63-6577EF8AD9CA}] => (Allow) S:\Steam\steamapps\common\Call of Duty Modern Warfare 3\iw5sp.exe
FirewallRules: [{FBE71B8D-B86D-4516-A718-8AEFF7526DF5}] => (Allow) S:\Steam\steamapps\common\Call of Duty Modern Warfare 3\iw5sp.exe
FirewallRules: [{24EC7B05-23A0-4808-9B75-47E3622E3684}] => (Allow) S:\Steam\steamapps\common\Call of Duty Modern Warfare 3\iw5mp.exe
FirewallRules: [{487097DB-14A4-458F-97DF-D5EE93661628}] => (Allow) S:\Steam\steamapps\common\Call of Duty Modern Warfare 3\iw5mp.exe
FirewallRules: [{6B85E79A-9523-4A7C-AD1F-E3C6EE314237}] => (Allow) S:\Steam\steamapps\common\Call of Duty Ghosts\iw6sp64_ship.exe
FirewallRules: [{697C0630-2C01-4FEB-B011-BEDB6FCACD7B}] => (Allow) S:\Steam\steamapps\common\Call of Duty Ghosts\iw6sp64_ship.exe
FirewallRules: [{7C1B788C-D20C-4A28-9DD5-03CB5BF7521F}] => (Allow) S:\Steam\steamapps\common\Call of Duty Ghosts\iw6mp64_ship.exe
FirewallRules: [{CAF7ABE5-FFCC-446D-A9FC-8790A31029CD}] => (Allow) S:\Steam\steamapps\common\Call of Duty Ghosts\iw6mp64_ship.exe
FirewallRules: [{FE58DAA4-B07C-42FE-ADC3-9EB06825BD3A}] => (Allow) S:\Steam\steamapps\common\Call of Duty Advanced Warfare\s1_sp64_ship.exe
FirewallRules: [{87259950-85FA-4CC0-BE1A-C4C5B33BC6E6}] => (Allow) S:\Steam\steamapps\common\Call of Duty Advanced Warfare\s1_sp64_ship.exe
FirewallRules: [{953F3519-9178-4C9E-84A2-3438DE8A7C83}] => (Allow) S:\Steam\steamapps\common\Call of Duty Advanced Warfare\s1_mp64_ship.exe
FirewallRules: [{C4BED155-9ED5-4184-95F9-A119C1B1B444}] => (Allow) S:\Steam\steamapps\common\Call of Duty Advanced Warfare\s1_mp64_ship.exe
FirewallRules: [{E483CF95-2FD5-4C91-A720-7850DD75D247}] => (Allow) S:\Steam\steamapps\common\Call of Duty Black Ops II\t6zm.exe
FirewallRules: [{C7A01515-4293-460A-B301-57097A351C4F}] => (Allow) S:\Steam\steamapps\common\Call of Duty Black Ops II\t6zm.exe
FirewallRules: [{4F87A78A-03EA-414A-AF2F-8E84CC20706F}] => (Allow) S:\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{37137803-DF5F-4BEE-A3EB-2BF54FEAB22F}] => (Allow) S:\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{E81E4B8E-76E6-46A4-AB6D-66A906E30C67}] => (Allow) S:\Steam\steamapps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{8A5353CD-B923-4645-91D5-E837346486C0}] => (Allow) S:\Steam\steamapps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{BC6662F8-C4D8-4281-82A9-5EE21B572430}] => (Allow) S:\Steam\steamapps\common\Arma 2\arma2.exe
FirewallRules: [{778EEE9D-93B2-4BB7-AEBB-88D9511820B7}] => (Allow) S:\Steam\steamapps\common\Arma 2\arma2.exe
FirewallRules: [{508E6D87-A16D-4BFC-9851-BFD796BDD768}] => (Allow) S:\Steam\steamapps\common\FSX\fsx.exe
FirewallRules: [{5B8EB8F8-75A3-48A9-875E-A020DCB9A241}] => (Allow) S:\Steam\steamapps\common\FSX\fsx.exe
FirewallRules: [{2EA0F350-5E2C-4624-A463-A0D1636097C6}] => (Allow) S:\Steam\steamapps\common\Call of Duty - Infinite Warfare\iw7_ship.exe
FirewallRules: [{19634F42-B669-4695-AA28-37C7BDA9504C}] => (Allow) S:\Steam\steamapps\common\Call of Duty - Infinite Warfare\iw7_ship.exe
FirewallRules: [{FF6BB0E0-AC67-41DD-9AA6-956849BEEA38}] => (Allow) S:\Steam\steamapps\common\Arma 2 Operation Arrowhead\ArmA2OA_BE.exe
FirewallRules: [{E615D983-B5FF-4057-AAFF-8FEBCB496FA4}] => (Allow) S:\Steam\steamapps\common\Arma 2 Operation Arrowhead\ArmA2OA_BE.exe
FirewallRules: [TCP Query User{A546CBC6-C0B5-4BF4-B760-D4DCCBA48A2B}S:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) S:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe
FirewallRules: [UDP Query User{E08A780E-3809-496C-B4F2-ADE18544EF52}S:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) S:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe
FirewallRules: [{A3014D6F-9A64-4802-8AEE-CD56E25CE3E9}] => (Allow) S:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{A04FD271-AD6C-4140-BC0F-B4B86F289ACF}] => (Allow) S:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{7536064A-F5B7-4587-BCDF-F7416BA4E445}] => (Allow) S:\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe
FirewallRules: [{68A20180-2FA1-4254-BCF5-44639F7499F4}] => (Allow) S:\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe
FirewallRules: [{41BF23D8-76EB-460F-8874-A8DCBE0A9911}] => (Allow) S:\Steam\steamapps\common\DCSWorld\Run.exe
FirewallRules: [{5122E190-8B86-4594-8A2E-D8A7E9AADFC0}] => (Allow) S:\Steam\steamapps\common\DCSWorld\Run.exe
FirewallRules: [{B473DE4B-9EE1-44D1-A36B-BDBAFAB77393}] => (Allow) S:\Steam\steamapps\common\PlagueInc\PlagueIncEvolved.exe
FirewallRules: [{FD75FD80-C07A-4B11-9301-5CD206E19A62}] => (Allow) S:\Steam\steamapps\common\PlagueInc\PlagueIncEvolved.exe
FirewallRules: [{6ACA2B2E-6649-4745-92B0-DC6FF418B496}] => (Allow) S:\Steam\steamapps\common\Anno 2205\Bin\Win64\Anno2205.exe
FirewallRules: [{5B05DB1C-E32B-4650-A229-294ACB0D07F9}] => (Allow) S:\Steam\steamapps\common\Anno 2205\Bin\Win64\Anno2205.exe
FirewallRules: [{4AE4B549-E0AD-400E-9314-9B5F90D0698A}] => (Allow) S:\Steam\steamapps\common\Call of Duty Modern Warfare Remastered\h1_sp64_ship.exe
FirewallRules: [{4436D3CF-1866-4467-905E-A1DC89AB9736}] => (Allow) S:\Steam\steamapps\common\Call of Duty Modern Warfare Remastered\h1_sp64_ship.exe
FirewallRules: [{F8A36136-9BC7-4918-A092-0AA2553CB6E4}] => (Allow) S:\Steam\steamapps\common\Call of Duty Modern Warfare Remastered\h1_mp64_ship.exe
FirewallRules: [{3823E724-FDE5-4FD1-A389-5C5605F7AD5E}] => (Allow) S:\Steam\steamapps\common\Call of Duty Modern Warfare Remastered\h1_mp64_ship.exe
FirewallRules: [{07E9C8D5-43B9-48DE-B54E-7A38A8048B56}] => (Allow) S:\Steam\steamapps\common\Plants Vs Zombies\PlantsVsZombies.exe
FirewallRules: [{20E21310-A7B3-4886-BBD1-5F4717CC7C9B}] => (Allow) S:\Steam\steamapps\common\Plants Vs Zombies\PlantsVsZombies.exe
FirewallRules: [{BE9606BE-5F47-4123-8561-DEC9E9EA6F8B}] => (Allow) S:\Steam\steamapps\common\Dungeon Nightmares II - The Memory\DungeonNightmaresII.exe
FirewallRules: [{0E3E16F8-62F1-4050-9FA2-75BF03A14E4E}] => (Allow) S:\Steam\steamapps\common\Dungeon Nightmares II - The Memory\DungeonNightmaresII.exe
FirewallRules: [TCP Query User{CB2100A8-B802-4CDA-A96D-E35B5C6FE814}C:\program files (x86)\obs-studio\bin\64bit\obs64.exe] => (Allow) C:\program files (x86)\obs-studio\bin\64bit\obs64.exe
FirewallRules: [UDP Query User{FD210BC7-8137-4507-8AFE-65BD2FEB9602}C:\program files (x86)\obs-studio\bin\64bit\obs64.exe] => (Allow) C:\program files (x86)\obs-studio\bin\64bit\obs64.exe
FirewallRules: [{9D2279B6-0139-49C5-ABD5-F1013C6EED78}] => (Allow) S:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{2AAE3610-471A-421B-95E1-2D48A05F0595}] => (Allow) S:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A30C93F9-9601-496A-962C-3367C36D1D32}] => (Allow) S:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{DD0BA57B-4153-493E-992E-BA45968568C0}] => (Allow) S:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{86180EDF-8B9F-44FB-8F11-AF320FE088D1}] => (Allow) S:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{06D842CA-F0E5-4F0E-A80E-B19EC708C0CC}] => (Allow) S:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8F294D37-30F8-4663-AEE1-ED6017E099B4}] => (Allow) S:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{1B459DCA-1F5B-4CD4-ACC1-14EB85304F40}] => (Allow) S:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8D272A16-A1F0-47F6-947D-1BEE946D3B37}] => (Allow) S:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{B540959A-B58A-410F-826A-2573D4A714D9}] => (Allow) S:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C331F444-6F6B-4CC3-85DA-FA40DB2E24E3}] => (Allow) S:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3E6551F6-7CA6-4F7A-8974-6A33B2C56994}] => (Allow) S:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{5F441818-A778-485F-A4DD-22762DA54A5F}] => (Allow) S:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{35733B8F-3723-4BB7-8437-ECE708F91DF6}] => (Allow) S:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{ACBC711A-7449-4606-A735-18752AAB3FA8}] => (Allow) S:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7A9BAB61-DAD1-4003-91C6-201A6F1DBDF6}] => (Allow) S:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{43BF45A9-B953-4DED-9FA4-EB85FEF5AEE5}] => (Allow) S:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{0D192BB1-7F61-445E-8CE1-D8DF859186FC}] => (Allow) S:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{F2E0EB87-7AE8-4510-BBED-D8F6D6E2CDEB}] => (Allow) S:\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe
FirewallRules: [{7FB4B66A-4DBB-48BB-A9F9-645E9483F0AC}] => (Allow) S:\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe
FirewallRules: [{CBD9E42D-F5F1-447C-B753-AE31DD521BD6}] => (Allow) S:\Steam\steamapps\common\Fallout 3 goty\FalloutLauncher.exe
FirewallRules: [{B1D46221-DEBD-4515-BC94-E116008B9B38}] => (Allow) S:\Steam\steamapps\common\Fallout 3 goty\FalloutLauncher.exe
FirewallRules: [{69729683-ABB0-4896-8B6C-F1BFE4C60E96}] => (Allow) S:\Steam\steamapps\common\Aven Colony\AvenColony.exe
FirewallRules: [{212275F0-BD27-451F-B726-18BFB83E09A7}] => (Allow) S:\Steam\steamapps\common\Aven Colony\AvenColony.exe
FirewallRules: [{75C4CB87-BDD4-4CD4-9AB4-009D3FC343B5}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909\SZBrowser.exe
FirewallRules: [TCP Query User{9630A341-1A86-4F09-88CF-45C72E90A1B3}S:\steam\steamapps\common\aven colony\avencolony\binaries\win64\avencolony-win64-shipping.exe] => (Allow) S:\steam\steamapps\common\aven colony\avencolony\binaries\win64\avencolony-win64-shipping.exe
FirewallRules: [UDP Query User{98322CC8-8459-4376-AA8A-9EF91AE2E8A0}S:\steam\steamapps\common\aven colony\avencolony\binaries\win64\avencolony-win64-shipping.exe] => (Allow) S:\steam\steamapps\common\aven colony\avencolony\binaries\win64\avencolony-win64-shipping.exe
FirewallRules: [{2260AC37-4588-4B51-9F4D-5A60A2E59147}] => (Allow) D:\Blizzard\StarCraft\StarCraft.exe
FirewallRules: [{684A0B11-72A4-4309-A4DA-59A74F23D74A}] => (Allow) D:\Blizzard\StarCraft\StarCraft.exe
FirewallRules: [TCP Query User{F09E498D-C902-4903-AFD2-DD499495499D}D:\adobe\adobe creative cloud\adobe dreamweaver cc 2017\node\node.exe] => (Allow) D:\adobe\adobe creative cloud\adobe dreamweaver cc 2017\node\node.exe
FirewallRules: [UDP Query User{712210D4-876D-4B08-83AA-593284C6C6FF}D:\adobe\adobe creative cloud\adobe dreamweaver cc 2017\node\node.exe] => (Allow) D:\adobe\adobe creative cloud\adobe dreamweaver cc 2017\node\node.exe
FirewallRules: [TCP Query User{D9EE6EE8-4C24-443C-951B-296B7A92E3D9}C:\program files\cisco packet tracer 7.1\bin\packettracer7.exe] => (Allow) C:\program files\cisco packet tracer 7.1\bin\packettracer7.exe
FirewallRules: [UDP Query User{978BA26A-DF12-4C36-BCAF-ADC87402B08B}C:\program files\cisco packet tracer 7.1\bin\packettracer7.exe] => (Allow) C:\program files\cisco packet tracer 7.1\bin\packettracer7.exe
FirewallRules: [{5332BA55-AD1B-4645-8934-CE72B4E52526}] => (Allow) D:\Blizzard\Destiny 2\destiny2.exe
FirewallRules: [{9C0E3E91-41B5-4F5A-9005-7943E56B1771}] => (Allow) D:\Blizzard\Destiny 2\destiny2.exe
FirewallRules: [{D8B8F2BA-A2C6-4F3B-AC6C-69E83B6B0295}] => (Allow) S:\Steam\steamapps\common\Viscera\Binaries\Win32\UDK.exe
FirewallRules: [{759F9E50-DBCF-43E7-A603-B6E3D6D9BA9F}] => (Allow) S:\Steam\steamapps\common\Viscera\Binaries\Win32\UDK.exe
FirewallRules: [{5B4A44DB-246D-4768-AF86-4FEC44169C03}] => (Allow) S:\Steam\steamapps\common\Viscera\Binaries\Win64\UDK.exe
FirewallRules: [{0008AE33-4525-481E-B482-16AF2F5DAADE}] => (Allow) S:\Steam\steamapps\common\Viscera\Binaries\Win64\UDK.exe
FirewallRules: [{589EE702-672E-49DA-AC93-FB943BB83E18}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{8F7C03BE-79E0-4E0D-B128-AEADE3C0EEB1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{6EEECF25-1624-4DA6-9CC1-08CDB6298B39}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909_0\SZBrowser.exe
FirewallRules: [{9A03D1EE-F589-4C4A-869B-1D54C802A5D5}] => (Allow) S:\Steam\steamapps\common\DCSWorld\bin\DCS.exe
FirewallRules: [{636445BC-FB0D-4D1F-9DC2-4EE108266ADD}] => (Allow) S:\Steam\steamapps\common\DCSWorld\bin\DCS.exe
FirewallRules: [{0E02A7ED-1E4C-41B9-9E21-C4640C15FD2F}] => (Allow) D:\Blizzard\StarCraft II\Versions\Base59587\SC2_x64.exe
FirewallRules: [{F4F28736-FB67-4A05-9F52-5AFA1C066BB6}] => (Allow) D:\Blizzard\StarCraft II\Versions\Base59587\SC2_x64.exe
FirewallRules: [TCP Query User{90E66D39-5EFA-469C-86A0-BAF6D4A1D207}D:\blizzard\blizzard app\battle.net.exe] => (Allow) D:\blizzard\blizzard app\battle.net.exe
FirewallRules: [UDP Query User{54C099C7-619A-47D0-B3E4-B73C6944FD6F}D:\blizzard\blizzard app\battle.net.exe] => (Allow) D:\blizzard\blizzard app\battle.net.exe
FirewallRules: [{1BA1BF1B-268B-468C-B51F-C5312110E582}] => (Allow) S:\Steam\steamapps\common\Farming Simulator 17\x64\FarmingSimulator2017Game.exe
FirewallRules: [{1CCAB81F-DF90-43FC-9B66-673BB623EBCE}] => (Allow) S:\Steam\steamapps\common\Farming Simulator 17\x64\FarmingSimulator2017Game.exe
FirewallRules: [{4E138F7B-B225-43FB-9C55-C47973CF7991}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{34DB58BF-12D3-4F59-B29D-2BF991909009}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{90C6F2B1-ED74-4956-A2A0-6899FAAB2C22}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{07293F93-1DED-4BD4-83C9-78C5B1FF08B4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{B74E050B-8864-43D6-99AA-50346FD8DB68}] => (Allow) S:\Steam\steamapps\common\Viscera\Binaries\Win32\UDK.exe
FirewallRules: [{8EC5DAA9-09EB-4994-9507-87A52D74B8CD}] => (Allow) S:\Steam\steamapps\common\Viscera\Binaries\Win32\UDK.exe
FirewallRules: [{6A35AE58-D0E4-429A-BCCA-0C579790DF7C}] => (Allow) S:\Steam\steamapps\common\Viscera\Binaries\Win64\UDK.exe
FirewallRules: [{DE867EC9-F262-4A7B-BA49-CDB135A75DBA}] => (Allow) S:\Steam\steamapps\common\Viscera\Binaries\Win64\UDK.exe
FirewallRules: [{139EA5F0-664A-48B8-947A-3530D80D20FA}] => (Allow) S:\Steam\steamapps\common\Viscera\Binaries\UDKLift.exe
FirewallRules: [{DD7FE38A-D2DC-45C8-BE14-ABA7B12A0304}] => (Allow) S:\Steam\steamapps\common\Viscera\Binaries\UDKLift.exe
FirewallRules: [TCP Query User{5D465546-DEE8-457F-B57B-277BACFB517D}S:\steam\steamapps\common\fallout 4\fallout4.exe] => (Allow) S:\steam\steamapps\common\fallout 4\fallout4.exe
FirewallRules: [UDP Query User{7A09BEC8-553E-4B53-867D-7C9C5407CC4A}S:\steam\steamapps\common\fallout 4\fallout4.exe] => (Allow) S:\steam\steamapps\common\fallout 4\fallout4.exe
FirewallRules: [{BFFD7092-7AC4-4766-8105-76CFEDF49026}] => (Allow) S:\Steam\steamapps\common\Fallout New Vegas\FalloutNVLauncher.exe
FirewallRules: [{D530F64B-E12C-43EF-A20A-D77B94DB192C}] => (Allow) S:\Steam\steamapps\common\Fallout New Vegas\FalloutNVLauncher.exe
FirewallRules: [{7DD89FAD-1A14-42CC-B9DE-8AC6DC9B5CF0}] => (Allow) S:\Steam\steamapps\common\Subnautica\Subnautica.exe
FirewallRules: [{7509EAC5-8398-4CE6-884E-C49816B9CB53}] => (Allow) S:\Steam\steamapps\common\Subnautica\Subnautica.exe
FirewallRules: [{6D485B10-E7A2-42DD-A73A-DA94099AC50B}] => (Allow) S:\Steam\steamapps\common\Fallout Shelter\FalloutShelter.exe
FirewallRules: [{CFA99C90-A1A3-4E24-8655-E90082F37AA3}] => (Allow) S:\Steam\steamapps\common\Fallout Shelter\FalloutShelter.exe
FirewallRules: [{57FE7928-7068-4A86-858C-5353245CE06D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{64EA7997-4605-4142-8D85-76C809F7EE4D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{C613212A-B748-482F-A266-ACC0075C544A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{1231D506-EB12-436F-8041-CA934D0C013B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{B79185A7-826B-49FC-B7E0-6EBCB00F5C04}] => (Allow) S:\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [{1CCB83AB-961D-46FA-ACBA-B8F5E46EDCE3}] => (Allow) S:\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [{00F8D2E2-C30D-4E33-91AA-4A37476E3BC7}] => (Allow) S:\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{5B03A827-7A4D-4574-9B92-76C9F69286A3}] => (Allow) S:\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{DBEC3BA2-8198-45D5-8F01-3B3B5C9A5E7B}] => (Allow) S:\Steam\steamapps\common\SpaceEngineers\Bin64\SpaceEngineers.exe
FirewallRules: [{46598057-0AF8-465F-8795-B76F97510FCB}] => (Allow) S:\Steam\steamapps\common\SpaceEngineers\Bin64\SpaceEngineers.exe
FirewallRules: [TCP Query User{64448CC0-FC84-46E0-9298-DCA590C113FF}D:\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [UDP Query User{1FFA0C1B-A453-4B96-BC14-C15B22266840}D:\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [{22B59FB4-0ABE-4E11-9C10-8D6B98E62CB5}] => (Allow) S:\Steam\steamapps\common\FTL Faster Than Light\FTLGame.exe
FirewallRules: [{C1929C4C-541A-4CA4-850B-EB09431769CF}] => (Allow) S:\Steam\steamapps\common\FTL Faster Than Light\FTLGame.exe
FirewallRules: [TCP Query User{61B3A7AA-BBB4-4224-BD91-AA847FA029C9}D:\blizzard\overwatch\overwatch.exe] => (Allow) D:\blizzard\overwatch\overwatch.exe
FirewallRules: [UDP Query User{10E50760-D1D4-4432-9EFC-7A72F4C585CC}D:\blizzard\overwatch\overwatch.exe] => (Allow) D:\blizzard\overwatch\overwatch.exe
FirewallRules: [{2D83A203-C85B-41CE-9AB2-1A0A9B392A97}] => (Allow) S:\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{D9E8DF2B-F14B-4086-988D-BFFA671AEE65}] => (Allow) S:\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{9CA082AD-29C6-4AC7-B182-69C32A30D85D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{99DF4C43-7779-4E2D-B617-C20D834CEE9D}] => (Allow) S:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe
FirewallRules: [{D3125DEE-A347-4AC8-89A6-F1C00FDA1B6B}] => (Allow) S:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe
FirewallRules: [{5A9DE5A0-6879-4A31-A4F2-6EF7DD2806C6}] => (Allow) C:\Users\Razgriz\AppData\Local\vghd\bin\vghd.exe
FirewallRules: [{BF1D9D6D-7F40-48A2-9A25-336C9EE1874C}] => (Allow) C:\Users\Razgriz\AppData\Local\vghd\bin\vghd.exe
FirewallRules: [{661DC3AB-F1BE-455C-98A1-68BE13E5569E}] => (Allow) S:\Steam\steamapps\common\They Are Billions\TheyAreBillions.exe
FirewallRules: [{1214B65D-6636-43C2-B93C-ECDD03EC34E0}] => (Allow) S:\Steam\steamapps\common\They Are Billions\TheyAreBillions.exe
FirewallRules: [TCP Query User{DB28C079-5022-4ACE-9BC5-E2A6C85920A4}D:\star citizen\starcitizen\live\bin64\starcitizen.exe] => (Allow) D:\star citizen\starcitizen\live\bin64\starcitizen.exe
FirewallRules: [UDP Query User{52F81348-F6C3-4C4E-BFD4-869CCAC7B209}D:\star citizen\starcitizen\live\bin64\starcitizen.exe] => (Allow) D:\star citizen\starcitizen\live\bin64\starcitizen.exe
FirewallRules: [{240EF104-2A71-4000-95D1-7DF56CEFFC8D}] => (Allow) S:\Steam\steamapps\common\Factorio\bin\x64\factorio.exe
FirewallRules: [{73406A30-8DD5-47DA-98BB-24591CE1CFA2}] => (Allow) S:\Steam\steamapps\common\Factorio\bin\x64\factorio.exe
FirewallRules: [{67E0191C-C8CF-44DB-B99E-1E4D5701EFB0}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{7DD8FFFE-67B3-40E2-9BD7-A1FEE4365F50}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{53F7959C-9D5B-4A2F-BCAB-75FA9962ED1B}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{04883E12-EF36-4AF9-9265-08E9D9AD1DCB}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{428CDB3F-7A14-43D9-A270-4AD774A4FB0D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{0CC8A311-F68D-4AB9-BAD2-BB383B4DF6D7}] => (Allow) S:\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{43EC525A-5661-48DF-8585-47CAEFC2F6A5}] => (Allow) S:\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{72A7D237-8B1E-47E9-9228-24978567C4E3}] => (Allow) D:\Streamlabs\Streamlabs Chatbot\Streamlabs Chatbot.exe
FirewallRules: [{CE7D3D44-4D08-4C30-BA53-CC22F56D0F72}] => (Allow) D:\Streamlabs\Streamlabs Chatbot\Streamlabs Chatbot.exe
FirewallRules: [{267E50B7-F0D4-4B39-90AC-E9E9735D6231}] => (Allow) D:\Streamlabs\Streamlabs Chatbot\Streamlabs Chatbot.exe
FirewallRules: [{E80CBE84-160E-4D5F-A9EA-9FA762C02BD6}] => (Allow) D:\Streamlabs\Streamlabs Chatbot\Streamlabs Chatbot.exe
FirewallRules: [{877BBB1A-F278-4FE4-AD8E-1567917B48DF}] => (Allow) D:\Streamlabs\Streamlabs Chatbot\Streamlabs Chatbot.exe
FirewallRules: [{9D812373-7339-4A2A-A28A-F9F19E0B1457}] => (Allow) D:\Streamlabs\Streamlabs Chatbot\Streamlabs Chatbot.exe
FirewallRules: [{5FFFC316-9107-45DA-A39F-04EE297E17F5}] => (Allow) S:\Steam\steamapps\common\Prison Architect\Prison Architect64.exe
FirewallRules: [{C06A63BD-54A7-4D08-92E2-ED68A3460402}] => (Allow) S:\Steam\steamapps\common\Prison Architect\Prison Architect64.exe
FirewallRules: [{B814B9C9-C05B-4B8A-B015-493B4C77C9A3}] => (Allow) S:\Steam\steamapps\common\Total War Rome II\launcher\launcher.exe
FirewallRules: [{A241E52B-24AD-4433-825A-DDD900DED958}] => (Allow) S:\Steam\steamapps\common\Total War Rome II\launcher\launcher.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\xchat\xchat.exe] => Enabled:XChat IRC Client

==================== Restore Points =========================

06-04-2018 21:19:59 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
09-04-2018 18:13:53 Python 3.6.5 (32-bit)
12-04-2018 23:42:05 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501

==================== Faulty Device Manager Devices =============

Name: LogMeIn Kernel Information Provider
Description: LogMeIn Kernel Information Provider
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: LMIInfo
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Hook Test Driver
Description: Hook Test Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: SDHookDriver
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Universal Serial Bus (USB) Controller
Description: Universal Serial Bus (USB) Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (04/16/2018 02:04:52 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Streamlabs OBS.exe, version: 0.8.16.0, time stamp: 0x5aac0988
Faulting module name: obs_studio_node.node, version: 0.0.0.0, time stamp: 0x5ab97905
Exception code: 0xc0000005
Fault offset: 0x000000000000ab1f
Faulting process id: 0x2ba8
Faulting application start time: 0x01d3d52a32fca46c
Faulting application path: D:\Streamlabs\Streamlabs OBS\Streamlabs OBS.exe
Faulting module path: \\?\D:\Streamlabs\Streamlabs OBS\resources\app.asar.unpacked\node_modules\obs-studio-node\obs_studio_node.node
Report Id: 74f66766-4144-11e8-afdf-50e549360f88

Error: (04/15/2018 09:22:46 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding   23 7.1.168.192.in-addr.arpa. PTR Razgriz-Monster.local.

Error: (04/15/2018 09:22:46 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.1.7:5353   25 7.1.168.192.in-addr.arpa. PTR Razgriz-Monster-2.local.

Error: (04/15/2018 09:20:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: DSATray.exe, version: 1.2.0.6, time stamp: 0x59c03b06
Faulting module name: KERNELBASE.dll, version: 6.1.7601.18229, time stamp: 0x51fb1116
Exception code: 0xe0434352
Fault offset: 0x0000c41f
Faulting process id: 0xa20
Faulting application start time: 0x01d3d529191ebf41
Faulting application path: C:\Program Files (x86)\Intel Driver and Support Assistant\DSATray.exe
Faulting module path: C:\Windows\syswow64\KERNELBASE.dll
Report Id: c0343f7c-411c-11e8-afdf-50e549360f88

Error: (04/15/2018 09:20:30 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: DSATray.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.Exception
   at DSAUtility.LoggingController.TraceInformation(System.String, System.Nullable`1<System.DateTime>)
   at DSATray.App.OnExit(System.Windows.ExitEventArgs)
   at System.Windows.Application.DoShutdown()
   at System.Windows.Application.ShutdownImpl()
   at System.Windows.Application.ShutdownCallback(System.Object)
   at System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
   at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
   at System.Windows.Threading.DispatcherOperation.InvokeImpl()
   at System.Windows.Threading.DispatcherOperation.InvokeInSecurityContext(System.Object)
   at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
   at MS.Internal.CulturePreservingExecutionContext.Run(MS.Internal.CulturePreservingExecutionContext, System.Threading.ContextCallback, System.Object)
   at System.Windows.Threading.DispatcherOperation.Invoke()
   at System.Windows.Threading.Dispatcher.ProcessQueue()
   at System.Windows.Threading.Dispatcher.WndProcHook(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   at MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   at MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
   at System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
   at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
   at System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
   at MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
   at MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)
   at System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)
   at System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame)
   at System.Windows.Application.RunDispatcher(System.Object)
   at System.Windows.Application.RunInternal(System.Windows.Window)
   at System.Windows.Application.Run(System.Windows.Window)
   at DSATray.App.Main()

Error: (04/14/2018 10:54:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Cities.exe, version: 5.6.4.36806, time stamp: 0x5a0051a1
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x000007fefda03df0
Faulting process id: 0x130ec
Faulting application start time: 0x01d3d46d7ce3df88
Faulting application path: S:\Steam\steamapps\common\Cities_Skylines\Cities.exe
Faulting module path: unknown
Report Id: bb35961c-4060-11e8-9d7d-50e549360f88

Error: (04/14/2018 10:54:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Cities.exe, version: 5.6.4.36806, time stamp: 0x5a0051a1
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x000007fefda03df0
Faulting process id: 0x15088
Faulting application start time: 0x01d3d46d63ea614a
Faulting application path: S:\Steam\steamapps\common\Cities_Skylines\Cities.exe
Faulting module path: unknown
Report Id: a4d7b414-4060-11e8-9d7d-50e549360f88

Error: (04/14/2018 10:17:49 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding   23 7.1.168.192.in-addr.arpa. PTR Razgriz-Monster.local.


System errors:
=============
Error: (04/16/2018 02:18:23 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 40. The internal error state is 252.

Error: (04/16/2018 02:04:41 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 40.

Error: (04/16/2018 02:04:41 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 70.

Error: (04/16/2018 01:18:22 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 40. The internal error state is 252.

Error: (04/16/2018 12:18:21 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 40. The internal error state is 252.

Error: (04/15/2018 11:18:21 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 40. The internal error state is 252.

Error: (04/15/2018 10:18:21 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 40. The internal error state is 252.

Error: (04/15/2018 09:46:21 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 40. The internal error state is 252.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-2300 CPU @ 2.80GHz
Percentage of memory in use: 30%
Total physical RAM: 16367.24 MB
Available physical RAM: 11345 MB
Total Virtual: 32732.67 MB
Available Virtual: 27670.02 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.66 GB) (Free:84.6 GB) NTFS
Drive d: (Gaming) (Fixed) (Total:931.51 GB) (Free:478.99 GB) NTFS
Drive s: (Steam) (Fixed) (Total:1862.95 GB) (Free:900.69 GB) NTFS
Drive x: (15-990-99-3) (CDROM) (Total:2.17 GB) (Free:0 GB) CDFS

\\?\Volume{e9fd415a-bd73-11e0-80ce-806e6f6e6963}\ (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.04 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 454ED0CF)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Protective MBR) (Size: 3726 GB) (Disk ID: 00000000)

Partition: GPT.

========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: C08F93F8)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

gus · Apr 19, 2018

Could I strongly suggest if you are going to fit a new hard drive and then change to a different version of Windows that you do a fresh install, and not copy over oodles of junk?

vGriz · Apr 19, 2018

Yes it would be a fresh install, all I would be grabbing and dragging over is doc and pics. I would find the programs that I have currently and get a fresh download, such as web browsers and other programs.

Thanks for the help everyone, I really do appreciate everyone.

gus · Apr 19, 2018

Suggest then if that's the case you use your malware/av scanner to check your docs and pics before you move them over. That way you are covered.

Good luck with it

I see you use Avast and Malwarebytes, and they are both enabled

. When you reinstall Windows make sure you dont run two security apps at once REGARDLESS of what you read. Sooner or later it will cause issues that can bring the pc to a halt. If you want to have Avast as your realtime protection fine, but only use Malwarebytes as a non realtime second opinion scanner.

vGriz

Rustys

vGriz

Rustys

vGriz

Rustys

vGriz

jmarket

PCHF's Almighty Ruler

vGriz

gus

vGriz

jmarket

PCHF's Almighty Ruler

Evan Omo

Computer Support Technician

vGriz

gus

vGriz

Attachments

vGriz

gus

vGriz

gus

Search

Search

Solved Problems with Graphics Card