Shadoewolf
Posts: 42 +0
ShortcutWithArgument: C:\Users\Quan\Dropbox (Old)\summer 2015 folder\PHM206-MTM 3\Lab\Lab 4 - OA, OP\assigned readings\Calcium Calculator™ _ BC Dairy Association.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --app=hxxp://bcdairy.ca/nutritioneducation/calciumcalculator/
ShortcutWithArgument: C:\Users\Quan\Dropbox (Old)\summer 2015 folder\PHM206-MTM 3\Lab\Lab 3 - diabetes\resources\Basic Meal Planning _ Canadian Diabetes Association.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --app=hxxp://www.diabetes.ca/diabetes-and-you/healthy-living-resources/diet-nutrition/basic-meal-planning
ShortcutWithArgument: C:\Users\Quan\Dropbox (Old)\summer 2015 folder\PHM206-MTM 3\Lab\Lab 3 - diabetes\resources\CDA Clinical Practice Guidelines - Patient Resources.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --app=hxxp://guidelines.diabetes.ca/PatientResources
ShortcutWithArgument: C:\Users\Quan\Dropbox (Old)\summer 2015 folder\PHM206-MTM 3\Lab\Lab 3 - diabetes\resources\Guidelines for Minor Ailment Prescribing - University of Saskatchewan.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --app=hxxp://www.medsask.usask.ca/professional/guidelines/index.php
ShortcutWithArgument: C:\Users\Quan\Dropbox (Old)\summer 2015 folder\PHM204\Lectures\Canadian Stroke Best Practice Recommendations.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --app=hxxp://www.strokebestpractices.ca/
ShortcutWithArgument: C:\Users\Quan\Dropbox (Old)\summer 2015 folder\PHM203\Workshops\Workshop 1 - meningitis\literature\CARA_ Canadian Antimicrobial Resistance Alliance.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --app=hxxp://www.can-r.com/study.php?study=antb2013
ShortcutWithArgument: C:\Users\Quan\Dropbox (Old)\2016-Year 2-Second Semester\previous year\PHM204\Lectures\Canadian Stroke Best Practice Recommendations.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --app=hxxp://www.strokebestpractices.ca/
ShortcutWithArgument: C:\Users\Quan\Dropbox (Old)\2016-Year 2-Second Semester\previous year\PHM203\Workshops\Workshop 1 - meningitis\literature\CARA_ Canadian Antimicrobial Resistance Alliance.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --app=hxxp://www.can-r.com/study.php?study=antb2013
ShortcutWithArgument: C:\Users\Quan\Dropbox (Old)\2016-Year 2-Second Semester\PHM206-MTM 3\labs\lab 3-OA-OP-pain\previous ones\assigned readings\Calcium Calculator™ _ BC Dairy Association.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --app=hxxp://bcdairy.ca/nutritioneducation/calciumcalculator/
ShortcutWithArgument: C:\Users\Quan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Mobility Print.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 2" --app-id=alhngdkjgnedakdlnamimgfihgkmenbh
ShortcutWithArgument: C:\Users\Quan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sumo Paint.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 2" --app-id=mlfedaecajcncfkjfllofcfcjfhiopim
ShortcutWithArgument: C:\Users\Quan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\9501e18d7c2ab92e\WOLFY1000 - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 2"
ShortcutWithArgument: C:\Users\Quan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\1ebd56dad7f13a36\Skype.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=lifbcibllhkdhoafpjfnlhfpfgnpldfl
==================== Loaded Modules (Whitelisted) ==============
2015-07-10 04:24 - 2015-07-10 04:24 - 000022528 _____ () C:\WINDOWS\SYSTEM32\efsext.dll
2015-09-09 23:57 - 2015-09-09 23:57 - 000025088 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-07-10 04:25 - 2015-07-10 04:25 - 000007680 _____ () C:\Windows\System32\WppRecorderUM.dll
2016-11-11 10:21 - 2016-10-25 02:17 - 000301056 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2014-04-11 22:15 - 2017-01-17 02:17 - 000090304 _____ () C:\Program Files\Microsoft Office 15\ClientX86\ApiClient.dll
2018-07-20 10:24 - 2018-07-20 10:24 - 000025704 _____ () C:\Program Files\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
2018-07-20 10:24 - 2018-07-20 10:24 - 000017512 _____ () C:\Program Files\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.Service.Logger.dll
2018-07-20 10:24 - 2018-07-20 10:24 - 000037480 _____ () C:\Program Files\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WcfService.dll
2018-06-24 17:16 - 2018-07-10 09:40 - 002169040 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2015-01-04 14:41 - 2009-02-27 17:38 - 000139264 ____R () C:\Program Files\Brother\BrUtilities\BrLogAPI.dll
2016-12-31 16:37 - 2016-11-19 04:52 - 001766496 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2013-08-26 14:53 - 2013-08-26 14:53 - 000056320 _____ () C:\Program Files\ASUS\ASUS Reading Mode\ReadingModeWatchDogx86.exe
2013-08-26 14:53 - 2013-08-26 14:53 - 000394752 _____ () C:\Program Files\ASUS\ASUS Reading Mode\CCTReaderMode.dll
2013-08-26 14:53 - 2013-08-26 14:53 - 000113152 _____ () C:\Program Files\ASUS\ASUS Reading Mode\AppVisibilityNotifyLib_x86.dll
2018-07-20 10:24 - 2018-07-20 10:24 - 000118888 _____ () C:\Program Files\Lavasoft\Web Companion\Application\Lavasoft.AppCore.dll
2018-07-20 10:24 - 2018-07-20 10:24 - 000104040 _____ () C:\Program Files\Lavasoft\Web Companion\Application\Lavasoft.Utils.dll
2018-07-20 10:24 - 2018-07-20 10:24 - 000362088 _____ () C:\Program Files\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.Business.dll
2018-07-20 10:24 - 2018-07-20 10:24 - 000058984 _____ () C:\Program Files\Lavasoft\Web Companion\Application\Lavasoft.adblocker.dll
2018-07-10 17:59 - 2018-07-10 13:46 - 000047104 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\_socket.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000085504 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\_ctypes.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000053760 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\_bz2.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 001331200 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\_ssl.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000182272 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\_decimal.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000758784 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\unicodedata.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000096768 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\win32api.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000104960 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\pywintypes34.dll
2018-07-10 17:59 - 2018-07-10 13:46 - 000133120 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\pyexpat.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000009728 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\select.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000035840 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\win32process.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000254976 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\zmq\libzmq.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000036864 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\zmq\backend\cython\constants.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000013824 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\zmq\backend\cython\error.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000043520 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\zmq\backend\cython\message.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000031232 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\zmq\backend\cython\context.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000070656 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\zmq\backend\cython\socket.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000022528 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\zmq\backend\cython\utils.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000029184 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\zmq\backend\cython\_poll.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000011264 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\zmq\backend\cython\_version.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000024064 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\zmq\backend\cython\_device.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000029184 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\zmq\devices\monitoredqueue.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 001847296 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\PySide\QtCore.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000115712 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\PySide\shiboken-python3.4.dll
2018-07-10 17:59 - 2018-07-10 13:46 - 000113152 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\PySide\pyside-python3.4.dll
2018-07-10 17:59 - 2018-07-10 13:46 - 006935040 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\PySide\QtGui.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000033792 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\modules\apps\contenttools\inflate.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000009728 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\modules\apps\contenttools\atomic.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000039424 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\modules\apps\contenttools\rollinghash.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000166912 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\win32gui.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000010752 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\Crypto\Random\OSRNG\winrandom.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000009728 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\Crypto\Util\_counter.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000029696 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\Crypto\Cipher\_AES.pyd
2018-07-10 17:59 - 2018-07-05 21:10 - 000034304 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\win32_lib.dll
2018-03-28 08:44 - 2018-03-28 08:44 - 000325824 _____ () C:\Program Files\Microsoft Office 15\root\office15\AppVIsvStream32.dll
2018-07-10 17:59 - 2018-07-10 13:47 - 001702400 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\nexon_client\ffmpeg.dll
2018-07-10 17:59 - 2018-07-10 13:47 - 000159232 _____ () \\?\C:\Program Files\Nexon\Nexon Launcher\bin\front_end\node_modules\zmq\build\Release\zmq.node
2018-07-10 17:59 - 2018-07-10 13:47 - 002517504 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\nexon_client\libglesv2.dll
2018-07-10 17:59 - 2018-07-10 13:47 - 000015872 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\nexon_client\libegl.dll
2018-06-26 16:17 - 2018-06-22 15:04 - 003867480 _____ () C:\Program Files\Google\Chrome\Application\67.0.3396.99\libglesv2.dll
2018-06-26 16:17 - 2018-06-22 15:04 - 000085848 _____ () C:\Program Files\Google\Chrome\Application\67.0.3396.99\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaiospi.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
IE trusted site: HKU\S-1-5-21-48903865-4041566842-226505006-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-48903865-4041566842-226505006-1001\...\webcompanion.com -> hxxp://webcompanion.com
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 02:13 - 2018-02-05 09:14 - 000000883 _____ C:\WINDOWS\system32\Drivers\etc\hosts
0.0.0.1 mssplus.mcafee.com
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-48903865-4041566842-226505006-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Quan\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img1.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
HKLM\...\StartupApproved\Run: => "ASUSPRP"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{220A3A1F-A30E-400B-B444-93CBE0F617D4}] => (Allow) LPort=54925
FirewallRules: [UDP Query User{44A1B72B-F029-447A-A3A3-3CC4F6FE2DE5}C:\program files\common files\microsoft shared\ink\tabtip.exe] => (Block) C:\program files\common files\microsoft shared\ink\tabtip.exe
FirewallRules: [TCP Query User{D834CBDE-5F3E-4B9C-B404-472C04A53D42}C:\program files\common files\microsoft shared\ink\tabtip.exe] => (Block) C:\program files\common files\microsoft shared\ink\tabtip.exe
FirewallRules: [{BC17C317-622F-4FBE-A1F4-B30B0C3C0761}] => (Allow) C:\Users\Quan\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [TCP Query User{F04CE79C-D6D0-4D1F-A193-38C86D0C3E52}C:\users\quan\appdata\local\skypeplugin\pluginhost.exe] => (Allow) C:\users\quan\appdata\local\skypeplugin\pluginhost.exe
FirewallRules: [UDP Query User{C01DFBDE-97BB-4F21-88BA-0CFE3BB32D52}C:\users\quan\appdata\local\skypeplugin\pluginhost.exe] => (Allow) C:\users\quan\appdata\local\skypeplugin\pluginhost.exe
FirewallRules: [TCP Query User{16D8F28E-9DDF-4431-A8D3-DE40ED7E89D7}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe
FirewallRules: [UDP Query User{D7E0C4AA-6476-4EDE-BD92-BF601E75C22C}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe
FirewallRules: [TCP Query User{2914E633-6DC3-4079-9727-B0F72A694100}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe
FirewallRules: [UDP Query User{D4A283F8-8389-4C39-9FE6-7394C3AA51D8}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe
FirewallRules: [{879AC395-DD4D-4E56-B7AC-37AF5C8BA32F}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [{FDB2053A-4DC8-4B4B-A37B-92CC2ED9EA42}] => (Allow) C:\Users\Quan\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{88397693-2331-48EC-A6C9-9365D0E95E95}] => (Allow) C:\Users\Quan\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{73F4F95E-3AED-4D27-9735-A38838F5F4C2}] => (Allow) C:\Users\Quan\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{CE5E3A53-4A15-436E-93C4-F916A462B266}] => (Allow) C:\Users\Quan\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{3AA323F2-7079-45B7-A62E-875AE38E3DFB}] => (Allow) C:\Users\Quan\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{762EBE2B-9C15-4ABC-B9C2-755D7915949E}] => (Allow) C:\Users\Quan\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{71008269-8E71-4794-AF4A-05B0C6BAB563}] => (Allow) C:\WINDOWS\system32\msiexec.exe
FirewallRules: [{8FBBDBBC-2B20-43D8-A403-B631F1A1C256}] => (Allow) C:\Users\Quan\MiiniNBAeH.exe
FirewallRules: [{B5C3B04A-6065-466B-8FDB-9DD6F429FA92}] => (Allow) C:\Users\Quan\AppData\Roaming\zbEIkooQJeZ.exe
==================== Restore Points =========================
ATTENTION: System Restore is disabled
ShortcutWithArgument: C:\Users\Quan\Dropbox (Old)\summer 2015 folder\PHM206-MTM 3\Lab\Lab 3 - diabetes\resources\Basic Meal Planning _ Canadian Diabetes Association.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --app=hxxp://www.diabetes.ca/diabetes-and-you/healthy-living-resources/diet-nutrition/basic-meal-planning
ShortcutWithArgument: C:\Users\Quan\Dropbox (Old)\summer 2015 folder\PHM206-MTM 3\Lab\Lab 3 - diabetes\resources\CDA Clinical Practice Guidelines - Patient Resources.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --app=hxxp://guidelines.diabetes.ca/PatientResources
ShortcutWithArgument: C:\Users\Quan\Dropbox (Old)\summer 2015 folder\PHM206-MTM 3\Lab\Lab 3 - diabetes\resources\Guidelines for Minor Ailment Prescribing - University of Saskatchewan.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --app=hxxp://www.medsask.usask.ca/professional/guidelines/index.php
ShortcutWithArgument: C:\Users\Quan\Dropbox (Old)\summer 2015 folder\PHM204\Lectures\Canadian Stroke Best Practice Recommendations.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --app=hxxp://www.strokebestpractices.ca/
ShortcutWithArgument: C:\Users\Quan\Dropbox (Old)\summer 2015 folder\PHM203\Workshops\Workshop 1 - meningitis\literature\CARA_ Canadian Antimicrobial Resistance Alliance.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --app=hxxp://www.can-r.com/study.php?study=antb2013
ShortcutWithArgument: C:\Users\Quan\Dropbox (Old)\2016-Year 2-Second Semester\previous year\PHM204\Lectures\Canadian Stroke Best Practice Recommendations.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --app=hxxp://www.strokebestpractices.ca/
ShortcutWithArgument: C:\Users\Quan\Dropbox (Old)\2016-Year 2-Second Semester\previous year\PHM203\Workshops\Workshop 1 - meningitis\literature\CARA_ Canadian Antimicrobial Resistance Alliance.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --app=hxxp://www.can-r.com/study.php?study=antb2013
ShortcutWithArgument: C:\Users\Quan\Dropbox (Old)\2016-Year 2-Second Semester\PHM206-MTM 3\labs\lab 3-OA-OP-pain\previous ones\assigned readings\Calcium Calculator™ _ BC Dairy Association.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --app=hxxp://bcdairy.ca/nutritioneducation/calciumcalculator/
ShortcutWithArgument: C:\Users\Quan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Mobility Print.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 2" --app-id=alhngdkjgnedakdlnamimgfihgkmenbh
ShortcutWithArgument: C:\Users\Quan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sumo Paint.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 2" --app-id=mlfedaecajcncfkjfllofcfcjfhiopim
ShortcutWithArgument: C:\Users\Quan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\9501e18d7c2ab92e\WOLFY1000 - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 2"
ShortcutWithArgument: C:\Users\Quan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\1ebd56dad7f13a36\Skype.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=lifbcibllhkdhoafpjfnlhfpfgnpldfl
==================== Loaded Modules (Whitelisted) ==============
2015-07-10 04:24 - 2015-07-10 04:24 - 000022528 _____ () C:\WINDOWS\SYSTEM32\efsext.dll
2015-09-09 23:57 - 2015-09-09 23:57 - 000025088 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-07-10 04:25 - 2015-07-10 04:25 - 000007680 _____ () C:\Windows\System32\WppRecorderUM.dll
2016-11-11 10:21 - 2016-10-25 02:17 - 000301056 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2014-04-11 22:15 - 2017-01-17 02:17 - 000090304 _____ () C:\Program Files\Microsoft Office 15\ClientX86\ApiClient.dll
2018-07-20 10:24 - 2018-07-20 10:24 - 000025704 _____ () C:\Program Files\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
2018-07-20 10:24 - 2018-07-20 10:24 - 000017512 _____ () C:\Program Files\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.Service.Logger.dll
2018-07-20 10:24 - 2018-07-20 10:24 - 000037480 _____ () C:\Program Files\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WcfService.dll
2018-06-24 17:16 - 2018-07-10 09:40 - 002169040 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2015-01-04 14:41 - 2009-02-27 17:38 - 000139264 ____R () C:\Program Files\Brother\BrUtilities\BrLogAPI.dll
2016-12-31 16:37 - 2016-11-19 04:52 - 001766496 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2013-08-26 14:53 - 2013-08-26 14:53 - 000056320 _____ () C:\Program Files\ASUS\ASUS Reading Mode\ReadingModeWatchDogx86.exe
2013-08-26 14:53 - 2013-08-26 14:53 - 000394752 _____ () C:\Program Files\ASUS\ASUS Reading Mode\CCTReaderMode.dll
2013-08-26 14:53 - 2013-08-26 14:53 - 000113152 _____ () C:\Program Files\ASUS\ASUS Reading Mode\AppVisibilityNotifyLib_x86.dll
2018-07-20 10:24 - 2018-07-20 10:24 - 000118888 _____ () C:\Program Files\Lavasoft\Web Companion\Application\Lavasoft.AppCore.dll
2018-07-20 10:24 - 2018-07-20 10:24 - 000104040 _____ () C:\Program Files\Lavasoft\Web Companion\Application\Lavasoft.Utils.dll
2018-07-20 10:24 - 2018-07-20 10:24 - 000362088 _____ () C:\Program Files\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.Business.dll
2018-07-20 10:24 - 2018-07-20 10:24 - 000058984 _____ () C:\Program Files\Lavasoft\Web Companion\Application\Lavasoft.adblocker.dll
2018-07-10 17:59 - 2018-07-10 13:46 - 000047104 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\_socket.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000085504 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\_ctypes.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000053760 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\_bz2.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 001331200 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\_ssl.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000182272 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\_decimal.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000758784 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\unicodedata.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000096768 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\win32api.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000104960 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\pywintypes34.dll
2018-07-10 17:59 - 2018-07-10 13:46 - 000133120 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\pyexpat.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000009728 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\select.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000035840 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\win32process.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000254976 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\zmq\libzmq.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000036864 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\zmq\backend\cython\constants.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000013824 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\zmq\backend\cython\error.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000043520 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\zmq\backend\cython\message.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000031232 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\zmq\backend\cython\context.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000070656 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\zmq\backend\cython\socket.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000022528 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\zmq\backend\cython\utils.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000029184 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\zmq\backend\cython\_poll.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000011264 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\zmq\backend\cython\_version.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000024064 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\zmq\backend\cython\_device.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000029184 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\zmq\devices\monitoredqueue.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 001847296 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\PySide\QtCore.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000115712 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\PySide\shiboken-python3.4.dll
2018-07-10 17:59 - 2018-07-10 13:46 - 000113152 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\PySide\pyside-python3.4.dll
2018-07-10 17:59 - 2018-07-10 13:46 - 006935040 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\PySide\QtGui.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000033792 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\modules\apps\contenttools\inflate.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000009728 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\modules\apps\contenttools\atomic.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000039424 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\modules\apps\contenttools\rollinghash.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000166912 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\win32gui.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000010752 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\Crypto\Random\OSRNG\winrandom.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000009728 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\Crypto\Util\_counter.pyd
2018-07-10 17:59 - 2018-07-10 13:46 - 000029696 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\lib\Crypto\Cipher\_AES.pyd
2018-07-10 17:59 - 2018-07-05 21:10 - 000034304 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\win32_lib.dll
2018-03-28 08:44 - 2018-03-28 08:44 - 000325824 _____ () C:\Program Files\Microsoft Office 15\root\office15\AppVIsvStream32.dll
2018-07-10 17:59 - 2018-07-10 13:47 - 001702400 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\nexon_client\ffmpeg.dll
2018-07-10 17:59 - 2018-07-10 13:47 - 000159232 _____ () \\?\C:\Program Files\Nexon\Nexon Launcher\bin\front_end\node_modules\zmq\build\Release\zmq.node
2018-07-10 17:59 - 2018-07-10 13:47 - 002517504 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\nexon_client\libglesv2.dll
2018-07-10 17:59 - 2018-07-10 13:47 - 000015872 _____ () C:\Program Files\Nexon\Nexon Launcher\bin\nexon_client\libegl.dll
2018-06-26 16:17 - 2018-06-22 15:04 - 003867480 _____ () C:\Program Files\Google\Chrome\Application\67.0.3396.99\libglesv2.dll
2018-06-26 16:17 - 2018-06-22 15:04 - 000085848 _____ () C:\Program Files\Google\Chrome\Application\67.0.3396.99\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaiospi.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
IE trusted site: HKU\S-1-5-21-48903865-4041566842-226505006-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-48903865-4041566842-226505006-1001\...\webcompanion.com -> hxxp://webcompanion.com
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 02:13 - 2018-02-05 09:14 - 000000883 _____ C:\WINDOWS\system32\Drivers\etc\hosts
0.0.0.1 mssplus.mcafee.com
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-48903865-4041566842-226505006-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Quan\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img1.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
HKLM\...\StartupApproved\Run: => "ASUSPRP"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{220A3A1F-A30E-400B-B444-93CBE0F617D4}] => (Allow) LPort=54925
FirewallRules: [UDP Query User{44A1B72B-F029-447A-A3A3-3CC4F6FE2DE5}C:\program files\common files\microsoft shared\ink\tabtip.exe] => (Block) C:\program files\common files\microsoft shared\ink\tabtip.exe
FirewallRules: [TCP Query User{D834CBDE-5F3E-4B9C-B404-472C04A53D42}C:\program files\common files\microsoft shared\ink\tabtip.exe] => (Block) C:\program files\common files\microsoft shared\ink\tabtip.exe
FirewallRules: [{BC17C317-622F-4FBE-A1F4-B30B0C3C0761}] => (Allow) C:\Users\Quan\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [TCP Query User{F04CE79C-D6D0-4D1F-A193-38C86D0C3E52}C:\users\quan\appdata\local\skypeplugin\pluginhost.exe] => (Allow) C:\users\quan\appdata\local\skypeplugin\pluginhost.exe
FirewallRules: [UDP Query User{C01DFBDE-97BB-4F21-88BA-0CFE3BB32D52}C:\users\quan\appdata\local\skypeplugin\pluginhost.exe] => (Allow) C:\users\quan\appdata\local\skypeplugin\pluginhost.exe
FirewallRules: [TCP Query User{16D8F28E-9DDF-4431-A8D3-DE40ED7E89D7}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe
FirewallRules: [UDP Query User{D7E0C4AA-6476-4EDE-BD92-BF601E75C22C}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe
FirewallRules: [TCP Query User{2914E633-6DC3-4079-9727-B0F72A694100}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe
FirewallRules: [UDP Query User{D4A283F8-8389-4C39-9FE6-7394C3AA51D8}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe
FirewallRules: [{879AC395-DD4D-4E56-B7AC-37AF5C8BA32F}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [{FDB2053A-4DC8-4B4B-A37B-92CC2ED9EA42}] => (Allow) C:\Users\Quan\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{88397693-2331-48EC-A6C9-9365D0E95E95}] => (Allow) C:\Users\Quan\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{73F4F95E-3AED-4D27-9735-A38838F5F4C2}] => (Allow) C:\Users\Quan\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{CE5E3A53-4A15-436E-93C4-F916A462B266}] => (Allow) C:\Users\Quan\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{3AA323F2-7079-45B7-A62E-875AE38E3DFB}] => (Allow) C:\Users\Quan\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{762EBE2B-9C15-4ABC-B9C2-755D7915949E}] => (Allow) C:\Users\Quan\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{71008269-8E71-4794-AF4A-05B0C6BAB563}] => (Allow) C:\WINDOWS\system32\msiexec.exe
FirewallRules: [{8FBBDBBC-2B20-43D8-A403-B631F1A1C256}] => (Allow) C:\Users\Quan\MiiniNBAeH.exe
FirewallRules: [{B5C3B04A-6065-466B-8FDB-9DD6F429FA92}] => (Allow) C:\Users\Quan\AppData\Roaming\zbEIkooQJeZ.exe
==================== Restore Points =========================
ATTENTION: System Restore is disabled