TechSpot

I think I have a Virus and I am a PC Scrub

By Lukaas Hendrix
Sep 6, 2015
  1. So Ive noticed a huge slowdown of basic computer functions in the last week and decided to run a full scan on Malwarebytes Anti-Malware. Everytime I do so has resulted in the program locking up. Sometimes it takes a few hours to stop working and sometimes a whole day, but I have yet to get a successful scan. I need help, Ive no idea what to do.
     
  2. Lukaas Hendrix

    Lukaas Hendrix TS Rookie Topic Starter Posts: 27

    Farbar:

    Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:06-09-2015 01
    Ran by Lukaas (administrator) on DEATHSTAR (06-09-2015 22:18:37)
    Running from C:\Users\Lukaas\Downloads
    Loaded Profiles: Lukaas (Available Profiles: Lukaas)
    Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: English (United States)
    Internet Explorer Version 11 (Default browser: IE)
    Boot Mode: Normal
    Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

    ==================== Processes (Whitelisted) =================

    (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

    (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
    (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    (Hewlett-Packard Company) C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
    (Hewlett-Packard ) C:\Program Files\IDT\WDM\beats64.exe
    (Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
    (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
    (LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
    (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
    (Flux Software LLC) C:\Users\Lukaas\AppData\Local\FluxSoftware\Flux\flux.exe
    (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
    () C:\Windows\System32\PnkBstrA.exe
    (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
    (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
    (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
    (Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
    (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
    (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
    (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\ccSvcHst.exe
    (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\ccSvcHst.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Microsoft Corporation) C:\Windows\System32\taskmgr.exe
    (Apple Inc.) C:\Program Files\iTunes\iTunes.exe
    (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe
    (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
    (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    () C:\Users\Lukaas\Downloads\bjcejsqc.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (AVAST Software) C:\Users\Lukaas\Downloads\avast_free_antivirus_setup.exe
    (AVAST Software) C:\Users\Lukaas\AppData\Local\Temp\_av_iup.tm~a06680\instup.exe
    (Microsoft Corporation) C:\Windows\System32\dllhost.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Microsoft Corporation) C:\Windows\System32\dllhost.exe


    ==================== Registry (Whitelisted) ===========================

    (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

    HKLM\...\Run: [BeatsOSDApp] => C:\Program Files\IDT\WDM\beats64.exe [37888 2011-12-23] (Hewlett-Packard )
    HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1337000 2015-04-30] (Microsoft Corporation)
    HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-08-13] (Apple Inc.)
    HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
    HKLM-x32\...\Run: [] => [X]
    HKLM-x32\...\Run: [doubleTwist] => C:\Program Files (x86)\doubleTwist\doubleTwist.Light.exe [144384 2014-05-15] (doubleTwist Corporation)
    HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-06-17] (Apple Inc.)
    HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5579624 2015-08-03] (LogMeIn Inc.)
    HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\Run: [uTorrent] => C:\Users\Lukaas\AppData\Roaming\uTorrent\uTorrent.exe [1696096 2015-08-27] (BitTorrent Inc.)
    HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\Run: [Google Update] => C:\Users\Lukaas\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc.)
    HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\Run: [HP ENVY 4500 series (NET)] => C:\Program Files\hp\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe [3487240 2014-07-21] (Hewlett-Packard Development Company, LP)
    HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\Run: [Spotify Web Helper] => C:\Users\Lukaas\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2008632 2015-08-12] (Spotify Ltd)
    HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\Run: [GoogleChromeAutoLaunch_95D8372D147F8CB08F6EF5983D2A500B] => C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe [815944 2015-08-27] (Google Inc.)
    HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\Run: [Spotify] => C:\Users\Lukaas\AppData\Roaming\Spotify\Spotify.exe [7334968 2015-08-12] (Spotify Ltd)
    HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\Run: [f.lux] => C:\Users\Lukaas\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-23] (Flux Software LLC)
    HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\Run: [Dropbox Update] => C:\Users\Lukaas\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-29] (Dropbox, Inc.)
    HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\Overwolf.exe [41200 2015-08-19] (Overwolf LTD)
    ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
    Startup: C:\Users\Lukaas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Curse.lnk [2015-06-21]
    ShortcutTarget: Curse.lnk -> C:\Users\Lukaas\AppData\Roaming\Curse Client\Bin\Curse.exe (Curse, Inc)
    Startup: C:\Users\Lukaas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2014-11-05]
    ShortcutTarget: Dropbox.lnk -> C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

    ==================== Internet (Whitelisted) ====================

    (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

    Tcpip\..\Interfaces\{13C6AD6C-7D45-4B5A-A77F-EFA731EFA678}: [DhcpNameServer] 10.77.0.254
    Tcpip\..\Interfaces\{3414FBA0-54B7-4F69-AC9E-8526BA7C45E4}: [DhcpNameServer] 75.75.76.76 75.75.75.75
    Tcpip\..\Interfaces\{BBA15C07-7C0D-4D5E-9D8E-EA8528E8D708}: [DhcpNameServer] 75.75.76.76 75.75.75.75

    Internet Explorer:
    ==================
    HKU\S-1-5-21-2797903042-380184562-4160340280-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.msn.com/HPDSK/1
    HKU\S-1-5-21-2797903042-380184562-4160340280-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.msn.com/HPDSK/1
    SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPDTDF&pc=HPDTDF&src=IE-SearchBox
    SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPDTDF&pc=HPDTDF&src=IE-SearchBox
    SearchScopes: HKLM -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF
    SearchScopes: HKLM -> {CAB93E0E-0607-4BC5-ADF7-0D97392EF12B} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us1-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
    SearchScopes: HKLM -> {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = hxxp://en.wikipedia.org/wiki/Special:Search?search={searchTerms}
    SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPDTDF&pc=HPDTDF&src=IE-SearchBox
    SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPDTDF&pc=HPDTDF&src=IE-SearchBox
    SearchScopes: HKLM-x32 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF
    SearchScopes: HKLM-x32 -> {CAB93E0E-0607-4BC5-ADF7-0D97392EF12B} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us1-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
    SearchScopes: HKLM-x32 -> {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = hxxp://en.wikipedia.org/wiki/Special:Search?search={searchTerms}
    SearchScopes: HKU\S-1-5-21-2797903042-380184562-4160340280-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPDTDF&pc=HPDTDF&src=IE-SearchBox
    SearchScopes: HKU\S-1-5-21-2797903042-380184562-4160340280-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPDTDF&pc=HPDTDF&src=IE-SearchBox
    SearchScopes: HKU\S-1-5-21-2797903042-380184562-4160340280-1001 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF
    SearchScopes: HKU\S-1-5-21-2797903042-380184562-4160340280-1001 -> {CAB93E0E-0607-4BC5-ADF7-0D97392EF12B} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us1-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
    SearchScopes: HKU\S-1-5-21-2797903042-380184562-4160340280-1001 -> {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = hxxp://en.wikipedia.org/wiki/Special:Search?search={searchTerms}
    BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_40\bin\ssv.dll [2015-03-04] (Oracle Corporation)
    BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
    BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-04] (Oracle Corporation)
    BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
    BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\coIEPlg.dll [2011-08-11] (Symantec Corporation)
    BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\IPS\IPSBHO.DLL [2011-07-25] (Symantec Corporation)
    BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-04] (Oracle Corporation)
    BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
    BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-04] (Oracle Corporation)
    BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
    Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\coIEPlg.dll [2011-08-11] (Symantec Corporation)
    Toolbar: HKU\S-1-5-21-2797903042-380184562-4160340280-1001 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
    Handler-x32: jpip - {B92DD248-E3D5-4A92-B311-C9B841681455} - C:\Program Files (x86)\LizardTech\ExpressView\expressview.dll [2011-10-14] (LizardTech)
    Handler-x32: sidlet - {B92DD248-E3D5-4A92-B311-C9B841681455} - C:\Program Files (x86)\LizardTech\ExpressView\expressview.dll [2011-10-14] (LizardTech)

    FireFox:
    ========
    FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_188.dll [2015-05-13] ()
    FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2015-01-13] (EA Digital Illusions CE AB)
    FF Plugin: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-04] (Oracle Corporation)
    FF Plugin: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-04] (Oracle Corporation)
    FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
    FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
    FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_188.dll [2015-05-13] ()
    FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll [2013-04-03] (Adobe Systems, Inc.)
    FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-07-30] ()
    FF Plugin-x32: @esn/npbattlelog,version=2.3.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll [No File]
    FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2015-01-13] (EA Digital Illusions CE AB)
    FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
    FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-04] (Oracle Corporation)
    FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-04] (Oracle Corporation)
    FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
    FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
    FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
    FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
    FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
    FF Plugin-x32: @raidcall.en/RCplugin -> C:\Users\Lukaas\AppData\Roaming\raidcall\plugins\nprcplugin.dll [2013-03-30] (Raidcall)
    FF Plugin-x32: @raidcall.kr/RCplugin -> C:\Users\Lukaas\AppData\Roaming\RCKR\plugins\nprcplugin.dll [2012-08-09] (Raidcall)
    FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-28] (Google Inc.)
    FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-28] (Google Inc.)
    FF Plugin-x32: @videolan.org/vlc,version=2.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2012-10-15] (VideoLAN)
    FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2010-12-07] ()
    FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
    FF Plugin HKU\S-1-5-21-2797903042-380184562-4160340280-1001: @talk.google.com/GoogleTalkPlugin -> C:\Users\Lukaas\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
    FF Plugin HKU\S-1-5-21-2797903042-380184562-4160340280-1001: @talk.google.com/O1DPlugin -> C:\Users\Lukaas\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-04-17] (Google)
    FF Plugin HKU\S-1-5-21-2797903042-380184562-4160340280-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Lukaas\AppData\Local\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-28] (Google Inc.)
    FF Plugin HKU\S-1-5-21-2797903042-380184562-4160340280-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Lukaas\AppData\Local\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-28] (Google Inc.)
    FF Plugin HKU\S-1-5-21-2797903042-380184562-4160340280-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Lukaas\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-01-26] (Unity Technologies ApS)
    FF Plugin HKU\S-1-5-21-2797903042-380184562-4160340280-1001: thehappycloud.com/HappyCloudPlugin -> C:\ProgramData\HappyCloud\Application\npHappyCloudPlugin.dll [2013-01-08] (The Happy Cloud)
    FF Plugin HKU\S-1-5-21-2797903042-380184562-4160340280-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2014-07-03] ()
    FF Plugin ProgramFiles/Appdata: C:\Users\Lukaas\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
    FF Plugin ProgramFiles/Appdata: C:\Users\Lukaas\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-04-17] (Google)
    FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\coFFPlgn
    FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\coFFPlgn [2015-09-06]
    FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\IPSFFPlgn
    FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\IPSFFPlgn [2012-09-27]

    Chrome:
    =======
    CHR StartupUrls: Default -> "https://www.facebook.com/","hxxp://www.reddit.com/","hxxp://www.youtube.com/","hxxp://www.yahoo.com/","https://twitter.com/"
    CHR DefaultSearchKeyword: Default -> d
    CHR Plugin: (Docs Offline Background Page) - C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\22.0.1229.79\PepperFlash\pepflashplayer.dll No File
    CHR Plugin: (Flash) - internal-remoting-viewer
    CHR Plugin: (Chrome Remote Desktop Viewer) - C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\45.0.2454.85\ppGoogleNaClPluginChrome.dll No File
    CHR Plugin: (Native Client) - C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\45.0.2454.85\pdf.dll No File
    CHR Plugin: (Chrome PDF Viewer) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2012.1.0.30_0\npcoplgn.dll No File
    CHR Plugin: (Norton Confidential) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
    CHR Plugin: (Windows Live™ Photo Gallery) - C:\Users\Lukaas\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
    CHR Plugin: (Google Update) - c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll No File
    CHR Profile: C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default
    CHR Extension: (Magic Actions for YouTube™) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2015-04-16]
    CHR Extension: (BIODIGITAL HUMAN) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\agoenciogemlojlhccbcpcfflicgnaak [2013-03-08]
    CHR Extension: (Duolingo on the Web) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiahmijlpehemcpleichkcokhegllfjl [2013-05-17]
    CHR Extension: (Google Drive) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-14]
    CHR Extension: (Flight) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bijifgbfkfcalmnndkdaoefpdbkpolij [2013-03-08]
    CHR Extension: (Ancient Map) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjcjaemihddenoopkkhaamlcoliiiain [2013-07-28]
    CHR Extension: (YouTube) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-09-27]
    CHR Extension: (DuckDuckGo for Chrome) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpphkkgodbfncbcpgopijlfakfgmclao [2013-03-20]
    CHR Extension: (uBlock Origin) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2015-05-17]
    CHR Extension: (Classic Games) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckmoikambnjgjnhaefiklkblfjoolnaf [2013-03-08]
    CHR Extension: (Google Search) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-09-27]
    CHR Extension: (Tabs Outliner) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\eggkanocgddhmamlbiijnphhppkpkmkl [2014-02-05]
    CHR Extension: (Wikiwand: Wikipedia Modernized) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\emffkefkbkpkgpdeeooapgaicgmcbolj [2015-05-17]
    CHR Extension: (Google Docs Offline) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-02]
    CHR Extension: (Reddit Enhancement Suite) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb [2013-04-12]
    CHR Extension: (Little Alchemy) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\knkapnclbofjjgicpkfoagdjohlfjhpd [2013-03-08]
    CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-12]
    CHR Extension: (Norton Security Toolbar) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [2012-09-27]
    CHR Extension: (Chrome Web Store Payments) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-30]
    CHR Extension: (Launch Readlang Web Reader) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\odpdkefpnfejbfnmdilmfhephfffmfoh [2015-06-05]
    CHR Extension: (Bastion) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\oohphhdkahjlioohbalmicpokoefkgid [2013-03-08]
    CHR Extension: (4chan Plus) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pinelipedelckihohgdlpcclgocodhjj [2013-05-23]
    CHR Extension: (Gmail) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-09-27]
    CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\Extensions\Chrome.crx [2012-03-05]
    StartMenuInternet: Google Chrome.R3LKV2NYYHG6TM2ZLHJ5J5C4HU - C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe

    ==================== Services (Whitelisted) ========================

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

    R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-05-29] (Apple Inc.)
    S4 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [914200 2013-06-04] (BitRaider, LLC)
    S4 CalendarSynchService; C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Calendar\Service\GCalService.exe [16384 2011-08-16] (Hewlett-Packard) [File not signed]
    S4 CLKMSVC10_38F51D56; c:\Program Files (x86)\Cyberlink\PowerDVD10\NavFilter\kmsvc.exe [241648 2011-02-25] (CyberLink)
    S4 Ds3Service; C:\Program Files\Scarlet.Crush Productions\bin\ScpService.exe [381952 2014-03-13] (Scarlet.Crush Productions) [File not signed]
    S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [182304 2014-11-06] (EasyAntiCheat Ltd)
    R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [89840 2015-03-28] (Hewlett-Packard Company)
    R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-08-03] (LogMeIn, Inc.)
    R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation)
    R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
    R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23816 2015-04-30] (Microsoft Corporation)
    R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\ccSvcHst.exe [138760 2011-08-10] (Symantec Corporation)
    R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [366544 2015-04-30] (Microsoft Corporation)
    S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2004488 2015-07-12] (Electronic Arts)
    S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1006320 2015-08-19] (Overwolf LTD)
    S4 PanService; C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe [625816 2012-06-22] (Pandora.TV)
    S4 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1128952 2011-08-12] (PDF Complete Inc)
    R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2015-02-22] ()
    R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-01-11] ()
    R2 Themes; C:\Windows\system32\themeservice.dll [44544 2013-07-01] (Microsoft Corporation) [File not signed]
    S4 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [758224 2013-11-06] (Tunngle.net GmbH)
    S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

    ===================== Drivers (Whitelisted) ==========================

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

    U4 aswSP; no ImagePath
    R3 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\BASHDefs\20150106.001\BHDrvx64.sys [1622744 2015-01-06] (Symantec Corporation)
    S3 BRDriver64; C:\programdata\bitraider\BRDriver64.sys [74024 2013-06-04] (BitRaider)
    R3 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1301000.01C\ccSetx64.sys [167048 2011-08-08] (Symantec Corporation)
    S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
    R3 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [487216 2014-12-11] (Symantec Corporation)
    R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [142640 2014-12-11] (Symantec Corporation)
    R3 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\IPSDefs\20150122.001\IDSvia64.sys [668888 2015-01-08] (Symantec Corporation)
    R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
    R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [113880 2015-09-06] (Malwarebytes Corporation)
    R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
    R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [280376 2015-03-04] (Microsoft Corporation)
    S3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20150122.002\ENG64.SYS [129752 2015-01-20] (Symantec Corporation)
    S3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20150122.002\EX64.SYS [2137304 2015-01-20] (Symantec Corporation)
    R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [124568 2015-03-04] (Microsoft Corporation)
    S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [28416 2008-04-16] (Research In Motion Limited)
    S3 SaiH0160; C:\Windows\System32\DRIVERS\SaiH0160.sys [179584 2008-11-24] (Saitek)
    R3 SaiMini; C:\Windows\System32\DRIVERS\SaiMini.sys [22792 2010-08-10] (Saitek)
    R3 SaiNtBus; C:\Windows\System32\drivers\SaiBus.sys [50056 2010-08-10] (Saitek)
    R3 ScpVBus; C:\Windows\System32\DRIVERS\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)
    S3 SRTSP; C:\Windows\system32\drivers\NISx64\1301000.01C\SRTSP64.SYS [729720 2011-08-02] (Symantec Corporation)
    R3 SRTSPX; C:\Windows\system32\drivers\NISx64\1301000.01C\SRTSPX64.SYS [37496 2011-08-02] (Symantec Corporation)
    R3 SymDS; C:\Windows\system32\drivers\NISx64\1301000.01C\SYMDS64.SYS [451192 2011-07-25] (Symantec Corporation)
    R3 SymEFA; C:\Windows\system32\drivers\NISx64\1301000.01C\SYMEFA64.SYS [1084536 2011-07-28] (Symantec Corporation)
    R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [174200 2012-03-05] (Symantec Corporation)
    R3 SymIRON; C:\Windows\system32\drivers\NISx64\1301000.01C\Ironx64.SYS [189560 2011-07-25] (Symantec Corporation)
    R3 SymNetS; C:\Windows\system32\drivers\NISx64\1301000.01C\SYMNETS.SYS [401016 2011-07-25] (Symantec Corporation)
    R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
    S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2012-12-13] (Apple, Inc.) [File not signed]
    S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
    S3 PlantronicsGC; system32\drivers\PLTGC.sys [X]
    U3 kwryypow; \??\C:\Users\Lukaas\AppData\Local\Temp\kwryypow.sys [X]

    ==================== NetSvcs (Whitelisted) ===================

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
     
  3. Lukaas Hendrix

    Lukaas Hendrix TS Rookie Topic Starter Posts: 27

    ==================== One Month Created files and folders ========

    (If an entry is included in the fixlist, the file/folder will be moved.)

    2015-09-06 22:18 - 2015-09-06 22:19 - 00033015 _____ C:\Users\Lukaas\Downloads\FRST.txt
    2015-09-06 22:18 - 2015-09-06 22:19 - 00000000 ____D C:\FRST
    2015-09-06 22:18 - 2015-09-06 22:18 - 02190336 _____ (Farbar) C:\Users\Lukaas\Downloads\FRST64.exe
    2015-09-06 22:15 - 2015-09-06 22:15 - 158417712 _____ (AVAST Software) C:\Users\Lukaas\Downloads\avast_free_antivirus_setup.exe
    2015-09-06 22:15 - 2015-09-06 22:15 - 00447944 _____ (AVAST Software) C:\Windows\system32\Drivers\ujkgtnho.sys
    2015-09-06 22:15 - 2015-09-06 22:15 - 00000000 ____D C:\ProgramData\AVAST Software
    2015-09-06 21:57 - 2015-09-06 21:58 - 00380416 _____ C:\Users\Lukaas\Downloads\bjcejsqc.exe
    2015-09-05 19:45 - 2015-09-05 19:45 - 08911365 _____ C:\Users\Lukaas\Downloads\HealthyCheeryAfricanhornbill.webm
    2015-08-27 21:55 - 2015-08-27 21:56 - 00000000 ____D C:\Users\Lukaas\Downloads\Brian Jacques_Redwall Series_all 22 books
    2015-08-27 21:54 - 2015-08-27 21:54 - 00017033 _____ C:\Users\Lukaas\Downloads\[kat.cr]all.22.redwall.books.torrent
    2015-08-27 21:48 - 2015-08-27 21:48 - 00000000 ____D C:\Users\Lukaas\Downloads\Patricia A. McKillip - Riddle-Master (complete trilogy, epub)
    2015-08-27 21:45 - 2015-08-27 21:45 - 00001671 _____ C:\Users\Lukaas\Downloads\[kat.cr]patricia.a.mckillip.riddle.master.complete.trilogy.epub.torrent
    2015-08-27 21:43 - 2015-08-27 21:43 - 00000000 ____D C:\Users\Lukaas\Downloads\Joe Abercrombie - The First Law Trilogy
    2015-08-27 21:42 - 2015-08-27 21:42 - 00003505 _____ C:\Users\Lukaas\Downloads\[kat.cr]joe.abercrombie.the.first.law.trilogy.torrent
    2015-08-26 21:39 - 2015-08-26 21:41 - 00000000 ____D C:\Users\Lukaas\Downloads\[Zero] Neon Genesis Evangelion Platinum Perfect Collection
    2015-08-26 21:39 - 2015-08-26 21:39 - 00036818 _____ C:\Users\Lukaas\Downloads\[kat.cr]zero.neon.genesis.evangelion.platinum.perfect.collection.dvd.480p.dual.audio.ac3.hi10.torrent
    2015-08-26 21:35 - 2015-08-26 22:19 - 00000000 ____D C:\Users\Lukaas\Downloads\[CBM] Psycho-Pass 1-22 Complete (Dual Audio) [BDRip-720p-8bit]
    2015-08-26 21:34 - 2015-08-26 21:34 - 00032859 _____ C:\Users\Lukaas\Downloads\[kat.cr]cbm.psycho.pass.1.22.complete.dual.audio.bdrip.720p.8bit.torrent
    2015-08-26 21:25 - 2015-08-26 21:44 - 00000000 ____D C:\Users\Lukaas\Downloads\Lupin III
    2015-08-26 21:21 - 2015-08-26 21:21 - 00156707 _____ C:\Users\Lukaas\Downloads\[kat.cr]lupin.the.third.complete.bakumatsu.gijinden.roman.cinderella.boy.monkey.punch.extras.x264.english.subbed.torrent
    2015-08-25 18:51 - 2015-08-25 18:51 - 00000000 ____D C:\Users\Lukaas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
    2015-08-22 19:49 - 2015-08-22 19:55 - 00000000 ____D C:\Users\Lukaas\Downloads\Ratatouille (2007) [1080p]
    2015-08-22 19:49 - 2015-08-22 19:49 - 00000000 ____D C:\Users\Lukaas\Downloads\Chappie (2015) 720p 5.1 Dublado - Alan_680
    2015-08-22 19:47 - 2015-08-22 19:47 - 00015380 _____ C:\Users\Lukaas\Downloads\[kat.cr]ratatouille.2007.1080p.brrip.x264.yify.torrent
    2015-08-22 19:47 - 2015-08-22 19:47 - 00012826 _____ C:\Users\Lukaas\Downloads\[kat.cr]chappie.2015.brrip.blu.ray.720p.5.1ch.dublado.torrent.download.torrent
    2015-08-19 03:01 - 2015-08-10 21:20 - 25191936 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
    2015-08-19 03:01 - 2015-08-10 21:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
    2015-08-19 03:01 - 2015-08-10 20:20 - 19871232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
    2015-08-19 03:00 - 2015-08-10 20:33 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
    2015-08-16 00:41 - 2015-08-16 00:42 - 00000000 ___DC C:\Users\Lukaas\Documents\Info
    2015-08-15 21:15 - 2015-08-15 21:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
    2015-08-15 21:14 - 2015-08-15 21:15 - 00000000 ____D C:\Program Files\iTunes
    2015-08-15 21:14 - 2015-08-15 21:14 - 00000000 ____D C:\Program Files\iPod
    2015-08-15 21:14 - 2015-08-15 21:14 - 00000000 ____D C:\Program Files (x86)\iTunes
    2015-08-13 00:13 - 2015-08-13 00:13 - 00000000 ____D C:\Users\Lukaas\Downloads\Dragon Ball Z Resurrection 'F' {English Dubbed} 358p @NightCoat
    2015-08-12 03:49 - 2015-07-30 09:13 - 00124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
    2015-08-12 03:49 - 2015-07-30 09:13 - 00103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
    2015-08-12 00:16 - 2015-08-12 00:17 - 00037254 _____ C:\Users\Lukaas\Downloads\debug-console-enabler-default-143-1-07.zip
    2015-08-12 00:00 - 2015-08-12 00:00 - 00025427 _____ C:\Users\Lukaas\Downloads\debug-console-enabler-28-0-1-2.zip
    2015-08-11 19:51 - 2015-08-11 19:51 - 00027608 _____ C:\Users\Lukaas\Downloads\debug-console-enabler-28-0-2.zip
    2015-08-11 15:49 - 2015-07-28 16:09 - 00017344 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
    2015-08-11 15:49 - 2015-07-28 16:05 - 01116672 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
    2015-08-11 15:49 - 2015-07-28 16:05 - 00774656 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
    2015-08-11 15:49 - 2015-07-28 16:05 - 00743424 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
    2015-08-11 15:49 - 2015-07-28 16:05 - 00437760 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
    2015-08-11 15:49 - 2015-07-28 16:05 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
    2015-08-11 15:49 - 2015-07-28 16:05 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
    2015-08-11 15:49 - 2015-07-28 15:55 - 01148416 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
    2015-08-11 15:49 - 2015-07-15 14:15 - 05568960 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
    2015-08-11 15:49 - 2015-07-15 14:15 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
    2015-08-11 15:49 - 2015-07-15 14:15 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
    2015-08-11 15:49 - 2015-07-15 14:15 - 00094656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
    2015-08-11 15:49 - 2015-07-15 14:12 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
    2015-08-11 15:49 - 2015-07-15 14:11 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
    2015-08-11 15:49 - 2015-07-15 14:11 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
    2015-08-11 15:49 - 2015-07-15 14:11 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
    2015-08-11 15:49 - 2015-07-15 14:11 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
    2015-08-11 15:49 - 2015-07-15 14:11 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 01743360 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
    2015-08-11 15:49 - 2015-07-15 14:10 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
    2015-08-11 15:49 - 2015-07-15 14:10 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
    2015-08-11 15:49 - 2015-07-15 14:10 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
    2015-08-11 15:49 - 2015-07-15 14:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
    2015-08-11 15:49 - 2015-07-15 14:09 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
    2015-08-11 15:49 - 2015-07-15 14:05 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
    2015-08-11 15:49 - 2015-07-15 14:05 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:59 - 03989952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
    2015-08-11 15:49 - 2015-07-15 13:59 - 03934656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
    2015-08-11 15:49 - 2015-07-15 13:56 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
    2015-08-11 15:49 - 2015-07-15 13:55 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
    2015-08-11 15:49 - 2015-07-15 13:55 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
    2015-08-11 15:49 - 2015-07-15 13:55 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
    2015-08-11 15:49 - 2015-07-15 13:55 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
    2015-08-11 15:49 - 2015-07-15 13:55 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
    2015-08-11 15:49 - 2015-07-15 13:54 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
    2015-08-11 15:49 - 2015-07-15 13:54 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
    2015-08-11 15:49 - 2015-07-15 13:54 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
    2015-08-11 15:49 - 2015-07-15 13:54 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
    2015-08-11 15:49 - 2015-07-15 13:54 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
    2015-08-11 15:49 - 2015-07-15 13:54 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
    2015-08-11 15:49 - 2015-07-15 13:54 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
    2015-08-11 15:49 - 2015-07-15 13:53 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
    2015-08-11 15:49 - 2015-07-15 13:53 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
    2015-08-11 15:49 - 2015-07-15 13:53 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
    2015-08-11 15:49 - 2015-07-15 13:53 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
    2015-08-11 15:49 - 2015-07-15 13:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
    2015-08-11 15:49 - 2015-07-15 13:53 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
    2015-08-11 15:49 - 2015-07-15 13:49 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
    2015-08-11 15:49 - 2015-07-15 13:48 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 12:46 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
    2015-08-11 15:49 - 2015-07-15 12:46 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
    2015-08-11 15:49 - 2015-07-15 12:46 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
    2015-08-11 15:49 - 2015-07-15 12:37 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
    2015-08-11 15:49 - 2015-07-15 12:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
    2015-08-11 15:49 - 2015-07-15 12:34 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 12:34 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 12:34 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 12:34 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-10 13:51 - 03722752 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
    2015-08-11 15:49 - 2015-07-10 13:51 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
    2015-08-11 15:49 - 2015-07-10 13:51 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
    2015-08-11 15:49 - 2015-07-10 13:34 - 03221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
    2015-08-11 15:49 - 2015-07-10 13:34 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
    2015-08-11 15:49 - 2015-07-10 13:33 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
    2015-08-11 15:49 - 2015-07-09 13:57 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
    2015-08-11 15:49 - 2015-07-09 13:57 - 00193536 _____ (Microsoft Corporation) C:\Windows\notepad.exe
    2015-08-11 15:49 - 2015-07-09 13:42 - 00179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
    2015-08-11 15:48 - 2015-07-20 20:39 - 00389840 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
    2015-08-11 15:48 - 2015-07-20 20:12 - 00342736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
    2015-08-11 15:48 - 2015-07-16 16:54 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
    2015-08-11 15:48 - 2015-07-16 16:37 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
    2015-08-11 15:48 - 2015-07-16 16:36 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
    2015-08-11 15:48 - 2015-07-16 16:36 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
    2015-08-11 15:48 - 2015-07-16 16:36 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
    2015-08-11 15:48 - 2015-07-16 16:35 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
    2015-08-11 15:48 - 2015-07-16 16:35 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
    2015-08-11 15:48 - 2015-07-16 16:27 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
    2015-08-11 15:48 - 2015-07-16 16:26 - 05923328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
    2015-08-11 15:48 - 2015-07-16 16:26 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
    2015-08-11 15:48 - 2015-07-16 16:23 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
    2015-08-11 15:48 - 2015-07-16 16:21 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
    2015-08-11 15:48 - 2015-07-16 16:21 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
    2015-08-11 15:48 - 2015-07-16 16:21 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
    2015-08-11 15:48 - 2015-07-16 16:21 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
    2015-08-11 15:48 - 2015-07-16 16:12 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
    2015-08-11 15:48 - 2015-07-16 16:08 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
    2015-08-11 15:48 - 2015-07-16 16:00 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
    2015-08-11 15:48 - 2015-07-16 15:55 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
    2015-08-11 15:48 - 2015-07-16 15:54 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
    2015-08-11 15:48 - 2015-07-16 15:51 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
    2015-08-11 15:48 - 2015-07-16 15:51 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
    2015-08-11 15:48 - 2015-07-16 15:51 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
    2015-08-11 15:48 - 2015-07-16 15:50 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
    2015-08-11 15:48 - 2015-07-16 15:50 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
    2015-08-11 15:48 - 2015-07-16 15:49 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
    2015-08-11 15:48 - 2015-07-16 15:45 - 02279424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
    2015-08-11 15:48 - 2015-07-16 15:43 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
    2015-08-11 15:48 - 2015-07-16 15:43 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
    2015-08-11 15:48 - 2015-07-16 15:41 - 00479232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
    2015-08-11 15:48 - 2015-07-16 15:39 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
    2015-08-11 15:48 - 2015-07-16 15:39 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
    2015-08-11 15:48 - 2015-07-16 15:38 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
    2015-08-11 15:48 - 2015-07-16 15:36 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
    2015-08-11 15:48 - 2015-07-16 15:35 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
    2015-08-11 15:48 - 2015-07-16 15:34 - 14451200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
    2015-08-11 15:48 - 2015-07-16 15:33 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
    2015-08-11 15:48 - 2015-07-16 15:32 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
    2015-08-11 15:48 - 2015-07-16 15:29 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
    2015-08-11 15:48 - 2015-07-16 15:24 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
    2015-08-11 15:48 - 2015-07-16 15:20 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
    2015-08-11 15:48 - 2015-07-16 15:19 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
    2015-08-11 15:48 - 2015-07-16 15:17 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
    2015-08-11 15:48 - 2015-07-16 15:12 - 04520448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
    2015-08-11 15:48 - 2015-07-16 15:12 - 02427904 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
    2015-08-11 15:48 - 2015-07-16 15:10 - 12856832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
    2015-08-11 15:48 - 2015-07-16 15:06 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
    2015-08-11 15:48 - 2015-07-16 15:06 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
    2015-08-11 15:48 - 2015-07-16 15:05 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
    2015-08-11 15:48 - 2015-07-16 15:01 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
    2015-08-11 15:48 - 2015-07-16 14:49 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
    2015-08-11 15:48 - 2015-07-16 14:42 - 01951232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
    2015-08-11 15:48 - 2015-07-16 14:38 - 01310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
    2015-08-11 15:48 - 2015-07-16 14:37 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
    2015-08-11 15:48 - 2015-07-14 23:19 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
    2015-08-11 15:47 - 2015-07-30 14:06 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
    2015-08-11 15:47 - 2015-07-30 14:06 - 01648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
    2015-08-11 15:47 - 2015-07-30 14:06 - 01180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
    2015-08-11 15:47 - 2015-07-30 14:06 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
    2015-08-11 15:47 - 2015-07-30 14:06 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
    2015-08-11 15:47 - 2015-07-30 14:06 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
    2015-08-11 15:47 - 2015-07-30 14:06 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
    2015-08-11 15:47 - 2015-07-30 13:57 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
    2015-08-11 15:47 - 2015-07-30 13:57 - 01251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
    2015-08-11 15:47 - 2015-07-30 13:57 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
    2015-08-11 15:47 - 2015-07-30 13:57 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
    2015-08-11 15:47 - 2015-07-30 13:57 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
    2015-08-11 15:47 - 2015-07-30 13:55 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
    2015-08-11 15:47 - 2015-07-30 12:56 - 03208192 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
    2015-08-11 15:47 - 2015-07-30 12:52 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
    2015-08-11 15:47 - 2015-07-30 12:49 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
    2015-08-11 15:47 - 2015-07-20 14:12 - 03154944 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
    2015-08-11 15:47 - 2015-07-20 14:12 - 02606080 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
    2015-08-11 15:47 - 2015-07-20 14:12 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
    2015-08-11 15:47 - 2015-07-20 14:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
    2015-08-11 15:47 - 2015-07-20 14:12 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
    2015-08-11 15:47 - 2015-07-20 14:12 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
    2015-08-11 15:47 - 2015-07-20 14:12 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
    2015-08-11 15:47 - 2015-07-20 14:12 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
    2015-08-11 15:47 - 2015-07-20 14:12 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
    2015-08-11 15:47 - 2015-07-20 14:12 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
    2015-08-11 15:47 - 2015-07-20 14:12 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
    2015-08-11 15:47 - 2015-07-20 13:56 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
    2015-08-11 15:47 - 2015-07-20 13:56 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
    2015-08-11 15:47 - 2015-07-20 13:56 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
    2015-08-11 15:47 - 2015-07-20 13:56 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
    2015-08-11 15:47 - 2015-07-20 13:56 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
    2015-08-11 15:47 - 2015-07-14 23:19 - 02004992 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
    2015-08-11 15:47 - 2015-07-14 23:19 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
    2015-08-11 15:47 - 2015-07-14 23:14 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
    2015-08-11 15:47 - 2015-07-14 23:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
    2015-08-11 15:47 - 2015-07-14 22:55 - 01390592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
    2015-08-11 15:47 - 2015-07-14 22:55 - 01241088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
    2015-08-11 15:47 - 2015-07-14 22:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
    2015-08-11 15:47 - 2015-07-14 22:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
    2015-08-11 15:47 - 2015-07-10 13:51 - 14177280 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
    2015-08-11 15:47 - 2015-07-10 13:34 - 12875776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
    2015-08-11 15:47 - 2015-07-01 16:49 - 00260096 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
    2015-08-11 15:47 - 2015-07-01 16:48 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
    2015-08-11 15:47 - 2015-07-01 16:30 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
    2015-08-11 15:47 - 2015-07-01 16:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
    2015-08-11 15:46 - 2015-05-09 14:26 - 00493504 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
    2015-08-09 12:19 - 2015-08-13 00:13 - 00000000 ____D C:\Users\Lukaas\Downloads\Mononoke hime - Princess Mononoke (1997)
    2015-08-09 11:56 - 2015-08-13 00:13 - 00000000 ____D C:\Users\Lukaas\Downloads\Nausicaä of the Valley of the Wind (1984) 720p BRRiP x264 AAC [Team Nanban]
    2015-08-09 11:55 - 2015-08-13 00:13 - 00000000 ____D C:\Users\Lukaas\Downloads\Perfect Blue (1997) 1080p [Jpn 5.1 & Eng 5.1] Blu-ray

    ==================== One Month Modified files and folders ========

    (If an entry is included in the fixlist, the file/folder will be moved.)

    2015-09-06 22:11 - 2012-10-29 16:44 - 00000000 ____D C:\Users\Lukaas\AppData\Local\CrashDumps
    2015-09-06 21:53 - 2014-10-11 23:20 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
    2015-09-06 21:53 - 2012-12-27 15:56 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
    2015-09-06 21:49 - 2015-06-29 22:38 - 00000922 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2797903042-380184562-4160340280-1001UA.job
    2015-09-06 21:32 - 2012-09-27 13:01 - 00000912 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2797903042-380184562-4160340280-1001UA.job
    2015-09-06 21:27 - 2014-10-11 23:20 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
    2015-09-06 20:55 - 2012-09-27 11:48 - 02086551 _____ C:\Windows\WindowsUpdate.log
    2015-09-06 20:46 - 2009-07-14 00:45 - 00024608 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
    2015-09-06 20:46 - 2009-07-14 00:45 - 00024608 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
    2015-09-06 20:39 - 2013-03-04 23:06 - 00000000 ____D C:\Users\Lukaas\AppData\Local\LogMeIn Hamachi
    2015-09-06 20:38 - 2015-07-26 17:56 - 00000000 ____D C:\Users\Lukaas\AppData\Local\Overwolf
    2015-09-06 20:38 - 2012-10-07 23:25 - 00000000 ____D C:\Users\Lukaas\AppData\Roaming\Spotify
    2015-09-06 20:37 - 2015-03-29 21:17 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
    2015-09-06 20:37 - 2012-10-18 23:27 - 00000000 ____D C:\Users\Lukaas\AppData\Roaming\uTorrent
    2015-09-06 20:36 - 2012-10-07 23:26 - 00000000 ____D C:\Users\Lukaas\AppData\Local\Spotify
    2015-09-06 20:35 - 2009-07-14 01:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
    2015-09-06 20:35 - 2009-07-14 00:51 - 00067848 _____ C:\Windows\setupact.log
    2015-09-06 18:54 - 2015-06-29 22:38 - 00000870 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2797903042-380184562-4160340280-1001Core.job
    2015-09-06 16:40 - 2012-09-27 13:01 - 00000860 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2797903042-380184562-4160340280-1001Core.job
    2015-09-06 13:11 - 2012-09-27 12:58 - 00003934 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{78DFDD1E-89D9-450F-A58B-592B36B39982}
    2015-09-05 19:44 - 2015-06-21 21:37 - 00000000 ____D C:\Users\Lukaas\AppData\Roaming\Curse Client
    2015-09-05 19:31 - 2012-09-27 11:48 - 00000000 ____D C:\Users\Lukaas
    2015-09-05 19:23 - 2015-04-05 03:01 - 00000000 ___SD C:\Windows\system32\GWX
    2015-09-05 19:23 - 2012-03-05 20:47 - 00000000 ____D C:\ProgramData\Norton
    2015-09-05 19:23 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\system32\NDF
    2015-09-05 19:23 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\registration
    2015-09-01 07:54 - 2012-09-27 13:38 - 00000000 ____D C:\Program Files (x86)\Steam
    2015-09-01 06:58 - 2013-03-05 16:42 - 00000000 ___RD C:\Users\Lukaas\Dropbox
    2015-09-01 06:58 - 2013-03-05 16:40 - 00000000 ____D C:\Users\Lukaas\AppData\Roaming\Dropbox
    2015-08-30 12:03 - 2015-07-26 17:57 - 00000000 ____D C:\Program Files (x86)\Overwolf
    2015-08-28 20:28 - 2012-09-28 23:19 - 00000052 _____ C:\Windows\SysWOW64\DOErrors.log
    2015-08-28 16:27 - 2012-09-27 13:01 - 00003884 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2797903042-380184562-4160340280-1001UA
    2015-08-28 16:27 - 2012-09-27 13:01 - 00003488 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2797903042-380184562-4160340280-1001Core
    2015-08-28 06:46 - 2012-12-17 12:37 - 00000000 ____D C:\Users\Lukaas\Documents\Calibre Library
    2015-08-28 03:21 - 2014-10-11 23:20 - 00003894 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
    2015-08-28 03:21 - 2014-10-11 23:20 - 00003642 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
    2015-08-27 21:53 - 2012-12-17 12:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management
    2015-08-27 21:53 - 2012-12-17 12:37 - 00000000 ____D C:\Program Files (x86)\Calibre2
    2015-08-23 00:41 - 2014-08-15 21:45 - 00003192 _____ C:\Windows\System32\Tasks\HPCeeScheduleForLukaas
    2015-08-23 00:41 - 2014-08-15 21:45 - 00000336 _____ C:\Windows\Tasks\HPCeeScheduleForLukaas.job
    2015-08-19 03:19 - 2010-11-20 23:47 - 00302302 _____ C:\Windows\PFRO.log
    2015-08-18 17:38 - 2012-10-23 21:55 - 00000000 ____D C:\Users\Lukaas\AppData\Roaming\.minecraft
    2015-08-16 21:48 - 2012-09-27 20:17 - 00000000 ____D C:\Users\Lukaas\Documents\My Games
    2015-08-16 16:27 - 2015-05-18 23:01 - 00000000 ____D C:\Users\Lukaas\Documents\The Witcher 3
    2015-08-15 21:14 - 2012-09-27 13:51 - 00000000 ____D C:\Program Files\Common Files\Apple
    2015-08-13 00:13 - 2015-08-06 21:51 - 00000000 ____D C:\Users\Lukaas\Downloads\Mad.Max.Fury.Road.2015.HDRip.XViD-ETRG
    2015-08-13 00:13 - 2015-08-02 21:12 - 00000000 ____D C:\Users\Lukaas\Downloads\The Grand Budapest Hotel 2014 1080p BRRip x264 AAC-JYK
    2015-08-13 00:13 - 2015-08-02 21:02 - 00000000 ____D C:\Users\Lukaas\Downloads\The.Taking.of.Tiger.Mountain.2014.BRRip.480p.x264-VYTO [P2PDL]
    2015-08-12 16:15 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\rescache
    2015-08-12 04:14 - 2009-07-14 00:45 - 00299160 _____ C:\Windows\system32\FNTCACHE.DAT
    2015-08-12 04:13 - 2013-03-14 03:01 - 00000000 ____D C:\Program Files\Microsoft Silverlight
    2015-08-12 04:13 - 2013-03-14 03:01 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
    2015-08-12 04:09 - 2014-12-10 04:29 - 00000000 ____D C:\Windows\system32\appraiser
    2015-08-12 04:09 - 2014-05-07 03:00 - 00000000 ___SD C:\Windows\system32\CompatTel
    2015-08-12 03:48 - 2013-03-14 03:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
    2015-08-12 03:28 - 2013-07-19 03:04 - 00000000 ____D C:\Windows\system32\MRT
    2015-08-12 03:02 - 2012-11-05 15:10 - 132483416 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
    2015-08-12 00:17 - 2015-07-26 18:00 - 00000000 ____D C:\Users\Lukaas\AppData\Local\Purplizer
    2015-08-10 00:24 - 2012-09-27 16:51 - 00000000 ____D C:\Users\Lukaas\AppData\Roaming\Skype
    2015-08-09 12:27 - 2015-08-02 21:03 - 00000000 ____D C:\Users\Lukaas\Downloads\Edge of Tomorrow (2014)
    2015-08-09 12:27 - 2015-07-16 15:18 - 00000000 ____D C:\Users\Lukaas\Downloads\Bread- A Baker's Book of Techniques and Recipes - Jeffrey Hamelman [PDF] { KT }
    2015-08-09 12:05 - 2014-10-26 10:21 - 00000000 ____D C:\Users\Lukaas\Downloads\Captain Phillips (2013) [1080p]
    2015-08-09 12:05 - 2014-06-07 22:44 - 00000000 ____D C:\Users\Lukaas\Downloads\Children.Of.Men[2006]DvDrip[Eng]-aXXo

    ==================== Files in the root of some directories =======

    2012-10-23 21:54 - 2012-10-23 21:54 - 0263186 _____ () C:\Program Files\Minecraft.exe
    2012-11-26 21:09 - 2013-03-04 22:44 - 0703117 _____ () C:\Users\Lukaas\AppData\Roaming\technic-launcher.jar
    2012-11-26 21:09 - 2012-11-26 21:10 - 0583306 _____ () C:\Users\Lukaas\AppData\Roaming\technic-launcher.jar.bak
    2013-06-23 02:17 - 2013-06-23 02:20 - 0000173 _____ () C:\Users\Lukaas\AppData\Local\msmathematics.qat.Lukaas
    2013-09-04 19:23 - 2013-09-04 19:23 - 0000903 _____ () C:\Users\Lukaas\AppData\Local\recently-used.xbel
    2014-10-23 18:31 - 2014-10-23 18:31 - 0000057 _____ () C:\ProgramData\Ament.ini

    Files to move or delete:
    ====================
    C:\Users\Lukaas\Minecraft.exe


    Some files in TEMP:
    ====================
    C:\Users\Lukaas\AppData\Local\Temp\27fff54a706caf16275619fa9b79269c.dll
    C:\Users\Lukaas\AppData\Local\Temp\7z.dll
    C:\Users\Lukaas\AppData\Local\Temp\7z.exe
    C:\Users\Lukaas\AppData\Local\Temp\ApplicationUpdate.Client.dll
    C:\Users\Lukaas\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpaaaqap.dll
    C:\Users\Lukaas\AppData\Local\Temp\DSETUP.dll
    C:\Users\Lukaas\AppData\Local\Temp\dsetup32.dll
    C:\Users\Lukaas\AppData\Local\Temp\dtkill.exe
    C:\Users\Lukaas\AppData\Local\Temp\DXSETUP.exe
    C:\Users\Lukaas\AppData\Local\Temp\Executor.exe
    C:\Users\Lukaas\AppData\Local\Temp\Gw2.exe
    C:\Users\Lukaas\AppData\Local\Temp\hcuninstaller_20150517_203808_9132.exe
    C:\Users\Lukaas\AppData\Local\Temp\HPHelpUpdater.exe
    C:\Users\Lukaas\AppData\Local\Temp\jre-7u13-windows-i586-iftw.exe
    C:\Users\Lukaas\AppData\Local\Temp\jre-7u15-windows-i586-iftw.exe
    C:\Users\Lukaas\AppData\Local\Temp\jre-7u17-windows-i586-iftw.exe
    C:\Users\Lukaas\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe
    C:\Users\Lukaas\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe
    C:\Users\Lukaas\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
    C:\Users\Lukaas\AppData\Local\Temp\jre-7u60-windows-i586-iftw.exe
    C:\Users\Lukaas\AppData\Local\Temp\jre-7u67-windows-i586-iftw.exe
    C:\Users\Lukaas\AppData\Local\Temp\jre-7u9-windows-i586-iftw.exe
    C:\Users\Lukaas\AppData\Local\Temp\jre-8u31-windows-au.exe
    C:\Users\Lukaas\AppData\Local\Temp\jre-8u40-windows-au.exe
    C:\Users\Lukaas\AppData\Local\Temp\KMP_3.9.0.128.exe
    C:\Users\Lukaas\AppData\Local\Temp\KMP_3.9.1.134.exe
    C:\Users\Lukaas\AppData\Local\Temp\OpenComputersMod-1.3.2.525-native.64.dll
    C:\Users\Lukaas\AppData\Local\Temp\patcher_lib.dll
    C:\Users\Lukaas\AppData\Local\Temp\patcher_update.exe
    C:\Users\Lukaas\AppData\Local\Temp\RealCharacterBuilderUpdater.exe
    C:\Users\Lukaas\AppData\Local\Temp\Resource.exe
    C:\Users\Lukaas\AppData\Local\Temp\riftuninstall.exe
    C:\Users\Lukaas\AppData\Local\Temp\SetupAdmin.exe
    C:\Users\Lukaas\AppData\Local\Temp\SkypeSetup.exe
    C:\Users\Lukaas\AppData\Local\Temp\sonarinst.exe
    C:\Users\Lukaas\AppData\Local\Temp\sp58915.exe
    C:\Users\Lukaas\AppData\Local\Temp\sp64126.exe
    C:\Users\Lukaas\AppData\Local\Temp\swt-win32-3349.dll
    C:\Users\Lukaas\AppData\Local\Temp\TempRealCharacterBuilderUpdater.exe
    C:\Users\Lukaas\AppData\Local\Temp\UninstallHPSA.exe
    C:\Users\Lukaas\AppData\Local\Temp\utils.dll
    C:\Users\Lukaas\AppData\Local\Temp\utt549.tmp.exe
    C:\Users\Lukaas\AppData\Local\Temp\vcredist_x86-2010.exe
    C:\Users\Lukaas\AppData\Local\Temp\vcredist_x86-2012.exe


    ==================== Bamital & volsnap =================

    (There is no automatic fix for files that do not pass verification.)

    C:\Windows\system32\winlogon.exe => File is digitally signed
    C:\Windows\system32\wininit.exe => File is digitally signed
    C:\Windows\SysWOW64\wininit.exe => File is digitally signed
    C:\Windows\explorer.exe => File is digitally signed
    C:\Windows\SysWOW64\explorer.exe => File is digitally signed
    C:\Windows\system32\svchost.exe => File is digitally signed
    C:\Windows\SysWOW64\svchost.exe => File is digitally signed
    C:\Windows\system32\services.exe => File is digitally signed
    C:\Windows\system32\User32.dll => File is digitally signed
    C:\Windows\SysWOW64\User32.dll => File is digitally signed
    C:\Windows\system32\userinit.exe => File is digitally signed
    C:\Windows\SysWOW64\userinit.exe => File is digitally signed
    C:\Windows\system32\rpcss.dll => File is digitally signed
    C:\Windows\system32\dnsapi.dll => File is digitally signed
    C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
    C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


    LastRegBack: 2015-09-01 00:05

    ==================== End of FRST.txt ============================
     
  4. Lukaas Hendrix

    Lukaas Hendrix TS Rookie Topic Starter Posts: 27

    Additional scan result of Farbar Recovery Scan Tool (x64) Version:06-09-2015 01
    Ran by Lukaas (2015-09-06 22:20:41)
    Running from C:\Users\Lukaas\Downloads
    Windows 7 Home Premium Service Pack 1 (X64) (2012-09-27 15:48:43)
    Boot Mode: Normal
    ==========================================================


    ==================== Accounts: =============================

    Administrator (S-1-5-21-2797903042-380184562-4160340280-500 - Administrator - Disabled)
    Guest (S-1-5-21-2797903042-380184562-4160340280-501 - Limited - Disabled)
    HomeGroupUser$ (S-1-5-21-2797903042-380184562-4160340280-1002 - Limited - Enabled)
    Lukaas (S-1-5-21-2797903042-380184562-4160340280-1001 - Administrator - Enabled) => C:\Users\Lukaas

    ==================== Security Center ========================

    (If an entry is included in the fixlist, it will be removed.)

    AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
    AV: Norton Internet Security (Disabled - Out of date) {63DF5164-9100-186D-2187-8DC619EFD8BF}
    AS: Microsoft Security Essentials (Enabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
    AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    AS: Norton Internet Security (Disabled - Out of date) {D8BEB080-B73A-17E3-1B37-B6B462689202}
    FW: Norton Internet Security (Disabled) {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}

    ==================== Installed Programs ======================

    (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

    (HKLM\...\UDK-a3907f02-b901-4f6d-8ddd-810262a35d23) (Version: - RuneStorm
    µTorrent (HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\uTorrent) (Version: 3.4.4.40911 - BitTorrent Inc.)
    10,000,000 (HKLM-x32\...\Steam App 227580) (Version: - )
    A Game of Thrones mod for CK2 version 0.4.0.1 (HKLM-x32\...\{7C82709E-75FE-4C3A-976A-8C97908DDD7B}_is1) (Version: 0.4.0.1 - AGOT TEAM)
    Adobe Flash Player 16 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated)
    Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.188 - Adobe Systems Incorporated)
    Adobe Reader XI (11.0.12) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated)
    Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.2.122 - Adobe Systems, Inc.)
    Age of Wonders III (HKLM-x32\...\Steam App 226840) (Version: - Triumph Studios)
    AirMech (HKLM-x32\...\Steam App 206500) (Version: - )
    Algodoo v2.1.0 (HKLM-x32\...\Algodoo_is1) (Version: - Algoryx)
    Alien Swarm (HKLM-x32\...\Steam App 630) (Version: - Valve)
    AMD Catalyst Install Manager (HKLM\...\{D2A53F8D-3924-E600-6023-883B255E3812}) (Version: 3.0.842.0 - Advanced Micro Devices, Inc.)
    Anomaly Warzone Earth (HKLM-x32\...\{C4377DBD-EF89-4088-B68C-1DB78280F076}_is1) (Version: 1 - 11 bit studios)
    Apple Application Support (32-bit) (HKLM-x32\...\{7FE25256-B7C1-480D-B736-10A67A833AEA}) (Version: 3.2 - Apple Inc.)
    Apple Application Support (64-bit) (HKLM\...\{B255D495-4734-4E9B-B4F5-96702FD4A7B9}) (Version: 3.2 - Apple Inc.)
    Apple Mobile Device Support (HKLM\...\{5D61F006-168C-4B8B-B7FD-F113C10AE0E4}) (Version: 8.2.1.3 - Apple Inc.)
    Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
    applicationupdater (HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\SOE-C:/Users/Lukaas/AppData/Local/Sony Online Entertainment/ApplicationUpdater) (Version: - Sony Online Entertainment)
    Arma: Cold War Assault (HKLM-x32\...\Steam App 65790) (Version: - Bohemia Interactive)
    Audacity 2.0.4 (HKLM-x32\...\Audacity_is1) (Version: 2.0.4 - Audacity Team)
    Audible Download Manager (HKLM-x32\...\AudibleDownloadManager) (Version: 6.6.0.15 - Audible, Inc.)
    Awesomenauts (HKLM-x32\...\Steam App 204300) (Version: - )
    Batman: Arkham Asylum GOTY Edition (HKLM-x32\...\Steam App 35140) (Version: - Rocksteady Studios)
    Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
    BattleBlock Theater (HKLM-x32\...\Steam App 238460) (Version: - The Behemoth)
    Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.4.2.30944 - Electronic Arts)
    Battlefield 4™ Beta (HKLM-x32\...\{CFAB3721-549D-4827-A4E8-7F90192114AB}) (Version: 1.0.0.0 - Electronic Arts)
    Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.6.2 - EA Digital Illusions CE AB)
    Bejeweled 3 (x32 Version: 2.2.0.97 - WildTangent) Hidden
    Bejeweled® 3 (HKLM-x32\...\{E99C27B2-EB2E-4244-9F5C-A96F55100F0C}) (Version: 1.1.13.4753 - Electronic Arts, Inc.)
    Bigasoft iTunes Video Converter 3.7.18.4668 (HKLM-x32\...\{83340D90-BB65-4969-8C4E7FABC6319CDA}_is1) (Version: - Bigasoft Corporation)
    BioShock (HKLM-x32\...\Steam App 7670) (Version: - 2K Boston)
    BioShock 2 (HKLM-x32\...\Steam App 8850) (Version: - 2K Games)
    BitRaider Web Client (HKLM-x32\...\BitRaider Web Client) (Version: 1.1.6.3 - BitRaider, LLC)
    Blackhawk Striker 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden
    Blacklight: Retribution (HKLM-x32\...\Steam App 209870) (Version: - Zombie, Inc.)
    Bluetooth by hp (HKLM\...\{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}) (Version: 6.3.0.8200 - Broadcom Corporation)
    Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
    Bubble Wrap (HKLM-x32\...\{5BFFDDEB-AFD7-499F-BB13-7A6EAD927CDA}_is1) (Version: 1.0.0.0 - XM Asia Pacific Pte Ltd)
    Burnout Paradise: The Ultimate Box (HKLM-x32\...\Steam App 24740) (Version: - Criterion Games)
    Burnout™ Paradise: The Ultimate Box (HKLM-x32\...\{1CDC8E7D-CDFC-4C2B-A080-23D943354625}) (Version: 1.1.0.0 - Electronic Arts)
    Burnout™ Paradise: The Ultimate Box (HKLM-x32\...\{9A996B6A-846E-4A89-B9C4-17546B7BE49F}) (Version: 1.1.0.0 - Electronic Arts)
    calibre (HKLM-x32\...\{B4B62C79-A41D-47C6-B689-0416BEA6678F}) (Version: 2.35.0 - Kovid Goyal)
    Card Hunter (HKLM-x32\...\Steam App 293260) (Version: - Blue Manchu)
    CDisplay 1.8 (HKLM-x32\...\CDisplay_is1) (Version: - dvd8n)
    Chivalry: Medieval Warfare (HKLM-x32\...\Steam App 219640) (Version: - )
    Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
    Cities XL 2011 (HKLM-x32\...\Steam App 58510) (Version: - Monte Cristo)
    Company of Heroes (HKLM-x32\...\Steam App 4560) (Version: - Relic)
    Company of Heroes (New Steam Version) (HKLM-x32\...\Steam App 228200) (Version: - )
    Company of Heroes: Opposing Fronts (HKLM-x32\...\Steam App 9340) (Version: - Relic)
    Company of Heroes: Tales of Valor (HKLM-x32\...\Steam App 20540) (Version: - Relic)
    Cradle of Rome 2 (x32 Version: 2.2.0.98 - WildTangent) Hidden
    CrossHair (HKLM-x32\...\{05B68931-AD1D-4879-AF0E-D2BFF9750C58}) (Version: 1.1.0 - Mike Lin)
    Crusader Kings II (HKLM-x32\...\Steam App 203770) (Version: - Paradox)
    Curse (HKLM-x32\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Curse)
    CyberLink PowerDVD 10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.1.3226 - CyberLink Corp.)
    D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
    Darksiders (HKLM-x32\...\Steam App 50620) (Version: - Vigil Games)
    DarksidersInstaller (HKLM-x32\...\{B93EEE50-9C8F-45DF-95E4-3D85A6E242F3}) (Version: 1.00.1000 - THQ)
    Deus Ex: Human Revolution (HKLM-x32\...\Steam App 28050) (Version: - Eidos Montreal)
    DirectX for Managed Code Update (Summer 2004) (x32 Version: 9.02.2904 - Microsoft) Hidden
    Dirty Bomb (HKLM-x32\...\Steam App 333930) (Version: - Splash Damage®)
    Dolby Axon - 1.5.1.1 (HKLM-x32\...\{17936630-5344-4F18-9970-616129E2A114}_is1) (Version: 1.5.1.1 - Dolby Laboratories)
    Dora's World Adventure (x32 Version: 2.2.0.95 - WildTangent) Hidden
    doubleTwist Sync (HKLM-x32\...\doubleTwist) (Version: 4.0.4.19767 - doubleTwist Corporation)
    Dragon Age: Origins (HKLM-x32\...\{AEC81925-9C76-4707-84A9-40696C613ED3}) (Version: 1.05.0.0 - Electronic Arts)
    Dropbox (HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\Dropbox) (Version: 3.8.8 - Dropbox, Inc.)
    Dungeon Defenders (HKLM-x32\...\Steam App 65800) (Version: - )
    Dungeon Siege II version 2.3 (HKLM-x32\...\{1520E069-19A9-4B01-BA5D-87B67D56F55D}_is1) (Version: 2.3 - )
    Dungeonland (HKLM-x32\...\Steam App 218130) (Version: - )
    Dungeons of Dredmor (HKLM-x32\...\Steam App 98800) (Version: - )
    Dwarfs!? (HKLM-x32\...\Steam App 35480) (Version: - Power of Two)
    Dying Light (HKLM-x32\...\Steam App 239140) (Version: - Techland)
    Europa Universalis III (HKLM-x32\...\Steam App 25800) (Version: - Paradox Interactive)
    f.lux (HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\Flux) (Version: - )
    Fable - The Lost Chapters (HKLM-x32\...\Steam App 204030) (Version: - Lionhead Studios)
    Facebook (HKLM-x32\...\{8AE50893-3A87-4439-9A57-942ED43F7189}) (Version: 1.1.0004 - Hewlett-Packard)
    Fantasy Grounds (HKLM-x32\...\Steam App 252690) (Version: - SmiteWorks USA, LLC)
    Farm Frenzy (x32 Version: 2.2.0.98 - WildTangent) Hidden
    Farmscapes (x32 Version: 2.2.0.98 - WildTangent) Hidden
    FATE (x32 Version: 2.2.0.97 - WildTangent) Hidden
    Final Drive Fury (x32 Version: 2.2.0.95 - WildTangent) Hidden
    Firefall (HKLM-x32\...\Steam App 227700) (Version: - Red 5 Studios)
    gamelauncher-ps2-live (HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\SOE-C:/Users/Public/Sony Online Entertainment/Installed Games/PlanetSide 2) (Version: - Sony Online Entertainment)
    Gauntlet™ (HKLM-x32\...\Steam App 258970) (Version: - Arrowhead Game Studios)
    Ghost Recon Online (NCSA-Live) (HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\fc418bf9b18f76aa) (Version: 1.30.8665.2 - Ubisoft)
    GIMP 2.8.6 (HKLM\...\GIMP-2_is1) (Version: 2.8.6 - The GIMP Team)
    Glyph (HKLM-x32\...\Glyph) (Version: - Trion Worlds, Inc.)
    Google Chrome (HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\Google Chrome) (Version: 45.0.2454.85 - Google Inc.)
    Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
    Google Talk Plugin (HKLM-x32\...\{CA3DD97D-1FD7-37A7-BD5C-FC4430C8B8E6}) (Version: 5.41.2.0 - Google)
    Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
    Google Update Helper (x32 Version: 1.3.28.13 - Google Inc.) Hidden
    Gratuitous Space Battles (HKLM-x32\...\Gratuitous Space Battles_is1) (Version: - Positech Games)
    Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
    Guns of Icarus Online Beta (HKLM-x32\...\Steam App 209080) (Version: - )
    Half Minute Hero: Super Mega Neo Climax Ultimate Boy (HKLM-x32\...\Steam App 214830) (Version: - )
    HandBrake 0.9.8 (HKLM-x32\...\HandBrake) (Version: 0.9.8 - )
    Happy Cloud Client (HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\HappyCloud) (Version: 1.374 - Happy Cloud, Inc.)
    HAWKEN (HKLM-x32\...\Steam App 271290) (Version: - Adhesive Games)
    Hawken (HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\Hawken) (Version: - Meteor Entertainment)
    Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
    Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
    Hoyle Card Games (x32 Version: 2.2.0.95 - WildTangent) Hidden
    HP Application Assistant (HKLM\...\{B34A07DD-C6F7-414A-AE63-01019482EAF0}) (Version: 1.0.393.3870 - Hewlett-Packard)
    HP Calendar (HKLM-x32\...\{2B38E0FA-D8A5-4EBF-A018-E3C1C8E7A2E2}) (Version: 5.1.4245.23508 - Hewlett-Packard)
    HP Clock (HKLM-x32\...\{0EEC4E49-D4C2-4E23-87F2-B5641F1A09E4}) (Version: 5.1.4244.16367 - Hewlett-Packard)
    HP ENVY 4500 series Basic Device Software (HKLM\...\{6915424E-704F-4F5D-9057-9C7B406B36DB}) (Version: 32.3.198.49673 - Hewlett-Packard Co.)
    HP ENVY 4500 series Help (HKLM-x32\...\{95BECC50-22B4-4FCA-8A2E-BF77713E6D3A}) (Version: 30.0.0 - Hewlett Packard)
    HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.2.5 - WildTangent)
    HP LinkUp (HKLM-x32\...\{7E750542-55BC-4300-8B7B-AC2A762FB435}) (Version: 2.01.029 - Hewlett-Packard)
    HP Magic Canvas (HKLM-x32\...\{DDFDC9D6-4220-41F8-BF9A-8E7512C4EF52}) (Version: 5.1.15.0 - Hewlett-Packard)
    HP Magic Canvas Tutorials (HKLM-x32\...\{858FCB65-7C6D-4BA4-AD80-A3CB3744CE09}_is1) (Version: 5.0.0.3 - Hewlett-Packard)
    HP Notes (HKLM-x32\...\{86BAB08A-5E66-4C53-82E3-C1E91673C7CA}) (Version: 5.1.4274.30382 - Hewlett-Packard)
    HP Odometer (HKLM-x32\...\{B8AC1A89-FFD1-4F97-8051-E505A160F562}) (Version: 2.10.0000 - Hewlett-Packard)
    HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
    HP RSS (HKLM-x32\...\{A35E58D6-2A0F-4051-983B-79342081338E}) (Version: 5.1.4301.21494 - Hewlett-Packard)
    HP Setup (HKLM-x32\...\{F5E7D9AF-60F6-4A30-87E3-4EA94D322CE1}) (Version: 9.0.15130.3904 - Hewlett-Packard Company)
    HP Setup Manager (HKLM-x32\...\{AE856388-AFAD-4753-81DF-D96B19D0A17C}) (Version: 1.2.15145.3905 - Hewlett-Packard Company)
    HP Support Assistant (HKLM-x32\...\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}) (Version: 7.4.45.4 - Hewlett-Packard Company)
    HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 11.00.0001 - Hewlett-Packard)
    HP Support Solutions Framework (HKLM-x32\...\{FC3C2B77-6800-48C6-A15D-9D1031130C16}) (Version: 11.51.0049 - Hewlett-Packard Company)
    HP TouchSmart Background - Beats (HKLM-x32\...\{6A6F8D36-04BA-41E9-9004-1789BD545874}) (Version: 1.0.1.0 - Hewlett-Packard)
    HP TouchSmart RecipeBox (HKLM-x32\...\{20714B53-FC73-4F9C-9687-49EB237D6FD7}) (Version: 3.0.3830.27730 - Hewlett-Packard)
    HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
    HP Vision Hardware Diagnostics (HKLM\...\{D79A02E9-6713-4335-9668-AAC7474C0C0E}) (Version: 2.12.1.0 - Hewlett-Packard)
    HP Weather (HKLM-x32\...\{8364E531-493B-4B05-8041-09D5CE38B975}) (Version: 5.1.4295.16450 - Hewlett-Packard)
    HydraVision (x32 Version: 4.2.212.0 - Advanced Micro Devices, Inc.) Hidden
    iCloud (HKLM\...\{709A2D23-C25E-47B5-9268-CB6FEE648504}) (Version: 4.1.1.53 - Apple Inc.)
    Injustice: Gods Among Us Ultimate Edition (HKLM-x32\...\Steam App 242700) (Version: - NetherRealm Studios)
    iSnooze 1.3.3 (HKLM-x32\...\iSnooze) (Version: 1.3.3 - Steven Scott)
    iTunes (HKLM\...\{BFEAB774-C7DC-4032-B05A-DA5F7CB7B365}) (Version: 12.2.2.25 - Apple Inc.)
    Java 8 Update 40 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418040F0}) (Version: 8.0.400 - Oracle Corporation)
    Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
    Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
    Jewel Quest Mysteries: The Seventh Gate Collector's Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden
    John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden
    Junk Mail filter update (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
    KMPlayer (HKLM-x32\...\The KMPlayer) (Version: 3.9.1.135 - PandoraTV)
    LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.4507 - CyberLink Corp.)
    LabelPrint (x32 Version: 2.5.4507 - CyberLink Corp.) Hidden
    League of Legends (HKLM-x32\...\{92606477-9366-4D3B-8AE3-6BE4B29727AB}) (Version: 1.3 - Riot Games)
    Letters from Nowhere 2 (x32 Version: 2.2.0.97 - WildTangent) Hidden
    LizardTech ExpressView Browser Plug-in (HKLM-x32\...\{67CEE8A8-9E1A-440A-9D99-F997EB4FB7AE}) (Version: 6.5 - LizardTech)
    Loadout (HKLM-x32\...\Steam App 208090) (Version: - Edge of Reality)
    LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.383 - LogMeIn, Inc.)
    LogMeIn Hamachi (x32 Version: 2.2.0.383 - LogMeIn, Inc.) Hidden
    Luxor HD (x32 Version: 2.2.0.98 - WildTangent) Hidden
    Magicite (HKLM-x32\...\Steam App 268750) (Version: - SmashGames)
    Mah Jong Medley (x32 Version: 2.2.0.95 - WildTangent) Hidden
    Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
    Marvel Heroes (HKLM-x32\...\marvelheroes) (Version: 1.10.1.8 - Gazillion Entertainment)
    MechWarrior Online (HKLM-x32\...\{9f17023b-d04f-432b-b08a-3bb4c3a7ed3c}) (Version: 1.6.0.0 - Piranha Games Inc.)
    MechWarrior Online (x32 Version: 1.6.1.0 - Piranha Games Inc.) Hidden
    Medieval Engineers (HKLM-x32\...\Steam App 333950) (Version: - Keen Software House)
    Metric Converter (HKLM-x32\...\{D0661463-50F7-4A1E-83CB-37CC590589AE}_is1) (Version: 1.0.0.0 - XM Asia Pacific Pte Ltd)
    Metro 2033 (HKLM-x32\...\Steam App 43110) (Version: - THQ)
    Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
    Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation)
    Microsoft Games for Windows - LIVE (HKLM-x32\...\{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}) (Version: 3.1.186.0 - Microsoft Corporation)
    Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}) (Version: 3.1.99.0 - Microsoft Corporation)
    Microsoft Mathematics (HKLM-x32\...\{4D090F70-6F08-4B60-9357-A1DFD4458F09}) (Version: 4.0 - Microsoft Corporation)
    Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation)
    Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
    Microsoft SkyDrive (HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\SkyDriveSetup.exe) (Version: 16.4.6013.0910 - Microsoft Corporation)
    Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
    Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
    Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
    Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
    Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
    Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
    Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
    Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
    Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
    Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
    Miner Wars 2081 (HKLM-x32\...\Steam App 223430) (Version: - Keen Software House)
    Mirror's Edge™ (HKLM-x32\...\{AEDBD563-24BB-4EE3-8366-A654DAC2D988}) (Version: 1.0.1.0 - Electronic Arts)
    Mount & Blade (HKLM-x32\...\Steam App 22100) (Version: - TaleWorlds Entertainment)
    Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
    NEOTOKYO° (HKLM-x32\...\Steam App 244630) (Version: - STUDIO RADI-8)
    Neverwinter (HKLM-x32\...\Neverwinter) (Version: - Cryptic Studios)
    Norton Internet Security (HKLM-x32\...\NIS) (Version: 19.1.0.28 - Symantec Corporation)
    Nosgoth (HKLM-x32\...\Steam App 200110) (Version: 140603.85501 - Square Enix Ltd)
    NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
    Oil Rush version 1.12 (HKLM-x32\...\Oil Rush_is1) (Version: 1.12 - )
    OpenAL (HKLM-x32\...\OpenAL) (Version: - )
    OpenOffice 4.1.1 (HKLM-x32\...\{9395F41D-0F80-432E-9A59-B8E477E7E163}) (Version: 4.11.9775 - Apache Software Foundation)
    OpenOffice 4.1.1 Language Pack (English) (HKLM-x32\...\{53E5F858-54E3-406D-A927-09AC86FCBA1A}) (Version: 4.11.9775 - Apache Software Foundation)
    opensource (x32 Version: 1.0.14960.3876 - Your Company Name) Hidden
    OpenTTD 1.3.2 (HKLM-x32\...\OpenTTD) (Version: 1.3.2 - OpenTTD)
    Origin (HKLM-x32\...\Origin) (Version: 9.0.15.65 - Electronic Arts, Inc.)
    Osmos (HKLM-x32\...\Steam App 29180) (Version: - Hemisphere Games)
    Overwolf (HKLM-x32\...\Overwolf) (Version: 0.88.101.0 - Overwolf Ltd.)
    Pandora Service (HKLM-x32\...\4F6D5E84-5826-4394-9F40-3A9A19165651_is1) (Version: - Pandora.TV) <==== ATTENTION
    Path of Exile (HKLM-x32\...\Steam App 238960) (Version: - Grinding Gear Games)
    Patrician III (HKLM-x32\...\Steam App 33570) (Version: - Ascaron Entertainment ltd.)
    PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.)
    PDF Complete Special Edition (HKLM-x32\...\PDF Complete) (Version: 4.0.65 - PDF Complete, Inc)
    PDFtk - The PDF Toolkit version 2.02 (HKLM-x32\...\{C65EA7B8-FC21-4896-AD44-9CE952BB1255}_is1) (Version: 2.02 - PDF Labs)
    Penguins! (x32 Version: 2.2.0.98 - WildTangent) Hidden
    PlanetSide 2 (HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\soe-PlanetSide 2) (Version: 1.0.3.181 - Sony Online Entertainment)
    Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
    Plants vs. Zombies: Game of the Year (HKLM-x32\...\Steam App 3590) (Version: - PopCap Games, Inc.)
    Playfire (HKLM-x32\...\{6b69b0a4-05aa-4ee8-a108-0ebb857ecba4}) (Version: 0.0.72.0 - Playfire)
    Playfire (x32 Version: 0.0.72.0 - Playfire) Hidden
    PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
    Poker Superstars III (x32 Version: 2.2.0.95 - WildTangent) Hidden
    Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
    Polar Golfer (x32 Version: 2.2.0.98 - WildTangent) Hidden
    Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.5706 - CyberLink Corp.)
    Power2Go (x32 Version: 6.1.5706 - CyberLink Corp.) Hidden
    Prison Architect (HKLM-x32\...\Steam App 233450) (Version: - Introversion Software)
    Product Improvement Study for HP ENVY 4500 series (HKLM\...\{58139103-BACF-4BDC-B71C-955F9164ADA6}) (Version: 32.3.198.49673 - Hewlett-Packard Co.)
    PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.992 - Even Balance, Inc.)
    QuickTime 7 (HKLM-x32\...\{627FFC10-CE0A-497F-BA2B-208CAC638010}) (Version: 7.77.80.95 - Apple Inc.)
    RaidCall (HKLM-x32\...\RaidCall) (Version: 7.2.2-1.0.6555.3 - raidcall.com)
    RAIDXpert (HKLM-x32\...\InstallShield_{8B76B8E9-F773-4B75-A08C-120079EB765E}) (Version: 3.3.1540.9 - AMD)
    RAIDXpert (x32 Version: 3.3.1540.9 - AMD) Hidden
    Realm of the Mad God (HKLM-x32\...\Steam App 200210) (Version: - )
    Recovery Manager (x32 Version: 5.5.0.4424 - CyberLink Corp.) Hidden
    Red Faction: Armageddon (HKLM-x32\...\Steam App 55110) (Version: - Volition)
    Remote Graphics Receiver (HKLM-x32\...\{16FC3056-90C0-4757-8A68-64D8DA846ADA}) (Version: 5.4.5 - Hewlett-Packard)
    Reprisal version 1.3.1 (HKLM-x32\...\{4E07955B-3507-4A1D-A353-56456E0AC948}_is1) (Version: 1.3.1 - Electrolyte / Last17)
    Rising Storm/Red Orchestra 2 Multiplayer (HKLM-x32\...\Steam App 35450) (Version: - Tripwire Interactive)
    Robocraft (HKLM-x32\...\Steam App 301520) (Version: - Freejam)
    Rocksmith 2014 (HKLM-x32\...\Steam App 221680) (Version: - Ubisoft - San Francisco)
    Rogue Legacy (HKLM-x32\...\Steam App 241600) (Version: - Cellar Door Games)
    RollerCoaster Tycoon 3: Platinum (x32 Version: 2.2.0.98 - WildTangent) Hidden
    Saints Row: The Third (HKLM-x32\...\Steam App 55230) (Version: - Volition)
    Sanctum 2 (HKLM-x32\...\Steam App 210770) (Version: - Coffee Stain Studios)
    Shatter (HKLM-x32\...\{84D008A6-8159-442E-8FD8-0148EF42F3E0}) (Version: 1.0.5 - Sidhe Interactive)
    Sid Meier's Civilization IV (HKLM-x32\...\Steam App 3900) (Version: - Firaxis Games)
    Sid Meier's Civilization V (HKLM-x32\...\Civilization V) (Version: - 2K Games, Inc.)
    Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version: - 2K Games, Inc.)
    Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
    SlimDX SDK (September 2011) (HKLM-x32\...\{37542828-0F05-4BAA-BEB7-B633F27D3E7B}) (Version: 2.0.12.43 - SlimDX Group)
    Smart Technology Programming Software 7.0.2.7 (HKLM\...\{6D41B4C4-FCD7-4F9B-99B9-A01F63F71F0F}) (Version: 7.0.2.7 - Mad Catz)
    Solar 2 (HKLM-x32\...\Steam App 97000) (Version: - Murudai)
    Space Engineers (HKLM-x32\...\Steam App 244850) (Version: - Keen Software House)
    SPACECOM (HKLM-x32\...\Steam App 263860) (Version: - Flow Combine)
    Spec Ops: The Line (HKLM-x32\...\Steam App 50300) (Version: - YAGER)
    Spot (HKLM-x32\...\{3D171340-B528-42E0-92E4-BDA7AEEF6F32}_is1) (Version: 1.0.0.0 - XM Asia Pacific Pte Ltd)
    Spotify (HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\Spotify) (Version: 1.0.9.133.gcedaee38 - Spotify AB)
    Starbound (HKLM-x32\...\Steam App 211820) (Version: - )
    StarCitizen (HKLM-x32\...\StarCitizen) (Version: 1.0 - Cloud Imperium Games)
    StarCraft II (HKLM-x32\...\StarCraft II) (Version: 2.0.7.25293 - Blizzard Entertainment)
    Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
    swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
    Tabletop Simulator (HKLM-x32\...\Steam App 286160) (Version: - Berserk Games)
    Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
    TeamSpeak 3 Client (HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\TeamSpeak 3 Client) (Version: 3.0.15 - TeamSpeak Systems GmbH)
    The Banner Saga (HKLM-x32\...\Steam App 237990) (Version: - Stoic)
    The Binding of Isaac (HKLM-x32\...\Steam App 113200) (Version: - )
    The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios)
    The Mighty Quest For Epic Loot version 1.210372 (HKLM-x32\...\The Mighty Quest For Epic Loot_is1) (Version: 1.210372 - )
    The Sims 2: Ultimate Collection (HKLM-x32\...\{04450C18-F039-4B81-A621-70C3B0F523D5}) (Version: 1.0.0.0 - Electronic Arts)
    The Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts)
    The Sims™ 3 High-End Loft Stuff (HKLM-x32\...\{71828142-5A24-4BD0-97E7-976DA08CE6CF}) (Version: 3.0.38 - Electronic Arts)
    The Sims™ 3 Late Night (HKLM-x32\...\{45057FCE-5784-48BE-8176-D9D00AF56C3C}) (Version: 6.5.1 - Electronic Arts)
    The Treasures of Mystery Island: The Ghost Ship (x32 Version: 2.2.0.98 - WildTangent) Hidden
    The Witcher 2: Assassins of Kings Enhanced Edition (HKLM-x32\...\Steam App 20920) (Version: - CD Projekt RED)
    The Witcher 2: Bonus Content (HKLM-x32\...\Steam App 20930) (Version: - )
    The Witcher 3: Wild Hunt (HKLM-x32\...\Steam App 292030) (Version: - CD PROJEKT RED)
    Theme Hospital (HKLM-x32\...\{5118A4C2-C8A4-4CE5-AC37-F3E51C25402F}) (Version: 3.0.0.2 - Electronic Arts)
    Tom Clancy's Ghost Recon Phantoms - NA (HKLM-x32\...\Steam App 243870) (Version: - Ubisoft Singapore)
    Tom Clancy's Splinter Cell Blacklist (HKLM-x32\...\Steam App 235600) (Version: - Ubisoft Toronto)
    Tom Clancy's Splinter Cell: Conviction (HKLM-x32\...\Steam App 33220) (Version: - Ubisoft)
    Tomb Raider (HKLM-x32\...\Steam App 203160) (Version: - Crystal Dynamics)
    Torchlight (HKLM-x32\...\Torchlight_is1) (Version: - GOG.com)
    Torchlight (x32 Version: 2.2.0.98 - WildTangent) Hidden
    TSHostedAppLauncher (x32 Version: 5.1.15.0 - Hewlett-Packard) Hidden
    Tunngle beta (HKLM-x32\...\Tunngle beta_is1) (Version: - Tunngle.net GmbH)
    Unity Web Player (HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\UnityWebPlayer) (Version: 4.6.2f1 - Unity Technologies ApS)
    Universe Sandbox (HKLM-x32\...\Steam App 72200) (Version: - Giant Army)
    Unturned (HKLM-x32\...\Steam App 304930) (Version: - Nelson Sexton)
    Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
    Uplay (HKLM-x32\...\Uplay) (Version: 3.0 - Ubisoft)
    Verdun (HKLM-x32\...\Steam App 242860) (Version: - M2H)
    Virtual Villagers 4 - The Tree of Life (x32 Version: 2.2.0.98 - WildTangent) Hidden
    Viscera Cleanup Detail (HKLM-x32\...\Steam App 246900) (Version: - RuneStorm)
    Viscera Cleanup Detail: alpha v0.25
    VLC media player 2.0.4 (HKLM-x32\...\VLC media player) (Version: 2.0.4 - VideoLAN)
    War of the Roses Balance Beta (HKLM-x32\...\Steam App 206980) (Version: - )
    War of the Roses: Kingmaker (HKLM-x32\...\Steam App 42160) (Version: - Fatshark)
    War Thunder (HKLM-x32\...\Steam App 236390) (Version: - Gaijin Entertainment)
    Warface Launcher (Beta) (HKLM-x32\...\{28D1723C-31C4-4A83-9799-DFFB3739026D}) (Version: 1.0.0 - Crytek GmbH)
    Warframe (HKLM-x32\...\Steam App 230410) (Version: - )
    WildTangent Games App (HP Games) (x32 Version: 4.0.5.32 - WildTangent) Hidden
    Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
    WinRAR 4.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
    World of Guns: Gun Disassembly (HKLM-x32\...\Steam App 262410) (Version: - Noble Empire Corp.)
    World of Tanks (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812NA}_is1) (Version: - Wargaming.net)
    Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org)
    XSplit (HKLM-x32\...\{D68006E1-F774-4504-9ECF-03B67793C475}) (Version: 1.1.1210.3101 - SplitMediaLabs)
    Zumas Revenge (HKLM-x32\...\{0B153CAB-792B-4CA2-B2A5-AB0BBAF2FFA9}) (Version: 1.0.5.600 - PopCap Games)
    Zuma's Revenge (x32 Version: 2.2.0.98 - WildTangent) Hidden

    ==================== Custom CLSID (Whitelisted): ==========================

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Lukaas\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll No File
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Lukaas\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll No File
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\Lukaas\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll No File
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Lukaas\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll No File
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\Lukaas\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll (Google Inc.)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Lukaas\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll No File
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Lukaas\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Lukaas\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Lukaas\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll No File
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Lukaas\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll No File
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Lukaas\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll (Google Inc.)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Lukaas\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Lukaas\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\FileSyncApi64.dll (Microsoft Corporation)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\Lukaas\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll No File

    ==================== Restore Points =========================

    02-09-2015 22:43:09 Windows Update
    05-09-2015 19:04:29 Restore Operation
    05-09-2015 19:45:59 Windows Update

    ==================== Hosts content: ===============================

    (If needed Hosts: directive could be included in the fixlist to reset Hosts.)

    2009-07-13 22:34 - 2009-06-10 17:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts

    ==================== Scheduled Tasks (Whitelisted) =============

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

    Task: {02074321-A14B-47BB-B4FE-05394B82CA7A} - System32\Tasks\HPCustParticipation HP ENVY 4500 series => C:\Program Files\HP\HP ENVY 4500 series\Bin\HPCustPartic.exe [2014-07-21] (Hewlett-Packard Development Company, LP)
    Task: {1D7B3981-14C4-46CA-8EEF-AC7357C1B9B6} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2015-08-19] (Overwolf LTD)
    Task: {23BF593E-A499-413A-B22D-79B60CFB7859} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
    Task: {24CB76C7-BB08-4676-95BB-DA34DAEDA6BB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)
    Task: {2BFFCE24-15F4-481A-A28B-96F6B91A0644} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2015-07-31] (Hewlett-Packard)
    Task: {363CE489-6D9C-4EEA-84CF-521F706F9AFB} - System32\Tasks\HPCeeScheduleForLukaas => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard)
    Task: {37BD3EAD-8278-4538-B226-2EAF814D19BD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
    Task: {4E044B32-825F-4539-BF32-6B5C2FED158E} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2797903042-380184562-4160340280-1001Core => C:\Users\Lukaas\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-29] (Dropbox, Inc.)
    Task: {615DBB64-A5CD-4596-B385-540AF1D14384} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
    Task: {70236258-181F-46B0-983B-CABF6FEAFB30} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_CN47O1554G => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2015-07-31] (Hewlett-Packard)
    Task: {72C162F3-3AF9-4DB6-AF68-5B83B5B6AECF} - System32\Tasks\{8BB1EC30-6503-403A-A3C1-9A89AA67C785} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{3E31400D-274E-4647-916C-2CACC3741799}\ENPSETUP.exe" -c -runfromtemp -l0x0009 -EPSON -removeonly
    Task: {79AE8822-FD61-418B-935E-F96B2A000BEE} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe invagent.dll,RunUpdate -noappraiser
    Task: {8F06F840-035F-4124-B3B6-0FEBD6092B3D} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2797903042-380184562-4160340280-1001UA => C:\Users\Lukaas\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
    Task: {A5385E8A-71D9-430E-934D-F4187E13DCD4} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
    Task: {A780EA3A-DE80-4046-B0A9-A88CCCEB2944} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2797903042-380184562-4160340280-1001Core => C:\Users\Lukaas\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
    Task: {C5B61A5B-21A5-47F2-B8A7-FFFBF6E3B17B} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\SymErr.exe [2011-08-11] (Symantec Corporation)
    Task: {CAE74635-6184-48A2-A1B8-5E42BBA59F64} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-05-13] (Adobe Systems Incorporated)
    Task: {CED44C92-504A-43C9-94D2-02308E51B02C} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2797903042-380184562-4160340280-1001UA => C:\Users\Lukaas\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-29] (Dropbox, Inc.)
    Task: {E003BE13-CBCA-4447-A93D-41C3AC1F3A3C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
    Task: {E15EADB7-45B2-42B9-9A85-DB672D956B6D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2015-07-31] (Hewlett-Packard)
    Task: {E3978B40-B3D2-40DC-8CDF-1493B03D9217} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\WSCStub.exe [2011-08-13] (Symantec Corporation)
    Task: {E4CA394A-B134-406E-9224-51DD31A2AEEB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
    Task: {E6271557-94CB-4DA9-A20B-5AABE850891B} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\SymErr.exe [2011-08-11] (Symantec Corporation)

    (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

    Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
    Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2797903042-380184562-4160340280-1001Core.job => C:\Users\Lukaas\AppData\Local\Dropbox\Update\DropboxUpdate.exe
    Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2797903042-380184562-4160340280-1001UA.job => C:\Users\Lukaas\AppData\Local\Dropbox\Update\DropboxUpdate.exe
    Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2797903042-380184562-4160340280-1001Core.job => C:\Users\Lukaas\AppData\Local\Google\Update\GoogleUpdate.exe
    Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2797903042-380184562-4160340280-1001UA.job => C:\Users\Lukaas\AppData\Local\Google\Update\GoogleUpdate.exe
    Task: C:\Windows\Tasks\HPCeeScheduleForLukaas.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

    ==================== Loaded Modules (Whitelisted) ==============

    2015-01-20 23:35 - 2015-01-20 23:35 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
    2015-05-15 16:26 - 2015-05-15 16:26 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
    2015-02-22 20:48 - 2015-02-22 20:48 - 00076152 _____ () C:\Windows\system32\PnkBstrA.exe
    2015-05-15 16:26 - 2015-05-15 16:26 - 00306984 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxslt.dll
    2015-09-06 21:57 - 2015-09-06 21:58 - 00380416 _____ () C:\Users\Lukaas\Downloads\bjcejsqc.exe
    2012-04-30 03:55 - 2012-04-30 03:55 - 08358400 _____ () C:\Program Files (x86)\SplitMediaLabs\XSplit\avcodec-54.dll
    2012-04-30 03:55 - 2012-04-30 03:55 - 00151040 _____ () C:\Program Files (x86)\SplitMediaLabs\XSplit\avutil-51.dll
    2012-04-30 03:55 - 2012-04-30 03:55 - 01152512 _____ () C:\Program Files (x86)\SplitMediaLabs\XSplit\avformat-54.dll
    2012-04-30 03:55 - 2012-04-30 03:55 - 00333824 _____ () C:\Program Files (x86)\SplitMediaLabs\XSplit\swscale-2.dll
    2012-04-30 03:55 - 2012-04-30 03:55 - 00026112 _____ () C:\Program Files (x86)\SplitMediaLabs\XSplit\swresample-0.dll
    2015-09-01 17:35 - 2015-08-27 20:17 - 01501512 _____ () C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\45.0.2454.85\libglesv2.dll
    2015-09-01 17:35 - 2015-08-27 20:17 - 00081224 _____ () C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\45.0.2454.85\libegl.dll
    2015-05-15 16:27 - 2015-05-15 16:27 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
    2014-01-20 14:17 - 2014-01-20 14:17 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
    2015-09-01 17:35 - 2015-08-27 20:17 - 16393032 _____ () C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\45.0.2454.85\PepperFlash\pepflashplayer.dll

    ==================== Alternate Data Streams (Whitelisted) =========

    (If an entry is included in the fixlist, only the ADS will be removed.)


    ==================== Safe Mode (Whitelisted) ===================

    (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

    HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

    ==================== EXE Association (Whitelisted) ===============

    (If an entry is included in the fixlist, the registry item will be restored to default or removed.)


    ==================== Internet Explorer trusted/restricted ===============

    (If an entry is included in the fixlist, it will be removed from the registry.)

    IE trusted site: HKU\.DEFAULT\...\clonewarsadventures.com -> clonewarsadventures.com
    IE trusted site: HKU\.DEFAULT\...\freerealms.com -> freerealms.com
    IE trusted site: HKU\.DEFAULT\...\soe.com -> soe.com
    IE trusted site: HKU\.DEFAULT\...\sony.com -> sony.com
    IE trusted site: HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\sony.com -> sony.com
     
  5. Lukaas Hendrix

    Lukaas Hendrix TS Rookie Topic Starter Posts: 27

    ==================== Other Areas ============================

    (Currently there is no automatic fix for this section.)

    HKU\S-1-5-21-2797903042-380184562-4160340280-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Lukaas\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
    DNS Servers: 75.75.76.76 - 75.75.75.75
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
    Windows Firewall is enabled.

    ==================== MSCONFIG/TASK MANAGER disabled items ==

    (Currently there is no automatic fix for this section.)

    MSCONFIG\Services: AdobeARMservice => 2
    MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
    MSCONFIG\Services: AESTFilters => 2
    MSCONFIG\Services: AMD External Events Utility => 2
    MSCONFIG\Services: AMD_RAIDXpert => 2
    MSCONFIG\Services: Apple Mobile Device => 2
    MSCONFIG\Services: Bonjour Service => 2
    MSCONFIG\Services: BRSptSvc => 3
    MSCONFIG\Services: btwdins => 2
    MSCONFIG\Services: CalendarSynchService => 2
    MSCONFIG\Services: CLKMSVC10_38F51D56 => 2
    MSCONFIG\Services: Ds3Service => 2
    MSCONFIG\Services: EpsonBidirectionalService => 2
    MSCONFIG\Services: GamesAppService => 3
    MSCONFIG\Services: Hamachi2Svc => 2
    MSCONFIG\Services: HP Support Assistant Service => 2
    MSCONFIG\Services: HPClientSvc => 2
    MSCONFIG\Services: hpqwmiex => 3
    MSCONFIG\Services: iPod Service => 3
    MSCONFIG\Services: LMIGuardianSvc => 2
    MSCONFIG\Services: PanService => 2
    MSCONFIG\Services: pdfcDispatcher => 2
    MSCONFIG\Services: SkypeUpdate => 2
    MSCONFIG\Services: STacSV => 2
    MSCONFIG\Services: Steam Client Service => 3
    MSCONFIG\Services: TunngleService => 3
    MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Audible Download Manager.lnk => C:\Windows\pss\Audible Download Manager.lnk.CommonStartup
    MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk => C:\Windows\pss\Bluetooth.lnk.CommonStartup
    MSCONFIG\startupfolder: C:^Users^Lukaas^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
    MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
    MSCONFIG\startupreg: CrossHair => C:\Program Files (x86)\CrossHair\CrossHair.exe
    MSCONFIG\startupreg: EADM => "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
    MSCONFIG\startupreg: EEventManager => C:\PROGRA~2\EPSONS~1\EVENTM~1\EEventManager.exe
    MSCONFIG\startupreg: F.lux => "C:\Users\Lukaas\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
    MSCONFIG\startupreg: Google Update => "C:\Users\Lukaas\AppData\Local\Google\Update\GoogleUpdate.exe" /c
    MSCONFIG\startupreg: HP Software Update => c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
    MSCONFIG\startupreg: hpsysdrv => c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe
    MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
    MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
    MSCONFIG\startupreg: MSC => "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
    MSCONFIG\startupreg: PDF Complete => C:\Program Files (x86)\PDF Complete\pdfsty.exe
    MSCONFIG\startupreg: ProfilerU => C:\Program Files\Saitek\SD6\Software\ProfilerU.exe
    MSCONFIG\startupreg: RaidCall => C:\Program Files (x86)\RaidCall\raidcall.exe
    MSCONFIG\startupreg: SaiMfd => C:\Program Files\Saitek\SD6\Software\SaiMfd.exe
    MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
    MSCONFIG\startupreg: Spotify => "C:\Users\Lukaas\AppData\Roaming\Spotify\spotify.exe" /uri spotify:autostart
    MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Lukaas\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
    MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
    MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
    MSCONFIG\startupreg: SysTrayApp => C:\Program Files\IDT\WDM\sttray64.exe
    MSCONFIG\startupreg: WorkForce 310(Network) => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIFHA.EXE /FU "C:\Windows\TEMP\E_SA8FE.tmp" /EF "HKCU"

    ==================== FirewallRules (Whitelisted) ===============

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

    FirewallRules: [{D4996055-0B48-4C0B-866A-A93745C6B972}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\Remote Graphics Receiver\rgreceiver.exe
    FirewallRules: [{28FF9851-0E9D-4FCA-9737-3595A6BC3638}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\Remote Graphics Receiver\rgreceiver.exe
    FirewallRules: [{2BAE89BE-6CC6-4D5B-852B-A42329166451}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP LinkUp\HP LinkUp Viewer.exe
    FirewallRules: [{3EB272D2-92A6-460D-8BA0-73194B3647CF}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP LinkUp\HP LinkUp Viewer.exe
    FirewallRules: [{B23D18A7-140B-40AA-AC66-D9353295EB11}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
    FirewallRules: [{921CD059-7A81-4A45-98F4-077B278C53CE}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
    FirewallRules: [TCP Query User{BDCAFCE4-0753-4CFE-995F-AEF1F3A8771F}C:\users\lukaas\appdata\local\temp\gw2.exe] => (Allow) C:\users\lukaas\appdata\local\temp\gw2.exe
    FirewallRules: [UDP Query User{E0BFCA18-E3FE-45F0-8C84-55100CDBBCEF}C:\users\lukaas\appdata\local\temp\gw2.exe] => (Allow) C:\users\lukaas\appdata\local\temp\gw2.exe
    FirewallRules: [TCP Query User{0C64B286-7B01-4139-83EC-711224EB5058}C:\program files (x86)\guild wars 2\gw2.exe] => (Allow) C:\program files (x86)\guild wars 2\gw2.exe
    FirewallRules: [UDP Query User{1AE51FA7-BF78-4F6D-B403-197BE38EDF1C}C:\program files (x86)\guild wars 2\gw2.exe] => (Allow) C:\program files (x86)\guild wars 2\gw2.exe
    FirewallRules: [{033520FE-DE2D-46FB-B66C-D5458A2CD856}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
    FirewallRules: [{B7A612B6-6A37-43F0-ABD8-27B161E7DACC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
    FirewallRules: [{104BF874-41C3-433E-877B-FE6A52C16A87}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
    FirewallRules: [{0F18AD24-7FF3-45CE-B846-59121FE6D835}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
    FirewallRules: [{1CABCE0B-E9DF-43F4-BED2-41FFB6E1AD35}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
    FirewallRules: [{B82D0A8E-C2D5-42BC-BEA2-AF632F5D8A6F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
    FirewallRules: [{E98F8955-410B-4419-829E-538FC8DE0A55}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
    FirewallRules: [TCP Query User{F538BE0C-93F0-44FA-8903-DA279124C185}C:\users\lukaas\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\lukaas\appdata\roaming\spotify\spotify.exe
    FirewallRules: [UDP Query User{F5A6CE1B-6D14-4D8B-B6FE-3452184EEE88}C:\users\lukaas\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\lukaas\appdata\roaming\spotify\spotify.exe
    FirewallRules: [TCP Query User{462ED170-79FD-4E32-8855-17979CAA6446}C:\users\lukaas\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\lukaas\appdata\roaming\spotify\spotify.exe
    FirewallRules: [UDP Query User{A42B5DC1-EC53-4902-BF76-0BB43187B67E}C:\users\lukaas\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\lukaas\appdata\roaming\spotify\spotify.exe
    FirewallRules: [{696906A4-4C9D-471A-BDD9-A4537B6BEE86}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\alien swarm\swarm.exe
    FirewallRules: [{B038DDCC-D01B-4652-97A0-50CF5F1E7D3D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\alien swarm\swarm.exe
    FirewallRules: [{027F46DE-2649-4492-8F01-8899C933EC8A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dead Space 2\Support\EA Help\Electronic_Arts_Technical_Support.htm
    FirewallRules: [{CFEF34BF-3903-4A38-B65E-4805E65CF0C4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dead Space 2\Support\EA Help\Electronic_Arts_Technical_Support.htm
    FirewallRules: [{24F27A56-FA29-4CA3-BDD3-40EB44ACD680}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\alien swarm\srcds.exe
    FirewallRules: [{DAFD95D5-52D1-4D52-A632-F2AABF4D6C6D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\alien swarm\srcds.exe
    FirewallRules: [{E5F60A5C-106F-4A1A-A11D-FB4FAF3D0D66}] => (Allow) C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
    FirewallRules: [{D89FD2BE-9A9F-43F6-B07E-CDB1179337A2}] => (Allow) C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
    FirewallRules: [{46EB6BE8-6411-49F9-B0DA-3482A5BC7129}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
    FirewallRules: [{F397C9BB-CF6E-4304-BA4E-883A90477566}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
    FirewallRules: [{0DC951CE-97D5-4C68-ADF6-189CD37AF685}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the witcher 2\BonusContent\launch.bat
    FirewallRules: [{4F45E136-95C9-4B6C-A1C7-743DDA43CC1B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the witcher 2\BonusContent\launch.bat
    FirewallRules: [{F0FFB06A-38CF-4676-865B-9325CE8074AD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\company of heroes\RelicCOH.exe
    FirewallRules: [{6C974325-346A-4619-BED5-1AD64922491F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\company of heroes\RelicCOH.exe
    FirewallRules: [{ACC2693F-EE4D-423A-BFF2-68D4189ACC9E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Darksiders\DarksidersPC.exe
    FirewallRules: [{09788E06-EDCF-466D-B759-9A912C2B8663}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Darksiders\DarksidersPC.exe
    FirewallRules: [{FB6A1645-3FDA-4616-BC7B-173C42F8B7AD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Metro 2033\metro2033.exe
    FirewallRules: [{5D5C171D-CB50-4C5D-B8E8-66B02E7128AA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Metro 2033\metro2033.exe
    FirewallRules: [{467734A7-7ACB-4228-B498-45745F3C8E6F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\saints row the third\game_launcher.exe
    FirewallRules: [{60B7731D-27F6-42E2-9C32-3FEE9ED7BC49}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\saints row the third\game_launcher.exe
    FirewallRules: [{77795077-0FD4-46F4-B8C3-C0090C536CFB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\saints row the third\saintsrowthethird.exe
    FirewallRules: [{E23143B3-D46A-4283-A90A-1DBFAA363201}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\saints row the third\saintsrowthethird.exe
    FirewallRules: [{0C52A199-6271-4039-B3A0-63032DABDAD3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\saints row the third\saintsrowthethird_dx11.exe
    FirewallRules: [{1551B82B-8766-419A-8242-C1E84546256B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\saints row the third\saintsrowthethird_dx11.exe
    FirewallRules: [TCP Query User{61658698-41AD-49CF-BD99-5356EB274054}C:\users\public\sony online entertainment\installed games\planetside 2\planetside2.exe] => (Allow) C:\users\public\sony online entertainment\installed games\planetside 2\planetside2.exe
    FirewallRules: [UDP Query User{4498EF5B-74B0-4A95-A485-82217938CA7D}C:\users\public\sony online entertainment\installed games\planetside 2\planetside2.exe] => (Allow) C:\users\public\sony online entertainment\installed games\planetside 2\planetside2.exe
    FirewallRules: [TCP Query User{6E2A0BC1-E68A-4F68-B9E4-4F8B16FCA96F}C:\program files (x86)\steam\steamapps\common\company of heroes\relicdownloader\relicdownloader.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\company of heroes\relicdownloader\relicdownloader.exe
    FirewallRules: [UDP Query User{CBAA6E71-D8DC-4FFF-8622-49AEA6154DCC}C:\program files (x86)\steam\steamapps\common\company of heroes\relicdownloader\relicdownloader.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\company of heroes\relicdownloader\relicdownloader.exe
    FirewallRules: [{428259CB-2E59-46B2-AA75-495A1A208610}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Realm of the Mad God\Realm of the Mad God.exe
    FirewallRules: [{9DE7E1D3-68B6-45ED-ACAB-7BFD6B1F41D8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Realm of the Mad God\Realm of the Mad God.exe
    FirewallRules: [{8C94F860-31CB-4854-9A11-F713D434BB00}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\red faction armageddon\RedFactionArmageddon.exe
    FirewallRules: [{E4F319DE-E2D8-48E5-AA21-34E7F3CB4417}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\red faction armageddon\RedFactionArmageddon.exe
    FirewallRules: [{35585DA3-5786-4601-9699-D59941336609}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\red faction armageddon\RedFactionArmageddon_DX11.exe
    FirewallRules: [{6C384D7A-22C7-4500-A634-C83115D5D91E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\red faction armageddon\RedFactionArmageddon_DX11.exe
    FirewallRules: [{CD14864E-A0AD-4647-972F-6CC2449B99E5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\red faction armageddon\rf4_launcher.exe
    FirewallRules: [{2F790DA4-6126-461E-8E97-53B9014D8A1A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\red faction armageddon\rf4_launcher.exe
    FirewallRules: [TCP Query User{7CD5F0B0-CB00-4CEB-9AE1-0DF961A9E2A5}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe
     
  6. Lukaas Hendrix

    Lukaas Hendrix TS Rookie Topic Starter Posts: 27

    FirewallRules: [UDP Query User{21041DF9-4F37-4254-91BC-566B5F3B2712}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe
    FirewallRules: [TCP Query User{6B11C1FE-2678-417A-AF5E-0885CB0F0095}C:\users\lukaas\downloads\utorrent.exe] => (Allow) C:\users\lukaas\downloads\utorrent.exe
    FirewallRules: [UDP Query User{A10C681F-4069-4D50-973E-7BCE136E4AAF}C:\users\lukaas\downloads\utorrent.exe] => (Allow) C:\users\lukaas\downloads\utorrent.exe
    FirewallRules: [TCP Query User{E857BD12-8FCC-43AE-A570-83AAC2FFEB65}C:\program files (x86)\meteorentertainment\hawken\installedhawkenfiles\binaries\win32\hawkengame-win32-shipping.exe] => (Allow) C:\program files (x86)\meteorentertainment\hawken\installedhawkenfiles\binaries\win32\hawkengame-win32-shipping.exe
    FirewallRules: [UDP Query User{577C387A-21BD-42A5-8CAD-3EDDD8E2956E}C:\program files (x86)\meteorentertainment\hawken\installedhawkenfiles\binaries\win32\hawkengame-win32-shipping.exe] => (Allow) C:\program files (x86)\meteorentertainment\hawken\installedhawkenfiles\binaries\win32\hawkengame-win32-shipping.exe
    FirewallRules: [{EBDBC10D-FABE-4966-B31A-D736B3E272B1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpecOps_TheLine\Binaries\Win32\SpecOpsTheLine.exe
    FirewallRules: [{C4ACBCAC-4DD7-4B9A-9CC2-6AD3A404911F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpecOps_TheLine\Binaries\Win32\SpecOpsTheLine.exe
    FirewallRules: [{AB1D5614-5E08-42A9-A896-D675C17EF822}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BioShock 2\SP\Builds\Binaries\Bioshock2Launcher.exe
    FirewallRules: [{F5C9DB30-0428-4C93-8843-884353CC8FD5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BioShock 2\SP\Builds\Binaries\Bioshock2Launcher.exe
    FirewallRules: [{678C70C1-1711-4618-B4FF-CF79DA0D4416}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BioShock 2\MP\Builds\Binaries\Bioshock2Launcher.exe
    FirewallRules: [{001A2F8A-990F-4364-9940-85B34D025E05}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BioShock 2\MP\Builds\Binaries\Bioshock2Launcher.exe
    FirewallRules: [{869CE41F-EF67-4F92-9A20-60EC4B6CCB41}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Bioshock\Builds\Release\Bioshock.exe
    FirewallRules: [{4846C8E3-D07F-485F-A889-0B7D2C13A5D4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Bioshock\Builds\Release\Bioshock.exe
    FirewallRules: [{2A9D9DC1-CCFA-4377-A453-B1B10FC9BF37}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the witcher 2\Launcher.exe
    FirewallRules: [{0F12F24F-214E-4563-B87B-68F090DA89BE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the witcher 2\Launcher.exe
    FirewallRules: [{6A5CA024-38CA-400C-B59D-2615C81A22D6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the binding of isaac\Isaac.exe
    FirewallRules: [{EE518124-A3D5-4AAA-856F-D965FBD4FDC7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the binding of isaac\Isaac.exe
    FirewallRules: [TCP Query User{7D0640B2-00F1-49C1-A78D-CFD8D364A090}C:\program files (x86)\raidcall\raidcall.exe] => (Allow) C:\program files (x86)\raidcall\raidcall.exe
    FirewallRules: [UDP Query User{BE34A85F-6BDD-4D40-90B5-C9210A4DC532}C:\program files (x86)\raidcall\raidcall.exe] => (Allow) C:\program files (x86)\raidcall\raidcall.exe
    FirewallRules: [{817DD582-D63C-4444-BEF0-8AF4FA972141}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Splinter Cell Conviction\src\system\conviction_game.exe
    FirewallRules: [{878F2411-0AC1-4012-A3BD-368647195914}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Splinter Cell Conviction\src\system\conviction_game.exe
    FirewallRules: [{5C3F40D2-899A-439B-AA45-96B73DAFC125}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeons of Dredmor\Dungeons of Dredmor.exe
    FirewallRules: [{65583B40-C06D-4689-AC14-C39DEA6878FC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeons of Dredmor\Dungeons of Dredmor.exe
    FirewallRules: [{644EB9AC-5522-491C-A6E1-7E2086BFE466}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeon Defenders\Binaries\Win32\DungeonDefenders.exe
    FirewallRules: [{9B4AE1AB-619C-4B46-805C-1DAB6F934044}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeon Defenders\Binaries\Win32\DungeonDefenders.exe
    FirewallRules: [TCP Query User{6C8E5611-620C-4E53-A080-BBB0EF154410}C:\program files (x86)\steam\steamapps\common\tom clancy's splinter cell conviction\src\system\uplaybrowser.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\tom clancy's splinter cell conviction\src\system\uplaybrowser.exe
    FirewallRules: [UDP Query User{4F395F58-D239-4B37-B6A4-A12216CCBBC9}C:\program files (x86)\steam\steamapps\common\tom clancy's splinter cell conviction\src\system\uplaybrowser.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\tom clancy's splinter cell conviction\src\system\uplaybrowser.exe
    FirewallRules: [{D435B770-F8C5-4557-808D-CF3C12488177}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the witcher 2\launch.bat
    FirewallRules: [{217C2D26-003B-4CB1-9E82-92760403BCEE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the witcher 2\launch.bat
    FirewallRules: [{67423C36-ADDA-4F62-9FD0-89F77B7778E8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\10000000\10000000.exe
    FirewallRules: [{33C5B92A-53F8-423B-ABB3-F2341F543FA1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\10000000\10000000.exe
    FirewallRules: [{7997978E-DD80-4304-8FBD-0EE26C2F1EE3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis III - Complete\eu3game.exe
    FirewallRules: [{4137E214-BEDF-43FA-BD46-39042022E17A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis III - Complete\eu3game.exe
    FirewallRules: [{8E32B991-7F6A-49D6-AE4C-7B99E7879C79}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\GunsOfIcarusOnline.exe
    FirewallRules: [{9F2C5827-AF4E-4700-AB42-01BB99BAB16B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\GunsOfIcarusOnline.exe
    FirewallRules: [{A936780E-0608-4886-BF0E-6BB418336C61}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\cities xl 2011\CitiesXL.exe
    FirewallRules: [{1B0A4BD8-D35F-4D9B-A67F-0B5B2A9A062D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\cities xl 2011\CitiesXL.exe
    FirewallRules: [{E06F72EE-FE31-47F7-9C0A-34D909D7AA60}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\cities xl 2011\CitiesXL_2011.exe
    FirewallRules: [{228019B3-90F5-4E24-A229-A9D697D5998B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\cities xl 2011\CitiesXL_2011.exe
    FirewallRules: [{64973A2B-DB7C-4B5B-9D10-3DB63E2E92EE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\UDK.exe
    FirewallRules: [{F6722DFF-E5E6-4DC7-A98B-306320A29F09}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\UDK.exe
    FirewallRules: [{D5FB22B2-1B6B-453E-BD94-51A12519E208}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half Minute Hero\HMH.exe
    FirewallRules: [{525723AA-2C9A-4F9D-9F64-51A556309032}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half Minute Hero\HMH.exe
    FirewallRules: [{627B8DA1-DB04-446F-B6D0-016AE629D244}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\strikesuitzero\pc\main\Binary\SSZ.exe
    FirewallRules: [{87F15387-5B00-4B35-A598-73722312EAE0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\strikesuitzero\pc\main\Binary\SSZ.exe
    FirewallRules: [{AFCC1D7A-5B6B-426A-B794-A3F4045914A7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MinerWars\MinerWars.exe
    FirewallRules: [{F7AE0ED4-1713-4850-8372-B9284F32458A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MinerWars\MinerWars.exe
    FirewallRules: [{17C4D2C6-D5BB-4250-9F5E-65CF13D646F1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stronghold Kingdoms\StrongholdKingdoms.exe
    FirewallRules: [{0E16F2FB-B14A-4B10-9EBA-80A1E1A224A3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stronghold Kingdoms\StrongholdKingdoms.exe
    FirewallRules: [{57FC696A-3EC5-41E7-9E87-68016242D2F5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AirMech\AirMech.exe
    FirewallRules: [{91B0317F-9A60-45F7-A37A-770CF54F1332}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AirMech\AirMech.exe
    FirewallRules: [{62F58254-6DF0-4FF7-9D26-F06659D7FC3E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeonland\dungeonland.exe
    FirewallRules: [{8C51A8CC-C33F-4DD3-A115-7CB338A9E758}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeonland\dungeonland.exe
    FirewallRules: [{6800185B-E85A-41D5-9AA4-FD292C549155}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Awesomenauts\AwesomenautsLauncher.exe
    FirewallRules: [{017C5347-9F05-4ECE-A417-C55D14AFF2A4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Awesomenauts\AwesomenautsLauncher.exe
    FirewallRules: [{ED5F5AA8-72DD-4C1A-966E-1A3F938B9F4B}] => (Allow) C:\ProgramData\HappyCloud\Cache\TERA\TERA-Launcher.exe
    FirewallRules: [{B977EF4E-C76F-419B-A13A-40C1C6A950A6}] => (Allow) C:\ProgramData\HappyCloud\Cache\TERA\TERA-Launcher.exe
    FirewallRules: [{3108E091-29E0-41D5-933D-EACCA853E262}] => (Allow) C:\ProgramData\HappyCloud\Cache\TERA\Client\TL.exe
    FirewallRules: [{C3E60943-3D2F-4E48-BDD1-936B94D28A14}] => (Allow) C:\ProgramData\HappyCloud\Cache\TERA\Client\TL.exe
    FirewallRules: [{417063F6-A38C-4815-91BC-51EF2E9EF41D}] => (Allow) C:\ProgramData\HappyCloud\Cache\TERA\Client\Binaries\TERA.exe
    FirewallRules: [{3ABD07F1-A425-4706-A407-5E72DC32C628}] => (Allow) C:\ProgramData\HappyCloud\Cache\TERA\Client\Binaries\TERA.exe
    FirewallRules: [TCP Query User{5863AFEB-F8E9-4FBC-8497-4E1801B21C4A}C:\users\lukaas\downloads\utorrent.exe] => (Allow) C:\users\lukaas\downloads\utorrent.exe
    FirewallRules: [UDP Query User{8443C407-DDA3-414E-A7AD-65FE8E3A6E08}C:\users\lukaas\downloads\utorrent.exe] => (Allow) C:\users\lukaas\downloads\utorrent.exe
    FirewallRules: [{432A6F0B-F010-4AEB-82C2-C15D31F15FF0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Solar 2\Solar2.exe
    FirewallRules: [{EADA492C-CDAD-494B-B8DA-86ED3839F334}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Solar 2\Solar2.exe
    FirewallRules: [TCP Query User{5DD5E194-7658-4FFB-B4F7-6D27C2DA1AE9}C:\users\public\sony online entertainment\installed games\planetside 2\planetside2.exe] => (Allow) C:\users\public\sony online entertainment\installed games\planetside 2\planetside2.exe
    FirewallRules: [UDP Query User{131F3FEE-69C2-46D0-AC41-24E8D5584F34}C:\users\public\sony online entertainment\installed games\planetside 2\planetside2.exe] => (Allow) C:\users\public\sony online entertainment\installed games\planetside 2\planetside2.exe
    FirewallRules: [TCP Query User{8E04F702-2DF5-450C-AC4F-855DF03E5A06}C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe
    FirewallRules: [UDP Query User{E62845C4-835E-4DC4-B7E8-8BA9ED6EEF91}C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe
    FirewallRules: [TCP Query User{D269D993-A2B7-48F3-8DC2-273D99D6CEB8}C:\users\lukaas\appdata\local\apps\2.0\xatlwyv1.4pa\9nxk149m.eg8\laun...app_59711684aa47878d_0001.001e_dde26337fe279e93\launcher.exe] => (Allow) C:\users\lukaas\appdata\local\apps\2.0\xatlwyv1.4pa\9nxk149m.eg8\laun...app_59711684aa47878d_0001.001e_dde26337fe279e93\launcher.exe
    FirewallRules: [UDP Query User{581774A5-44D4-4FFC-A831-B0858740F9F0}C:\users\lukaas\appdata\local\apps\2.0\xatlwyv1.4pa\9nxk149m.eg8\laun...app_59711684aa47878d_0001.001e_dde26337fe279e93\launcher.exe] => (Allow) C:\users\lukaas\appdata\local\apps\2.0\xatlwyv1.4pa\9nxk149m.eg8\laun...app_59711684aa47878d_0001.001e_dde26337fe279e93\launcher.exe
    FirewallRules: [{BAC1741F-3627-4D25-8698-FD0782A5B72B}] => (Block) C:\users\lukaas\appdata\local\apps\2.0\xatlwyv1.4pa\9nxk149m.eg8\laun...app_59711684aa47878d_0001.001e_dde26337fe279e93\launcher.exe
    FirewallRules: [{63ACE788-693D-4492-B748-DC1B0DAB194C}] => (Block) C:\users\lukaas\appdata\local\apps\2.0\xatlwyv1.4pa\9nxk149m.eg8\laun...app_59711684aa47878d_0001.001e_dde26337fe279e93\launcher.exe
    FirewallRules: [TCP Query User{789FA1E5-F741-4367-B9CF-E6AAB3E8ECC7}C:\ubisoft\ghost recon online\ncsa-live\ghostrecononline.exe] => (Allow) C:\ubisoft\ghost recon online\ncsa-live\ghostrecononline.exe
    FirewallRules: [UDP Query User{55DCEC4B-3631-4B9F-9883-B405A15909D9}C:\ubisoft\ghost recon online\ncsa-live\ghostrecononline.exe] => (Allow) C:\ubisoft\ghost recon online\ncsa-live\ghostrecononline.exe
    FirewallRules: [TCP Query User{A37CD18C-46BE-463C-8284-ADEEB0FDBFE7}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe
    FirewallRules: [UDP Query User{072080A7-35D0-4C85-A485-1A51A21367D0}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe
    FirewallRules: [TCP Query User{F2612896-7BD9-4E12-83B6-C9BBDA41CFC1}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe
    FirewallRules: [UDP Query User{F86F2090-5FD0-4D22-90D6-3875E4C5BC28}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe
    FirewallRules: [TCP Query User{0AD1492E-011D-4DF2-A77A-E7A12E8A5FC4}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
    FirewallRules: [UDP Query User{A9E55CBA-C0A6-419C-8F9C-ACD2A8163586}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
    FirewallRules: [{DE37374F-EF0B-45C4-BDEC-ACD447A40FAB}] => (Allow) C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\Dropbox.exe
    FirewallRules: [{B08901BA-1247-4BAD-BF03-09AB1F7F2F48}] => (Allow) C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\Dropbox.exe
    FirewallRules: [{B8EEACC1-3743-402A-88B1-9284B4131BD4}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1267\Agent.exe
    FirewallRules: [{C0EDEE33-DFD3-4983-BA2B-89FB0B23305A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1267\Agent.exe
    FirewallRules: [{94A423C4-5C34-439A-B782-4217D0879D26}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe
    FirewallRules: [{6BF2EA5E-BC62-46A9-8EFC-CCA022978A30}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe
    FirewallRules: [{90344821-5BF1-4E7C-9C69-DC0B0A3248E8}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
    FirewallRules: [{F050AFF5-1080-42F3-A673-F2C660026CD6}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
    FirewallRules: [{F76079DE-E541-4363-B61E-E26D82A63B94}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II Public Test.exe
    FirewallRules: [{B59422BC-01EB-4B1E-828C-41BE9217C51D}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II Public Test.exe
    FirewallRules: [TCP Query User{BC30FAFF-7EDB-46D1-8238-15668094119A}C:\program files (x86)\starcraft ii\versions\base24944\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base24944\sc2.exe
    FirewallRules: [UDP Query User{3572F4DF-C30E-4604-BF14-26E88666E3BD}C:\program files (x86)\starcraft ii\versions\base24944\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base24944\sc2.exe
    FirewallRules: [{C300555C-24F7-4732-936C-24CD2051E20E}] => (Block) C:\program files (x86)\starcraft ii\versions\base24944\sc2.exe
    FirewallRules: [{97CF3D29-41E0-41A7-8221-46F1DFDDDBA6}] => (Block) C:\program files (x86)\starcraft ii\versions\base24944\sc2.exe
    FirewallRules: [{460D1F25-C561-4392-9F25-13BBB60F9805}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
    FirewallRules: [{BE970A1B-18E5-4850-BEC6-C7CF164A93E3}] => (Allow) C:\Program Files (x86)\EpsonNet\EpsonNet Setup\tool09\ENEasyApp.exe
    FirewallRules: [{E69CAAEC-BA41-447A-8562-11C3C7351B79}] => (Allow) C:\Program Files (x86)\EpsonNet\EpsonNet Setup\tool09\ENEasyApp.exe
    FirewallRules: [TCP Query User{A82A83F2-F836-4B21-9FA6-4544A89EC181}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe
    FirewallRules: [UDP Query User{D1606551-3475-4B9A-9B32-93EB48044CA7}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe
    FirewallRules: [{F7628809-CE93-4F2A-B27E-1FB45DBCF03D}] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
    FirewallRules: [{B4C50871-5857-4A04-A4C8-D2BF41EC3115}] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
    FirewallRules: [TCP Query User{6114061D-B7A3-4BBD-A380-3EA0C361CE9A}C:\program files (x86)\steam\steamapps\common\sid meier's civilization v\civilizationv_dx11.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\sid meier's civilization v\civilizationv_dx11.exe
    FirewallRules: [UDP Query User{55C0861E-D17E-412D-B122-5F7F1264F533}C:\program files (x86)\steam\steamapps\common\sid meier's civilization v\civilizationv_dx11.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\sid meier's civilization v\civilizationv_dx11.exe
    FirewallRules: [{BFAA2D17-7304-4798-8712-7B29A4A9146F}] => (Block) C:\program files (x86)\steam\steamapps\common\sid meier's civilization v\civilizationv_dx11.exe
    FirewallRules: [{8BDA067C-04B3-4655-BE1C-3E3CEC579847}] => (Block) C:\program files (x86)\steam\steamapps\common\sid meier's civilization v\civilizationv_dx11.exe
    FirewallRules: [{8DF24641-27C6-41AD-8475-F730D7CE4CAE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\company of heroes\RelicCOH.exe
    FirewallRules: [{514FB4B5-4E2A-4715-A81F-E0D21DBD4DF1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\company of heroes\RelicCOH.exe
    FirewallRules: [{E7231215-22A5-428A-9711-11385CD0F8D8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
    FirewallRules: [{738E53FB-AA8F-43E4-ADDB-C0D89804F44A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
    FirewallRules: [{F65F7918-9038-41AC-B7A6-59E9522A8A59}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
    FirewallRules: [{AEC5A0CB-CB5E-4202-B86A-B48613966638}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
    FirewallRules: [{6FD51C27-5BD6-4568-9CD4-458BBB6F8EBC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
    FirewallRules: [{08BB9C3C-1E52-472E-BB35-4F36AC590B9A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
    FirewallRules: [{A7EBB529-C779-4DCD-86CD-673C2FE7AA72}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
    FirewallRules: [{405D28A1-B08C-4994-856C-909173D97B49}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
    FirewallRules: [{F58E132E-EF9F-4A91-8377-C74336795E5F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
    FirewallRules: [{DBA41F13-B542-4C99-B18C-0B3E43A61C50}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\strikesuitzero\pc\main\Binary\SSZ.exe
    FirewallRules: [{3BC943BD-5F14-4BD7-952B-2A8BB5280A99}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\strikesuitzero\pc\main\Binary\SSZ.exe
    FirewallRules: [TCP Query User{9DD5ABE9-A59E-41A4-B9E2-C26E675648F0}C:\program files (x86)\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe
    FirewallRules: [UDP Query User{3CFE4C96-A22B-403D-B320-BA8A838CA4B6}C:\program files (x86)\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe
    FirewallRules: [{801C484B-CAB2-4620-85E5-D82F03D2AF43}] => (Block) C:\program files (x86)\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe
    FirewallRules: [{D97B8E55-89F6-47EE-A304-C3171DB80F67}] => (Block) C:\program files (x86)\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe
    FirewallRules: [TCP Query User{3D54F16A-03C5-48CA-BF2F-D872D9CC7AB2}C:\users\lukaas\downloads\neverwinter_nw.1.20130416a.6.exe] => (Allow) C:\users\lukaas\downloads\neverwinter_nw.1.20130416a.6.exe
    FirewallRules: [UDP Query User{E0934A74-ADD2-43D1-8A76-E858825D43BC}C:\users\lukaas\downloads\neverwinter_nw.1.20130416a.6.exe] => (Allow) C:\users\lukaas\downloads\neverwinter_nw.1.20130416a.6.exe
    FirewallRules: [TCP Query User{A73679CC-1633-4384-91A6-B7951175CDCE}C:\users\lukaas\downloads\neverwinter_nw.1.20130416a.6 (1).exe] => (Allow) C:\users\lukaas\downloads\neverwinter_nw.1.20130416a.6 (1).exe
    FirewallRules: [UDP Query User{8E5DE1C4-99EF-4112-8008-9C43ECA4F45F}C:\users\lukaas\downloads\neverwinter_nw.1.20130416a.6 (1).exe] => (Allow) C:\users\lukaas\downloads\neverwinter_nw.1.20130416a.6 (1).exe
    FirewallRules: [TCP Query User{82E5429C-38D0-42E2-88B7-CEAB535710B3}C:\users\public\games\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\users\public\games\cryptic studios\neverwinter\live\gameclient.exe
    FirewallRules: [UDP Query User{DBBC17E9-9217-4699-A73B-F1C7C08D8F7A}C:\users\public\games\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\users\public\games\cryptic studios\neverwinter\live\gameclient.exe
    FirewallRules: [{73B30BDF-49C5-41C5-A2B6-948C5605044F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the witcher 2\Launcher.exe
    FirewallRules: [{2A851182-5FD2-42ED-AC5B-0E854FBD43D9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the witcher 2\Launcher.exe
    FirewallRules: [TCP Query User{B8799CF3-631E-43C0-9108-A58055F72426}C:\program files (x86)\meteorentertainment\hawken\installedhawkenfiles\binaries\win32\hawkengame-win32-shipping.exe] => (Allow) C:\program files (x86)\meteorentertainment\hawken\installedhawkenfiles\binaries\win32\hawkengame-win32-shipping.exe
    FirewallRules: [UDP Query User{F239C732-8952-488B-90FA-01708D8BE27A}C:\program files (x86)\meteorentertainment\hawken\installedhawkenfiles\binaries\win32\hawkengame-win32-shipping.exe] => (Allow) C:\program files (x86)\meteorentertainment\hawken\installedhawkenfiles\binaries\win32\hawkengame-win32-shipping.exe
    FirewallRules: [{EE6113FB-5FEF-483E-AAAB-83CDF4EA2E8C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tomb Raider\TombRaider.exe
    FirewallRules: [{00843213-8BB7-4F95-95F0-8D1BA70612F0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tomb Raider\TombRaider.exe
    FirewallRules: [{3D423CA3-0F5B-42D2-803D-AB7B19D88175}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis III - Complete\eu3game.exe
    FirewallRules: [{BF716BD3-CF97-4EFF-B1AD-9988EDE30D1F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis III - Complete\eu3game.exe
    FirewallRules: [TCP Query User{8E137AEF-DD92-4223-A847-AA4FE9F20336}C:\users\lukaas\appdata\local\temp\rar$exa0.806\hammerwatch.exe] => (Allow) C:\users\lukaas\appdata\local\temp\rar$exa0.806\hammerwatch.exe
    FirewallRules: [UDP Query User{69C515EB-9680-4671-A161-40A137420E65}C:\users\lukaas\appdata\local\temp\rar$exa0.806\hammerwatch.exe] => (Allow) C:\users\lukaas\appdata\local\temp\rar$exa0.806\hammerwatch.exe
    FirewallRules: [TCP Query User{E35C6796-1F5B-40C0-9D7D-E65451F07C97}C:\users\lukaas\appdata\local\temp\rar$exa0.330\hammerwatch.exe] => (Allow) C:\users\lukaas\appdata\local\temp\rar$exa0.330\hammerwatch.exe
    FirewallRules: [UDP Query User{86FFA19C-34AF-4F94-9804-C2A2760F9EB7}C:\users\lukaas\appdata\local\temp\rar$exa0.330\hammerwatch.exe] => (Allow) C:\users\lukaas\appdata\local\temp\rar$exa0.330\hammerwatch.exe
    FirewallRules: [TCP Query User{1FFEF29D-142C-4428-800F-5F9B32A895B1}C:\program files (x86)\utorrent\utorrent.exe] => (Allow) C:\program files (x86)\utorrent\utorrent.exe
    FirewallRules: [UDP Query User{5B3D554D-8E0A-470D-B80E-1AAF9759AA1D}C:\program files (x86)\utorrent\utorrent.exe] => (Allow) C:\program files (x86)\utorrent\utorrent.exe
    FirewallRules: [TCP Query User{5C168846-232B-4A00-8616-3CFF0885D5EA}C:\program files (x86)\gazillion entertainment\marvel heroes\unrealengine3\binaries\win32\marvelgame.exe] => (Allow) C:\program files (x86)\gazillion entertainment\marvel heroes\unrealengine3\binaries\win32\marvelgame.exe
    FirewallRules: [UDP Query User{3BECEB0B-2F40-4F87-895C-A5F79C9BBD1D}C:\program files (x86)\gazillion entertainment\marvel heroes\unrealengine3\binaries\win32\marvelgame.exe] => (Allow) C:\program files (x86)\gazillion entertainment\marvel heroes\unrealengine3\binaries\win32\marvelgame.exe
    FirewallRules: [{611712DA-9E8E-44C4-99A2-195C68E102B1}] => (Allow) C:\Users\Lukaas\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
    FirewallRules: [{99076424-CE35-40F5-B218-A6AB9E947E91}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
    FirewallRules: [{210A2D67-49AE-4417-84C7-E492D310F852}] => (Allow) LPort=2869
    FirewallRules: [{5C46246C-99B6-4C37-BA39-A12A3AC9C07D}] => (Allow) LPort=1900
    FirewallRules: [{38FA72AF-3DF2-4AD8-A742-8BB62C008642}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
    FirewallRules: [TCP Query User{7E36B21D-CB33-4796-BB87-5B01C3CAD0DC}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
    FirewallRules: [UDP Query User{AC26D14D-B79A-43EC-B695-B2736A2C4453}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
    FirewallRules: [TCP Query User{012E1029-C043-4D15-8289-2214C76C8B21}C:\program files (x86)\steam\steamapps\common\saints row the third\saintsrowthethird_dx11.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\saints row the third\saintsrowthethird_dx11.exe
    FirewallRules: [UDP Query User{64A6A6F5-6490-4A1A-BF8C-114503DEEA46}C:\program files (x86)\steam\steamapps\common\saints row the third\saintsrowthethird_dx11.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\saints row the third\saintsrowthethird_dx11.exe
    FirewallRules: [{F67B8C6C-3072-44C5-9730-8FA6707E2EF3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeon Defenders\Binaries\Win32\DungeonDefenders.exe
    FirewallRules: [{45AF3A1A-1EF9-4478-B82A-44AC9A9E1108}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeon Defenders\Binaries\Win32\DungeonDefenders.exe
    FirewallRules: [{1E8D0E03-32C1-4D81-9E0D-EE6407FC0655}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Plants Vs Zombies\PlantsVsZombies.exe
    FirewallRules: [{DE58E19D-992D-4128-BBA9-AC628EB91CF3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Plants Vs Zombies\PlantsVsZombies.exe
    FirewallRules: [TCP Query User{E6637ED7-5BE7-43D1-ADD5-8651199F141F}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe
    FirewallRules: [UDP Query User{77C1B971-A93C-4F23-8F39-759AF8D864B0}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe
    FirewallRules: [{1BD9CAC7-D6A5-46AC-8638-4913896A3406}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dwarfs\Dwarfs.exe
    FirewallRules: [{8B114562-656F-4C08-AADD-2B83E7630BC2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dwarfs\Dwarfs.exe
    FirewallRules: [{D6862464-4484-4093-BABD-FC558C340339}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization IV\Civilization4.exe
    FirewallRules: [{C68C82F0-012F-4998-83A5-257CC320F63F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization IV\Civilization4.exe
    FirewallRules: [{EAE3525E-5CA2-47DF-821A-C0A894EB100D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Deus Ex - Human Revolution\dxhr.exe
    FirewallRules: [{FA018F71-B5DA-4DE0-A015-A9E22C75FA0E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Deus Ex - Human Revolution\dxhr.exe
    FirewallRules: [{CC7F7546-23B3-4A9A-AEC6-9700719D09AB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\blacklightretribution\Blacklight Retribution.exe
    FirewallRules: [{BBAC65DE-6414-49FE-A502-4715C6B7CCB9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\blacklightretribution\Blacklight Retribution.exe
    FirewallRules: [TCP Query User{520B5F2B-C4B7-4A29-836A-B270C9549E5D}C:\program files (x86)\guild wars 2\gw2.exe] => (Allow) C:\program files (x86)\guild wars 2\gw2.exe
    FirewallRules: [UDP Query User{8744DC86-2187-4895-A19C-991987AEFACA}C:\program files (x86)\guild wars 2\gw2.exe] => (Allow) C:\program files (x86)\guild wars 2\gw2.exe
    FirewallRules: [{9C200184-4CA1-4AFB-AB5B-79A2F03EFBF4}] => (Allow) C:\Program Files (x86)\Origin Games\Mirrors Edge\Binaries\MirrorsEdge.exe
    FirewallRules: [{DE21345F-71A9-4532-A081-4D84640409B5}] => (Allow) C:\Program Files (x86)\Origin Games\Mirrors Edge\Binaries\MirrorsEdge.exe
    FirewallRules: [TCP Query User{1BF3C603-95F9-40E3-ABBE-54247E1282FC}C:\users\lukaas\documents\starcitizen\citizenclient\bin64\starcitizen.exe] => (Allow) C:\users\lukaas\documents\starcitizen\citizenclient\bin64\starcitizen.exe
    FirewallRules: [UDP Query User{19D45CA2-C66F-49D3-A1C3-651C54302562}C:\users\lukaas\documents\starcitizen\citizenclient\bin64\starcitizen.exe] => (Allow) C:\users\lukaas\documents\starcitizen\citizenclient\bin64\starcitizen.exe
    FirewallRules: [{EE1A6189-A2C5-4C03-BA22-31CEC105F6FC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe
    FirewallRules: [{97700C68-EA75-4573-BEB9-B48D70BE8227}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe
    FirewallRules: [TCP Query User{CFBB119B-680B-4E4A-A560-0C20E8B3484C}C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe
    FirewallRules: [UDP Query User{D09A5399-EE6B-4CEC-B995-D7A7F2FE75CA}C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe
    FirewallRules: [{A925DB1F-C189-4C27-A227-3B33CBECC4F6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpecOps_TheLine\Binaries\Win32\SpecOpsTheLine.exe
    FirewallRules: [{EE43DC41-9F59-4216-8A99-E6C74280A689}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpecOps_TheLine\Binaries\Win32\SpecOpsTheLine.exe
    FirewallRules: [{3518E2A8-32B1-46A3-AA5D-07723180DE3A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BioShock 2\SP\Builds\Binaries\Bioshock2Launcher.exe
    FirewallRules: [{3DACAFB2-B83A-4A9B-AC91-88302F3BAF91}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BioShock 2\SP\Builds\Binaries\Bioshock2Launcher.exe
    FirewallRules: [{1003A830-29E7-4E8D-BE2A-1CBB5EBE5CD2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BioShock 2\MP\Builds\Binaries\Bioshock2Launcher.exe
    FirewallRules: [{D8302FDB-BAD4-4C7D-A5D0-833E64D63BA4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BioShock 2\MP\Builds\Binaries\Bioshock2Launcher.exe
    FirewallRules: [{C97CA34C-A206-445F-BDF8-91BF5A23E238}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4 Beta\bf4.exe
    FirewallRules: [{D91C675B-BE2C-4BE6-8F2C-DBAE85A9E4A7}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4 Beta\bf4.exe
    FirewallRules: [{76DDF05D-5BCF-409F-B674-AC0D2BDBF848}] => (Allow) C:\Program Files (x86)\Origin Games\Burnout Paradise\BurnoutParadise.exe
    FirewallRules: [{24598249-C9C9-4DC6-8163-D185DE58DF21}] => (Allow) C:\Program Files (x86)\Origin Games\Burnout Paradise\BurnoutParadise.exe
    FirewallRules: [{2A16F37D-FC58-40B8-BB0E-C4A5EFECCA4B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeonland\dungeonland.exe
    FirewallRules: [{7A42754D-2EFB-48D8-8E06-9C20274D7704}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeonland\dungeonland.exe
    FirewallRules: [{5B62C2D2-5ABF-4267-A0BE-A663BA1207F6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\UDK.exe
    FirewallRules: [{B3851AF9-0E83-4191-BC78-1AC5A66CE729}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\UDK.exe
    FirewallRules: [{8C83311B-6BD9-468A-96B3-B9719054784D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\strikesuitzero\pc\main\Binary\Launcher.exe
    FirewallRules: [{C5E88F68-621B-4707-B06C-81A038C5B129}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\strikesuitzero\pc\main\Binary\Launcher.exe
    FirewallRules: [{DD62EA6F-3BA8-4D32-821C-C959C2C113F6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
    FirewallRules: [{2AA9B178-8A0C-4AE5-87E2-0610BA82149B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
    FirewallRules: [{969CCA9F-3CD2-42EE-BF5E-796241702FD3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War of the Roses Alpha\run_game.exe
    FirewallRules: [{F7F76B0A-7175-441D-AA50-444D1FB55CE4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War of the Roses Alpha\run_game.exe
    FirewallRules: [{45E15503-443C-44A1-8FBA-A9DB66B9216D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeons of Dredmor\Dungeons of Dredmor.exe
    FirewallRules: [{78331FEF-8BB6-457B-BF9B-6D22D5F0E958}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeons of Dredmor\Dungeons of Dredmor.exe
    FirewallRules: [{C7F7F7E2-8CDC-4176-8B6D-2769BE241493}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
    FirewallRules: [{6D1FF069-249E-483A-8936-DD4F4552A716}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
    FirewallRules: [TCP Query User{48D7782B-C1A8-4CA6-99BF-C605F4F87D42}C:\program files (x86)\steam\steamapps\common\starbound\win32\starbound_server.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\starbound\win32\starbound_server.exe
    FirewallRules: [UDP Query User{BFF0B4F7-686C-4B0E-9313-0FFC7FE8A90B}C:\program files (x86)\steam\steamapps\common\starbound\win32\starbound_server.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\starbound\win32\starbound_server.exe
    FirewallRules: [{E2D00219-F940-41AD-B2EA-2D715A9206F2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
    FirewallRules: [{5015E7F2-45A0-47CD-859C-1A19AB6E57CE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
    FirewallRules: [{C50C0C05-A2BF-4897-BD6C-FFA4E1D8B7D8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\GunsOfIcarusOnline.exe
    FirewallRules: [{5A63FB0B-ACD3-4633-9DB2-CB2D205E0310}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\GunsOfIcarusOnline.exe
    FirewallRules: [{4FA0E0A8-623A-4986-A287-15FD926DBF41}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MinerWars\MinerWars.exe
    FirewallRules: [{E9694624-F181-45D0-8485-E91FEC36F3F3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MinerWars\MinerWars.exe
    FirewallRules: [{E649F2BE-0770-4A7F-8092-BC1B7C3E9BB0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{C0634CB6-C7C2-4644-A7E4-7B2230420E88}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{D60EF4CC-90D6-4B50-A0D8-45670E24E019}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
    FirewallRules: [{77B7F9B9-ED40-4F02-B782-0AF8D02806B8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
    FirewallRules: [{CFB0D544-67B8-466D-B98A-1C44AEB4F42B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
    FirewallRules: [{CD1A3EC0-A647-48AF-AE9C-B1428229A58B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
     
  7. Lukaas Hendrix

    Lukaas Hendrix TS Rookie Topic Starter Posts: 27

    FirewallRules: [{771E8817-036A-453A-8AE8-AA3B58A31FDC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
    FirewallRules: [{103AE34C-882D-4F6C-BDBD-A9DA4B883609}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
    FirewallRules: [{23A55D25-3938-4312-A22D-6EFAED6121AB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Awesomenauts\AwesomenautsLauncher.exe
    FirewallRules: [{47632722-BA96-48CE-B79F-792E3D661FEC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Awesomenauts\AwesomenautsLauncher.exe
    FirewallRules: [{321BEF36-ADBD-44FB-ACD4-B5E156743998}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AirMech\AirMech.exe
    FirewallRules: [{A8B81FD7-93DF-4843-94F9-5E6DE2AA3464}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AirMech\AirMech.exe
    FirewallRules: [{054A152F-7E93-4761-A0CB-4AB86AE035C6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\GunsOfIcarusOnline.exe
    FirewallRules: [{210BFEC5-523F-446B-8565-AD0BD5FE18CC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\GunsOfIcarusOnline.exe
    FirewallRules: [{01AE89D4-871C-4289-9E94-1A50B4CC3DFB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AirMech\AirMech.exe
    FirewallRules: [{8D4CA2DC-885C-4BE6-9CEB-3FDD622E20B8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AirMech\AirMech.exe
    FirewallRules: [{2E92897C-0462-48F9-A43A-E3E141D4690D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings II\ck2game.exe
    FirewallRules: [{65E259F7-7C15-4D68-96D1-6158039323EF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings II\ck2game.exe
    FirewallRules: [{972A76FD-38C4-4447-8747-7FC59C38C9B6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\GunsOfIcarusOnline.exe
    FirewallRules: [{88D9E4A0-EAB3-4D48-BC90-E2D381B6F6AA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\GunsOfIcarusOnline.exe
    FirewallRules: [{3DEF6E0B-5FCD-4B58-9031-D4DEB529A4A7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{765E3F84-9A8C-4019-BF06-B30ECE285853}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{C56EF557-8DD1-4187-8F88-D7B794A94F7E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Awesomenauts\AwesomenautsLauncher.exe
    FirewallRules: [{BFA4948A-2ECC-4029-895A-EE6B88792A4E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Awesomenauts\AwesomenautsLauncher.exe
    FirewallRules: [{A7435301-893B-4CF7-8534-34897A0998F7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{673ECA07-7343-4DC3-83D7-3C1D0310DF3F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{EB95644B-5E39-4A99-86E4-CC2E8E1FA5A3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{6122404F-825D-4069-B2B5-FACA0B215019}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{A15C8207-CC07-4B77-89BE-359389279192}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
    FirewallRules: [{724D4DFE-ECC6-4382-A03F-55E9E48ECFCF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
    FirewallRules: [{1ED145A4-C95A-43A6-A3FF-4C2D748A0B09}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
    FirewallRules: [{3393056B-A668-404C-9DC4-6AE0DFE5A1DE}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
    FirewallRules: [{A6C7F35A-D5B1-46B7-A82B-2772F3A5EBF4}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
    FirewallRules: [{14100C7B-A832-477A-A3BB-E4E79B15E8F4}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
    FirewallRules: [{C7BC9295-6009-4D82-98EB-8AF7920D7080}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
    FirewallRules: [{CE3B1301-C1E3-447F-B4B5-5FDF2C232CA4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
    FirewallRules: [{966BE63A-2752-4928-88C6-E0B243C5DFAE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Awesomenauts\AwesomenautsLauncher.exe
    FirewallRules: [{78ED200B-75EA-46A0-A39E-587E1065197B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Awesomenauts\AwesomenautsLauncher.exe
    FirewallRules: [{CA6056C5-0801-49CE-BF2A-EF8E7937C2B7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes Relaunch\RelicCOH.exe
    FirewallRules: [{D1FAC6FD-9490-4592-96A6-8C84A41B6532}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes Relaunch\RelicCOH.exe
    FirewallRules: [{D2C4D5F0-9A66-4988-B82D-8538C750B600}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War of the Roses\run_game.exe
    FirewallRules: [{1C02EA7B-22FC-4CDB-A782-701E34C56D2B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War of the Roses\run_game.exe
    FirewallRules: [{F78D3182-54C6-4B56-A455-29A0BB844975}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings II\ck2game.exe
    FirewallRules: [{9F971180-13D3-4827-916B-41FAB1B97125}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings II\ck2game.exe
    FirewallRules: [{8C39457F-75D1-469E-A796-2D2BF0DACA42}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War of the Roses\run_game.exe
    FirewallRules: [{F922B125-19EF-4024-99C6-AEE8768169D4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War of the Roses\run_game.exe
    FirewallRules: [{1B074570-3D07-4B22-8428-82A4450DA645}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\GunsOfIcarusOnline.exe
    FirewallRules: [{C8866CE9-E5B6-4A6F-8F95-6133028EA42B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\GunsOfIcarusOnline.exe
    FirewallRules: [{A0F55460-8EF3-4DFD-B515-1998DE351E5C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Awesomenauts\AwesomenautsLauncher.exe
    FirewallRules: [{F9212A0A-73DF-42AF-9AEA-848CCCFE0507}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Awesomenauts\AwesomenautsLauncher.exe
    FirewallRules: [{26563192-B3D2-4974-B806-9DBDAEE3A3A7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
    FirewallRules: [{BD3646D9-1500-4230-9C51-93B017C9BF55}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
    FirewallRules: [{F76C5C37-BA88-4D53-AAAA-C7E344234E67}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
    FirewallRules: [{2DBE2260-62D1-4D74-9465-148D2172BBD7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
    FirewallRules: [{F0C08D8A-34F6-4E23-9FAA-7E3FA0759011}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Awesomenauts\AwesomenautsLauncher.exe
    FirewallRules: [{0ECEFF1A-539E-4DF1-94D1-BA7E127D424F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Awesomenauts\AwesomenautsLauncher.exe
    FirewallRules: [{5E49FF5E-1574-4024-8E8D-1EC69A7BAA59}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Universe Sandbox\Universe Sandbox.exe
    FirewallRules: [{DB0453D8-62A5-4D96-8BB9-158622D837DB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Universe Sandbox\Universe Sandbox.exe
    FirewallRules: [{810E9BAB-4CA1-40AF-B350-15BCA79DCA36}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rogue Legacy\RogueLegacy.exe
    FirewallRules: [{03FB9DBB-1FA7-437D-B6DF-5BFF9E115408}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rogue Legacy\RogueLegacy.exe
    FirewallRules: [{7036DDB5-D79F-4F01-834C-34BBDF5F7564}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\InjusticeGodsAmongUs_UltimateEdition\DiscContentPCG\Injustice.exe
    FirewallRules: [{74395EDD-B465-48D7-9310-45832B45AEFD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\InjusticeGodsAmongUs_UltimateEdition\DiscContentPCG\Injustice.exe
    FirewallRules: [{9A2C6EB6-2A56-4002-AF58-65E83E969519}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\InjusticeGodsAmongUs_UltimateEdition\DiscContentPCG\InjusticeLauncher.exe
    FirewallRules: [{6FFFEC90-B021-43BF-BAA3-B66940ACCB9E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\InjusticeGodsAmongUs_UltimateEdition\DiscContentPCG\InjusticeLauncher.exe
    FirewallRules: [{7AA530EE-4CC2-4CE2-B818-79A82C414468}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rogue Legacy\RogueLegacy.exe
    FirewallRules: [{225A24BF-CF44-44A2-B6B6-C0A41F37F059}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rogue Legacy\RogueLegacy.exe
    FirewallRules: [{8E4C9C08-B100-469C-858C-E5A444AE4D4E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{4812E14B-D2F7-4B01-8A32-1CC3817ADED3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{3FB6DFBC-D264-4FC0-BD42-4DCE706D7DCC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{21A2D139-6910-465A-ADC5-3EE2F87A6018}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{1B76D5AE-E4E4-4228-9DBD-21A802CC0670}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{593EBDE8-6F49-4BD1-9A86-4CB9AF292E25}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{17B0268A-9A7A-4966-81CD-0D5D2D7D7ED2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{F994C0AD-C568-416F-A74B-38193BA8B20F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{E113382B-7C51-4E08-A51B-DEBBDDD23937}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{20AE990A-C466-4401-917C-2FA98016C91B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{1F3C28FB-9746-4556-9CBF-9DFEF3D7F93A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{5F6C42EF-74F6-41AD-95EA-13E17E4DDA2A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{A269174D-5317-40BC-8EAD-DD3A024ED809}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AirMech\AirMech.exe
    FirewallRules: [{66EED5C5-773B-4867-A1AF-F168CACCE2E3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AirMech\AirMech.exe
    FirewallRules: [{D9DBCF32-0BFF-4F81-A91B-B78EFA1D6835}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
    FirewallRules: [{D94140AE-C997-493B-AB6A-2483BF6D08B7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
    FirewallRules: [{0245EE4F-2708-46C2-851D-A44AA6CF4E50}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{A515A567-F266-4FF6-99BA-1690C9FAD1F4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{3FCCD048-C2CA-4FF2-A7A2-CFA98B13B98F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
    FirewallRules: [{94081F60-A0FD-4A0D-A8A2-E57700E2920F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
    FirewallRules: [{6075C035-6098-4CD5-BEC2-9FDE593CA55E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
    FirewallRules: [{BA28B23F-F4D3-4D6A-8B16-6DB26A380AD2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
    FirewallRules: [{47EA8909-DC73-4D7D-944B-87B1672AEFDD}] => (Allow) C:\Program Files (x86)\DolbyAxon\Axon.exe
    FirewallRules: [{BB77C09E-0CBD-4544-8441-8034808D69DD}] => (Allow) C:\Program Files (x86)\DolbyAxon\Axon.exe
    FirewallRules: [{FF3BA915-9A7D-4A00-BF2E-55F68FA70715}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Batman Arkham Asylum GOTY\Binaries\BmLauncher.exe
    FirewallRules: [{D3BB502E-BB11-47CE-8FA9-AED6E9BFCBC5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Batman Arkham Asylum GOTY\Binaries\BmLauncher.exe
    FirewallRules: [{2A9B1667-85E4-4B3D-824A-95D42EF95F3B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Loadout\Loadout.exe
    FirewallRules: [{0C6CEE1B-5AF5-4992-BDB6-FCEDA0F58AE5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Loadout\Loadout.exe
    FirewallRules: [{8F362D2F-47EF-4935-942F-3EDE14A69173}] => (Allow) LPort=41780
    FirewallRules: [{9AFEB23D-6E0E-4253-8FD5-7B13F09414CC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ARMA Cold War Assault\ColdWarAssault.exe
    FirewallRules: [{A27B1BB3-E54F-41FF-A0C6-0F8DA9D8CA0A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ARMA Cold War Assault\ColdWarAssault.exe
    FirewallRules: [{E4786A6F-9A18-450A-A0A5-E99FBF5A0552}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
    FirewallRules: [{C29BDC83-BB8E-465B-8BFB-FE92168C0BCB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
    FirewallRules: [{7ACCA1BB-8E58-4AB2-9E9D-F03129545678}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fable The Lost Chapters\Fable.exe
    FirewallRules: [{224F4018-900C-4A3C-8F63-2337F723FF9E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fable The Lost Chapters\Fable.exe
    FirewallRules: [{68845431-03CC-452A-A373-43B3A38A8CF3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3.exe
    FirewallRules: [{0F136163-55BF-4BC4-923C-2C17ACFB6BEE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3.exe
    FirewallRules: [{14F6D026-5F1C-457B-8707-7E926EBC7D25}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3_Debug.exe
    FirewallRules: [{CFDE0EC3-89AC-463B-86E6-842597E7EB2D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3_Debug.exe
    FirewallRules: [{2FAE3D7D-B33C-4266-A266-73C68E43EED0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Splinter Cell Blacklist\Blacklist_Launcher.exe
    FirewallRules: [{4A2689DC-BCBE-4853-A6B2-0A8035CF9C04}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Splinter Cell Blacklist\Blacklist_Launcher.exe
    FirewallRules: [{5B549AD6-B05C-4918-B4F4-5A955F2C5844}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
    FirewallRules: [{2B51371B-C683-4488-94FE-F2DE6741C467}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
    FirewallRules: [{83A64C42-13CF-42AC-AB35-C932254D17F2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Splinter Cell Blacklist\src\SYSTEM\Blacklist_game.exe
    FirewallRules: [{364E4A6E-2DC5-4AE1-9FEB-BE129B6C9196}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Splinter Cell Blacklist\src\SYSTEM\Blacklist_game.exe
    FirewallRules: [{A94047FA-CA06-4CE9-9B2A-5B6EEA8BD98F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Splinter Cell Blacklist\src\SYSTEM\Blacklist_DX11_game.exe
    FirewallRules: [{0E89D2B5-3882-4E93-B8C1-8BE029D3D450}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Splinter Cell Blacklist\src\SYSTEM\Blacklist_DX11_game.exe
    FirewallRules: [{8FF13146-9DAC-47B1-8A1C-54FC27F521E4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Splinter Cell Blacklist\src\SYSTEM\gu.exe
    FirewallRules: [{43D47292-3F97-4443-AA07-28CA2EFDF52F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Splinter Cell Blacklist\src\SYSTEM\gu.exe
    FirewallRules: [{BC8388A2-EDBC-4B23-82DD-4C7D44394CEA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\NEOTOKYO\hl2.exe
    FirewallRules: [{D3257333-5171-4B63-865D-F97C36823903}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\NEOTOKYO\hl2.exe
    FirewallRules: [{018FAF62-ECAF-4C4B-A9FD-EEB265729269}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 2 Ultimate Collection\Fun with Pets\SP9\TSBin\Sims2EP9.exe
    FirewallRules: [{F448011B-8D64-4157-BA50-7A55B30B1965}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 2 Ultimate Collection\Fun with Pets\SP9\TSBin\Sims2EP9.exe
    FirewallRules: [{8150B633-1881-4D1C-A75C-27DBAA0525A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe
    FirewallRules: [{E9F26BA4-D772-48FF-BB7A-2E718097803C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe
    FirewallRules: [{9A02185E-4E1C-4D12-A9D8-B684ED6BFB91}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fantasy Grounds\FGSteamLauncher.exe
    FirewallRules: [{AC689E03-0E62-470B-A5E6-6D0368A65589}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fantasy Grounds\FGSteamLauncher.exe
    FirewallRules: [{148A9948-5639-4A18-996E-D7239753FB2C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Robocraft\Robocraft.exe
    FirewallRules: [{20D87067-1788-490C-B880-893C75A89312}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Robocraft\Robocraft.exe
    FirewallRules: [{4C8A1975-5FC3-46B9-A39F-B8C9849365A4}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
    FirewallRules: [{41B0653C-4D27-4C7A-AE34-8217311D6A8E}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
    FirewallRules: [{17A140D2-1C14-4E75-8F05-2B44B25CBB7F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rocksmith2014\Rocksmith2014.exe
    FirewallRules: [{30E19B7E-2746-4C25-9B53-14A2F42FAB6B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rocksmith2014\Rocksmith2014.exe
    FirewallRules: [{57272426-0B96-45FD-B648-69C0D98746DC}] => (Allow) C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
    FirewallRules: [{7EC23F76-03A6-46DE-BD4F-5F8647693FC5}] => (Allow) C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
    FirewallRules: [{B98F4754-B230-458E-AC0F-7543205F7394}] => (Allow) C:\Users\Lukaas\AppData\Roaming\uTorrent\uTorrent.exe
    FirewallRules: [{0D711CB8-E866-4E7E-9E66-9E5AEFE76847}] => (Allow) C:\Users\Lukaas\AppData\Roaming\uTorrent\uTorrent.exe
    FirewallRules: [{3E0A5BFF-C617-4299-BE37-F43FC15A9250}] => (Allow) C:\Program Files (x86)\Origin Games\Dragon Age\bin_ship\daorigins.exe
    FirewallRules: [{954FE8B7-0DA8-4329-A982-C8980F01BEB1}] => (Allow) C:\Program Files (x86)\Origin Games\Dragon Age\bin_ship\daorigins.exe
    FirewallRules: [{3DEDF273-E25B-4875-8CCA-C19AE738C9F2}] => (Allow) C:\Program Files (x86)\Origin Games\Bejeweled 3\Bejeweled3.exe
    FirewallRules: [{A017BF0F-4E4F-4CC4-A2CA-6D8F24D01E14}] => (Allow) C:\Program Files (x86)\Origin Games\Bejeweled 3\Bejeweled3.exe
    FirewallRules: [{C66E041C-26B8-4D21-A1CB-1F750203DD28}] => (Allow) C:\Program Files\HP\HP ENVY 4500 series\Bin\DeviceSetup.exe
    FirewallRules: [{DE39291D-721B-4C88-86FB-8908EA5AB481}] => (Allow) LPort=5357
    FirewallRules: [{A985BA9B-E940-4363-B904-462D97EB6A68}] => (Allow) C:\Program Files\HP\HP ENVY 4500 series\Bin\HPNetworkCommunicatorCom.exe
    FirewallRules: [{54403018-FDD3-4FD3-BA31-C7DE99C2DF96}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\10000000\10000000.exe
    FirewallRules: [{06D896EC-B76D-4B37-81D3-3B91F2075659}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\10000000\10000000.exe
    FirewallRules: [{E9FD3CAD-5734-4C22-B8AA-A7934AC9BC9F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe
    FirewallRules: [{04E25929-1DCE-4642-9AB8-1B253C8B8F37}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe
    FirewallRules: [{E7356E71-E45E-4697-B6D1-B10021968F65}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe
    FirewallRules: [{91F823DF-4F6C-4749-B678-2DEEBE85029C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe
    FirewallRules: [{2335F7B6-8722-4837-AF6C-A3A4E629A0D0}] => (Allow) C:\Users\Lukaas\AppData\Local\Temp\7zS5CE4\HPDiagnosticCoreUI.exe
    FirewallRules: [{67319719-B9D7-4138-B7C6-530D0DF7B570}] => (Allow) C:\Users\Lukaas\AppData\Local\Temp\7zS5CE4\HPDiagnosticCoreUI.exe
    FirewallRules: [{3205C1AB-0C2E-4155-A4EE-F236ACD1127E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
    FirewallRules: [{C58CFB71-A245-4C29-87B6-39951193A1EB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
    FirewallRules: [{CCC246C7-FDE1-4AE3-B7C6-E78EC4EF3690}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe
    FirewallRules: [{89B7EA20-9403-47DC-A97A-08FF11C02B94}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe
    FirewallRules: [{369465A0-1AAF-4207-B731-3B61FFAB4FA2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Verdun\Verdun.exe
    FirewallRules: [{30AE6975-50E1-421D-B1FE-7D72499708A4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Verdun\Verdun.exe
    FirewallRules: [{1508EE0C-CD5C-498E-8C25-4A082F3AE80B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Red Orchestra 2\Binaries\Win32\ROGame.exe
    FirewallRules: [{247E8F5C-4EEB-4789-9D77-430CE8A6AB3B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Red Orchestra 2\Binaries\Win32\ROGame.exe
    FirewallRules: [{1F67E89B-6B73-4D22-9F76-31F9037D7845}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
    FirewallRules: [{DA858857-3402-4AEF-8D49-78F632744A70}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
    FirewallRules: [{D3808728-EB00-4745-A858-189ABC0DFD3B}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
    FirewallRules: [{E00C5870-2D96-4A41-8C57-FFCC62B0E8CA}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
    FirewallRules: [{61251666-1949-4FDC-8968-05B060EECA2D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\Win32\UDK.exe
    FirewallRules: [{96E9EAB7-0CD0-4ABB-A8B1-AE533E17016E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\Win32\UDK.exe
    FirewallRules: [{1831EE28-05F3-444C-A1AE-472894780CD6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\Win64\UDK.exe
    FirewallRules: [{44C2D16E-DAAC-4F7A-9003-D30CD2E732C3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\Win64\UDK.exe
    FirewallRules: [{6071F94C-ECC4-414B-8B57-EBB2C6354524}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Magicite\Magicite.exe
    FirewallRules: [{356A4D68-8361-4C44-A841-18DF5CB6C9E6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Magicite\Magicite.exe
    FirewallRules: [{9E7517A6-1CDB-43DF-83CF-726B1C2608E8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Ghost Recon Phantoms NA\Launcher.exe
    FirewallRules: [{B4365E54-8E5F-47BE-81FA-1887FBEDCF28}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Ghost Recon Phantoms NA\Launcher.exe
    FirewallRules: [TCP Query User{F464E9F4-18A7-4186-B3C4-C5391ED8A8C6}C:\users\public\sony online entertainment\installed games\planetside 2\planetside2_x64.exe] => (Allow) C:\users\public\sony online entertainment\installed games\planetside 2\planetside2_x64.exe
    FirewallRules: [UDP Query User{18DF17A7-29BA-43B5-A06E-108B5FD5F419}C:\users\public\sony online entertainment\installed games\planetside 2\planetside2_x64.exe] => (Allow) C:\users\public\sony online entertainment\installed games\planetside 2\planetside2_x64.exe
    FirewallRules: [TCP Query User{D6062FBC-5FDE-42A4-AE62-C24AD30C90B9}C:\windows\system32\java.exe] => (Allow) C:\windows\system32\java.exe
    FirewallRules: [UDP Query User{5221F013-B324-4549-8730-4CEF1A5E3438}C:\windows\system32\java.exe] => (Allow) C:\windows\system32\java.exe
    FirewallRules: [TCP Query User{B2166DEF-E152-4BF5-9EEF-F469832244EB}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
    FirewallRules: [UDP Query User{C1B54DED-AC14-4689-A389-200AE89E13E2}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
    FirewallRules: [{0BFCC1F9-5A5A-41B8-BDB2-2CFDB23FD270}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DyingLightGame.exe
    FirewallRules: [{E0485210-87A1-421F-896C-66B400F98477}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DyingLightGame.exe
    FirewallRules: [{47977FEF-BD16-41F3-BE85-185FEB0B2B83}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Gauntlet\binaries\gauntlet.exe
    FirewallRules: [{7573845A-44DC-4E18-8261-9BA583CDB044}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Gauntlet\binaries\gauntlet.exe
    FirewallRules: [{97089582-16EE-464D-91A4-87DD36CDF899}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Osmos\osmos.exe
    FirewallRules: [{043A222D-A798-4ABE-958D-B1945ADE031F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Osmos\osmos.exe
    FirewallRules: [{E7D622BD-A410-4955-B475-C338C18445CD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mount and Blade\runme.exe
    FirewallRules: [{CC5A40B6-FB86-46CB-BABC-9444F4CE1341}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mount and Blade\runme.exe
    FirewallRules: [{ADF338D9-0DBF-42A0-84F9-B57DFBCB278B}] => (Allow) C:\Program Files (x86)\Origin Games\Theme Hospital\data\Game\DOSBox\LAUNCHER.exe
    FirewallRules: [{3FACC58A-68CB-412C-8CB8-66353EB19D34}] => (Allow) C:\Program Files (x86)\Origin Games\Theme Hospital\data\Game\DOSBox\LAUNCHER.exe
    FirewallRules: [{C6A68AC0-1F6C-4715-BB27-9D4835E12046}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
    FirewallRules: [{C548C7EA-4042-405C-9262-9848EB2A586E}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
    FirewallRules: [TCP Query User{ADA26C17-A6AA-42A0-8CF7-9BBF5FAD7A94}C:\program files (x86)\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe
    FirewallRules: [UDP Query User{0CBD923C-508C-4F9E-9D52-9B261291ECB1}C:\program files (x86)\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe
    FirewallRules: [TCP Query User{82A4FFBA-54AD-49DE-85C3-42492FF7CD6A}C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe
    FirewallRules: [UDP Query User{3C26F62E-4B87-40F2-9494-5961A78CC607}C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe
    FirewallRules: [{B8632270-CD01-45D9-94F3-C2317016FD76}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
    FirewallRules: [{3D597F22-D4ED-4125-AD0A-01135E4D57D4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
    FirewallRules: [{EDF25086-C9E2-4754-BE30-F1358BCDD88B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3Launcher.exe
    FirewallRules: [{03314F0A-1528-4377-BA34-77EFA570C4F4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3Launcher.exe
    FirewallRules: [{A1EE9EC3-5E07-4DB7-8366-E8C5B5CE7E75}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Firefall\system\bin\FirefallClient.exe
    FirewallRules: [{2DC7337D-91E1-4238-A086-5A6CA2F5AFD6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Firefall\system\bin\FirefallClient.exe
    FirewallRules: [TCP Query User{8199C203-54CE-49FD-A23C-9C59BABB3B1E}C:\program files (x86)\fantasy grounds\fantasygrounds.exe] => (Allow) C:\program files (x86)\fantasy grounds\fantasygrounds.exe
    FirewallRules: [UDP Query User{5B99B2FF-E71A-419B-AA49-654A5CA5C7BE}C:\program files (x86)\fantasy grounds\fantasygrounds.exe] => (Allow) C:\program files (x86)\fantasy grounds\fantasygrounds.exe
    FirewallRules: [{8154767D-B1D0-445A-AFA3-FEABF544FAFE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the binding of isaac\Isaac.exe
    FirewallRules: [{6FDAEBE8-C89A-4864-9A18-4A8B97B788D9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the binding of isaac\Isaac.exe
    FirewallRules: [{14155898-BAC1-4A71-B27E-DFE86BD29415}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Patrician III\Patrician3.exe
    FirewallRules: [{8BA5BF4A-DCC4-4700-A361-55968D56540D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Patrician III\Patrician3.exe
    FirewallRules: [{EF9309C0-A46F-4D4E-856E-BA155447C005}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe
    FirewallRules: [{0C4FDC0D-B242-4228-862C-E8B6F594BD2C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe
    FirewallRules: [{B3688E43-3579-4E55-86FE-CCC0F5E71B47}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutParadise.exe
    FirewallRules: [{6DB1AAAA-567A-4A0C-906C-03A3B28414A3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutParadise.exe
    FirewallRules: [{4F9B05F2-8A4C-4B8C-803C-338EACFADEC7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutConfigTool.exe
    FirewallRules: [{0AAFB150-933E-4948-82A3-8B61CDAE7609}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutConfigTool.exe
    FirewallRules: [{CE4381B8-D695-4900-BDEF-B146D053CE69}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sanctum2\Binaries\Win32\SanctumGame-Win32-Shipping.exe
    FirewallRules: [{A0466876-1084-42B5-B1DD-FF473AFACE3E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sanctum2\Binaries\Win32\SanctumGame-Win32-Shipping.exe
    FirewallRules: [{73EB1B46-07CD-4233-83EB-F4714FDA4077}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect.exe
    FirewallRules: [{6581A48A-6CEE-4B72-ABB6-B932A52277BF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect.exe
    FirewallRules: [TCP Query User{079A37A3-BB13-427E-AA0C-F86326B77958}C:\program files (x86)\steam\steamapps\common\elite dangerous\products\forc-fdev-d-1010\elitedangerous32.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\elite dangerous\products\forc-fdev-d-1010\elitedangerous32.exe
    FirewallRules: [UDP Query User{F6F075EE-C749-4AC3-A8B4-7CC03B0811E6}C:\program files (x86)\steam\steamapps\common\elite dangerous\products\forc-fdev-d-1010\elitedangerous32.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\elite dangerous\products\forc-fdev-d-1010\elitedangerous32.exe
    FirewallRules: [{B71E4A1B-82EE-4BCF-9965-2ADD0B30DAAA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BattleBlock Theater\BattleBlockTheater.exe
    FirewallRules: [{750288E9-D39F-4CCA-B625-1F1ABF64FE56}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BattleBlock Theater\BattleBlockTheater.exe
    FirewallRules: [{C98BB011-87DA-4A86-9EB0-9AD232574053}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MedievalEngineers\Bin64\MedievalEngineers.exe
    FirewallRules: [{7B9DEED4-8798-4C5B-AB14-1FDA68886332}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MedievalEngineers\Bin64\MedievalEngineers.exe
    FirewallRules: [{D7B89C67-9C7B-46E4-A793-BCB3BE736363}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpaceEngineers\Bin64\SpaceEngineers.exe
    FirewallRules: [{549A195B-A645-4BEA-8EB1-BE61E61CFCE4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpaceEngineers\Bin64\SpaceEngineers.exe
    FirewallRules: [{5E216050-D9C3-43C1-85A3-33E2B0591F44}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\tbs\win32\The Banner Saga.exe
    FirewallRules: [{4DD0A05D-5644-4300-8D09-A8190DD4E46C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\tbs\win32\The Banner Saga.exe
    FirewallRules: [{2FF5F643-2152-4A53-9E76-DCF5CBE1C436}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\workshop\Workshop.exe
    FirewallRules: [{8130263A-CC51-4C9E-938D-B45CC7467D4B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\workshop\Workshop.exe
    FirewallRules: [{E653C096-9E51-4FCD-8671-1DC0CCE9E47A}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
    FirewallRules: [{E7174DED-2286-4982-A121-EF028DF23226}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
    FirewallRules: [{48663568-BA3B-40C2-ACC6-AE11626983DA}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
    FirewallRules: [{3C82D95D-739F-4C7F-9ABC-5D0C531EB613}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
    FirewallRules: [{6A4B05D5-C218-4E3B-AD57-DCFE6E67EAF9}] => (Allow) C:\Program Files (x86)\Origin Games\Zuma's Revenge\ZumasRevenge.exe
    FirewallRules: [{E3C1FD70-4513-407B-9AA0-95C69692C8CA}] => (Allow) C:\Program Files (x86)\Origin Games\Zuma's Revenge\ZumasRevenge.exe
    FirewallRules: [{ABD3BF97-E34F-44A6-A804-7710C2964356}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CardHunter\CardHunter.exe
    FirewallRules: [{3D09A1C4-063C-46D3-A2ED-0F1DD56B73E5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CardHunter\CardHunter.exe
    FirewallRules: [TCP Query User{7E1BB079-B483-4C38-8121-72B703B2E1A8}C:\users\lukaas\downloads\java\jre1.7.0_75\bin\java.exe] => (Allow) C:\users\lukaas\downloads\java\jre1.7.0_75\bin\java.exe
    FirewallRules: [UDP Query User{1004662F-BA59-494D-9F4F-200E5437C3D9}C:\users\lukaas\downloads\java\jre1.7.0_75\bin\java.exe] => (Allow) C:\users\lukaas\downloads\java\jre1.7.0_75\bin\java.exe
    FirewallRules: [{C9386333-FFEA-4CDE-831E-34ADFD21EB62}] => (Allow) C:\Program Files\iTunes\iTunes.exe
    FirewallRules: [{3F8E37AB-E48A-4CEF-881A-8169BBF3F42E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
    FirewallRules: [{30C85A09-172B-42D5-B1E5-2434C00C892A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
    FirewallRules: [{3E0EE0E6-8AA5-45E5-B24B-729F3AA5A892}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\Win32\UDK.exe
    FirewallRules: [{EC299DC2-6700-4EAD-818E-3D0201EF867A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\Win32\UDK.exe
    FirewallRules: [{F75EE031-E562-426F-9E79-1E773F8D57D0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\Win64\UDK.exe
    FirewallRules: [{76B26D82-F5CE-4D91-8739-AB5FEA37161D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\Win64\UDK.exe
    FirewallRules: [{B2735628-253A-4396-B399-2445A1F88E2B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\UDKLift.exe
    FirewallRules: [{5A89C20C-3376-4752-9811-1941D41149A8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\UDKLift.exe
    FirewallRules: [{094D6D49-26BC-4F28-B2AA-193D9B6C845C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\WOG\disasm.exe
    FirewallRules: [{2883DBB9-F23E-442B-8836-E795D0D8751A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\WOG\disasm.exe
    FirewallRules: [{0A53618D-1CA1-4927-9B8B-3989B1596B83}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
    FirewallRules: [{5ADB27DD-BBE9-458C-B501-4462FEB037B8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
    FirewallRules: [{D23BBB07-DDD9-4F39-A0DF-D545A86A7C77}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe

    ==================== Faulty Device Manager Devices =============

    Name: K:\
    Description: SM/xD-Picture
    Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
    Manufacturer: Generic-
    Service: WUDFRd
    Problem: : Windows has stopped this device because it has reported problems. (Code 43)
    Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.

    Name: L:\
    Description: MS/MS-Pro
    Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
    Manufacturer: Generic-
    Service: WUDFRd
    Problem: : Windows has stopped this device because it has reported problems. (Code 43)
    Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.

    Name: Broadcom WLAN Adapter
    Description: Broadcom WLAN Adapter
    Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
    Manufacturer: Broadcom
    Service: BCM43XX
    Problem: : This device is disabled. (Code 22)
    Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

    Name: SPH-L520
    Description: SPH-L520
    Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
    Manufacturer: SAMSUNG Electronics Co. Ltd.
    Service: WUDFRd
    Problem: : Windows has stopped this device because it has reported problems. (Code 43)
    Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.

    Name: I:\
    Description: SD/MMC
    Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
    Manufacturer: Generic-
    Service: WUDFRd
    Problem: : Windows has stopped this device because it has reported problems. (Code 43)
    Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.


    ==================== Event log errors: =========================

    Application errors:
    ==================
    Error: (09/06/2015 10:17:04 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
    Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

    Details:
    AddLegacyDriverFiles: Unable to back up image of binary ujkgtnho.

    System Error:
    The system cannot find the file specified.
    .

    Error: (09/06/2015 10:06:48 PM) (Source: Application Error) (EventID: 1000) (User: )
    Description: Faulting application name: bjcejsqc.exe, version: 2.1.19357.0, time stamp: 0x52e7ea83
    Faulting module name: bjcejsqc.exe, version: 2.1.19357.0, time stamp: 0x52e7ea83
    Exception code: 0xc0000005
    Fault offset: 0x0008d93e
    Faulting process id: 0x18f0
    Faulting application start time: 0xbjcejsqc.exe0
    Faulting application path: bjcejsqc.exe1
    Faulting module path: bjcejsqc.exe2
    Report Id: bjcejsqc.exe3

    Error: (09/02/2015 07:17:11 AM) (Source: Application Hang) (EventID: 1002) (User: )
    Description: The program msseces.exe version 4.8.204.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

    Process ID: c7c

    Start Time: 01d0e4a4d6707ee9

    Termination Time: 112

    Application Path: C:\Program Files\Microsoft Security Client\msseces.exe

    Report Id: 490d86d1-5163-11e5-b94b-902b342690f8

    Error: (09/02/2015 04:13:06 AM) (Source: System Restore) (EventID: 8193) (User: )
    Description: Failed to create restore point (Process = C:\Windows\system32\svchost.exe -k netsvcs; Description = Windows Update; Error = 0x81000101).

    Error: (09/01/2015 07:04:00 AM) (Source: OverwolfUpdater) (EventID: 0) (User: )
    Description: Service cannot be started. An instance of the service is already running

    Error: (09/01/2015 07:04:00 AM) (Source: OverwolfUpdater) (EventID: 0) (User: )
    Description: Service cannot be started. The handle is invalid

    Error: (08/31/2015 07:54:47 PM) (Source: Application Hang) (EventID: 1002) (User: )
    Description: The program msseces.exe version 4.8.204.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

    Process ID: d08

    Start Time: 01d0e418fbd2c58a

    Termination Time: 0

    Application Path: C:\Program Files\Microsoft Security Client\msseces.exe

    Report Id: a4be47b7-503b-11e5-9f4d-902b342690f8

    Error: (08/31/2015 02:24:11 PM) (Source: OverwolfUpdater) (EventID: 0) (User: )
    Description: Service cannot be started. An instance of the service is already running

    Error: (08/31/2015 02:24:11 PM) (Source: OverwolfUpdater) (EventID: 0) (User: )
    Description: Service cannot be started. The handle is invalid

    Error: (08/30/2015 03:16:32 PM) (Source: Application Hang) (EventID: 1002) (User: )
    Description: The program msseces.exe version 4.8.204.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

    Process ID: f68

    Start Time: 01d0e33c98c98c67

    Termination Time: 4

    Application Path: C:\Program Files\Microsoft Security Client\msseces.exe

    Report Id: 6c0b9c9f-4f3c-11e5-a6d7-902b342690f8


    System errors:
    =============
    Error: (09/06/2015 08:49:55 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
    Description: The ScRegSetValueExW call failed for FailureCommand with the following error:
    %%5

    Error: (09/06/2015 08:48:28 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
    Description: The ScRegSetValueExW call failed for Start with the following error:
    %%5

    Error: (09/06/2015 08:36:57 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
    Description: The LogMeIn Hamachi Tunneling Engine service failed to start due to the following error:
    %%1053

    Error: (09/06/2015 08:36:57 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
    Description: A timeout was reached (30000 milliseconds) while waiting for the LogMeIn Hamachi Tunneling Engine service to connect.

    Error: (09/06/2015 08:35:04 PM) (Source: EventLog) (EventID: 6008) (User: )
    Description: The previous system shutdown at 8:21:31 PM on ‎9/‎6/‎2015 was unexpected.

    Error: (09/06/2015 08:33:08 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
    Description: A timeout was reached (30000 milliseconds) while waiting for the Windows Error Reporting Service service to connect.

    Error: (09/06/2015 08:32:38 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
    Description: A timeout was reached (30000 milliseconds) while waiting for the Windows Error Reporting Service service to connect.

    Error: (09/06/2015 08:31:08 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
    Description: A timeout was reached (30000 milliseconds) while waiting for the Windows Error Reporting Service service to connect.

    Error: (09/06/2015 08:31:00 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
    Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the MsMpSvc service.

    Error: (09/06/2015 06:34:34 PM) (Source: DCOM) (EventID: 10010) (User: )
    Description: {022105BD-948A-40C9-AB42-A3300DDF097F}


    Microsoft Office:
    =========================
    Error: (09/06/2015 10:17:04 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
    Description: Details:
    AddLegacyDriverFiles: Unable to back up image of binary ujkgtnho.

    System Error:
    The system cannot find the file specified.

    Error: (09/06/2015 10:06:48 PM) (Source: Application Error) (EventID: 1000) (User: )
    Description: bjcejsqc.exe2.1.19357.052e7ea83bjcejsqc.exe2.1.19357.052e7ea83c00000050008d93e18f001d0e910b6aae064C:\Users\Lukaas\Downloads\bjcejsqc.exeC:\Users\Lukaas\Downloads\bjcejsqc.exe1837219a-5505-11e5-bd1c-902b342690f8

    Error: (09/02/2015 07:17:11 AM) (Source: Application Hang) (EventID: 1002) (User: )
    Description: msseces.exe4.8.204.0c7c01d0e4a4d6707ee9112C:\Program Files\Microsoft Security Client\msseces.exe490d86d1-5163-11e5-b94b-902b342690f8

    Error: (09/02/2015 04:13:06 AM) (Source: System Restore) (EventID: 8193) (User: )
    Description: C:\Windows\system32\svchost.exe -k netsvcsWindows Update0x81000101

    Error: (09/01/2015 07:04:00 AM) (Source: OverwolfUpdater) (EventID: 0) (User: )
    Description: Service cannot be started. An instance of the service is already running

    Error: (09/01/2015 07:04:00 AM) (Source: OverwolfUpdater) (EventID: 0) (User: )
    Description: Service cannot be started. The handle is invalid

    Error: (08/31/2015 07:54:47 PM) (Source: Application Hang) (EventID: 1002) (User: )
    Description: msseces.exe4.8.204.0d0801d0e418fbd2c58a0C:\Program Files\Microsoft Security Client\msseces.exea4be47b7-503b-11e5-9f4d-902b342690f8

    Error: (08/31/2015 02:24:11 PM) (Source: OverwolfUpdater) (EventID: 0) (User: )
    Description: Service cannot be started. An instance of the service is already running

    Error: (08/31/2015 02:24:11 PM) (Source: OverwolfUpdater) (EventID: 0) (User: )
    Description: Service cannot be started. The handle is invalid

    Error: (08/30/2015 03:16:32 PM) (Source: Application Hang) (EventID: 1002) (User: )
    Description: msseces.exe4.8.204.0f6801d0e33c98c98c674C:\Program Files\Microsoft Security Client\msseces.exe6c0b9c9f-4f3c-11e5-a6d7-902b342690f8


    ==================== Memory info ===========================

    Processor: AMD FX(tm)-8120 Eight-Core Processor
    Percentage of memory in use: 72%
    Total physical RAM: 7966.89 MB
    Available physical RAM: 2208.39 MB
    Total Virtual: 15931.98 MB
    Available Virtual: 9870.32 MB

    ==================== Drives ================================

    Drive c: (OS) (Fixed) (Total:1845.66 GB) (Free:446.75 GB) NTFS
    Drive d: (HP_RECOVERY) (Fixed) (Total:16.88 GB) (Free:2.11 GB) NTFS ==>[system with boot components (obtained from reading drive)]
    Drive f: (WD SmartWare) (CDROM) (Total:0.44 GB) (Free:0 GB) UDF
    Drive g: (My Book) (Fixed) (Total:930.86 GB) (Free:327.57 GB) NTFS

    ==================== MBR & Partition Table ==================

    ========================================================
    Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1862.6 GB) (Disk ID: 43FE6514)
    Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
    Partition 2: (Not Active) - (Size=1845.7 GB) - (Type=07 NTFS)
    Partition 3: (Not Active) - (Size=16.9 GB) - (Type=07 NTFS)

    ========================================================
    Disk: 1 (MBR Code: Windows XP) (Size: 930.9 GB) (Disk ID: 000564D0)
    Partition 1: (Not Active) - (Size=930.9 GB) - (Type=07 NTFS)

    ==================== End of Addition.txt ============================
     
  8. Broni

    Broni Malware Annihilator Posts: 52,892   +344

    Welcome aboard [​IMG]

    Please, observe following rules:
    • Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
    • If you're stuck, or you're not sure about certain step, always ask before doing anything else.
    • Please refrain from running any tools, fixes or applying any changes to your computer other than those I suggest.
    • Never run more than one scan at a time.
    • Keep updating me regarding your computer behavior, good, or bad.
    • The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
    • If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
    • I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.

    =======================================

    [​IMG] Download RogueKiller from one of the following links and save it to your Desktop:

    Link 1
    Link 2
    • Close all the running programs
    • Windows Vista/7/8 users: right click on RogueKiller.exe, click Run as Administrator
    • Otherwise just double-click on RogueKiller.exe
    • Pre-scan will start. Let it finish.
    • Click on SCAN button.
    • Wait until the Status box shows Scan Finished
    • Click on Delete.
    • Wait until the Status box shows Deleting Finished.
    • Click on Report and copy/paste the content of the Notepad into your next reply.
    • RKreport.txt could also be found on your desktop.
    • If more than one log is produced post all logs.
    • If RogueKiller has been blocked, do not hesitate to try a few times more. If really won't run, rename it to winlogon.exe (or winlogon.com) and try again
    [​IMG] Please download Malwarebytes Anti-Malware (MBAM) to your desktop.
    NOTE. If you already have MBAM 2.0 installed scroll down.
    • Double-click mbam-setup-2.0.0.1000.exe and follow the prompts to install the program.
    • At the end, be sure a checkmark is placed next to the following:
    • Launch Malwarebytes Anti-Malware
    • A 14 day trial of the Premium features is pre-selected. You may deselect this if you wish, and it will not diminish the scanning and removal capabilities of the program.
    • Click Finish.
    • On the Dashboard, click the 'Update Now >>' link
    • After the update completes, click the 'Scan Now >>' button.
    • Or, on the Dashboard, click the Scan Now >> button.
    • If an update is available, click the Update Now button.
    • A Threat Scan will begin.
    • When the scan is complete, if there have been detections, click Apply Actions to allow MBAM to clean what was detected.
    • In most cases, a restart will be required.
    • Wait for the prompt to restart the computer to appear, then click on Yes.
    If you already have MBAM 2.0 installed:
    • On the Dashboard, click the 'Update Now >>' link
    • After the update completes, click the 'Scan Now >>' button.
    • Or, on the Dashboard, click the Scan Now >> button.
    • If an update is available, click the Update Now button.
    • A Threat Scan will begin.
    • When the scan is complete, if there have been detections, click Apply Actions to allow MBAM to clean what was detected.
    • In most cases, a restart will be required.
    • Wait for the prompt to restart the computer to appear, then click on Yes.
    How to get logs:
    (Export log to save as txt)
    • After the restart once you are back at your desktop, open MBAM once more.
    • Click on the History tab > Application Logs.
    • Double click on the Scan Log which shows the Date and time of the scan just performed.
    • Click 'Export'.
    • Click 'Text file (*.txt)'
    • In the Save File dialog box which appears, click on Desktop.
    • In the File name: box type a name for your scan log.
    • A message box named 'File Saved' should appear stating "Your file has been successfully exported".
    • Click Ok
    • Attach that saved log to your next reply.
    (Copy to clipboard for pasting into forum replies or tickets)
    • After the restart once you are back at your desktop, open MBAM once more.
    • Click on the History tab > Application Logs.
    • Double click on the Scan Log which shows the Date and time of the scan just performed.
    • Click 'Copy to Clipboard'
    • Paste the contents of the clipboard into your reply.
    [​IMG] Please download AdwCleaner by Xplode onto your desktop.
    • Close all open programs and internet browsers.
    • Double click on adwcleaner.exe to run the tool.
    • Click on Scan button.
    • When the scan has finished click on Clean button.
    • Your computer will be rebooted automatically. A text file will open after the restart.
    • Please post the contents of that logfile with your next reply.
    • You can find the logfile at C:\AdwCleaner[S1].txt as well.
    [​IMG] Please download Junkware Removal Tool to your desktop.
    • Shut down your protection software now to avoid potential conflicts.
    • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
    • The tool will open and start scanning your system.
    • Please be patient as this can take a while to complete depending on your system's specifications.
    • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
    • Post the contents of JRT.txt into your next message.
     
  9. Lukaas Hendrix

    Lukaas Hendrix TS Rookie Topic Starter Posts: 27

    RogueKiller V10.10.4.0 [Sep 4 2015] by Adlice Software
    mail : http://www.adlice.com/contact/
    Feedback : http://forum.adlice.com
    Website : http://www.adlice.com/software/roguekiller/
    Blog : http://www.adlice.com

    Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
    Started in : Normal mode
    User : Lukaas [Administrator]
    Started from : C:\Users\Lukaas\Downloads\RogueKiller.exe
    Mode : Delete -- Date : 09/07/2015 07:00:28

    ¤¤¤ Processes : 0 ¤¤¤

    ¤¤¤ Registry : 3 ¤¤¤
    [PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{13C6AD6C-7D45-4B5A-A77F-EFA731EFA678} | DhcpNameServer : 10.77.0.254 ([X]) -> Not selected
    [PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{13C6AD6C-7D45-4B5A-A77F-EFA731EFA678} | DhcpNameServer : 10.77.0.254 ([X]) -> Not selected
    [PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{13C6AD6C-7D45-4B5A-A77F-EFA731EFA678} | DhcpNameServer : 10.77.0.254 ([X]) -> Not selected

    ¤¤¤ Tasks : 0 ¤¤¤

    ¤¤¤ Files : 0 ¤¤¤

    ¤¤¤ Hosts File : 0 ¤¤¤

    ¤¤¤ Antirootkit : 26 (Driver: Not loaded [0xc000036b]) ¤¤¤
    [IAT:Inl(Hook.IEAT)] (chrome.exe @ avcodec-54.dll) avutil-51.dll - ‰‹Q‹‚‹UЉD‹L$‹\$‹‹TS¬ÐÑê‰Á‰Ðá%‰‰F¸ : Unknown @ 0x7ebd797 (jmp 0x9|jmp 0x9|jmp 0x9)
    [IAT:Inl(Hook.IEAT)] (chrome.exe @ avcodec-54.dll) avutil-51.dll - n in DOS mode.


    $ : Unknown @ 0x3e8921de (jmp 0x3a9f6008)
    [IAT:Inl(Hook.IEAT)] (chrome.exe @ avcodec-54.dll) avutil-51.dll - Ö : Unknown @ 0x226c9e (call 0xf3df)
    [IAT:Inl(Hook.IEAT)] (chrome.exe @ avcodec-54.dll) avutil-51.dll - Ö : Unknown @ 0xffffffffe88d4e98 (call 0xe8080207)
    [IAT:Inl(Hook.IEAT)] (chrome.exe @ avcodec-54.dll) avutil-51.dll - Ö : Unknown @ 0x386830df (call 0x2f6d6f0d)
    [IAT:Inl(Hook.IEAT)] (chrome.exe @ avcodec-54.dll) avutil-51.dll - L‹t$`‹|$l…ÿ‹^|…æ : Unknown @ 0x94cd6a4 (call 0x4054bdc)
    [IAT:Inl(Hook.IEAT)] (chrome.exe @ avcodec-54.dll) avutil-51.dll - Ö : Unknown @ 0x458b4c (jmp 0x3f)
    [IAT:Inl(Hook.IEAT)] (chrome.exe @ avcodec-54.dll) avutil-51.dll - Ö : Unknown @ 0x60f46e8f (call 0x5808eb87)
    [IAT:Inl(Hook.IEAT)] (chrome.exe @ avcodec-54.dll) avutil-51.dll - Ö : Unknown @ 0xfffffffffc853e78 (call 0xec0db305)
    [IAT:Inl(Hook.IEAT)] (chrome.exe @ avcodec-54.dll) avutil-51.dll -

    $ : Unknown @ 0x7dcb4595 (call 0x7508c28d)
    [IAT:Inl(Hook.IEAT)] (chrome.exe @ avcodec-54.dll) avutil-51.dll - Ö : Unknown @ 0x61c7509c (call 0x5f000408)
    [IAT:Inl(Hook.IEAT)] (chrome.exe @ avcodec-54.dll) avutil-51.dll - |)ы|$pÓï‹L$|ƒÂ Ïω|$d‹{‹L$d‰‹K‹|$hƒÁ)ú‰K‹|$pˆÁ‰;¿ : Unknown @ 0xffffffffeae1881d (call 0xe820050b)
    [IAT:Inl(Hook.IEAT)] (chrome.exe @ avcodec-54.dll) avutil-51.dll - Ö : Unknown @ 0xffffffff8e9242da (jmp 0x866dfdf8)
    [IAT:Inl(Hook.IEAT)] (chrome.exe @ avcodec-54.dll) avutil-51.dll -


    $ : Unknown @ 0xfffffffff97ee39d (call 0xf1ffc528)
    [IAT:Inl(Hook.IEAT)] (chrome.exe @ avcodec-54.dll) avutil-51.dll - Ö : Unknown @ 0x111e2d22 (call 0xa06a909)
    [IAT:Inl(Hook.IEAT)] (chrome.exe @ avcodec-54.dll) avutil-51.dll - Ö : Unknown @ 0x4938976 (jmp 0x71)
    [IAT:Inl(Hook.IEAT)] (chrome.exe @ avcodec-54.dll) avutil-51.dll - Ö : Unknown @ 0x7eaeec29 (call 0x79626330)
    [IAT:Inl(Hook.IEAT)] (chrome.exe @ avformat-54.dll) avcodec-54.dll - avpriv_frame_rate_tab : Unknown @ 0xffffffff827ed674 (jmp 0x18000008)
    [IAT:Inl(Hook.IEAT)] (chrome.exe @ avformat-54.dll) avutil-51.dll -

    $ : Unknown @ 0x1b894ac2 (jmp 0x7002e9e)
    [IAT:Inl(Hook.IEAT)] (chrome.exe @ avformat-54.dll) avcodec-54.dll - : Unknown @ 0xd04ea6b (jmp 0xc30c5e7)
    [IAT:Inl(Hook.IEAT)] (chrome.exe @ avformat-54.dll) avcodec-54.dll - n in DOS mode.


    $ : Unknown @ 0x3855f0f (call 0xefff2e4d)
    [IAT:Inl(Hook.IEAT)] (chrome.exe @ swscale-2.dll) avutil-51.dll - Ž‹t$Žë : Unknown @ 0xc78201 (jmp 0x8)
    [IAT:Inl(Hook.IEAT)] (chrome.exe @ swscale-2.dll) avutil-51.dll - ºÿ : Unknown @ 0x2854d18 (jmp 0x56)
    [IAT:Inl(Hook.IEAT)] (chrome.exe @ swscale-2.dll) avutil-51.dll - : Unknown @ 0x7dcb4595 (call 0x7508c28d)
    [IAT:Inl(Hook.IEAT)] (chrome.exe @ swscale-2.dll) avutil-51.dll - ÿ‰êÁ⊒I&ºhÀêƒâ€ú„£ðÿÿº`'nƒ{D
    ŽÄÿÿº@5né
    ÄÿÿÁ⊒I&ºhÀêƒâ€ú„’óÿÿº`'nƒ{D
    ŽåÈÿÿºðBnéÛÈÿÿ‰éÁ኉I&ºhÀéƒá€ù„¶¾ÿÿ¹` nƒ{D
    ŽÐÖÿÿ¹ÐnéÆÖÿÿ¶ : Unknown @ 0x2fd845b (jmp 0x4c)
    [IAT:Inl(Hook.IEAT)] (chrome.exe @ swscale-2.dll) avutil-51.dll - : Unknown @ 0x1a11215a (jmp 0x19fc01d5)

    ¤¤¤ Web browsers : 0 ¤¤¤

    ¤¤¤ MBR Check : ¤¤¤
    +++++ PhysicalDrive0: Hitachi HDS723020BLA642 SCSI Disk Device +++++
    --- User ---
    [MBR] d562f90a9e55a1975a87cef0ab47223f
    [BSP] 793d528d2988de1918c86923630f2100 : Windows Vista/7/8|VT.Unknown MBR Code
    Partition table:
    0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
    1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 1889956 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
    2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 3870836736 | Size: 17290 MB [Error reading VBR! ([83] An attempt was made to move the file pointer before the beginning of the file. )]
    User != LL1 ... KO!
    --- LL1 ---
    [MBR] d562f90a9e55a1975a87cef0ab47223f
    [BSP] 793d528d2988de1918c86923630f2100 : Windows Vista/7/8|VT.Unknown MBR Code
    Partition table:
    0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
    1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 1889956 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
    2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 3870836736 | Size: 17290 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
    Error reading LL2 MBR! ([1] Incorrect function. )

    +++++ PhysicalDrive1: WD My Book 1110 USB Device +++++
    --- User ---
    [MBR] 709d8a2c88460821507ec6a7ae2ac5fa
    [BSP] 558605428eb65a0828f607cca80cbdc2 : Windows XP MBR Code
    Partition table:
    0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 63 | Size: 953198 MB [Windows XP Bootstrap | Windows XP Bootloader]
    User = LL1 ... OK
    Error reading LL2 MBR! ([32] The request is not supported. )

    +++++ PhysicalDrive2: Generic- SD/MMC USB Device +++++
    Error reading User MBR! ([15] The device is not ready. )
    Error reading LL1 MBR! NOT VALID!
    Error reading LL2 MBR! ([32] The request is not supported. )

    +++++ PhysicalDrive3: Generic- Compact Flash USB Device +++++
    Error reading User MBR! ([15] The device is not ready. )
    Error reading LL1 MBR! NOT VALID!
    Error reading LL2 MBR! ([32] The request is not supported. )

    +++++ PhysicalDrive4: Generic- SM/xD-Picture USB Device +++++
    Error reading User MBR! ([15] The device is not ready. )
    Error reading LL1 MBR! NOT VALID!
    Error reading LL2 MBR! ([32] The request is not supported. )

    +++++ PhysicalDrive5: Generic- MS/MS-Pro USB Device +++++
    Error reading User MBR! ([15] The device is not ready. )
    Error reading LL1 MBR! NOT VALID!
    Error reading LL2 MBR! ([32] The request is not supported. )
     
  10. Lukaas Hendrix

    Lukaas Hendrix TS Rookie Topic Starter Posts: 27

    Malwarebytes Anti-Malware
    www.malwarebytes.org

    Scan Date: 9/7/2015
    Scan Time: 3:28 AM
    Logfile: MBAM Report.txt
    Administrator: Yes

    Version: 2.1.8.1057
    Malware Database: v2015.09.06.05
    Rootkit Database: v2015.08.16.01
    License: Premium
    Malware Protection: Enabled
    Malicious Website Protection: Enabled
    Self-protection: Disabled

    OS: Windows 7 Service Pack 1
    CPU: x64
    File System: NTFS
    User: Lukaas

    Scan Type: Threat Scan
    Result: Completed
    Objects Scanned: 391950
    Time Elapsed: 2 hr, 26 min, 8 sec

    Memory: Enabled
    Startup: Enabled
    Filesystem: Enabled
    Archives: Enabled
    Rootkits: Disabled
    Heuristics: Enabled
    PUP: Warn
    PUM: Enabled

    Processes: 0
    (No malicious items detected)

    Modules: 0
    (No malicious items detected)

    Registry Keys: 0
    (No malicious items detected)

    Registry Values: 0
    (No malicious items detected)

    Registry Data: 0
    (No malicious items detected)

    Folders: 0
    (No malicious items detected)

    Files: 0
    (No malicious items detected)

    Physical Sectors: 0
    (No malicious items detected)


    (end)
     
  11. Lukaas Hendrix

    Lukaas Hendrix TS Rookie Topic Starter Posts: 27

    # AdwCleaner v5.006 - Logfile created 07/09/2015 at 10:21:27
    # Updated 06/09/2015 by Xplode
    # Database : 2015-09-04.4 [Server]
    # Operating system : Windows 7 Home Premium Service Pack 1 (x64)
    # Username : Lukaas - DEATHSTAR
    # Running from : C:\Users\Lukaas\Downloads\adwcleaner_5.006 (1).exe
    # Option : Cleaning
    # Support : http://toolslib.net/forum

    ***** [ Services ] *****

    [-] Service Deleted : PanService

    ***** [ Folders ] *****

    [-] Folder Deleted : C:\Program Files (x86)\PANDORA.TV
    [-] Folder Deleted : C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpphkkgodbfncbcpgopijlfakfgmclao
    [-] Folder Deleted : C:\Users\Lukaas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GreatArcadeHits

    ***** [ Files ] *****

    [-] File Deleted : C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bpphkkgodbfncbcpgopijlfakfgmclao_0.localstorage
    [-] File Deleted : C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bpphkkgodbfncbcpgopijlfakfgmclao_0.localstorage-journal
    [-] File Deleted : C:\Users\Lukaas\AppData\Local\Temp\Utils.dll

    ***** [ Shortcuts ] *****


    ***** [ Scheduled tasks ] *****


    ***** [ Registry ] *****

    [-] Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}
    [-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
    [-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}
    [-] Key Deleted : HKCU\Software\Softonic
    [-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Steam App 228200
    [-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4E07955B-3507-4A1D-A353-56456E0AC948}_is1
    [!] Key Not Deleted : [x64] HKCU\Software\Softonic

    ***** [ Web browsers ] *****

    [-] [C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : bpphkkgodbfncbcpgopijlfakfgmclao

    *************************

    :: Winsock settings cleared

    ########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [2147 bytes] ##########
     
  12. Lukaas Hendrix

    Lukaas Hendrix TS Rookie Topic Starter Posts: 27

    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Junkware Removal Tool (JRT) by Malwarebytes
    Version: 7.6.0 (08.31.2015:1)
    OS: Windows 7 Home Premium x64
    Ran by Lukaas on Mon 09/07/2015 at 10:00:48.11
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




    ~~~ Services

    Successfully deleted: [Service] panservice [Reboot required]



    ~~~ Tasks



    ~~~ Registry Values

    Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_95D8372D147F8CB08F6EF5983D2A500B



    ~~~ Registry Keys

    Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\APN PIP
    Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\PIP
    Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\PIP
    Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
    Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{CAB93E0E-0607-4BC5-ADF7-0D97392EF12B}
    Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
    Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{CAB93E0E-0607-4BC5-ADF7-0D97392EF12B}



    ~~~ Files

    Successfully deleted: [File] C:\Users\Lukaas\Appdata\Local\google\chrome\user data\default\local storage\hxxp_lyrics.wikia.com_0.localstorage
    Successfully deleted: [File] C:\Users\Lukaas\Appdata\Local\google\chrome\user data\default\local storage\hxxp_lyrics.wikia.com_0.localstorage-journal
    Successfully deleted: [File] C:\Users\Lukaas\Appdata\Local\google\chrome\user data\default\local storage\hxxp_services.hearstmags.com_0.localstorage
    Successfully deleted: [File] C:\Users\Lukaas\Appdata\Local\google\chrome\user data\default\local storage\hxxp_services.hearstmags.com_0.localstorage-journal
    Successfully deleted: [File] C:\Users\Lukaas\Appdata\Local\google\chrome\user data\default\local storage\hxxp_www.ask.com_0.localstorage
    Successfully deleted: [File] C:\Users\Lukaas\Appdata\Local\google\chrome\user data\default\local storage\hxxp_www.ask.com_0.localstorage-journal
    Successfully deleted: [File] C:\Users\Lukaas\Appdata\Local\google\chrome\user data\default\local storage\hxxp_www.lyricsfreak.com_0.localstorage
    Successfully deleted: [File] C:\Users\Lukaas\Appdata\Local\google\chrome\user data\default\local storage\hxxp_www.lyricsfreak.com_0.localstorage-journal
    Successfully deleted: [File] C:\Users\Lukaas\Appdata\Local\google\chrome\user data\default\local storage\hxxp_www.lyricsmode.com_0.localstorage
    Successfully deleted: [File] C:\Users\Lukaas\Appdata\Local\google\chrome\user data\default\local storage\hxxp_www.lyricsmode.com_0.localstorage-journal
    Successfully deleted: [File] C:\Users\Lukaas\Appdata\Local\google\chrome\user data\default\local storage\hxxp_www.metrolyrics.com_0.localstorage
    Successfully deleted: [File] C:\Users\Lukaas\Appdata\Local\google\chrome\user data\default\local storage\hxxp_www.metrolyrics.com_0.localstorage-journal
    Successfully deleted: [File] C:\Users\Lukaas\Appdata\Local\google\chrome\user data\default\local storage\hxxp_www.superfish.com_0.localstorage
    Successfully deleted: [File] C:\Users\Lukaas\Appdata\Local\google\chrome\user data\default\local storage\hxxp_www.superfish.com_0.localstorage-journal
    Successfully deleted: [File] C:\Users\Lukaas\Appdata\Local\google\chrome\user data\default\local storage\hxxps_www.superfish.com_0.localstorage
    Successfully deleted: [File] C:\Users\Lukaas\Appdata\Local\google\chrome\user data\default\local storage\hxxps_www.superfish.com_0.localstorage-journal



    ~~~ Folders

    Successfully deleted: [Empty Folder] C:\Users\Lukaas\Appdata\Local\{31914315-B641-454D-8459-7833C34CDF54}
    Successfully deleted: [Folder] C:\Program Files (x86)\predm
    Successfully deleted: [Folder] C:\ProgramData\ask
    Successfully deleted: [Folder] C:\Users\Lukaas\Appdata\Local\crashrpt
    Successfully deleted: [Folder] C:\Users\Lukaas\AppData\Roaming\System
    Successfully deleted: [Folder] C:\Users\Lukaas\AppData\Roaming\wyupdate au
    Successfully deleted: [Folder] C:\Users\Lukaas\Appdata\Local\28050



    ~~~ Chrome


    [C:\Users\Lukaas\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - default search provider reset

    [C:\Users\Lukaas\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted:

    [C:\Users\Lukaas\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset

    [C:\Users\Lukaas\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted:
    [
    ocifcogajbgikalbpphmoedjlcfjkhgh
    ]





    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Scan was completed on Mon 09/07/2015 at 10:16:44.58
    End of JRT log
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
     
  13. Broni

    Broni Malware Annihilator Posts: 52,892   +344

    Please download ComboFix from Here, Here or Here to your Desktop.

    **Note: In the event you already have Combofix, this is a new version that I need you to download. It is important that it is saved directly to your desktop**
    • Never rename Combofix unless instructed.
    • Close any open browsers.
    • Very Important! Temporarily disable your anti-virus and any anti-malware real-time protection before performing a scan. They can interfere with ComboFix or remove some of its embedded files which may cause "unpredictable results".
    • Click on this link to see a list of programs that should be disabled. The list is not all inclusive. If yours is not listed and you don't know how to disable it, please ask.
    • Close any open browsers.
    • WARNING: Combofix will disconnect your machine from the Internet as soon as it starts
    • Please do not attempt to re-connect your machine back to the Internet until Combofix has completely finished.
    • If there is no internet connection after running Combofix, then restart your computer to restore back your connection.
      If the connection is not there use restore point you created prior to running Combofix.
    • Double click on combofix.exe & follow the prompts.

    • NOTE1. If Combofix asks you to install Recovery Console, please allow it.
      NOTE 2. If Combofix asks you to update the program, always do so.
    • When finished, it will produce a report for you.
    • Please post the "C:\ComboFix.txt"
    **Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall
    **Note 2 for AVG and CA Internet Security (Total Defense Internet Security) users: ComboFix will not run until AVG/CA Internet Security is uninstalled as a protective measure against the anti-virus. This is because AVG/CA Internet Security "falsely" detects ComboFix (or its embedded files) as a threat and may remove them resulting in the tool not working correctly which in turn can cause "unpredictable results". Since AVG/CA Internet Security cannot be effectively disabled before running ComboFix, the author recommends you to uninstall AVG/CA Internet Security first.
    Use AppRemover to uninstall it: http://www.appremover.com/
    We can reinstall it when we're done with CF.
    **Note 3: If you receive an error Illegal operation attempted on a registery key that has been marked for deletion, restart computer to fix the issue.
    **Note 4: Some infections may take some significant time to be cured. As long as your computer clock is running Combofix is still working. Be patient.


    Make sure, you re-enable your security programs, when you're done with Combofix.

    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

    NOTE.
    If, for some reason, Combofix refuses to run, try the following...

    Delete Combofix file, download fresh one, but rename combofix.exe to your_name.exe BEFORE saving it to your desktop.
    Do NOT run it yet.
    Download Rkill (courtesy of BleepingComputer.com) to your desktop.
    There are 2 different versions. If one of them won't run then download and try to run the other one.
    You only need to get one of these to run, not all of them. You may get warnings from your antivirus about this tool, ignore them or shutdown your antivirus.

    rKill.exe: http://www.bleepingcomputer.com/download/rkill/dl/10/
    iExplore.exe (renamed rKill.exe): http://www.bleepingcomputer.com/download/rkill/dl/11/

    Restart computer in safe mode

    • Double-click on the Rkill desktop icon to run the tool.
    • If using Windows Vista, 7 or 8 right-click on it and choose Run As Administrator.
    • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
    • If not, delete the file, then download and use the one provided in Link 2.
    • Do not reboot until instructed.
    • If the tool does not run from any of the links provided, please let me know.

    When the scan is done Notepad will open with rKill.txt log.
    NOTE. rKill.txt log will also be present on your desktop.

    Once you've gotten one of them to run, immediately run your_name.exe by double clicking on it.

    IF you had to run rKill post BOTH logs, rKill.txt and Combofix.txt.
     
  14. Lukaas Hendrix

    Lukaas Hendrix TS Rookie Topic Starter Posts: 27

    ComboFix 15-09-07.01 - Lukaas 09/07/2015 20:13:17.1.8 - x64
    Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.7967.5727 [GMT -4:00]
    Running from: c:\users\Lukaas\Downloads\ComboFix.exe
    AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
    AV: Microsoft Security Essentials *Enabled/Updated* {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
    AV: Norton Internet Security *Disabled/Outdated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
    FW: Norton Internet Security *Disabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
    SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
    SP: Microsoft Security Essentials *Enabled/Updated* {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
    SP: Norton Internet Security *Disabled/Outdated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
    SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    C:\install.exe
    c:\users\Lukaas\Minecraft.exe
    c:\windows\msdownld.tmp
    .
    .
    ((((((((((((((((((((((((( Files Created from 2015-08-08 to 2015-09-08 )))))))))))))))))))))))))))))))
    .
    .
    2015-09-08 00:28 . 2015-09-08 00:28 -------- d-----w- c:\users\Default\AppData\Local\temp
    2015-09-07 14:17 . 2015-09-07 14:21 -------- d-----w- C:\AdwCleaner
    2015-09-07 03:49 . 2015-09-07 03:49 35064 ----a-w- c:\windows\system32\drivers\TrueSight.sys
    2015-09-07 03:49 . 2015-09-07 03:49 -------- d-----w- c:\programdata\RogueKiller
    2015-09-07 03:49 . 2015-09-07 03:49 75888 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{4CC2D435-DD3B-45F5-A3E9-041F37F0B32A}\offreg.1008.dll
    2015-09-07 02:33 . 2015-09-07 02:33 -------- d-----w- c:\users\Lukaas\AppData\Roaming\AVAST Software
    2015-09-07 02:30 . 2015-09-07 02:30 -------- d-----w- c:\program files\Google
    2015-09-07 02:28 . 2015-09-07 02:28 274808 ----a-w- c:\windows\system32\drivers\aswVmm.sys
    2015-09-07 02:28 . 2015-09-07 02:28 150672 ----a-w- c:\windows\system32\drivers\aswStm.sys
    2015-09-07 02:28 . 2015-09-07 02:28 447944 ----a-w- c:\windows\system32\drivers\aswSP.sys
    2015-09-07 02:28 . 2015-09-07 02:28 65224 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
    2015-09-07 02:28 . 2015-09-07 02:28 90968 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
    2015-09-07 02:28 . 2015-09-07 02:28 28656 ----a-w- c:\windows\system32\drivers\aswHwid.sys
    2015-09-07 02:28 . 2015-09-07 02:28 93528 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
    2015-09-07 02:28 . 2015-09-07 02:31 1048344 ----a-w- c:\windows\system32\drivers\aswsnx.sys
    2015-09-07 02:28 . 2015-09-07 02:28 378880 ----a-w- c:\windows\system32\aswBoot.exe
    2015-09-07 02:27 . 2015-09-07 02:27 43112 ----a-w- c:\windows\avastSS.scr
    2015-09-07 02:26 . 2015-09-07 02:26 -------- d-----w- c:\program files\AVAST Software
    2015-09-07 02:18 . 2015-09-07 02:22 -------- d-----w- C:\FRST
    2015-09-07 02:15 . 2015-09-07 02:15 -------- d-----w- c:\programdata\AVAST Software
    2015-09-07 02:00 . 2015-09-07 02:00 75888 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{4CC2D435-DD3B-45F5-A3E9-041F37F0B32A}\offreg.916.dll
    2015-09-07 00:52 . 2015-07-31 09:21 11745192 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{4CC2D435-DD3B-45F5-A3E9-041F37F0B32A}\mpengine.dll
    2015-09-05 23:48 . 2015-07-01 03:35 1190000 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{4F4A3ED2-6A90-48D7-AE1F-85ADFBD289CB}\gapaengine.dll
    2015-09-05 23:46 . 2015-07-31 09:21 11745192 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
    2015-08-19 07:01 . 2015-08-11 01:20 25191936 ----a-w- c:\windows\system32\mshtml.dll
    2015-08-19 07:01 . 2015-08-11 01:14 2724864 ----a-w- c:\windows\system32\mshtml.tlb
    2015-08-19 07:00 . 2015-08-11 00:33 2724864 ----a-w- c:\windows\SysWow64\mshtml.tlb
    2015-08-16 01:14 . 2015-08-16 01:14 -------- d-----w- c:\program files (x86)\iTunes
    2015-08-16 01:14 . 2015-08-16 01:14 -------- d-----w- c:\program files\iPod
    2015-08-16 01:14 . 2015-08-16 01:15 -------- d-----w- c:\program files\iTunes
    2015-08-12 07:49 . 2015-07-30 13:13 103120 ----a-w- c:\windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
    2015-08-12 07:49 . 2015-07-30 13:13 124624 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
    2015-08-11 19:48 . 2015-07-15 03:19 52736 ----a-w- c:\windows\system32\basesrv.dll
    2015-08-11 19:47 . 2015-07-01 20:49 260096 ----a-w- c:\windows\system32\WebClnt.dll
    2015-08-11 19:46 . 2015-05-09 18:26 493504 ----a-w- c:\windows\system32\mcupdate_GenuineIntel.dll
    .
    .
    .
    (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2015-09-07 20:29 . 2015-03-30 01:17 113880 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
    2015-09-07 02:45 . 2012-12-27 19:56 778440 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
    2015-09-07 02:45 . 2012-03-06 00:39 142536 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
    2015-08-12 07:02 . 2012-11-05 19:10 132483416 ----a-w- c:\windows\system32\MRT.exe
    2015-08-03 16:12 . 2013-05-22 16:00 33856 ---ha-w- c:\windows\system32\hamachi.sys
    2015-07-15 17:54 . 2015-08-11 19:49 44032 ----a-w- c:\windows\apppatch\acwow64.dll
    2015-07-05 10:08 . 2010-11-21 03:27 300704 ------w- c:\windows\system32\MpSigStub.exe
    2015-07-04 18:07 . 2015-07-14 21:14 2087424 ----a-w- c:\windows\system32\ole32.dll
    2015-07-04 17:48 . 2015-07-14 21:14 1414656 ----a-w- c:\windows\SysWow64\ole32.dll
    2015-07-01 03:35 . 2013-09-06 01:52 1190000 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
    2015-06-18 12:41 . 2015-03-30 01:16 63704 ----a-w- c:\windows\system32\drivers\mwac.sys
    2015-06-18 12:41 . 2015-03-30 01:16 109272 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
    2015-06-18 12:41 . 2013-08-27 02:23 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
    2015-06-17 17:47 . 2015-07-14 21:14 404992 ----a-w- c:\windows\system32\gdi32.dll
    2015-06-17 17:37 . 2015-07-14 21:14 312320 ----a-w- c:\windows\SysWow64\gdi32.dll
    2015-06-17 04:23 . 2015-06-17 04:23 94208 ----a-w- c:\windows\SysWow64\QuickTimeVR.qtx
    2015-06-17 04:23 . 2015-06-17 04:23 69632 ----a-w- c:\windows\SysWow64\QuickTime.qts
    2015-06-15 21:50 . 2015-07-14 21:13 112064 ----a-w- c:\windows\system32\consent.exe
    2015-06-15 21:45 . 2015-07-14 21:13 3242496 ----a-w- c:\windows\system32\msi.dll
    2015-06-15 21:45 . 2015-07-14 21:13 504320 ----a-w- c:\windows\system32\msihnd.dll
    2015-06-15 21:45 . 2015-07-14 21:13 1941504 ----a-w- c:\windows\system32\authui.dll
    2015-06-15 21:45 . 2015-07-14 21:13 70656 ----a-w- c:\windows\system32\appinfo.dll
    2015-06-15 21:44 . 2015-07-14 21:13 128000 ----a-w- c:\windows\system32\msiexec.exe
    2015-06-15 21:43 . 2015-07-14 21:13 2364416 ----a-w- c:\windows\SysWow64\msi.dll
    2015-06-15 21:43 . 2015-07-14 21:13 337408 ----a-w- c:\windows\SysWow64\msihnd.dll
    2015-06-15 21:43 . 2015-07-14 21:13 1805824 ----a-w- c:\windows\SysWow64\authui.dll
    2015-06-15 21:42 . 2015-07-14 21:13 73216 ----a-w- c:\windows\SysWow64\msiexec.exe
    2015-06-15 21:42 . 2015-07-14 21:13 25088 ----a-w- c:\windows\system32\msimsg.dll
    2015-06-15 21:37 . 2015-07-14 21:13 25088 ----a-w- c:\windows\SysWow64\msimsg.dll
    2012-10-24 01:54 . 2012-10-24 01:54 263186 ----a-w- c:\program files\Minecraft.exe
    .
    .
    ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Note* empty entries & legit default entries are not shown
    REGEDIT4
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
    @="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
    [HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
    2013-06-07 08:36 220632 ----a-w- c:\users\Lukaas\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
    @="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
    [HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
    2013-06-07 08:36 220632 ----a-w- c:\users\Lukaas\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
    @="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
    [HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
    2013-06-07 08:36 220632 ----a-w- c:\users\Lukaas\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
    @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
    2015-08-14 08:16 189464 ----a-w- c:\users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
    @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
    2015-08-14 08:16 189464 ----a-w- c:\users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
    @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
    2015-08-14 08:16 189464 ----a-w- c:\users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "uTorrent"="c:\users\Lukaas\AppData\Roaming\uTorrent\uTorrent.exe" [2015-08-28 1696096]
    "HP ENVY 4500 series (NET)"="c:\program files\hp\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe" [2014-07-21 3487240]
    "Spotify Web Helper"="c:\users\Lukaas\AppData\Roaming\Spotify\SpotifyWebHelper.exe" [2015-08-12 2008632]
    "Spotify"="c:\users\Lukaas\AppData\Roaming\Spotify\Spotify.exe" [2015-08-12 7334968]
    "f.lux"="c:\users\Lukaas\AppData\Local\FluxSoftware\Flux\flux.exe" [2013-10-23 1017224]
    "Dropbox Update"="c:\users\Lukaas\AppData\Local\Dropbox\Update\DropboxUpdate.exe" [2015-06-30 134512]
    "Overwolf"="c:\program files (x86)\Overwolf\Overwolf.exe" [2015-08-19 41200]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
    "HP Software Update"="c:\program files (x86)\HP\HP Software Update\HPWuSchd2.exe" [2013-05-30 96056]
    "doubleTwist"="c:\program files (x86)\doubleTwist\doubleTwist.Light.exe" [2014-05-16 144384]
    "QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2015-06-17 421888]
    "LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2015-08-03 5579624]
    "AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2015-09-07 6111824]
    "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2015-02-11 335232]
    .
    c:\users\Lukaas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
    Curse.lnk - c:\users\Lukaas\AppData\Roaming\Curse Client\Bin\Curse.exe /startup [2015-6-18 7148936]
    Dropbox.lnk - c:\users\Lukaas\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup [2015-5-4 39175960]
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "ConsentPromptBehaviorAdmin"= 5 (0x5)
    "ConsentPromptBehaviorUser"= 3 (0x3)
    "EnableUIADesktopToggle"= 0 (0x0)
    "PromptOnSecureDesktop"= 0 (0x0)
    "SoftwareSASGeneration"= 1 (0x1)
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
    @="Service"
    .
    R2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
    R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
    R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service;c:\program files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe;c:\program files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [x]
    R2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [x]
    R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [x]
    R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
    R3 BRDriver64;BRDriver64;c:\programdata\bitraider\BRDriver64.sys;c:\programdata\bitraider\BRDriver64.sys [x]
    R3 BTWAMPFL;BTWAMPFL;c:\windows\system32\DRIVERS\btwampfl.sys;c:\windows\SYSNATIVE\DRIVERS\btwampfl.sys [x]
    R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x]
    R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys;c:\windows\SYSNATIVE\drivers\EagleX64.sys [x]
    R3 EasyAntiCheat;EasyAntiCheat;c:\windows\system32\EasyAntiCheat.exe;c:\windows\SYSNATIVE\EasyAntiCheat.exe [x]
    R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
    R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys;c:\windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x]
    R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\NisSrv.exe;c:\program files\Microsoft Security Client\NisSrv.exe [x]
    R3 Origin Client Service;Origin Client Service;c:\program files (x86)\Origin\OriginClientService.exe;c:\program files (x86)\Origin\OriginClientService.exe [x]
    R3 OverwolfUpdater;Overwolf Updater Windows SCM;c:\program files (x86)\Overwolf\OverwolfUpdater.exe;c:\program files (x86)\Overwolf\OverwolfUpdater.exe [x]
    R3 PlantronicsGC;PLTGC Interface;c:\windows\system32\drivers\PLTGC.sys;c:\windows\SYSNATIVE\drivers\PLTGC.sys [x]
    R3 SaiH0160;SaiH0160;c:\windows\system32\DRIVERS\SaiH0160.sys;c:\windows\SYSNATIVE\DRIVERS\SaiH0160.sys [x]
    R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
    R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
    R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
    R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
    R4 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe;c:\program files\IDT\WDM\AESTSr64.exe [x]
    R4 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
    R4 AMD_RAIDXpert;AMD RAIDXpert;c:\program files (x86)\AMD\RAIDXpert\bin\RAIDXpertService.exe;c:\program files (x86)\AMD\RAIDXpert\bin\RAIDXpertService.exe [x]
    R4 BRSptSvc;BitRaider Mini-Support Service;c:\programdata\BitRaider\BRSptSvc.exe;c:\programdata\BitRaider\BRSptSvc.exe [x]
    R4 CalendarSynchService;CalendarSynchService;c:\program files (x86)\Hewlett-Packard\TouchSmart\Calendar\Service\GCalService.exe;c:\program files (x86)\Hewlett-Packard\TouchSmart\Calendar\Service\GCalService.exe [x]
    R4 CLKMSVC10_38F51D56;CyberLink Product - 2012/03/05 16:43;c:\program files (x86)\Cyberlink\PowerDVD10\NavFilter\kmsvc.exe;c:\program files (x86)\Cyberlink\PowerDVD10\NavFilter\kmsvc.exe [x]
    R4 Ds3Service;SCP DS3 Service;c:\program files\Scarlet.Crush Productions\bin\ScpService.exe;c:\program files\Scarlet.Crush Productions\bin\ScpService.exe [x]
    R4 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x]
    R4 HPClientSvc;HP Client Services;c:\program files\Hewlett-Packard\HP Client Services\HPClientServices.exe;c:\program files\Hewlett-Packard\HP Client Services\HPClientServices.exe [x]
    R4 pdfcDispatcher;PDF Document Manager;c:\program files (x86)\PDF Complete\pdfsvc.exe;c:\program files (x86)\PDF Complete\pdfsvc.exe [x]
    R4 TunngleService;TunngleService;c:\program files (x86)\Tunngle\TnglCtrl.exe;c:\program files (x86)\Tunngle\TnglCtrl.exe [x]
    S0 ahcix64s;ahcix64s;c:\windows\system32\drivers\ahcix64s.sys;c:\windows\SYSNATIVE\drivers\ahcix64s.sys [x]
    S0 aswRvrt;avast! Revert; [x]
    S0 aswVmm;avast! VM Monitor; [x]
    S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
    S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
    S2 Apple Mobile Device Service;Apple Mobile Device Service;c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe;c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [x]
    S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
    S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
    S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
    S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x]
    S2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [x]
    S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [x]
    S2 NIS;Norton Internet Security;c:\program files (x86)\Norton Internet Security\Engine\19.1.0.28\ccSvcHst.exe;c:\program files (x86)\Norton Internet Security\Engine\19.1.0.28\ccSvcHst.exe [x]
    S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
    S3 BHDrvx64;BHDrvx64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\BASHDefs\20150106.001\BHDrvx64.sys;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\BASHDefs\20150106.001\BHDrvx64.sys [x]
    S3 ccSet_NIS;Norton Internet Security Settings Manager;c:\windows\system32\drivers\NISx64\1301000.01C\ccSetx64.sys;c:\windows\SYSNATIVE\drivers\NISx64\1301000.01C\ccSetx64.sys [x]
    S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [x]
    S3 IDSVia64;IDSVia64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\IPSDefs\20150122.001\IDSvia64.sys;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\IPSDefs\20150122.001\IDSvia64.sys [x]
    S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
    S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys;c:\windows\SYSNATIVE\drivers\MBAMSwissArmy.sys [x]
    S3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
    S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
    S3 ScpVBus;Scp Virtual Bus Driver;c:\windows\system32\DRIVERS\ScpVBus.sys;c:\windows\SYSNATIVE\DRIVERS\ScpVBus.sys [x]
    S3 SymDS;Symantec Data Store;c:\windows\system32\drivers\NISx64\1301000.01C\SYMDS64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1301000.01C\SYMDS64.SYS [x]
    S3 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NISx64\1301000.01C\SYMEFA64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1301000.01C\SYMEFA64.SYS [x]
    S3 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NISx64\1301000.01C\Ironx64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1301000.01C\Ironx64.SYS [x]
    S3 SymNetS;Symantec Network Security WFP Driver;c:\windows\system32\drivers\NISx64\1301000.01C\SYMNETS.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1301000.01C\SYMNETS.SYS [x]
    S3 tap0901t;TAP-Win32 Adapter V9 (Tunngle);c:\windows\system32\DRIVERS\tap0901t.sys;c:\windows\SYSNATIVE\DRIVERS\tap0901t.sys [x]
    S3 tihub3;TI USB3 Hub Service;c:\windows\system32\drivers\tihub3.sys;c:\windows\SYSNATIVE\drivers\tihub3.sys [x]
    S3 tixhci;TI XHCI Service;c:\windows\system32\drivers\tixhci.sys;c:\windows\SYSNATIVE\drivers\tixhci.sys [x]
    S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\drivers\usbfilter.sys;c:\windows\SYSNATIVE\drivers\usbfilter.sys [x]
    S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam64.sys;c:\windows\SYSNATIVE\DRIVERS\wdcsam64.sys [x]
    .
    .
    --- Other Services/Drivers In Memory ---
    .
    *NewlyCreated* - MBAMSWISSARMY
    .
    Contents of the 'Scheduled Tasks' folder
    .
    2015-09-07 c:\windows\Tasks\Adobe Flash Player Updater.job
    - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-12-27 02:45]
    .
    2015-09-07 c:\windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2797903042-380184562-4160340280-1001Core.job
    - c:\users\Lukaas\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-30 02:38]
    .
    2015-09-07 c:\windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2797903042-380184562-4160340280-1001UA.job
    - c:\users\Lukaas\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-30 02:38]
    .
    2015-09-07 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
    - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-10-12 07:21]
    .
    2015-09-08 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
    - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-10-12 07:21]
    .
    2015-09-07 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2797903042-380184562-4160340280-1001Core.job
    - c:\users\Lukaas\AppData\Local\Google\Update\GoogleUpdate.exe [2012-09-27 20:27]
    .
    2015-09-07 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2797903042-380184562-4160340280-1001UA.job
    - c:\users\Lukaas\AppData\Local\Google\Update\GoogleUpdate.exe [2012-09-27 20:27]
    .
    2015-08-23 c:\windows\Tasks\HPCeeScheduleForLukaas.job
    - c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15 12:43]
    .
    .
    --------- X64 Entries -----------
    .
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
    @="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
    [HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
    2013-06-07 08:36 244696 ----a-w- c:\users\Lukaas\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
    @="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
    [HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
    2013-06-07 08:36 244696 ----a-w- c:\users\Lukaas\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
    @="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
    [HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
    2013-06-07 08:36 244696 ----a-w- c:\users\Lukaas\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
    @="{472083B0-C522-11CF-8763-00608CC02F24}"
    [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
    2015-09-07 02:28 778056 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
    @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
    2015-08-14 08:16 226328 ----a-w- c:\users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
    @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
    2015-08-14 08:16 226328 ----a-w- c:\users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
    @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
    2015-08-14 08:16 226328 ----a-w- c:\users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
    @="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
    2015-08-14 08:16 226328 ----a-w- c:\users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "BeatsOSDApp"="c:\program files\IDT\WDM\beats64.exe" [2011-12-23 37888]
    "MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2015-04-30 1337000]
    "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2015-08-13 170256]
    .
    ------- Supplementary Scan -------
    .
    uLocal Page = c:\windows\system32\blank.htm
    mLocal Page = c:\windows\SysWOW64\blank.htm
    uInternet Settings,ProxyOverride = *.local
    IE: Send image to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
    IE: Send page to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    Trusted Zone: clonewarsadventures.com
    Trusted Zone: freerealms.com
    Trusted Zone: soe.com
    Trusted Zone: sony.com
    TCP: DhcpNameServer = 75.75.76.76 75.75.75.75
    .
    - - - - ORPHANS REMOVED - - - -
    .
    Wow6432Node-HKLM-Run-<NO NAME> - (no file)
    HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
    HKLM_Wow6432Node-ActiveSetup-{F5E7D9AF-60F6-4A30-87E3-4EA94D322CE1} - msiexec
    AddRemove-4F6D5E84-5826-4394-9F40-3A9A19165651_is1 - c:\program files (x86)\PANDORA.TV\PanService\unins000.exe
    AddRemove-StarCraft II - c:\program files (x86)\Common Files\Blizzard Entertainment\StarCraft II\Uninstall.exe
    AddRemove-{83340D90-BB65-4969-8C4E7FABC6319CDA}_is1 - c:\program files (x86)\Bigasoft\iTunes Video Converter\unins000.exe
    AddRemove-{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE} - c:\program files (x86)\InstallShield Installation Information\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}\setup.exe
    .
    .
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\NIS]
    "ImagePath"="\"c:\program files (x86)\Norton Internet Security\Engine\19.1.0.28\ccSvcHst.exe\" /s \"NIS\" /m \"c:\program files (x86)\Norton Internet Security\Engine\19.1.0.28\diMaster.dll\" /prefetch:1"
    --
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\pdfcDispatcher]
    "ImagePath"="c:\program files (x86)\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
    .
    --------------------- LOCKED REGISTRY KEYS ---------------------
    .
    [HKEY_USERS\S-1-5-21-2797903042-380184562-4160340280-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
    @Denied: (2) (LocalSystem)
    "Progid"="WindowsLiveMail.Email.1"
    .
    [HKEY_USERS\S-1-5-21-2797903042-380184562-4160340280-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
    @Denied: (2) (LocalSystem)
    "Progid"="WindowsLiveMail.VCard.1"
    .
    [HKEY_USERS\S-1-5-21-2797903042-380184562-4160340280-1001\Software\Securom\License information*]
    "datasecu"=hex:dc,97,cd,89,19,81,20,de,da,93,b5,e1,c0,69,80,f6,a1,37,ed,f7,6a,
    cc,b6,4c,2e,5a,97,42,8e,ab,8b,92,00,2d,d8,07,5a,11,96,56,cb,c9,07,ad,00,a8,\
    "rkeysecu"=hex:0f,a4,7a,28,bd,96,ee,2b,d5,23,07,e1,f6,3f,79,7a
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
    @Denied: (A 2) (Everyone)
    @="FlashBroker"
    "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_18_0_0_232_ActiveX.exe,-101"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
    "Enabled"=dword:00000001
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
    @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_18_0_0_232_ActiveX.exe"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
    @Denied: (A 2) (Everyone)
    @="IFlashBroker6"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
    @="{00020424-0000-0000-C000-000000000046}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    "Version"="1.0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
    @Denied: (A 2) (Everyone)
    @="FlashBroker"
    "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_18_0_0_232_ActiveX.exe,-101"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
    "Enabled"=dword:00000001
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_18_0_0_232_ActiveX.exe"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
    @Denied: (A 2) (Everyone)
    @="Shockwave Flash Object"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_18_0_0_232.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
    @="0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
    @="ShockwaveFlash.ShockwaveFlash.18"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_18_0_0_232.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="ShockwaveFlash.ShockwaveFlash"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
    @Denied: (A 2) (Everyone)
    @="Macromedia Flash Factory Object"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_18_0_0_232.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
    @="FlashFactory.FlashFactory.1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_18_0_0_232.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="FlashFactory.FlashFactory"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
    @Denied: (A 2) (Everyone)
    @="IFlashBroker6"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
    @="{00020424-0000-0000-C000-000000000046}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    "Version"="1.0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*]
    @="?????????????????? v1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
    @="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*]
    @="?????????????????? v2"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
    @="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
    @Denied: (Full) (Everyone)
    .
    Completion time: 2015-09-07 20:32:19
    ComboFix-quarantined-files.txt 2015-09-08 00:32
    .
    Pre-Run: 581,904,068,608 bytes free
    Post-Run: 587,095,515,136 bytes free
    .
    - - End Of File - - 2EFF2F2E5F471A00FC21EDFDC28751C5
     
  15. Broni

    Broni Malware Annihilator Posts: 52,892   +344

    [​IMG] You're running three AV programs, MSE, Avast and Norton.
    You must uninstall TWO of them.
    If Norton is one of them use this tool: http://www.majorgeeks.com/files/details/norton_removal_tool.html

    [​IMG] Re-run Farbar Recovery Scan Tool (FRST/FRST64) you ran at the very beginning of this topic.

    • Double-click to run it. When the tool opens click Yes to disclaimer.
    • Make sure you checkmark Addition.txt box.
    • Press Scan button.
    • Scan will create two logs, FRST.txt and Addition.txt in the same directory the tool is run. Please copy and paste them to your reply.
     
  16. Lukaas Hendrix

    Lukaas Hendrix TS Rookie Topic Starter Posts: 27

    Between MSE and Avast, which would you reccommend?
     
  17. Broni

    Broni Malware Annihilator Posts: 52,892   +344

    Toss a coin :)
    Pretty much equal.
     
  18. Lukaas Hendrix

    Lukaas Hendrix TS Rookie Topic Starter Posts: 27

    So how much of this is tailored to my stupidity and how much is route memorization?
     
  19. Lukaas Hendrix

    Lukaas Hendrix TS Rookie Topic Starter Posts: 27

    Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:06-09-2015 01
    Ran by Lukaas (administrator) on DEATHSTAR (07-09-2015 21:55:21)
    Running from C:\Users\Lukaas\Downloads
    Loaded Profiles: Lukaas (Available Profiles: Lukaas)
    Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: English (United States)
    Internet Explorer Version 11 (Default browser: IE)
    Boot Mode: Normal
    Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

    ==================== Processes (Whitelisted) =================

    (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

    (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
    (LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
    (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
    (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
    () C:\Windows\System32\PnkBstrA.exe
    (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
    (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    (Hewlett-Packard ) C:\Program Files\IDT\WDM\beats64.exe
    (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
    (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
    (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
    (Hewlett-Packard Development Company, LP) C:\Program Files\hp\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe
    (Flux Software LLC) C:\Users\Lukaas\AppData\Local\FluxSoftware\Flux\flux.exe
    (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
    (Hewlett-Packard) C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe
    (Dropbox, Inc.) C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\Dropbox.exe
    (Spotify Ltd) C:\Users\Lukaas\AppData\Roaming\Spotify\SpotifyWebHelper.exe
    (Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
    (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
    (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
    (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
    (Microsoft Corporation) C:\Windows\System32\msiexec.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Microsoft Corporation) C:\Windows\System32\makecab.exe
    (Google Inc.) C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe
    (Microsoft Corporation) C:\Windows\System32\taskmgr.exe
    (Hewlett-Packard Development Company, LP) C:\Program Files\hp\HP ENVY 4500 series\Bin\HPNetworkCommunicatorCom.exe
    (Microsoft Corporation) C:\Windows\System32\dllhost.exe
    (Microsoft Corporation) C:\Windows\System32\dllhost.exe


    ==================== Registry (Whitelisted) ===========================

    (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

    HKLM\...\Run: [BeatsOSDApp] => C:\Program Files\IDT\WDM\beats64.exe [37888 2011-12-23] (Hewlett-Packard )
    HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-08-13] (Apple Inc.)
    HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
    HKLM-x32\...\Run: [] => [X]
    HKLM-x32\...\Run: [doubleTwist] => C:\Program Files (x86)\doubleTwist\doubleTwist.Light.exe [144384 2014-05-15] (doubleTwist Corporation)
    HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-06-17] (Apple Inc.)
    HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5579624 2015-08-03] (LogMeIn Inc.)
    HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6111824 2015-09-06] (AVAST Software)
    HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-02-10] (Oracle Corporation)
    HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\Run: [uTorrent] => C:\Users\Lukaas\AppData\Roaming\uTorrent\uTorrent.exe [1696096 2015-08-27] (BitTorrent Inc.)
    HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\Run: [HP ENVY 4500 series (NET)] => C:\Program Files\hp\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe [3487240 2014-07-21] (Hewlett-Packard Development Company, LP)
    HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\Run: [Spotify Web Helper] => C:\Users\Lukaas\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018360 2015-09-07] (Spotify Ltd)
    HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\Run: [Spotify] => C:\Users\Lukaas\AppData\Roaming\Spotify\Spotify.exe [7535672 2015-09-07] (Spotify Ltd)
    HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\Run: [f.lux] => C:\Users\Lukaas\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-23] (Flux Software LLC)
    HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\Run: [Dropbox Update] => C:\Users\Lukaas\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-29] (Dropbox, Inc.)
    HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\Overwolf.exe [41200 2015-08-19] (Overwolf LTD)
    ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-09-06] (AVAST Software)
    ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
    ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
    Startup: C:\Users\Lukaas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Curse.lnk [2015-06-21]
    ShortcutTarget: Curse.lnk -> C:\Users\Lukaas\AppData\Roaming\Curse Client\Bin\Curse.exe (Curse, Inc)
    Startup: C:\Users\Lukaas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2014-11-05]
    ShortcutTarget: Dropbox.lnk -> C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

    ==================== Internet (Whitelisted) ====================

    (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

    Tcpip\Parameters: [DhcpNameServer] 75.75.76.76 75.75.75.75
    Tcpip\..\Interfaces\{13C6AD6C-7D45-4B5A-A77F-EFA731EFA678}: [DhcpNameServer] 10.77.0.254
    Tcpip\..\Interfaces\{3414FBA0-54B7-4F69-AC9E-8526BA7C45E4}: [DhcpNameServer] 75.75.76.76 75.75.75.75
    Tcpip\..\Interfaces\{BBA15C07-7C0D-4D5E-9D8E-EA8528E8D708}: [DhcpNameServer] 75.75.76.76 75.75.75.75

    Internet Explorer:
    ==================
    HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
    HKU\S-1-5-21-2797903042-380184562-4160340280-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
    HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
    HKU\S-1-5-21-2797903042-380184562-4160340280-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.msn.com/HPDSK/1
    HKU\S-1-5-21-2797903042-380184562-4160340280-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPDTDF&pc=HPDTDF&src=IE-SearchBox
    SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPDTDF&pc=HPDTDF&src=IE-SearchBox
    SearchScopes: HKLM -> {CAB93E0E-0607-4BC5-ADF7-0D97392EF12B} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us1-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
    SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPDTDF&pc=HPDTDF&src=IE-SearchBox
    SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPDTDF&pc=HPDTDF&src=IE-SearchBox
    SearchScopes: HKLM-x32 -> {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = hxxp://en.wikipedia.org/wiki/Special:Search?search={searchTerms}
    SearchScopes: HKU\S-1-5-21-2797903042-380184562-4160340280-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPDTDF&pc=HPDTDF&src=IE-SearchBox
    SearchScopes: HKU\S-1-5-21-2797903042-380184562-4160340280-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPDTDF&pc=HPDTDF&src=IE-SearchBox
    BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_40\bin\ssv.dll [2015-03-04] (Oracle Corporation)
    BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-09-06] (AVAST Software)
    BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
    BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-06] (Google Inc.)
    BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-04] (Oracle Corporation)
    BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
    BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-04] (Oracle Corporation)
    BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-09-06] (AVAST Software)
    BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
    BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-06] (Google Inc.)
    BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-04] (Oracle Corporation)
    BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
    Toolbar: HKU\S-1-5-21-2797903042-380184562-4160340280-1001 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
    Handler-x32: jpip - {B92DD248-E3D5-4A92-B311-C9B841681455} - C:\Program Files (x86)\LizardTech\ExpressView\expressview.dll [2011-10-14] (LizardTech)
    Handler-x32: sidlet - {B92DD248-E3D5-4A92-B311-C9B841681455} - C:\Program Files (x86)\LizardTech\ExpressView\expressview.dll [2011-10-14] (LizardTech)

    FireFox:
    ========
    FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-09-06] ()
    FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2015-01-13] (EA Digital Illusions CE AB)
    FF Plugin: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-04] (Oracle Corporation)
    FF Plugin: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-04] (Oracle Corporation)
    FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
    FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
    FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-09-06] ()
    FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1219160.dll [2015-07-23] (Adobe Systems, Inc.)
    FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-07-30] ()
    FF Plugin-x32: @esn/npbattlelog,version=2.3.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll [No File]
    FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2015-01-13] (EA Digital Illusions CE AB)
    FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
    FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-04] (Oracle Corporation)
    FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-04] (Oracle Corporation)
    FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
    FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
    FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
    FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
    FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
    FF Plugin-x32: @raidcall.en/RCplugin -> C:\Users\Lukaas\AppData\Roaming\raidcall\plugins\nprcplugin.dll [2013-03-30] (Raidcall)
    FF Plugin-x32: @raidcall.kr/RCplugin -> C:\Users\Lukaas\AppData\Roaming\RCKR\plugins\nprcplugin.dll [2012-08-09] (Raidcall)
    FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-28] (Google Inc.)
    FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-28] (Google Inc.)
    FF Plugin-x32: @videolan.org/vlc,version=2.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2012-10-15] (VideoLAN)
    FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2010-12-07] ()
    FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
    FF Plugin HKU\S-1-5-21-2797903042-380184562-4160340280-1001: @talk.google.com/GoogleTalkPlugin -> C:\Users\Lukaas\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
    FF Plugin HKU\S-1-5-21-2797903042-380184562-4160340280-1001: @talk.google.com/O1DPlugin -> C:\Users\Lukaas\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-04-17] (Google)
    FF Plugin HKU\S-1-5-21-2797903042-380184562-4160340280-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Lukaas\AppData\Local\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-28] (Google Inc.)
    FF Plugin HKU\S-1-5-21-2797903042-380184562-4160340280-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Lukaas\AppData\Local\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-28] (Google Inc.)
    FF Plugin HKU\S-1-5-21-2797903042-380184562-4160340280-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Lukaas\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-01-26] (Unity Technologies ApS)
    FF Plugin HKU\S-1-5-21-2797903042-380184562-4160340280-1001: thehappycloud.com/HappyCloudPlugin -> C:\ProgramData\HappyCloud\Application\npHappyCloudPlugin.dll [2013-01-08] (The Happy Cloud)
    FF Plugin HKU\S-1-5-21-2797903042-380184562-4160340280-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2014-07-03] ()
    FF Plugin ProgramFiles/Appdata: C:\Users\Lukaas\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
    FF Plugin ProgramFiles/Appdata: C:\Users\Lukaas\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-04-17] (Google)

    Chrome:
    =======
    CHR StartupUrls: Default -> "https://www.facebook.com/","hxxp://www.reddit.com/","hxxp://www.youtube.com/","hxxp://www.yahoo.com/","https://twitter.com/"
    CHR DefaultSearchKeyword: Default -> d
    CHR Plugin: (Docs Offline Background Page) - C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\22.0.1229.79\PepperFlash\pepflashplayer.dll No File
    CHR Plugin: (Flash) - internal-remoting-viewer
    CHR Plugin: (Chrome Remote Desktop Viewer) - C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\45.0.2454.85\ppGoogleNaClPluginChrome.dll No File
    CHR Plugin: (Native Client) - C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\45.0.2454.85\pdf.dll No File
    CHR Plugin: (Chrome PDF Viewer) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2012.1.0.30_0\npcoplgn.dll No File
    CHR Plugin: (Norton Confidential) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
    CHR Plugin: (Windows Live™ Photo Gallery) - C:\Users\Lukaas\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
    CHR Plugin: (Google Update) - c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll No File
    CHR Profile: C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default
    CHR Extension: (Magic Actions for YouTube™) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2015-04-16]
    CHR Extension: (BIODIGITAL HUMAN) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\agoenciogemlojlhccbcpcfflicgnaak [2013-03-08]
    CHR Extension: (Duolingo on the Web) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiahmijlpehemcpleichkcokhegllfjl [2013-05-17]
    CHR Extension: (Google Drive) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-14]
    CHR Extension: (Flight) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bijifgbfkfcalmnndkdaoefpdbkpolij [2013-03-08]
    CHR Extension: (Ancient Map) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjcjaemihddenoopkkhaamlcoliiiain [2013-07-28]
    CHR Extension: (YouTube) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-09-27]
    CHR Extension: (DuckDuckGo for Chrome) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpphkkgodbfncbcpgopijlfakfgmclao [2015-09-07]
    CHR Extension: (uBlock Origin) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2015-05-17]
    CHR Extension: (Classic Games) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckmoikambnjgjnhaefiklkblfjoolnaf [2013-03-08]
    CHR Extension: (Google Search) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-09-27]
    CHR Extension: (Wikiwand: Wikipedia Modernized) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\emffkefkbkpkgpdeeooapgaicgmcbolj [2015-05-17]
    CHR Extension: (Google Docs Offline) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-02]
    CHR Extension: (Avast Online Security) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-09-06]
    CHR Extension: (Reddit Enhancement Suite) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb [2013-04-12]
    CHR Extension: (Little Alchemy) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\knkapnclbofjjgicpkfoagdjohlfjhpd [2013-03-08]
    CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-12]
    CHR Extension: (Chrome Web Store Payments) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-30]
    CHR Extension: (Launch Readlang Web Reader) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\odpdkefpnfejbfnmdilmfhephfffmfoh [2015-06-05]
    CHR Extension: (Bastion) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\oohphhdkahjlioohbalmicpokoefkgid [2013-03-08]
    CHR Extension: (4chan Plus) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pinelipedelckihohgdlpcclgocodhjj [2013-05-23]
    CHR Extension: (Gmail) - C:\Users\Lukaas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-09-27]
    CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-09-06]
    StartMenuInternet: Google Chrome.R3LKV2NYYHG6TM2ZLHJ5J5C4HU - C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\chrome.exe

    ==================== Services (Whitelisted) ========================

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

    R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-05-29] (Apple Inc.)
    R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-09-06] (AVAST Software)
    S4 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [914200 2013-06-04] (BitRaider, LLC)
    S4 CalendarSynchService; C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Calendar\Service\GCalService.exe [16384 2011-08-16] (Hewlett-Packard) [File not signed]
    S4 CLKMSVC10_38F51D56; c:\Program Files (x86)\Cyberlink\PowerDVD10\NavFilter\kmsvc.exe [241648 2011-02-25] (CyberLink)
    S4 Ds3Service; C:\Program Files\Scarlet.Crush Productions\bin\ScpService.exe [381952 2014-03-13] (Scarlet.Crush Productions) [File not signed]
    S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [182304 2014-11-06] (EasyAntiCheat Ltd)
    S2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [89840 2015-03-28] (Hewlett-Packard Company)
    R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-08-03] (LogMeIn, Inc.)
    R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation)
    R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
    S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2004488 2015-07-12] (Electronic Arts)
    S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1006320 2015-08-19] (Overwolf LTD)
    S4 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1128952 2011-08-12] (PDF Complete Inc)
    R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2015-02-22] ()
    R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-01-11] ()
    R2 Themes; C:\Windows\system32\themeservice.dll [44544 2013-07-01] (Microsoft Corporation) [File not signed]
    S4 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [758224 2013-11-06] (Tunngle.net GmbH)
    R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

    ===================== Drivers (Whitelisted) ==========================

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

    U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)
    R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-09-06] (AVAST Software)
    R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-09-06] (AVAST Software)
    R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-09-06] (AVAST Software)
    R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-09-06] (AVAST Software)
    R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1048344 2015-09-06] (AVAST Software)
    R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [447944 2015-09-06] (AVAST Software)
    R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [150672 2015-09-06] (AVAST Software)
    R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-09-06] (AVAST Software)
    S3 BRDriver64; C:\programdata\bitraider\BRDriver64.sys [74024 2013-06-04] (BitRaider)
    S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
    R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
    R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [113880 2015-09-07] (Malwarebytes Corporation)
    R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
    S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [28416 2008-04-16] (Research In Motion Limited)
    S3 SaiH0160; C:\Windows\System32\DRIVERS\SaiH0160.sys [179584 2008-11-24] (Saitek)
    R3 SaiMini; C:\Windows\System32\DRIVERS\SaiMini.sys [22792 2010-08-10] (Saitek)
    R3 SaiNtBus; C:\Windows\System32\drivers\SaiBus.sys [50056 2010-08-10] (Saitek)
    R3 ScpVBus; C:\Windows\System32\DRIVERS\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)
    R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
    U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [35064 2015-09-06] ()
    S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2012-12-13] (Apple, Inc.) [File not signed]
    S3 catchme; \??\C:\ComboFix\catchme.sys [X]
    S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
    S3 NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20150122.002\ENG64.SYS [X]
    S3 NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20150122.002\EX64.SYS [X]
    S3 PlantronicsGC; system32\drivers\PLTGC.sys [X]
     
  20. Lukaas Hendrix

    Lukaas Hendrix TS Rookie Topic Starter Posts: 27

    ==================== NetSvcs (Whitelisted) ===================

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


    ==================== One Month Created files and folders ========

    (If an entry is included in the fixlist, the file/folder will be moved.)

    2015-09-07 21:53 - 2015-09-07 21:53 - 00899584 _____ C:\Users\Lukaas\Downloads\MicrosoftFixit50535.msi
    2015-09-07 21:38 - 2015-09-07 21:38 - 00958104 _____ C:\Users\Lukaas\Downloads\Norton_Removal_Tool.exe
    2015-09-07 20:32 - 2015-09-07 20:32 - 00033584 _____ C:\ComboFix.txt
    2015-09-07 20:11 - 2011-06-26 02:45 - 00256000 _____ C:\Windows\PEV.exe
    2015-09-07 20:11 - 2010-11-07 13:20 - 00208896 _____ C:\Windows\MBR.exe
    2015-09-07 20:11 - 2009-04-20 00:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
    2015-09-07 20:11 - 2000-08-30 20:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
    2015-09-07 20:11 - 2000-08-30 20:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
    2015-09-07 20:11 - 2000-08-30 20:00 - 00098816 _____ C:\Windows\sed.exe
    2015-09-07 20:11 - 2000-08-30 20:00 - 00080412 _____ C:\Windows\grep.exe
    2015-09-07 20:11 - 2000-08-30 20:00 - 00068096 _____ C:\Windows\zip.exe
    2015-09-07 20:06 - 2015-09-07 20:32 - 00000000 ____D C:\Qoobox
    2015-09-07 20:05 - 2015-09-07 20:30 - 00000000 ____D C:\Windows\erdnt
    2015-09-07 19:57 - 2015-09-07 19:57 - 05635119 ____R (Swearware) C:\Users\Lukaas\Downloads\ComboFix.exe
    2015-09-07 10:17 - 2015-09-07 10:21 - 00000000 ____D C:\AdwCleaner
    2015-09-07 10:16 - 2015-09-07 10:16 - 00005024 _____ C:\Users\Lukaas\Desktop\JRT.txt
    2015-09-07 10:00 - 2015-09-07 10:00 - 01799392 _____ (Malwarebytes Corporation) C:\Users\Lukaas\Downloads\JRT (1).exe
    2015-09-07 10:00 - 2015-09-07 10:00 - 01654784 _____ C:\Users\Lukaas\Downloads\adwcleaner_5.006 (1).exe
    2015-09-07 09:43 - 2015-09-07 09:43 - 01799392 _____ (Malwarebytes Corporation) C:\Users\Lukaas\Downloads\JRT.exe
    2015-09-07 09:33 - 2015-09-07 09:33 - 01654784 _____ C:\Users\Lukaas\Downloads\adwcleaner_5.006.exe
    2015-09-07 09:17 - 2015-09-07 09:17 - 00001063 _____ C:\MBAM Report.txt
    2015-09-07 09:15 - 2015-09-07 09:15 - 00014182 _____ C:\Users\Lukaas\Downloads\Roguekiller Report.txt
    2015-09-06 23:49 - 2015-09-06 23:49 - 00035064 _____ C:\Windows\system32\Drivers\TrueSight.sys
    2015-09-06 23:49 - 2015-09-06 23:49 - 00000000 ____D C:\ProgramData\RogueKiller
    2015-09-06 23:48 - 2015-09-06 23:48 - 18779208 _____ C:\Users\Lukaas\Downloads\RogueKiller.exe
    2015-09-06 22:33 - 2015-09-06 22:33 - 00000000 ____D C:\Users\Lukaas\AppData\Roaming\AVAST Software
    2015-09-06 22:31 - 2015-09-07 10:31 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
    2015-09-06 22:31 - 2015-09-06 22:31 - 00001924 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
    2015-09-06 22:31 - 2015-09-06 22:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
    2015-09-06 22:30 - 2015-09-06 22:30 - 00000000 ____D C:\ProgramData\Google
    2015-09-06 22:30 - 2015-09-06 22:30 - 00000000 ____D C:\Program Files\Google
    2015-09-06 22:28 - 2015-09-06 22:31 - 01048344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
    2015-09-06 22:28 - 2015-09-06 22:28 - 00447944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
    2015-09-06 22:28 - 2015-09-06 22:28 - 00378880 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
    2015-09-06 22:28 - 2015-09-06 22:28 - 00274808 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
    2015-09-06 22:28 - 2015-09-06 22:28 - 00150672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
    2015-09-06 22:28 - 2015-09-06 22:28 - 00093528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
    2015-09-06 22:28 - 2015-09-06 22:28 - 00090968 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
    2015-09-06 22:28 - 2015-09-06 22:28 - 00065224 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
    2015-09-06 22:28 - 2015-09-06 22:28 - 00028656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
    2015-09-06 22:27 - 2015-09-06 22:27 - 00043112 _____ (AVAST Software) C:\Windows\avastSS.scr
    2015-09-06 22:26 - 2015-09-06 22:26 - 00000000 ____D C:\Program Files\AVAST Software
    2015-09-06 22:20 - 2015-09-06 22:22 - 00145323 _____ C:\Users\Lukaas\Downloads\Addition.txt
    2015-09-06 22:18 - 2015-09-07 21:55 - 00029448 _____ C:\Users\Lukaas\Downloads\FRST.txt
    2015-09-06 22:18 - 2015-09-07 21:55 - 00000000 ____D C:\FRST
    2015-09-06 22:18 - 2015-09-06 22:18 - 02190336 _____ (Farbar) C:\Users\Lukaas\Downloads\FRST64.exe
    2015-09-06 22:15 - 2015-09-06 22:15 - 158417712 _____ (AVAST Software) C:\Users\Lukaas\Downloads\avast_free_antivirus_setup.exe
    2015-09-06 22:15 - 2015-09-06 22:15 - 00000000 ____D C:\ProgramData\AVAST Software
    2015-09-06 21:57 - 2015-09-06 21:58 - 00380416 _____ C:\Users\Lukaas\Downloads\bjcejsqc.exe
    2015-09-05 19:45 - 2015-09-05 19:45 - 08911365 _____ C:\Users\Lukaas\Downloads\HealthyCheeryAfricanhornbill.webm
    2015-08-27 21:55 - 2015-08-27 21:56 - 00000000 ____D C:\Users\Lukaas\Downloads\Brian Jacques_Redwall Series_all 22 books
    2015-08-27 21:54 - 2015-08-27 21:54 - 00017033 _____ C:\Users\Lukaas\Downloads\[kat.cr]all.22.redwall.books.torrent
    2015-08-27 21:48 - 2015-08-27 21:48 - 00000000 ____D C:\Users\Lukaas\Downloads\Patricia A. McKillip - Riddle-Master (complete trilogy, epub)
    2015-08-27 21:45 - 2015-08-27 21:45 - 00001671 _____ C:\Users\Lukaas\Downloads\[kat.cr]patricia.a.mckillip.riddle.master.complete.trilogy.epub.torrent
    2015-08-27 21:43 - 2015-08-27 21:43 - 00000000 ____D C:\Users\Lukaas\Downloads\Joe Abercrombie - The First Law Trilogy
    2015-08-27 21:42 - 2015-08-27 21:42 - 00003505 _____ C:\Users\Lukaas\Downloads\[kat.cr]joe.abercrombie.the.first.law.trilogy.torrent
    2015-08-26 21:39 - 2015-08-26 21:41 - 00000000 ____D C:\Users\Lukaas\Downloads\[Zero] Neon Genesis Evangelion Platinum Perfect Collection
    2015-08-26 21:39 - 2015-08-26 21:39 - 00036818 _____ C:\Users\Lukaas\Downloads\[kat.cr]zero.neon.genesis.evangelion.platinum.perfect.collection.dvd.480p.dual.audio.ac3.hi10.torrent
    2015-08-26 21:35 - 2015-08-26 22:19 - 00000000 ____D C:\Users\Lukaas\Downloads\[CBM] Psycho-Pass 1-22 Complete (Dual Audio) [BDRip-720p-8bit]
    2015-08-26 21:34 - 2015-08-26 21:34 - 00032859 _____ C:\Users\Lukaas\Downloads\[kat.cr]cbm.psycho.pass.1.22.complete.dual.audio.bdrip.720p.8bit.torrent
    2015-08-26 21:25 - 2015-08-26 21:44 - 00000000 ____D C:\Users\Lukaas\Downloads\Lupin III
    2015-08-26 21:21 - 2015-08-26 21:21 - 00156707 _____ C:\Users\Lukaas\Downloads\[kat.cr]lupin.the.third.complete.bakumatsu.gijinden.roman.cinderella.boy.monkey.punch.extras.x264.english.subbed.torrent
    2015-08-25 18:51 - 2015-08-25 18:51 - 00000000 ____D C:\Users\Lukaas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
    2015-08-22 19:49 - 2015-08-22 19:55 - 00000000 ____D C:\Users\Lukaas\Downloads\Ratatouille (2007) [1080p]
    2015-08-22 19:49 - 2015-08-22 19:49 - 00000000 ____D C:\Users\Lukaas\Downloads\Chappie (2015) 720p 5.1 Dublado - Alan_680
    2015-08-22 19:47 - 2015-08-22 19:47 - 00015380 _____ C:\Users\Lukaas\Downloads\[kat.cr]ratatouille.2007.1080p.brrip.x264.yify.torrent
    2015-08-22 19:47 - 2015-08-22 19:47 - 00012826 _____ C:\Users\Lukaas\Downloads\[kat.cr]chappie.2015.brrip.blu.ray.720p.5.1ch.dublado.torrent.download.torrent
    2015-08-19 03:01 - 2015-08-10 21:20 - 25191936 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
    2015-08-19 03:01 - 2015-08-10 21:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
    2015-08-19 03:01 - 2015-08-10 20:20 - 19871232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
    2015-08-19 03:00 - 2015-08-10 20:33 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
    2015-08-16 00:41 - 2015-08-16 00:42 - 00000000 ___DC C:\Users\Lukaas\Documents\Info
    2015-08-15 21:15 - 2015-08-15 21:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
    2015-08-15 21:14 - 2015-08-15 21:15 - 00000000 ____D C:\Program Files\iTunes
    2015-08-15 21:14 - 2015-08-15 21:14 - 00000000 ____D C:\Program Files\iPod
    2015-08-15 21:14 - 2015-08-15 21:14 - 00000000 ____D C:\Program Files (x86)\iTunes
    2015-08-13 00:13 - 2015-08-13 00:13 - 00000000 ____D C:\Users\Lukaas\Downloads\Dragon Ball Z Resurrection 'F' {English Dubbed} 358p @NightCoat
    2015-08-12 03:49 - 2015-07-30 09:13 - 00124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
    2015-08-12 03:49 - 2015-07-30 09:13 - 00103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
    2015-08-12 00:16 - 2015-08-12 00:17 - 00037254 _____ C:\Users\Lukaas\Downloads\debug-console-enabler-default-143-1-07.zip
    2015-08-12 00:00 - 2015-08-12 00:00 - 00025427 _____ C:\Users\Lukaas\Downloads\debug-console-enabler-28-0-1-2.zip
    2015-08-11 19:51 - 2015-08-11 19:51 - 00027608 _____ C:\Users\Lukaas\Downloads\debug-console-enabler-28-0-2.zip
    2015-08-11 15:49 - 2015-07-28 16:09 - 00017344 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
    2015-08-11 15:49 - 2015-07-28 16:05 - 01116672 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
    2015-08-11 15:49 - 2015-07-28 16:05 - 00774656 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
    2015-08-11 15:49 - 2015-07-28 16:05 - 00743424 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
    2015-08-11 15:49 - 2015-07-28 16:05 - 00437760 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
    2015-08-11 15:49 - 2015-07-28 16:05 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
    2015-08-11 15:49 - 2015-07-28 16:05 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
    2015-08-11 15:49 - 2015-07-28 15:55 - 01148416 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
    2015-08-11 15:49 - 2015-07-15 14:15 - 05568960 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
    2015-08-11 15:49 - 2015-07-15 14:15 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
    2015-08-11 15:49 - 2015-07-15 14:15 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
    2015-08-11 15:49 - 2015-07-15 14:15 - 00094656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
    2015-08-11 15:49 - 2015-07-15 14:12 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
    2015-08-11 15:49 - 2015-07-15 14:11 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
    2015-08-11 15:49 - 2015-07-15 14:11 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
    2015-08-11 15:49 - 2015-07-15 14:11 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
    2015-08-11 15:49 - 2015-07-15 14:11 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
    2015-08-11 15:49 - 2015-07-15 14:11 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 01743360 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
    2015-08-11 15:49 - 2015-07-15 14:10 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
    2015-08-11 15:49 - 2015-07-15 14:10 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
    2015-08-11 15:49 - 2015-07-15 14:10 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
    2015-08-11 15:49 - 2015-07-15 14:10 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
    2015-08-11 15:49 - 2015-07-15 14:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
    2015-08-11 15:49 - 2015-07-15 14:09 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
    2015-08-11 15:49 - 2015-07-15 14:05 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
    2015-08-11 15:49 - 2015-07-15 14:05 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 14:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:59 - 03989952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
    2015-08-11 15:49 - 2015-07-15 13:59 - 03934656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
    2015-08-11 15:49 - 2015-07-15 13:56 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
    2015-08-11 15:49 - 2015-07-15 13:55 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
    2015-08-11 15:49 - 2015-07-15 13:55 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
    2015-08-11 15:49 - 2015-07-15 13:55 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
    2015-08-11 15:49 - 2015-07-15 13:55 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
    2015-08-11 15:49 - 2015-07-15 13:55 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
    2015-08-11 15:49 - 2015-07-15 13:54 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
    2015-08-11 15:49 - 2015-07-15 13:54 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
    2015-08-11 15:49 - 2015-07-15 13:54 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
    2015-08-11 15:49 - 2015-07-15 13:54 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
    2015-08-11 15:49 - 2015-07-15 13:54 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
    2015-08-11 15:49 - 2015-07-15 13:54 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
    2015-08-11 15:49 - 2015-07-15 13:54 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
    2015-08-11 15:49 - 2015-07-15 13:53 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
    2015-08-11 15:49 - 2015-07-15 13:53 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
    2015-08-11 15:49 - 2015-07-15 13:53 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
    2015-08-11 15:49 - 2015-07-15 13:53 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
    2015-08-11 15:49 - 2015-07-15 13:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
    2015-08-11 15:49 - 2015-07-15 13:53 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
    2015-08-11 15:49 - 2015-07-15 13:49 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
    2015-08-11 15:49 - 2015-07-15 13:48 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 13:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 12:46 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
    2015-08-11 15:49 - 2015-07-15 12:46 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
    2015-08-11 15:49 - 2015-07-15 12:46 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
    2015-08-11 15:49 - 2015-07-15 12:37 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
    2015-08-11 15:49 - 2015-07-15 12:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
    2015-08-11 15:49 - 2015-07-15 12:34 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 12:34 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 12:34 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-15 12:34 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
    2015-08-11 15:49 - 2015-07-10 13:51 - 03722752 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
    2015-08-11 15:49 - 2015-07-10 13:51 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
    2015-08-11 15:49 - 2015-07-10 13:51 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
    2015-08-11 15:49 - 2015-07-10 13:34 - 03221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
    2015-08-11 15:49 - 2015-07-10 13:34 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
    2015-08-11 15:49 - 2015-07-10 13:33 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
    2015-08-11 15:49 - 2015-07-09 13:57 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
    2015-08-11 15:49 - 2015-07-09 13:57 - 00193536 _____ (Microsoft Corporation) C:\Windows\notepad.exe
    2015-08-11 15:49 - 2015-07-09 13:42 - 00179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
    2015-08-11 15:48 - 2015-07-20 20:39 - 00389840 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
    2015-08-11 15:48 - 2015-07-20 20:12 - 00342736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
    2015-08-11 15:48 - 2015-07-16 16:54 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
    2015-08-11 15:48 - 2015-07-16 16:37 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
    2015-08-11 15:48 - 2015-07-16 16:36 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
    2015-08-11 15:48 - 2015-07-16 16:36 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
    2015-08-11 15:48 - 2015-07-16 16:36 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
    2015-08-11 15:48 - 2015-07-16 16:35 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
    2015-08-11 15:48 - 2015-07-16 16:35 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
    2015-08-11 15:48 - 2015-07-16 16:27 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
    2015-08-11 15:48 - 2015-07-16 16:26 - 05923328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
    2015-08-11 15:48 - 2015-07-16 16:26 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
    2015-08-11 15:48 - 2015-07-16 16:23 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
    2015-08-11 15:48 - 2015-07-16 16:21 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
    2015-08-11 15:48 - 2015-07-16 16:21 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
    2015-08-11 15:48 - 2015-07-16 16:21 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
    2015-08-11 15:48 - 2015-07-16 16:21 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
    2015-08-11 15:48 - 2015-07-16 16:12 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
    2015-08-11 15:48 - 2015-07-16 16:08 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
    2015-08-11 15:48 - 2015-07-16 16:00 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
    2015-08-11 15:48 - 2015-07-16 15:55 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
    2015-08-11 15:48 - 2015-07-16 15:54 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
    2015-08-11 15:48 - 2015-07-16 15:51 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
    2015-08-11 15:48 - 2015-07-16 15:51 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
    2015-08-11 15:48 - 2015-07-16 15:51 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
    2015-08-11 15:48 - 2015-07-16 15:50 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
    2015-08-11 15:48 - 2015-07-16 15:50 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
    2015-08-11 15:48 - 2015-07-16 15:49 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
    2015-08-11 15:48 - 2015-07-16 15:45 - 02279424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
    2015-08-11 15:48 - 2015-07-16 15:43 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
    2015-08-11 15:48 - 2015-07-16 15:43 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
    2015-08-11 15:48 - 2015-07-16 15:41 - 00479232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
    2015-08-11 15:48 - 2015-07-16 15:39 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
    2015-08-11 15:48 - 2015-07-16 15:39 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
    2015-08-11 15:48 - 2015-07-16 15:38 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
    2015-08-11 15:48 - 2015-07-16 15:36 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
    2015-08-11 15:48 - 2015-07-16 15:35 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
    2015-08-11 15:48 - 2015-07-16 15:34 - 14451200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
    2015-08-11 15:48 - 2015-07-16 15:33 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
    2015-08-11 15:48 - 2015-07-16 15:32 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
    2015-08-11 15:48 - 2015-07-16 15:29 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
    2015-08-11 15:48 - 2015-07-16 15:24 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
    2015-08-11 15:48 - 2015-07-16 15:20 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
    2015-08-11 15:48 - 2015-07-16 15:19 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
    2015-08-11 15:48 - 2015-07-16 15:17 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
    2015-08-11 15:48 - 2015-07-16 15:12 - 04520448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
    2015-08-11 15:48 - 2015-07-16 15:12 - 02427904 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
    2015-08-11 15:48 - 2015-07-16 15:10 - 12856832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
    2015-08-11 15:48 - 2015-07-16 15:06 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
    2015-08-11 15:48 - 2015-07-16 15:06 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
    2015-08-11 15:48 - 2015-07-16 15:05 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
    2015-08-11 15:48 - 2015-07-16 15:01 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
    2015-08-11 15:48 - 2015-07-16 14:49 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
    2015-08-11 15:48 - 2015-07-16 14:42 - 01951232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
    2015-08-11 15:48 - 2015-07-16 14:38 - 01310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
    2015-08-11 15:48 - 2015-07-16 14:37 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
    2015-08-11 15:48 - 2015-07-14 23:19 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
    2015-08-11 15:47 - 2015-07-30 14:06 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
    2015-08-11 15:47 - 2015-07-30 14:06 - 01648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
    2015-08-11 15:47 - 2015-07-30 14:06 - 01180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
    2015-08-11 15:47 - 2015-07-30 14:06 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
    2015-08-11 15:47 - 2015-07-30 14:06 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
    2015-08-11 15:47 - 2015-07-30 14:06 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
    2015-08-11 15:47 - 2015-07-30 14:06 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
    2015-08-11 15:47 - 2015-07-30 13:57 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
    2015-08-11 15:47 - 2015-07-30 13:57 - 01251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
    2015-08-11 15:47 - 2015-07-30 13:57 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
    2015-08-11 15:47 - 2015-07-30 13:57 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
    2015-08-11 15:47 - 2015-07-30 13:57 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
    2015-08-11 15:47 - 2015-07-30 13:55 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
    2015-08-11 15:47 - 2015-07-30 12:56 - 03208192 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
    2015-08-11 15:47 - 2015-07-30 12:52 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
    2015-08-11 15:47 - 2015-07-30 12:49 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
    2015-08-11 15:47 - 2015-07-20 14:12 - 03154944 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
    2015-08-11 15:47 - 2015-07-20 14:12 - 02606080 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
    2015-08-11 15:47 - 2015-07-20 14:12 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
    2015-08-11 15:47 - 2015-07-20 14:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
    2015-08-11 15:47 - 2015-07-20 14:12 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
    2015-08-11 15:47 - 2015-07-20 14:12 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
    2015-08-11 15:47 - 2015-07-20 14:12 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
    2015-08-11 15:47 - 2015-07-20 14:12 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
    2015-08-11 15:47 - 2015-07-20 14:12 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
    2015-08-11 15:47 - 2015-07-20 14:12 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
    2015-08-11 15:47 - 2015-07-20 14:12 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
    2015-08-11 15:47 - 2015-07-20 13:56 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
    2015-08-11 15:47 - 2015-07-20 13:56 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
    2015-08-11 15:47 - 2015-07-20 13:56 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
    2015-08-11 15:47 - 2015-07-20 13:56 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
    2015-08-11 15:47 - 2015-07-20 13:56 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
    2015-08-11 15:47 - 2015-07-14 23:19 - 02004992 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
    2015-08-11 15:47 - 2015-07-14 23:19 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
    2015-08-11 15:47 - 2015-07-14 23:14 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
    2015-08-11 15:47 - 2015-07-14 23:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
    2015-08-11 15:47 - 2015-07-14 22:55 - 01390592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
    2015-08-11 15:47 - 2015-07-14 22:55 - 01241088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
    2015-08-11 15:47 - 2015-07-14 22:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
    2015-08-11 15:47 - 2015-07-14 22:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
    2015-08-11 15:47 - 2015-07-10 13:51 - 14177280 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
    2015-08-11 15:47 - 2015-07-10 13:34 - 12875776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
    2015-08-11 15:47 - 2015-07-01 16:49 - 00260096 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
    2015-08-11 15:47 - 2015-07-01 16:48 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
    2015-08-11 15:47 - 2015-07-01 16:30 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
    2015-08-11 15:47 - 2015-07-01 16:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
    2015-08-11 15:46 - 2015-05-09 14:26 - 00493504 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
    2015-08-09 12:19 - 2015-08-13 00:13 - 00000000 ____D C:\Users\Lukaas\Downloads\Mononoke hime - Princess Mononoke (1997)
    2015-08-09 11:56 - 2015-08-13 00:13 - 00000000 ____D C:\Users\Lukaas\Downloads\Nausicaä of the Valley of the Wind (1984) 720p BRRiP x264 AAC [Team Nanban]
    2015-08-09 11:55 - 2015-08-13 00:13 - 00000000 ____D C:\Users\Lukaas\Downloads\Perfect Blue (1997) 1080p [Jpn 5.1 & Eng 5.1] Blu-ray
     
  21. Lukaas Hendrix

    Lukaas Hendrix TS Rookie Topic Starter Posts: 27

    ==================== One Month Modified files and folders ========

    (If an entry is included in the fixlist, the file/folder will be moved.)

    2015-09-07 21:55 - 2009-07-14 00:45 - 00024608 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
    2015-09-07 21:55 - 2009-07-14 00:45 - 00024608 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
    2015-09-07 21:53 - 2013-08-26 21:40 - 00001945 _____ C:\Windows\epplauncher.mif
    2015-09-07 21:52 - 2012-12-27 15:56 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
    2015-09-07 21:49 - 2015-06-29 22:38 - 00000922 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2797903042-380184562-4160340280-1001UA.job
    2015-09-07 21:48 - 2015-07-26 17:56 - 00000000 ____D C:\Users\Lukaas\AppData\Local\Overwolf
    2015-09-07 21:48 - 2015-06-21 21:37 - 00000000 ____D C:\Users\Lukaas\AppData\Roaming\Curse Client
    2015-09-07 21:48 - 2013-03-05 16:42 - 00000000 ___RD C:\Users\Lukaas\Dropbox
    2015-09-07 21:48 - 2013-03-05 16:40 - 00000000 ____D C:\Users\Lukaas\AppData\Roaming\Dropbox
    2015-09-07 21:48 - 2012-10-18 23:27 - 00000000 ____D C:\Users\Lukaas\AppData\Roaming\uTorrent
    2015-09-07 21:48 - 2012-10-07 23:25 - 00000000 ____D C:\Users\Lukaas\AppData\Roaming\Spotify
    2015-09-07 21:47 - 2013-03-04 23:06 - 00000000 ____D C:\Users\Lukaas\AppData\Local\LogMeIn Hamachi
    2015-09-07 21:47 - 2012-10-07 23:26 - 00000000 ____D C:\Users\Lukaas\AppData\Local\Spotify
    2015-09-07 21:46 - 2015-03-29 21:17 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
    2015-09-07 21:45 - 2014-10-11 23:20 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
    2015-09-07 21:45 - 2009-07-14 01:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
    2015-09-07 21:45 - 2009-07-14 00:51 - 00068128 _____ C:\Windows\setupact.log
    2015-09-07 21:44 - 2010-11-20 23:47 - 00690250 _____ C:\Windows\PFRO.log
    2015-09-07 21:43 - 2012-09-27 11:48 - 01120333 _____ C:\Windows\WindowsUpdate.log
    2015-09-07 21:32 - 2012-09-27 13:01 - 00000912 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2797903042-380184562-4160340280-1001UA.job
    2015-09-07 21:26 - 2014-10-11 23:20 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
    2015-09-07 20:32 - 2009-07-13 23:20 - 00000000 __RHD C:\Users\Default
    2015-09-07 20:29 - 2009-07-13 22:34 - 00000215 _____ C:\Windows\system.ini
    2015-09-07 20:27 - 2012-09-27 11:48 - 00000000 ____D C:\Users\Lukaas
    2015-09-07 18:49 - 2015-06-29 22:38 - 00000870 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2797903042-380184562-4160340280-1001Core.job
    2015-09-07 16:32 - 2012-09-27 13:01 - 00000860 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2797903042-380184562-4160340280-1001Core.job
    2015-09-07 14:06 - 2012-09-27 12:58 - 00003934 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{78DFDD1E-89D9-450F-A58B-592B36B39982}
    2015-09-06 22:45 - 2012-12-27 15:56 - 00778440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
    2015-09-06 22:45 - 2012-12-27 15:56 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
    2015-09-06 22:45 - 2012-03-05 20:39 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
    2015-09-06 22:30 - 2014-10-11 23:19 - 00000000 ____D C:\Program Files (x86)\Google
    2015-09-06 22:11 - 2012-10-29 16:44 - 00000000 ____D C:\Users\Lukaas\AppData\Local\CrashDumps
    2015-09-05 19:23 - 2015-04-05 03:01 - 00000000 ___SD C:\Windows\system32\GWX
    2015-09-05 19:23 - 2012-03-05 20:47 - 00000000 ____D C:\ProgramData\Norton
    2015-09-05 19:23 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\system32\NDF
    2015-09-05 19:23 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\registration
    2015-09-01 07:54 - 2012-09-27 13:38 - 00000000 ____D C:\Program Files (x86)\Steam
    2015-08-30 12:03 - 2015-07-26 17:57 - 00000000 ____D C:\Program Files (x86)\Overwolf
    2015-08-28 20:28 - 2012-09-28 23:19 - 00000052 _____ C:\Windows\SysWOW64\DOErrors.log
    2015-08-28 16:27 - 2012-09-27 13:01 - 00003884 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2797903042-380184562-4160340280-1001UA
    2015-08-28 16:27 - 2012-09-27 13:01 - 00003488 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2797903042-380184562-4160340280-1001Core
    2015-08-28 06:46 - 2012-12-17 12:37 - 00000000 ____D C:\Users\Lukaas\Documents\Calibre Library
    2015-08-28 03:21 - 2014-10-11 23:20 - 00003894 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
    2015-08-28 03:21 - 2014-10-11 23:20 - 00003642 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
    2015-08-27 21:53 - 2012-12-17 12:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management
    2015-08-27 21:53 - 2012-12-17 12:37 - 00000000 ____D C:\Program Files (x86)\Calibre2
    2015-08-23 00:41 - 2014-08-15 21:45 - 00003192 _____ C:\Windows\System32\Tasks\HPCeeScheduleForLukaas
    2015-08-23 00:41 - 2014-08-15 21:45 - 00000336 _____ C:\Windows\Tasks\HPCeeScheduleForLukaas.job
    2015-08-18 17:38 - 2012-10-23 21:55 - 00000000 ____D C:\Users\Lukaas\AppData\Roaming\.minecraft
    2015-08-16 21:48 - 2012-09-27 20:17 - 00000000 ____D C:\Users\Lukaas\Documents\My Games
    2015-08-16 16:27 - 2015-05-18 23:01 - 00000000 ____D C:\Users\Lukaas\Documents\The Witcher 3
    2015-08-15 21:14 - 2012-09-27 13:51 - 00000000 ____D C:\Program Files\Common Files\Apple
    2015-08-13 00:13 - 2015-08-06 21:51 - 00000000 ____D C:\Users\Lukaas\Downloads\Mad.Max.Fury.Road.2015.HDRip.XViD-ETRG
    2015-08-13 00:13 - 2015-08-02 21:12 - 00000000 ____D C:\Users\Lukaas\Downloads\The Grand Budapest Hotel 2014 1080p BRRip x264 AAC-JYK
    2015-08-13 00:13 - 2015-08-02 21:02 - 00000000 ____D C:\Users\Lukaas\Downloads\The.Taking.of.Tiger.Mountain.2014.BRRip.480p.x264-VYTO [P2PDL]
    2015-08-12 16:15 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\rescache
    2015-08-12 04:14 - 2009-07-14 00:45 - 00299160 _____ C:\Windows\system32\FNTCACHE.DAT
    2015-08-12 04:13 - 2013-03-14 03:01 - 00000000 ____D C:\Program Files\Microsoft Silverlight
    2015-08-12 04:13 - 2013-03-14 03:01 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
    2015-08-12 04:09 - 2014-12-10 04:29 - 00000000 ____D C:\Windows\system32\appraiser
    2015-08-12 04:09 - 2014-05-07 03:00 - 00000000 ___SD C:\Windows\system32\CompatTel
    2015-08-12 03:48 - 2013-03-14 03:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
    2015-08-12 03:28 - 2013-07-19 03:04 - 00000000 ____D C:\Windows\system32\MRT
    2015-08-12 03:02 - 2012-11-05 15:10 - 132483416 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
    2015-08-12 00:17 - 2015-07-26 18:00 - 00000000 ____D C:\Users\Lukaas\AppData\Local\Purplizer
    2015-08-10 00:24 - 2012-09-27 16:51 - 00000000 ____D C:\Users\Lukaas\AppData\Roaming\Skype
    2015-08-09 12:27 - 2015-08-02 21:03 - 00000000 ____D C:\Users\Lukaas\Downloads\Edge of Tomorrow (2014)
    2015-08-09 12:27 - 2015-07-16 15:18 - 00000000 ____D C:\Users\Lukaas\Downloads\Bread- A Baker's Book of Techniques and Recipes - Jeffrey Hamelman [PDF] { KT }
    2015-08-09 12:05 - 2014-10-26 10:21 - 00000000 ____D C:\Users\Lukaas\Downloads\Captain Phillips (2013) [1080p]
    2015-08-09 12:05 - 2014-06-07 22:44 - 00000000 ____D C:\Users\Lukaas\Downloads\Children.Of.Men[2006]DvDrip[Eng]-aXXo

    ==================== Files in the root of some directories =======

    2012-10-23 21:54 - 2012-10-23 21:54 - 0263186 _____ () C:\Program Files\Minecraft.exe
    2012-11-26 21:09 - 2013-03-04 22:44 - 0703117 _____ () C:\Users\Lukaas\AppData\Roaming\technic-launcher.jar
    2012-11-26 21:09 - 2012-11-26 21:10 - 0583306 _____ () C:\Users\Lukaas\AppData\Roaming\technic-launcher.jar.bak
    2013-06-23 02:17 - 2013-06-23 02:20 - 0000173 _____ () C:\Users\Lukaas\AppData\Local\msmathematics.qat.Lukaas
    2013-09-04 19:23 - 2013-09-04 19:23 - 0000903 _____ () C:\Users\Lukaas\AppData\Local\recently-used.xbel
    2014-10-23 18:31 - 2014-10-23 18:31 - 0000057 _____ () C:\ProgramData\Ament.ini

    Some files in TEMP:
    ====================
    C:\Users\Lukaas\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpeblomp.dll


    ==================== Bamital & volsnap =================

    (There is no automatic fix for files that do not pass verification.)

    C:\Windows\system32\winlogon.exe => File is digitally signed
    C:\Windows\system32\wininit.exe => File is digitally signed
    C:\Windows\SysWOW64\wininit.exe => File is digitally signed
    C:\Windows\explorer.exe => File is digitally signed
    C:\Windows\SysWOW64\explorer.exe => File is digitally signed
    C:\Windows\system32\svchost.exe => File is digitally signed
    C:\Windows\SysWOW64\svchost.exe => File is digitally signed
    C:\Windows\system32\services.exe => File is digitally signed
    C:\Windows\system32\User32.dll => File is digitally signed
    C:\Windows\SysWOW64\User32.dll => File is digitally signed
    C:\Windows\system32\userinit.exe => File is digitally signed
    C:\Windows\SysWOW64\userinit.exe => File is digitally signed
    C:\Windows\system32\rpcss.dll => File is digitally signed
    C:\Windows\system32\dnsapi.dll => File is digitally signed
    C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
    C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


    LastRegBack: 2015-09-01 00:05

    ==================== End of FRST.txt ============================
     
  22. Lukaas Hendrix

    Lukaas Hendrix TS Rookie Topic Starter Posts: 27

    Additional scan result of Farbar Recovery Scan Tool (x64) Version:06-09-2015 01
    Ran by Lukaas (2015-09-07 21:59:27)
    Running from C:\Users\Lukaas\Downloads
    Windows 7 Home Premium Service Pack 1 (X64) (2012-09-27 15:48:43)
    Boot Mode: Normal
    ==========================================================


    ==================== Accounts: =============================

    Administrator (S-1-5-21-2797903042-380184562-4160340280-500 - Administrator - Disabled)
    Guest (S-1-5-21-2797903042-380184562-4160340280-501 - Limited - Disabled)
    HomeGroupUser$ (S-1-5-21-2797903042-380184562-4160340280-1002 - Limited - Enabled)
    Lukaas (S-1-5-21-2797903042-380184562-4160340280-1001 - Administrator - Enabled) => C:\Users\Lukaas

    ==================== Security Center ========================

    (If an entry is included in the fixlist, it will be removed.)

    AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
    AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

    ==================== Installed Programs ======================

    (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

    (HKLM\...\UDK-a3907f02-b901-4f6d-8ddd-810262a35d23) (Version: - RuneStorm
    µTorrent (HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\uTorrent) (Version: 3.4.4.40911 - BitTorrent Inc.)
    10,000,000 (HKLM-x32\...\Steam App 227580) (Version: - )
    A Game of Thrones mod for CK2 version 0.4.0.1 (HKLM-x32\...\{7C82709E-75FE-4C3A-976A-8C97908DDD7B}_is1) (Version: 0.4.0.1 - AGOT TEAM)
    Adobe Flash Player 18 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 18.0.0.232 - Adobe Systems Incorporated)
    Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
    Adobe Reader XI (11.0.12) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated)
    Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.9.160 - Adobe Systems, Inc.)
    Age of Wonders III (HKLM-x32\...\Steam App 226840) (Version: - Triumph Studios)
    AirMech (HKLM-x32\...\Steam App 206500) (Version: - )
    Algodoo v2.1.0 (HKLM-x32\...\Algodoo_is1) (Version: - Algoryx)
    Alien Swarm (HKLM-x32\...\Steam App 630) (Version: - Valve)
    AMD Catalyst Install Manager (HKLM\...\{D2A53F8D-3924-E600-6023-883B255E3812}) (Version: 3.0.842.0 - Advanced Micro Devices, Inc.)
    Anomaly Warzone Earth (HKLM-x32\...\{C4377DBD-EF89-4088-B68C-1DB78280F076}_is1) (Version: 1 - 11 bit studios)
    Apple Application Support (32-bit) (HKLM-x32\...\{7FE25256-B7C1-480D-B736-10A67A833AEA}) (Version: 3.2 - Apple Inc.)
    Apple Application Support (64-bit) (HKLM\...\{B255D495-4734-4E9B-B4F5-96702FD4A7B9}) (Version: 3.2 - Apple Inc.)
    Apple Mobile Device Support (HKLM\...\{5D61F006-168C-4B8B-B7FD-F113C10AE0E4}) (Version: 8.2.1.3 - Apple Inc.)
    Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
    applicationupdater (HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\SOE-C:/Users/Lukaas/AppData/Local/Sony Online Entertainment/ApplicationUpdater) (Version: - Sony Online Entertainment)
    Arma: Cold War Assault (HKLM-x32\...\Steam App 65790) (Version: - Bohemia Interactive)
    Audacity 2.0.4 (HKLM-x32\...\Audacity_is1) (Version: 2.0.4 - Audacity Team)
    Audible Download Manager (HKLM-x32\...\AudibleDownloadManager) (Version: 6.6.0.15 - Audible, Inc.)
    Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.3.2225 - AVAST Software)
    Awesomenauts (HKLM-x32\...\Steam App 204300) (Version: - )
    Batman: Arkham Asylum GOTY Edition (HKLM-x32\...\Steam App 35140) (Version: - Rocksteady Studios)
    Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
    BattleBlock Theater (HKLM-x32\...\Steam App 238460) (Version: - The Behemoth)
    Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.4.2.30944 - Electronic Arts)
    Battlefield 4™ Beta (HKLM-x32\...\{CFAB3721-549D-4827-A4E8-7F90192114AB}) (Version: 1.0.0.0 - Electronic Arts)
    Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.6.2 - EA Digital Illusions CE AB)
    Bejeweled 3 (x32 Version: 2.2.0.97 - WildTangent) Hidden
    Bejeweled® 3 (HKLM-x32\...\{E99C27B2-EB2E-4244-9F5C-A96F55100F0C}) (Version: 1.1.13.4753 - Electronic Arts, Inc.)
    Bigasoft iTunes Video Converter 3.7.18.4668 (HKLM-x32\...\{83340D90-BB65-4969-8C4E7FABC6319CDA}_is1) (Version: - Bigasoft Corporation)
    BioShock (HKLM-x32\...\Steam App 7670) (Version: - 2K Boston)
    BioShock 2 (HKLM-x32\...\Steam App 8850) (Version: - 2K Games)
    BitRaider Web Client (HKLM-x32\...\BitRaider Web Client) (Version: 1.1.6.3 - BitRaider, LLC)
    Blackhawk Striker 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden
    Blacklight: Retribution (HKLM-x32\...\Steam App 209870) (Version: - Zombie, Inc.)
    Bluetooth by hp (HKLM\...\{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}) (Version: 6.3.0.8200 - Broadcom Corporation)
    Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
    Bubble Wrap (HKLM-x32\...\{5BFFDDEB-AFD7-499F-BB13-7A6EAD927CDA}_is1) (Version: 1.0.0.0 - XM Asia Pacific Pte Ltd)
    Burnout Paradise: The Ultimate Box (HKLM-x32\...\Steam App 24740) (Version: - Criterion Games)
    Burnout™ Paradise: The Ultimate Box (HKLM-x32\...\{1CDC8E7D-CDFC-4C2B-A080-23D943354625}) (Version: 1.1.0.0 - Electronic Arts)
    Burnout™ Paradise: The Ultimate Box (HKLM-x32\...\{9A996B6A-846E-4A89-B9C4-17546B7BE49F}) (Version: 1.1.0.0 - Electronic Arts)
    calibre (HKLM-x32\...\{B4B62C79-A41D-47C6-B689-0416BEA6678F}) (Version: 2.35.0 - Kovid Goyal)
    Card Hunter (HKLM-x32\...\Steam App 293260) (Version: - Blue Manchu)
    CDisplay 1.8 (HKLM-x32\...\CDisplay_is1) (Version: - dvd8n)
    Chivalry: Medieval Warfare (HKLM-x32\...\Steam App 219640) (Version: - )
    Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
    Cities XL 2011 (HKLM-x32\...\Steam App 58510) (Version: - Monte Cristo)
    Company of Heroes (HKLM-x32\...\Steam App 4560) (Version: - Relic)
    Company of Heroes: Opposing Fronts (HKLM-x32\...\Steam App 9340) (Version: - Relic)
    Company of Heroes: Tales of Valor (HKLM-x32\...\Steam App 20540) (Version: - Relic)
    Cradle of Rome 2 (x32 Version: 2.2.0.98 - WildTangent) Hidden
    CrossHair (HKLM-x32\...\{05B68931-AD1D-4879-AF0E-D2BFF9750C58}) (Version: 1.1.0 - Mike Lin)
    Crusader Kings II (HKLM-x32\...\Steam App 203770) (Version: - Paradox)
    Curse (HKLM-x32\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Curse)
    CyberLink PowerDVD 10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.1.3226 - CyberLink Corp.)
    D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
    Darksiders (HKLM-x32\...\Steam App 50620) (Version: - Vigil Games)
    DarksidersInstaller (HKLM-x32\...\{B93EEE50-9C8F-45DF-95E4-3D85A6E242F3}) (Version: 1.00.1000 - THQ)
    Deus Ex: Human Revolution (HKLM-x32\...\Steam App 28050) (Version: - Eidos Montreal)
    DirectX for Managed Code Update (Summer 2004) (x32 Version: 9.02.2904 - Microsoft) Hidden
    Dirty Bomb (HKLM-x32\...\Steam App 333930) (Version: - Splash Damage®)
    Dolby Axon - 1.5.1.1 (HKLM-x32\...\{17936630-5344-4F18-9970-616129E2A114}_is1) (Version: 1.5.1.1 - Dolby Laboratories)
    Dora's World Adventure (x32 Version: 2.2.0.95 - WildTangent) Hidden
    doubleTwist Sync (HKLM-x32\...\doubleTwist) (Version: 4.0.4.19767 - doubleTwist Corporation)
    Dragon Age: Origins (HKLM-x32\...\{AEC81925-9C76-4707-84A9-40696C613ED3}) (Version: 1.05.0.0 - Electronic Arts)
    Dropbox (HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\Dropbox) (Version: 3.8.8 - Dropbox, Inc.)
    Dungeon Defenders (HKLM-x32\...\Steam App 65800) (Version: - )
    Dungeon Siege II version 2.3 (HKLM-x32\...\{1520E069-19A9-4B01-BA5D-87B67D56F55D}_is1) (Version: 2.3 - )
    Dungeonland (HKLM-x32\...\Steam App 218130) (Version: - )
    Dungeons of Dredmor (HKLM-x32\...\Steam App 98800) (Version: - )
    Dwarfs!? (HKLM-x32\...\Steam App 35480) (Version: - Power of Two)
    Dying Light (HKLM-x32\...\Steam App 239140) (Version: - Techland)
    Europa Universalis III (HKLM-x32\...\Steam App 25800) (Version: - Paradox Interactive)
    f.lux (HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\Flux) (Version: - )
    Fable - The Lost Chapters (HKLM-x32\...\Steam App 204030) (Version: - Lionhead Studios)
    Facebook (HKLM-x32\...\{8AE50893-3A87-4439-9A57-942ED43F7189}) (Version: 1.1.0004 - Hewlett-Packard)
    Fantasy Grounds (HKLM-x32\...\Steam App 252690) (Version: - SmiteWorks USA, LLC)
    Farm Frenzy (x32 Version: 2.2.0.98 - WildTangent) Hidden
    Farmscapes (x32 Version: 2.2.0.98 - WildTangent) Hidden
    FATE (x32 Version: 2.2.0.97 - WildTangent) Hidden
    Final Drive Fury (x32 Version: 2.2.0.95 - WildTangent) Hidden
    Firefall (HKLM-x32\...\Steam App 227700) (Version: - Red 5 Studios)
    gamelauncher-ps2-live (HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\SOE-C:/Users/Public/Sony Online Entertainment/Installed Games/PlanetSide 2) (Version: - Sony Online Entertainment)
    Gauntlet™ (HKLM-x32\...\Steam App 258970) (Version: - Arrowhead Game Studios)
    Ghost Recon Online (NCSA-Live) (HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\fc418bf9b18f76aa) (Version: 1.30.8665.2 - Ubisoft)
    GIMP 2.8.6 (HKLM\...\GIMP-2_is1) (Version: 2.8.6 - The GIMP Team)
    Glyph (HKLM-x32\...\Glyph) (Version: - Trion Worlds, Inc.)
    Google Chrome (HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\Google Chrome) (Version: 45.0.2454.85 - Google Inc.)
    Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
    Google Talk Plugin (HKLM-x32\...\{CA3DD97D-1FD7-37A7-BD5C-FC4430C8B8E6}) (Version: 5.41.2.0 - Google)
    Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6710.2136 - Google Inc.)
    Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
    Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
    Google Update Helper (x32 Version: 1.3.28.13 - Google Inc.) Hidden
    Gratuitous Space Battles (HKLM-x32\...\Gratuitous Space Battles_is1) (Version: - Positech Games)
    Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
    Guns of Icarus Online Beta (HKLM-x32\...\Steam App 209080) (Version: - )
    Half Minute Hero: Super Mega Neo Climax Ultimate Boy (HKLM-x32\...\Steam App 214830) (Version: - )
    HandBrake 0.9.8 (HKLM-x32\...\HandBrake) (Version: 0.9.8 - )
    Happy Cloud Client (HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\HappyCloud) (Version: 1.374 - Happy Cloud, Inc.)
    HAWKEN (HKLM-x32\...\Steam App 271290) (Version: - Adhesive Games)
    Hawken (HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\Hawken) (Version: - Meteor Entertainment)
    Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
    Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
    Hoyle Card Games (x32 Version: 2.2.0.95 - WildTangent) Hidden
    HP Application Assistant (HKLM\...\{B34A07DD-C6F7-414A-AE63-01019482EAF0}) (Version: 1.0.393.3870 - Hewlett-Packard)
    HP Calendar (HKLM-x32\...\{2B38E0FA-D8A5-4EBF-A018-E3C1C8E7A2E2}) (Version: 5.1.4245.23508 - Hewlett-Packard)
    HP Clock (HKLM-x32\...\{0EEC4E49-D4C2-4E23-87F2-B5641F1A09E4}) (Version: 5.1.4244.16367 - Hewlett-Packard)
    HP ENVY 4500 series Basic Device Software (HKLM\...\{6915424E-704F-4F5D-9057-9C7B406B36DB}) (Version: 32.3.198.49673 - Hewlett-Packard Co.)
    HP ENVY 4500 series Help (HKLM-x32\...\{95BECC50-22B4-4FCA-8A2E-BF77713E6D3A}) (Version: 30.0.0 - Hewlett Packard)
    HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.2.5 - WildTangent)
    HP LinkUp (HKLM-x32\...\{7E750542-55BC-4300-8B7B-AC2A762FB435}) (Version: 2.01.029 - Hewlett-Packard)
    HP Magic Canvas (HKLM-x32\...\{DDFDC9D6-4220-41F8-BF9A-8E7512C4EF52}) (Version: 5.1.15.0 - Hewlett-Packard)
    HP Magic Canvas Tutorials (HKLM-x32\...\{858FCB65-7C6D-4BA4-AD80-A3CB3744CE09}_is1) (Version: 5.0.0.3 - Hewlett-Packard)
    HP Notes (HKLM-x32\...\{86BAB08A-5E66-4C53-82E3-C1E91673C7CA}) (Version: 5.1.4274.30382 - Hewlett-Packard)
    HP Odometer (HKLM-x32\...\{B8AC1A89-FFD1-4F97-8051-E505A160F562}) (Version: 2.10.0000 - Hewlett-Packard)
    HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
    HP RSS (HKLM-x32\...\{A35E58D6-2A0F-4051-983B-79342081338E}) (Version: 5.1.4301.21494 - Hewlett-Packard)
    HP Setup (HKLM-x32\...\{F5E7D9AF-60F6-4A30-87E3-4EA94D322CE1}) (Version: 9.0.15130.3904 - Hewlett-Packard Company)
    HP Setup Manager (HKLM-x32\...\{AE856388-AFAD-4753-81DF-D96B19D0A17C}) (Version: 1.2.15145.3905 - Hewlett-Packard Company)
    HP Support Assistant (HKLM-x32\...\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}) (Version: 7.4.45.4 - Hewlett-Packard Company)
    HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 11.00.0001 - Hewlett-Packard)
    HP Support Solutions Framework (HKLM-x32\...\{FC3C2B77-6800-48C6-A15D-9D1031130C16}) (Version: 11.51.0049 - Hewlett-Packard Company)
    HP TouchSmart Background - Beats (HKLM-x32\...\{6A6F8D36-04BA-41E9-9004-1789BD545874}) (Version: 1.0.1.0 - Hewlett-Packard)
    HP TouchSmart RecipeBox (HKLM-x32\...\{20714B53-FC73-4F9C-9687-49EB237D6FD7}) (Version: 3.0.3830.27730 - Hewlett-Packard)
    HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
    HP Vision Hardware Diagnostics (HKLM\...\{D79A02E9-6713-4335-9668-AAC7474C0C0E}) (Version: 2.12.1.0 - Hewlett-Packard)
    HP Weather (HKLM-x32\...\{8364E531-493B-4B05-8041-09D5CE38B975}) (Version: 5.1.4295.16450 - Hewlett-Packard)
    HydraVision (x32 Version: 4.2.212.0 - Advanced Micro Devices, Inc.) Hidden
    iCloud (HKLM\...\{709A2D23-C25E-47B5-9268-CB6FEE648504}) (Version: 4.1.1.53 - Apple Inc.)
    Injustice: Gods Among Us Ultimate Edition (HKLM-x32\...\Steam App 242700) (Version: - NetherRealm Studios)
    iSnooze 1.3.3 (HKLM-x32\...\iSnooze) (Version: 1.3.3 - Steven Scott)
    iTunes (HKLM\...\{BFEAB774-C7DC-4032-B05A-DA5F7CB7B365}) (Version: 12.2.2.25 - Apple Inc.)
    Java 8 Update 40 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418040F0}) (Version: 8.0.400 - Oracle Corporation)
    Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
    Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
    Jewel Quest Mysteries: The Seventh Gate Collector's Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden
    John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden
    Junk Mail filter update (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
    KMPlayer (HKLM-x32\...\The KMPlayer) (Version: 3.9.1.135 - PandoraTV)
    LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.4507 - CyberLink Corp.)
    LabelPrint (x32 Version: 2.5.4507 - CyberLink Corp.) Hidden
    League of Legends (HKLM-x32\...\{92606477-9366-4D3B-8AE3-6BE4B29727AB}) (Version: 1.3 - Riot Games)
    Letters from Nowhere 2 (x32 Version: 2.2.0.97 - WildTangent) Hidden
    LizardTech ExpressView Browser Plug-in (HKLM-x32\...\{67CEE8A8-9E1A-440A-9D99-F997EB4FB7AE}) (Version: 6.5 - LizardTech)
    Loadout (HKLM-x32\...\Steam App 208090) (Version: - Edge of Reality)
    LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.383 - LogMeIn, Inc.)
    LogMeIn Hamachi (x32 Version: 2.2.0.383 - LogMeIn, Inc.) Hidden
    Luxor HD (x32 Version: 2.2.0.98 - WildTangent) Hidden
    Magicite (HKLM-x32\...\Steam App 268750) (Version: - SmashGames)
    Mah Jong Medley (x32 Version: 2.2.0.95 - WildTangent) Hidden
    Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
    Marvel Heroes (HKLM-x32\...\marvelheroes) (Version: 1.10.1.8 - Gazillion Entertainment)
    MechWarrior Online (HKLM-x32\...\{9f17023b-d04f-432b-b08a-3bb4c3a7ed3c}) (Version: 1.6.0.0 - Piranha Games Inc.)
    MechWarrior Online (x32 Version: 1.6.1.0 - Piranha Games Inc.) Hidden
    Medieval Engineers (HKLM-x32\...\Steam App 333950) (Version: - Keen Software House)
    Metric Converter (HKLM-x32\...\{D0661463-50F7-4A1E-83CB-37CC590589AE}_is1) (Version: 1.0.0.0 - XM Asia Pacific Pte Ltd)
    Metro 2033 (HKLM-x32\...\Steam App 43110) (Version: - THQ)
    Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
    Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation)
    Microsoft Games for Windows - LIVE (HKLM-x32\...\{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}) (Version: 3.1.186.0 - Microsoft Corporation)
    Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}) (Version: 3.1.99.0 - Microsoft Corporation)
    Microsoft Mathematics (HKLM-x32\...\{4D090F70-6F08-4B60-9357-A1DFD4458F09}) (Version: 4.0 - Microsoft Corporation)
    Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
    Microsoft SkyDrive (HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\SkyDriveSetup.exe) (Version: 16.4.6013.0910 - Microsoft Corporation)
    Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
    Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
    Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
    Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
    Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
    Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
    Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
    Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
    Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
    Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
    Miner Wars 2081 (HKLM-x32\...\Steam App 223430) (Version: - Keen Software House)
    Mirror's Edge™ (HKLM-x32\...\{AEDBD563-24BB-4EE3-8366-A654DAC2D988}) (Version: 1.0.1.0 - Electronic Arts)
    Mount & Blade (HKLM-x32\...\Steam App 22100) (Version: - TaleWorlds Entertainment)
    Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
    NEOTOKYO° (HKLM-x32\...\Steam App 244630) (Version: - STUDIO RADI-8)
    Neverwinter (HKLM-x32\...\Neverwinter) (Version: - Cryptic Studios)
    Nosgoth (HKLM-x32\...\Steam App 200110) (Version: 140603.85501 - Square Enix Ltd)
    NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
    Oil Rush version 1.12 (HKLM-x32\...\Oil Rush_is1) (Version: 1.12 - )
    OpenAL (HKLM-x32\...\OpenAL) (Version: - )
    OpenOffice 4.1.1 (HKLM-x32\...\{9395F41D-0F80-432E-9A59-B8E477E7E163}) (Version: 4.11.9775 - Apache Software Foundation)
    OpenOffice 4.1.1 Language Pack (English) (HKLM-x32\...\{53E5F858-54E3-406D-A927-09AC86FCBA1A}) (Version: 4.11.9775 - Apache Software Foundation)
    opensource (x32 Version: 1.0.14960.3876 - Your Company Name) Hidden
    OpenTTD 1.3.2 (HKLM-x32\...\OpenTTD) (Version: 1.3.2 - OpenTTD)
    Origin (HKLM-x32\...\Origin) (Version: 9.0.15.65 - Electronic Arts, Inc.)
    Osmos (HKLM-x32\...\Steam App 29180) (Version: - Hemisphere Games)
    Overwolf (HKLM-x32\...\Overwolf) (Version: 0.88.101.0 - Overwolf Ltd.)
    Pandora Service (HKLM-x32\...\4F6D5E84-5826-4394-9F40-3A9A19165651_is1) (Version: - Pandora.TV) <==== ATTENTION
    Path of Exile (HKLM-x32\...\Steam App 238960) (Version: - Grinding Gear Games)
    Patrician III (HKLM-x32\...\Steam App 33570) (Version: - Ascaron Entertainment ltd.)
    PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.)
    PDF Complete Special Edition (HKLM-x32\...\PDF Complete) (Version: 4.0.65 - PDF Complete, Inc)
    PDFtk - The PDF Toolkit version 2.02 (HKLM-x32\...\{C65EA7B8-FC21-4896-AD44-9CE952BB1255}_is1) (Version: 2.02 - PDF Labs)
    Penguins! (x32 Version: 2.2.0.98 - WildTangent) Hidden
    PlanetSide 2 (HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\soe-PlanetSide 2) (Version: 1.0.3.181 - Sony Online Entertainment)
    Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
    Plants vs. Zombies: Game of the Year (HKLM-x32\...\Steam App 3590) (Version: - PopCap Games, Inc.)
    Playfire (HKLM-x32\...\{6b69b0a4-05aa-4ee8-a108-0ebb857ecba4}) (Version: 0.0.72.0 - Playfire)
    Playfire (x32 Version: 0.0.72.0 - Playfire) Hidden
    PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
    Poker Superstars III (x32 Version: 2.2.0.95 - WildTangent) Hidden
    Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
    Polar Golfer (x32 Version: 2.2.0.98 - WildTangent) Hidden
    Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.5706 - CyberLink Corp.)
    Power2Go (x32 Version: 6.1.5706 - CyberLink Corp.) Hidden
    Prison Architect (HKLM-x32\...\Steam App 233450) (Version: - Introversion Software)
    Product Improvement Study for HP ENVY 4500 series (HKLM\...\{58139103-BACF-4BDC-B71C-955F9164ADA6}) (Version: 32.3.198.49673 - Hewlett-Packard Co.)
    PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.992 - Even Balance, Inc.)
    QuickTime 7 (HKLM-x32\...\{627FFC10-CE0A-497F-BA2B-208CAC638010}) (Version: 7.77.80.95 - Apple Inc.)
    RaidCall (HKLM-x32\...\RaidCall) (Version: 7.2.2-1.0.6555.3 - raidcall.com)
    RAIDXpert (HKLM-x32\...\InstallShield_{8B76B8E9-F773-4B75-A08C-120079EB765E}) (Version: 3.3.1540.9 - AMD)
    RAIDXpert (x32 Version: 3.3.1540.9 - AMD) Hidden
    Realm of the Mad God (HKLM-x32\...\Steam App 200210) (Version: - )
    Recovery Manager (x32 Version: 5.5.0.4424 - CyberLink Corp.) Hidden
    Red Faction: Armageddon (HKLM-x32\...\Steam App 55110) (Version: - Volition)
    Remote Graphics Receiver (HKLM-x32\...\{16FC3056-90C0-4757-8A68-64D8DA846ADA}) (Version: 5.4.5 - Hewlett-Packard)
    Rising Storm/Red Orchestra 2 Multiplayer (HKLM-x32\...\Steam App 35450) (Version: - Tripwire Interactive)
    Robocraft (HKLM-x32\...\Steam App 301520) (Version: - Freejam)
    Rocksmith 2014 (HKLM-x32\...\Steam App 221680) (Version: - Ubisoft - San Francisco)
    Rogue Legacy (HKLM-x32\...\Steam App 241600) (Version: - Cellar Door Games)
    RollerCoaster Tycoon 3: Platinum (x32 Version: 2.2.0.98 - WildTangent) Hidden
    Saints Row: The Third (HKLM-x32\...\Steam App 55230) (Version: - Volition)
    Sanctum 2 (HKLM-x32\...\Steam App 210770) (Version: - Coffee Stain Studios)
    Shatter (HKLM-x32\...\{84D008A6-8159-442E-8FD8-0148EF42F3E0}) (Version: 1.0.5 - Sidhe Interactive)
    Sid Meier's Civilization IV (HKLM-x32\...\Steam App 3900) (Version: - Firaxis Games)
    Sid Meier's Civilization V (HKLM-x32\...\Civilization V) (Version: - 2K Games, Inc.)
    Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version: - 2K Games, Inc.)
    Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
    SlimDX SDK (September 2011) (HKLM-x32\...\{37542828-0F05-4BAA-BEB7-B633F27D3E7B}) (Version: 2.0.12.43 - SlimDX Group)
    Smart Technology Programming Software 7.0.2.7 (HKLM\...\{6D41B4C4-FCD7-4F9B-99B9-A01F63F71F0F}) (Version: 7.0.2.7 - Mad Catz)
    Solar 2 (HKLM-x32\...\Steam App 97000) (Version: - Murudai)
    Space Engineers (HKLM-x32\...\Steam App 244850) (Version: - Keen Software House)
    SPACECOM (HKLM-x32\...\Steam App 263860) (Version: - Flow Combine)
    Spec Ops: The Line (HKLM-x32\...\Steam App 50300) (Version: - YAGER)
    Spot (HKLM-x32\...\{3D171340-B528-42E0-92E4-BDA7AEEF6F32}_is1) (Version: 1.0.0.0 - XM Asia Pacific Pte Ltd)
    Spotify (HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\Spotify) (Version: 1.0.13.108.gcd94e7db - Spotify AB)
    Starbound (HKLM-x32\...\Steam App 211820) (Version: - )
    StarCitizen (HKLM-x32\...\StarCitizen) (Version: 1.0 - Cloud Imperium Games)
    StarCraft II (HKLM-x32\...\StarCraft II) (Version: 2.0.7.25293 - Blizzard Entertainment)
    Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
    swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
    Tabletop Simulator (HKLM-x32\...\Steam App 286160) (Version: - Berserk Games)
    Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
    TeamSpeak 3 Client (HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\TeamSpeak 3 Client) (Version: 3.0.15 - TeamSpeak Systems GmbH)
    The Banner Saga (HKLM-x32\...\Steam App 237990) (Version: - Stoic)
    The Binding of Isaac (HKLM-x32\...\Steam App 113200) (Version: - )
    The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios)
    The Mighty Quest For Epic Loot version 1.210372 (HKLM-x32\...\The Mighty Quest For Epic Loot_is1) (Version: 1.210372 - )
    The Sims 2: Ultimate Collection (HKLM-x32\...\{04450C18-F039-4B81-A621-70C3B0F523D5}) (Version: 1.0.0.0 - Electronic Arts)
    The Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts)
    The Sims™ 3 High-End Loft Stuff (HKLM-x32\...\{71828142-5A24-4BD0-97E7-976DA08CE6CF}) (Version: 3.0.38 - Electronic Arts)
    The Sims™ 3 Late Night (HKLM-x32\...\{45057FCE-5784-48BE-8176-D9D00AF56C3C}) (Version: 6.5.1 - Electronic Arts)
    The Treasures of Mystery Island: The Ghost Ship (x32 Version: 2.2.0.98 - WildTangent) Hidden
    The Witcher 2: Assassins of Kings Enhanced Edition (HKLM-x32\...\Steam App 20920) (Version: - CD Projekt RED)
    The Witcher 2: Bonus Content (HKLM-x32\...\Steam App 20930) (Version: - )
    The Witcher 3: Wild Hunt (HKLM-x32\...\Steam App 292030) (Version: - CD PROJEKT RED)
    Theme Hospital (HKLM-x32\...\{5118A4C2-C8A4-4CE5-AC37-F3E51C25402F}) (Version: 3.0.0.2 - Electronic Arts)
    Tom Clancy's Ghost Recon Phantoms - NA (HKLM-x32\...\Steam App 243870) (Version: - Ubisoft Singapore)
    Tom Clancy's Splinter Cell Blacklist (HKLM-x32\...\Steam App 235600) (Version: - Ubisoft Toronto)
    Tom Clancy's Splinter Cell: Conviction (HKLM-x32\...\Steam App 33220) (Version: - Ubisoft)
    Tomb Raider (HKLM-x32\...\Steam App 203160) (Version: - Crystal Dynamics)
    Torchlight (HKLM-x32\...\Torchlight_is1) (Version: - GOG.com)
    Torchlight (x32 Version: 2.2.0.98 - WildTangent) Hidden
    TSHostedAppLauncher (x32 Version: 5.1.15.0 - Hewlett-Packard) Hidden
    Tunngle beta (HKLM-x32\...\Tunngle beta_is1) (Version: - Tunngle.net GmbH)
    Unity Web Player (HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\UnityWebPlayer) (Version: 4.6.2f1 - Unity Technologies ApS)
    Universe Sandbox (HKLM-x32\...\Steam App 72200) (Version: - Giant Army)
    Unturned (HKLM-x32\...\Steam App 304930) (Version: - Nelson Sexton)
    Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
    Uplay (HKLM-x32\...\Uplay) (Version: 3.0 - Ubisoft)
    Verdun (HKLM-x32\...\Steam App 242860) (Version: - M2H)
    Virtual Villagers 4 - The Tree of Life (x32 Version: 2.2.0.98 - WildTangent) Hidden
    Viscera Cleanup Detail (HKLM-x32\...\Steam App 246900) (Version: - RuneStorm)
    Viscera Cleanup Detail: alpha v0.25
    VLC media player 2.0.4 (HKLM-x32\...\VLC media player) (Version: 2.0.4 - VideoLAN)
    War of the Roses Balance Beta (HKLM-x32\...\Steam App 206980) (Version: - )
    War of the Roses: Kingmaker (HKLM-x32\...\Steam App 42160) (Version: - Fatshark)
    War Thunder (HKLM-x32\...\Steam App 236390) (Version: - Gaijin Entertainment)
    Warface Launcher (Beta) (HKLM-x32\...\{28D1723C-31C4-4A83-9799-DFFB3739026D}) (Version: 1.0.0 - Crytek GmbH)
    Warframe (HKLM-x32\...\Steam App 230410) (Version: - )
    WildTangent Games App (HP Games) (x32 Version: 4.0.5.32 - WildTangent) Hidden
    Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
    WinRAR 4.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
    World of Guns: Gun Disassembly (HKLM-x32\...\Steam App 262410) (Version: - Noble Empire Corp.)
    World of Tanks (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812NA}_is1) (Version: - Wargaming.net)
    Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org)
    XSplit (HKLM-x32\...\{D68006E1-F774-4504-9ECF-03B67793C475}) (Version: 1.1.1210.3101 - SplitMediaLabs)
    Zumas Revenge (HKLM-x32\...\{0B153CAB-792B-4CA2-B2A5-AB0BBAF2FFA9}) (Version: 1.0.5.600 - PopCap Games)
    Zuma's Revenge (x32 Version: 2.2.0.98 - WildTangent) Hidden

    ==================== Custom CLSID (Whitelisted): ==========================

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Lukaas\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll No File
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Lukaas\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll No File
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\Lukaas\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll No File
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Lukaas\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll No File
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\Lukaas\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll (Google Inc.)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Lukaas\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll No File
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Lukaas\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Lukaas\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Lukaas\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll No File
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Lukaas\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll No File
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Lukaas\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll (Google Inc.)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Lukaas\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Lukaas\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\FileSyncApi64.dll (Microsoft Corporation)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
    CustomCLSID: HKU\S-1-5-21-2797903042-380184562-4160340280-1001_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\Lukaas\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll No File

    ==================== Restore Points =========================

    02-09-2015 22:43:09 Windows Update
    05-09-2015 19:04:29 Restore Operation
    05-09-2015 19:45:59 Windows Update
    07-09-2015 10:01:13 JRT Pre-Junkware Removal
    07-09-2015 21:53:48 Installed Microsoft Fix it 50535

    ==================== Hosts content: ===============================

    (If needed Hosts: directive could be included in the fixlist to reset Hosts.)

    2009-07-13 22:34 - 2015-09-07 20:29 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
    127.0.0.1 localhost

    ==================== Scheduled Tasks (Whitelisted) =============

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

    Task: {02074321-A14B-47BB-B4FE-05394B82CA7A} - System32\Tasks\HPCustParticipation HP ENVY 4500 series => C:\Program Files\HP\HP ENVY 4500 series\Bin\HPCustPartic.exe [2014-07-21] (Hewlett-Packard Development Company, LP)
    Task: {1D7B3981-14C4-46CA-8EEF-AC7357C1B9B6} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2015-08-19] (Overwolf LTD)
    Task: {23BF593E-A499-413A-B22D-79B60CFB7859} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
    Task: {24CB76C7-BB08-4676-95BB-DA34DAEDA6BB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)
    Task: {2BFFCE24-15F4-481A-A28B-96F6B91A0644} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2015-07-31] (Hewlett-Packard)
    Task: {363CE489-6D9C-4EEA-84CF-521F706F9AFB} - System32\Tasks\HPCeeScheduleForLukaas => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard)
    Task: {37BD3EAD-8278-4538-B226-2EAF814D19BD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
    Task: {4E044B32-825F-4539-BF32-6B5C2FED158E} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2797903042-380184562-4160340280-1001Core => C:\Users\Lukaas\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-29] (Dropbox, Inc.)
    Task: {5ECCBB22-515B-4985-BBBE-74CD8AE9C3BF} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\MpCmdRun.exe
    Task: {615DBB64-A5CD-4596-B385-540AF1D14384} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
    Task: {70236258-181F-46B0-983B-CABF6FEAFB30} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_CN47O1554G => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2015-07-31] (Hewlett-Packard)
    Task: {72C162F3-3AF9-4DB6-AF68-5B83B5B6AECF} - System32\Tasks\{8BB1EC30-6503-403A-A3C1-9A89AA67C785} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{3E31400D-274E-4647-916C-2CACC3741799}\ENPSETUP.exe" -c -runfromtemp -l0x0009 -EPSON -removeonly
    Task: {79AE8822-FD61-418B-935E-F96B2A000BEE} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe invagent.dll,RunUpdate -noappraiser
    Task: {8F06F840-035F-4124-B3B6-0FEBD6092B3D} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2797903042-380184562-4160340280-1001UA => C:\Users\Lukaas\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
    Task: {9C9C307A-125F-4190-92EA-57CD4B4B7000} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-09-06] (AVAST Software)
    Task: {A5385E8A-71D9-430E-934D-F4187E13DCD4} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
    Task: {A780EA3A-DE80-4046-B0A9-A88CCCEB2944} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2797903042-380184562-4160340280-1001Core => C:\Users\Lukaas\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
    Task: {C5B61A5B-21A5-47F2-B8A7-FFFBF6E3B17B} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\SymErr.exe
    Task: {CAE74635-6184-48A2-A1B8-5E42BBA59F64} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-09-06] (Adobe Systems Incorporated)
    Task: {CED44C92-504A-43C9-94D2-02308E51B02C} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2797903042-380184562-4160340280-1001UA => C:\Users\Lukaas\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-29] (Dropbox, Inc.)
    Task: {E003BE13-CBCA-4447-A93D-41C3AC1F3A3C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
    Task: {E15EADB7-45B2-42B9-9A85-DB672D956B6D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2015-07-31] (Hewlett-Packard)
    Task: {E3978B40-B3D2-40DC-8CDF-1493B03D9217} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\WSCStub.exe
    Task: {E4CA394A-B134-406E-9224-51DD31A2AEEB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
    Task: {E6271557-94CB-4DA9-A20B-5AABE850891B} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28\SymErr.exe

    (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

    Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
    Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2797903042-380184562-4160340280-1001Core.job => C:\Users\Lukaas\AppData\Local\Dropbox\Update\DropboxUpdate.exe
    Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2797903042-380184562-4160340280-1001UA.job => C:\Users\Lukaas\AppData\Local\Dropbox\Update\DropboxUpdate.exe
    Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2797903042-380184562-4160340280-1001Core.job => C:\Users\Lukaas\AppData\Local\Google\Update\GoogleUpdate.exe
    Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2797903042-380184562-4160340280-1001UA.job => C:\Users\Lukaas\AppData\Local\Google\Update\GoogleUpdate.exe
    Task: C:\Windows\Tasks\HPCeeScheduleForLukaas.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

    ==================== Loaded Modules (Whitelisted) ==============

    2015-01-20 23:35 - 2015-01-20 23:35 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
    2015-05-15 16:26 - 2015-05-15 16:26 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
    2015-02-22 20:48 - 2015-02-22 20:48 - 00076152 _____ () C:\Windows\system32\PnkBstrA.exe
    2015-09-06 22:27 - 2015-09-06 22:27 - 00102864 _____ () C:\Program Files\AVAST Software\Avast\log.dll
    2015-09-06 22:27 - 2015-09-06 22:27 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
    2015-09-07 14:37 - 2015-09-07 14:37 - 02962432 _____ () C:\Program Files\AVAST Software\Avast\defs\15090701\algo.dll
    2015-09-07 21:47 - 2015-09-07 21:47 - 00071168 _____ () c:\users\lukaas\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpeblomp.dll
    2015-03-04 17:45 - 2015-08-05 01:26 - 00012800 _____ () C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\QtQuick.2\qtquick2plugin.dll
    2015-03-04 17:45 - 2015-08-05 01:26 - 00779776 _____ () C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\QtQuick\Controls\qtquickcontrolsplugin.dll
    2015-07-28 21:52 - 2015-08-05 01:26 - 00056320 _____ () C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\QtQuick\Layouts\qquicklayoutsplugin.dll
    2015-03-04 17:45 - 2015-08-05 01:26 - 00012288 _____ () C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\QtQuick\Window.2\windowplugin.dll
    2015-09-06 22:28 - 2015-09-06 22:28 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
    2012-04-30 03:55 - 2012-04-30 03:55 - 08358400 _____ () C:\Program Files (x86)\SplitMediaLabs\XSplit\avcodec-54.dll
    2012-04-30 03:55 - 2012-04-30 03:55 - 00151040 _____ () C:\Program Files (x86)\SplitMediaLabs\XSplit\avutil-51.dll
    2012-04-30 03:55 - 2012-04-30 03:55 - 01152512 _____ () C:\Program Files (x86)\SplitMediaLabs\XSplit\avformat-54.dll
    2012-04-30 03:55 - 2012-04-30 03:55 - 00333824 _____ () C:\Program Files (x86)\SplitMediaLabs\XSplit\swscale-2.dll
    2012-04-30 03:55 - 2012-04-30 03:55 - 00026112 _____ () C:\Program Files (x86)\SplitMediaLabs\XSplit\swresample-0.dll
    2015-09-01 17:35 - 2015-08-27 20:17 - 01501512 _____ () C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\45.0.2454.85\libglesv2.dll
    2015-09-01 17:35 - 2015-08-27 20:17 - 00081224 _____ () C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\45.0.2454.85\libegl.dll
    2015-09-01 17:35 - 2015-08-27 20:17 - 16393032 _____ () C:\Users\Lukaas\AppData\Local\Google\Chrome\Application\45.0.2454.85\PepperFlash\pepflashplayer.dll

    ==================== Alternate Data Streams (Whitelisted) =========

    (If an entry is included in the fixlist, only the ADS will be removed.)
     
  23. Lukaas Hendrix

    Lukaas Hendrix TS Rookie Topic Starter Posts: 27

    ==================== Safe Mode (Whitelisted) ===================

    (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

    HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

    ==================== EXE Association (Whitelisted) ===============

    (If an entry is included in the fixlist, the registry item will be restored to default or removed.)


    ==================== Internet Explorer trusted/restricted ===============

    (If an entry is included in the fixlist, it will be removed from the registry.)

    IE trusted site: HKU\.DEFAULT\...\clonewarsadventures.com -> clonewarsadventures.com
    IE trusted site: HKU\.DEFAULT\...\freerealms.com -> freerealms.com
    IE trusted site: HKU\.DEFAULT\...\soe.com -> soe.com
    IE trusted site: HKU\.DEFAULT\...\sony.com -> sony.com
    IE trusted site: HKU\S-1-5-21-2797903042-380184562-4160340280-1001\...\sony.com -> sony.com


    ==================== Other Areas ============================

    (Currently there is no automatic fix for this section.)

    HKU\S-1-5-21-2797903042-380184562-4160340280-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Lukaas\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
    DNS Servers: 75.75.76.76 - 75.75.75.75
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
    Windows Firewall is enabled.

    ==================== MSCONFIG/TASK MANAGER disabled items ==

    (Currently there is no automatic fix for this section.)

    MSCONFIG\Services: AdobeARMservice => 2
    MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
    MSCONFIG\Services: AESTFilters => 2
    MSCONFIG\Services: AMD External Events Utility => 2
    MSCONFIG\Services: AMD_RAIDXpert => 2
    MSCONFIG\Services: Apple Mobile Device => 2
    MSCONFIG\Services: Bonjour Service => 2
    MSCONFIG\Services: BRSptSvc => 3
    MSCONFIG\Services: btwdins => 2
    MSCONFIG\Services: CalendarSynchService => 2
    MSCONFIG\Services: CLKMSVC10_38F51D56 => 2
    MSCONFIG\Services: Ds3Service => 2
    MSCONFIG\Services: EpsonBidirectionalService => 2
    MSCONFIG\Services: GamesAppService => 3
    MSCONFIG\Services: Hamachi2Svc => 2
    MSCONFIG\Services: HP Support Assistant Service => 2
    MSCONFIG\Services: HPClientSvc => 2
    MSCONFIG\Services: hpqwmiex => 3
    MSCONFIG\Services: iPod Service => 3
    MSCONFIG\Services: LMIGuardianSvc => 2
    MSCONFIG\Services: PanService => 2
    MSCONFIG\Services: pdfcDispatcher => 2
    MSCONFIG\Services: SkypeUpdate => 2
    MSCONFIG\Services: STacSV => 2
    MSCONFIG\Services: Steam Client Service => 3
    MSCONFIG\Services: TunngleService => 3
    MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Audible Download Manager.lnk => C:\Windows\pss\Audible Download Manager.lnk.CommonStartup
    MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk => C:\Windows\pss\Bluetooth.lnk.CommonStartup
    MSCONFIG\startupfolder: C:^Users^Lukaas^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
    MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
    MSCONFIG\startupreg: CrossHair => C:\Program Files (x86)\CrossHair\CrossHair.exe
    MSCONFIG\startupreg: EADM => "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
    MSCONFIG\startupreg: EEventManager => C:\PROGRA~2\EPSONS~1\EVENTM~1\EEventManager.exe
    MSCONFIG\startupreg: F.lux => "C:\Users\Lukaas\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
    MSCONFIG\startupreg: Google Update => "C:\Users\Lukaas\AppData\Local\Google\Update\GoogleUpdate.exe" /c
    MSCONFIG\startupreg: HP Software Update => c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
    MSCONFIG\startupreg: hpsysdrv => c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe
    MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
    MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
    MSCONFIG\startupreg: MSC => "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
    MSCONFIG\startupreg: PDF Complete => C:\Program Files (x86)\PDF Complete\pdfsty.exe
    MSCONFIG\startupreg: ProfilerU => C:\Program Files\Saitek\SD6\Software\ProfilerU.exe
    MSCONFIG\startupreg: RaidCall => C:\Program Files (x86)\RaidCall\raidcall.exe
    MSCONFIG\startupreg: SaiMfd => C:\Program Files\Saitek\SD6\Software\SaiMfd.exe
    MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
    MSCONFIG\startupreg: Spotify => "C:\Users\Lukaas\AppData\Roaming\Spotify\spotify.exe" /uri spotify:autostart
    MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Lukaas\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
    MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
    MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
    MSCONFIG\startupreg: SysTrayApp => C:\Program Files\IDT\WDM\sttray64.exe
    MSCONFIG\startupreg: WorkForce 310(Network) => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIFHA.EXE /FU "C:\Windows\TEMP\E_SA8FE.tmp" /EF "HKCU"

    ==================== FirewallRules (Whitelisted) ===============

    (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

    FirewallRules: [{D4996055-0B48-4C0B-866A-A93745C6B972}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\Remote Graphics Receiver\rgreceiver.exe
    FirewallRules: [{28FF9851-0E9D-4FCA-9737-3595A6BC3638}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\Remote Graphics Receiver\rgreceiver.exe
    FirewallRules: [{2BAE89BE-6CC6-4D5B-852B-A42329166451}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP LinkUp\HP LinkUp Viewer.exe
    FirewallRules: [{3EB272D2-92A6-460D-8BA0-73194B3647CF}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP LinkUp\HP LinkUp Viewer.exe
    FirewallRules: [{B23D18A7-140B-40AA-AC66-D9353295EB11}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
    FirewallRules: [{921CD059-7A81-4A45-98F4-077B278C53CE}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
    FirewallRules: [TCP Query User{BDCAFCE4-0753-4CFE-995F-AEF1F3A8771F}C:\users\lukaas\appdata\local\temp\gw2.exe] => (Allow) C:\users\lukaas\appdata\local\temp\gw2.exe
    FirewallRules: [UDP Query User{E0BFCA18-E3FE-45F0-8C84-55100CDBBCEF}C:\users\lukaas\appdata\local\temp\gw2.exe] => (Allow) C:\users\lukaas\appdata\local\temp\gw2.exe
    FirewallRules: [TCP Query User{0C64B286-7B01-4139-83EC-711224EB5058}C:\program files (x86)\guild wars 2\gw2.exe] => (Allow) C:\program files (x86)\guild wars 2\gw2.exe
    FirewallRules: [UDP Query User{1AE51FA7-BF78-4F6D-B403-197BE38EDF1C}C:\program files (x86)\guild wars 2\gw2.exe] => (Allow) C:\program files (x86)\guild wars 2\gw2.exe
    FirewallRules: [{033520FE-DE2D-46FB-B66C-D5458A2CD856}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
    FirewallRules: [{B7A612B6-6A37-43F0-ABD8-27B161E7DACC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
    FirewallRules: [{104BF874-41C3-433E-877B-FE6A52C16A87}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
    FirewallRules: [{0F18AD24-7FF3-45CE-B846-59121FE6D835}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
    FirewallRules: [{1CABCE0B-E9DF-43F4-BED2-41FFB6E1AD35}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
    FirewallRules: [{B82D0A8E-C2D5-42BC-BEA2-AF632F5D8A6F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
    FirewallRules: [{E98F8955-410B-4419-829E-538FC8DE0A55}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
    FirewallRules: [TCP Query User{F538BE0C-93F0-44FA-8903-DA279124C185}C:\users\lukaas\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\lukaas\appdata\roaming\spotify\spotify.exe
    FirewallRules: [UDP Query User{F5A6CE1B-6D14-4D8B-B6FE-3452184EEE88}C:\users\lukaas\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\lukaas\appdata\roaming\spotify\spotify.exe
    FirewallRules: [TCP Query User{462ED170-79FD-4E32-8855-17979CAA6446}C:\users\lukaas\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\lukaas\appdata\roaming\spotify\spotify.exe
    FirewallRules: [UDP Query User{A42B5DC1-EC53-4902-BF76-0BB43187B67E}C:\users\lukaas\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\lukaas\appdata\roaming\spotify\spotify.exe
    FirewallRules: [{696906A4-4C9D-471A-BDD9-A4537B6BEE86}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\alien swarm\swarm.exe
    FirewallRules: [{B038DDCC-D01B-4652-97A0-50CF5F1E7D3D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\alien swarm\swarm.exe
    FirewallRules: [{027F46DE-2649-4492-8F01-8899C933EC8A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dead Space 2\Support\EA Help\Electronic_Arts_Technical_Support.htm
    FirewallRules: [{CFEF34BF-3903-4A38-B65E-4805E65CF0C4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dead Space 2\Support\EA Help\Electronic_Arts_Technical_Support.htm
    FirewallRules: [{24F27A56-FA29-4CA3-BDD3-40EB44ACD680}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\alien swarm\srcds.exe
    FirewallRules: [{DAFD95D5-52D1-4D52-A632-F2AABF4D6C6D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\alien swarm\srcds.exe
    FirewallRules: [{E5F60A5C-106F-4A1A-A11D-FB4FAF3D0D66}] => (Allow) C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
    FirewallRules: [{D89FD2BE-9A9F-43F6-B07E-CDB1179337A2}] => (Allow) C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
    FirewallRules: [{46EB6BE8-6411-49F9-B0DA-3482A5BC7129}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
    FirewallRules: [{F397C9BB-CF6E-4304-BA4E-883A90477566}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
    FirewallRules: [{0DC951CE-97D5-4C68-ADF6-189CD37AF685}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the witcher 2\BonusContent\launch.bat
    FirewallRules: [{4F45E136-95C9-4B6C-A1C7-743DDA43CC1B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the witcher 2\BonusContent\launch.bat
    FirewallRules: [{F0FFB06A-38CF-4676-865B-9325CE8074AD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\company of heroes\RelicCOH.exe
    FirewallRules: [{6C974325-346A-4619-BED5-1AD64922491F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\company of heroes\RelicCOH.exe
    FirewallRules: [{ACC2693F-EE4D-423A-BFF2-68D4189ACC9E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Darksiders\DarksidersPC.exe
    FirewallRules: [{09788E06-EDCF-466D-B759-9A912C2B8663}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Darksiders\DarksidersPC.exe
    FirewallRules: [{FB6A1645-3FDA-4616-BC7B-173C42F8B7AD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Metro 2033\metro2033.exe
    FirewallRules: [{5D5C171D-CB50-4C5D-B8E8-66B02E7128AA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Metro 2033\metro2033.exe
    FirewallRules: [{467734A7-7ACB-4228-B498-45745F3C8E6F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\saints row the third\game_launcher.exe
    FirewallRules: [{60B7731D-27F6-42E2-9C32-3FEE9ED7BC49}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\saints row the third\game_launcher.exe
    FirewallRules: [{77795077-0FD4-46F4-B8C3-C0090C536CFB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\saints row the third\saintsrowthethird.exe
    FirewallRules: [{E23143B3-D46A-4283-A90A-1DBFAA363201}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\saints row the third\saintsrowthethird.exe
    FirewallRules: [{0C52A199-6271-4039-B3A0-63032DABDAD3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\saints row the third\saintsrowthethird_dx11.exe
    FirewallRules: [{1551B82B-8766-419A-8242-C1E84546256B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\saints row the third\saintsrowthethird_dx11.exe
    FirewallRules: [TCP Query User{61658698-41AD-49CF-BD99-5356EB274054}C:\users\public\sony online entertainment\installed games\planetside 2\planetside2.exe] => (Allow) C:\users\public\sony online entertainment\installed games\planetside 2\planetside2.exe
    FirewallRules: [UDP Query User{4498EF5B-74B0-4A95-A485-82217938CA7D}C:\users\public\sony online entertainment\installed games\planetside 2\planetside2.exe] => (Allow) C:\users\public\sony online entertainment\installed games\planetside 2\planetside2.exe
    FirewallRules: [TCP Query User{6E2A0BC1-E68A-4F68-B9E4-4F8B16FCA96F}C:\program files (x86)\steam\steamapps\common\company of heroes\relicdownloader\relicdownloader.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\company of heroes\relicdownloader\relicdownloader.exe
    FirewallRules: [UDP Query User{CBAA6E71-D8DC-4FFF-8622-49AEA6154DCC}C:\program files (x86)\steam\steamapps\common\company of heroes\relicdownloader\relicdownloader.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\company of heroes\relicdownloader\relicdownloader.exe
    FirewallRules: [{428259CB-2E59-46B2-AA75-495A1A208610}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Realm of the Mad God\Realm of the Mad God.exe
    FirewallRules: [{9DE7E1D3-68B6-45ED-ACAB-7BFD6B1F41D8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Realm of the Mad God\Realm of the Mad God.exe
    FirewallRules: [{8C94F860-31CB-4854-9A11-F713D434BB00}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\red faction armageddon\RedFactionArmageddon.exe
    FirewallRules: [{E4F319DE-E2D8-48E5-AA21-34E7F3CB4417}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\red faction armageddon\RedFactionArmageddon.exe
    FirewallRules: [{35585DA3-5786-4601-9699-D59941336609}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\red faction armageddon\RedFactionArmageddon_DX11.exe
    FirewallRules: [{6C384D7A-22C7-4500-A634-C83115D5D91E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\red faction armageddon\RedFactionArmageddon_DX11.exe
    FirewallRules: [{CD14864E-A0AD-4647-972F-6CC2449B99E5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\red faction armageddon\rf4_launcher.exe
    FirewallRules: [{2F790DA4-6126-461E-8E97-53B9014D8A1A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\red faction armageddon\rf4_launcher.exe
    FirewallRules: [TCP Query User{7CD5F0B0-CB00-4CEB-9AE1-0DF961A9E2A5}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe
    FirewallRules: [UDP Query User{21041DF9-4F37-4254-91BC-566B5F3B2712}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe
    FirewallRules: [TCP Query User{6B11C1FE-2678-417A-AF5E-0885CB0F0095}C:\users\lukaas\downloads\utorrent.exe] => (Allow) C:\users\lukaas\downloads\utorrent.exe
    FirewallRules: [UDP Query User{A10C681F-4069-4D50-973E-7BCE136E4AAF}C:\users\lukaas\downloads\utorrent.exe] => (Allow) C:\users\lukaas\downloads\utorrent.exe
    FirewallRules: [TCP Query User{E857BD12-8FCC-43AE-A570-83AAC2FFEB65}C:\program files (x86)\meteorentertainment\hawken\installedhawkenfiles\binaries\win32\hawkengame-win32-shipping.exe] => (Allow) C:\program files (x86)\meteorentertainment\hawken\installedhawkenfiles\binaries\win32\hawkengame-win32-shipping.exe
    FirewallRules: [UDP Query User{577C387A-21BD-42A5-8CAD-3EDDD8E2956E}C:\program files (x86)\meteorentertainment\hawken\installedhawkenfiles\binaries\win32\hawkengame-win32-shipping.exe] => (Allow) C:\program files (x86)\meteorentertainment\hawken\installedhawkenfiles\binaries\win32\hawkengame-win32-shipping.exe
    FirewallRules: [{EBDBC10D-FABE-4966-B31A-D736B3E272B1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpecOps_TheLine\Binaries\Win32\SpecOpsTheLine.exe
    FirewallRules: [{C4ACBCAC-4DD7-4B9A-9CC2-6AD3A404911F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpecOps_TheLine\Binaries\Win32\SpecOpsTheLine.exe
    FirewallRules: [{AB1D5614-5E08-42A9-A896-D675C17EF822}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BioShock 2\SP\Builds\Binaries\Bioshock2Launcher.exe
    FirewallRules: [{F5C9DB30-0428-4C93-8843-884353CC8FD5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BioShock 2\SP\Builds\Binaries\Bioshock2Launcher.exe
    FirewallRules: [{678C70C1-1711-4618-B4FF-CF79DA0D4416}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BioShock 2\MP\Builds\Binaries\Bioshock2Launcher.exe
    FirewallRules: [{001A2F8A-990F-4364-9940-85B34D025E05}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BioShock 2\MP\Builds\Binaries\Bioshock2Launcher.exe
    FirewallRules: [{869CE41F-EF67-4F92-9A20-60EC4B6CCB41}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Bioshock\Builds\Release\Bioshock.exe
    FirewallRules: [{4846C8E3-D07F-485F-A889-0B7D2C13A5D4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Bioshock\Builds\Release\Bioshock.exe
    FirewallRules: [{2A9D9DC1-CCFA-4377-A453-B1B10FC9BF37}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the witcher 2\Launcher.exe
    FirewallRules: [{0F12F24F-214E-4563-B87B-68F090DA89BE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the witcher 2\Launcher.exe
    FirewallRules: [{6A5CA024-38CA-400C-B59D-2615C81A22D6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the binding of isaac\Isaac.exe
    FirewallRules: [{EE518124-A3D5-4AAA-856F-D965FBD4FDC7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the binding of isaac\Isaac.exe
    FirewallRules: [TCP Query User{7D0640B2-00F1-49C1-A78D-CFD8D364A090}C:\program files (x86)\raidcall\raidcall.exe] => (Allow) C:\program files (x86)\raidcall\raidcall.exe
    FirewallRules: [UDP Query User{BE34A85F-6BDD-4D40-90B5-C9210A4DC532}C:\program files (x86)\raidcall\raidcall.exe] => (Allow) C:\program files (x86)\raidcall\raidcall.exe
    FirewallRules: [{817DD582-D63C-4444-BEF0-8AF4FA972141}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Splinter Cell Conviction\src\system\conviction_game.exe
    FirewallRules: [{878F2411-0AC1-4012-A3BD-368647195914}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Splinter Cell Conviction\src\system\conviction_game.exe
    FirewallRules: [{5C3F40D2-899A-439B-AA45-96B73DAFC125}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeons of Dredmor\Dungeons of Dredmor.exe
    FirewallRules: [{65583B40-C06D-4689-AC14-C39DEA6878FC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeons of Dredmor\Dungeons of Dredmor.exe
    FirewallRules: [{644EB9AC-5522-491C-A6E1-7E2086BFE466}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeon Defenders\Binaries\Win32\DungeonDefenders.exe
    FirewallRules: [{9B4AE1AB-619C-4B46-805C-1DAB6F934044}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeon Defenders\Binaries\Win32\DungeonDefenders.exe
    FirewallRules: [TCP Query User{6C8E5611-620C-4E53-A080-BBB0EF154410}C:\program files (x86)\steam\steamapps\common\tom clancy's splinter cell conviction\src\system\uplaybrowser.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\tom clancy's splinter cell conviction\src\system\uplaybrowser.exe
    FirewallRules: [UDP Query User{4F395F58-D239-4B37-B6A4-A12216CCBBC9}C:\program files (x86)\steam\steamapps\common\tom clancy's splinter cell conviction\src\system\uplaybrowser.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\tom clancy's splinter cell conviction\src\system\uplaybrowser.exe
    FirewallRules: [{D435B770-F8C5-4557-808D-CF3C12488177}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the witcher 2\launch.bat
    FirewallRules: [{217C2D26-003B-4CB1-9E82-92760403BCEE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the witcher 2\launch.bat
    FirewallRules: [{67423C36-ADDA-4F62-9FD0-89F77B7778E8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\10000000\10000000.exe
    FirewallRules: [{33C5B92A-53F8-423B-ABB3-F2341F543FA1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\10000000\10000000.exe
    FirewallRules: [{7997978E-DD80-4304-8FBD-0EE26C2F1EE3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis III - Complete\eu3game.exe
    FirewallRules: [{4137E214-BEDF-43FA-BD46-39042022E17A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis III - Complete\eu3game.exe
    FirewallRules: [{8E32B991-7F6A-49D6-AE4C-7B99E7879C79}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\GunsOfIcarusOnline.exe
    FirewallRules: [{9F2C5827-AF4E-4700-AB42-01BB99BAB16B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\GunsOfIcarusOnline.exe
    FirewallRules: [{A936780E-0608-4886-BF0E-6BB418336C61}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\cities xl 2011\CitiesXL.exe
    FirewallRules: [{1B0A4BD8-D35F-4D9B-A67F-0B5B2A9A062D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\cities xl 2011\CitiesXL.exe
    FirewallRules: [{E06F72EE-FE31-47F7-9C0A-34D909D7AA60}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\cities xl 2011\CitiesXL_2011.exe
    FirewallRules: [{228019B3-90F5-4E24-A229-A9D697D5998B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\cities xl 2011\CitiesXL_2011.exe
    FirewallRules: [{64973A2B-DB7C-4B5B-9D10-3DB63E2E92EE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\UDK.exe
    FirewallRules: [{F6722DFF-E5E6-4DC7-A98B-306320A29F09}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\UDK.exe
    FirewallRules: [{D5FB22B2-1B6B-453E-BD94-51A12519E208}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half Minute Hero\HMH.exe
    FirewallRules: [{525723AA-2C9A-4F9D-9F64-51A556309032}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half Minute Hero\HMH.exe
    FirewallRules: [{627B8DA1-DB04-446F-B6D0-016AE629D244}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\strikesuitzero\pc\main\Binary\SSZ.exe
    FirewallRules: [{87F15387-5B00-4B35-A598-73722312EAE0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\strikesuitzero\pc\main\Binary\SSZ.exe
    FirewallRules: [{AFCC1D7A-5B6B-426A-B794-A3F4045914A7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MinerWars\MinerWars.exe
    FirewallRules: [{F7AE0ED4-1713-4850-8372-B9284F32458A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MinerWars\MinerWars.exe
    FirewallRules: [{17C4D2C6-D5BB-4250-9F5E-65CF13D646F1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stronghold Kingdoms\StrongholdKingdoms.exe
    FirewallRules: [{0E16F2FB-B14A-4B10-9EBA-80A1E1A224A3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stronghold Kingdoms\StrongholdKingdoms.exe
    FirewallRules: [{57FC696A-3EC5-41E7-9E87-68016242D2F5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AirMech\AirMech.exe
    FirewallRules: [{91B0317F-9A60-45F7-A37A-770CF54F1332}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AirMech\AirMech.exe
    FirewallRules: [{62F58254-6DF0-4FF7-9D26-F06659D7FC3E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeonland\dungeonland.exe
    FirewallRules: [{8C51A8CC-C33F-4DD3-A115-7CB338A9E758}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeonland\dungeonland.exe
    FirewallRules: [{6800185B-E85A-41D5-9AA4-FD292C549155}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Awesomenauts\AwesomenautsLauncher.exe
    FirewallRules: [{017C5347-9F05-4ECE-A417-C55D14AFF2A4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Awesomenauts\AwesomenautsLauncher.exe
    FirewallRules: [{ED5F5AA8-72DD-4C1A-966E-1A3F938B9F4B}] => (Allow) C:\ProgramData\HappyCloud\Cache\TERA\TERA-Launcher.exe
    FirewallRules: [{B977EF4E-C76F-419B-A13A-40C1C6A950A6}] => (Allow) C:\ProgramData\HappyCloud\Cache\TERA\TERA-Launcher.exe
    FirewallRules: [{3108E091-29E0-41D5-933D-EACCA853E262}] => (Allow) C:\ProgramData\HappyCloud\Cache\TERA\Client\TL.exe
    FirewallRules: [{C3E60943-3D2F-4E48-BDD1-936B94D28A14}] => (Allow) C:\ProgramData\HappyCloud\Cache\TERA\Client\TL.exe
    FirewallRules: [{417063F6-A38C-4815-91BC-51EF2E9EF41D}] => (Allow) C:\ProgramData\HappyCloud\Cache\TERA\Client\Binaries\TERA.exe
    FirewallRules: [{3ABD07F1-A425-4706-A407-5E72DC32C628}] => (Allow) C:\ProgramData\HappyCloud\Cache\TERA\Client\Binaries\TERA.exe
    FirewallRules: [TCP Query User{5863AFEB-F8E9-4FBC-8497-4E1801B21C4A}C:\users\lukaas\downloads\utorrent.exe] => (Allow) C:\users\lukaas\downloads\utorrent.exe
    FirewallRules: [UDP Query User{8443C407-DDA3-414E-A7AD-65FE8E3A6E08}C:\users\lukaas\downloads\utorrent.exe] => (Allow) C:\users\lukaas\downloads\utorrent.exe
    FirewallRules: [{432A6F0B-F010-4AEB-82C2-C15D31F15FF0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Solar 2\Solar2.exe
    FirewallRules: [{EADA492C-CDAD-494B-B8DA-86ED3839F334}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Solar 2\Solar2.exe
    FirewallRules: [TCP Query User{5DD5E194-7658-4FFB-B4F7-6D27C2DA1AE9}C:\users\public\sony online entertainment\installed games\planetside 2\planetside2.exe] => (Allow) C:\users\public\sony online entertainment\installed games\planetside 2\planetside2.exe
    FirewallRules: [UDP Query User{131F3FEE-69C2-46D0-AC41-24E8D5584F34}C:\users\public\sony online entertainment\installed games\planetside 2\planetside2.exe] => (Allow) C:\users\public\sony online entertainment\installed games\planetside 2\planetside2.exe
    FirewallRules: [TCP Query User{8E04F702-2DF5-450C-AC4F-855DF03E5A06}C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe
    FirewallRules: [UDP Query User{E62845C4-835E-4DC4-B7E8-8BA9ED6EEF91}C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe
    FirewallRules: [TCP Query User{D269D993-A2B7-48F3-8DC2-273D99D6CEB8}C:\users\lukaas\appdata\local\apps\2.0\xatlwyv1.4pa\9nxk149m.eg8\laun...app_59711684aa47878d_0001.001e_dde26337fe279e93\launcher.exe] => (Allow) C:\users\lukaas\appdata\local\apps\2.0\xatlwyv1.4pa\9nxk149m.eg8\laun...app_59711684aa47878d_0001.001e_dde26337fe279e93\launcher.exe
    FirewallRules: [UDP Query User{581774A5-44D4-4FFC-A831-B0858740F9F0}C:\users\lukaas\appdata\local\apps\2.0\xatlwyv1.4pa\9nxk149m.eg8\laun...app_59711684aa47878d_0001.001e_dde26337fe279e93\launcher.exe] => (Allow) C:\users\lukaas\appdata\local\apps\2.0\xatlwyv1.4pa\9nxk149m.eg8\laun...app_59711684aa47878d_0001.001e_dde26337fe279e93\launcher.exe
    FirewallRules: [{BAC1741F-3627-4D25-8698-FD0782A5B72B}] => (Block) C:\users\lukaas\appdata\local\apps\2.0\xatlwyv1.4pa\9nxk149m.eg8\laun...app_59711684aa47878d_0001.001e_dde26337fe279e93\launcher.exe
    FirewallRules: [{63ACE788-693D-4492-B748-DC1B0DAB194C}] => (Block) C:\users\lukaas\appdata\local\apps\2.0\xatlwyv1.4pa\9nxk149m.eg8\laun...app_59711684aa47878d_0001.001e_dde26337fe279e93\launcher.exe
    FirewallRules: [TCP Query User{789FA1E5-F741-4367-B9CF-E6AAB3E8ECC7}C:\ubisoft\ghost recon online\ncsa-live\ghostrecononline.exe] => (Allow) C:\ubisoft\ghost recon online\ncsa-live\ghostrecononline.exe
    FirewallRules: [UDP Query User{55DCEC4B-3631-4B9F-9883-B405A15909D9}C:\ubisoft\ghost recon online\ncsa-live\ghostrecononline.exe] => (Allow) C:\ubisoft\ghost recon online\ncsa-live\ghostrecononline.exe
    FirewallRules: [TCP Query User{A37CD18C-46BE-463C-8284-ADEEB0FDBFE7}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe
    FirewallRules: [UDP Query User{072080A7-35D0-4C85-A485-1A51A21367D0}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe
    FirewallRules: [TCP Query User{F2612896-7BD9-4E12-83B6-C9BBDA41CFC1}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe
    FirewallRules: [UDP Query User{F86F2090-5FD0-4D22-90D6-3875E4C5BC28}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe
    FirewallRules: [TCP Query User{0AD1492E-011D-4DF2-A77A-E7A12E8A5FC4}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
    FirewallRules: [UDP Query User{A9E55CBA-C0A6-419C-8F9C-ACD2A8163586}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
    FirewallRules: [{DE37374F-EF0B-45C4-BDEC-ACD447A40FAB}] => (Allow) C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\Dropbox.exe
    FirewallRules: [{B08901BA-1247-4BAD-BF03-09AB1F7F2F48}] => (Allow) C:\Users\Lukaas\AppData\Roaming\Dropbox\bin\Dropbox.exe
    FirewallRules: [{B8EEACC1-3743-402A-88B1-9284B4131BD4}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1267\Agent.exe
    FirewallRules: [{C0EDEE33-DFD3-4983-BA2B-89FB0B23305A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1267\Agent.exe
    FirewallRules: [{94A423C4-5C34-439A-B782-4217D0879D26}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe
    FirewallRules: [{6BF2EA5E-BC62-46A9-8EFC-CCA022978A30}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe
    FirewallRules: [{90344821-5BF1-4E7C-9C69-DC0B0A3248E8}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
    FirewallRules: [{F050AFF5-1080-42F3-A673-F2C660026CD6}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
    FirewallRules: [{F76079DE-E541-4363-B61E-E26D82A63B94}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II Public Test.exe
    FirewallRules: [{B59422BC-01EB-4B1E-828C-41BE9217C51D}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II Public Test.exe
    FirewallRules: [TCP Query User{BC30FAFF-7EDB-46D1-8238-15668094119A}C:\program files (x86)\starcraft ii\versions\base24944\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base24944\sc2.exe
    FirewallRules: [UDP Query User{3572F4DF-C30E-4604-BF14-26E88666E3BD}C:\program files (x86)\starcraft ii\versions\base24944\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base24944\sc2.exe
    FirewallRules: [{C300555C-24F7-4732-936C-24CD2051E20E}] => (Block) C:\program files (x86)\starcraft ii\versions\base24944\sc2.exe
    FirewallRules: [{97CF3D29-41E0-41A7-8221-46F1DFDDDBA6}] => (Block) C:\program files (x86)\starcraft ii\versions\base24944\sc2.exe
    FirewallRules: [{460D1F25-C561-4392-9F25-13BBB60F9805}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
    FirewallRules: [{BE970A1B-18E5-4850-BEC6-C7CF164A93E3}] => (Allow) C:\Program Files (x86)\EpsonNet\EpsonNet Setup\tool09\ENEasyApp.exe
    FirewallRules: [{E69CAAEC-BA41-447A-8562-11C3C7351B79}] => (Allow) C:\Program Files (x86)\EpsonNet\EpsonNet Setup\tool09\ENEasyApp.exe
    FirewallRules: [TCP Query User{A82A83F2-F836-4B21-9FA6-4544A89EC181}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe
    FirewallRules: [UDP Query User{D1606551-3475-4B9A-9B32-93EB48044CA7}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe
    FirewallRules: [{F7628809-CE93-4F2A-B27E-1FB45DBCF03D}] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
    FirewallRules: [{B4C50871-5857-4A04-A4C8-D2BF41EC3115}] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
    FirewallRules: [TCP Query User{6114061D-B7A3-4BBD-A380-3EA0C361CE9A}C:\program files (x86)\steam\steamapps\common\sid meier's civilization v\civilizationv_dx11.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\sid meier's civilization v\civilizationv_dx11.exe
    FirewallRules: [UDP Query User{55C0861E-D17E-412D-B122-5F7F1264F533}C:\program files (x86)\steam\steamapps\common\sid meier's civilization v\civilizationv_dx11.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\sid meier's civilization v\civilizationv_dx11.exe
    FirewallRules: [{BFAA2D17-7304-4798-8712-7B29A4A9146F}] => (Block) C:\program files (x86)\steam\steamapps\common\sid meier's civilization v\civilizationv_dx11.exe
    FirewallRules: [{8BDA067C-04B3-4655-BE1C-3E3CEC579847}] => (Block) C:\program files (x86)\steam\steamapps\common\sid meier's civilization v\civilizationv_dx11.exe
    FirewallRules: [{8DF24641-27C6-41AD-8475-F730D7CE4CAE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\company of heroes\RelicCOH.exe
    FirewallRules: [{514FB4B5-4E2A-4715-A81F-E0D21DBD4DF1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\company of heroes\RelicCOH.exe
    FirewallRules: [{E7231215-22A5-428A-9711-11385CD0F8D8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
    FirewallRules: [{738E53FB-AA8F-43E4-ADDB-C0D89804F44A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
    FirewallRules: [{F65F7918-9038-41AC-B7A6-59E9522A8A59}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
    FirewallRules: [{AEC5A0CB-CB5E-4202-B86A-B48613966638}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
    FirewallRules: [{6FD51C27-5BD6-4568-9CD4-458BBB6F8EBC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
    FirewallRules: [{08BB9C3C-1E52-472E-BB35-4F36AC590B9A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
    FirewallRules: [{A7EBB529-C779-4DCD-86CD-673C2FE7AA72}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
    FirewallRules: [{405D28A1-B08C-4994-856C-909173D97B49}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
    FirewallRules: [{F58E132E-EF9F-4A91-8377-C74336795E5F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
    FirewallRules: [{DBA41F13-B542-4C99-B18C-0B3E43A61C50}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\strikesuitzero\pc\main\Binary\SSZ.exe
    FirewallRules: [{3BC943BD-5F14-4BD7-952B-2A8BB5280A99}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\strikesuitzero\pc\main\Binary\SSZ.exe
    FirewallRules: [TCP Query User{9DD5ABE9-A59E-41A4-B9E2-C26E675648F0}C:\program files (x86)\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe
    FirewallRules: [UDP Query User{3CFE4C96-A22B-403D-B320-BA8A838CA4B6}C:\program files (x86)\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe
    FirewallRules: [{801C484B-CAB2-4620-85E5-D82F03D2AF43}] => (Block) C:\program files (x86)\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe
    FirewallRules: [{D97B8E55-89F6-47EE-A304-C3171DB80F67}] => (Block) C:\program files (x86)\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe
     
  24. Lukaas Hendrix

    Lukaas Hendrix TS Rookie Topic Starter Posts: 27

    FirewallRules: [TCP Query User{3D54F16A-03C5-48CA-BF2F-D872D9CC7AB2}C:\users\lukaas\downloads\neverwinter_nw.1.20130416a.6.exe] => (Allow) C:\users\lukaas\downloads\neverwinter_nw.1.20130416a.6.exe
    FirewallRules: [UDP Query User{E0934A74-ADD2-43D1-8A76-E858825D43BC}C:\users\lukaas\downloads\neverwinter_nw.1.20130416a.6.exe] => (Allow) C:\users\lukaas\downloads\neverwinter_nw.1.20130416a.6.exe
    FirewallRules: [TCP Query User{A73679CC-1633-4384-91A6-B7951175CDCE}C:\users\lukaas\downloads\neverwinter_nw.1.20130416a.6 (1).exe] => (Allow) C:\users\lukaas\downloads\neverwinter_nw.1.20130416a.6 (1).exe
    FirewallRules: [UDP Query User{8E5DE1C4-99EF-4112-8008-9C43ECA4F45F}C:\users\lukaas\downloads\neverwinter_nw.1.20130416a.6 (1).exe] => (Allow) C:\users\lukaas\downloads\neverwinter_nw.1.20130416a.6 (1).exe
    FirewallRules: [TCP Query User{82E5429C-38D0-42E2-88B7-CEAB535710B3}C:\users\public\games\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\users\public\games\cryptic studios\neverwinter\live\gameclient.exe
    FirewallRules: [UDP Query User{DBBC17E9-9217-4699-A73B-F1C7C08D8F7A}C:\users\public\games\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\users\public\games\cryptic studios\neverwinter\live\gameclient.exe
    FirewallRules: [{73B30BDF-49C5-41C5-A2B6-948C5605044F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the witcher 2\Launcher.exe
    FirewallRules: [{2A851182-5FD2-42ED-AC5B-0E854FBD43D9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the witcher 2\Launcher.exe
    FirewallRules: [TCP Query User{B8799CF3-631E-43C0-9108-A58055F72426}C:\program files (x86)\meteorentertainment\hawken\installedhawkenfiles\binaries\win32\hawkengame-win32-shipping.exe] => (Allow) C:\program files (x86)\meteorentertainment\hawken\installedhawkenfiles\binaries\win32\hawkengame-win32-shipping.exe
    FirewallRules: [UDP Query User{F239C732-8952-488B-90FA-01708D8BE27A}C:\program files (x86)\meteorentertainment\hawken\installedhawkenfiles\binaries\win32\hawkengame-win32-shipping.exe] => (Allow) C:\program files (x86)\meteorentertainment\hawken\installedhawkenfiles\binaries\win32\hawkengame-win32-shipping.exe
    FirewallRules: [{EE6113FB-5FEF-483E-AAAB-83CDF4EA2E8C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tomb Raider\TombRaider.exe
    FirewallRules: [{00843213-8BB7-4F95-95F0-8D1BA70612F0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tomb Raider\TombRaider.exe
    FirewallRules: [{3D423CA3-0F5B-42D2-803D-AB7B19D88175}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis III - Complete\eu3game.exe
    FirewallRules: [{BF716BD3-CF97-4EFF-B1AD-9988EDE30D1F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis III - Complete\eu3game.exe
    FirewallRules: [TCP Query User{8E137AEF-DD92-4223-A847-AA4FE9F20336}C:\users\lukaas\appdata\local\temp\rar$exa0.806\hammerwatch.exe] => (Allow) C:\users\lukaas\appdata\local\temp\rar$exa0.806\hammerwatch.exe
    FirewallRules: [UDP Query User{69C515EB-9680-4671-A161-40A137420E65}C:\users\lukaas\appdata\local\temp\rar$exa0.806\hammerwatch.exe] => (Allow) C:\users\lukaas\appdata\local\temp\rar$exa0.806\hammerwatch.exe
    FirewallRules: [TCP Query User{E35C6796-1F5B-40C0-9D7D-E65451F07C97}C:\users\lukaas\appdata\local\temp\rar$exa0.330\hammerwatch.exe] => (Allow) C:\users\lukaas\appdata\local\temp\rar$exa0.330\hammerwatch.exe
    FirewallRules: [UDP Query User{86FFA19C-34AF-4F94-9804-C2A2760F9EB7}C:\users\lukaas\appdata\local\temp\rar$exa0.330\hammerwatch.exe] => (Allow) C:\users\lukaas\appdata\local\temp\rar$exa0.330\hammerwatch.exe
    FirewallRules: [TCP Query User{1FFEF29D-142C-4428-800F-5F9B32A895B1}C:\program files (x86)\utorrent\utorrent.exe] => (Allow) C:\program files (x86)\utorrent\utorrent.exe
    FirewallRules: [UDP Query User{5B3D554D-8E0A-470D-B80E-1AAF9759AA1D}C:\program files (x86)\utorrent\utorrent.exe] => (Allow) C:\program files (x86)\utorrent\utorrent.exe
    FirewallRules: [TCP Query User{5C168846-232B-4A00-8616-3CFF0885D5EA}C:\program files (x86)\gazillion entertainment\marvel heroes\unrealengine3\binaries\win32\marvelgame.exe] => (Allow) C:\program files (x86)\gazillion entertainment\marvel heroes\unrealengine3\binaries\win32\marvelgame.exe
    FirewallRules: [UDP Query User{3BECEB0B-2F40-4F87-895C-A5F79C9BBD1D}C:\program files (x86)\gazillion entertainment\marvel heroes\unrealengine3\binaries\win32\marvelgame.exe] => (Allow) C:\program files (x86)\gazillion entertainment\marvel heroes\unrealengine3\binaries\win32\marvelgame.exe
    FirewallRules: [{611712DA-9E8E-44C4-99A2-195C68E102B1}] => (Allow) C:\Users\Lukaas\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
    FirewallRules: [{99076424-CE35-40F5-B218-A6AB9E947E91}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
    FirewallRules: [{210A2D67-49AE-4417-84C7-E492D310F852}] => (Allow) LPort=2869
    FirewallRules: [{5C46246C-99B6-4C37-BA39-A12A3AC9C07D}] => (Allow) LPort=1900
    FirewallRules: [{38FA72AF-3DF2-4AD8-A742-8BB62C008642}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
    FirewallRules: [TCP Query User{7E36B21D-CB33-4796-BB87-5B01C3CAD0DC}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
    FirewallRules: [UDP Query User{AC26D14D-B79A-43EC-B695-B2736A2C4453}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
    FirewallRules: [TCP Query User{012E1029-C043-4D15-8289-2214C76C8B21}C:\program files (x86)\steam\steamapps\common\saints row the third\saintsrowthethird_dx11.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\saints row the third\saintsrowthethird_dx11.exe
    FirewallRules: [UDP Query User{64A6A6F5-6490-4A1A-BF8C-114503DEEA46}C:\program files (x86)\steam\steamapps\common\saints row the third\saintsrowthethird_dx11.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\saints row the third\saintsrowthethird_dx11.exe
    FirewallRules: [{F67B8C6C-3072-44C5-9730-8FA6707E2EF3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeon Defenders\Binaries\Win32\DungeonDefenders.exe
    FirewallRules: [{45AF3A1A-1EF9-4478-B82A-44AC9A9E1108}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeon Defenders\Binaries\Win32\DungeonDefenders.exe
    FirewallRules: [{1E8D0E03-32C1-4D81-9E0D-EE6407FC0655}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Plants Vs Zombies\PlantsVsZombies.exe
    FirewallRules: [{DE58E19D-992D-4128-BBA9-AC628EB91CF3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Plants Vs Zombies\PlantsVsZombies.exe
    FirewallRules: [TCP Query User{E6637ED7-5BE7-43D1-ADD5-8651199F141F}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe
    FirewallRules: [UDP Query User{77C1B971-A93C-4F23-8F39-759AF8D864B0}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe
    FirewallRules: [{1BD9CAC7-D6A5-46AC-8638-4913896A3406}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dwarfs\Dwarfs.exe
    FirewallRules: [{8B114562-656F-4C08-AADD-2B83E7630BC2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dwarfs\Dwarfs.exe
    FirewallRules: [{D6862464-4484-4093-BABD-FC558C340339}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization IV\Civilization4.exe
    FirewallRules: [{C68C82F0-012F-4998-83A5-257CC320F63F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization IV\Civilization4.exe
    FirewallRules: [{EAE3525E-5CA2-47DF-821A-C0A894EB100D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Deus Ex - Human Revolution\dxhr.exe
    FirewallRules: [{FA018F71-B5DA-4DE0-A015-A9E22C75FA0E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Deus Ex - Human Revolution\dxhr.exe
    FirewallRules: [{CC7F7546-23B3-4A9A-AEC6-9700719D09AB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\blacklightretribution\Blacklight Retribution.exe
    FirewallRules: [{BBAC65DE-6414-49FE-A502-4715C6B7CCB9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\blacklightretribution\Blacklight Retribution.exe
    FirewallRules: [TCP Query User{520B5F2B-C4B7-4A29-836A-B270C9549E5D}C:\program files (x86)\guild wars 2\gw2.exe] => (Allow) C:\program files (x86)\guild wars 2\gw2.exe
    FirewallRules: [UDP Query User{8744DC86-2187-4895-A19C-991987AEFACA}C:\program files (x86)\guild wars 2\gw2.exe] => (Allow) C:\program files (x86)\guild wars 2\gw2.exe
    FirewallRules: [{9C200184-4CA1-4AFB-AB5B-79A2F03EFBF4}] => (Allow) C:\Program Files (x86)\Origin Games\Mirrors Edge\Binaries\MirrorsEdge.exe
    FirewallRules: [{DE21345F-71A9-4532-A081-4D84640409B5}] => (Allow) C:\Program Files (x86)\Origin Games\Mirrors Edge\Binaries\MirrorsEdge.exe
    FirewallRules: [TCP Query User{1BF3C603-95F9-40E3-ABBE-54247E1282FC}C:\users\lukaas\documents\starcitizen\citizenclient\bin64\starcitizen.exe] => (Allow) C:\users\lukaas\documents\starcitizen\citizenclient\bin64\starcitizen.exe
    FirewallRules: [UDP Query User{19D45CA2-C66F-49D3-A1C3-651C54302562}C:\users\lukaas\documents\starcitizen\citizenclient\bin64\starcitizen.exe] => (Allow) C:\users\lukaas\documents\starcitizen\citizenclient\bin64\starcitizen.exe
    FirewallRules: [{EE1A6189-A2C5-4C03-BA22-31CEC105F6FC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe
    FirewallRules: [{97700C68-EA75-4573-BEB9-B48D70BE8227}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe
    FirewallRules: [TCP Query User{CFBB119B-680B-4E4A-A560-0C20E8B3484C}C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe
    FirewallRules: [UDP Query User{D09A5399-EE6B-4CEC-B995-D7A7F2FE75CA}C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\aces.exe
    FirewallRules: [{A925DB1F-C189-4C27-A227-3B33CBECC4F6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpecOps_TheLine\Binaries\Win32\SpecOpsTheLine.exe
    FirewallRules: [{EE43DC41-9F59-4216-8A99-E6C74280A689}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpecOps_TheLine\Binaries\Win32\SpecOpsTheLine.exe
    FirewallRules: [{3518E2A8-32B1-46A3-AA5D-07723180DE3A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BioShock 2\SP\Builds\Binaries\Bioshock2Launcher.exe
    FirewallRules: [{3DACAFB2-B83A-4A9B-AC91-88302F3BAF91}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BioShock 2\SP\Builds\Binaries\Bioshock2Launcher.exe
    FirewallRules: [{1003A830-29E7-4E8D-BE2A-1CBB5EBE5CD2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BioShock 2\MP\Builds\Binaries\Bioshock2Launcher.exe
    FirewallRules: [{D8302FDB-BAD4-4C7D-A5D0-833E64D63BA4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BioShock 2\MP\Builds\Binaries\Bioshock2Launcher.exe
    FirewallRules: [{C97CA34C-A206-445F-BDF8-91BF5A23E238}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4 Beta\bf4.exe
    FirewallRules: [{D91C675B-BE2C-4BE6-8F2C-DBAE85A9E4A7}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4 Beta\bf4.exe
    FirewallRules: [{76DDF05D-5BCF-409F-B674-AC0D2BDBF848}] => (Allow) C:\Program Files (x86)\Origin Games\Burnout Paradise\BurnoutParadise.exe
    FirewallRules: [{24598249-C9C9-4DC6-8163-D185DE58DF21}] => (Allow) C:\Program Files (x86)\Origin Games\Burnout Paradise\BurnoutParadise.exe
    FirewallRules: [{2A16F37D-FC58-40B8-BB0E-C4A5EFECCA4B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeonland\dungeonland.exe
    FirewallRules: [{7A42754D-2EFB-48D8-8E06-9C20274D7704}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeonland\dungeonland.exe
    FirewallRules: [{5B62C2D2-5ABF-4267-A0BE-A663BA1207F6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\UDK.exe
    FirewallRules: [{B3851AF9-0E83-4191-BC78-1AC5A66CE729}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\UDK.exe
    FirewallRules: [{8C83311B-6BD9-468A-96B3-B9719054784D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\strikesuitzero\pc\main\Binary\Launcher.exe
    FirewallRules: [{C5E88F68-621B-4707-B06C-81A038C5B129}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\strikesuitzero\pc\main\Binary\Launcher.exe
    FirewallRules: [{DD62EA6F-3BA8-4D32-821C-C959C2C113F6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
    FirewallRules: [{2AA9B178-8A0C-4AE5-87E2-0610BA82149B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
    FirewallRules: [{969CCA9F-3CD2-42EE-BF5E-796241702FD3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War of the Roses Alpha\run_game.exe
    FirewallRules: [{F7F76B0A-7175-441D-AA50-444D1FB55CE4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War of the Roses Alpha\run_game.exe
    FirewallRules: [{45E15503-443C-44A1-8FBA-A9DB66B9216D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeons of Dredmor\Dungeons of Dredmor.exe
    FirewallRules: [{78331FEF-8BB6-457B-BF9B-6D22D5F0E958}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeons of Dredmor\Dungeons of Dredmor.exe
    FirewallRules: [{C7F7F7E2-8CDC-4176-8B6D-2769BE241493}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
    FirewallRules: [{6D1FF069-249E-483A-8936-DD4F4552A716}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
    FirewallRules: [TCP Query User{48D7782B-C1A8-4CA6-99BF-C605F4F87D42}C:\program files (x86)\steam\steamapps\common\starbound\win32\starbound_server.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\starbound\win32\starbound_server.exe
    FirewallRules: [UDP Query User{BFF0B4F7-686C-4B0E-9313-0FFC7FE8A90B}C:\program files (x86)\steam\steamapps\common\starbound\win32\starbound_server.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\starbound\win32\starbound_server.exe
    FirewallRules: [{E2D00219-F940-41AD-B2EA-2D715A9206F2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
    FirewallRules: [{5015E7F2-45A0-47CD-859C-1A19AB6E57CE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
    FirewallRules: [{C50C0C05-A2BF-4897-BD6C-FFA4E1D8B7D8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\GunsOfIcarusOnline.exe
    FirewallRules: [{5A63FB0B-ACD3-4633-9DB2-CB2D205E0310}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\GunsOfIcarusOnline.exe
    FirewallRules: [{4FA0E0A8-623A-4986-A287-15FD926DBF41}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MinerWars\MinerWars.exe
    FirewallRules: [{E9694624-F181-45D0-8485-E91FEC36F3F3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MinerWars\MinerWars.exe
    FirewallRules: [{E649F2BE-0770-4A7F-8092-BC1B7C3E9BB0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{C0634CB6-C7C2-4644-A7E4-7B2230420E88}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{D60EF4CC-90D6-4B50-A0D8-45670E24E019}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
    FirewallRules: [{77B7F9B9-ED40-4F02-B782-0AF8D02806B8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
    FirewallRules: [{CFB0D544-67B8-466D-B98A-1C44AEB4F42B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
    FirewallRules: [{CD1A3EC0-A647-48AF-AE9C-B1428229A58B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
    FirewallRules: [{771E8817-036A-453A-8AE8-AA3B58A31FDC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
    FirewallRules: [{103AE34C-882D-4F6C-BDBD-A9DA4B883609}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
    FirewallRules: [{23A55D25-3938-4312-A22D-6EFAED6121AB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Awesomenauts\AwesomenautsLauncher.exe
    FirewallRules: [{47632722-BA96-48CE-B79F-792E3D661FEC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Awesomenauts\AwesomenautsLauncher.exe
    FirewallRules: [{321BEF36-ADBD-44FB-ACD4-B5E156743998}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AirMech\AirMech.exe
    FirewallRules: [{A8B81FD7-93DF-4843-94F9-5E6DE2AA3464}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AirMech\AirMech.exe
    FirewallRules: [{054A152F-7E93-4761-A0CB-4AB86AE035C6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\GunsOfIcarusOnline.exe
    FirewallRules: [{210BFEC5-523F-446B-8565-AD0BD5FE18CC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\GunsOfIcarusOnline.exe
    FirewallRules: [{01AE89D4-871C-4289-9E94-1A50B4CC3DFB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AirMech\AirMech.exe
    FirewallRules: [{8D4CA2DC-885C-4BE6-9CEB-3FDD622E20B8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AirMech\AirMech.exe
    FirewallRules: [{2E92897C-0462-48F9-A43A-E3E141D4690D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings II\ck2game.exe
    FirewallRules: [{65E259F7-7C15-4D68-96D1-6158039323EF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings II\ck2game.exe
    FirewallRules: [{972A76FD-38C4-4447-8747-7FC59C38C9B6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\GunsOfIcarusOnline.exe
    FirewallRules: [{88D9E4A0-EAB3-4D48-BC90-E2D381B6F6AA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\GunsOfIcarusOnline.exe
    FirewallRules: [{3DEF6E0B-5FCD-4B58-9031-D4DEB529A4A7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{765E3F84-9A8C-4019-BF06-B30ECE285853}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{C56EF557-8DD1-4187-8F88-D7B794A94F7E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Awesomenauts\AwesomenautsLauncher.exe
    FirewallRules: [{BFA4948A-2ECC-4029-895A-EE6B88792A4E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Awesomenauts\AwesomenautsLauncher.exe
    FirewallRules: [{A7435301-893B-4CF7-8534-34897A0998F7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{673ECA07-7343-4DC3-83D7-3C1D0310DF3F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{EB95644B-5E39-4A99-86E4-CC2E8E1FA5A3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{6122404F-825D-4069-B2B5-FACA0B215019}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{A15C8207-CC07-4B77-89BE-359389279192}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
    FirewallRules: [{724D4DFE-ECC6-4382-A03F-55E9E48ECFCF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
    FirewallRules: [{1ED145A4-C95A-43A6-A3FF-4C2D748A0B09}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
    FirewallRules: [{3393056B-A668-404C-9DC4-6AE0DFE5A1DE}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
    FirewallRules: [{A6C7F35A-D5B1-46B7-A82B-2772F3A5EBF4}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
    FirewallRules: [{14100C7B-A832-477A-A3BB-E4E79B15E8F4}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
    FirewallRules: [{C7BC9295-6009-4D82-98EB-8AF7920D7080}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
    FirewallRules: [{CE3B1301-C1E3-447F-B4B5-5FDF2C232CA4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
    FirewallRules: [{966BE63A-2752-4928-88C6-E0B243C5DFAE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Awesomenauts\AwesomenautsLauncher.exe
    FirewallRules: [{78ED200B-75EA-46A0-A39E-587E1065197B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Awesomenauts\AwesomenautsLauncher.exe
    FirewallRules: [{CA6056C5-0801-49CE-BF2A-EF8E7937C2B7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes Relaunch\RelicCOH.exe
    FirewallRules: [{D1FAC6FD-9490-4592-96A6-8C84A41B6532}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes Relaunch\RelicCOH.exe
    FirewallRules: [{D2C4D5F0-9A66-4988-B82D-8538C750B600}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War of the Roses\run_game.exe
    FirewallRules: [{1C02EA7B-22FC-4CDB-A782-701E34C56D2B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War of the Roses\run_game.exe
    FirewallRules: [{F78D3182-54C6-4B56-A455-29A0BB844975}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings II\ck2game.exe
    FirewallRules: [{9F971180-13D3-4827-916B-41FAB1B97125}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings II\ck2game.exe
    FirewallRules: [{8C39457F-75D1-469E-A796-2D2BF0DACA42}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War of the Roses\run_game.exe
    FirewallRules: [{F922B125-19EF-4024-99C6-AEE8768169D4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War of the Roses\run_game.exe
    FirewallRules: [{1B074570-3D07-4B22-8428-82A4450DA645}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\GunsOfIcarusOnline.exe
    FirewallRules: [{C8866CE9-E5B6-4A6F-8F95-6133028EA42B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\GunsOfIcarusOnline.exe
    FirewallRules: [{A0F55460-8EF3-4DFD-B515-1998DE351E5C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Awesomenauts\AwesomenautsLauncher.exe
    FirewallRules: [{F9212A0A-73DF-42AF-9AEA-848CCCFE0507}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Awesomenauts\AwesomenautsLauncher.exe
    FirewallRules: [{26563192-B3D2-4974-B806-9DBDAEE3A3A7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
    FirewallRules: [{BD3646D9-1500-4230-9C51-93B017C9BF55}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
    FirewallRules: [{F76C5C37-BA88-4D53-AAAA-C7E344234E67}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
    FirewallRules: [{2DBE2260-62D1-4D74-9465-148D2172BBD7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
    FirewallRules: [{F0C08D8A-34F6-4E23-9FAA-7E3FA0759011}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Awesomenauts\AwesomenautsLauncher.exe
    FirewallRules: [{0ECEFF1A-539E-4DF1-94D1-BA7E127D424F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Awesomenauts\AwesomenautsLauncher.exe
    FirewallRules: [{5E49FF5E-1574-4024-8E8D-1EC69A7BAA59}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Universe Sandbox\Universe Sandbox.exe
    FirewallRules: [{DB0453D8-62A5-4D96-8BB9-158622D837DB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Universe Sandbox\Universe Sandbox.exe
    FirewallRules: [{810E9BAB-4CA1-40AF-B350-15BCA79DCA36}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rogue Legacy\RogueLegacy.exe
    FirewallRules: [{03FB9DBB-1FA7-437D-B6DF-5BFF9E115408}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rogue Legacy\RogueLegacy.exe
    FirewallRules: [{7036DDB5-D79F-4F01-834C-34BBDF5F7564}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\InjusticeGodsAmongUs_UltimateEdition\DiscContentPCG\Injustice.exe
    FirewallRules: [{74395EDD-B465-48D7-9310-45832B45AEFD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\InjusticeGodsAmongUs_UltimateEdition\DiscContentPCG\Injustice.exe
    FirewallRules: [{9A2C6EB6-2A56-4002-AF58-65E83E969519}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\InjusticeGodsAmongUs_UltimateEdition\DiscContentPCG\InjusticeLauncher.exe
    FirewallRules: [{6FFFEC90-B021-43BF-BAA3-B66940ACCB9E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\InjusticeGodsAmongUs_UltimateEdition\DiscContentPCG\InjusticeLauncher.exe
    FirewallRules: [{7AA530EE-4CC2-4CE2-B818-79A82C414468}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rogue Legacy\RogueLegacy.exe
    FirewallRules: [{225A24BF-CF44-44A2-B6B6-C0A41F37F059}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rogue Legacy\RogueLegacy.exe
    FirewallRules: [{8E4C9C08-B100-469C-858C-E5A444AE4D4E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{4812E14B-D2F7-4B01-8A32-1CC3817ADED3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{3FB6DFBC-D264-4FC0-BD42-4DCE706D7DCC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{21A2D139-6910-465A-ADC5-3EE2F87A6018}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{1B76D5AE-E4E4-4228-9DBD-21A802CC0670}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{593EBDE8-6F49-4BD1-9A86-4CB9AF292E25}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{17B0268A-9A7A-4966-81CD-0D5D2D7D7ED2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{F994C0AD-C568-416F-A74B-38193BA8B20F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{E113382B-7C51-4E08-A51B-DEBBDDD23937}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{20AE990A-C466-4401-917C-2FA98016C91B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{1F3C28FB-9746-4556-9CBF-9DFEF3D7F93A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{5F6C42EF-74F6-41AD-95EA-13E17E4DDA2A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{A269174D-5317-40BC-8EAD-DD3A024ED809}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AirMech\AirMech.exe
    FirewallRules: [{66EED5C5-773B-4867-A1AF-F168CACCE2E3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AirMech\AirMech.exe
    FirewallRules: [{D9DBCF32-0BFF-4F81-A91B-B78EFA1D6835}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
    FirewallRules: [{D94140AE-C997-493B-AB6A-2483BF6D08B7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
    FirewallRules: [{0245EE4F-2708-46C2-851D-A44AA6CF4E50}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{A515A567-F266-4FF6-99BA-1690C9FAD1F4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
    FirewallRules: [{3FCCD048-C2CA-4FF2-A7A2-CFA98B13B98F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
    FirewallRules: [{94081F60-A0FD-4A0D-A8A2-E57700E2920F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
    FirewallRules: [{6075C035-6098-4CD5-BEC2-9FDE593CA55E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
    FirewallRules: [{BA28B23F-F4D3-4D6A-8B16-6DB26A380AD2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
    FirewallRules: [{47EA8909-DC73-4D7D-944B-87B1672AEFDD}] => (Allow) C:\Program Files (x86)\DolbyAxon\Axon.exe
    FirewallRules: [{BB77C09E-0CBD-4544-8441-8034808D69DD}] => (Allow) C:\Program Files (x86)\DolbyAxon\Axon.exe
    FirewallRules: [{FF3BA915-9A7D-4A00-BF2E-55F68FA70715}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Batman Arkham Asylum GOTY\Binaries\BmLauncher.exe
    FirewallRules: [{D3BB502E-BB11-47CE-8FA9-AED6E9BFCBC5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Batman Arkham Asylum GOTY\Binaries\BmLauncher.exe
    FirewallRules: [{2A9B1667-85E4-4B3D-824A-95D42EF95F3B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Loadout\Loadout.exe
    FirewallRules: [{0C6CEE1B-5AF5-4992-BDB6-FCEDA0F58AE5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Loadout\Loadout.exe
    FirewallRules: [{8F362D2F-47EF-4935-942F-3EDE14A69173}] => (Allow) LPort=41780
    FirewallRules: [{9AFEB23D-6E0E-4253-8FD5-7B13F09414CC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ARMA Cold War Assault\ColdWarAssault.exe
    FirewallRules: [{A27B1BB3-E54F-41FF-A0C6-0F8DA9D8CA0A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ARMA Cold War Assault\ColdWarAssault.exe
    FirewallRules: [{E4786A6F-9A18-450A-A0A5-E99FBF5A0552}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
    FirewallRules: [{C29BDC83-BB8E-465B-8BFB-FE92168C0BCB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
     
  25. Lukaas Hendrix

    Lukaas Hendrix TS Rookie Topic Starter Posts: 27

    FirewallRules: [{7ACCA1BB-8E58-4AB2-9E9D-F03129545678}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fable The Lost Chapters\Fable.exe
    FirewallRules: [{224F4018-900C-4A3C-8F63-2337F723FF9E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fable The Lost Chapters\Fable.exe
    FirewallRules: [{68845431-03CC-452A-A373-43B3A38A8CF3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3.exe
    FirewallRules: [{0F136163-55BF-4BC4-923C-2C17ACFB6BEE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3.exe
    FirewallRules: [{14F6D026-5F1C-457B-8707-7E926EBC7D25}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3_Debug.exe
    FirewallRules: [{CFDE0EC3-89AC-463B-86E6-842597E7EB2D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3_Debug.exe
    FirewallRules: [{2FAE3D7D-B33C-4266-A266-73C68E43EED0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Splinter Cell Blacklist\Blacklist_Launcher.exe
    FirewallRules: [{4A2689DC-BCBE-4853-A6B2-0A8035CF9C04}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Splinter Cell Blacklist\Blacklist_Launcher.exe
    FirewallRules: [{5B549AD6-B05C-4918-B4F4-5A955F2C5844}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
    FirewallRules: [{2B51371B-C683-4488-94FE-F2DE6741C467}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
    FirewallRules: [{83A64C42-13CF-42AC-AB35-C932254D17F2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Splinter Cell Blacklist\src\SYSTEM\Blacklist_game.exe
    FirewallRules: [{364E4A6E-2DC5-4AE1-9FEB-BE129B6C9196}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Splinter Cell Blacklist\src\SYSTEM\Blacklist_game.exe
    FirewallRules: [{A94047FA-CA06-4CE9-9B2A-5B6EEA8BD98F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Splinter Cell Blacklist\src\SYSTEM\Blacklist_DX11_game.exe
    FirewallRules: [{0E89D2B5-3882-4E93-B8C1-8BE029D3D450}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Splinter Cell Blacklist\src\SYSTEM\Blacklist_DX11_game.exe
    FirewallRules: [{8FF13146-9DAC-47B1-8A1C-54FC27F521E4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Splinter Cell Blacklist\src\SYSTEM\gu.exe
    FirewallRules: [{43D47292-3F97-4443-AA07-28CA2EFDF52F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Splinter Cell Blacklist\src\SYSTEM\gu.exe
    FirewallRules: [{BC8388A2-EDBC-4B23-82DD-4C7D44394CEA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\NEOTOKYO\hl2.exe
    FirewallRules: [{D3257333-5171-4B63-865D-F97C36823903}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\NEOTOKYO\hl2.exe
    FirewallRules: [{018FAF62-ECAF-4C4B-A9FD-EEB265729269}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 2 Ultimate Collection\Fun with Pets\SP9\TSBin\Sims2EP9.exe
    FirewallRules: [{F448011B-8D64-4157-BA50-7A55B30B1965}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 2 Ultimate Collection\Fun with Pets\SP9\TSBin\Sims2EP9.exe
    FirewallRules: [{8150B633-1881-4D1C-A75C-27DBAA0525A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe
    FirewallRules: [{E9F26BA4-D772-48FF-BB7A-2E718097803C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe
    FirewallRules: [{9A02185E-4E1C-4D12-A9D8-B684ED6BFB91}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fantasy Grounds\FGSteamLauncher.exe
    FirewallRules: [{AC689E03-0E62-470B-A5E6-6D0368A65589}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fantasy Grounds\FGSteamLauncher.exe
    FirewallRules: [{148A9948-5639-4A18-996E-D7239753FB2C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Robocraft\Robocraft.exe
    FirewallRules: [{20D87067-1788-490C-B880-893C75A89312}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Robocraft\Robocraft.exe
    FirewallRules: [{4C8A1975-5FC3-46B9-A39F-B8C9849365A4}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
    FirewallRules: [{41B0653C-4D27-4C7A-AE34-8217311D6A8E}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
    FirewallRules: [{17A140D2-1C14-4E75-8F05-2B44B25CBB7F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rocksmith2014\Rocksmith2014.exe
    FirewallRules: [{30E19B7E-2746-4C25-9B53-14A2F42FAB6B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rocksmith2014\Rocksmith2014.exe
    FirewallRules: [{57272426-0B96-45FD-B648-69C0D98746DC}] => (Allow) C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
    FirewallRules: [{7EC23F76-03A6-46DE-BD4F-5F8647693FC5}] => (Allow) C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
    FirewallRules: [{B98F4754-B230-458E-AC0F-7543205F7394}] => (Allow) C:\Users\Lukaas\AppData\Roaming\uTorrent\uTorrent.exe
    FirewallRules: [{0D711CB8-E866-4E7E-9E66-9E5AEFE76847}] => (Allow) C:\Users\Lukaas\AppData\Roaming\uTorrent\uTorrent.exe
    FirewallRules: [{3E0A5BFF-C617-4299-BE37-F43FC15A9250}] => (Allow) C:\Program Files (x86)\Origin Games\Dragon Age\bin_ship\daorigins.exe
    FirewallRules: [{954FE8B7-0DA8-4329-A982-C8980F01BEB1}] => (Allow) C:\Program Files (x86)\Origin Games\Dragon Age\bin_ship\daorigins.exe
    FirewallRules: [{3DEDF273-E25B-4875-8CCA-C19AE738C9F2}] => (Allow) C:\Program Files (x86)\Origin Games\Bejeweled 3\Bejeweled3.exe
    FirewallRules: [{A017BF0F-4E4F-4CC4-A2CA-6D8F24D01E14}] => (Allow) C:\Program Files (x86)\Origin Games\Bejeweled 3\Bejeweled3.exe
    FirewallRules: [{C66E041C-26B8-4D21-A1CB-1F750203DD28}] => (Allow) C:\Program Files\HP\HP ENVY 4500 series\Bin\DeviceSetup.exe
    FirewallRules: [{DE39291D-721B-4C88-86FB-8908EA5AB481}] => (Allow) LPort=5357
    FirewallRules: [{A985BA9B-E940-4363-B904-462D97EB6A68}] => (Allow) C:\Program Files\HP\HP ENVY 4500 series\Bin\HPNetworkCommunicatorCom.exe
    FirewallRules: [{54403018-FDD3-4FD3-BA31-C7DE99C2DF96}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\10000000\10000000.exe
    FirewallRules: [{06D896EC-B76D-4B37-81D3-3B91F2075659}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\10000000\10000000.exe
    FirewallRules: [{E9FD3CAD-5734-4C22-B8AA-A7934AC9BC9F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe
    FirewallRules: [{04E25929-1DCE-4642-9AB8-1B253C8B8F37}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe
    FirewallRules: [{E7356E71-E45E-4697-B6D1-B10021968F65}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe
    FirewallRules: [{91F823DF-4F6C-4749-B678-2DEEBE85029C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe
    FirewallRules: [{2335F7B6-8722-4837-AF6C-A3A4E629A0D0}] => (Allow) C:\Users\Lukaas\AppData\Local\Temp\7zS5CE4\HPDiagnosticCoreUI.exe
    FirewallRules: [{67319719-B9D7-4138-B7C6-530D0DF7B570}] => (Allow) C:\Users\Lukaas\AppData\Local\Temp\7zS5CE4\HPDiagnosticCoreUI.exe
    FirewallRules: [{3205C1AB-0C2E-4155-A4EE-F236ACD1127E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
    FirewallRules: [{C58CFB71-A245-4C29-87B6-39951193A1EB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
    FirewallRules: [{CCC246C7-FDE1-4AE3-B7C6-E78EC4EF3690}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe
    FirewallRules: [{89B7EA20-9403-47DC-A97A-08FF11C02B94}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe
    FirewallRules: [{369465A0-1AAF-4207-B731-3B61FFAB4FA2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Verdun\Verdun.exe
    FirewallRules: [{30AE6975-50E1-421D-B1FE-7D72499708A4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Verdun\Verdun.exe
    FirewallRules: [{1508EE0C-CD5C-498E-8C25-4A082F3AE80B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Red Orchestra 2\Binaries\Win32\ROGame.exe
    FirewallRules: [{247E8F5C-4EEB-4789-9D77-430CE8A6AB3B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Red Orchestra 2\Binaries\Win32\ROGame.exe
    FirewallRules: [{1F67E89B-6B73-4D22-9F76-31F9037D7845}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
    FirewallRules: [{DA858857-3402-4AEF-8D49-78F632744A70}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
    FirewallRules: [{D3808728-EB00-4745-A858-189ABC0DFD3B}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
    FirewallRules: [{E00C5870-2D96-4A41-8C57-FFCC62B0E8CA}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
    FirewallRules: [{61251666-1949-4FDC-8968-05B060EECA2D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\Win32\UDK.exe
    FirewallRules: [{96E9EAB7-0CD0-4ABB-A8B1-AE533E17016E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\Win32\UDK.exe
    FirewallRules: [{1831EE28-05F3-444C-A1AE-472894780CD6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\Win64\UDK.exe
    FirewallRules: [{44C2D16E-DAAC-4F7A-9003-D30CD2E732C3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\Win64\UDK.exe
    FirewallRules: [{6071F94C-ECC4-414B-8B57-EBB2C6354524}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Magicite\Magicite.exe
    FirewallRules: [{356A4D68-8361-4C44-A841-18DF5CB6C9E6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Magicite\Magicite.exe
    FirewallRules: [{9E7517A6-1CDB-43DF-83CF-726B1C2608E8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Ghost Recon Phantoms NA\Launcher.exe
    FirewallRules: [{B4365E54-8E5F-47BE-81FA-1887FBEDCF28}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Ghost Recon Phantoms NA\Launcher.exe
    FirewallRules: [TCP Query User{F464E9F4-18A7-4186-B3C4-C5391ED8A8C6}C:\users\public\sony online entertainment\installed games\planetside 2\planetside2_x64.exe] => (Allow) C:\users\public\sony online entertainment\installed games\planetside 2\planetside2_x64.exe
    FirewallRules: [UDP Query User{18DF17A7-29BA-43B5-A06E-108B5FD5F419}C:\users\public\sony online entertainment\installed games\planetside 2\planetside2_x64.exe] => (Allow) C:\users\public\sony online entertainment\installed games\planetside 2\planetside2_x64.exe
    FirewallRules: [TCP Query User{D6062FBC-5FDE-42A4-AE62-C24AD30C90B9}C:\windows\system32\java.exe] => (Allow) C:\windows\system32\java.exe
    FirewallRules: [UDP Query User{5221F013-B324-4549-8730-4CEF1A5E3438}C:\windows\system32\java.exe] => (Allow) C:\windows\system32\java.exe
    FirewallRules: [TCP Query User{B2166DEF-E152-4BF5-9EEF-F469832244EB}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
    FirewallRules: [UDP Query User{C1B54DED-AC14-4689-A389-200AE89E13E2}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
    FirewallRules: [{0BFCC1F9-5A5A-41B8-BDB2-2CFDB23FD270}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DyingLightGame.exe
    FirewallRules: [{E0485210-87A1-421F-896C-66B400F98477}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DyingLightGame.exe
    FirewallRules: [{47977FEF-BD16-41F3-BE85-185FEB0B2B83}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Gauntlet\binaries\gauntlet.exe
    FirewallRules: [{7573845A-44DC-4E18-8261-9BA583CDB044}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Gauntlet\binaries\gauntlet.exe
    FirewallRules: [{97089582-16EE-464D-91A4-87DD36CDF899}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Osmos\osmos.exe
    FirewallRules: [{043A222D-A798-4ABE-958D-B1945ADE031F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Osmos\osmos.exe
    FirewallRules: [{E7D622BD-A410-4955-B475-C338C18445CD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mount and Blade\runme.exe
    FirewallRules: [{CC5A40B6-FB86-46CB-BABC-9444F4CE1341}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mount and Blade\runme.exe
    FirewallRules: [{ADF338D9-0DBF-42A0-84F9-B57DFBCB278B}] => (Allow) C:\Program Files (x86)\Origin Games\Theme Hospital\data\Game\DOSBox\LAUNCHER.exe
    FirewallRules: [{3FACC58A-68CB-412C-8CB8-66353EB19D34}] => (Allow) C:\Program Files (x86)\Origin Games\Theme Hospital\data\Game\DOSBox\LAUNCHER.exe
    FirewallRules: [{C6A68AC0-1F6C-4715-BB27-9D4835E12046}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
    FirewallRules: [{C548C7EA-4042-405C-9262-9848EB2A586E}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
    FirewallRules: [TCP Query User{ADA26C17-A6AA-42A0-8CF7-9BBF5FAD7A94}C:\program files (x86)\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe
    FirewallRules: [UDP Query User{0CBD923C-508C-4F9E-9D52-9B261291ECB1}C:\program files (x86)\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe
    FirewallRules: [TCP Query User{82A4FFBA-54AD-49DE-85C3-42492FF7CD6A}C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe
    FirewallRules: [UDP Query User{3C26F62E-4B87-40F2-9494-5961A78CC607}C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe
    FirewallRules: [{B8632270-CD01-45D9-94F3-C2317016FD76}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
    FirewallRules: [{3D597F22-D4ED-4125-AD0A-01135E4D57D4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
    FirewallRules: [{EDF25086-C9E2-4754-BE30-F1358BCDD88B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3Launcher.exe
    FirewallRules: [{03314F0A-1528-4377-BA34-77EFA570C4F4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3Launcher.exe
    FirewallRules: [{A1EE9EC3-5E07-4DB7-8366-E8C5B5CE7E75}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Firefall\system\bin\FirefallClient.exe
    FirewallRules: [{2DC7337D-91E1-4238-A086-5A6CA2F5AFD6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Firefall\system\bin\FirefallClient.exe
    FirewallRules: [TCP Query User{8199C203-54CE-49FD-A23C-9C59BABB3B1E}C:\program files (x86)\fantasy grounds\fantasygrounds.exe] => (Allow) C:\program files (x86)\fantasy grounds\fantasygrounds.exe
    FirewallRules: [UDP Query User{5B99B2FF-E71A-419B-AA49-654A5CA5C7BE}C:\program files (x86)\fantasy grounds\fantasygrounds.exe] => (Allow) C:\program files (x86)\fantasy grounds\fantasygrounds.exe
    FirewallRules: [{8154767D-B1D0-445A-AFA3-FEABF544FAFE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the binding of isaac\Isaac.exe
    FirewallRules: [{6FDAEBE8-C89A-4864-9A18-4A8B97B788D9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the binding of isaac\Isaac.exe
    FirewallRules: [{14155898-BAC1-4A71-B27E-DFE86BD29415}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Patrician III\Patrician3.exe
    FirewallRules: [{8BA5BF4A-DCC4-4700-A361-55968D56540D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Patrician III\Patrician3.exe
    FirewallRules: [{EF9309C0-A46F-4D4E-856E-BA155447C005}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe
    FirewallRules: [{0C4FDC0D-B242-4228-862C-E8B6F594BD2C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe
    FirewallRules: [{B3688E43-3579-4E55-86FE-CCC0F5E71B47}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutParadise.exe
    FirewallRules: [{6DB1AAAA-567A-4A0C-906C-03A3B28414A3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutParadise.exe
    FirewallRules: [{4F9B05F2-8A4C-4B8C-803C-338EACFADEC7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutConfigTool.exe
    FirewallRules: [{0AAFB150-933E-4948-82A3-8B61CDAE7609}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutConfigTool.exe
    FirewallRules: [{CE4381B8-D695-4900-BDEF-B146D053CE69}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sanctum2\Binaries\Win32\SanctumGame-Win32-Shipping.exe
    FirewallRules: [{A0466876-1084-42B5-B1DD-FF473AFACE3E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sanctum2\Binaries\Win32\SanctumGame-Win32-Shipping.exe
    FirewallRules: [{73EB1B46-07CD-4233-83EB-F4714FDA4077}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect.exe
    FirewallRules: [{6581A48A-6CEE-4B72-ABB6-B932A52277BF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect.exe
    FirewallRules: [TCP Query User{079A37A3-BB13-427E-AA0C-F86326B77958}C:\program files (x86)\steam\steamapps\common\elite dangerous\products\forc-fdev-d-1010\elitedangerous32.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\elite dangerous\products\forc-fdev-d-1010\elitedangerous32.exe
    FirewallRules: [UDP Query User{F6F075EE-C749-4AC3-A8B4-7CC03B0811E6}C:\program files (x86)\steam\steamapps\common\elite dangerous\products\forc-fdev-d-1010\elitedangerous32.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\elite dangerous\products\forc-fdev-d-1010\elitedangerous32.exe
    FirewallRules: [{B71E4A1B-82EE-4BCF-9965-2ADD0B30DAAA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BattleBlock Theater\BattleBlockTheater.exe
    FirewallRules: [{750288E9-D39F-4CCA-B625-1F1ABF64FE56}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BattleBlock Theater\BattleBlockTheater.exe
    FirewallRules: [{C98BB011-87DA-4A86-9EB0-9AD232574053}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MedievalEngineers\Bin64\MedievalEngineers.exe
    FirewallRules: [{7B9DEED4-8798-4C5B-AB14-1FDA68886332}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MedievalEngineers\Bin64\MedievalEngineers.exe
    FirewallRules: [{D7B89C67-9C7B-46E4-A793-BCB3BE736363}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpaceEngineers\Bin64\SpaceEngineers.exe
    FirewallRules: [{549A195B-A645-4BEA-8EB1-BE61E61CFCE4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpaceEngineers\Bin64\SpaceEngineers.exe
    FirewallRules: [{5E216050-D9C3-43C1-85A3-33E2B0591F44}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\tbs\win32\The Banner Saga.exe
    FirewallRules: [{4DD0A05D-5644-4300-8D09-A8190DD4E46C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\tbs\win32\The Banner Saga.exe
    FirewallRules: [{2FF5F643-2152-4A53-9E76-DCF5CBE1C436}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\workshop\Workshop.exe
    FirewallRules: [{8130263A-CC51-4C9E-938D-B45CC7467D4B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\workshop\Workshop.exe
    FirewallRules: [{E653C096-9E51-4FCD-8671-1DC0CCE9E47A}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
    FirewallRules: [{E7174DED-2286-4982-A121-EF028DF23226}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
    FirewallRules: [{48663568-BA3B-40C2-ACC6-AE11626983DA}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
    FirewallRules: [{3C82D95D-739F-4C7F-9ABC-5D0C531EB613}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
    FirewallRules: [{6A4B05D5-C218-4E3B-AD57-DCFE6E67EAF9}] => (Allow) C:\Program Files (x86)\Origin Games\Zuma's Revenge\ZumasRevenge.exe
    FirewallRules: [{E3C1FD70-4513-407B-9AA0-95C69692C8CA}] => (Allow) C:\Program Files (x86)\Origin Games\Zuma's Revenge\ZumasRevenge.exe
    FirewallRules: [{ABD3BF97-E34F-44A6-A804-7710C2964356}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CardHunter\CardHunter.exe
    FirewallRules: [{3D09A1C4-063C-46D3-A2ED-0F1DD56B73E5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CardHunter\CardHunter.exe
    FirewallRules: [TCP Query User{7E1BB079-B483-4C38-8121-72B703B2E1A8}C:\users\lukaas\downloads\java\jre1.7.0_75\bin\java.exe] => (Allow) C:\users\lukaas\downloads\java\jre1.7.0_75\bin\java.exe
    FirewallRules: [UDP Query User{1004662F-BA59-494D-9F4F-200E5437C3D9}C:\users\lukaas\downloads\java\jre1.7.0_75\bin\java.exe] => (Allow) C:\users\lukaas\downloads\java\jre1.7.0_75\bin\java.exe
    FirewallRules: [{C9386333-FFEA-4CDE-831E-34ADFD21EB62}] => (Allow) C:\Program Files\iTunes\iTunes.exe
    FirewallRules: [{3F8E37AB-E48A-4CEF-881A-8169BBF3F42E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
    FirewallRules: [{30C85A09-172B-42D5-B1E5-2434C00C892A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
    FirewallRules: [{3E0EE0E6-8AA5-45E5-B24B-729F3AA5A892}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\Win32\UDK.exe
    FirewallRules: [{EC299DC2-6700-4EAD-818E-3D0201EF867A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\Win32\UDK.exe
    FirewallRules: [{F75EE031-E562-426F-9E79-1E773F8D57D0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\Win64\UDK.exe
    FirewallRules: [{76B26D82-F5CE-4D91-8739-AB5FEA37161D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\Win64\UDK.exe
    FirewallRules: [{B2735628-253A-4396-B399-2445A1F88E2B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\UDKLift.exe
    FirewallRules: [{5A89C20C-3376-4752-9811-1941D41149A8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viscera\Binaries\UDKLift.exe
    FirewallRules: [{094D6D49-26BC-4F28-B2AA-193D9B6C845C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\WOG\disasm.exe
    FirewallRules: [{2883DBB9-F23E-442B-8836-E795D0D8751A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\WOG\disasm.exe
    FirewallRules: [{0A53618D-1CA1-4927-9B8B-3989B1596B83}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
    FirewallRules: [{5ADB27DD-BBE9-458C-B501-4462FEB037B8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
    FirewallRules: [{D23BBB07-DDD9-4F39-A0DF-D545A86A7C77}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe
    FirewallRules: [{782EFEC4-71AA-4370-A661-B28F709BB8AE}] => (Allow) C:\Users\Lukaas\AppData\Local\Temp\7zSDE1B.tmp\SymNRT.exe
    FirewallRules: [{94D4E618-D1E5-40EB-B763-11B5D3B579B4}] => (Allow) C:\Users\Lukaas\AppData\Local\Temp\7zSDE1B.tmp\SymNRT.exe

    ==================== Faulty Device Manager Devices =============

    Name: J:\
    Description: Compact Flash
    Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
    Manufacturer: Generic-
    Service: WUDFRd
    Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
    Resolution: A registry problem was detected.
    This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
    On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
    Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.

    Name: L:\
    Description: MS/MS-Pro
    Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
    Manufacturer: Generic-
    Service: WUDFRd
    Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
    Resolution: A registry problem was detected.
    This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
    On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
    Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.

    Name: I:\
    Description: SD/MMC
    Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
    Manufacturer: Generic-
    Service: WUDFRd
    Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
    Resolution: A registry problem was detected.
    This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
    On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
    Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.

    Name: Broadcom WLAN Adapter
    Description: Broadcom WLAN Adapter
    Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
    Manufacturer: Broadcom
    Service: BCM43XX
    Problem: : This device is disabled. (Code 22)
    Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

    Name: K:\
    Description: SM/xD-Picture
    Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
    Manufacturer: Generic-
    Service: WUDFRd
    Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
    Resolution: A registry problem was detected.
    This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
    On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
    Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.


    ==================== Event log errors: =========================

    Application errors:
    ==================
    Error: (09/07/2015 10:36:49 AM) (Source: OverwolfUpdater) (EventID: 0) (User: )
    Description: Service cannot be started. An instance of the service is already running

    Error: (09/07/2015 10:36:49 AM) (Source: OverwolfUpdater) (EventID: 0) (User: )
    Description: Service cannot be started. The handle is invalid

    Error: (09/07/2015 09:58:20 AM) (Source: OverwolfUpdater) (EventID: 0) (User: )
    Description: Service cannot be started. An instance of the service is already running

    Error: (09/07/2015 09:58:20 AM) (Source: OverwolfUpdater) (EventID: 0) (User: )
    Description: Service cannot be started. The handle is invalid

    Error: (09/07/2015 09:39:56 AM) (Source: Application Hang) (EventID: 1002) (User: )
    Description: The program IEXPLORE.EXE version 11.0.9600.17937 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

    Process ID: 105c

    Start Time: 01d0e9721abb0b08

    Termination Time: 10

    Application Path: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

    Report Id:

    Error: (09/07/2015 09:34:33 AM) (Source: Application Hang) (EventID: 1002) (User: )
    Description: The program Overwolf.exe version 0.88.101.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

    Process ID: d94

    Start Time: 01d0e970b012f7c3

    Termination Time: 60000

    Application Path: C:\Program Files (x86)\Overwolf\Overwolf.exe

    Report Id: f975ac5c-5564-11e5-8ea0-902b342690f8

    Error: (09/06/2015 10:37:18 PM) (Source: VSS) (EventID: 12289) (User: )
    Description: Volume Shadow Copy Service error: Unexpected error DeviceIoControl(\\?\Volume{577c3b11-6730-11e1-a617-806e6f6e6963} - 0000000000000148,0x0053c008,000000000031C6D0,0,000000000031D6E0,4096,[0]). hr = 0x80070079, The semaphore timeout period has expired.
    .


    Operation:
    Processing EndPrepareSnapshots

    Context:
    Execution Context: System Provider

    Error: (09/06/2015 10:26:26 PM) (Source: System Restore) (EventID: 8193) (User: )
    Description: Failed to create restore point (Process = C:\Users\Lukaas\AppData\Local\Temp\_av_iup.tm~a06680\instup.exe /edition:1 /ga_clientid:d4cb7869-2793-402e-8069-a692acbb9f1f /guid:e4e9b344-1313-4926-a576-2829d3fea661 /prod:ais /sfx /sfxstorage:C:\Users\Lukaas\AppData\Local\Temp\_av_iup.tm~a06680; Description = avast! antivirus system restore point; Error = 0x81000101).

    Error: (09/06/2015 10:17:04 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
    Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

    Details:
    AddLegacyDriverFiles: Unable to back up image of binary ujkgtnho.

    System Error:
    The system cannot find the file specified.
    .

    Error: (09/06/2015 10:06:48 PM) (Source: Application Error) (EventID: 1000) (User: )
    Description: Faulting application name: bjcejsqc.exe, version: 2.1.19357.0, time stamp: 0x52e7ea83
    Faulting module name: bjcejsqc.exe, version: 2.1.19357.0, time stamp: 0x52e7ea83
    Exception code: 0xc0000005
    Fault offset: 0x0008d93e
    Faulting process id: 0x18f0
    Faulting application start time: 0xbjcejsqc.exe0
    Faulting application path: bjcejsqc.exe1
    Faulting module path: bjcejsqc.exe2
    Report Id: bjcejsqc.exe3


    System errors:
    =============
    Error: (09/07/2015 09:45:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
    Description: The HP Support Solutions Framework Service service failed to start due to the following error:
    %%1053

    Error: (09/07/2015 09:45:47 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
    Description: A timeout was reached (30000 milliseconds) while waiting for the HP Support Solutions Framework Service service to connect.

    Error: (09/07/2015 09:38:28 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
    Description: The Norton Internet Security service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service.

    Error: (09/07/2015 08:29:21 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
    Description: The PEVSystemStart service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.

    Error: (09/07/2015 08:27:55 PM) (Source: Application Popup) (EventID: 1060) (User: )
    Description: \??\C:\ComboFix\catchme.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.

    Error: (09/07/2015 08:19:40 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
    Description: The PEVSystemStart service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.

    Error: (09/07/2015 08:09:35 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
    Description: The MBAMScheduler service terminated unexpectedly. It has done this 1 time(s).

    Error: (09/07/2015 08:09:31 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
    Description: The MBAMService service terminated unexpectedly. It has done this 1 time(s).

    Error: (09/07/2015 10:41:53 AM) (Source: Service Control Manager) (EventID: 7006) (User: )
    Description: The ScRegSetValueExW call failed for FailureCommand with the following error:
    %%5

    Error: (09/07/2015 10:35:41 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
    Description: The Windows Update service hung on starting.


    Microsoft Office:
    =========================
    Error: (09/07/2015 10:36:49 AM) (Source: OverwolfUpdater) (EventID: 0) (User: )
    Description: Service cannot be started. An instance of the service is already running

    Error: (09/07/2015 10:36:49 AM) (Source: OverwolfUpdater) (EventID: 0) (User: )
    Description: Service cannot be started. The handle is invalid

    Error: (09/07/2015 09:58:20 AM) (Source: OverwolfUpdater) (EventID: 0) (User: )
    Description: Service cannot be started. An instance of the service is already running

    Error: (09/07/2015 09:58:20 AM) (Source: OverwolfUpdater) (EventID: 0) (User: )
    Description: Service cannot be started. The handle is invalid

    Error: (09/07/2015 09:39:56 AM) (Source: Application Hang) (EventID: 1002) (User: )
    Description: IEXPLORE.EXE11.0.9600.17937105c01d0e9721abb0b0810C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

    Error: (09/07/2015 09:34:33 AM) (Source: Application Hang) (EventID: 1002) (User: )
    Description: Overwolf.exe0.88.101.0d9401d0e970b012f7c360000C:\Program Files (x86)\Overwolf\Overwolf.exef975ac5c-5564-11e5-8ea0-902b342690f8

    Error: (09/06/2015 10:37:18 PM) (Source: VSS) (EventID: 12289) (User: )
    Description: DeviceIoControl(\\?\Volume{577c3b11-6730-11e1-a617-806e6f6e6963} - 0000000000000148,0x0053c008,000000000031C6D0,0,000000000031D6E0,4096,[0])0x80070079, The semaphore timeout period has expired.


    Operation:
    Processing EndPrepareSnapshots

    Context:
    Execution Context: System Provider

    Error: (09/06/2015 10:26:26 PM) (Source: System Restore) (EventID: 8193) (User: )
    Description: C:\Users\Lukaas\AppData\Local\Temp\_av_iup.tm~a06680\instup.exe /edition:1 /ga_clientid:d4cb7869-2793-402e-8069-a692acbb9f1f /guid:e4e9b344-1313-4926-a576-2829d3fea661 /prod:ais /sfx /sfxstorage:C:\Users\Lukaas\AppData\Local\Temp\_av_iup.tm~a06680avast! antivirus system restore point0x81000101

    Error: (09/06/2015 10:17:04 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
    Description: Details:
    AddLegacyDriverFiles: Unable to back up image of binary ujkgtnho.

    System Error:
    The system cannot find the file specified.

    Error: (09/06/2015 10:06:48 PM) (Source: Application Error) (EventID: 1000) (User: )
    Description: bjcejsqc.exe2.1.19357.052e7ea83bjcejsqc.exe2.1.19357.052e7ea83c00000050008d93e18f001d0e910b6aae064C:\Users\Lukaas\Downloads\bjcejsqc.exeC:\Users\Lukaas\Downloads\bjcejsqc.exe1837219a-5505-11e5-bd1c-902b342690f8


    CodeIntegrity:
    ===================================
    Date: 2015-09-07 20:27:55.885
    Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

    Date: 2015-09-07 20:27:55.791
    Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


    ==================== Memory info ===========================

    Processor: AMD FX(tm)-8120 Eight-Core Processor
    Percentage of memory in use: 34%
    Total physical RAM: 7966.89 MB
    Available physical RAM: 5191.71 MB
    Total Virtual: 15931.98 MB
    Available Virtual: 12655.7 MB

    ==================== Drives ================================

    Drive c: (OS) (Fixed) (Total:1845.66 GB) (Free:547.83 GB) NTFS
    Drive d: (HP_RECOVERY) (Fixed) (Total:16.88 GB) (Free:2.11 GB) NTFS ==>[system with boot components (obtained from reading drive)]
    Drive f: (WD SmartWare) (CDROM) (Total:0.44 GB) (Free:0 GB) UDF
    Drive g: (My Book) (Fixed) (Total:930.86 GB) (Free:467.06 GB) NTFS

    ==================== MBR & Partition Table ==================

    ========================================================
    Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1862.6 GB) (Disk ID: 43FE6514)
    Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
    Partition 2: (Not Active) - (Size=1845.7 GB) - (Type=07 NTFS)
    Partition 3: (Not Active) - (Size=16.9 GB) - (Type=07 NTFS)

    ========================================================
    Disk: 1 (MBR Code: Windows XP) (Size: 930.9 GB) (Disk ID: 000564D0)
    Partition 1: (Not Active) - (Size=930.9 GB) - (Type=07 NTFS)

    ==================== End of Addition.txt ============================
     

Similar Topics

Add New Comment

You need to be a member to leave a comment. Join thousands of tech enthusiasts and participate.
TechSpot Account You may also...