Solved "Your computer is in danger" Windows 10

[Sparhawk52]

Hi, I'm running windows 10 and since the upgrade I've been getting a pop up window for the "your computer is in danger" trojan. As per your instructions in the main thread, you'll find below the FRST.txt and Addition.txt logs.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:13-08-2015
Ran by Yoan2 (administrator) on YOAN-PC (13-08-2015 17:15:16)
Running from C:\Users\Yoan2\Downloads
Loaded Profiles: Yoan2 & (Available Profiles: Yoan2 & DefaultAppPool)
Platform: Windows 10 Home (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool:

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(cFos Software GmbH) C:\Program Files\ASUS\ROG GameFirst\spd.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
(DeviceVM, Inc.) C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\Common\HPSupportSolutionsFrameworkService.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Apache Software Foundation) C:\Program Files (x86)\Marvell\raid\Apache2\bin\httpd.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(MediaMall Technologies, Inc.) C:\Program Files (x86)\MediaMall\MediaMallServer.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Apache Software Foundation) C:\Program Files (x86)\Marvell\raid\Apache2\bin\httpd.exe
() C:\Program Files (x86)\Marvell\raid\svc\mvraidsvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
() C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
(WiseCleaner.com) C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
(Microsoft Corporation) C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(cFos Software GmbH) C:\Program Files\ASUS\ROG GameFirst\cfosspeed.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Akamai Technologies, Inc.) C:\Users\Yoan2\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\Yoan2\AppData\Local\Akamai\netsession_win.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Spotify Ltd) C:\Users\Yoan2\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionHookAppWIN6032.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionHookAppWIN6064.exe
(Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\Overwolf.exe
(Microsoft Corporation) C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster X-Fi MB 2\Sound Blaster Panel\VolPanlu.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster X-Fi MB 2\THXAudioCP\THXAudio.exe
(Python Software Foundation) C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe
(Stardock) C:\Program Files (x86)\Stardock\ObjectDockPlus2\Dock64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(NEC Electronics Corporation) C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Curse) C:\Users\Yoan2\AppData\Local\Apps\2.0\TNMLLMY5.7RX\NNT8C0LD.4VE\curs..tion_9e9e83ddf3ed3ead_0005.0001_fb8944c2684f5b6c\CurseClient.exe
() C:\Program Files (x86)\SleepMapper Data Card Uploader\SleepMapper Data Card Uploader.exe
() C:\Program Files (x86)\Marvell\raid\tray\MarvellTray.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AI Direct Link\AsCmd.exe
(Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\PlexDlnaServer.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\main.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\0.88.41.0\Purplizer\Purplizer.exe
(DeviceVM, Inc.) C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe
(Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.88.41.0\OverwolfHelper.exe
(Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.88.41.0\OverwolfHelper64.exe
(The CefSharp Authors) C:\Program Files (x86)\Razer\Razer Cortex\Cef\CefSharp.BrowserSubprocess.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\0.88.41.0\OverwolfBrowser.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\0.88.41.0\OverwolfBrowser.exe
(Valve Corporation) H:\Games\Steam\Steam.exe
(Valve Corporation) H:\Games\Steam\bin\steamwebhelper.exe
(Valve Corporation) H:\Games\Steam\bin\steamwebhelper.exe
() H:\Games\Steam\steamapps\common\Clicker Heroes\Clicker Heroes.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\ProcessCapturer.exe
(Valve Corporation) H:\Games\Steam\GameOverlayUI.exe
(Valve Corporation) H:\Games\Steam\bin\steamwebhelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.4271\Agent.exe
(Blizzard Entertainment) H:\Games\Battle.net\Battle.net.6075\Battle.net.exe
() C:\Program Files (x86)\AutoClickerbyShocker\AutoClicker.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8492800 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [THXCfg64] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\THXCfg64.dll,RunDLLEntry THXCfg64
HKLM\...\Run: [RunDLLEntry] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\AmbRunE.dll,RunDLLEntry
HKLM\...\Run: [ROG GameFirst] => C:\Program Files\ASUS\ROG GameFirst\cFosSpeed.exe [1305304 2010-07-27] (cFos Software GmbH)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [7477016 2013-04-24] (Logitech Inc.)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634896 2015-07-24] (NVIDIA Corporation)
HKLM-x32\...\Run: [VolPanel] => C:\Program Files (x86)\Creative\Sound Blaster X-Fi MB 2\Sound Blaster Panel\VolPanlu.exe [241789 2010-02-18] (Creative Technology Ltd)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [THX Audio Control Panel] => C:\Program Files (x86)\Creative\Sound Blaster X-Fi MB 2\THXAudioCP\THXAudio.exe [1349632 2010-06-11] (Creative Technology Ltd)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [106496 2010-01-22] (NEC Electronics Corporation)
HKLM-x32\...\Run: [MRUTray] => C:\Program Files (x86)\Marvell\raid\tray\MarvellTray.exe [731176 2010-02-09] ()
HKLM-x32\...\Run: [JMB36X IDE Setup] => C:\Windows\RaidTool\xInsIDE.exe [36864 2009-12-24] ()
HKLM-x32\...\Run: [ASUS AI Direct Link Command Execute] => C:\Program Files (x86)\ASUS\AI Suite II\AI Direct Link\AsCmd.exe [383104 2010-05-18] (ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [AgentMonitor] => h:\VTech\DownloadManager\System\AgentMonitor.exe
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [RazerCortex] => C:\Program Files (x86)\Razer\Razer Cortex\RazerCortex.exe [98256 2015-07-30] (Razer Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6109776 2015-08-05] (AVAST Software)
HKLM-x32\...\Run: [BCU] => C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe [375000 2009-10-26] (DeviceVM, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\Run: [GoogleChromeAutoLaunch_D3810CBA069D576EE06BEBC3CE829050] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896 2015-08-07] (Google Inc.)
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\Run: [Google Update] => C:\Users\Yoan2\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-03-23] (Google Inc.)
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\Run: [Akamai NetSession Interface] => C:\Users\Yoan2\AppData\Local\Akamai\netsession_win.exe [4691384 2015-07-23] (Akamai Technologies, Inc.)
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\Run: [DisplayFusion] => C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe [6886752 2015-01-07] (Binary Fortress Software)
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [37152 2015-05-11] (Glarysoft Ltd)
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\Run: [Spotify Web Helper] => C:\Users\Yoan2\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018360 2015-08-12] (Spotify Ltd)
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\Run: [Plex Media Server] => C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [5973640 2015-06-11] (Plex, Inc.)
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\Run: [MyComGames] => C:\Users\Yoan2\AppData\Local\MyComGames\MyComGames.exe [4071368 2015-07-29] ()
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\Overwolf.exe [41200 2015-08-09] (Overwolf LTD)
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\Run: [OneDrive] => C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\OneDrive.exe [402632 2015-08-09] (Microsoft Corporation)
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [GoogleChromeAutoLaunch_D3810CBA069D576EE06BEBC3CE829050] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896 2015-08-07] (Google Inc.)
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Google Update] => C:\Users\Yoan2\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-03-23] (Google Inc.)
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Akamai NetSession Interface] => C:\Users\Yoan2\AppData\Local\Akamai\netsession_win.exe [4691384 2015-07-23] (Akamai Technologies, Inc.)
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [DisplayFusion] => C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe [6886752 2015-01-07] (Binary Fortress Software)
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [37152 2015-05-11] (Glarysoft Ltd)
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Spotify Web Helper] => C:\Users\Yoan2\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018360 2015-08-12] (Spotify Ltd)
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Plex Media Server] => C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [5973640 2015-06-11] (Plex, Inc.)
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [MyComGames] => C:\Users\Yoan2\AppData\Local\MyComGames\MyComGames.exe [4071368 2015-07-29] ()
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\Overwolf.exe [41200 2015-08-09] (Overwolf LTD)
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [OneDrive] => C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\OneDrive.exe [402632 2015-08-09] (Microsoft Corporation)
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GamersFirst LIVE!.lnk [2013-08-17]
ShortcutTarget: GamersFirst LIVE!.lnk -> C:\Program Files (x86)\GamersFirst\LIVE!\Live.exe (GamersFirst)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2013-08-17]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ObjectDock Plus 2.lnk [2013-08-17]
ShortcutTarget: ObjectDock Plus 2.lnk -> C:\Program Files (x86)\Stardock\ObjectDockPlus2\ObjectDock.exe (Stardock)
Startup: C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip [2013-08-17] ()
Startup: C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SleepMapper Data Card Uploader.lnk [2015-08-05]
ShortcutTarget: SleepMapper Data Card Uploader.lnk -> C:\Program Files (x86)\SleepMapper Data Card Uploader\SleepMapper Data Card Uploader.exe ()
Startup: C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Stardock ObjectDock.lnk [2013-08-17]
ShortcutTarget: Stardock ObjectDock.lnk -> C:\Program Files (x86)\Stardock\ObjectDockPlus2\ObjectDock.exe (Stardock)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll [2015-08-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll [2015-08-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll [2015-08-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-08-05] (AVAST Software)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\FileSyncShell.dll [2015-08-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\FileSyncShell.dll [2015-08-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\FileSyncShell.dll [2015-08-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.)
CHR HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
CHR HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://ca.yhs4.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://ca.yahoo.com?fr=hp-avast&type=avastbcl
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://ca.yhs4.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://ca.yahoo.com?fr=hp-avast&type=avastbcl
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
URLSearchHook: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005 - SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch64.dll (DeviceVM, Inc.)
URLSearchHook: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005 - SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll (DeviceVM, Inc.)
URLSearchHook: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 - SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch64.dll (DeviceVM, Inc.)
URLSearchHook: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 - SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll (DeviceVM, Inc.)
SearchScopes: HKLM-x32 -> DefaultScope {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxp://ca.yhs4.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
SearchScopes: HKLM-x32 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKLM-x32 -> {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxp://ca.yhs4.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
SearchScopes: HKLM-x32 -> {c1d89ae7-449d-4929-b24b-fded04adbe06} URL = hxxp://isearch.glarysoft.com/?q={searchTerms}&src=iesearch
SearchScopes: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005 -> DefaultScope {02F8D674-DFE8-4daf-9B2C-8A131B8E9D4C} URL = hxxp://search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=EGMB
SearchScopes: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005 -> {02F8D674-DFE8-4daf-9B2C-8A131B8E9D4C} URL = hxxp://search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=EGMB
SearchScopes: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005 -> {4C5F41F5-9DFF-4E5A-BD94-857049B81D0B} URL = hxxp://www.youtube.com/results?search_query={searchTerms}
SearchScopes: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005 -> {8371796B-1DFF-4561-B8B0-1DFD2032DE97} URL = hxxp://www.google.com/custom?client=pub-3794288947762788&forid=1&channel=5369970905&ie=UTF-8&oe=UTF-8&safe=active&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=en&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005 -> {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxp://ca.yhs4.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> DefaultScope {02F8D674-DFE8-4daf-9B2C-8A131B8E9D4C} URL = hxxp://search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=EGMB
SearchScopes: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {02F8D674-DFE8-4daf-9B2C-8A131B8E9D4C} URL = hxxp://search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=EGMB
SearchScopes: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {4C5F41F5-9DFF-4E5A-BD94-857049B81D0B} URL = hxxp://www.youtube.com/results?search_query={searchTerms}
SearchScopes: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {8371796B-1DFF-4561-B8B0-1DFD2032DE97} URL = hxxp://www.google.com/custom?client=pub-3794288947762788&forid=1&channel=5369970905&ie=UTF-8&oe=UTF-8&safe=active&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=en&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxp://ca.yhs4.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2014-10-23] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-08-05] (AVAST Software)
BHO: PlayOn -> {9A87E478-A2BD-44C4-9F8C-D3989A5271B1} -> C:\Program Files (x86)\MediaMall\toolbar\pobho64.dll [2015-04-17] (MediaMall Technologies, Inc.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-07-17] (Google Inc.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-10-23] (Oracle Corporation)
BHO: No Name -> {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} -> No File
BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-10-22] (Hewlett-Packard Co.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-06-01] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-08-05] (AVAST Software)
BHO-x32: PlayOn -> {9A87E478-A2BD-44C4-9F8C-D3989A5271B1} -> C:\Program Files (x86)\MediaMall\toolbar\pobho.dll [2015-04-17] (MediaMall Technologies, Inc.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-07-17] (Google Inc.)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-06-01] (Oracle Corporation)
BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22] (Hewlett-Packard Co.)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
Toolbar: HKLM - PlayOn - {9A87E478-A2BD-44C4-9F8C-D3989A5271B1} - C:\Program Files (x86)\MediaMall\toolbar\pobho64.dll [2015-04-17] (MediaMall Technologies, Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-07-17] (Google Inc.)
Toolbar: HKLM-x32 - PlayOn - {9A87E478-A2BD-44C4-9F8C-D3989A5271B1} - C:\Program Files (x86)\MediaMall\toolbar\pobho.dll [2015-04-17] (MediaMall Technologies, Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-07-17] (Google Inc.)
DPF: HKLM-x32 {0D41B8C5-2599-4893-8183-00195EC8D5F9} hxxp://support.asus.com/select/asusTek_sys_ctrl3.cab
DPF: HKLM-x32 {4871A87A-BFDD-4106-8153-FFDE2BAC2967} hxxp://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.5.7.cab
DPF: HKLM-x32 {6A060448-60F9-11D5-A6CD-0002B31F7455}
DPF: HKLM-x32 {6C269571-C6D7-4818-BCA4-32A035E8C884} hxxp://ccfiles.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/110926/CTPID.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 208.122.23.22 208.122.23.23
Tcpip\..\Interfaces\{07d08562-845a-43e2-8251-4851d107c97f}: [DhcpNameServer] 208.122.23.22 208.122.23.23
Tcpip\..\Interfaces\{737ac502-b176-4220-a992-8ac62813902c}: [DhcpNameServer] 64.71.255.198 64.71.255.253

FireFox:
========
FF ProfilePath: C:\Users\Yoan2\AppData\Roaming\Mozilla\Firefox\Profiles\h6chord6.default
FF DefaultSearchEngine: Yahoo! (Avast)
FF DefaultSearchUrl: https://ca.search.yahoo.com/yhs/search
FF SearchEngineOrder.1: Yahoo! (Avast)
FF SelectedSearchEngine: Yahoo! (Avast)
FF Homepage: https://ca.yahoo.com?fr=hp-avast&type=avastbcl
FF Keyword.URL: https://ca.search.yahoo.com/yhs/search
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-12] ()
FF Plugin: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-10-23] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2014-10-23] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-12] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1218158.dll [2015-04-17] (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2013-10-01] ()
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2009-05-12] (DivX,Inc.)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-06-01] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-06-01] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-04-08] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-04-08] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [2012-05-27] (Pando Networks)
FF Plugin-x32: @playon.tv/PlayOnToolbar -> C:\Program Files (x86)\MediaMall\toolbar\npVT.dll [2014-09-26] (MediaMall Technologies, Inc.)
FF Plugin-x32: @raidcall.en/RCplugin -> C:\Users\Yoan2\AppData\Roaming\raidcall\plugins\nprcplugin.dll [2013-03-30] (Raidcall)
FF Plugin-x32: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll [2013-02-14] (RocketLife, LLP)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2215824855-1170150186-1298706218-1005: @my.com/Games -> C:\Users\Yoan2\AppData\Local\MyComGames\NPMyComDetector.dll [2015-07-29] (My.com, Inc)
FF Plugin HKU\S-1-5-21-2215824855-1170150186-1298706218-1005: @nsroblox.roblox.com/launcher -> C:\Users\Yoan2\AppData\Local\Roblox\Versions\version-6e655c3defe448aa\\NPRobloxProxy.dll [2012-12-26] ( Roblox Corporation)
FF Plugin HKU\S-1-5-21-2215824855-1170150186-1298706218-1005: @talk.google.com/GoogleTalkPlugin -> C:\Users\Yoan2\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-2215824855-1170150186-1298706218-1005: @talk.google.com/O1DPlugin -> C:\Users\Yoan2\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-2215824855-1170150186-1298706218-1005: @tools.google.com/Google Update;version=3 -> C:\Users\Yoan2\AppData\Local\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin HKU\S-1-5-21-2215824855-1170150186-1298706218-1005: @tools.google.com/Google Update;version=9 -> C:\Users\Yoan2\AppData\Local\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin HKU\S-1-5-21-2215824855-1170150186-1298706218-1005: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Yoan2\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-04-13] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-2215824855-1170150186-1298706218-1005: @unity3d.com/UnityPlayer64,version=1.0 -> C:\Users\Yoan2\AppData\LocalLow\Unity\WebPlayer\loader-x64\npUnity3D64.dll [2012-11-12] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-2215824855-1170150186-1298706218-1005: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [2012-05-27] (Pando Networks)
FF Plugin HKU\S-1-5-21-2215824855-1170150186-1298706218-1005: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2014-05-11] ()
FF Plugin HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @my.com/Games -> C:\Users\Yoan2\AppData\Local\MyComGames\NPMyComDetector.dll [2015-07-29] (My.com, Inc)
FF Plugin HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @nsroblox.roblox.com/launcher -> C:\Users\Yoan2\AppData\Local\Roblox\Versions\version-6e655c3defe448aa\\NPRobloxProxy.dll [2012-12-26] ( Roblox Corporation)
FF Plugin HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @talk.google.com/GoogleTalkPlugin -> C:\Users\Yoan2\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @talk.google.com/O1DPlugin -> C:\Users\Yoan2\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @tools.google.com/Google Update;version=3 -> C:\Users\Yoan2\AppData\Local\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @tools.google.com/Google Update;version=9 -> C:\Users\Yoan2\AppData\Local\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Yoan2\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-04-13] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @unity3d.com/UnityPlayer64,version=1.0 -> C:\Users\Yoan2\AppData\LocalLow\Unity\WebPlayer\loader-x64\npUnity3D64.dll [2012-11-12] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [2012-05-27] (Pando Networks)
FF Plugin HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2014-05-11] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\libdivx.dll [2009-05-01] (The OpenSSL Project, http://www.openssl.org/)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npCouponPrinter.dll [2009-11-06] (Coupons, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npdivx32.dll [2009-05-12] (DivX,Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npdnu.dll [2009-07-07] (AOL LLC)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npdnupdater2.dll [2009-07-07] (AOL LLC)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMozCouponPrinter.dll [2009-11-06] (Coupons, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\ssldivx.dll [2009-05-01] (The OpenSSL Project, http://www.openssl.org/)
FF Plugin ProgramFiles/Appdata: C:\Users\Yoan2\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Yoan2\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF SearchPlugin: C:\Users\Yoan2\AppData\Roaming\Mozilla\Firefox\Profiles\h6chord6.default\searchplugins\bing-avast.xml [2014-06-08]
FF SearchPlugin: C:\Users\Yoan2\AppData\Roaming\Mozilla\Firefox\Profiles\h6chord6.default\searchplugins\yahoo-avast.xml [2014-07-11]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\glarysearch.xml [2012-03-01]
FF Extension: PlayOn - C:\Users\Yoan2\AppData\Roaming\Mozilla\Firefox\Profiles\h6chord6.default\Extensions\playonplugin@playon.tv [2015-01-02]
FF Extension: Greasemonkey - C:\Users\Yoan2\AppData\Roaming\Mozilla\Firefox\Profiles\h6chord6.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2014-04-05]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-02-01]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-02-01]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-05-01]
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-02-24]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-03-13]

 

[Sparhawk52]

Chrome:
=======
CHR Profile: C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-10-19]
CHR Extension: (TV) - C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Extensions\beobeededemalmllhkmnkinmfembdimh [2013-02-07]
CHR Extension: (YouTube) - C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-05-22]
CHR Extension: (Adblock Plus) - C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-05-02]
CHR Extension: (Google Search) - C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-05-22]
CHR Extension: (Find your way to Oz) - C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgmbnhmcbgnenhcjpmgfhneiiamfijel [2013-02-07]
CHR Extension: (Solitaire) - C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkelcbhdkpcdiiancfjhjcpdinbbfolp [2014-02-17]
CHR Extension: (ICE Quick Stream) - C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpioikmjnfipgphjldakcaocbbpnfabl [2013-11-12]
CHR Extension: (Video Downloader professional) - C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2015-03-16]
CHR Extension: (Mixify Turntables) - C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Extensions\flbjgnhcjdkihdiidhimgkcbmdbamkob [2013-02-07]
CHR Extension: (Google Play Movies) - C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Extensions\fppdphmgcddhjeddoeghpjefkdlccljb [2014-01-22]
CHR Extension: (Unlimited Free VPN - Hola) - C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2014-02-16]
CHR Extension: (Avast Online Security) - C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2013-06-05]
CHR Extension: (Cargo Bridge: Armor Games Edition) - C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlpiaibleklmjieibbnmkignbggodmmj [2013-02-07]
CHR Extension: (vGet Extension (Video Downloader, DLNA)) - C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Extensions\hniladkejehjfchadikcbjmgjaogciic [2015-03-16]
CHR Extension: (The Weather Channel for Chrome) - C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Extensions\iflpcokdamgefbghpdipcibmhlkdopop [2014-02-17]
CHR Extension: (Social Fixer for Facebook) - C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifmhoabcaeehkljcfclfiieohkohdgbb [2014-02-16]
CHR Extension: (90`s Games) - C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Extensions\illbbfoihflomkbpcaaakhijinbnejom [2013-06-05]
CHR Extension: (Little Alchemy) - C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Extensions\knkapnclbofjjgicpkfoagdjohlfjhpd [2013-02-07]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-05]
CHR Extension: (PlayOn) - C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Extensions\lggaaajacmlhgbpldaboipiinndchjgm [2015-01-02]
CHR Extension: (Crescent Solitaire) - C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Extensions\miikdddfofojpphonekhmglhpjpknmbl [2014-02-17]
CHR Extension: (Pyramid Solitaire) - C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlodoemfddfaefdmcijfhhgomcmelecl [2014-02-17]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23]
CHR Extension: (Texas Holdem Poker) - C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojbaogcpfpkhbmjmefladpimcmfggkjl [2014-02-17]
CHR Extension: (Addiction Solitaire) - C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Extensions\pccpnfkgaclkfihepjegbbpnhbncelfb [2014-02-17]
CHR Extension: (Gmail) - C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-05-22]
CHR HKLM-x32\...\Chrome\Extension: [bopakagnckmlgajfccecajhnimjiiedh] - http://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswwebrepchrome-sp.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-13]
CHR HKLM-x32\...\Chrome\Extension: [lggaaajacmlhgbpldaboipiinndchjgm] - C:\Program Files (x86)\MediaMall\toolbar\ce.crx [2014-09-24]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [951936 2012-10-12] (ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [149120 2012-10-12] (ASUSTeK Computer Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-08-05] (AVAST Software)
S3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4047768 2015-07-20] (Avast Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2013-06-28] () [File not signed]
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [326144 2015-07-10] (Microsoft Corporation)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
S3 CDPSvc; C:\Windows\System32\CDPSvc.dll [134144 2015-07-10] (Microsoft Corporation)
R2 cFosSpeedS; C:\Program Files\ASUS\ROG GameFirst\spd.exe [487128 2010-07-27] (cFos Software GmbH)
R2 CoreMessagingRegistrar; C:\Windows\system32\coremessaging.dll [808856 2015-08-09] (Microsoft Corporation)
R2 CoreMessagingRegistrar; C:\Windows\SysWOW64\coremessaging.dll [510976 2015-08-09] (Microsoft Corporation)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2012-01-24] (Creative Labs) [File not signed]
S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2012-01-24] (Creative Labs) [File not signed]
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [286720 2009-08-28] (Creative Technology Ltd) [File not signed]
S3 diagnosticshub.standardcollector.service; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [27136 2015-07-10] (Microsoft Corporation)
R2 DisplayFusionService; C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe [3169648 2015-01-07] (Binary Fortress Software)
S3 DmEnrollmentSvc; C:\Windows\system32\Windows.Internal.Management.dll [267776 2015-07-10] (Microsoft Corporation)
S3 DmEnrollmentSvc; C:\Windows\SysWOW64\Windows.Internal.Management.dll [193024 2015-07-10] (Microsoft Corporation)
S3 embeddedmode; C:\Windows\System32\embeddedmodesvc.dll [87040 2015-07-10] (Microsoft Corporation)
S3 EntAppSvc; C:\Windows\system32\EnterpriseAppMgmtSvc.dll [275456 2015-07-10] (Microsoft Corporation)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155216 2015-07-24] (NVIDIA Corporation)
R2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [8704 2015-07-17] (Hi-Rez Studios) [File not signed]
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2010-10-22] (Hewlett-Packard Co.) [File not signed]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [89840 2015-03-28] (Hewlett-Packard Company)
S3 icssvc; C:\Windows\System32\tetheringservice.dll [148992 2015-08-09] (Microsoft Corporation)
R3 lfsvc; C:\Windows\SysWOW64\lfsvc.dll [22528 2015-07-10] (Microsoft Corporation)
R3 LicenseManager; C:\Windows\system32\LicenseManagerSvc.dll [21504 2015-07-10] (Microsoft Corporation)
S2 MapsBroker; C:\Windows\System32\moshost.dll [62464 2015-07-10] (Microsoft Corporation)
R2 Marvell RAID; C:\Program Files (x86)\Marvell\raid\svc\mvraidsvc.exe [235560 2010-02-09] ()
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
S3 McComponentHostService; C:\Program Files (x86)\McAfee Security Scan\3.8.150\McCHSvc.exe [235696 2014-04-09] (McAfee, Inc.)
R2 MediaMall Server; C:\Program Files (x86)\MediaMall\MediaMallServer.exe [5886768 2015-08-07] (MediaMall Technologies, Inc.)
R2 MRUWebService; C:\Program Files (x86)\Marvell\raid\Apache2\bin\httpd.exe [24635 2008-06-12] (Apache Software Foundation) [File not signed]
R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-08-09] (Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1871504 2015-07-24] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544592 2015-07-24] (NVIDIA Corporation)
S2 OneSyncSvc; C:\Windows\System32\APHostService.dll [296960 2015-07-10] (Microsoft Corporation)
R2 OneSyncSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
R2 OneSyncSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2007048 2015-08-12] (Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [995568 2015-08-09] (Overwolf LTD)
S3 PimIndexMaintenanceSvc; C:\Windows\System32\PimIndexMaintenance.dll [289280 2015-07-10] (Microsoft Corporation)
S3 PimIndexMaintenanceSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
S3 PimIndexMaintenanceSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2015-08-12] ()
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187048 2015-07-22] ()
S3 RetailDemo; C:\Windows\system32\RDXService.dll [988672 2015-08-02] (Microsoft Corporation)
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [129168 2015-07-30] (Razer Inc.)
S3 SensorDataService; C:\Windows\System32\SensorDataService.exe [1031680 2015-08-09] (Microsoft Corporation)
R3 StateRepository; C:\Windows\system32\windows.staterepository.dll [2674176 2015-07-10] (Microsoft Corporation)
R3 StateRepository; C:\Windows\SysWOW64\windows.staterepository.dll [2049024 2015-07-10] (Microsoft Corporation)
S3 UnistoreSvc; C:\Windows\System32\unistore.dll [1203200 2015-08-09] (Microsoft Corporation)
S3 UnistoreSvc; C:\Windows\SysWOW64\unistore.dll [925696 2015-08-09] (Microsoft Corporation)
S3 UnistoreSvc_Session1; C:\WINDOWS\System32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
S3 UnistoreSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
S3 UserDataSvc; C:\Windows\System32\userdataservice.dll [1420288 2015-08-09] (Microsoft Corporation)
S3 UserDataSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
S3 UserDataSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
S3 vmicvmsession; C:\Windows\System32\ICSvc.dll [506880 2015-07-10] (Microsoft Corporation)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-08-09] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-08-09] (Microsoft Corporation)
S3 WalletService; C:\Windows\system32\WalletService.dll [504320 2015-07-10] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
S2 WiseBootAssistant; C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe [580232 2013-04-25] (WiseCleaner.com) [File not signed]
S3 XblAuthManager; C:\Windows\System32\XblAuthManager.dll [918016 2015-07-10] (Microsoft Corporation)
S3 XblGameSave; C:\Windows\System32\XblGameSave.dll [1149440 2015-07-10] (Microsoft Corporation)
S3 XboxNetApiSvc; C:\Windows\system32\XboxNetApiSvc.dll [1019392 2015-07-10] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-10-12] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2012-10-12] ()
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-08-05] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28144 2015-08-05] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-08-05] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-08-05] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-08-05] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1048344 2015-08-13] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [447944 2015-08-05] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [150672 2015-08-05] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-08-05] (AVAST Software)
R3 CompositeBus; C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys [39936 2015-07-10] (Microsoft Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283200 2012-12-19] (DT Soft Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3436896 2015-07-10] (QLogic Corporation)
R1 FileCrypt; C:\Windows\System32\drivers\filecrypt.sys [83968 2015-07-10] (Microsoft Corporation)
S3 genericusbfn; C:\Windows\System32\drivers\genericusbfn.sys [20992 2015-07-10] (Microsoft Corporation)
R1 GpuEnergyDrv; C:\Windows\System32\drivers\gpuenergydrv.sys [8192 2015-07-10] (Microsoft Corporation)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20160 2015-05-13] (Glarysoft Ltd)
R1 HssDRV6; C:\Windows\system32\DRIVERS\hssdrv6.sys [41224 2012-06-01] (AnchorFree Inc.)
S3 ibbus; C:\Windows\System32\drivers\ibbus.sys [424800 2015-07-10] (Mellanox)
S3 IoQos; C:\Windows\System32\drivers\ioqos.sys [26624 2015-07-10] (Microsoft Corporation)
R3 LGSHidFilt; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys [66800 2013-01-17] (Logitech Inc.)
S0 LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [99168 2015-07-10] (Avago Technologies)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [113880 2015-08-13] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
S3 mlx4_bus; C:\Windows\System32\drivers\mlx4_bus.sys [705376 2015-07-10] (Mellanox)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-08-09] (Microsoft Corporation)
R3 msvad_simple; C:\Windows\system32\drivers\povrtdev.sys [28528 2013-12-17] (MediaMall Technologies, Inc.)
R3 MTsensor; C:\Windows\system32\DRIVERS\ASACPI.sys [17280 2013-05-17] ()
S3 ndfltr; C:\Windows\System32\drivers\ndfltr.sys [76128 2015-07-10] (Mellanox)
R0 ngvss; C:\Windows\System32\Drivers\ngvss.sys [115152 2015-08-05] (AVAST Software)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-07-24] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47976 2015-07-03] (NVIDIA Corporation)
R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [37184 2015-06-12] (Razer, Inc.)
R2 storqosflt; C:\Windows\System32\drivers\storqosflt.sys [61952 2015-07-10] (Microsoft Corporation)
R3 swenum; C:\Windows\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys [17760 2015-07-10] (Microsoft Corporation)
S3 UcmCx0101; C:\Windows\System32\Drivers\UcmCx.sys [61952 2015-07-10] (Microsoft Corporation)
S3 UcmUcsi; C:\Windows\System32\drivers\UcmUcsi.sys [46080 2015-08-09] (Microsoft Corporation)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [273824 2015-07-20] (Avast Software)
R0 WindowsTrustedRT; C:\Windows\System32\drivers\WindowsTrustedRT.sys [106520 2015-07-10] (Microsoft Corporation)
R0 WindowsTrustedRTProxy; C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys [17944 2015-07-10] (Microsoft Corporation)
S3 WinMad; C:\Windows\System32\drivers\winmad.sys [26976 2015-07-10] (Mellanox)
S3 WinVerbs; C:\Windows\System32\drivers\winverbs.sys [59232 2015-07-10] (Mellanox)
S3 xboxgip; C:\Windows\System32\drivers\xboxgip.sys [222720 2015-07-10] (Microsoft Corporation)
S3 xinputhid; C:\Windows\System32\drivers\xinputhid.sys [25600 2015-07-10] (Microsoft Corporation)
U3 idsvc; no ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

NETSVC: dosvc -> C:\Windows\system32\dosvc.dll (Microsoft Corporation)
NETSVC: DcpSvc -> C:\Windows\system32\dcpsvc.dll (Microsoft Corporation)
NETSVC: NetSetupSvc -> C:\Windows\System32\NetSetupSvc.dll (Microsoft Corporation)
NETSVC: dmwappushservice -> C:\Windows\system32\dmwappushsvc.dll (Microsoft Corporation)
NETSVC: XblGameSave -> C:\Windows\System32\XblGameSave.dll (Microsoft Corporation)
NETSVC: XboxNetApiSvc -> C:\Windows\system32\XboxNetApiSvc.dll (Microsoft Corporation)
NETSVC: UsoSvc -> C:\Windows\system32\usocore.dll (Microsoft Corporation)
NETSVC: UserManager -> C:\Windows\System32\usermgr.dll (Microsoft Corporation)
NETSVC: DmEnrollmentSvc -> C:\Windows\system32\Windows.Internal.Management.dll (Microsoft Corporation)
NETSVC: XblAuthManager -> C:\Windows\System32\XblAuthManager.dll (Microsoft Corporation)
NETSVC: RetailDemo -> C:\Windows\system32\RDXService.dll (Microsoft Corporation)
NETSVCx32: NetSetupSvc -> C:\Windows\SysWOW64\NetSetupSvc.dll ==> No File
NETSVCx32: UserManager -> C:\Windows\SysWOW64\usermgr.dll ==> No File

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-13 17:15 - 2015-08-13 17:15 - 00066536 _____ C:\Users\Yoan2\Downloads\FRST.txt
2015-08-13 17:15 - 2015-08-13 17:15 - 00000000 ____D C:\FRST
2015-08-13 17:14 - 2015-08-13 17:15 - 02173952 _____ (Farbar) C:\Users\Yoan2\Downloads\FRST64.exe
2015-08-13 16:58 - 2015-08-13 16:58 - 00003436 _____ C:\Users\Yoan2\Desktop\10863671.htm
2015-08-13 14:50 - 2015-08-13 14:50 - 00016148 _____ C:\WINDOWS\system32\YOAN-PC_Yoan2_HistoryPrediction.bin
2015-08-13 13:57 - 2015-08-13 13:57 - 00383808 _____ C:\WINDOWS\Minidump\081315-24093-01.dmp
2015-08-13 12:31 - 2015-08-13 12:31 - 00003436 _____ C:\Users\Yoan2\Desktop\10864109.htm
2015-08-13 09:30 - 2015-08-13 13:57 - 872489626 ____N C:\WINDOWS\MEMORY.DMP
2015-08-13 09:30 - 2015-08-13 13:57 - 00000000 ____D C:\WINDOWS\Minidump
2015-08-13 09:30 - 2015-08-13 09:30 - 00409864 _____ C:\WINDOWS\Minidump\081315-30500-01.dmp
2015-08-12 21:52 - 2015-08-13 16:00 - 00004152 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{C6BDE619-3322-4267-A02E-C7122E864DBE}
2015-08-12 20:27 - 2015-08-12 20:27 - 00018473 _____ C:\WINDOWS\DirectX.log
2015-08-12 14:05 - 2015-08-12 14:05 - 00003436 _____ C:\Users\Yoan2\Desktop\10883671.htm
2015-08-11 16:12 - 2015-08-11 16:12 - 00003436 _____ C:\Users\Yoan2\Desktop\10988453.htm
2015-08-11 15:14 - 2015-08-08 03:30 - 08020320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-08-11 15:14 - 2015-08-08 03:29 - 01822280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-08-11 15:14 - 2015-08-08 03:19 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-08-11 15:14 - 2015-08-08 03:01 - 01533496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-08-11 15:14 - 2015-08-08 02:48 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-08-11 15:14 - 2015-08-08 02:40 - 00365056 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-08-11 15:14 - 2015-08-08 02:24 - 02415104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-08-11 15:14 - 2015-08-08 02:24 - 01679360 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-08-11 15:14 - 2015-08-08 02:22 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2015-08-11 15:14 - 2015-08-08 02:21 - 00642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
2015-08-11 15:14 - 2015-08-08 02:15 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-08-11 15:14 - 2015-08-08 02:00 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-08-11 15:14 - 2015-08-05 23:18 - 00290768 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2015-08-11 15:14 - 2015-08-05 23:17 - 00237392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2015-08-11 15:14 - 2015-08-05 23:17 - 00200528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2015-08-11 15:14 - 2015-08-05 22:36 - 21874176 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-08-11 15:14 - 2015-08-05 22:22 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2015-08-11 15:14 - 2015-08-05 22:03 - 18805248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-08-11 15:14 - 2015-08-05 00:49 - 00783112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-08-11 15:14 - 2015-08-05 00:29 - 00644128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2015-08-11 15:14 - 2015-08-05 00:03 - 02416640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-08-11 15:14 - 2015-08-05 00:00 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2015-08-11 15:14 - 2015-08-04 23:54 - 01274880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-08-11 15:14 - 2015-08-04 23:47 - 03588096 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-08-11 15:14 - 2015-08-04 23:47 - 01383424 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-08-11 15:14 - 2015-08-04 23:43 - 01916416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-08-11 15:14 - 2015-08-04 23:39 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenter.dll
2015-08-11 15:14 - 2015-08-04 00:08 - 02462648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-08-11 15:14 - 2015-08-04 00:07 - 00102752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2015-08-11 15:14 - 2015-08-04 00:06 - 00583128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-08-11 15:14 - 2015-08-04 00:06 - 00243248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-08-11 15:14 - 2015-08-03 23:50 - 02151208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-08-11 15:14 - 2015-08-03 23:23 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2015-08-11 15:14 - 2015-08-03 23:21 - 16709120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-08-11 15:14 - 2015-08-03 23:10 - 13025792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-08-11 15:14 - 2015-08-03 22:59 - 01212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-08-11 15:14 - 2015-08-03 22:47 - 00898560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2015-08-11 15:14 - 2015-08-02 22:32 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2015-08-11 15:14 - 2015-08-02 22:28 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll
2015-08-11 15:14 - 2015-08-02 22:19 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2015-08-11 15:14 - 2015-08-02 22:19 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2015-08-11 15:14 - 2015-08-02 22:18 - 08613200 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2015-08-11 15:14 - 2015-08-02 22:18 - 01983840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-08-11 15:14 - 2015-08-02 22:18 - 00594472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2015-08-11 15:14 - 2015-08-02 22:18 - 00046432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpiowin32.sys
2015-08-11 15:14 - 2015-08-02 22:17 - 00516960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-08-11 15:14 - 2015-08-02 22:17 - 00052264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys
2015-08-11 15:14 - 2015-08-02 22:13 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-08-11 15:14 - 2015-08-02 22:12 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-08-11 15:14 - 2015-08-02 21:56 - 06878256 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2015-08-11 15:14 - 2015-08-02 21:50 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-08-11 15:14 - 2015-08-02 21:49 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2015-08-11 15:14 - 2015-08-02 21:31 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2015-08-11 15:14 - 2015-08-02 21:30 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
2015-08-11 15:14 - 2015-08-02 21:24 - 24592384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-08-11 15:14 - 2015-08-02 21:24 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2015-08-11 15:14 - 2015-08-02 21:24 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2015-08-11 15:14 - 2015-08-02 21:24 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll
2015-08-11 15:14 - 2015-08-02 21:23 - 02446336 _____ C:\WINDOWS\system32\InputService.dll
2015-08-11 15:14 - 2015-08-02 21:23 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2015-08-11 15:14 - 2015-08-02 21:22 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-08-11 15:14 - 2015-08-02 21:22 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-08-11 15:14 - 2015-08-02 21:22 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2015-08-11 15:14 - 2015-08-02 21:22 - 00293376 _____ C:\WINDOWS\system32\TextInputFramework.dll
2015-08-11 15:14 - 2015-08-02 21:21 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2015-08-11 15:14 - 2015-08-02 21:19 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2015-08-11 15:14 - 2015-08-02 21:19 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2015-08-11 15:14 - 2015-08-02 21:18 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-08-11 15:14 - 2015-08-02 21:18 - 03780096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-08-11 15:14 - 2015-08-02 21:18 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2015-08-11 15:14 - 2015-08-02 21:18 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkStatus.dll
2015-08-11 15:14 - 2015-08-02 21:15 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-11 15:14 - 2015-08-02 21:15 - 01290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-08-11 15:14 - 2015-08-02 21:15 - 00988672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-08-11 15:14 - 2015-08-02 21:15 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2015-08-11 15:14 - 2015-08-02 21:15 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2015-08-11 15:14 - 2015-08-02 21:15 - 00384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2015-08-11 15:14 - 2015-08-02 21:15 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2015-08-11 15:14 - 2015-08-02 21:14 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-08-11 15:14 - 2015-08-02 21:14 - 00247808 _____ C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-11 15:14 - 2015-08-02 21:12 - 19323392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-08-11 15:14 - 2015-08-02 21:12 - 01890304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-08-11 15:14 - 2015-08-02 21:12 - 01823232 _____ C:\WINDOWS\SysWOW64\InputService.dll
2015-08-11 15:14 - 2015-08-02 21:12 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2015-08-11 15:14 - 2015-08-02 21:12 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll
2015-08-11 15:14 - 2015-08-02 21:11 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-11 15:14 - 2015-08-02 21:11 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2015-08-11 15:14 - 2015-08-02 21:11 - 00200704 _____ C:\WINDOWS\SysWOW64\TextInputFramework.dll
2015-08-11 15:14 - 2015-08-02 21:10 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2015-08-11 15:14 - 2015-08-02 21:06 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2015-08-11 15:14 - 2015-08-02 21:03 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2015-08-11 15:14 - 2015-08-02 21:02 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2015-08-11 15:14 - 2015-08-02 21:02 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2015-08-11 15:14 - 2015-08-02 21:01 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-08-11 15:14 - 2015-08-02 21:00 - 01593856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-08-11 15:14 - 2015-08-02 20:59 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2015-08-11 13:31 - 2015-08-11 13:31 - 01384064 _____ (Skype Technologies S.A.) C:\Users\Yoan2\Downloads\SkypeSetup (1).exe
2015-08-11 13:31 - 2015-08-11 13:31 - 00003224 _____ C:\WINDOWS\System32\Tasks\{5BCDEE9A-ABE2-4A80-A8C7-260E2DA86A9B}
2015-08-11 13:30 - 2015-08-11 13:30 - 01384064 _____ (Skype Technologies S.A.) C:\Users\Yoan2\Downloads\SkypeSetup.exe
2015-08-11 12:46 - 2015-08-11 12:46 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2015-08-09 22:38 - 2015-08-09 22:38 - 00003436 _____ C:\Users\Yoan2\Desktop\92918171.htm
2015-08-09 22:38 - 2015-08-09 22:38 - 00000000 ____D C:\Users\Yoan2\AppData\Local\MicrosoftEdge
2015-08-09 21:50 - 2015-08-09 21:50 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2015-08-09 20:44 - 2015-08-13 17:00 - 00000000 ____D C:\Users\Yoan2\AppData\Local\Deployment
2015-08-09 19:39 - 2015-08-09 19:39 - 00002375 _____ C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-08-09 19:37 - 2015-08-09 21:43 - 00000000 ____D C:\Users\Yoan2\AppData\Local\Packages
2015-08-09 19:37 - 2015-08-09 19:37 - 00000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2015-08-09 19:37 - 2015-08-09 19:37 - 00000000 ____D C:\Users\Yoan2\AppData\Local\TileDataLayer
2015-08-09 19:37 - 2015-08-09 19:37 - 00000000 ____D C:\Users\Yoan2\AppData\Local\Publishers
2015-08-09 19:37 - 2015-08-09 19:37 - 00000000 ____D C:\Users\DefaultAppPool
2015-08-09 19:37 - 2015-08-08 20:48 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-09 19:37 - 2015-08-08 20:48 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Macromedia
2015-08-09 19:37 - 2015-07-10 07:04 - 00000000 __RSD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-08-09 19:37 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-09 19:37 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-08-09 19:37 - 2015-07-10 07:04 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-08-09 19:37 - 2015-03-23 17:33 - 00002104 _____ C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2015-08-09 19:36 - 2015-08-09 19:36 - 00000020 ___SH C:\Users\Yoan2\ntuser.ini
2015-08-09 00:40 - 2015-08-09 19:36 - 00000000 ___DC C:\WINDOWS\Panther
2015-08-09 00:37 - 2015-08-09 00:37 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 11557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 09889792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 07523328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 06305792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 04760576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 04532304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-08-09 00:37 - 2015-08-09 00:37 - 04398080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 04350464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 04169728 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 04047288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-08-09 00:37 - 2015-08-09 00:37 - 03687936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 02878000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 02662400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 02224128 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 02147080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 02116448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-08-09 00:37 - 2015-08-09 00:37 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 01773056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 01611264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 01562968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 01561872 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 01411072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 01356368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 01200400 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-08-09 00:37 - 2015-08-09 00:37 - 01085776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 01067520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 01043872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 01031680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2015-08-09 00:37 - 2015-08-09 00:37 - 01025840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-08-09 00:37 - 2015-08-09 00:37 - 00916800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00896144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00877016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00845664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00750592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00713312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00705520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efscore.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00569344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00527952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00521216 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00445240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2015-08-09 00:37 - 2015-08-09 00:37 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00407616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00403968 _____ C:\WINDOWS\system32\diagtrack_wininternal.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00333168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemcpl.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00285632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2015-08-09 00:37 - 2015-08-09 00:37 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00252768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00242264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2015-08-09 00:37 - 2015-08-09 00:37 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00181088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00097128 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00082616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2015-08-09 00:37 - 2015-08-09 00:37 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-08-09 00:37 - 2015-08-09 00:37 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2015-08-09 00:37 - 2015-08-09 00:37 - 00000000 ____D C:\Windows.old

 

[Sparhawk52]

2015-08-09 00:36 - 2015-08-09 00:36 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 07051264 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 06488312 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 05118024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 05076480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 04611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 03362816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 02741760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 02606080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 02558976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 02207744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 02112512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01867160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01769056 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01591856 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01521664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01420288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01365072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01334784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-08-09 00:36 - 2015-08-09 00:36 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01177600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01169408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01135312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 01112064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01101792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-08-09 00:36 - 2015-08-09 00:36 - 00991584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00966424 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00934752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2015-08-09 00:36 - 2015-08-09 00:36 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00823336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00808856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00762896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 00695136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00658568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00654848 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00632168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00630160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00607008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00601344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-08-09 00:36 - 2015-08-09 00:36 - 00593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2015-08-09 00:36 - 2015-08-09 00:36 - 00562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 00521568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00507696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00505344 _____ C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-08-09 00:36 - 2015-08-09 00:36 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00425824 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 00412672 _____ C:\WINDOWS\system32\diagtrack_win.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 00335248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00325984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2015-08-09 00:36 - 2015-08-09 00:36 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00290312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00265480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00208736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OmaDmAgent.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2015-08-09 00:36 - 2015-08-09 00:36 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2015-08-09 00:36 - 2015-08-09 00:36 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2015-08-09 00:36 - 2015-08-09 00:36 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\unenrollhook.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00061280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2015-08-09 00:36 - 2015-08-09 00:36 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmprc.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2015-08-09 00:36 - 2015-08-09 00:36 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\VoiceActivationManager.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VoiceActivationManager.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00032768 _____ C:\WINDOWS\system32\LicenseManagerApi.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-08-09 00:35 - 2015-08-09 00:35 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2015-08-09 00:30 - 2015-08-09 00:30 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2015-08-09 00:30 - 2015-08-09 00:30 - 00000000 ____D C:\WINDOWS\system32\msmq
2015-08-09 00:30 - 2015-08-09 00:30 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2015-08-09 00:30 - 2015-08-09 00:30 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-08-09 00:30 - 2015-08-09 00:30 - 00000000 ____D C:\Program Files\MSBuild
2015-08-09 00:30 - 2015-08-09 00:30 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-08-09 00:30 - 2015-08-09 00:30 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-08-09 00:30 - 2015-08-09 00:30 - 00000000 ____D C:\inetpub
2015-08-09 00:29 - 2015-06-17 22:10 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-08-09 00:29 - 2015-06-17 22:10 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-09 00:29 - 2015-06-17 22:10 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-08-09 00:29 - 2015-05-30 01:07 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-08-09 00:29 - 2015-05-30 01:07 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-09 00:29 - 2015-05-30 01:07 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-08-08 20:55 - 2015-08-08 20:55 - 00000000 __SHD C:\Recovery
2015-08-08 20:54 - 2015-08-08 20:54 - 00022744 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-08-08 20:52 - 2015-08-12 13:49 - 00002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-08-08 20:48 - 2015-08-08 20:48 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-08-08 20:48 - 2015-08-08 20:48 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2015-08-08 20:48 - 2015-08-08 20:48 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2015-08-08 20:46 - 2015-08-08 20:46 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2015-08-08 20:45 - 2015-08-13 13:57 - 00000000 ____D C:\Users\Yoan2
2015-08-08 20:45 - 2015-08-09 19:37 - 00000000 ___RD C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-08 20:45 - 2015-07-10 07:04 - 00000000 __RSD C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-08-08 20:45 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-08 20:45 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-08-08 20:45 - 2015-07-10 07:04 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-08-08 20:44 - 2015-07-10 06:59 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2015-08-08 20:42 - 2015-08-13 14:03 - 01005598 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-08-08 20:42 - 2015-08-13 13:57 - 00000000 ____D C:\ProgramData\NVIDIA
2015-08-08 20:42 - 2015-08-08 20:46 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-08-08 20:42 - 2015-08-08 20:46 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-08-08 20:42 - 2015-08-08 20:46 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-08-08 20:42 - 2015-08-08 20:43 - 00021209 _____ C:\WINDOWS\iis.log
2015-08-08 20:42 - 2015-08-08 20:42 - 00961296 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2015-08-08 20:42 - 2015-08-08 20:42 - 00018960 _____ (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LNonPnP.sys
2015-08-08 20:42 - 2015-08-08 20:42 - 00000388 _____ C:\WINDOWS\LkmdfCoInst.log
2015-08-08 20:42 - 2015-08-08 20:42 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2015-08-08 20:42 - 2015-08-08 20:42 - 00000000 ____D C:\Program Files\Realtek
2015-08-08 20:42 - 2015-07-22 21:10 - 06873928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-08-08 20:42 - 2015-07-22 21:10 - 03493008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2015-08-08 20:42 - 2015-07-22 21:10 - 02558608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-08-08 20:42 - 2015-07-22 21:10 - 00937800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-08-08 20:42 - 2015-07-22 21:10 - 00385168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-08-08 20:42 - 2015-07-22 21:10 - 00062608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-08-08 20:42 - 2015-07-22 00:29 - 05121613 _____ C:\WINDOWS\system32\nvcoproc.bin
2015-08-08 20:41 - 2015-08-08 20:41 - 00023225 _____ C:\WINDOWS\system32\NetSetupMig.log
2015-08-08 20:40 - 2015-08-13 09:30 - 00012290 _____ C:\WINDOWS\PFRO.log
2015-08-08 20:13 - 2015-08-08 20:55 - 00006608 _____ C:\WINDOWS\comsetup.log
2015-08-08 20:12 - 2015-08-08 20:55 - 00010449 _____ C:\WINDOWS\diagerr.xml
2015-08-08 20:12 - 2015-08-08 20:55 - 00009528 _____ C:\WINDOWS\diagwrn.xml
2015-08-08 14:13 - 2015-08-08 14:13 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\ts3overlay
2015-08-08 14:09 - 2015-08-13 17:09 - 00000000 ____D C:\Users\Yoan2\AppData\Local\Purplizer
2015-08-08 14:08 - 2015-08-11 13:17 - 00000000 ____D C:\Program Files (x86)\Overwolf
2015-08-08 14:08 - 2015-08-08 20:54 - 00003838 _____ C:\WINDOWS\System32\Tasks\Overwolf Updater Task
2015-08-08 14:08 - 2015-08-08 20:49 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
2015-08-08 14:08 - 2015-08-08 14:08 - 00001975 _____ C:\Users\Public\Desktop\Overwolf.lnk
2015-08-08 14:08 - 2015-08-08 14:08 - 00000000 ____D C:\ProgramData\Overwolf
2015-08-07 18:46 - 2015-08-08 20:49 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Avengers Snapshots
2015-08-07 18:46 - 2015-08-07 18:57 - 00000000 ____D C:\Users\Yoan2\AppData\Local\Avengers Snapshots
2015-08-07 18:46 - 2015-08-07 18:55 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\vlc
2015-08-07 18:46 - 2015-08-07 18:46 - 00001742 _____ C:\Users\Yoan2\Desktop\Avengers Snapshots.lnk
2015-08-07 18:46 - 2015-08-07 18:46 - 00000000 ____D C:\ProgramData\Avengers Snapshots
2015-08-07 18:46 - 2015-08-07 18:46 - 00000000 ____D C:\ProgramData\Avengers
2015-08-07 18:41 - 2015-08-08 20:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ffdshow
2015-08-07 18:41 - 2015-08-07 18:46 - 00000000 ____D C:\Program Files\Avengers Snapshots
2015-08-07 18:41 - 2015-08-07 18:41 - 00000000 ____D C:\Program Files (x86)\V25
2015-08-07 18:41 - 2015-08-07 18:41 - 00000000 ____D C:\Program Files (x86)\MTA
2015-08-07 18:41 - 2010-05-29 15:56 - 00084264 _____ (Windows (R) Codename Longhorn DDK provider) C:\WINDOWS\system32\Drivers\jl2005c.sys
2015-08-07 18:41 - 2008-12-17 19:22 - 00057344 _____ C:\WINDOWS\SysWOW64\ff_vfw.dll
2015-08-07 18:41 - 2008-12-11 13:26 - 00060273 _____ (Open Source Software community project) C:\WINDOWS\SysWOW64\pthreadGC2.dll
2015-08-07 18:41 - 2005-08-10 10:44 - 00015360 _____ (JEILIN Technology Corp.) C:\WINDOWS\SysWOW64\jl2005c.ax
2015-08-05 21:33 - 2015-08-05 21:33 - 00378880 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2015-08-05 21:33 - 2015-08-05 21:33 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2015-08-05 11:30 - 2015-08-05 11:30 - 00002315 _____ C:\Users\Public\Desktop\SleepMapper Data Card Uploader.lnk
2015-08-05 11:30 - 2015-08-05 11:30 - 00000000 ____D C:\Users\Yoan2\SleepMapperDataCardUploaderSettings
2015-08-05 11:29 - 2015-08-08 20:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SleepMapper Data Card Uploader
2015-08-05 11:29 - 2015-08-05 11:29 - 00000000 ____D C:\Program Files (x86)\SleepMapper Data Card Uploader
2015-08-05 11:28 - 2015-08-05 11:29 - 34137072 _____ (Philips Respironics) C:\Users\Yoan2\Downloads\SleepMapper_Data_Card_Uploader_windows.exe
2015-08-05 03:40 - 2015-08-05 03:40 - 42740552 _____ C:\WINDOWS\system32\nvcompiler.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 37759304 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 30529168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 22983824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 18385304 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 16169160 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 16021920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 15762912 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 14521840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 13285144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 12983920 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 11852096 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 11153224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-08-05 03:40 - 2015-08-05 03:40 - 03360576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 02971920 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 02371216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 02174280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 01908368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435362.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 01569080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 01567888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435362.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 01173904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 01071248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 01063240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 00999864 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 00993608 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 00985248 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 00206152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2015-08-05 03:40 - 2015-08-05 03:40 - 00187136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 00165512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 00161064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 00137224 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 00041784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2015-07-29 18:37 - 2015-08-08 20:45 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\My.com
2015-07-29 18:37 - 2015-07-29 18:37 - 00000122 _____ C:\Users\Yoan2\Desktop\Skyforge My.com.url
2015-07-29 17:50 - 2015-08-13 13:58 - 00000000 ____D C:\Users\Yoan2\AppData\Local\MyComGames
2015-07-29 17:50 - 2015-08-08 20:49 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\My.com Games
2015-07-29 17:50 - 2015-07-29 17:50 - 00002015 _____ C:\Users\Yoan2\Desktop\My.com Game Center.lnk
2015-07-29 17:49 - 2015-07-29 17:50 - 04542960 _____ C:\Users\Yoan2\Downloads\SkyforgeLoader_en.exe
2015-07-27 15:57 - 2015-07-27 15:57 - 07436840 _____ C:\Users\Yoan2\Downloads\ts3_overlay-v3.8.23.ts3_plugin
2015-07-23 04:02 - 2015-07-23 04:02 - 00031976 _____ C:\WINDOWS\system32\nvinfo.pb
2015-07-22 20:24 - 2015-07-22 20:24 - 00000000 ____D C:\Users\Yoan2\AppData\Local\CEF
2015-07-20 17:37 - 2015-08-05 21:33 - 00115152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\ngvss.sys
2015-07-20 13:50 - 2015-07-03 00:28 - 00069992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2015-07-20 13:50 - 2015-07-03 00:28 - 00065896 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2015-07-20 13:50 - 2015-07-03 00:28 - 00047976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2015-07-17 12:09 - 2015-07-17 12:10 - 16765230 _____ C:\Users\Yoan2\Downloads\ZygorGuides-5.0.12358.zip
2015-07-17 11:56 - 2015-08-04 12:31 - 00000000 ____D C:\TEamspeak
2015-07-17 11:56 - 2015-07-17 11:56 - 00000698 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2015-07-17 11:55 - 2015-07-17 11:56 - 28115400 _____ (TeamSpeak Systems GmbH) C:\Users\Yoan2\Downloads\TeamSpeak3-Client-win32-3.0.16.exe
2015-07-17 11:47 - 2015-07-17 11:47 - 00000000 __SHD C:\found.001
2015-07-17 11:42 - 2015-07-17 11:42 - 00000000 ____D C:\Users\Yoan2\AppData\Local\OCCT_-_Ocbase_-_Adrien_Me
2015-07-17 11:38 - 2015-07-17 11:38 - 03195602 _____ C:\Users\Yoan2\Downloads\elvui-8.19.zip
2015-07-17 11:38 - 2015-07-17 11:38 - 01803840 _____ C:\Users\Yoan2\Downloads\ElvUI Kkthnx 7.0.3 r8 (1).zip
2015-07-17 11:34 - 2015-07-17 11:34 - 05506635 _____ (Geeks3D ) C:\Users\Yoan2\Downloads\FurMark_1.16.0.0_Setup.exe
2015-07-17 11:20 - 2015-07-17 11:20 - 00000000 ____D C:\Users\Yoan2\Documents\OCCT
2015-07-17 11:16 - 2015-08-08 20:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OCCT
2015-07-17 11:16 - 2015-07-17 11:16 - 00000971 _____ C:\Users\Yoan2\Desktop\OCCT.lnk
2015-07-17 11:16 - 2015-07-17 11:16 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OCCT
2015-07-17 11:16 - 2015-07-17 11:16 - 00000000 ____D C:\Program Files (x86)\OCCTPT
2015-07-17 11:15 - 2015-07-17 11:16 - 06932340 _____ C:\Users\Yoan2\Downloads\OCCTPT4.4.1.exe

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-13 17:15 - 2013-08-14 15:53 - 00000000 ____D C:\Users\Yoan2\AppData\Local\Battle.net
2015-08-13 17:09 - 2012-09-03 01:57 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Skype
2015-08-13 16:47 - 2012-01-24 18:11 - 00000898 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-08-13 16:46 - 2012-06-26 13:20 - 00000908 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2215824855-1170150186-1298706218-1005UA.job
2015-08-13 16:34 - 2012-03-11 18:34 - 00000904 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2215824855-1170150186-1298706218-1001UA.job
2015-08-13 16:21 - 2015-05-11 16:09 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-08-13 16:16 - 2014-08-20 19:46 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-08-13 15:44 - 2012-11-25 16:32 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Mumble
2015-08-13 15:35 - 2015-07-10 08:22 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-08-13 15:24 - 2014-09-19 00:03 - 00001158 _____ C:\Users\Public\Desktop\Auto Clicker by Shocker.lnk
2015-08-13 14:47 - 2012-01-24 18:11 - 00000894 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-13 14:14 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-08-13 14:07 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\rescache
2015-08-13 13:58 - 2013-10-17 15:56 - 00000000 ____D C:\Users\Yoan2\AppData\Local\Overwolf
2015-08-13 13:57 - 2015-07-10 08:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-08-13 13:57 - 2015-01-02 16:54 - 00000000 ____D C:\ProgramData\MediaMall
2015-08-13 13:57 - 2013-05-11 22:01 - 00000422 _____ C:\WINDOWS\Tasks\Wise Care 365.job
2015-08-13 13:57 - 2013-05-11 21:24 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Wise Care 365
2015-08-13 13:57 - 2012-01-24 18:49 - 00000008 _____ C:\WINDOWS\mvraidver.dat
2015-08-13 13:42 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-08-13 13:32 - 2015-03-13 22:48 - 01048344 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2015-08-13 13:27 - 2015-07-10 05:05 - 00131072 ___SH C:\WINDOWS\system32\config\BBI
2015-08-13 09:30 - 2012-04-06 10:36 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2015-08-12 22:34 - 2012-03-11 18:34 - 00000852 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2215824855-1170150186-1298706218-1001Core.job
2015-08-12 21:46 - 2012-06-26 13:20 - 00000856 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2215824855-1170150186-1298706218-1005Core.job
2015-08-12 20:40 - 2015-05-10 19:06 - 00000000 ____D C:\Users\Yoan2\AppData\Local\Spotify
2015-08-12 20:40 - 2015-05-10 19:05 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Spotify
2015-08-12 20:27 - 2012-05-27 21:03 - 00281872 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2015-08-12 20:27 - 2012-05-27 21:03 - 00076888 _____ C:\WINDOWS\SysWOW64\PnkBstrA.exe
2015-08-12 20:27 - 2012-04-06 10:29 - 00281872 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2015-08-12 18:34 - 2012-05-22 22:16 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Origin
2015-08-12 18:34 - 2012-04-05 22:27 - 00000000 ____D C:\ProgramData\Origin
2015-08-12 18:33 - 2012-04-12 00:36 - 00000000 ____D C:\Program Files (x86)\Origin
2015-08-12 18:23 - 2013-10-17 15:57 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\TS3Client
2015-08-12 11:08 - 2015-03-13 22:48 - 00004280 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2015-08-12 11:04 - 2015-07-10 08:20 - 00198400 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-08-12 11:04 - 2014-04-30 21:24 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-08-12 11:04 - 2014-04-30 21:24 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-08-12 11:03 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-12 11:03 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-12 11:03 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-08-12 11:03 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-08-12 11:03 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-08-12 10:52 - 2014-04-30 21:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-08-12 10:51 - 2015-06-02 08:55 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-08-12 10:45 - 2015-06-02 08:55 - 132483416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-08-12 10:44 - 2015-07-10 06:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-08-12 06:21 - 2015-05-11 16:09 - 00003804 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-08-11 13:31 - 2012-09-03 01:56 - 00000000 ____D C:\ProgramData\Skype
2015-08-11 13:14 - 2015-07-12 10:20 - 00001329 _____ C:\Users\Public\Desktop\Razer Cortex.lnk
2015-08-11 13:09 - 2015-07-09 15:14 - 00000258 __RSH C:\ProgramData\ntuser.pol
2015-08-11 12:46 - 2015-07-10 08:20 - 00026866 _____ C:\WINDOWS\setupact.log
2015-08-11 08:23 - 2012-10-04 10:45 - 00000000 ____D C:\Users\Yoan2\AppData\Local\Akamai
2015-08-10 19:49 - 2013-08-14 15:53 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Battle.net
2015-08-10 04:23 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\appcompat
2015-08-09 19:39 - 2015-03-23 17:33 - 00000000 ___RD C:\Users\Yoan2\OneDrive
2015-08-09 19:37 - 2015-07-10 07:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-08-09 19:37 - 2015-07-10 07:04 - 00000000 ___RD C:\WINDOWS\PrintDialog
2015-08-09 19:37 - 2015-07-10 07:04 - 00000000 ___RD C:\WINDOWS\MiracastView
2015-08-09 19:37 - 2015-07-10 07:04 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-08-09 00:40 - 2015-07-10 07:04 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2015-08-09 00:37 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2015-08-09 00:37 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-08-09 00:37 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\Provisioning
2015-08-09 00:37 - 2015-07-10 05:05 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2015-08-09 00:37 - 2015-07-10 05:05 - 00000000 ____D C:\WINDOWS\system32\Dism
2015-08-09 00:30 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2015-08-09 00:30 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2015-08-09 00:30 - 2015-07-10 07:01 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2015-08-09 00:30 - 2015-07-10 07:01 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
2015-08-09 00:30 - 2015-07-10 07:01 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
2015-08-09 00:30 - 2015-07-10 07:01 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2015-08-09 00:30 - 2015-07-10 07:01 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2015-08-09 00:30 - 2015-07-10 07:01 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb
2015-08-09 00:30 - 2015-07-10 07:01 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb
2015-08-09 00:30 - 2015-07-10 07:01 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb
2015-08-09 00:30 - 2015-07-10 07:01 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2015-08-09 00:30 - 2015-07-10 07:01 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb
2015-08-09 00:30 - 2015-07-10 07:01 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2015-08-09 00:30 - 2015-07-10 07:01 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2015-08-09 00:30 - 2015-07-10 07:01 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2015-08-09 00:30 - 2015-07-10 07:01 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2015-08-09 00:30 - 2015-07-10 07:01 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2015-08-09 00:30 - 2015-07-10 07:01 - 00009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof
2015-08-09 00:30 - 2015-07-10 07:00 - 01417728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2015-08-09 00:30 - 2015-07-10 07:00 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2015-08-09 00:30 - 2015-07-10 07:00 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2015-08-09 00:30 - 2015-07-10 07:00 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2015-08-09 00:30 - 2015-07-10 07:00 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2015-08-09 00:30 - 2015-07-10 07:00 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2015-08-09 00:30 - 2015-07-10 07:00 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2015-08-09 00:30 - 2015-07-10 07:00 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2015-08-09 00:30 - 2015-07-10 07:00 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2015-08-09 00:30 - 2015-07-10 07:00 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2015-08-09 00:30 - 2015-07-10 07:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2015-08-09 00:30 - 2015-07-10 07:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2015-08-09 00:30 - 2015-07-10 07:00 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2015-08-09 00:30 - 2015-07-10 07:00 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2015-08-09 00:30 - 2015-07-10 07:00 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2015-08-09 00:30 - 2015-07-10 07:00 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2015-08-09 00:30 - 2015-07-10 07:00 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2015-08-09 00:30 - 2015-07-10 07:00 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2015-08-09 00:30 - 2015-07-10 07:00 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2015-08-09 00:30 - 2015-07-10 07:00 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2015-08-09 00:30 - 2015-07-10 07:00 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2015-08-08 22:00 - 2013-05-11 22:01 - 00000402 _____ C:\WINDOWS\Tasks\Wise Turbo Checker.job
2015-08-08 20:55 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\Registration
2015-08-08 20:54 - 2015-07-10 07:04 - 00000000 __RSD C:\WINDOWS\Media
2015-08-08 20:54 - 2015-07-10 07:04 - 00000000 __RHD C:\Users\Public\Libraries
2015-08-08 20:54 - 2015-03-23 17:38 - 00003292 _____ C:\WINDOWS\System32\Tasks\{1C7DD4BA-5505-4F3C-A7F7-7C4299C0EF58}
2015-08-08 20:54 - 2015-03-14 10:40 - 00003420 _____ C:\WINDOWS\System32\Tasks\GlaryInitialize 5
2015-08-08 20:54 - 2015-03-14 10:40 - 00003080 _____ C:\WINDOWS\System32\Tasks\GU5SkipUAC
2015-08-08 20:54 - 2014-12-23 20:30 - 00003996 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-08-08 20:54 - 2014-06-24 09:00 - 00002930 _____ C:\WINDOWS\System32\Tasks\Core Temp Autostart Yoan2
2015-08-08 20:54 - 2014-05-28 14:14 - 00002882 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-08-08 20:54 - 2013-10-01 19:22 - 00003314 _____ C:\WINDOWS\System32\Tasks\{A2932869-229C-4B96-9C15-C859AAA45128}
2015-08-08 20:54 - 2013-08-29 12:38 - 00003220 _____ C:\WINDOWS\System32\Tasks\{7F1A1D3F-B8FE-401E-970B-EACDDBFCDA58}
2015-08-08 20:54 - 2013-05-11 22:01 - 00003326 _____ C:\WINDOWS\System32\Tasks\Wise Turbo Checker
2015-08-08 20:54 - 2013-05-11 22:01 - 00002958 _____ C:\WINDOWS\System32\Tasks\Wise Care 365
2015-08-08 20:54 - 2013-03-01 12:14 - 00003456 _____ C:\WINDOWS\System32\Tasks\HP Photo Creations Communicator
2015-08-08 20:54 - 2012-08-05 13:44 - 00003230 _____ C:\WINDOWS\System32\Tasks\{45842536-A1E6-4D1E-AB19-D56A7C75BF37}
2015-08-08 20:54 - 2012-07-23 17:33 - 00003168 _____ C:\WINDOWS\System32\Tasks\{F0DD35AE-11DD-4A62-9097-FCAAC9252BE9}
2015-08-08 20:54 - 2012-06-26 13:20 - 00003988 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2215824855-1170150186-1298706218-1005UA
2015-08-08 20:54 - 2012-06-26 13:20 - 00003592 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2215824855-1170150186-1298706218-1005Core
2015-08-08 20:54 - 2012-01-24 18:11 - 00004004 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-08-08 20:54 - 2012-01-24 18:11 - 00003752 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-08-08 20:50 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\spool
2015-08-08 20:49 - 2015-07-12 13:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2015-08-08 20:49 - 2015-07-10 07:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-08 20:49 - 2015-07-10 05:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-08-08 20:49 - 2015-07-09 14:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SysTools Hard Drive Data Recovery
2015-08-08 20:49 - 2015-07-02 20:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plex Media Server
2015-08-08 20:49 - 2015-05-02 21:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Handbrake
2015-08-08 20:49 - 2015-04-30 11:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YNAB 4
2015-08-08 20:49 - 2015-04-23 15:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft
2015-08-08 20:49 - 2015-04-23 08:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Coupons
2015-08-08 20:49 - 2015-04-08 20:12 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Elder Scrolls Online
2015-08-08 20:49 - 2015-03-23 18:00 - 00000000 ____D C:\WINDOWS\en
2015-08-08 20:49 - 2015-03-22 16:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Utilities
2015-08-08 20:49 - 2015-03-22 16:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite
2015-08-08 20:49 - 2015-03-18 21:36 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn Time
2015-08-08 20:49 - 2015-03-16 13:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-08-08 20:49 - 2015-03-14 10:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
2015-08-08 20:49 - 2015-03-13 22:48 - 00000000 ____D C:\WINDOWS\SysWOW64\vbox
2015-08-08 20:49 - 2015-03-13 22:48 - 00000000 ____D C:\WINDOWS\system32\vbox

 

[Sparhawk52]

2015-08-08 20:49 - 2015-02-18 19:23 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MakeMKV
2015-08-08 20:49 - 2015-01-02 16:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PlayOn
2015-08-08 20:49 - 2014-10-06 11:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PingPlotter Pro
2015-08-08 20:49 - 2014-10-06 11:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ipswitch Visual Traceroute
2015-08-08 20:49 - 2014-09-19 00:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auto Clicker by Shocker
2015-08-08 20:49 - 2014-08-20 21:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DOSBox-0.74
2015-08-08 20:49 - 2014-08-20 19:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-08-08 20:49 - 2014-06-24 08:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Core Temp
2015-08-08 20:49 - 2014-06-23 16:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-08-08 20:49 - 2014-06-22 12:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinDirStat
2015-08-08 20:49 - 2014-06-22 11:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2015-08-08 20:49 - 2014-06-15 20:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hi-Rez Studios
2015-08-08 20:49 - 2014-06-09 08:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
2015-08-08 20:49 - 2014-03-22 11:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PalaceChat
2015-08-08 20:49 - 2014-02-17 11:01 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-08-08 20:49 - 2014-01-16 01:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DisplayFusion
2015-08-08 20:49 - 2013-11-30 20:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Port Forwarding
2015-08-08 20:49 - 2013-10-29 18:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-08-08 20:49 - 2013-10-17 15:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2015-08-08 20:49 - 2013-09-19 17:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\My Singing Monsters
2015-08-08 20:49 - 2013-08-22 23:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Echo - Secret of the Lost Cavern
2015-08-08 20:49 - 2013-08-22 22:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Twilight Phenomena - Strange Menagerie Collector's Edition
2015-08-08 20:49 - 2013-05-11 21:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Game Booster
2015-08-08 20:49 - 2013-05-11 21:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Care 365
2015-08-08 20:49 - 2012-12-11 01:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Player Classic - Home Cinema
2015-08-08 20:49 - 2012-12-05 20:59 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2015-08-08 20:49 - 2012-11-17 00:20 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-08-08 20:49 - 2012-10-15 13:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2015-08-08 20:49 - 2012-08-28 11:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft
2015-08-08 20:49 - 2012-08-16 14:05 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2015-08-08 20:49 - 2012-07-23 17:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-08-08 20:49 - 2012-07-18 21:37 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2015-08-08 20:49 - 2012-07-10 11:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Guild Wars 2
2015-08-08 20:49 - 2012-06-22 08:59 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Curse
2015-08-08 20:49 - 2012-06-09 12:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Registry Cleaner
2015-08-08 20:49 - 2012-06-09 11:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-08-08 20:49 - 2012-06-08 14:04 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AIM for Windows
2015-08-08 20:49 - 2012-06-06 22:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Tanks
2015-08-08 20:49 - 2012-05-27 16:35 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-08-08 20:49 - 2012-04-12 00:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2015-08-08 20:49 - 2012-04-08 13:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey
2015-08-08 20:49 - 2012-03-15 18:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Combined Community Codec Pack
2015-08-08 20:49 - 2012-03-15 11:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIM
2015-08-08 20:49 - 2012-03-02 20:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MobMapUpdater
2015-08-08 20:49 - 2012-02-24 18:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2015-08-08 20:49 - 2012-02-15 09:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2015-08-08 20:49 - 2012-01-30 19:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-08-08 20:49 - 2012-01-24 22:44 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2015-08-08 20:49 - 2012-01-24 22:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2015-08-08 20:49 - 2012-01-24 19:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp
2015-08-08 20:49 - 2012-01-24 19:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rainmeter
2015-08-08 20:49 - 2012-01-24 18:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative
2015-08-08 20:49 - 2012-01-24 18:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-08 20:49 - 2012-01-24 18:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Marvell
2015-08-08 20:49 - 2012-01-24 18:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-08-08 20:49 - 2009-07-14 01:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-08-08 20:48 - 2015-07-10 07:05 - 00004362 _____ C:\WINDOWS\DtcInstall.log
2015-08-08 20:48 - 2009-07-13 23:20 - 00000000 ____D C:\Users\Default.migrated
2015-08-08 20:46 - 2015-07-10 09:14 - 00000000 ____D C:\WINDOWS\ShellNew
2015-08-08 20:46 - 2015-07-10 07:04 - 00000000 __SHD C:\Program Files\Windows Sidebar
2015-08-08 20:46 - 2015-07-10 07:04 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2015-08-08 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2015-08-08 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2015-08-08 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2015-08-08 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\Recovery
2015-08-08 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-08-08 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\IME
2015-08-08 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\schemas
2015-08-08 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-08-08 20:46 - 2015-05-11 16:19 - 00000000 ____D C:\WINDOWS\SysWOW64\Adobe
2015-08-08 20:46 - 2015-04-15 10:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tukui
2015-08-08 20:46 - 2015-03-14 16:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Western Digital Corporation
2015-08-08 20:46 - 2014-10-13 12:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-08-08 20:46 - 2014-10-06 11:34 - 00000000 __SHD C:\WINDOWS\SysWOW64\AI_RecycleBin
2015-08-08 20:46 - 2014-05-02 22:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blizzard Classics
2015-08-08 20:46 - 2013-03-20 03:00 - 00000000 ____D C:\WINDOWS\system32\SPReview
2015-08-08 20:46 - 2013-03-20 03:00 - 00000000 ____D C:\WINDOWS\system32\EventProviders
2015-08-08 20:46 - 2013-02-25 15:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SIX Networks
2015-08-08 20:46 - 2013-01-13 11:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VTech
2015-08-08 20:46 - 2012-12-20 00:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Globalscape
2015-08-08 20:46 - 2012-11-25 16:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mumble
2015-08-08 20:46 - 2012-07-30 23:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2015-08-08 20:46 - 2012-07-24 09:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Six Projects
2015-08-08 20:46 - 2012-07-24 09:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bohemia Interactive
2015-08-08 20:46 - 2012-05-27 19:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GamersFirst
2015-08-08 20:46 - 2012-05-17 21:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ventrilo
2015-08-08 20:46 - 2012-01-27 10:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX
2015-08-08 20:46 - 2012-01-24 20:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2015-08-08 20:46 - 2012-01-24 19:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NEC Electronics
2015-08-08 20:46 - 2012-01-24 18:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2015-08-08 20:46 - 2012-01-24 18:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Renesas Electronics
2015-08-08 20:46 - 2009-07-14 03:44 - 00000000 ___RD C:\Users\Public\Recorded TV
2015-08-08 20:46 - 2009-07-14 01:32 - 00000000 ____D C:\Program Files\Microsoft Games
2015-08-08 20:46 - 2009-07-14 01:32 - 00000000 ____D C:\Program Files\DVD Maker
2015-08-08 20:46 - 2009-07-13 23:20 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2015-08-08 20:45 - 2015-07-11 19:49 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ventrilo
2015-08-08 20:45 - 2012-07-24 09:09 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bohemia Interactive
2015-08-08 20:42 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\Help
2015-08-08 20:42 - 2015-07-10 05:05 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-08-08 20:40 - 2015-07-10 05:05 - 00000000 __RHD C:\Users\Default
2015-08-08 20:16 - 2015-05-17 13:09 - 01997241 _____ C:\WINDOWS\WindowsUpdate (1).log
2015-08-08 20:16 - 2009-07-14 00:45 - 00015776 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-08-08 20:16 - 2009-07-14 00:45 - 00015776 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-08-08 20:13 - 2015-07-10 09:39 - 00000000 ___HD C:\$Windows.~BT
2015-08-08 18:25 - 2014-07-19 15:31 - 00000000 ____D C:\Users\Yoan2\AppData\Local\CrashDumps
2015-08-08 11:38 - 2015-07-10 07:06 - 00794088 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-08-08 11:38 - 2015-07-10 07:06 - 00179688 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-08-07 17:51 - 2015-01-02 16:54 - 00000000 ____D C:\Program Files (x86)\MediaMall
2015-08-05 21:33 - 2015-03-16 13:48 - 00028144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2015-08-05 21:33 - 2015-03-13 22:48 - 00447944 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2015-08-05 21:33 - 2015-03-13 22:48 - 00274808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2015-08-05 21:33 - 2015-03-13 22:48 - 00150672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2015-08-05 21:33 - 2015-03-13 22:48 - 00093528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2015-08-05 21:33 - 2015-03-13 22:48 - 00090968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2015-08-05 21:33 - 2015-03-13 22:48 - 00065224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2015-08-05 21:33 - 2015-03-13 22:48 - 00028656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2015-07-28 09:06 - 2012-11-17 00:24 - 00000000 ___RD C:\Users\Yoan2\Dropbox
2015-07-24 00:21 - 2014-06-18 17:40 - 01756608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2015-07-24 00:21 - 2014-06-18 17:40 - 01316000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2015-07-24 00:21 - 2013-11-14 22:16 - 01710568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2015-07-24 00:21 - 2013-11-14 22:16 - 01423304 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2015-07-19 13:07 - 2012-09-03 01:57 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-07-17 23:15 - 2013-08-30 16:26 - 00000003 _____ C:\WINDOWS\system32\HRUPPROG.TXT
2015-07-17 23:15 - 2013-08-13 14:30 - 00000000 ____D C:\Program Files (x86)\Hi-Rez Studios
2015-07-17 11:00 - 2014-12-17 21:08 - 00000000 __SHD C:\Users\Yoan2\AppData\Local\EmieBrowserModeList
2015-07-17 11:00 - 2014-05-07 12:09 - 00000000 __SHD C:\Users\Yoan2\AppData\Local\EmieUserList
2015-07-17 11:00 - 2014-05-07 12:09 - 00000000 __SHD C:\Users\Yoan2\AppData\Local\EmieSiteList
2015-07-14 22:54 - 2013-06-26 14:24 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk

==================== Files in the root of some directories =======

2014-10-06 11:34 - 2014-10-04 23:34 - 0000044 ____H () C:\Program Files (x86)\356d3804.tmp
2013-04-30 12:37 - 2013-04-30 12:37 - 0226293 _____ () C:\Users\Yoan2\AppData\Local\ars.cache
2013-04-30 12:37 - 2013-04-30 12:37 - 1016809 _____ () C:\Users\Yoan2\AppData\Local\census.cache
2013-09-05 11:30 - 2013-09-05 11:30 - 0003349 _____ () C:\Users\Yoan2\AppData\Local\CleanupUninstall.txt
2013-01-13 11:44 - 2013-01-13 12:12 - 0000579 _____ () C:\Users\Yoan2\AppData\Local\cookies.ini
2012-05-23 21:46 - 2014-03-02 22:17 - 0008192 _____ () C:\Users\Yoan2\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-04-30 12:16 - 2013-04-30 12:16 - 0000036 _____ () C:\Users\Yoan2\AppData\Local\housecall.guid.cache
2014-09-04 14:20 - 2014-09-04 14:20 - 0045446 _____ () C:\ProgramData\1409854254.bdinstall.bin
2014-09-04 14:23 - 2014-09-04 14:24 - 0002053 _____ () C:\ProgramData\1409855032.11852.bin
2014-09-04 22:18 - 2014-09-04 22:18 - 0000420 _____ () C:\ProgramData\1409855032.4512.bin
2014-09-04 14:23 - 2014-09-04 22:18 - 0044049 _____ () C:\ProgramData\1409855032.9408.bin
2013-04-15 06:19 - 2013-04-15 06:19 - 0000000 _____ () C:\ProgramData\as98213.txt
2012-11-24 17:56 - 2012-09-25 17:56 - 0000032 ____R () C:\ProgramData\hash.dat
2012-02-24 18:15 - 2015-04-23 09:10 - 0009935 _____ () C:\ProgramData\hpzinstall.log
2013-04-15 06:19 - 2013-04-15 06:20 - 95023320 ____T () C:\ProgramData\iw44f.pad
2013-04-15 06:19 - 2013-04-15 06:19 - 0000151 _____ () C:\ProgramData\iw44f.reg

Files to move or delete:
====================
C:\ProgramData\hash.dat
C:\ProgramData\iw44f.pad
C:\ProgramData\iw44f.reg


Some files in TEMP:
====================
C:\Users\Yoan2\AppData\Local\Temp\sonarinst.exe
C:\Users\Yoan2\AppData\Local\Temp\xuh3mmqs.dll


Some zero byte size files/folders:
==========================
C:\Windows\System32\mv_api.dll
C:\Windows\System32\nvapi.dll
C:\Windows\System32\nvd3dum.dll
C:\Windows\System32\zraidapi.dll

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-08-08 20:40

==================== End of log ============================

 

[Sparhawk52]

And now for the addition.txt log.

Additional scan result of Farbar Recovery Scan Tool (x64) Version:13-08-2015
Ran by Yoan2 (2015-08-13 17:16:04)
Running from C:\Users\Yoan2\Downloads
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2215824855-1170150186-1298706218-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2215824855-1170150186-1298706218-503 - Limited - Disabled)
Guest (S-1-5-21-2215824855-1170150186-1298706218-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2215824855-1170150186-1298706218-1007 - Limited - Enabled)
Yoan2 (S-1-5-21-2215824855-1170150186-1298706218-1005 - Administrator - Enabled) => C:\Users\Yoan2

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 17.0.0.124 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.12) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.8.158 - Adobe Systems, Inc.)
Age of Empires II: HD Edition (HKLM-x32\...\Steam App 221380) (Version: - Hidden Path Entertainment, Ensemble Studios)
AI Suite II (HKLM-x32\...\{34D3688E-A737-44C5-9E2A-FF73618728E1}) (Version: 2.01.01 - ASUSTeK Computer Inc.)
AIM 7 (HKLM-x32\...\AIM_7) (Version: - )
AIM for Windows (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\AIM) (Version: - AOL Inc.)
AIM for Windows (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\AIM) (Version: - AOL Inc.)
Akamai NetSession Interface (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\Akamai) (Version: - Akamai Technologies, Inc)
Akamai NetSession Interface (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Akamai) (Version: - Akamai Technologies, Inc)
Anno 2070 (HKLM-x32\...\Steam App 48240) (Version: - BlueByte / related Design)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Archeage (HKLM-x32\...\Glyph Archeage) (Version: - Trion Worlds, Inc.)
Arctic Combat (HKLM-x32\...\Steam App 212370) (Version: - )
ARK: Survival Evolved (HKLM-x32\...\Steam App 346110) (Version: - Studio Wildcard)
ARMA 2 (HKLM-x32\...\Steam App 33900) (Version: - Bohemia Interactive)
Arma 2: DayZ Mod (HKLM-x32\...\Steam App 224580) (Version: - )
ARMA 2: Operation Arrowhead (HKLM-x32\...\Steam App 33930) (Version: - Bohemia Interactive)
Arma 2: Operation Arrowhead Beta (HKLM-x32\...\Steam App 219540) (Version: - )
Auto Clicker by Shocker (HKLM-x32\...\Auto Clicker by Shocker_is1) (Version: V3.0.1 - shockingsoft.com)
AutoHotkey 1.0.48.05 (HKLM-x32\...\AutoHotkey) (Version: 1.0.48.05 - Chris Mallett)
Avast Pro Antivirus (HKLM-x32\...\Avast) (Version: 10.3.2225 - AVAST Software)
Avengers Snapshots (HKLM-x32\...\Avengers Snapshots) (Version: - )
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.4.2.30944 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version: - )
Big Fish: Game Manager (HKLM-x32\...\BFGC) (Version: 3.2.0.6 - )
Blackthorne (HKLM-x32\...\{C563EEF9-17FF-4563-8B78-82AF0C4577CE}) (Version: 1.0.0 - Blizzard Entertainment)
Browser Configuration Utility (HKLM-x32\...\{D793423B-FF18-4A54-B9C9-75B3396BAAC4}) (Version: 1.0.10.0 - DeviceVM Inc.) <==== ATTENTION
BufferChm (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
C310 (x32 Version: 140.0.304.000 - Hewlett-Packard) Hidden
Call of Duty: Black Ops II - Multiplayer (HKLM-x32\...\Steam App 202990) (Version: - )
Call of Duty: Black Ops II - Zombies (HKLM-x32\...\Steam App 212910) (Version: - )
Call of Duty: Black Ops II (HKLM-x32\...\Steam App 202970) (Version: - )
Casino.com (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\Casino.com) (Version: - )
Casino.com (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Casino.com) (Version: - )
Castle Story (HKLM-x32\...\Steam App 227860) (Version: - Sauropod Studio)
CCleaner (HKLM\...\CCleaner) (Version: 4.14 - Piriform)
Cities XL 2012 (HKLM-x32\...\Steam App 201760) (Version: - )
Cities: Skylines (HKLM-x32\...\Steam App 255710) (Version: - Colossal Order)
Clicker Heroes (HKLM-x32\...\Steam App 363970) (Version: - )
Combined Community Codec Pack 2011-11-11 (HKLM-x32\...\Combined Community Codec Pack_is1) (Version: 2011.11.11.0 - CCCP Project)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Core Temp 1.0 RC6 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu)
Coupon Printer for Windows (HKLM-x32\...\Coupon Printer for Windows5.0.0.0) (Version: 5.0.0.0 - Coupons.com Incorporated)
CPUID ROG CPU-Z 1.58 (HKLM\...\CPUID ROG CPU-Z_is1) (Version: 1.58 - CPUID, Inc.)
Craft The World (HKLM-x32\...\Steam App 248390) (Version: - )
Crysis®3 MP Open Beta (HKLM-x32\...\{02454664-23E6-46B3-9CB3-30870AE3645E}) (Version: 1.0.0.0 - Electronic Arts)
Cube World version 0.0.1 (HKLM-x32\...\{D692A0E0-1BBB-4E9C-826E-4254EE330830}_is1) (Version: 0.0.1 - Picroma)
Curse Client (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse)
Curse Client (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse)
CuteFTP 9 (HKLM-x32\...\{89B9E358-75C6-4C6B-BD38-803FF156CC4B}) (Version: 9.0.0 - Globalscape)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.46.1.0327 - DT Soft Ltd)
Data Lifeguard Diagnostic for Windows 1.28 (HKLM-x32\...\{519C4DB6-B53B-4F5C-8297-89B2BE949FA5}_is1) (Version: - Western Digital Corporation)
DayZ (HKLM-x32\...\Steam App 221100) (Version: - Bohemia Interactive)
DayZ Commander (HKLM-x32\...\{EEFA60F7-E766-4BDC-AB0A-91CE2E38A829}) (Version: 0.9.85 - Dotjosh Studios)
DC Universe Online (HKLM-x32\...\Steam App 24200) (Version: - Sony Online Entertainment)
Dead Space™ (HKLM-x32\...\{9789E33B-317A-44B2-AF9A-FF8708AD93E0}) (Version: 1.0.0.222 - Electronic Arts)
Dead Space™ 3 (HKLM-x32\...\{D4329609-4102-4F8C-B83F-7FE024EEA314}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Destinations (x32 Version: 140.0.77.000 - Hewlett-Packard) Hidden
Deus Ex: Human Revolution - Director's Cut (HKLM-x32\...\Steam App 238010) (Version: - Eidos Montreal)
DeviceDiscovery (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
DisplayFusion 7.1 (HKLM-x32\...\B076073A-5527-4f4f-B46B-B10692277DA2_is1) (Version: 7.1.0.0 - Binary Fortress Software)
District 187 (HKLM-x32\...\Steam App 221080) (Version: - )
DivX Web Player (HKLM-x32\...\{B7050CBDB2504B34BC2A9CA0A692CC29}) (Version: 1.5.0 - DivX,Inc.)
Don't Starve (HKLM-x32\...\Steam App 219740) (Version: - )
DOOM 3: BFG Edition (HKLM-x32\...\Steam App 208200) (Version: - id Software)
Dota 2 (HKLM-x32\...\Steam App 570) (Version: - Valve)
Download Updater (AOL LLC) (HKLM-x32\...\SoftwareUpdUtility) (Version: - ) <==== ATTENTION
DreamPlan Home Design Software (HKLM-x32\...\DreamPlan) (Version: 1.31 - NCH Software)
Dropbox (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\Dropbox) (Version: 3.4.6 - Dropbox, Inc.)
Dropbox (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Dropbox) (Version: 3.4.6 - Dropbox, Inc.)
Dungeonland (HKLM-x32\...\Steam App 218130) (Version: - Critical Studio)
EA Sports™ FIFA World (HKLM-x32\...\{8F9AC744-EEF6-43DB-A4B6-FA1A18F1C640}) (Version: 7.0.0.47449 - Electronic Arts, Inc.)
Echo: Secret of the Lost Cavern (HKLM-x32\...\BFG-Echo - Secret of the Lost Cavern) (Version: - )
Far Cry 3 (HKLM-x32\...\{E3B9C5A9-BD7A-4B56-B754-FAEA7DD6FA88}) (Version: 1.00 - Ubisoft)
ffdshow [rev 2527] [2008-12-19] (HKLM-x32\...\ffdshow_is1) (Version: 1.0 - )
FileZilla Client 3.7.3 (HKLM-x32\...\FileZilla Client) (Version: 3.7.3 - Tim Kosse)
FINAL FANTASY VII (HKLM-x32\...\Steam App 39140) (Version: - Square Enix)
Game Dev Tycoon (HKLM-x32\...\Steam App 239820) (Version: - Greenheart Games)
GamersFirst LIVE! (HKLM-x32\...\GamersFirst LIVE!) (Version: - GamersFirst)
Glary Utilities PRO 5.25 (HKLM-x32\...\Glary Utilities 5) (Version: 5.25.0.44 - Glarysoft Ltd)
Glyph (HKLM-x32\...\Glyph) (Version: - Trion Worlds, Inc.)
Gnomoria (HKLM-x32\...\Steam App 224500) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 44.0.2403.155 - Google Inc.)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Talk Plugin (HKLM-x32\...\{CA3DD97D-1FD7-37A7-BD5C-FC4430C8B8E6}) (Version: 5.41.2.0 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6710.2136 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden
Guild Wars (HKLM-x32\...\Steam App 29720) (Version: - ArenaNet)
Guild Wars (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\Guild Wars) (Version: - )
Guild Wars (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Guild Wars) (Version: - )
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
HandBrake 0.10.1 (HKLM-x32\...\HandBrake) (Version: 0.10.1 - )
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes & Generals (HKLM-x32\...\Steam App 227940) (Version: - Reto-Moto)
Hewlett-Packard ACLM.NET v1.1.0.0 (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
Hitman: Absolution (HKLM-x32\...\Steam App 203140) (Version: - IO Interactive)
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.9.216 - SurfRight B.V.)
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.11352 - HP Photo Creations Powered by RocketLife)
HP Photosmart Prem C310 All-In-One Driver Software 14.0 Rel. 7 (HKLM\...\{4E484899-4F93-4086-88BA-56BDDF47A776}) (Version: 14.0 - HP)
HP Product Detection (HKLM-x32\...\{A436F67F-687E-4736-BD2B-537121A804CF}) (Version: 11.14.0001 - HP)
HP Smart Web Printing 4.60 (HKLM\...\HP Smart Web Printing) (Version: 4.60 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Support Solutions Framework (HKLM-x32\...\{FC3C2B77-6800-48C6-A15D-9D1031130C16}) (Version: 11.51.0049 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPAppStudio (x32 Version: 140.0.95.000 - Hewlett-Packard) Hidden
HPDiagnosticAlert (x32 Version: 1.00.0000 - Microsoft) Hidden
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden
iCloud (HKLM\...\{EAFB2AD8-D92B-464C-8D97-B9CB94703C4A}) (Version: 3.0.2.163 - Apple Inc.)
iFit Module (HKLM-x32\...\iFitModuleAir.A325EF93A9FDC16120FBA0CC8A28360B0E189979.1) (Version: 1.6.0 - ICON Health & Fitness, Inc.)
iFit Module (x32 Version: 1.6.0 - ICON Health & Fitness, Inc.) Hidden
iFitLIVE (HKLM-x32\...\iFitLIVE.A325EF93A9FDC16120FBA0CC8A28360B0E189979.1) (Version: 1.4.0 - ICON Health & Fitness, Inc.)
iFitLIVE (x32 Version: 1.4.0 - ICON Health & Fitness, Inc.) Hidden
Intel(R) Network Connections 16.5.2.0 (HKLM\...\PROSetDX) (Version: 16.5.2.0 - Intel)
Itibiti RTC (x32 Version: 0.0.1 - Itibiti Inc) Hidden
iTunes (HKLM\...\{A04DCB25-7040-4935-A30D-8E0A893ABF2D}) (Version: 11.1.2.32 - Apple Inc.)
Java 7 Update 71 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417071FF}) (Version: 7.0.710 - Oracle)
Java 7 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217071FF}) (Version: 7.0.710 - Oracle)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
JMicron JMB36X Driver (HKLM-x32\...\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}) (Version: 1.00.0000 - JMicron Technology Corp.)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Learning Lodge Navigator (HKLM-x32\...\VTechDownloadManager) (Version: - VTech)
Logitech Gaming Software 8.46 (HKLM\...\Logitech Gaming Software) (Version: 8.46.27 - Logitech Inc.)
MakeMKV v1.9.1 (HKLM-x32\...\MakeMKV) (Version: v1.9.1 - GuinpinSoft inc)
Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
marvell 91xx driver (HKLM-x32\...\MagniDriver) (Version: 1.0.0.1034 - Marvell)
Marvell MRU V4 (HKLM-x32\...\mv61xxMRU) (Version: 4.1.0.1610 - Marvell)
Mass Effect™ 3 (HKLM-x32\...\{534A31BD-20F4-46b0-85CE-09778379663C}) (Version: 1.05.0.0 - Electronic Arts)
Media Player Classic - Home Cinema 1.6.1.4235 (HKLM-x32\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.6.1.4235 - MPC-HC Team)
Metro 2033 (HKLM-x32\...\Steam App 43110) (Version: - THQ)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation)
Microsoft Office Word Viewer 2003 (HKLM-x32\...\{90850409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 26.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 26.0 (x86 en-US)) (Version: 26.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 26.0 - Mozilla)
Mozilla Thunderbird 12.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Thunderbird 12.0.1 (x86 en-US)) (Version: 12.0.1 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Mumble 1.2.10 (HKLM-x32\...\{63243F5C-E941-4461-A4B0-2689A9A3BF13}) (Version: 1.2.10 - Thorvald Natvig)
MURDERED: SOUL SUSPECT™ (HKLM-x32\...\Steam App 233290) (Version: - Airtight Games)
My Singing Monsters (HKLM-x32\...\BFG-My Singing Monsters) (Version: - )
My.com Game Center (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\MyComGames) (Version: 3.140 - My.com B.V.)
My.com Game Center (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MyComGames) (Version: 3.140 - My.com B.V.)
NEC Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}) (Version: 1.0.19.0 - NEC Electronics Corporation)
NEC Electronics USB 3.0 Host Controller Driver (x32 Version: 1.0.19.0 - NEC Electronics Corporation) Hidden
Network64 (Version: 140.0.215.000 - Hewlett-Packard) Hidden
Network64 (Version: 140.0.221.000 - Hewlett-Packard) Hidden
Neverwinter (HKLM-x32\...\Neverwinter) (Version: - Cryptic Studios)
Neverwinter (HKLM-x32\...\Steam App 109600) (Version: - Cryptic Studios)
No More Room in Hell (HKLM-x32\...\Steam App 224260) (Version: - No More Room in Hell Team)
Nosgoth (HKLM-x32\...\Steam App 200110) (Version: 140204.77077 - Square Enix Ltd)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 5.9.8 - )
NVIDIA 3D Vision Controller Driver 349.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 349.95 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 350.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 350.12 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.5.12.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.12.11 - NVIDIA Corporation)
NVIDIA Graphics Driver 350.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 350.12 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0324 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0324 - NVIDIA Corporation)
ObjectDock Plus 2 (HKLM-x32\...\ObjectDock Plus 2) (Version: 1.00 - Stardock Corporation)
OCCT 4.4.1 (HKLM-x32\...\OCCT) (Version: 4.4.1 - Ocbase.com)
Origin (HKLM-x32\...\Origin) (Version: 8.5.2.23 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.88.41.0 - Overwolf Ltd.)
PalaceChat version 4.2.133 (HKLM-x32\...\PalaceChat_is1) (Version: 4.2.133 - )
Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.1 - Pando Networks Inc.)
Path of Exile (HKLM-x32\...\{90A4562F-D4A1-4B65-906D-41F236CF6902}) (Version: 0.10.0.22479 - Grinding Gear Games)
Path of Exile (HKLM-x32\...\Steam App 238960) (Version: - Grinding Gear Games)
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.)
Peggle (HKLM-x32\...\{715AD72D-887A-459E-988B-D4F3E87FA24B}) (Version: 1.04.0.0 - PopCap Games)
PingPlotter Pro 3.42.3p (HKLM-x32\...\{76BFD10E-1701-43F4-BAF9-57FD51724A7A}) (Version: 3.42.3.5 - Nessoft, LLC)
PlanetSide 2 (HKLM-x32\...\Steam App 218230) (Version: - Sony Online Entertainment)
Play withSIX (HKLM-x32\...\{42DCB650-F003-4535-A5CD-32AD815CD2DD}) (Version: 1.20.0370 - SIX Networks)
PlayOn (HKLM-x32\...\{8B400FBF-66BC-4696-8452-BA464464A4CD}) (Version: 3.10.16 - MediaMall Technologies, Inc.)
Plex Media Server (HKLM-x32\...\{10d692ef-81ce-40ac-b82b-058286c058a6}) (Version: 0.9.1204 - Plex, Inc.)
Plex Media Server (x32 Version: 0.9.1204 - Plex, Inc.) Hidden
Popcorn Time (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\Popcorn Time) (Version: - Popcorn Official)
Popcorn Time (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Popcorn Time) (Version: - Popcorn Official)
PS_AIO_07_C310_SW_Min (x32 Version: 140.0.304.000 - Hewlett-Packard) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
QuickTransfer (x32 Version: 140.0.98.000 - Hewlett-Packard) Hidden
RaidCall (HKLM-x32\...\RaidCall) (Version: 7.2.6-1.0.8500.17 - raidcall.com)
Rainmeter (HKLM-x32\...\Rainmeter) (Version: 2.2 r1116 - )
Razer Cortex (HKLM-x32\...\Razer Cortex_is1) (Version: 6.1.7.0 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Red Orchestra 2: Heroes of Stalingrad - Single Player (HKLM-x32\...\Steam App 236830) (Version: - )
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.4.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.4.0 - Renesas Electronics Corporation) Hidden
Rising Storm/Red Orchestra 2 Multiplayer (HKLM-x32\...\Steam App 35450) (Version: - Tripwire Interactive)
ROBLOX Player for Yoan2 (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - ROBLOX Corporation)
ROBLOX Player for Yoan2 (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - ROBLOX Corporation)
ROG GameFirst v4.53 (HKLM\...\ROG GameFirst) (Version: 4.53 - cFos Software GmbH, Bonn)
Safari (HKLM-x32\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
Scan (x32 Version: 140.0.80.000 - Hewlett-Packard) Hidden
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.12.11 - NVIDIA Corporation) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version: - 2K Games, Inc.)
Sid Meier's Civilization: Beyond Earth (HKLM-x32\...\Steam App 65980) (Version: - Firaxis Games)
SimCity 2000 Special Edition (HKLM-x32\...\{59D2C751-F7BE-4E9F-9C8C-1F16013802C7}) (Version: 2.0.0.1 - Electronic Arts)
SimCity 4 Deluxe (HKLM-x32\...\Steam App 24780) (Version: - Maxis)
SimCity™ (HKLM-x32\...\{F70FDE4B-8F86-4eb6-8C8E-636EC89F6419}) (Version: 4.0.86.0859 - Electronic Arts)
Six Updater (HKLM-x32\...\{2D8CED57-CCDB-4D86-9087-3BBCAE8F8F22}) (Version: 2.09.7024 - Six Projects)
skyforge_mycom (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\skyforge_mycom) (Version: 1.28 - My.com B.V.)
skyforge_mycom (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\skyforge_mycom) (Version: 1.28 - My.com B.V.)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation)
Skype™ 7.7 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.7.103 - Skype Technologies S.A.)
Sleeping Dogs™ (HKLM-x32\...\Steam App 202170) (Version: - United Front Games)
SleepMapper Data Card Uploader 2.1.1 (HKLM-x32\...\4414-4382-9884-2117) (Version: 2.1.1 - Philips Respironics)
Smart Port Forwarding (HKLM-x32\...\Smart Port Forwarding) (Version: 1.0.0.1 - Brooks Younce Software)
SmartWebPrinting (x32 Version: 140.0.186.000 - Hewlett-Packard) Hidden
Smite (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF017}) (Version: 2.9.2835.5 - Hi-Rez Studios)
SolutionCenter (x32 Version: 140.0.214.000 - Hewlett-Packard) Hidden
Sound Blaster X-Fi MB 2 (HKLM-x32\...\{89F922D6-E3E0-4303-AF8E-CE18412E3A18}) (Version: 1.0 - Creative Technology Limited)
Spotify (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\Spotify) (Version: 1.0.11.134.ga37df67b - Spotify AB)
Spotify (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Spotify) (Version: 1.0.11.134.ga37df67b - Spotify AB)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.2.25 - Safer-Networking Ltd.)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Starbound (HKLM-x32\...\Steam App 211820) (Version: - )
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Stardock Software (x32 Version: 1.00 - Stardock Corporation) Hidden
Status (x32 Version: 140.0.256.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Supreme Commander 2 (HKLM-x32\...\Steam App 40100) (Version: - Gas Powered Games)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
SysTools Hard Drive Data Recovery v3.3 (HKLM-x32\...\SysTools Hard Drive Data Recovery_is1) (Version: - )
Tap Tap Infinity (HKLM-x32\...\Steam App 380360) (Version: - Scary Bee LLC)
tConfig version 0.35.1a (HKLM-x32\...\{224E185A-DCC7-45C5-B04D-77E6CE82D83E}_is1) (Version: 0.35.1a - Surfpup)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 8 (HKLM-x32\...\TeamViewer 8) (Version: 8.0.20202 - TeamViewer)
Terraria (HKLM-x32\...\Steam App 105600) (Version: - Re-Logic)
Terraria Game Launcher version 3.0 (HKLM-x32\...\Terraria Game Launcher_is1) (Version: 3.0 - Eikester)
The Binding of Isaac (HKLM-x32\...\Steam App 113200) (Version: - )
The Elder Scrolls Online (HKLM-x32\...\The Elder Scrolls Online) (Version: 1.0.0.0 - Zenimax Online Studios)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios)
The Mighty Quest For Epic Loot (HKLM-x32\...\Steam App 239220) (Version: - Ubisoft Montreal)
The War Z version 1.0 (HKLM-x32\...\{BC3051A7-1021-4B57-A3DA-AAC24566FAE7}_is1) (Version: 1.0 - Arktos Entertainment Group LLC)
Theme Hospital (HKLM-x32\...\{5118A4C2-C8A4-4CE5-AC37-F3E51C25402F}) (Version: 3.0.0.2 - Electronic Arts)
Thief (HKLM-x32\...\Steam App 239160) (Version: - Eidos-Montréal)
Tomb Raider (HKLM-x32\...\Steam App 203160) (Version: - Crystal Dynamics)
Toolbox (x32 Version: 140.0.428.000 - Hewlett-Packard) Hidden
Torchlight II (HKLM-x32\...\Steam App 200710) (Version: - )
TrayApp (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Trove (HKLM-x32\...\Glyph Trove) (Version: - Trion Worlds, Inc.)
Tukui Client (HKLM-x32\...\{BAD6EBBD-A6A9-41C9-898A-8C868A552E4C}) (Version: 2.4.6 - Tukui)
Twilight Phenomena: Strange Menagerie Collector's Edition (HKLM-x32\...\BFG-Twilight Phenomena - Strange Menagerie Collector's Edition) (Version: - )
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Ultima 8 (HKLM-x32\...\{428C6B01-D292-46F9-9321-75668ED17DA2}) (Version: 1.0.0.1 - Electronic Arts)
Uninstall Dual Mode Camera (V25) (HKLM-x32\...\V25_2015_0121_1632_is1) (Version: - )
Unity Web Player (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Unity Web Player (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Unturned (HKLM-x32\...\Steam App 304930) (Version: - Nelson Sexton)
VC80CRTRedist - 8.0.50727.762 (x32 Version: 1.0.0 - DivX, Inc) Hidden
Vegas Pro 11.0 (64-bit) (HKLM\...\{CF411A4F-5ED9-11E1-B971-F04DA23A5C58}) (Version: 11.0.595 - Sony)
Ventrilo Client (HKLM-x32\...\{789289CA-F73A-4A16-A331-54D498CE069F}) (Version: 3.0.8 - Flagship Industries, Inc.)
Ventrilo Client for Windows x64 (HKLM\...\{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}) (Version: 3.0.8.0 - Flagship Industries, Inc.)
Villagers and Heroes (HKLM-x32\...\Steam App 263540) (Version: - Mad Otter Games)
Visual Traceroute (HKLM-x32\...\{83B17F6C-F32B-43E1-94AE-F06DAFC7FA32}) (Version: 1.0.101 - Ipswitch, Inc.)
VTech Download Agent Library (x32 Version: 1.00.0000 - VTech) Hidden
WebReg (x32 Version: 140.0.212.017 - Hewlett-Packard) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.623 - Nullsoft, Inc)
WinDirStat 1.1.2 (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\WinDirStat) (Version: - )
WinDirStat 1.1.2 (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\WinDirStat) (Version: - )
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Wing Commander III (HKLM-x32\...\{F96B9930-E22A-44D6-81B5-6C8E92C21B4B}) (Version: 2.0.0.2 - Electronic Arts)
WinRAR 4.10 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.10.0 - win.rar GmbH)
Wise Care 365 version 2.44 (HKLM-x32\...\{E864A1C8-EEE1-47D0-A7F8-00CC86D26D5E}_is1) (Version: 2.44 - WiseCleaner.com, Inc.)
Wise Game Booster 1.12 (HKLM-x32\...\Wise Game Booster_is1) (Version: 1.12 - WiseCleaner.com, Inc.)
Wise Registry Cleaner 7.69 (HKLM-x32\...\Wise Registry Cleaner_is1) (Version: 7.69 - WiseCleaner.com, Inc.)
World of Tanks (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812}_is1) (Version: - Wargaming.net)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
Worms Clan Wars (HKLM-x32\...\Steam App 233840) (Version: - Team17 Digital Ltd)
YNAB 4 version 4.3.729 (HKLM-x32\...\com.ynab.YNAB4.LiveCaptive_is1) (Version: 4.3.729 - YouNeedABudget.com)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{444785F1-DE89-4295-863A-D46C3A781394}\InprocServer32 -> C:\Users\Yoan2\AppData\LocalLow\Unity\WebPlayer\loader-x64\UnityWebPluginAX.ocx (Unity Technologies ApS)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{575fb331-5bba-4e77-8463-1e8d87b2e73c}\InprocServer32 -> C:\Windows\system32\dfshim.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncApi64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{444785F1-DE89-4295-863A-D46C3A781394}\InprocServer32 -> C:\Users\Yoan2\AppData\LocalLow\Unity\WebPlayer\loader-x64\UnityWebPluginAX.ocx (Unity Technologies ApS)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{575fb331-5bba-4e77-8463-1e8d87b2e73c}\InprocServer32 -> C:\Windows\system32\dfshim.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncApi64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 22:34 - 2014-03-19 08:06 - 00450769 ___RA C:\WINDOWS\system32\Drivers\etc\hosts
108.162.204.16 thewarz.com
108.162.205.16 api.thewarz.com
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 123haustiereundmehr.com

 

[Sparhawk52]

There are 1000 more lines.


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00EEBA9C-F9EF-4272-B793-C830FBADD359} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\Windows\system32\dstokenclean.exe [2015-07-10] (Microsoft Corporation)
Task: {059126F0-D1B9-4391-872D-1111C7EF285D} - System32\Tasks\Wise Turbo Checker => C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe [2013-04-26] (WiseCleaner.COM)
Task: {093364DD-AF57-4508-A17F-B79E8BC3C8FA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {0CCA7916-2916-4F12-BD32-1E3BE31E1269} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\Windows\System32\dsregcmd.exe [2015-07-10] (Microsoft Corporation)
Task: {1641F54C-1E57-4902-AB65-EE2B65E5629D} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan => C:\Windows\system32\usoclient.exe [2015-07-10] (Microsoft Corporation)
Task: {195B2AF5-B661-4C7F-966F-5EBC734C5B30} - System32\Tasks\Wise Care 365 => C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe [2013-04-26] (WiseCleaner.com)
Task: {19865544-CE08-40BE-8B8C-87C47681433D} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sihboot => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {1D3D099E-EE1E-4907-8BA2-BA8F12D11AA6} - System32\Tasks\Microsoft\Windows\Location\Notifications => C:\Windows\System32\LocationNotificationWindows.exe [2015-07-10] (Microsoft Corporation)
Task: {2C6DB4F4-EB95-4CF8-830C-0A7C9D65EAF6} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {2C97A00A-1C5C-4318-B5CC-8A1A126B77F9} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\KeyPreGenTask
Task: {3D7E9A95-7F35-4431-BE1A-0DE52085177F} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {3F6E048D-6404-433B-8F5F-CFF4D89BF89E} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe generaltel.dll,RunTelemetryW
Task: {4034FA11-6F38-4ADD-B5CD-66D10D5E0B31} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {406D52BE-3273-4546-A6A4-906763206D83} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-08-05] (AVAST Software)
Task: {41160EA0-208B-4C3E-B4DB-805BBABC6B93} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\Windows\system32\dmclient.exe [2015-07-10] (Microsoft Corporation)
Task: {4454A8D0-2E4E-4A02-BF67-48DF6A7BFAB4} - System32\Tasks\Microsoft\Windows\Maps\MapsUpdateTask
Task: {4806BEC7-0ED6-4723-A243-3E27D9E280E9} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {495BF9D7-60F9-44C2-A49C-8021FC28343A} - System32\Tasks\ASUS\ASUS AI Suite II Execute => C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2012-03-13] (ASUSTeK Computer Inc.)
Task: {530D859B-07BA-4BC9-A716-037C6941545F} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [2015-05-11] (Glarysoft Ltd)
Task: {54341D27-5942-4F87-AB8C-490D00CB6AF4} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {5470888F-FD44-46BB-AFA4-B91B7BE5E8C1} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {571B8305-4FFF-47D5-A3FB-99A5B2152186} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2015-08-09] (Overwolf LTD)
Task: {5909A45E-F430-4269-B72A-BF82FC9A92B8} - System32\Tasks\{1C7DD4BA-5505-4F3C-A7F7-7C4299C0EF58} => pcalua.exe -a "C:\Users\Yoan2\Downloads\wlsetup-web (1).exe" -d C:\Users\Yoan2\Downloads
Task: {59CB53E9-9C5D-4B85-92AD-92C51352EBD4} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {5A756C90-5D6D-4766-BBF3-2570D07118E0} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {5DECB5B0-E3CD-432D-AC76-AF4CA8F0DB56} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {5E5515C1-7D87-4904-B9CE-FD29EB2ADB72} - System32\Tasks\Microsoft\Windows\Sysmain\ResPriStaticDbSync
Task: {611C823C-437B-46E7-9683-5312DFFCFD7B} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install => C:\Windows\system32\usoclient.exe [2015-07-10] (Microsoft Corporation)
Task: {64C4A532-9B1E-45B0-884E-85E542A5B3C3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {69C85107-E6E4-47D6-A914-50D57E127245} - System32\Tasks\{A2932869-229C-4B96-9C15-C859AAA45128} => pcalua.exe -a "C:\Program Files (x86)\Hi-Rez Studios\HiRezGamesDiagAndSupport.exe" -c uninstall=all
Task: {6E4CE09E-A8BD-4F2B-9B82-5EC5DBC9920F} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {711EE2F9-A611-4773-AF8E-D4B278A6718D} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\AikCertEnrollTask
Task: {73551810-E5F4-433E-9494-0D00B55C855E} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTask
Task: {744C9FEA-08B7-43E1-A729-0F94647D655C} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot => C:\Windows\system32\usoclient.exe [2015-07-10] (Microsoft Corporation)
Task: {78B77FA3-9D97-441D-97B6-68CEA40B4F74} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe generaltel.dll,RunTelemetry -maintenance
Task: {78E4A952-EF54-4BC5-A8E1-21B2489E126A} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2215824855-1170150186-1298706218-1001UA => C:\Users\Yoan\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {7A003965-A297-4DC6-B15B-852D798391E0} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot => C:\WINDOWS\system32\MusNotification.exe [2015-08-09] (Microsoft Corporation)
Task: {848DCC36-520C-4946-BF68-C7EFFEFA2F84} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot => C:\windows\system32\MusNotification.exe [2015-08-09] (Microsoft Corporation)
Task: {85CEECC4-9E1F-4C46-9051-5B8009BCA03B} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {8C79A0F5-F278-4DFA-A74E-2A155123F76E} - System32\Tasks\{5BCDEE9A-ABE2-4A80-A8C7-260E2DA86A9B} => c:\windows\system32\launchwinapp.exe [2015-07-10] (Microsoft Corporation)
Task: {8DEE873A-FADA-4DDD-A38A-E976E21CDCB5} - System32\Tasks\{45842536-A1E6-4D1E-AB19-D56A7C75BF37} => pcalua.exe -a H:\downloads\acidpro70c.exe -d H:\downloads
Task: {8DF84CB3-D8E0-4307-A35B-CA74E21786DB} - System32\Tasks\Microsoft\Windows\Clip\License Validation => C:\Windows\system32\ClipUp.exe [2015-08-09] (Microsoft Corporation)
Task: {91EEE95A-E3CD-4763-A683-4FE2AA623622} - System32\Tasks\Microsoft\Windows\SetupSQMTask => C:\WINDOWS\SYSTEM32\OOBE\SETUPSQM.EXE [2015-07-10] (Microsoft Corporation)
Task: {94BBCACE-C4CF-461B-A306-7E50780CFDEC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-19] (Google Inc.)
Task: {950DD47A-A45A-4F57-9E48-A4727C381A37} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {9760CD89-AD8B-4C9A-8748-1EDFF5741A21} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {9EE08649-B8AD-4478-B8A4-B9FB4FD16434} - System32\Tasks\{7F1A1D3F-B8FE-401E-970B-EACDDBFCDA58} => Chrome.exe http://ui.skype.com/ui/0/6.7.59.102/en/go/help.faq.installer?LastError=112
Task: {A0FDE821-0692-40DE-9721-977A1BBA6C3B} - System32\Tasks\Microsoft\Windows\RetailDemo\CleanupOfflineContent
Task: {A18EACEF-FD99-47AA-9E18-08EF1EB71B37} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {A2B64717-1142-4127-9A75-FF9FEB4DEB63} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {A364E297-00AD-490D-900E-22AC34598C71} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install => C:\Windows\system32\usoclient.exe [2015-07-10] (Microsoft Corporation)
Task: {A4F90324-922B-463B-92B4-17D62044914A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-19] (Google Inc.)
Task: {A5B6CD85-1B57-49B9-BA80-5D5D65F02826} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager
Task: {A69EE772-7EA6-4747-BFA4-7F4F1499B0FB} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {A723FA4E-62E7-4A5A-891F-4C6791C37842} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {A9108718-FACD-4890-AC22-72BA0AC8A41C} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {A9422B7C-95B1-44CF-82C9-FB09FBED0637} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {AC29E64E-3271-47BA-B8F1-914523CF379B} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Automatic App Update
Task: {AC63349B-E6D0-406D-9A3B-B8F0A6518EC4} - System32\Tasks\Core Temp Autostart Yoan2 => C:\Program Files\Core Temp\Core Temp.exe [2013-10-08] ()
Task: {ADE2F4D6-FE8A-43CC-8B1B-137B4020C796} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {B0AF1099-A5E5-4A25-B96C-93A3A200FDE3} - System32\Tasks\ASUS\ASUS RegRun Loader => C:\Program Files (x86)\ASUS\AASP\1.01.02\AsLoader.exe [2009-12-28] (ASUSTeK Computer Inc.)
Task: {B176823B-B24B-4036-98B2-E6FBDE3456F8} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {B380A902-6B7B-4CF9-8FA3-E372D358C210} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {B427C49E-EA99-48A9-997D-43F474F4B186} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {B58FE319-86C7-4DE7-9304-C6EFA9E88A0D} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {B699E3AA-2BEA-4E8D-902D-EE1CE6FA7846} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {B9B36D41-C776-424E-9A13-5387E17A2CEB} - System32\Tasks\Microsoft\Windows\WCM\WiFiTask => C:\Windows\System32\WiFiTask.exe [2015-07-10] (Microsoft Corporation)
Task: {BCEBC9F7-01A9-484B-82E6-ECF6E0CD38A6} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {C1F2A4F6-AA1D-4CDC-9882-9339472E4F5A} - System32\Tasks\GlaryInitialize 5 => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe [2015-05-11] (Glarysoft Ltd)
Task: {C2162702-FFEB-48C0-AA5F-2DA3A8887D61} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\Installation
Task: {C3C8321E-2AC6-41F6-976D-F31E892BACA0} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {C4592693-BB85-4E5A-9DF6-F338B358BAE6} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {C56AFFD3-06B8-4A16-AF7E-F7A6EB3FAE9E} - System32\Tasks\Microsoft\Windows\TPM\Tpm-HASCertRetr
Task: {C5EE2EA2-5312-4D1F-B9D0-41B18DF31B78} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sih => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {C6CF8F42-6855-459E-AEBE-5735A43A302C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {C7A236B2-12E1-46DC-9501-3B1B0209CC09} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\Windows\System32\WindowsActionDialog.exe [2015-07-10] (Microsoft Corporation)
Task: {C7D4D1A1-B3D3-4ED8-8406-BE224904624C} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {CEE31615-3BEA-4D4F-86FD-805406B5741D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-12] (Adobe Systems Incorporated)
Task: {D00046E4-6CD5-4826-AC39-3F021BDF6635} - System32\Tasks\{F0DD35AE-11DD-4A62-9097-FCAAC9252BE9} => C:\Users\Yoan2\Downloads\301.42-desktop-win7-winvista-64bit-english-whql.exe
Task: {D2401052-A382-42DE-9C79-D1CF3563F654} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\Uninstallation
Task: {D33BCBD6-31E2-4DB4-B596-05ED27EFCC4A} - System32\Tasks\HP Photo Creations Communicator => C:\ProgramData\HP Photo Creations\Communicator.exe [2013-03-01] ()
Task: {D52FC474-C0DE-489B-B742-74C0421E986B} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {D6B5D304-5E71-4496-AB1B-40DD81862169} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-05-20] (Piriform Ltd)
Task: {DAF2BAE3-1C5B-4CB5-9F62-0911C031A15A} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics => C:\Windows\system32\disksnapshot.exe [2015-07-10] (Microsoft Corporation)
Task: {DEAB3144-B60A-4E9F-897E-F84357232B7C} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2215824855-1170150186-1298706218-1005Core => C:\Users\Yoan2\AppData\Local\Google\Update\GoogleUpdate.exe [2012-03-23] (Google Inc.)
Task: {E0A525A4-53F1-4F9D-BD62-041D3EB7A1B2} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2215824855-1170150186-1298706218-1005UA => C:\Users\Yoan2\AppData\Local\Google\Update\GoogleUpdate.exe [2012-03-23] (Google Inc.)
Task: {E159B038-7229-453D-9258-ECC09B630FE1} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {E4A4EEE6-3F90-43FA-A34C-A671E2033F87} - System32\Tasks\ASUS\Easy Update => C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe [2012-10-08] ()
Task: {EA3F661E-B31C-44A9-B40C-E3D5D56149D4} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display => C:\windows\system32\MusNotification.exe [2015-08-09] (Microsoft Corporation)
Task: {EE5AE38E-8C2F-4EDC-A274-028BBD688BDF} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2215824855-1170150186-1298706218-1001Core => C:\Users\Yoan\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {EF70A885-312A-4F7E-B6DF-255CF5D66978} - \Desk 365 RunAsStdUser -> No File <==== ATTENTION
Task: {F7677660-E4AE-4C58-A756-04F73CC12AF1} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {FFECEBD8-5FF5-4540-B628-3E0DEFFA5401} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\Check for updates (Spybot - Search & Destroy).job => 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
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2215824855-1170150186-1298706218-1001Core.job => C:\Users\Yoan\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2215824855-1170150186-1298706218-1001UA.job => C:\Users\Yoan\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2215824855-1170150186-1298706218-1005Core.job => C:\Users\Yoan2\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2215824855-1170150186-1298706218-1005UA.job => C:\Users\Yoan2\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\HP Photo Creations Communicator.job => C:\ProgramData\HP Photo Creations\Communicator.exe
Task: C:\WINDOWS\Tasks\Refresh immunization (Spybot - Search & Destroy).job => 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
Task: C:\WINDOWS\Tasks\Scan the system (Spybot - Search & Destroy).job => 0x010601007127FCB205ABBD44A617FA8904189345460098010000000000000000200000000014730F0000000003130400C02000010000000000000000000000000000000000003E0043003A005C00500072006F006700720061006D002000460069006C00650073002000280078003800360029005C0053007000790062006F00740020002D002000530065006100720063006800200026002000440065007300740072006F007900200032005C00530044005300630061006E002E00650078006500000012002F007300630061006E0020002F0063006C00650061006E0063006C006F0073006500000000001C0053007000790062006F00740020002D002000530065006100720063006800200026002000440065007300740072006F007900200032000000320041002000660075006C006C002000730079007300740065006D0020007300630061006E0020006900730020007200650063006F006D006D0065006E0064006500640020006F006E0063006500200070006500720020006D006F006E00740068002E000000000008000313040000000000010030000000DE070300130000000000000000001E000000000000000000000000000300000001000000FF0F000000000000
Task: C:\WINDOWS\Tasks\Wise Care 365.job => C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe
Task: C:\WINDOWS\Tasks\Wise Turbo Checker.job => C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe

==================== Loaded Modules (Whitelisted) ==============

2015-08-09 00:36 - 2015-08-09 00:36 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-08-08 20:42 - 2015-07-22 21:10 - 00116552 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00403968 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2012-05-27 21:03 - 2015-08-12 20:27 - 00076888 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2015-07-22 17:30 - 2015-07-22 17:30 - 00187048 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2010-02-09 04:35 - 2010-02-09 04:35 - 00235560 _____ () C:\Program Files (x86)\Marvell\raid\svc\mvraidsvc.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 02498808 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2012-01-24 19:43 - 2010-09-22 16:20 - 00776704 _____ () C:\Program Files (x86)\Stardock\ObjectDockPlus2\Dock64.dll
2013-12-19 21:21 - 2012-10-08 18:48 - 01404800 _____ () C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 02498808 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2012-01-24 18:43 - 2012-01-09 20:44 - 00193536 _____ () C:\Program Files\WinRAR\rarext.dll
2015-07-10 06:59 - 2015-07-10 06:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-08-11 15:14 - 2015-08-02 21:11 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-07-10 07:00 - 2015-07-10 09:14 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-08-11 15:14 - 2015-08-02 21:08 - 01806848 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-08-11 15:14 - 2015-08-02 21:09 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-06-16 09:49 - 2015-06-16 09:49 - 00016384 ____N () C:\Users\Yoan2\AppData\Local\Apps\2.0\TNMLLMY5.7RX\NNT8C0LD.4VE\curs..tion_9e9e83ddf3ed3ead_0005.0001_fb8944c2684f5b6c\Curse.CurseClient.WowDb.dll
2015-06-16 09:49 - 2015-06-16 09:49 - 00035840 ____N () C:\Users\Yoan2\AppData\Local\Apps\2.0\TNMLLMY5.7RX\NNT8C0LD.4VE\curs..tion_9e9e83ddf3ed3ead_0005.0001_fb8944c2684f5b6c\Curse.Advertising.dll
2015-06-16 09:49 - 2015-06-16 09:49 - 00099840 ____N () C:\Users\Yoan2\AppData\Local\Apps\2.0\TNMLLMY5.7RX\NNT8C0LD.4VE\curs..tion_9e9e83ddf3ed3ead_0005.0001_fb8944c2684f5b6c\Curse.CurseClient.CMOD2.dll
2015-08-05 11:29 - 2015-03-19 11:22 - 00583664 _____ () C:\Program Files (x86)\SleepMapper Data Card Uploader\SleepMapper Data Card Uploader.exe
2010-02-09 04:35 - 2010-02-09 04:35 - 00731176 _____ () C:\Program Files (x86)\Marvell\raid\tray\MarvellTray.exe
2015-07-12 11:36 - 2015-07-12 11:36 - 00142336 _____ () H:\Games\Steam\steamapps\common\Clicker Heroes\Clicker Heroes.exe
2014-09-19 00:03 - 2014-05-04 20:16 - 00927936 _____ () C:\Program Files (x86)\AutoClickerbyShocker\AutoClicker.exe
2015-08-05 21:33 - 2015-08-05 21:33 - 00102864 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-08-05 21:33 - 2015-08-05 21:33 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-08-13 13:28 - 2015-08-13 13:28 - 02962432 _____ () C:\Program Files\AVAST Software\Avast\defs\15081302\algo.dll
2011-11-02 00:26 - 2011-11-02 00:26 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2011-11-02 00:26 - 2011-11-02 00:26 - 01242472 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2008-01-17 13:17 - 2008-01-17 13:17 - 00073782 _____ () C:\Program Files (x86)\Marvell\raid\Apache2\bin\zlib1.dll
2013-04-30 12:27 - 2013-04-30 12:27 - 00000000 _____ () C:\WINDOWS\SYSTEM32\zraidapi.dll
2013-04-30 12:27 - 2013-04-30 12:27 - 00000000 _____ () C:\WINDOWS\SYSTEM32\mv_api.dll
2013-04-30 12:27 - 2013-04-30 12:27 - 00000000 _____ () C:\WINDOWS\system32\nvapi.dll
2013-12-19 21:21 - 2012-09-19 16:38 - 05012856 _____ () C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzULIB.dll
2013-12-19 21:21 - 2010-06-21 16:21 - 00208896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\ImageHelper.dll
2012-01-24 18:58 - 2009-05-21 11:14 - 00053248 ____N () C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\HookKey32.dll
2012-01-24 18:58 - 2009-05-21 11:14 - 00253952 ____N () C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\pngio.dll
2012-01-24 18:56 - 2011-07-12 20:14 - 00147456 ____N () C:\Program Files (x86)\ASUS\AI Suite II\AssistFunc.dll
2012-01-24 18:56 - 2010-10-05 09:22 - 00253952 ____N () C:\Program Files (x86)\ASUS\AI Suite II\pngio.dll
2012-01-24 18:57 - 2010-05-30 19:27 - 01016320 ____N () C:\Program Files (x86)\ASUS\AI Suite II\AI Direct Link\AiDirectLink.dll
2012-01-24 18:56 - 2012-03-21 13:07 - 00972288 ____N () C:\Program Files (x86)\ASUS\AI Suite II\BarGadget\BarGadget.dll
2013-12-19 21:21 - 2012-08-01 11:51 - 01040896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EasyUpdt.dll
2012-01-24 18:57 - 2010-06-29 11:58 - 01235968 ____N () C:\Program Files (x86)\ASUS\AI Suite II\MyLogo\MyLogo.dll
2012-01-24 18:57 - 2010-07-02 16:02 - 01028608 ____N () C:\Program Files (x86)\ASUS\AI Suite II\Probe_II\ProbeII.dll
2012-01-24 18:56 - 2012-05-25 11:33 - 00883712 ____N () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\Sensor.dll
2012-01-24 18:56 - 2012-05-28 22:27 - 01622528 ____N () C:\Program Files (x86)\ASUS\AI Suite II\Sensor Graph\SensorGraph.dll
2012-01-24 18:56 - 2011-09-19 21:18 - 01243136 ____N () C:\Program Files (x86)\ASUS\AI Suite II\Settings\Settings.dll
2012-01-24 18:56 - 2011-07-21 10:06 - 00846848 ____N () C:\Program Files (x86)\ASUS\AI Suite II\Splitter\Splitter.dll
2012-01-24 18:56 - 2011-10-14 21:03 - 00885248 ____N () C:\Program Files (x86)\ASUS\AI Suite II\TabGadget\TabGadget.dll
2013-12-19 21:20 - 2012-10-12 04:58 - 00662016 _____ () C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMLib.dll
2012-01-24 18:56 - 2010-10-05 09:22 - 00208896 ____N () C:\Program Files (x86)\ASUS\AI Suite II\ImageHelper.dll
2014-09-01 13:06 - 2015-07-30 19:47 - 00264192 _____ () C:\Program Files (x86)\Razer\Razer Cortex\D3DX8Wrapper.dll
2015-07-10 07:58 - 2015-07-10 07:58 - 00143680 _____ () C:\Program Files (x86)\Mumble\mumble_ol.dll
2012-01-24 18:56 - 2009-08-12 21:15 - 00253952 ____N () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\pngio.dll
2015-05-17 18:06 - 2015-07-24 00:22 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-08-12 13:48 - 2015-08-07 20:13 - 01405768 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.155\libglesv2.dll
2015-08-12 13:48 - 2015-08-07 20:13 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.155\libegl.dll
2015-06-11 02:11 - 2015-06-11 02:11 - 00838792 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libxml2.dll
2015-06-11 02:11 - 2015-06-11 02:11 - 00049800 _____ () C:\Program Files (x86)\Plex\Plex Media Server\soci_sqlite3-vc80-3_0.dll
2015-06-11 02:11 - 2015-06-11 02:11 - 00086664 _____ () C:\Program Files (x86)\Plex\Plex Media Server\soci_core-vc80-3_0.dll
2015-06-11 02:11 - 2015-06-11 02:11 - 02092680 _____ () C:\Program Files (x86)\Plex\Plex Media Server\opencv_core249.dll
2015-06-11 02:11 - 2015-06-11 02:11 - 01883272 _____ () C:\Program Files (x86)\Plex\Plex Media Server\opencv_imgproc249.dll
2015-06-11 02:11 - 2015-06-11 02:11 - 00502920 _____ () C:\Program Files (x86)\Plex\Plex Media Server\tag.dll
2015-06-11 02:11 - 2015-06-11 02:11 - 00072840 _____ () C:\Program Files (x86)\Plex\Plex Media Server\zlib.dll
2015-06-11 02:11 - 2015-06-11 02:11 - 00196232 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libidn.dll
2013-04-30 12:27 - 2013-04-30 12:27 - 00000000 _____ () C:\WINDOWS\SYSTEM32\nvd3dum.dll
2015-08-09 08:05 - 2015-08-09 08:05 - 40555008 _____ () C:\Program Files (x86)\Overwolf\0.88.41.0\libcef.DLL
2015-08-09 08:06 - 2015-08-09 08:06 - 00152816 _____ () C:\Program Files (x86)\Overwolf\0.88.41.0\OWGameEventsConsumer.dll
2015-08-09 08:05 - 2015-08-09 08:05 - 00025600 _____ () C:\Program Files (x86)\Overwolf\0.88.41.0\CoreAudioApi.dll
2015-06-11 02:11 - 2015-06-11 02:11 - 00044680 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_socket.pyd
2015-06-11 02:11 - 2015-06-11 02:11 - 00027784 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_ssl.pyd
2015-06-11 02:11 - 2015-06-11 02:11 - 00018568 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_hashlib.pyd
2015-06-11 02:11 - 2015-06-11 02:11 - 00034952 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\simplejson\_speedups.pyd
2015-06-11 02:11 - 2015-06-11 02:11 - 00836232 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\lxml\etree.pyd
2015-06-11 02:11 - 2015-06-11 02:11 - 00062600 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libexslt.dll
2015-06-11 02:11 - 2015-06-11 02:11 - 00166024 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libxslt.dll
2015-06-11 02:11 - 2015-06-11 02:11 - 00192136 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\lxml\objectify.pyd
2015-06-11 02:11 - 2015-06-11 02:11 - 00016520 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\select.pyd
2015-06-11 02:11 - 2015-06-11 02:11 - 00054920 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\OpenSSL\crypto.pyd
2015-06-11 02:11 - 2015-06-11 02:11 - 00017032 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\OpenSSL\rand.pyd
2015-06-11 02:11 - 2015-06-11 02:11 - 00043656 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\OpenSSL\SSL.pyd
2015-06-11 02:11 - 2015-06-11 02:11 - 00081544 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_ctypes.pyd
2015-06-11 02:11 - 2015-06-11 02:11 - 00111240 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\pyexpat.pyd
2015-06-11 02:11 - 2015-06-11 02:11 - 00689800 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\unicodedata.pyd
2015-08-05 11:29 - 2015-08-05 11:29 - 00132608 _____ () C:\Program Files (x86)\SleepMapper Data Card Uploader\.install4j\i4jinst.dll
2015-03-13 22:48 - 2015-03-13 22:48 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-07-18 05:24 - 2015-07-30 19:47 - 00724480 _____ () C:\Program Files (x86)\Razer\Razer Cortex\Cef\CefSharp.Core.dll
2015-07-18 05:24 - 2015-07-30 19:47 - 41289216 _____ () C:\Program Files (x86)\Razer\Razer Cortex\Cef\libcef.dll
2015-08-09 08:05 - 2015-08-09 08:05 - 01274655 _____ () C:\Program Files (x86)\Overwolf\0.88.41.0\Purplizer\libxml2-2.dll
2015-08-09 08:05 - 2015-08-09 08:05 - 00028160 _____ () C:\Program Files (x86)\Overwolf\0.88.41.0\Purplizer\libssp-0.dll
2015-08-09 08:05 - 2015-08-09 08:05 - 00100352 _____ () C:\Program Files (x86)\Overwolf\0.88.41.0\Purplizer\zlib1.dll
2015-08-09 08:05 - 2015-08-09 08:05 - 00373657 _____ () C:\Program Files (x86)\Overwolf\0.88.41.0\Purplizer\plugins\libmsn.dll
2015-08-09 08:05 - 2015-08-09 08:05 - 00021337 _____ () C:\Program Files (x86)\Overwolf\0.88.41.0\Purplizer\plugins\libxmpp.dll
2015-08-09 08:05 - 2015-08-09 08:05 - 00415553 _____ () C:\Program Files (x86)\Overwolf\0.88.41.0\Purplizer\libjabber.dll
2015-08-09 08:05 - 2015-08-09 08:05 - 00190464 _____ () C:\Program Files (x86)\Overwolf\0.88.41.0\Purplizer\libsasl.dll
2015-08-09 08:05 - 2015-08-09 08:05 - 00022832 _____ () C:\Program Files (x86)\Overwolf\0.88.41.0\Purplizer\plugins\libyahoo.dll
2015-08-09 08:05 - 2015-08-09 08:05 - 00228908 _____ () C:\Program Files (x86)\Overwolf\0.88.41.0\Purplizer\libymsg.dll
2015-08-09 08:05 - 2015-08-09 08:05 - 00027811 _____ () C:\Program Files (x86)\Overwolf\0.88.41.0\Purplizer\plugins\ssl-nss.dll
2015-08-09 08:05 - 2015-08-09 08:05 - 00012004 _____ () C:\Program Files (x86)\Overwolf\0.88.41.0\Purplizer\plugins\ssl.dll
2015-08-09 08:05 - 2015-08-09 08:05 - 00140288 _____ () C:\Program Files (x86)\Overwolf\0.88.41.0\Purplizer\sasl2\saslDIGESTMD5.dll
2015-08-09 08:05 - 2015-08-09 08:05 - 00102912 _____ () C:\Program Files (x86)\Overwolf\0.88.41.0\Purplizer\sasl2\saslPLAIN.dll
2015-08-09 08:05 - 2015-08-09 08:05 - 00425984 _____ () C:\Program Files (x86)\Overwolf\0.88.41.0\Purplizer\sqlite3.dll
2009-06-27 11:11 - 2009-06-27 11:11 - 00503202 _____ () C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\sqlite3.dll
2015-07-18 05:24 - 2015-07-30 19:47 - 00544256 _____ () C:\Program Files (x86)\Razer\Razer Cortex\Cef\CefSharp.BrowserSubprocess.Core.dll
2015-07-18 05:24 - 2015-07-30 19:47 - 01482240 _____ () C:\Program Files (x86)\Razer\Razer Cortex\Cef\libglesv2.dll
2015-07-18 05:24 - 2015-07-30 19:47 - 00073728 _____ () C:\Program Files (x86)\Razer\Razer Cortex\Cef\libegl.dll
2012-01-24 19:43 - 2010-09-30 21:50 - 00675840 _____ () C:\Program Files (x86)\Stardock\ObjectDockPlus2\DockShellHook.dll
2015-08-09 08:05 - 2015-08-09 08:05 - 00985088 _____ () C:\Program Files (x86)\Overwolf\0.88.41.0\ffmpegsumo.dll
2015-07-12 11:31 - 2015-07-03 12:12 - 00778240 _____ () H:\Games\Steam\SDL2.dll
2015-07-12 11:31 - 2015-07-03 12:12 - 04962816 _____ () H:\Games\Steam\v8.dll
2015-07-12 11:31 - 2015-08-12 14:26 - 02413248 _____ () H:\Games\Steam\video.dll
2015-07-12 11:31 - 2015-07-03 12:12 - 01556992 _____ () H:\Games\Steam\icui18n.dll
2015-07-12 11:31 - 2015-07-03 12:12 - 01187840 _____ () H:\Games\Steam\icuuc.dll
2015-07-12 11:31 - 2014-12-01 17:31 - 02396672 _____ () H:\Games\Steam\libavcodec-56.dll
2015-07-12 11:31 - 2014-12-01 17:31 - 00479744 _____ () H:\Games\Steam\libavformat-56.dll
2015-07-12 11:31 - 2014-12-01 17:31 - 00332800 _____ () H:\Games\Steam\libavresample-2.dll
2015-07-12 11:31 - 2014-12-01 17:31 - 00442880 _____ () H:\Games\Steam\libavutil-54.dll
2015-07-12 11:31 - 2014-12-01 17:31 - 00485888 _____ () H:\Games\Steam\libswscale-3.dll
2015-07-12 11:31 - 2015-08-12 14:26 - 00704192 _____ () H:\Games\Steam\bin\chromehtml.DLL
2015-07-22 20:24 - 2015-07-26 21:13 - 00171008 _____ () H:\Games\Steam\bin\openvr_api.dll
2015-07-12 11:31 - 2015-07-03 12:12 - 39553928 _____ () H:\Games\Steam\bin\libcef.dll
2015-07-12 11:31 - 2015-08-12 14:26 - 00373440 _____ () H:\Games\Steam\steam.dll
2015-08-12 10:57 - 2015-08-12 10:57 - 26065408 _____ () H:\Games\Battle.net\Battle.net.6075\libcef.dll
2015-08-12 10:57 - 2015-08-12 10:57 - 00739840 _____ () H:\Games\Battle.net\Battle.net.6075\libGLESv2.dll
2015-08-12 10:57 - 2015-08-12 10:57 - 00909312 _____ () H:\Games\Battle.net\Battle.net.6075\platforms\qwindows.dll
2015-08-12 10:57 - 2015-08-12 10:57 - 00130048 _____ () H:\Games\Battle.net\Battle.net.6075\libEGL.dll
2015-08-12 10:57 - 2015-08-12 10:57 - 00020992 _____ () H:\Games\Battle.net\Battle.net.6075\imageformats\qgif.dll
2015-08-12 10:57 - 2015-08-12 10:57 - 00021504 _____ () H:\Games\Battle.net\Battle.net.6075\imageformats\qico.dll
2015-08-12 10:57 - 2015-08-12 10:57 - 00205312 _____ () H:\Games\Battle.net\Battle.net.6075\imageformats\qjpeg.dll
2015-08-12 10:57 - 2015-08-12 10:57 - 00225792 _____ () H:\Games\Battle.net\Battle.net.6075\imageformats\qmng.dll
2015-08-12 10:57 - 2015-08-12 10:57 - 00015872 _____ () H:\Games\Battle.net\Battle.net.6075\imageformats\qsvg.dll
2015-08-12 10:57 - 2015-08-12 10:57 - 00312832 _____ () H:\Games\Battle.net\Battle.net.6075\imageformats\qtiff.dll
2015-08-12 10:57 - 2015-08-12 10:57 - 00010240 _____ () H:\Games\Battle.net\Battle.net.6075\qml\QtQuick.2\qtquick2plugin.dll
2015-08-12 10:57 - 2015-08-12 10:57 - 00054272 _____ () H:\Games\Battle.net\Battle.net.6075\qml\QtQuick\Layouts\qquicklayoutsplugin.dll
2015-08-12 10:57 - 2015-08-12 10:57 - 00010240 _____ () H:\Games\Battle.net\Battle.net.6075\qml\QtQml\Models.2\modelsplugin.dll
2015-08-12 13:48 - 2015-08-07 20:13 - 16393032 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.155\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:2CB9631F
AlternateDataStreams: C:\ProgramData\TEMP:3807D082
AlternateDataStreams: C:\ProgramData\TEMP:6E6A4F42
AlternateDataStreams: C:\ProgramData\TEMP:7C27C41C

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UserManager => ""="Service"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\sony.com -> sony.com

IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\123simsen.com -> www.123simsen.com

There are 7865 more restricted sites.

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\Control Panel\Desktop\\Wallpaper -> C:\Users\Yoan2\AppData\Local\DisplayFusion\Wallpaper_1
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Users\Yoan2\AppData\Local\DisplayFusion\Wallpaper_1
DNS Servers: 208.122.23.22 - 208.122.23.23
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Winamp.lnk => C:\Windows\pss\Winamp.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Yoan2^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Spotify => "C:\Users\Yoan2\AppData\Roaming\Spotify\spotify.exe" /uri spotify:autostart
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Yoan2\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{ABCC3F86-DCE9-4181-BC43-2D1A95C3140D}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{8AE6F3D2-C124-4202-9A52-17F26D1FE021}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [UDP Query User{08F9DFFA-5310-443B-AD36-CBC66268A14D}C:\users\yoan2\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\yoan2\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [TCP Query User{FD4EA049-0ACE-4F9E-A467-EA941455C67A}C:\users\yoan2\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\yoan2\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [{DA81EF98-E2C3-4588-A249-983E53A9BF3B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{25F380AE-0E5F-44AE-859E-C662CEF2C0B3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{3586A28B-6E02-4E0A-8C1A-BAF3F46D83E2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{E8626EA0-7898-4BBF-8FC4-3BD22FC5D7A3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{D0ABCBD6-DB4F-42C0-A998-1E238DF95615}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{3E23906C-5958-49FC-AD20-2FC0FA6C7168}] => (Allow) H:\Games\Steam\steamapps\common\Tap Tap Infinity\TapTapInfinity.exe
FirewallRules: [{66940F64-A1A6-44B7-A686-86CC77DF2277}] => (Allow) H:\Games\Steam\steamapps\common\Tap Tap Infinity\TapTapInfinity.exe
FirewallRules: [{62C27584-E498-493C-93A1-B8B8859B7B49}] => (Allow) H:\Games\Battle.net\Battle.net.exe
FirewallRules: [{C2CB453F-2613-4588-B2D3-4689B0B0D0AD}] => (Allow) H:\Games\Battle.net\Battle.net.exe
FirewallRules: [{96B85AE3-0E3E-4EB7-AE46-8911C1E19B68}] => (Allow) H:\Steam\Steam.exe
FirewallRules: [{9039E441-7803-431A-8002-DD0584703B4A}] => (Allow) H:\Steam\Steam.exe
FirewallRules: [{69CE3EE5-C5D4-4329-A2D4-03243EFCEC64}] => (Allow) C:\Program Files\Ventrilo\Ventrilo.exe
FirewallRules: [{423BA05A-20D2-404F-AE64-D55FF5DEB35C}] => (Allow) C:\Program Files\Ventrilo\Ventrilo.exe
FirewallRules: [{C5088FF9-2479-4911-A10C-0C91777EA578}] => (Allow) H:\Games\Steam\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{D4733796-B32D-4D74-BD27-B802493CD798}] => (Allow) H:\Games\Steam\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{3B00AA1D-F2DB-43DC-99CF-C1A651BAAAB5}] => (Allow) H:\Games\Steam\steamapps\common\VillagersAndHeroes\AMysticalLandSAC\VillagersAndHeroes.exe
FirewallRules: [{57FAC620-D4BE-419B-AE78-4CEF17484343}] => (Allow) H:\Games\Steam\steamapps\common\VillagersAndHeroes\AMysticalLandSAC\VillagersAndHeroes.exe
FirewallRules: [{586DD2A3-74F7-45AD-8CBD-F0902FEDDE6B}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\PlexDlnaServer.exe
FirewallRules: [{5243527D-A89A-476D-AA79-CF0D1F372982}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe
FirewallRules: [{A92B612B-B5DF-4245-ADF9-B157A5F1CB73}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe
FirewallRules: [{F6BD6F9E-AFB0-45C2-AB86-066FC75EE1F7}] => (Allow) H:\Games\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{06ED215D-FDF7-4FE8-8F9A-C3CE135D9386}] => (Allow) H:\Games\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [UDP Query User{85A12117-3A9F-4005-A9ED-D491B446BAC7}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{63CAF541-AB8B-43CE-AAC3-88BB3E0F1FC4}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{B49AA2B2-D98E-4B3F-99D5-BFBD0691BAAC}] => (Allow) H:\Games\Steam\steamapps\common\Clicker Heroes\Clicker Heroes.exe
FirewallRules: [{28190BA6-4B5C-4D7D-820A-0AB2485DBDF2}] => (Allow) H:\Games\Steam\steamapps\common\Clicker Heroes\Clicker Heroes.exe
FirewallRules: [{83E9DFC5-DE5E-49E7-930A-32332F3B8AB5}] => (Allow) H:\Games\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{00684598-C7C4-4C1C-9B7D-6204A26495B8}] => (Allow) H:\Games\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [UDP Query User{7C8438AC-AC65-4D5E-869B-86122EC681D8}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{FE767CEC-6CA8-4EBD-920E-47AED6C8A04D}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{FB1AC758-77F5-4B4B-9A3E-6F6B083FC03F}] => (Allow) H:\Games\Steam\steamapps\common\VillagersAndHeroes\AMysticalLandSAC\VillagersAndHeroes.exe
FirewallRules: [{414B7A42-C2EC-4E88-91AD-6C99102B7635}] => (Allow) H:\Games\Steam\steamapps\common\VillagersAndHeroes\AMysticalLandSAC\VillagersAndHeroes.exe
FirewallRules: [{640755CA-2D73-4797-ABEB-94554233C64E}] => (Allow) H:\Games\Steam\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{CD2B3DA9-1AF2-4D9A-9C2A-13AA3AE36DF8}] => (Allow) H:\Games\Steam\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{1E44B604-9472-4B09-A8A5-E8876301195A}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{DDED3876-217E-438B-BDED-2D555662E48B}] => (Allow) LPort=1900
FirewallRules: [{A8C163BF-9574-4EA2-9592-361D20A8C1B3}] => (Allow) LPort=2869
FirewallRules: [{6E397511-8EF2-4934-BFA8-3BF1BA3BA2F5}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{76863B53-AA83-4D6F-930F-26E9E3DB0FA8}] => (Allow) C:\Users\Yoan2\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [UDP Query User{35491D0C-AC5C-4C2D-861C-0EB023880CA7}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [TCP Query User{CBC09D30-6219-4479-82CA-5819B77F440E}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [UDP Query User{F1F803F0-0999-4978-8EC1-FEFFC1A1100B}C:\users\yoan2\appdata\local\popcorn time\node-webkit\popcorn time.exe] => (Allow) C:\users\yoan2\appdata\local\popcorn time\node-webkit\popcorn time.exe
FirewallRules: [TCP Query User{E97801CB-9D52-4D66-8674-B7688D876ED4}C:\users\yoan2\appdata\local\popcorn time\node-webkit\popcorn time.exe] => (Allow) C:\users\yoan2\appdata\local\popcorn time\node-webkit\popcorn time.exe

 

[Sparhawk52]

FirewallRules: [UDP Query User{5964A329-63FB-45B2-AA58-A23666C1A6C5}D:9\games\steam\steam.exe] => (Allow) D:9\games\steam\steam.exe
FirewallRules: [TCP Query User{8B42CC81-27A8-4DCB-BB19-110B50E0C13F}D:9\games\steam\steam.exe] => (Allow) D:9\games\steam\steam.exe
FirewallRules: [UDP Query User{4C58DA0F-CEE2-4B8A-B44B-5B009CC54A9C}D:6\games\steam\steam.exe] => (Allow) D:6\games\steam\steam.exe
FirewallRules: [TCP Query User{D4D8E74E-0A12-44AE-978B-21FB5837BEA6}D:6\games\steam\steam.exe] => (Allow) D:6\games\steam\steam.exe
FirewallRules: [{6A4806B2-1EB3-4B16-83F6-D8053D0455DA}] => (Allow) H:\Games\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{DCBF1BC3-E20F-44C3-B40F-6DF7C8B7F9C4}] => (Allow) H:\Games\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{EB85C458-3F05-4F86-8DD7-2B602B27B61B}] => (Allow) H:\Games\Steam\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{CBA5BA85-FBAA-4791-84A8-6810015722D7}] => (Allow) H:\Games\Steam\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{DA948C82-9E10-4504-B611-DE1CFA3B40FA}] => (Allow) H:\Games\Steam\steamapps\common\SleepingDogs\HKShip.exe
FirewallRules: [{4D118F3F-4FB0-4157-AD39-07CFFE383C43}] => (Allow) H:\Games\Steam\steamapps\common\SleepingDogs\HKShip.exe
FirewallRules: [{B366875A-C752-43D0-8402-11A283926969}] => (Allow) H:\Games\Steam\steamapps\common\Tomb Raider\TombRaider.exe
FirewallRules: [{F306FAC0-4595-4005-850C-97957D0557E4}] => (Allow) H:\Games\Steam\steamapps\common\Tomb Raider\TombRaider.exe
FirewallRules: [{E71E673C-0177-49A2-A523-DB423CBA1902}] => (Allow) H:\Games\Steam\steamapps\common\Murdered Soul Suspect\Binaries\Win64\Murdered.exe
FirewallRules: [{4C0E2AB3-3955-44B9-924B-F32F8D7D0CE8}] => (Allow) H:\Games\Steam\steamapps\common\Murdered Soul Suspect\Binaries\Win64\Murdered.exe
FirewallRules: [{D1983554-C2EE-403D-9827-96BE76A78C22}] => (Allow) H:\Games\Steam\steamapps\common\Thief\Binaries\Win64\Shipping-ThiefGame.exe
FirewallRules: [{DB362B68-30C9-496F-A881-71D305858869}] => (Allow) H:\Games\Steam\steamapps\common\Thief\Binaries\Win64\Shipping-ThiefGame.exe
FirewallRules: [{D3707704-88D0-4939-AADE-CD521D875968}] => (Allow) H:\Games\Steam\steamapps\common\Supreme Commander 2\bin\SupremeCommander2.exe
FirewallRules: [{A6A06E4F-1082-4D0C-AB5A-F9D881F950A5}] => (Allow) H:\Games\Steam\steamapps\common\Supreme Commander 2\bin\SupremeCommander2.exe
FirewallRules: [{0DFB9067-F86F-4240-9CF9-C519BB6F5823}] => (Allow) H:\Games\Steam\steamapps\common\Hitman Absolution\HMA.exe
FirewallRules: [{10A325BD-4832-4A57-AE8D-34E32C394A96}] => (Allow) H:\Games\Steam\steamapps\common\Hitman Absolution\HMA.exe
FirewallRules: [UDP Query User{CF28FF48-400A-47FA-8B26-3707863A16CC}C:\users\yoan2\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\yoan2\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{6B3C57CC-D4D4-4631-B004-3753699A19F0}C:\users\yoan2\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\yoan2\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{740BCAE3-5213-4B13-80B6-5D61D8163569}] => (Allow) H:\Games\Steam\steamapps\common\Call of Duty Black Ops II\t6zm.exe
FirewallRules: [{0835E02A-0995-43A3-823A-36134A842FA8}] => (Allow) H:\Games\Steam\steamapps\common\Call of Duty Black Ops II\t6zm.exe
FirewallRules: [{F053E3EB-2E39-4BD5-87DC-0AF41C6ED6BA}] => (Allow) H:\Games\Theme Hospital\data\Game\DOSBox\LAUNCHER.exe
FirewallRules: [{9AB1F433-B2E9-4204-8974-26435FB69B3F}] => (Allow) H:\Games\Theme Hospital\data\Game\DOSBox\LAUNCHER.exe
FirewallRules: [UDP Query User{D2C57CD4-4B70-44FB-AE9D-8381DA317415}H:\games\diablo iii\diablo iii.exe] => (Allow) H:\games\diablo iii\diablo iii.exe
FirewallRules: [TCP Query User{8AD227E0-30C1-4A24-A67A-B098C2A854A6}H:\games\diablo iii\diablo iii.exe] => (Allow) H:\games\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{FB700B5E-25F3-46D6-BDD7-E5BB52FD68D7}C:\windows\system32\java.exe] => (Allow) C:\windows\system32\java.exe
FirewallRules: [TCP Query User{803C2A60-D51E-4AC4-8832-7D20FD67E385}C:\windows\system32\java.exe] => (Allow) C:\windows\system32\java.exe
FirewallRules: [UDP Query User{E090D26F-529D-4A2C-9AF0-CB7565E3E9C7}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{BC497192-E793-4EB3-B7D1-4EE25733304A}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{F5D5EC82-3D8C-47AB-A3FA-B79CA2E505B8}C:\users\yoan2\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\yoan2\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{E7829489-10F2-4502-97F3-F3A1476447DE}C:\users\yoan2\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\yoan2\appdata\local\akamai\netsession_win.exe
FirewallRules: [{7810FC30-29C3-4E59-843C-56A3FA4A87C9}] => (Allow) C:\Program Files (x86)\MediaMall\Surfer.exe
FirewallRules: [{CCB814DC-57CB-4DCC-99EB-93D799B01E68}] => (Allow) C:\Program Files (x86)\MediaMall\PlayMark.exe
FirewallRules: [{ABE069BF-EF65-41BA-A6CD-69FE6CA55887}] => (Allow) C:\Program Files (x86)\MediaMall\SettingsManager.exe
FirewallRules: [{32EF24FA-D5F9-4202-A7F9-C97153AA8CD5}] => (Allow) C:\Program Files (x86)\MediaMall\MediaMallServer.exe
FirewallRules: [{DD13B863-72B5-4E84-8437-473B3D6A525F}] => (Allow) H:\Games\Steam\steamapps\common\Castle Story\Castle Story.exe
FirewallRules: [{C64A9402-F577-45AF-B76A-A631A4A40EC4}] => (Allow) H:\Games\Steam\steamapps\common\Castle Story\Castle Story.exe
FirewallRules: [{953D2EA1-FB08-4C8B-A57C-70E197F9A029}] => (Allow) H:\Games\SimCity 2000 SE\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{F1BDDB3D-8FB9-49C0-B5AC-1011F89256C9}] => (Allow) H:\Games\SimCity 2000 SE\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{CC0D2A87-A3BF-40EC-952C-054073075280}] => (Allow) H:\Games\Steam\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [{2CC7BA5B-E5FB-4491-A353-33BEC0436E3B}] => (Allow) H:\Games\Steam\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [{3E868760-52DA-47AE-8F7D-1339E70F9807}] => (Allow) H:\Games\Steam\steamapps\common\Game Dev Tycoon\nw.exe
FirewallRules: [{50E5A114-B434-467F-BFE9-12EB665C41CA}] => (Allow) H:\Games\Steam\steamapps\common\Game Dev Tycoon\nw.exe
FirewallRules: [{CA67B294-B112-4B23-97B0-7598DC7710CC}] => (Allow) H:\Games\Diablo III\Diablo III.exe
FirewallRules: [{EE567858-5799-4FFE-BE5C-8D88D54BCFD8}] => (Allow) H:\Games\Diablo III\Diablo III.exe
FirewallRules: [{0C1EA8BE-7654-47D1-9850-395148DEF278}] => (Allow) H:\Games\Steam\bin\steamwebhelper.exe
FirewallRules: [{F07FF20D-66E3-4C26-B48F-FBB05FD903E4}] => (Allow) H:\Games\Steam\bin\steamwebhelper.exe
FirewallRules: [{D1583212-8A86-4F14-A711-B7704B811BDE}] => (Allow) H:\Games\Wing Commander III\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{08E71717-76F6-432D-B10B-F6731DA63992}] => (Allow) H:\Games\Wing Commander III\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{4069B7FC-FF01-4020-ABCD-CB2459CBC7F4}] => (Allow) H:\Games\FIFA World\fifaworld.exe
FirewallRules: [{798E2331-CA74-4494-8A7D-7ED664BD53C6}] => (Allow) H:\Games\FIFA World\fifaworld.exe
FirewallRules: [{ADBCC2C9-7EDA-42DA-A755-89DAF6B805CD}] => (Allow) H:\Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{D499AF3B-60B6-42F5-B1D4-40D260DEAF2B}] => (Allow) H:\Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{CC72F54B-FD1F-4E61-BAEF-928B4229FBE4}] => (Allow) H:\Games\Steam\steamapps\common\DOOM 3 BFG Edition\Doom3BFG.exe
FirewallRules: [{011BF3F4-3B05-461D-91DD-4F1CE6EC88FB}] => (Allow) H:\Games\Steam\steamapps\common\DOOM 3 BFG Edition\Doom3BFG.exe
FirewallRules: [{0DDAD281-6866-4035-9E2F-78327AB61E8C}] => (Allow) H:\Games\Steam\steamapps\common\Unturned\Unturned.exe
FirewallRules: [{9F4F09F2-53A1-454D-BA71-2F148379A5FC}] => (Allow) H:\Games\Steam\steamapps\common\Unturned\Unturned.exe
FirewallRules: [{AB8EC68B-73BA-4F47-9BD1-D5A0F68C7751}] => (Allow) H:\Games\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{FFF88941-7C94-44C3-A5DD-67A5212B8FAB}] => (Allow) H:\Games\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{602CEFB5-C020-439F-9E0B-1C45C8733243}] => (Allow) H:\Games\Peggle Deluxe\Peggle.exe
FirewallRules: [{027F7E79-324A-4269-8956-6DB9134C9A79}] => (Allow) H:\Games\Peggle Deluxe\Peggle.exe
FirewallRules: [{AE997E76-3DB8-4C6D-92D3-C30B906CEF22}] => (Allow) H:\Games\Steam\steamapps\common\arma 2 operation arrowhead\ArmA2OA_BE.exe
FirewallRules: [{5B6101C0-04E6-41FA-AA4F-B3CBE4994C58}] => (Allow) H:\Games\Steam\steamapps\common\arma 2 operation arrowhead\ArmA2OA_BE.exe
FirewallRules: [{20C3C095-8AC4-4B3A-ABA9-89E8D6AE560C}] => (Allow) H:\Games\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{E5AB0CB2-14FB-4B01-A8D7-A1251EAC0E5F}] => (Allow) H:\Games\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [UDP Query User{3AC2F9F8-E66B-40D9-BE9E-1BF304AD0908}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [TCP Query User{A05F204D-0F25-4B11-BF51-27F38864961F}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [UDP Query User{5E98B01B-9E7E-4B9B-ADDC-C29EF3346EB4}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{27E4E6C4-E7FF-4570-BCFA-548209E1BBD2}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{107C0302-2FF5-4639-8A17-03B0F4EEBDC0}C:\windows\system32\java.exe] => (Allow) C:\windows\system32\java.exe
FirewallRules: [TCP Query User{1ACDB5DD-D9E4-464A-9FCB-490B4BCD9036}C:\windows\system32\java.exe] => (Allow) C:\windows\system32\java.exe
FirewallRules: [{8408D7A9-FDEF-45A2-B895-0E04C77257FD}] => (Allow) H:\Games\Steam\steamapps\common\Worms Clan Wars\WormsClanWars.exe
FirewallRules: [{B9C3E738-4294-4D6E-86A8-85C6D13BC46E}] => (Allow) H:\Games\Steam\steamapps\common\Worms Clan Wars\WormsClanWars.exe
FirewallRules: [{9197F872-460D-4C35-8704-48CFF74B31D3}] => (Allow) H:\Games\Steam\steamapps\common\Red Orchestra 2 - Single Player\Binaries\Win32\ROGame.exe
FirewallRules: [{EE1EEB9F-0BC7-4853-8DD3-7977B564C720}] => (Allow) H:\Games\Steam\steamapps\common\Red Orchestra 2 - Single Player\Binaries\Win32\ROGame.exe
FirewallRules: [{15BE4E83-7B22-41EF-8F84-6ADC8E9087E9}] => (Allow) H:\Games\Steam\steamapps\common\Red Orchestra 2\Binaries\Win32\ROGame.exe
FirewallRules: [{376E8891-8668-4CAC-BEDE-F126153BB291}] => (Allow) H:\Games\Steam\steamapps\common\Red Orchestra 2\Binaries\Win32\ROGame.exe
FirewallRules: [{B1C64E78-44EA-48E4-805D-A6898E499C1C}] => (Allow) H:\Games\Steam\steamapps\common\The Mighty Quest For Epic Loot\Launcher\MQELDiagnostics.exe
FirewallRules: [{A12EEE22-075B-4F4D-B45B-C760D6BD15D5}] => (Allow) H:\Games\Steam\steamapps\common\The Mighty Quest For Epic Loot\Launcher\MQELDiagnostics.exe
FirewallRules: [{C8CC1F76-7D80-44F9-A6B6-13A2C6FBC38A}] => (Allow) H:\Games\Steam\steamapps\common\The Mighty Quest For Epic Loot\Launcher\PublicLauncher.exe
FirewallRules: [{F1DE6264-B72D-4D3A-9A6D-181A8CF55818}] => (Allow) H:\Games\Steam\steamapps\common\The Mighty Quest For Epic Loot\Launcher\PublicLauncher.exe
FirewallRules: [{7BA2DDDE-18A6-45F8-88EA-FA109F0FFEE0}] => (Allow) H:\Games\Steam\steamapps\common\CraftTheWorld\CraftWorld.exe
FirewallRules: [{7AE51D74-E124-4C3D-B383-5C3EB25F1BEE}] => (Allow) H:\Games\Steam\steamapps\common\CraftTheWorld\CraftWorld.exe
FirewallRules: [{2B350679-FC23-4BED-B48E-25D2DD67A18F}] => (Allow) H:\Games\Dead Space\Dead Space.exe
FirewallRules: [{0E048142-AA39-47EC-9E3E-94ACC1D17585}] => (Allow) H:\Games\Dead Space\Dead Space.exe
FirewallRules: [{7B4DC540-9335-401A-A46C-E343E059E755}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{60DBEE9B-9145-4D66-9E15-48AE4FB81A4D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [UDP Query User{F9863AD7-C6CA-4E7F-BFB8-E4E5876EB76A}C:\program files (x86)\spybot - search & destroy 2\sdfiles.exe] => (Block) C:\program files (x86)\spybot - search & destroy 2\sdfiles.exe
FirewallRules: [TCP Query User{AF8ECB6E-A0DA-4C52-8B60-99B0134BE95E}C:\program files (x86)\spybot - search & destroy 2\sdfiles.exe] => (Block) C:\program files (x86)\spybot - search & destroy 2\sdfiles.exe
FirewallRules: [UDP Query User{D7396EDC-0AAE-44B8-90E1-60E3ACDA37FC}C:\program files (x86)\spybot - search & destroy 2\sdupdate.exe] => (Allow) C:\program files (x86)\spybot - search & destroy 2\sdupdate.exe
FirewallRules: [TCP Query User{CEDFDF7C-CC8C-46FD-910C-CCDA53645EC3}C:\program files (x86)\spybot - search & destroy 2\sdupdate.exe] => (Allow) C:\program files (x86)\spybot - search & destroy 2\sdupdate.exe
FirewallRules: [{CCE9516D-F5B3-49C5-BB4D-A6DE36F48888}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{23B33131-4C24-4D96-BBE0-B89E34BA1321}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{04AA0237-1225-4F1B-BEED-63AC0B6A27C8}] => (Allow) H:\Games\Steam\steamapps\common\DayZ\DayZ.exe
FirewallRules: [{8D8EE972-B29C-435A-AB5C-9FDC59065ABB}] => (Allow) H:\Games\Steam\steamapps\common\DayZ\DayZ.exe
FirewallRules: [{CCF1AE60-A589-4916-AACB-8F779F6F5541}] => (Allow) H:\Games\Steam\steamapps\common\nmrih\sdk\hl2.exe
FirewallRules: [{165CCB32-F049-4CC8-B0EA-3C38E9668E9B}] => (Allow) H:\Games\Steam\steamapps\common\nmrih\sdk\hl2.exe
FirewallRules: [{32C46FC3-6C3A-4373-B994-B60401991DF4}] => (Allow) H:\Games\Hearthstone\Hearthstone.exe
FirewallRules: [{A78572D0-B8DB-4408-BD03-3D1B3CC8DDA0}] => (Allow) H:\Games\Hearthstone\Hearthstone.exe
FirewallRules: [{88A10432-E1EB-4A90-89EA-9775B05F6AB7}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{FD19D33C-6D7E-4E17-841C-87AB7142EB65}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{395545D5-DD8C-4B16-A5E1-53F4B9AE8626}] => (Allow) H:\Games\Steam\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{F9CDD206-BCBF-4002-BDCB-A9AC0554BA1E}] => (Allow) H:\Games\Steam\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{A27B058A-C2F0-49C4-A12B-48C618D9A4F0}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{EE5B2563-E1A2-49CA-8DE0-EBECFB591C9D}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{4C272C71-68A4-4124-BCFF-DF33021F4E77}] => (Allow) H:\Games\Steam\steamapps\common\Game Dev Tycoon\GameDevTycoon.exe
FirewallRules: [{AEF610B0-31DD-49E2-9B2D-347DCECC8286}] => (Allow) H:\Games\Steam\steamapps\common\Game Dev Tycoon\GameDevTycoon.exe
FirewallRules: [{3C09FE58-915E-4FD1-8ABE-2BEB79142AA8}] => (Allow) H:\Games\Steam\steamapps\common\Game Dev Tycoon\GameDevTycoon.exe
FirewallRules: [{A867868B-941E-4067-A1ED-849233443E53}] => (Allow) H:\Games\Steam\steamapps\common\Game Dev Tycoon\GameDevTycoon.exe
FirewallRules: [{69BAD410-5D23-43FC-B7B1-4BCA5BFCC382}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{AAD12EF1-BE2B-4748-8D3B-8B9D041F4BA9}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{532F05B9-52B2-446D-8CEA-64D030822910}] => (Allow) H:\Games\Steam\steamapps\common\Game Dev Tycoon\GameDevTycoon.exe
FirewallRules: [{12F27184-21E7-4B91-AFFA-14D232A20A95}] => (Allow) H:\Games\Steam\steamapps\common\Game Dev Tycoon\GameDevTycoon.exe
FirewallRules: [{4F9D1392-6060-4843-B4C4-D723A206690A}] => (Allow) H:\Games\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{4197172C-6A2B-4126-A3B7-B28ECC3E8A5C}] => (Allow) H:\Games\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{FBA0161B-AB64-46CD-B851-A5C86FD6656E}] => (Allow) H:\Games\Steam\steamapps\common\Cryptic Studios\Neverwinter.exe
FirewallRules: [{49F6A2DD-7367-436F-97BE-A62896A0974D}] => (Allow) H:\Games\Steam\steamapps\common\Cryptic Studios\Neverwinter.exe
FirewallRules: [{95D257AE-DEA7-4EDC-B089-85CEB505E970}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{A195DCD0-A28B-44F3-9213-DEF49B631899}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{92F0743E-90B7-4A4B-99E1-DAD390AC2190}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
FirewallRules: [{FEC36050-D697-41A3-8106-0848C92AFACD}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
FirewallRules: [{BED80440-CAB4-4CF8-B94A-47B64F201BBE}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{4798462E-28DD-42AC-89DA-FBE0F207C5B0}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{A10E4BAE-6673-420B-A834-3998C53F9EB0}] => (Allow) H:\Games\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{9EFD6E4E-D303-46DF-A9B3-CAD34F00E404}] => (Allow) H:\Games\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{DD2E4E1E-290C-428E-8CFC-DEDF7EE6C424}] => (Allow) H:\Games\Steam\steamapps\common\apb reloaded\Launcher\APBLauncher.exe
FirewallRules: [{9C962A6C-92EB-4A6D-88BF-BADE21CCF573}] => (Allow) H:\Games\Steam\steamapps\common\apb reloaded\Launcher\APBLauncher.exe
FirewallRules: [{06D5566C-D13C-4806-9EB9-6009D14032FC}] => (Allow) H:\Games\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{11BF2F19-6DA5-42FD-B5DD-322B02DFB65F}] => (Allow) H:\Games\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{CE16BCF4-41F8-4745-AF88-4A7574AE5A7D}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{CE5FA133-9624-48F2-8AC0-489583876792}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{A38F9C88-5993-49B8-9394-20D8394699E0}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{8477E787-B908-45EC-870E-2DA63F4DB1F9}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{08014C5D-8113-4570-AA7D-0F7B63E640AF}] => (Allow) H:\Games\Steam\steamapps\common\Dungeonland\dungeonland.exe
FirewallRules: [{1A1AF13A-E527-43EC-A4AA-3ED75BA83B4A}] => (Allow) H:\Games\Steam\steamapps\common\Dungeonland\dungeonland.exe
FirewallRules: [{A80C3818-DACE-46EF-8DF2-A4DA767391A5}] => (Allow) H:\Games\Steam\steamapps\common\Dungeonland\dungeonland.exe
FirewallRules: [{007408DF-CF02-4723-806E-4019B4D540E4}] => (Allow) H:\Games\Steam\steamapps\common\Dungeonland\dungeonland.exe
FirewallRules: [{B3A7303F-2421-4437-8316-9F6625D45248}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{005351B6-2B2A-4D70-960D-AF3DFBC2F933}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{901B268F-5A63-4FCB-A23C-34FEE45D4B74}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{9E65E626-389E-4E3B-88B7-6B27BD9F6035}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{D59F5200-85E3-46DE-8F35-7C3B904ECC58}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{FA310EF4-85E9-4F91-A4CB-BC27371C3225}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{F6046166-CF83-46CA-A7F0-4F7AC1D667B9}] => (Allow) H:\Games\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{B53320DD-9916-4700-9786-81D937AEDDE5}] => (Allow) H:\Games\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{8F2527AE-66EA-4EE6-8B13-2B4B43B753B4}] => (Allow) H:\Games\Steam\steamapps\common\Age2HD\Launcher.exe
FirewallRules: [{D5781E75-633C-4EF7-80A3-E41E8F30B80D}] => (Allow) H:\Games\Steam\steamapps\common\Age2HD\Launcher.exe
FirewallRules: [{55B48500-1012-45CC-B865-DD7FAA197E6D}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{EE3F2C2B-F48D-4096-BC34-06E1108AA913}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [UDP Query User{11CB1A9F-50C9-4C1C-B514-69F26D08DB5A}H:\games\steam\steamapps\common\starbound\win32\starbound_server.exe] => (Allow) H:\games\steam\steamapps\common\starbound\win32\starbound_server.exe
FirewallRules: [TCP Query User{E71D2D9B-E64C-4B1B-A11B-DE15E436E643}H:\games\steam\steamapps\common\starbound\win32\starbound_server.exe] => (Allow) H:\games\steam\steamapps\common\starbound\win32\starbound_server.exe
FirewallRules: [{8BA57E58-21D4-44B3-B2B1-1ADBC5033370}] => (Allow) H:\Games\Steam\steamapps\common\Gnomoria\Gnomoria.exe
FirewallRules: [{48340B0D-E9B4-4322-8258-6B9669CFE8DB}] => (Allow) H:\Games\Steam\steamapps\common\Gnomoria\Gnomoria.exe
FirewallRules: [{B2533F67-851A-440F-BA98-ED6A973FAFB9}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{E9E21BAE-76BC-443C-A048-609E149F5F57}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{2DDBECD2-8917-491C-B8C4-1B6FAD1D4F09}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{0A89326C-4DB2-4A37-8C4A-9A0748BAA510}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{27A5B0D5-C49B-4CCE-B1C4-D2E31D640631}] => (Allow) H:\Games\Steam\steamapps\common\Age2HD\Launcher.exe
FirewallRules: [{3B498EF5-CBEC-4E1F-B120-5E6A3C15BA54}] => (Allow) H:\Games\Steam\steamapps\common\Age2HD\Launcher.exe
FirewallRules: [{17DD0389-1C77-44AB-8B50-462105B40374}] => (Allow) H:\Games\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{278F1389-1E44-4F44-8FEC-4EE006E0B632}] => (Allow) H:\Games\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{68267284-0407-49A0-A078-724D5CDABA0C}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{7F21F021-A97A-4CF6-BBD3-DBFEB0CDCCA1}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{CBB1BBD2-6625-492F-8F58-C8DAB3347531}] => (Allow) H:\Games\Steam\steamapps\common\FINAL FANTASY VII\FF7_Launcher.exe
FirewallRules: [{A4A6D357-F1DD-4E0C-97BB-424697E7676D}] => (Allow) H:\Games\Steam\steamapps\common\FINAL FANTASY VII\FF7_Launcher.exe
FirewallRules: [UDP Query User{8078D311-E8F1-4655-A27E-312A6AB6AEC5}H:\games\steam\steam.exe] => (Allow) H:\games\steam\steam.exe
FirewallRules: [TCP Query User{FB01A3E7-0F2F-4926-8F96-F670B7FA32D0}H:\games\steam\steam.exe] => (Allow) H:\games\steam\steam.exe
FirewallRules: [UDP Query User{8F244CB8-71F3-4747-9F19-C5CB46D50AED}C:\program files (x86)\smart port forwarding\spf.exe] => (Allow) C:\program files (x86)\smart port forwarding\spf.exe
FirewallRules: [TCP Query User{D7DE2A29-F92F-4D42-9738-067DB0601B04}C:\program files (x86)\smart port forwarding\spf.exe] => (Allow) C:\program files (x86)\smart port forwarding\spf.exe
FirewallRules: [{1E9AA473-DFA4-4FA7-AB9E-FB9C7D9D2C3A}] => (Allow) H:\Games\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{830109DC-CBC4-4CF6-9922-7B90D43903F4}] => (Allow) H:\Games\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{19F30446-1228-4F68-802C-84C36D85C5AC}] => (Allow) H:\Games\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{254B0DE7-F716-4336-A30A-B789220711B4}] => (Allow) H:\Games\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{B05019C7-E8A6-4C53-A57F-1181553F6ACB}] => (Allow) H:\Games\Steam\steamapps\common\arma 2 operation arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [{4B3BF979-408A-4543-B7D0-6DDCC2FDAAA7}] => (Allow) H:\Games\Steam\steamapps\common\arma 2 operation arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [{2FF8239A-B807-4291-9226-B24FC1F1E2A5}] => (Allow) H:\Games\Steam\steamapps\common\arma 2 operation arrowhead\ArmA2OA.exe
FirewallRules: [{5A9A61BE-D4A3-4CB1-BF7F-6F2676139385}] => (Allow) H:\Games\Steam\steamapps\common\arma 2 operation arrowhead\ArmA2OA.exe
FirewallRules: [{5704D704-DE64-4D71-ACC2-5640A3A17592}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{4E7CA3D8-247B-4646-9B6D-6856C0E385D6}] => (Allow) H:\Games\Steam\steamapps\common\Call of Duty Black Ops II\t6zm.exe
FirewallRules: [{FE65218D-E4F9-493D-95CE-A38CFD01799B}] => (Allow) H:\Games\Steam\steamapps\common\Call of Duty Black Ops II\t6zm.exe
FirewallRules: [{8D543D05-9F66-4C70-88E1-49B525F765C1}] => (Allow) H:\Games\Steam\steamapps\common\Call of Duty Black Ops II\t6mp.exe
FirewallRules: [{3F47EC5F-F436-4D8D-B21B-DE5585F860FE}] => (Allow) H:\Games\Steam\steamapps\common\Call of Duty Black Ops II\t6mp.exe
FirewallRules: [{55ED883E-EA91-483B-85F6-A84D5A260683}] => (Allow) H:\Games\Steam\steamapps\common\apb reloaded\Binaries\VivoxVoiceService.exe
FirewallRules: [{C76274DD-A0D6-43D7-8F02-EC09E910323B}] => (Allow) H:\Games\Steam\steamapps\common\apb reloaded\Binaries\VivoxVoiceService.exe
FirewallRules: [{4F6EE094-6636-4DF1-9CD5-BD2571E7A43D}] => (Allow) H:\Games\Steam\steamapps\common\apb reloaded\Binaries\APB.exe
FirewallRules: [{0CC2A17D-EA10-44E7-991C-AC4758BA667E}] => (Allow) H:\Games\Steam\steamapps\common\apb reloaded\Binaries\APB.exe
FirewallRules: [{3EDE8626-C149-4FB8-8A73-FB333F4266DD}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
FirewallRules: [{3CB58AFC-FC54-4A43-BEC6-E8F3A8D562CA}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
FirewallRules: [{18409CA5-91AA-4781-ADE6-1793C6E413CC}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
FirewallRules: [{FFBC7313-4F51-4699-AFBF-001A427BEFC9}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
FirewallRules: [UDP Query User{D2DF0796-FE50-4365-A582-1E5E28BCB1CE}H:\filezilla ftp client\filezilla.exe] => (Allow) H:\filezilla ftp client\filezilla.exe
FirewallRules: [TCP Query User{DCE635A0-3748-488F-B3D4-5D085F71D273}H:\filezilla ftp client\filezilla.exe] => (Allow) H:\filezilla ftp client\filezilla.exe
FirewallRules: [{1B558D41-05C8-4F99-B9DB-E38F8789863C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{7675BF90-4613-4EAF-AA72-C8632DE9AEF7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{577CDD2E-DF40-42BA-9872-B5CDE18CA364}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{BC19AFC7-6BF9-4DC0-96A8-AE0ADDF4482E}] => (Allow) H:\The War Z\Infestation.exe
FirewallRules: [{94E23953-773C-47EF-BF38-04FC45BE734D}] => (Allow) H:\Games\Steam\steamapps\common\Call of Duty Black Ops II\t6sp.exe
FirewallRules: [{315BE416-0E68-4064-A8D5-F60477E913DB}] => (Allow) H:\Games\Steam\steamapps\common\Call of Duty Black Ops II\t6sp.exe
FirewallRules: [UDP Query User{DF0DA141-4B1B-4521-B74F-8CE56D90FEFB}H:\games\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) H:\games\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [TCP Query User{ABE122BF-BA2B-45ED-B6C4-AB323520700B}H:\games\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) H:\games\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [{E54D4AB5-10E0-4FC0-A1D8-2B748623BFD6}] => (Allow) H:\Games\Steam\steamapps\common\SimCity 4 Deluxe\Support\EA Help\Electronic_Arts_Technical_Support.htm
FirewallRules: [{75383BE9-0C52-44B4-9F42-7F1521812260}] => (Allow) H:\Games\Steam\steamapps\common\SimCity 4 Deluxe\Support\EA Help\Electronic_Arts_Technical_Support.htm
FirewallRules: [{46AE4071-A50F-4AC4-BDC8-4805B35A18ED}] => (Allow) H:\Games\Steam\steamapps\common\SimCity 4 Deluxe\Apps\SimCity 4.exe
FirewallRules: [{17F6C63E-1FC2-418B-9D1F-A23D1E872374}] => (Allow) H:\Games\Steam\steamapps\common\SimCity 4 Deluxe\Apps\SimCity 4.exe
FirewallRules: [{96EBD8C0-3D22-402E-991D-302FDEBA0B5C}] => (Allow) H:\Games\Steam\steamapps\common\Torchlight II\ModLauncher.exe
FirewallRules: [{9DA929DC-3D47-42E6-846E-8021357995A9}] => (Allow) H:\Games\Steam\steamapps\common\Torchlight II\ModLauncher.exe
FirewallRules: [{1C48ABEB-1253-43D5-A499-6EEEC0D0458E}] => (Allow) H:\Games\Steam\steamapps\common\ArcticCombat\GameLauncher_GP\MappingAccount.exe
FirewallRules: [{06E51988-CB4F-4D8E-899F-C1D5EA0DB589}] => (Allow) H:\Games\Steam\steamapps\common\ArcticCombat\GameLauncher_GP\MappingAccount.exe
FirewallRules: [{5C0E7F4F-6089-4929-BD5E-62A967487933}] => (Allow) H:\Games\Steam\steamapps\common\District 187\MarbleStation\GlbMSLauncher.exe
FirewallRules: [{83BCA40B-D025-43B4-8E74-E6D3AF7C8198}] => (Allow) H:\Games\Steam\steamapps\common\District 187\MarbleStation\GlbMSLauncher.exe
FirewallRules: [{20EDEAE3-2526-4BFD-96CA-EBF1B3307E85}] => (Allow) H:\Games\Battlefield 3\bf3.exe
FirewallRules: [{0F9B3D6A-3529-4944-BBDE-2218B89D74C1}] => (Allow) H:\Games\Battlefield 3\bf3.exe
FirewallRules: [{B0BDC6F2-B469-4F31-81FA-848B87FAF553}] => (Allow) H:\Games\Mass Effect 3\Binaries\Win32\MassEffect3.exe
FirewallRules: [{F8F23CA6-0016-478A-9477-534884FED19E}] => (Allow) H:\Games\Mass Effect 3\Binaries\Win32\MassEffect3.exe
FirewallRules: [{E3D2A09E-8795-4CE8-863E-665D15C7ADED}] => (Allow) H:\Games\Dead Space 3\deadspace3.exe
FirewallRules: [{033BA503-84A5-4780-B329-369BD1158572}] => (Allow) H:\Games\Dead Space 3\deadspace3.exe
FirewallRules: [UDP Query User{B7F7188F-EBA7-4773-A658-0E012B943BBA}H:\games\arma 2\expansion\beta\arma2oa.exe] => (Allow) H:\games\arma 2\expansion\beta\arma2oa.exe
FirewallRules: [TCP Query User{36BF6147-D951-4E49-95F8-83B544362DAB}H:\games\arma 2\expansion\beta\arma2oa.exe] => (Allow) H:\games\arma 2\expansion\beta\arma2oa.exe
FirewallRules: [UDP Query User{B37C6DE1-935C-4C60-85DF-401DC00DC602}C:\users\yoan2\appdata\local\play withsix\tools\mingw\bin\rsync.exe] => (Allow) C:\users\yoan2\appdata\local\play withsix\tools\mingw\bin\rsync.exe
FirewallRules: [TCP Query User{93907401-904B-4F94-9C21-3C832178423C}C:\users\yoan2\appdata\local\play withsix\tools\mingw\bin\rsync.exe] => (Allow) C:\users\yoan2\appdata\local\play withsix\tools\mingw\bin\rsync.exe
FirewallRules: [{D87DFD47-092C-406E-94DE-F618C065CCEA}] => (Allow) H:\Games\Steam\steamapps\common\Torchlight II\Torchlight2.exe
FirewallRules: [{EED8EC5F-6AD1-4BAC-A931-F5AE8E032476}] => (Allow) H:\Games\Steam\steamapps\common\Torchlight II\Torchlight2.exe
FirewallRules: [{4D80FBD4-2D0D-42D3-B257-3A64BF699DEC}] => (Allow) H:\Games\Crysis 3 MP Open Beta\bin32\Crysis 3 MP Open Beta.exe
FirewallRules: [{4C2B9B98-313F-4692-BFD9-3063EDC6F7BB}] => (Allow) H:\Games\Crysis 3 MP Open Beta\bin32\Crysis 3 MP Open Beta.exe
FirewallRules: [{A4740ADD-C754-406A-9063-A94418047FAC}] => (Allow) H:\Games\Steam\steamapps\common\the binding of isaac\Isaac.exe
FirewallRules: [{AC28586C-B784-439C-AC62-29CDA09C245F}] => (Allow) H:\Games\Steam\steamapps\common\the binding of isaac\Isaac.exe
FirewallRules: [{AB794060-DFFF-4E63-A5D2-ECAF8E72D908}] => (Allow) H:\Games\Steam\steamapps\common\arma 2 operation arrowhead\BEsetup\Setup_BattlEyeARMA2OA.exe
FirewallRules: [{19778E6B-E3C1-4199-8CB5-ABB67DC4FFEB}] => (Allow) H:\Games\Steam\steamapps\common\arma 2 operation arrowhead\BEsetup\Setup_BattlEyeARMA2OA.exe
FirewallRules: [{DD72C4FD-5DC2-4628-BB1F-EEFC478DBCBF}] => (Allow) H:\Games\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{35A74605-2783-43E4-8566-3B0E67609E07}] => (Allow) H:\Games\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{9A560254-657B-401D-8B48-5DF93CDD01FF}] => (Allow) H:\Games\Ubisoft\FarCry 3\bin\FC3Editor.exe
FirewallRules: [{19D9BC7D-50B2-4EE3-AE52-826C70CC49B4}] => (Allow) H:\Games\Ubisoft\FarCry 3\bin\FC3Editor.exe
FirewallRules: [{8C3D95FD-C6C0-4306-9BD1-A73C21420FB3}] => (Allow) H:\Games\Ubisoft\FarCry 3\bin\FC3Updater.exe
FirewallRules: [{B8566D26-AEBD-4EEE-A861-F2C52A8EBB19}] => (Allow) H:\Games\Ubisoft\FarCry 3\bin\FC3Updater.exe
FirewallRules: [{5E9AB848-7CC4-4572-AEE4-B437FF296092}] => (Allow) H:\Games\Ubisoft\FarCry 3\bin\farcry3_d3d11.exe
FirewallRules: [{B15A1E91-0D75-4913-A492-67E81D844EE8}] => (Allow) H:\Games\Ubisoft\FarCry 3\bin\farcry3_d3d11.exe
FirewallRules: [{463763B3-F7A7-4B08-B952-3E32C2E4D824}] => (Allow) H:\Games\Ubisoft\FarCry 3\bin\farcry3.exe
FirewallRules: [{D4109C2E-F9B2-4A49-AB2F-52CB2F6630AC}] => (Allow) H:\Games\Ubisoft\FarCry 3\bin\farcry3.exe
FirewallRules: [{575331B4-E19A-4A7B-9069-35ACA7934A70}] => (Allow) H:\Games\Steam\steamapps\common\Metro 2033\metro2033.exe
FirewallRules: [{B5BF02B3-29F1-4653-8002-ECD98927B09F}] => (Allow) H:\Games\Steam\steamapps\common\Metro 2033\metro2033.exe
FirewallRules: [UDP Query User{AE838AD5-3F92-47BF-8410-4E215AEE26DF}H:\games\steam\steamapps\common\planetside 2\planetside2.exe] => (Allow) H:\games\steam\steamapps\common\planetside 2\planetside2.exe
FirewallRules: [TCP Query User{3B3B7D1D-31BE-4AD5-B556-687DE252B1CA}H:\games\steam\steamapps\common\planetside 2\planetside2.exe] => (Allow) H:\games\steam\steamapps\common\planetside 2\planetside2.exe
FirewallRules: [{2A5C42BA-FAD0-44D2-9C80-04BD70A55415}] => (Allow) H:\Games\Steam\steamapps\common\PlanetSide 2\LaunchPad.exe
FirewallRules: [{4FBEFE18-610C-4888-8AFA-F0A31AA124DE}] => (Allow) H:\Games\Steam\steamapps\common\PlanetSide 2\LaunchPad.exe
FirewallRules: [{056F8B6D-C3CF-42AB-AFE3-756137566BF8}] => (Allow) H:\Games\Steam\steamapps\common\ArcticCombat\System\ArcticCombat.exe
FirewallRules: [{3E56A341-2710-4B5B-AC74-293816A26874}] => (Allow) H:\Games\Steam\steamapps\common\ArcticCombat\System\ArcticCombat.exe
FirewallRules: [UDP Query User{CC8D0949-A385-4E5F-A95B-004EC627E9D8}H:\games\steam\steamapps\common\terraria\terrariaserver.exe] => (Allow) H:\games\steam\steamapps\common\terraria\terrariaserver.exe
FirewallRules: [TCP Query User{A5A386F8-B056-4E3C-9667-A02BA226A93B}H:\games\steam\steamapps\common\terraria\terrariaserver.exe] => (Allow) H:\games\steam\steamapps\common\terraria\terrariaserver.exe
FirewallRules: [UDP Query User{B6080CDD-F203-4380-BEE2-8BFB701B055D}H:\games\starcraft ii\versions\base23260\sc2.exe] => (Block) H:\games\starcraft ii\versions\base23260\sc2.exe
FirewallRules: [TCP Query User{4435770D-3BA7-4117-9C7A-7952E9EEAC2B}H:\games\starcraft ii\versions\base23260\sc2.exe] => (Block) H:\games\starcraft ii\versions\base23260\sc2.exe
FirewallRules: [{27BCF3F0-6EFE-4AB2-9670-A80E9DEE9EC2}] => (Allow) H:\Games\StarCraft II\StarCraft II.exe
FirewallRules: [{362AC5CD-139A-41B0-A8F2-05B0530ACF96}] => (Allow) H:\Games\StarCraft II\StarCraft II.exe
FirewallRules: [{34C1422A-7E3D-442C-B3AF-4C768F416A2D}] => (Allow) C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{62935954-9D5A-4574-B370-69AB5D587167}] => (Allow) C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{D6F1214E-DD3B-4D88-9BAD-00442E128852}] => (Allow) H:\Games\Steam\steamapps\common\DC Universe Online\LaunchPad.exe
FirewallRules: [{297DC65B-3DD4-42D5-B7E5-5E01A7DB40CF}] => (Allow) H:\Games\Steam\steamapps\common\DC Universe Online\LaunchPad.exe
FirewallRules: [{36238A58-B01A-4947-9145-2C3F47E04663}] => (Allow) H:\Games\Steam\steamapps\common\Anno 2070\Anno5.exe
FirewallRules: [{2C1E93A5-7679-4BB0-94EC-DF7E96247039}] => (Allow) H:\Games\Steam\steamapps\common\Anno 2070\Anno5.exe
FirewallRules: [UDP Query User{948F4957-2CA4-4757-983B-70261F313B0E}C:\users\yoan2\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\yoan2\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{84961F7C-F738-4883-8C42-856A71BDDB0A}C:\users\yoan2\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\yoan2\appdata\local\akamai\netsession_win.exe
FirewallRules: [{2D2833A3-AC21-4409-87BA-FFD8BB71BB4D}] => (Allow) H:\Games\Steam\steamapps\common\arma 2 operation arrowhead\_runA2CO.cmd
FirewallRules: [{88B13E10-E974-4576-B6DF-1785D541FDE2}] => (Allow) H:\Games\Steam\steamapps\common\arma 2 operation arrowhead\_runA2CO.cmd
FirewallRules: [UDP Query User{DCCA5535-9DD9-467B-B5AD-16059F76B5E5}C:\users\yoan2\appdata\local\apps\2.0\tnmllmy5.7rx\nnt8c0ld.4ve\laun...app_59711684aa47878d_0001.001b_500f242478d49853\launcher.exe] => (Allow) C:\users\yoan2\appdata\local\apps\2.0\tnmllmy5.7rx\nnt8c0ld.4ve\laun...app_59711684aa47878d_0001.001b_500f242478d49853\launcher.exe
FirewallRules: [TCP Query User{7855A1CF-4242-4417-B81C-898E4F3EB7C7}C:\users\yoan2\appdata\local\apps\2.0\tnmllmy5.7rx\nnt8c0ld.4ve\laun...app_59711684aa47878d_0001.001b_500f242478d49853\launcher.exe] => (Allow) C:\users\yoan2\appdata\local\apps\2.0\tnmllmy5.7rx\nnt8c0ld.4ve\laun...app_59711684aa47878d_0001.001b_500f242478d49853\launcher.exe
FirewallRules: [{B7363FCE-08EC-4E02-8899-C62DDE021A26}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [UDP Query User{80CBB372-CF04-447A-8949-912DB12E61B5}C:\users\yoan2\appdata\local\apps\2.0\tnmllmy5.7rx\nnt8c0ld.4ve\laun...app_59711684aa47878d_0001.001b_6f29478cafd19413\launcher.exe] => (Allow) C:\users\yoan2\appdata\local\apps\2.0\tnmllmy5.7rx\nnt8c0ld.4ve\laun...app_59711684aa47878d_0001.001b_6f29478cafd19413\launcher.exe
FirewallRules: [TCP Query User{3D0E0604-26AF-45C0-8928-D1A3C7AA59B8}C:\users\yoan2\appdata\local\apps\2.0\tnmllmy5.7rx\nnt8c0ld.4ve\laun...app_59711684aa47878d_0001.001b_6f29478cafd19413\launcher.exe] => (Allow) C:\users\yoan2\appdata\local\apps\2.0\tnmllmy5.7rx\nnt8c0ld.4ve\laun...app_59711684aa47878d_0001.001b_6f29478cafd19413\launcher.exe
FirewallRules: [{DC53564E-9F0C-4780-B240-8D8174848B49}] => (Allow) H:\Games\Steam\steamapps\common\arma 2\arma2.exe
FirewallRules: [{20F3E6BD-1337-48E9-9040-F0DA6CEA7073}] => (Allow) H:\Games\Steam\steamapps\common\arma 2\arma2.exe
FirewallRules: [UDP Query User{E40FAFFF-C4F7-4337-B3BF-9636D5BE7495}H:\games\six projects\six updater\tools\bin\rsync.exe] => (Allow) H:\games\six projects\six updater\tools\bin\rsync.exe
FirewallRules: [TCP Query User{40BBE891-6B00-40C4-BAD2-4679C0B37CFE}H:\games\six projects\six updater\tools\bin\rsync.exe] => (Allow) H:\games\six projects\six updater\tools\bin\rsync.exe
FirewallRules: [{67621AAF-8912-41D3-B528-D3CB9FD65D6B}] => (Allow) H:\Games\Steam\steamapps\common\guild wars\Gw.exe
FirewallRules: [{2A364B31-9C9F-4BFD-A7E2-23A7EC859694}] => (Allow) H:\Games\Steam\steamapps\common\guild wars\Gw.exe
FirewallRules: [{D7F2E3A4-1024-45C6-803C-AC3215C0DC7A}] => (Allow) H:\Games\Steam\steamapps\common\cities xl 2012\CitiesXL_2012.exe
FirewallRules: [{E39292E3-1BAF-435D-87F1-BFD247F1ABC4}] => (Allow) H:\Games\Steam\steamapps\common\cities xl 2012\CitiesXL_2012.exe
FirewallRules: [{A184530E-B836-43D9-9923-07CC82DECCE2}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{65C3D9AE-BD7E-4AA6-B454-B19731AEC7B1}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [UDP Query User{1FB43598-A64F-48C6-8B6C-702DB100581F}H:\games\guild wars 2\gw2.exe] => (Allow) H:\games\guild wars 2\gw2.exe
FirewallRules: [TCP Query User{1ABEFB95-0F36-4F70-8302-82FC58A3B716}H:\games\guild wars 2\gw2.exe] => (Allow) H:\games\guild wars 2\gw2.exe
FirewallRules: [UDP Query User{A85ED890-03FC-42B8-A46F-DC14935B9989}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [TCP Query User{A1A7EB89-95BE-41C6-8955-A7CD2D978F15}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [UDP Query User{56E25E9D-02AD-40FC-9F4E-558BAEBDB94E}C:\users\yoan2\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\yoan2\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{F62911AD-7745-40DD-BCA8-8837245A75DF}C:\users\yoan2\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\yoan2\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{38E77646-8A45-45C8-9E26-AE13FB07970E}H:\games\world_of_tanks\worldoftanks.exe] => (Allow) H:\games\world_of_tanks\worldoftanks.exe
FirewallRules: [TCP Query User{0E018B1E-19F8-4F15-B5AD-FF87F9855022}H:\games\world_of_tanks\worldoftanks.exe] => (Allow) H:\games\world_of_tanks\worldoftanks.exe
FirewallRules: [UDP Query User{ED673B7E-6FB0-4C71-9028-E73A966C509B}H:\games\world_of_tanks\wotlauncher.exe] => (Allow) H:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [TCP Query User{42294421-648C-473B-AE58-F7C25DE12D5E}H:\games\world_of_tanks\wotlauncher.exe] => (Allow) H:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [{02BAA8E8-2930-45C5-8899-58DE2C60D8F6}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{EFE4908A-0329-4EFD-A75D-29F6B56A8D52}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{61640D0E-29F8-4C19-9EEE-F2376D523F3D}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{6B801986-41F9-4D8C-BB61-857A5845738B}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{A450A070-6425-4E9C-966A-388327A29919}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{9F339C02-048F-465B-AF3C-B8FDB31BAD35}] => (Allow) C:\Program Files (x86)\Ventrilo\Ventrilo.exe
FirewallRules: [{83EB0F2C-758F-4DCE-A8FF-B97A7B2A6676}] => (Allow) C:\Program Files (x86)\Ventrilo\Ventrilo.exe
FirewallRules: [{1CF0E808-7C60-4155-A6B5-FAA0BA27568E}] => (Allow) C:\Program Files (x86)\HP\digital imaging\smart web printing\smartwebprintexe.exe
FirewallRules: [{18B55D66-B8A0-44B4-9B1C-46B0523B9119}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{AA0EAD99-318A-42B2-B51B-D82BF4AE160C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{3B2B469C-2C1B-43B1-86DB-55A165FBA4EE}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{57D77FF2-30B3-4D40-8A66-4982E88D3722}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{C38277A6-C3C4-472B-9460-238CCB10B76B}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{3782C254-E428-43A2-8B70-4F256A527602}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{EC309C1C-C460-4113-A818-BE05886013A3}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{6444DDEC-21CC-4430-8F6A-194AD4608DA1}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{2D8EAD8F-172F-4446-9FDE-9AF289BD7D96}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{C207D216-120E-478F-90C1-114A2F1887DB}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{7C2FEB8D-3701-4259-8FA1-7D7C4E5B6124}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{645B38D7-ABD8-4DF2-B8DA-4F11BE6818EE}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{4AC7A84F-5B4A-4E9F-9691-83D35B01B806}] => (Allow) C:\Program Files (x86)\AIM\aim.exe
FirewallRules: [{61DD416D-BBB3-4F00-8B3A-5DD942B656CF}] => (Allow) C:\Program Files (x86)\AIM\aim.exe
FirewallRules: [UDP Query User{47ADF6AD-B68F-4BD4-8692-0918E583E8E6}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [TCP Query User{FD68BAA1-B030-4B54-847B-8BBD07F5B5A2}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [{9FD37DA0-AEF7-4E68-B475-35582E119112}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [UDP Query User{649305B4-1F78-4BFC-BF39-AA55DC0E66B8}C:\program files (x86)\marvell\raid\apache2\bin\httpd.exe] => (Allow) C:\program files (x86)\marvell\raid\apache2\bin\httpd.exe
FirewallRules: [TCP Query User{3D35E407-AADD-4ABB-BBA0-4CFE77F188E1}C:\program files (x86)\marvell\raid\apache2\bin\httpd.exe] => (Allow) C:\program files (x86)\marvell\raid\apache2\bin\httpd.exe
FirewallRules: [{D2E4563F-BE0C-47A5-846C-680015276025}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{6C765F81-FB82-4589-9631-7C0AD5B8AFF4}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{647E6627-8D6F-487A-818D-337EBC7E0066}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{F72A28EA-32AC-46F3-A729-49D40B94F3FD}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{5D154DE2-DA11-4C05-A674-8C1FA1AC443A}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{26D9D449-5CDD-44B7-9E03-3E626CDB5CD2}] => (Allow) H:\Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{2A4F200B-95C8-4614-97F1-D1F2002FD5B6}] => (Allow) H:\Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{B0B815B0-3457-4ADC-892A-2D82185D10E1}] => (Allow) H:\Games\Battlefield 4\bf4.exe
FirewallRules: [{9A2BA085-D2A2-44EE-A6D8-64809280CDD8}] => (Allow) H:\Games\Battlefield 4\bf4.exe
FirewallRules: [{CA3151FE-9A4A-42C1-8D8D-18AB189DA642}] => (Allow) H:\Games\Ultima 8\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{6ABBD6B8-EF98-431A-9DED-9CFC15EAC575}] => (Allow) H:\Games\Ultima 8\Game\Game\DOSBox\DOSBox.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot-S&D 2 Tray Icon
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/13/2015 02:58:45 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: WmiApRplC:\WINDOWS\system32\wbem\wmiaprpl.dll8

Error: (08/13/2015 02:58:45 PM) (Source: Perflib) (EventID: 1010) (User: )
Description: C:\Windows\System32\winspool.drvSpooler8

Error: (08/13/2015 02:58:45 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description:

Error: (08/13/2015 02:58:45 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: MSDTCC:\WINDOWS\system32\msdtcuiu.DLL8

Error: (08/13/2015 02:58:45 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: LsaC:\Windows\System32\Secur32.dll8

Error: (08/13/2015 02:58:45 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: ESENTC:\WINDOWS\system32\esentprf.dll8

Error: (08/13/2015 02:58:45 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8

Error: (08/13/2015 02:14:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: svchost.exe, version: 10.0.10240.16384, time stamp: 0x559f38cb
Faulting module name: pcasvc.dll_unloaded, version: 10.0.10240.16384, time stamp: 0x559f38b6
Exception code: 0xc0000005
Fault offset: 0x00000000000032ad
Faulting process id: 0x2b0
Faulting application start time: 0xsvchost.exe0
Faulting application path: svchost.exe1
Faulting module path: svchost.exe2
Report Id: svchost.exe3
Faulting package full name: svchost.exe4
Faulting package-relative application ID: svchost.exe5

Error: (08/13/2015 02:07:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: OHub.exe, version: 16.0.6106.2350, time stamp: 0x55c40ea1
Faulting module name: Mso30Imm.dll, version: 16.0.6014.1000, time stamp: 0x55a5783f
Exception code: 0xc0000005
Fault offset: 0x0000000000012b70
Faulting process id: 0x918
Faulting application start time: 0xOHub.exe0
Faulting application path: OHub.exe1
Faulting module path: OHub.exe2
Report Id: OHub.exe3
Faulting package full name: OHub.exe4
Faulting package-relative application ID: OHub.exe5

Error: (08/13/2015 02:03:31 PM) (Source: OverwolfUpdater) (EventID: 0) (User: )
Description: Service cannot be started. An instance of the service is already running

 

[Sparhawk52]

System errors:
=============
Error: (08/13/2015 03:27:15 PM) (Source: DCOM) (EventID: 10016) (User: Yoan-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Yoan-PCYoan2S-1-5-21-2215824855-1170150186-1298706218-1005LocalHost (Using LRPC)UnavailableUnavailable

Error: (08/13/2015 03:26:05 PM) (Source: DCOM) (EventID: 10016) (User: Yoan-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Yoan-PCYoan2S-1-5-21-2215824855-1170150186-1298706218-1005LocalHost (Using LRPC)UnavailableUnavailable

Error: (08/13/2015 03:25:50 PM) (Source: DCOM) (EventID: 10016) (User: Yoan-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Yoan-PCYoan2S-1-5-21-2215824855-1170150186-1298706218-1005LocalHost (Using LRPC)UnavailableUnavailable

Error: (08/13/2015 03:25:18 PM) (Source: DCOM) (EventID: 10016) (User: Yoan-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Yoan-PCYoan2S-1-5-21-2215824855-1170150186-1298706218-1005LocalHost (Using LRPC)UnavailableUnavailable

Error: (08/13/2015 03:12:15 PM) (Source: DCOM) (EventID: 10016) (User: Yoan-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Yoan-PCYoan2S-1-5-21-2215824855-1170150186-1298706218-1005LocalHost (Using LRPC)UnavailableUnavailable

Error: (08/13/2015 03:12:15 PM) (Source: DCOM) (EventID: 10016) (User: Yoan-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Yoan-PCYoan2S-1-5-21-2215824855-1170150186-1298706218-1005LocalHost (Using LRPC)UnavailableUnavailable

Error: (08/13/2015 02:59:50 PM) (Source: DCOM) (EventID: 10016) (User: Yoan-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Yoan-PCYoan2S-1-5-21-2215824855-1170150186-1298706218-1005LocalHost (Using LRPC)UnavailableUnavailable

Error: (08/13/2015 02:42:15 PM) (Source: DCOM) (EventID: 10016) (User: Yoan-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Yoan-PCYoan2S-1-5-21-2215824855-1170150186-1298706218-1005LocalHost (Using LRPC)UnavailableUnavailable

Error: (08/13/2015 02:42:15 PM) (Source: DCOM) (EventID: 10016) (User: Yoan-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Yoan-PCYoan2S-1-5-21-2215824855-1170150186-1298706218-1005LocalHost (Using LRPC)UnavailableUnavailable

Error: (08/13/2015 02:27:15 PM) (Source: DCOM) (EventID: 10016) (User: Yoan-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Yoan-PCYoan2S-1-5-21-2215824855-1170150186-1298706218-1005LocalHost (Using LRPC)UnavailableUnavailable


Microsoft Office:
=========================
Error: (08/13/2015 02:58:45 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: WmiApRplC:\WINDOWS\system32\wbem\wmiaprpl.dll8

Error: (08/13/2015 02:58:45 PM) (Source: Perflib) (EventID: 1010) (User: )
Description: C:\Windows\System32\winspool.drvSpooler8

Error: (08/13/2015 02:58:45 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description:

Error: (08/13/2015 02:58:45 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: MSDTCC:\WINDOWS\system32\msdtcuiu.DLL8

Error: (08/13/2015 02:58:45 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: LsaC:\Windows\System32\Secur32.dll8

Error: (08/13/2015 02:58:45 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: ESENTC:\WINDOWS\system32\esentprf.dll8

Error: (08/13/2015 02:58:45 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8

Error: (08/13/2015 02:14:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: svchost.exe10.0.10240.16384559f38cbpcasvc.dll_unloaded10.0.10240.16384559f38b6c000000500000000000032ad2b001d0d5f17d15a8abC:\WINDOWS\system32\svchost.exepcasvc.dll9011c926-37c8-4066-88bb-228cfc1accad

Error: (08/13/2015 02:07:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: OHub.exe16.0.6106.235055c40ea1Mso30Imm.dll16.0.6014.100055a5783fc00000050000000000012b7091801d0d5f2e3bad19bC:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.6106.23501.0_x64__8wekyb3d8bbwe\OHub.exeC:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.6106.23501.0_x64__8wekyb3d8bbwe\Mso30Imm.dll29db468e-cb70-41ec-90a8-c823b24274f9Microsoft.MicrosoftOfficeHub_17.6106.23501.0_x64__8wekyb3d8bbweMicrosoft.MicrosoftOfficeHub

Error: (08/13/2015 02:03:31 PM) (Source: OverwolfUpdater) (EventID: 0) (User: )
Description: Service cannot be started. An instance of the service is already running


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7 CPU 950 @ 3.07GHz
Percentage of memory in use: 50%
Total physical RAM: 12279.11 MB
Available physical RAM: 6027.34 MB
Total Virtual: 24567.11 MB
Available Virtual: 13722.52 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:111.25 GB) (Free:28.33 GB) NTFS
Drive d: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[system with boot components (obtained from reading drive)]
Drive e: (Backup) (Fixed) (Total:931.51 GB) (Free:376.65 GB) NTFS
Drive f: () (Fixed) (Total:596.07 GB) (Free:218.11 GB) NTFS
Drive g: (Avengers) (CDROM) (Total:0.21 GB) (Free:0 GB) CDFS
Drive h: () (Fixed) (Total:1863.01 GB) (Free:1740.59 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 86428099)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or Vista) (Size: 931.5 GB) (Disk ID: A06529FA)
Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 596.2 GB) (Disk ID: 6833E79C)
Partition 1: (Not Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Active) - (Size=596.1 GB) - (Type=07 NTFS)

========================================================
Disk: 3 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 83B14C67)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)

==================== End of log ============================

 

[Broni]

Welcome aboard

Please, observe following rules:

• Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
• If you're stuck, or you're not sure about certain step, always ask before doing anything else.
• Please refrain from running any tools, fixes or applying any changes to your computer other than those I suggest.
• Never run more than one scan at a time.
• Keep updating me regarding your computer behavior, good, or bad.
• The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
• If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
• I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.

===========================

Uninstall following unwanted programs:

Browser Configuration Utility
Download Updater

Download RogueKiller from one of the following links and save it to your Desktop:

Link 1
Link 2

• Close all the running programs
• Windows Vista/7/8 users: right click on RogueKiller.exe, click Run as Administrator
• Otherwise just double-click on RogueKiller.exe
• Pre-scan will start. Let it finish.
• Click on SCAN button.
• Wait until the Status box shows Scan Finished
• Click on Delete.
• Wait until the Status box shows Deleting Finished.
• Click on Report and copy/paste the content of the Notepad into your next reply.
• RKreport.txt could also be found on your desktop.
• If more than one log is produced post all logs.
• If RogueKiller has been blocked, do not hesitate to try a few times more. If really won't run, rename it to winlogon.exe (or winlogon.com) and try again

Please download Malwarebytes Anti-Malware (MBAM) to your desktop.
NOTE. If you already have MBAM 2.0 installed scroll down.

• Double-click mbam-setup-2.0.0.1000.exe and follow the prompts to install the program.
  
• At the end, be sure a checkmark is placed next to the following:
  
• Launch Malwarebytes Anti-Malware
• A 14 day trial of the Premium features is pre-selected. You may deselect this if you wish, and it will not diminish the scanning and removal capabilities of the program.
  
• Click Finish.
• On the Dashboard, click the 'Update Now >>' link
• After the update completes, click the 'Scan Now >>' button.
  
• Or, on the Dashboard, click the Scan Now >> button.
• If an update is available, click the Update Now button.
  
• A Threat Scan will begin.
• When the scan is complete, if there have been detections, click Apply Actions to allow MBAM to clean what was detected.
• In most cases, a restart will be required.
• Wait for the prompt to restart the computer to appear, then click on Yes.

If you already have MBAM 2.0 installed:

• On the Dashboard, click the 'Update Now >>' link
• After the update completes, click the 'Scan Now >>' button.
  
• Or, on the Dashboard, click the Scan Now >> button.
• If an update is available, click the Update Now button.
  
• A Threat Scan will begin.
• When the scan is complete, if there have been detections, click Apply Actions to allow MBAM to clean what was detected.
• In most cases, a restart will be required.
• Wait for the prompt to restart the computer to appear, then click on Yes.

How to get logs:
(Export log to save as txt)

• After the restart once you are back at your desktop, open MBAM once more.
• Click on the History tab > Application Logs.
• Double click on the Scan Log which shows the Date and time of the scan just performed.
• Click 'Export'.
• Click 'Text file (*.txt)'
• In the Save File dialog box which appears, click on Desktop.
• In the File name: box type a name for your scan log.
• A message box named 'File Saved' should appear stating "Your file has been successfully exported".
• Click Ok
• Attach that saved log to your next reply.

(Copy to clipboard for pasting into forum replies or tickets)

• After the restart once you are back at your desktop, open MBAM once more.
• Click on the History tab > Application Logs.
• Double click on the Scan Log which shows the Date and time of the scan just performed.
• Click 'Copy to Clipboard'
• Paste the contents of the clipboard into your reply.

Please download AdwCleaner by Xplode onto your desktop.

• Close all open programs and internet browsers.
• Double click on adwcleaner.exe to run the tool.
• Click on Scan button.
• When the scan has finished click on Clean button.
• Your computer will be rebooted automatically. A text file will open after the restart.
• Please post the contents of that logfile with your next reply.
• You can find the logfile at C:\AdwCleaner[S1].txt as well.

Please download Junkware Removal Tool to your desktop.

• Shut down your protection software now to avoid potential conflicts.
• Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
• The tool will open and start scanning your system.
• Please be patient as this can take a while to complete depending on your system's specifications.
• On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
• Post the contents of JRT.txt into your next message.

 

[Sparhawk52]

MBAM report to follow in next post.

RogueKiller V10.10.0.0 [Aug 11 2015] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 10 (10.0.10240) 64 bits version
Started in : Normal mode
User : Yoan2 [Administrator]
Started from : C:\Users\Yoan2\Downloads\RogueKiller.exe
Mode : Delete -- Date : 08/13/2015 20:37:43

¤¤¤ Processes : 0 ¤¤¤

¤¤¤ Registry : 5 ¤¤¤
[PUP] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170} -> Not selected
[PUM.SearchPage] (X64) HKEY_USERS\S-1-5-21-2215824855-1170150186-1298706218-1005\Software\Microsoft\Internet Explorer\Main | Search Page : http://ca.yhs4.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms} -> Not selected
[PUM.SearchPage] (X86) HKEY_USERS\S-1-5-21-2215824855-1170150186-1298706218-1005\Software\Microsoft\Internet Explorer\Main | Search Page : http://ca.yhs4.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms} -> Not selected
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{737ac502-b176-4220-a992-8ac62813902c} | DhcpNameServer : 64.71.255.198 64.71.255.253 ([-][CANADA (CA)]) -> Not selected
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{737ac502-b176-4220-a992-8ac62813902c} | DhcpNameServer : 64.71.255.198 64.71.255.253 ([-][CANADA (CA)]) -> Not selected

¤¤¤ Tasks : 2 ¤¤¤
[Suspicious.Path] %WINDIR%\Tasks\GoogleUpdateTaskUserS-1-5-21-2215824855-1170150186-1298706218-1001Core.job -- C:\Users\Yoan\AppData\Local\Google\Update\GoogleUpdate.exe (/c) -> Not selected
[Suspicious.Path] %WINDIR%\Tasks\GoogleUpdateTaskUserS-1-5-21-2215824855-1170150186-1298706218-1001UA.job -- C:\Users\Yoan\AppData\Local\Google\Update\GoogleUpdate.exe (/ua /installsource scheduler) -> Not selected

¤¤¤ Files : 0 ¤¤¤

¤¤¤ Hosts File : 0 [Too big!] ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Not loaded [0xc000036b]) ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: WDC WD2003FZEX-00Z4SA0 ATA Device +++++
--- User ---
[MBR] c043ce2e54e6299ce1b3e46665c6a2a6
[BSP] ad1fa4cacff2ac8e6f79a8422e198ab9 : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 1907727 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive1: WDC WD1001FALS-00E8B0 ATA Device +++++
--- User ---
[MBR] 6b887f0b85b959e433784739d298f2d8
[BSP] fe545203b9ee8d1c179c974ef0c0997d : HP|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 953867 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive2: WDC WD64 02AAEX-00Z3A0 SCSI Disk Device +++++
--- User ---
[MBR] 020b7252ddab1fed5aaf631ed023c2f7
[BSP] fa7d95bf86d296d0df49a9f1a54e7b92 : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 610378 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
Error reading LL2 MBR! ([1] Incorrect function. )

+++++ PhysicalDrive3: OCZ-VERT EX2 SCSI Disk Device +++++
--- User ---
[MBR] cabd3385c920a60dae708471cd3d4ca5
[BSP] 068b503b8344ec16bae37035e7d6878c : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 113921 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
2 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 233517056 | Size: 450 MB
User = LL1 ... OK
Error reading LL2 MBR! ([1] Incorrect function. )

 

[Sparhawk52]

Here's the MBAM report.

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 8/13/2015
Scan Time: 8:41 PM
Logfile: MBAM.txt
Administrator: Yes

Version: 2.1.8.1057
Malware Database: v2015.08.13.06
Rootkit Database: v2015.08.06.01
License: Premium
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 10
CPU: x64
File System: NTFS
User: Yoan2

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 463389
Time Elapsed: 9 min, 44 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Warn
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)

 

[Sparhawk52]

# AdwCleaner v4.208 - Logfile created 13/08/2015 at 21:02:39
# Updated 09/07/2015 by Xplode
# Database : 2015-08-12.1 [Server]
# Operating system : Windows 10 Home (x64)
# Username : Yoan2 - YOAN-PC
# Running from : C:\Users\Yoan2\Downloads\adwcleaner_4.208.exe
# Option : Cleaning

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\ec9ad9c7fa5f159d
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Coupons
Folder Deleted : C:\Program Files (x86)\Coupons
Folder Deleted : C:\Program Files (x86)\Common Files\Software Update Utility
Folder Deleted : C:\Program Files\Uninstaller
Folder Deleted : C:\Users\Administrator\AppData\Local\torch
Folder Deleted : C:\Users\Guest\AppData\Local\torch
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\torch
Folder Deleted : C:\Users\Yoan2\AppData\Local\torch
Folder Deleted : C:\Users\Yoan2\AppData\LocalLow\HPAppData
Folder Deleted : C:\Users\Yoan2\AppData\Roaming\HPAppData
File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo.xml
File Deleted : C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_plarium.com_0.localstorage
File Deleted : C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage

***** [ Scheduled tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\bopakagnckmlgajfccecajhnimjiiedh
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Deleted : HKLM\SYSTEM\CurrentControlSet\services\eventlog\Application\Update SaltarSmart
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E69D4A59-73DE-4E38-9FB3-740EC4D9060D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AACF7D0F-FF0C-4849-A7CE-33374F35BFD8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AACF7D0F-FF0C-4849-A7CE-33374F35BFD8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{AACF7D0F-FF0C-4849-A7CE-33374F35BFD8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{54400A33-6B39-4BB6-B111-1AEFA0D49F20}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9CB96984-43C3-4D44-90EF-01466EFCF7BB}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9CB96984-43C3-4D44-90EF-01466EFCF7BB}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{c1d89ae7-449d-4929-b24b-fded04adbe06}
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\AppDataLow\Software\Vafmusic2
Key Deleted : HKLM\SOFTWARE\Vafmusic2
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Coupon Printer for Windows5.0.0.0
Data Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - <local>

***** [ Web browsers ] *****

-\\ Internet Explorer v11.0.10240.16412

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page]

-\\ Mozilla Firefox v26.0 (en-US)


-\\ Google Chrome v44.0.2403.155

[C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Deleted [Homepage] :
[C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Deleted [Startup_URLs] : 5A666DD52C70ADED5594DE9BD3AFBFA1454741F54287B5F5ED3BAC718273B313"},"software_reporter":{"prompt_reason":"385EE267263422671E0AD05FCC7F7CD2953661A329ACB0D8D5D338B9FB4E0395","prompt_seed":"B152ABE28BAA419A2C2D2029E07D9E53B32CC4AC9EFA97AC4E8DCAEB297C763F","prompt_version":"DA288D5D0E2CC2557E86D267208707928C651C46551A04D3591B3C02C2280534"},"sync":{"remaining_rollback_tries":"F6190DA40B502DBAE0CA0A6EB50862B8AC99BBC09860DDF0057FE324BC165D97"}},"super_mac":"93705396706506E597FB39A582A6FC3730CEAAAFEDD65F47E01EFEDBAA09E15E"},"session":{"restore_on_startup":1,"startup_urls":["hxxp://www.google.com","hxxp://search.conduit.com/?ctid=CT3294791&SearchSource=48&CUI=UN26358492589301112&UM=2

-\\ Chromium v


-\\ Comodo Dragon v


-\\ Chrome Canary v


*************************

AdwCleaner[R0].txt - [12400 bytes] - [13/08/2015 21:00:39]
AdwCleaner[S0].txt - [4533 bytes] - [13/08/2015 21:02:39]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [4592 bytes] ##########

 

[Sparhawk52]

I'm not sure if this has any bearing on anything but JRT failed to create a restore point, error 0x80070422

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.5.6 (08.10.2015:1)
OS: Windows 10 Home x64
Ran by Yoan2 on Thu 08/13/2015 at 21:09:40.40
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services

Successfully deleted: [Service] mediamall server [Reboot required]



~~~ Tasks

Successfully deleted: [Task] C:\WINDOWS\system32\tasks\Wise Care 365
Successfully deleted: [Task] C:\WINDOWS\system32\tasks\Wise Turbo Checker
Successfully deleted: [Task] C:\WINDOWS\Tasks\Wise Care 365.job
Successfully deleted: [Task] C:\WINDOWS\Tasks\Wise Turbo Checker.job



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_D3810CBA069D576EE06BEBC3CE829050



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Policies\Google
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Eventlog\Application\Util SaltarSmart



~~~ Files

Successfully deleted: [File] C:\ProgramData\1409854254.bdinstall.bin
Successfully deleted: [File] C:\ProgramData\1409855032.4512.bin
Successfully deleted: [File] C:\ProgramData\1409855032.9408.bin
Successfully deleted: [File] C:\Users\Yoan2\Appdata\Local\google\chrome\user data\default\local storage\chrome-extension_elicpjhcidhpjomhibiffojpinpmmpil_0.localstorage
Successfully deleted: [File] C:\Users\Yoan2\Appdata\Local\google\chrome\user data\default\local storage\chrome-extension_gkojfkhlekighikafcpjkiklfbnlmeio_0.localstorage
Successfully deleted: [File] C:\Users\Yoan2\Appdata\Local\google\chrome\user data\default\local storage\chrome-extension_gkojfkhlekighikafcpjkiklfbnlmeio_0.localstorage-journal
Successfully deleted: [File] C:\Users\Yoan2\Appdata\Local\google\chrome\user data\default\local storage\hxxp_static.audienceinsights.net_0.localstorage
Successfully deleted: [File] C:\Users\Yoan2\Appdata\Local\google\chrome\user data\default\local storage\hxxp_www.metrolyrics.com_0.localstorage
Successfully deleted: [File] C:\Users\Yoan2\Appdata\Local\google\chrome\user data\default\local storage\hxxps_www.superfish.com_0.localstorage



~~~ Folders

Failed to delete: [Folder] C:\Program Files (x86)\mediamall
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{02015759-DB89-42CA-B61D-D33098FDF5FF}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{02E54981-EF45-4153-8FC6-C7F607A998D6}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{034B1A33-4245-439B-93E6-C37535821055}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{056654F9-F663-4DE9-ADE7-92723A82E2B0}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{05B0DA77-E252-4824-A8B7-D1F34F747148}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{05F87C09-305B-46C8-9E8E-A46074C6F662}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{06D51C95-0AF9-445E-8ED7-541C298AE9FF}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{0750AA1D-3106-49F2-A03F-206E1153DE4E}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{0785DF75-E79B-4F2B-BBBD-A10DF09C2BC6}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{09BD483E-70B0-4B78-989E-CF0E5640C9C1}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{09E91D82-594B-4F52-8165-BC549EF0599F}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{0BD783C3-9CAD-48A0-9A00-EBDF34094460}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{0C51A9FC-4413-47F1-B615-42C73C3546CA}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{0D21D9D5-4933-4856-963C-7A6ABA4E28E6}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{0DD41F12-A1A0-4795-8FA3-FE1157FB4753}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{0EA3C7B0-3358-4851-ACF4-F625AA26EE61}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{0EC95A70-092B-4F25-A697-168C51B95F97}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{0F629EFD-3DED-4F47-ADD3-688995500AF1}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{0FF06EC4-FE4B-41ED-8178-18BA2FA45985}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{10126E3D-BA95-48EF-A8B3-4F7C6C26814F}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{104BDC12-09B6-4C26-BCCF-BAF48D358128}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{10D958B2-BB40-4F2D-876F-B31BD7B1EA2A}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{10FA23D7-A252-4BF4-8B8C-681B2CE4D815}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{110FD692-4543-4396-929C-B2B48492ADFD}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{120C9B56-E207-4A14-A00E-DD1FC3E58959}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{12841B51-23EE-4DCA-B0AD-3AEA10DFD4E1}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{128E1B5F-837F-4E5E-B216-C9E04311F97B}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{12AC15D3-3806-448A-88FD-F1DBE2D3DE4E}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{12EEFC97-3383-42A8-B30B-AA4FDB796B1F}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{150234A5-B661-42FC-9C18-684C207EF6FF}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{162CBD79-813B-42AC-BEEF-806690A86363}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{1858AC21-99C7-4F65-9B6E-86FA4A28D2E2}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{197D217E-CE68-4650-8918-719958FCD2DD}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{19C8BEF8-06B9-4339-9E7C-E69274240C30}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{1A0A468D-DDE3-423B-977D-1B84633AD6D5}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{1BAD9AA8-D0DA-4FDE-9DF0-A62F0AF6BC00}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{1C4487CF-DF46-43CC-AD23-63102264303B}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{1CEE8CD4-2F1E-40A7-8A91-4ACA99E1DA8A}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{1F111F74-42E2-4AAA-88DC-04AA25ADB698}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{1F879DA3-6AED-45B1-9E71-63590D5586A7}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{21604932-160C-459D-92F6-85ABAF531EBC}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{22106314-C3F2-47EA-8DE5-3497956FD335}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{23972FFE-5797-486B-B8B8-8C5659536B9F}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{2403CBF3-7788-4213-8BE9-293BF7E047CD}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{247CA82C-45FF-4BC7-974C-8C63310447DC}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{249B50BD-2A35-41C4-813B-A6D3FE6914BA}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{27476069-A113-4383-9B68-C37C6AC8E155}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{278B89BF-3801-44C5-8997-F1E90E06E68A}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{27CAEF75-65AD-4D31-9A8C-8E96AAF76CAC}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{27FB9A89-36A9-4876-B30F-8CBB05727374}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{29D4055C-3D56-4763-BA8C-A199DF1E9D67}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{2AEDE752-224A-453A-9C1C-05D2208C9EC7}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{2AF27EF3-A84C-4E8B-A51B-921FA273AB05}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{2C60E929-9CE1-48DC-9CB5-76147AB9F1F9}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{2D06B96C-4CA6-49AB-9DA4-96E7FCDD66C0}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{2E626C4A-3D7B-40C3-A5E2-D83B04CB5648}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{2EF5B5A3-6C93-47A7-A5D8-A68DDF2EBE2D}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{313521E1-1D66-479F-8814-37FF641EEB4B}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{31A177B9-22AB-4432-A274-50D3B9C5C2A2}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{32319E5E-8C1B-47FC-94EC-D36C7BE11D66}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{33D61519-DF66-405F-8AC7-F9155AFD9817}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{342F9871-BA4B-4DCC-B84E-E465412DFDD6}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{34542CF2-D6F2-4F47-9224-66C64AA0B7CA}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{356C356B-6C0B-48FB-ABA8-1DA89A392270}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{35A9845F-33BE-4826-A285-0CC273B9CA3E}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{3604AEC2-8D98-4036-AEAF-719812E66F6B}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{38895FED-4610-4E97-A529-8A8341AEBA67}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{38C434D8-8D47-45AD-B49C-D25853E97CC6}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{38E0F8E9-AD01-40A7-BE72-07B8D04D2B0E}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{3979EE7E-F417-4738-95F9-63855EB01869}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{39912490-E89B-4CF6-90F2-8D075E20FB65}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{3AF6180F-8682-419B-8EB8-8BBCD47A80AD}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{3D8FA6D0-48EA-41AF-A375-BECE36902EAC}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{4188886B-2127-4568-B6B1-A4C7C5A70D7E}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{41B96CBF-6F58-4181-81D1-BAC5EE36E257}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{41CC60BE-B992-4272-8352-4027E38F17E9}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{431E8788-CA04-4407-B76D-B4F8C93E7AAA}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{435F70ED-1A95-4760-838C-F591A02CE1A7}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{43CC24C8-7DA1-4D9E-AA0B-A8FF486E0954}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{450918E7-2F45-45AB-89B4-6D31ACE96B42}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{46526CB4-0139-4498-8DE0-AC522E8D5012}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{4764E836-1FB5-4B4B-9486-6F24766D5C4B}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{48150E39-59F0-4018-AF0F-179E5358FFAD}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{48E297F5-02A9-435E-B576-5F31B4211ECB}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{4960BE2D-119E-4F8A-BCDB-515ABF3DE7AE}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{4BFE56B0-27A1-4081-B297-2A96407BA2B1}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{4CB4E3BD-1B3C-4EE1-9BDF-DB53AFF97EDB}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{4E42C12B-8F52-4FC7-8615-5E153C02D7B2}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{4F83C36C-0489-4488-AF19-447663C1AA2D}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{4FA41C19-1B10-48C3-B00F-3D681F3EA445}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{5004323E-7E9C-4106-AD6A-AAC483704A3E}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{5107282B-5ECE-4349-AF75-4947854AB199}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{52C3F209-CC24-460D-9727-D7D8497FAEA0}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{5460CF53-6BEF-4703-86F3-FC159AEBE91E}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{55D3AF7B-11E8-4A62-AFB3-A499B88C5869}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{5780FEAD-32C1-4B33-84B1-9EF392F84752}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{580F8B5D-52C9-4A26-B048-2305B7F4C26D}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{58E548EE-6192-4027-8AD3-D7E4D9179E37}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{59C0DF52-E3C7-4C9B-A4E3-826AA4B24349}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{5A4EF879-9C43-4078-AD92-34463B4CE510}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{5B577F11-6B78-4C12-B968-71A5E6A9D908}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{5B757C37-B44C-439F-95C8-ACE73D2CBECE}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{5C7E01D0-3701-462F-A299-5B9996D7A188}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{5CEBEE79-0BF3-4C3B-B972-57E7F4DEACE3}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{5D41561D-B1B1-4843-9F8A-5A1A1F1976AB}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{609499D2-B3DF-4FC9-97A5-784F54D7E113}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{60A23234-0329-4FAD-BADF-7EB06199A744}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{61921A1C-E11C-4E72-AE6F-F8051F83473A}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{6193181E-ED5B-4BBC-8F9E-16661564AB89}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{61A0A774-9C55-4A48-8887-4CA94B19FC37}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{628CDF27-FEA6-405D-A829-E299CAF9126A}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{631F6629-D8E7-43FB-8701-7915B60C338D}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{64E8230E-FE9A-4FF9-95CA-AD67D9FAF4C9}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{669A8957-DA9A-494C-9586-8EDE8D80F614}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{66DC9434-C17C-4149-B355-CB615BA39971}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{6888192F-DB22-4DDE-9D77-FC5A59D8078E}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{69F6CE00-2B01-4178-86B2-AAAEF7D54A67}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{6A4E3BBE-7139-4410-9C90-9D1658775990}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{6C799A74-0D86-4578-86F1-20874E1C469E}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{6E0B0BB5-DE15-4D9F-B2CB-1B052EE7239A}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{6E7EC295-124A-4A19-8DD6-52B5609F0DD2}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{6E98D3E3-F96A-44D0-BEA7-7E56CEE41A9B}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{70103FA8-120F-4FE9-B422-742CAC4E1AA9}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{70E35067-14E1-4EC1-B655-7D73F4964D84}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{720D2DB8-F214-4188-84AF-4D8B7514FFC8}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{7353D60B-9B86-4319-BCBD-4CB41FBF5031}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{73A36699-D18A-4ED4-BD34-1654A645E258}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{73D7AF64-2A52-4919-8D2E-5E8F95E1BA99}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{73EA6A26-471B-45BB-8CBE-999EC8494329}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{753D1975-FA72-496A-9FF1-B33A70A083B8}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{754F45A7-C0F4-4B1B-9F22-E67134A9BF6A}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{7627C2DC-CC59-49B0-96F5-38655FB98419}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{7655B0F8-239D-44DA-86CC-ABF0B5176CE2}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{76F1ECC0-F103-4CA6-BAAA-356AF9CF5BBB}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{77184841-4C31-4F73-89A3-CD401FDE4F7B}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{77AE2BDA-D139-4048-BC6D-2827FC79DC30}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{7873B87E-6054-4DA5-B06E-0DCF82AE8440}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{7BA2D34D-80BC-44A4-A655-0A1C6A3EFEC2}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{7C6C8C0E-C7D2-44AB-81B6-2250A62E1AAA}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{7D786AF3-BB57-419C-B9BF-86641D8546F6}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{7DB79E4A-F144-4D60-830A-0C5CC7A94882}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{7E96A834-3DAE-4D45-9FF8-3E9C0328B041}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{7FE4A8CA-768D-43C0-869A-B45AE222E9E7}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{80F98975-A816-4328-A0FE-E0441E51D646}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{8111066D-E918-4DA9-8278-B2302719255E}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{811D51F5-9F7A-446D-BDFE-282FE4B72F71}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{816EFA67-7F2F-4054-AB83-C71315B9B290}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{8202CC9E-1847-46A3-B470-1ED25DEFD4A0}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{820614F9-2820-4684-B1D0-6410EA18F8B5}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{838C365C-8773-4836-A9B2-E1CAA0BAA41F}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{848D1516-981A-4925-B3BA-BD0E6693537A}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{84BA7603-4A73-4C76-AC23-C150AC39A612}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{85A2B4E7-666D-4B9C-A6FE-75F9BB049550}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{85B91757-7E23-4AB3-8B99-05E6232A40A7}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{863DCE65-92F8-4D86-83E5-5911A60191B6}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{8655A2C6-23C7-42D7-9366-40943D9F7972}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{8761354C-AB7A-4F3C-A6BE-EA2A96B4BE31}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{87F85F7C-BB43-4806-BC77-AB5706E12532}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{8893CF42-52EC-4D9E-99AF-B5BBEE9C720F}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{895D2697-258D-4B5A-A572-BD8D4FB85F8D}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{8967B3CD-1AEE-4176-A65E-B787ED3DE62F}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{8B4FE23E-8CCE-4F63-A5B3-F5848CCFF272}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{8BBB0638-3107-4C15-90AC-423A1FC7335F}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{8C8D423A-077D-4DDC-A0E7-0FEFCFEFBFFD}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{8D1CA912-49DC-4C32-92ED-E401C48B5A95}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{8DE22ECA-AECA-4988-9AE6-1B7D56549631}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{8ECA2846-9E6C-401C-AB1E-686A6CCD6CAD}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{8FA58513-7B1F-41DA-9F89-7C261D478822}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{9173E16A-FF16-401B-B8FD-4C865F5D08E9}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{94E8045A-AAC7-4E66-93BC-C0BB732137B5}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{9625415E-25F6-4604-ADCC-54BB1EEAEF4E}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{96874A98-FA5B-4779-A99E-01C95B8B51F0}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{97462664-8D76-4E80-B0A6-11F083ED884F}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{99349A4B-FD5C-4D65-9731-D8BEB7700F25}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{9C4AFFAB-5E3E-4943-8473-0110A6076067}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{9F86DBA3-6441-4442-9A0D-95D6D7570EDD}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{A1430C72-FA6E-4249-BCEC-F60BB9A4B61C}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{A20452F5-E9F0-4DA2-A287-555814CC0687}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{A3378387-6004-4F7D-AFFD-356F24905378}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{A36717FC-96CB-4F9F-9C5D-58F532616537}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{A36E8D61-8290-4547-9168-475232BFB2EE}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{A3817644-CC4A-448B-8BD1-DDD3D1967551}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{A537AECA-BF1F-43CD-935D-979D170CC360}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{A65141FC-7852-4899-941D-C9A508111ABB}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{A82EB31B-E8D0-466F-BF75-D3A9F8401B22}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{A853BB2B-65D1-4525-8E61-AEDD788A15AC}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{A96679E1-4249-404C-828A-262CB0827553}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{A97CFC00-308F-454E-B0E3-A4262F34619D}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{A9C29EF4-261A-4DCE-A70B-9422098CEB10}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{AA0B4FC1-626A-4DF7-A9AF-7D5617F92E45}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{AA19F481-D759-407A-B0CA-CD0511D611D4}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{AA9188CF-A542-4202-9AE9-92FAA1B26331}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{AAC71C4D-81F9-478F-8AFB-0D1979BCFF13}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{AB025182-F3FD-442C-9B90-997F8C224C14}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{AB96F785-44F0-4D10-9A86-4F45B3804AD6}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{AC6127B7-9D83-4A4D-AFC6-A18BDA51BEB3}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{AE430CCF-D121-48CC-A735-524188CA18BF}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{B07BB18B-4E86-402B-895A-B7CD5D5460F0}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{B0BF1EE4-7198-4153-BF11-EE7BD6BAD464}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{B0CB0DDA-CD1D-466A-98C0-4D244DC9D27B}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{B2C2D789-80F7-430B-AAC8-0C497F0BE41E}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{B2CF73E2-09FE-4599-824E-29B5FA05B794}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{B410F05E-E634-421C-AF37-0C3747F4A1DE}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{B44535BC-F20D-4A1C-B7A1-C0F2582E616B}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{B45F0C5A-A3B4-43D9-A729-73F08827A0E0}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{B5FF42BD-E0EC-42DB-BF21-2E79966F474D}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{B6A78D05-CD25-45B4-BBC1-7A2FC236543F}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{B6D0A573-DAB1-45D4-ABBB-B0C66E30B9AD}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{B6F10B74-A19A-4BCB-8EEC-2BBC89CF5786}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{B75D1C16-2B58-489B-85A1-BB006383F80C}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{B7E86BE8-CC91-4883-A3B6-B0C386014DE5}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{B83E62B3-03E8-4432-856B-C8AB3F6E7453}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{B843B84E-B8FB-4107-BC87-9B33FCE39C28}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{B9872DFD-07E5-4D79-BFA3-B7CA2BD22770}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{BA0C5112-E6F4-4F86-A796-7D72201DC611}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{BA9BE4A3-2A10-4016-8A16-A7200EFEDABF}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{BAF2B85C-56F4-4A8C-BF6D-4059F6BB4F64}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{BAFB4AAD-E42E-450E-BBCB-E83F99682F89}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{BB82F115-3AD2-4B3E-AE6B-EAC3512D6101}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{BC13B9DD-2D7C-4D8F-81E6-95A04ACC576E}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{BC1E61D1-EF8D-428B-AB5B-5128E58F4146}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{BC9E397F-2304-4313-8BA7-DF2A002B768D}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{BCD22106-46A6-4600-9206-19DCA66A2B35}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{BE0BA423-30FC-4D88-BF92-67E221E3704B}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{BE504A2E-06C5-4C81-9037-13578E6B9831}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{BFB89CC4-4722-437B-8B1F-572A4AEDECF9}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{BFC60BDD-1946-4694-A578-C8ACD1B752AA}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{C01FD5A3-FB98-4C2E-9B9A-24B8346A37EA}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{C0B73320-DD51-4748-8DA9-5EED3B73146A}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{C13390E7-97E4-4848-85BE-8A517481E004}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{C1966151-7710-45F4-A2DC-849C2DB2122A}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{C3F379A3-0612-44C8-B4EC-F66102BDCD17}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{C42F7425-8313-4880-BDFE-017B1897DE92}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{C431555A-35D6-4100-952E-668810BCC485}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{C461C433-EABC-4CE8-8D46-7AA25663B28C}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{C487070C-569D-4367-9A64-53BBC116E795}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{C5E57BE1-F522-4EDE-9225-BE31B16D7334}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{C619A4EE-6F93-47B3-B70A-29F7EB0527A3}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{C6BB1C78-7C8C-417F-BEDB-037EB9105A7C}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{C7E40C9A-310C-4C3D-A03F-41BE6C7EF856}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{C8F1E2D1-BAAB-4157-84F4-780C83CC480C}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{CA5D69F6-E55A-45A2-9A1B-CF70B20A5E0A}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{CA5F4245-C4E1-4617-BC13-EB634CF498CD}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{CB883BF8-545E-49ED-8C52-19C391EEE557}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{CC5496B6-0CAF-40D0-BB37-84412A3C01E3}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{CD3D7554-7419-4E69-9D07-223F2DA9596B}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{CDE80563-3C86-4671-A780-842BB8301910}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{CEA720E1-57D2-4265-B89F-32FC623F3ACC}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{CEB1089C-9EC9-4F5D-8116-838C311375CE}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{D02D49D9-CB33-4C25-BE27-992A8BC32A06}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{D24BCE17-8140-4AB3-AD9F-484B5C8CA05D}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{D54B7F2A-8D23-477A-960B-319982FD758B}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{D5D508BD-0248-4A8C-9086-3160EDCAF010}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{D8230607-FBDD-4446-8D96-52F5FE638E34}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{D8FBFAF3-2957-4515-A182-AB4AAEF83B3F}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{D9017858-DB4C-4BB4-B3FF-2C405B371B69}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{DB15C173-D79B-4F7F-9691-077038E433C9}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{DB441665-FF6E-4911-8C44-0ACFDFD0813F}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{DBE0C992-1859-4CD4-99E2-160DAEF7BF63}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{DC1626C6-AFE8-47CA-AD09-A4E8873E1FD3}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{DCBD1883-4141-452B-AFA9-3DB2848E9875}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{DE98FA3E-2694-4C8C-B6BF-C776CE99CB4A}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{E0410D3B-7C1A-4C54-9206-156C1758E81D}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{E23ABF07-D6B9-49DF-82B1-0EB39A6458DC}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{E28D6D89-2178-4099-AC41-A1EABF22CB6C}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{E2EFDAB4-DB8F-4886-AEE3-765CFEC1AC5A}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{E4B801EB-38F1-412C-92A5-31B83520A772}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{E55677D0-1FD2-44DA-B49B-0A49353D4D8F}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{E6465CCA-F43B-42C2-BEB4-47FF10410F67}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{E661E5DE-6EC0-43F0-B8C9-6408A7D3B432}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{E67CC9A9-BE71-44DE-B5E6-969E4A96A6E0}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{E688E25E-0CC7-435D-92CB-FF8EA3D9AAFA}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{E6AD0E3D-4DF0-41EE-BC77-18B457E8E3AE}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{E7A3310F-CFC4-4ED6-97AD-6BA083170A19}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{E96DA73E-3424-48AE-B74F-A0D944EC7A3D}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{E9AE3D47-C76B-4AEC-9BFB-39FBED74737F}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{E9FF8432-46CD-4ADA-A08B-1042FDEBE3D4}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{EA087C50-9D96-4679-9416-2840C6C75C6C}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{EB4C9280-4238-4D07-92A0-2B421C9F8B36}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{EE5E630C-556B-4E7C-849D-8C37282A4B1F}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{EFD72F71-4D7F-4560-8C33-8E649C06CAF7}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{EFEF9A99-872C-4DF0-8644-22C62EA06433}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{F04A5AE9-9242-4B72-9158-C300F6684D91}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{F154EC3E-5D04-49FC-A5F4-D8496675B75E}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{F1D578C6-A04F-4122-969E-A866B8659ECC}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{F25DD9AE-4193-4FA8-B766-E40EB0EE57E9}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{F50375A2-7EC0-4811-814E-C6F9104DABAA}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{F57C0339-79D8-4B4F-8522-25C861981BBF}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{F5FBD08B-79B1-418C-A68B-0F9D03B0A5EB}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{F6898EE9-16AA-488C-A939-D6666E251B14}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{F68D84FA-76A5-4C5D-9EBA-D4BA257487B1}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{F743A050-39C7-4EE9-A26F-93ABA5DCF72C}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{F7CD8B00-9D0C-4B65-B0FF-E384B4043CD8}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{F86A4BEE-6A38-4CC8-A064-D41C2A1C127D}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{F88C53FC-6976-45B1-A8B4-EEECC92FCB3A}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{F9A7615C-1CD3-4185-A6E1-9BEBE96969F2}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{F9BB5522-E205-4562-9FFE-5C9F1A7796E8}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{FAC83E6C-760E-46F9-8B9E-04D5D2E5CA45}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{FB15497E-BC22-495F-AF42-D178EB8480C9}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{FB5EAFEB-E822-44A7-B10F-1C3F5B87E2DE}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{FC0FA402-5BF5-4BF2-AC36-93E0C524F9AD}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{FC2E17B3-EF9E-49A6-96B3-5B84A41CCE36}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{FE74F3F7-D1CA-478B-8BC6-F599F68C5D55}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{FF44FAF3-AB62-4ED8-BD4A-7E2960D682A1}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{FF8B6002-3A14-4013-9D27-ED5F6A14BBA8}
Successfully deleted: [Empty Folder] C:\Users\Yoan2\Appdata\Local\{FFAABCAC-18D0-4AD5-AB5D-504D5098E228}
Successfully deleted: [Folder] C:\ProgramData\google
Successfully deleted: [Folder] C:\ProgramData\mediamall
Successfully deleted: [Folder] C:\Users\Yoan2\Appdata\Local\crashrpt
Successfully deleted: [Folder] C:\WINDOWS\SysWOW64\ai_recyclebin



~~~ FireFox

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@playon.tv/playontoolbar
Emptied folder: C:\Users\Yoan2\AppData\Roaming\mozilla\firefox\profiles\h6chord6.default\minidumps [7 files]



~~~ Chrome


[C:\Users\Yoan2\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - default search provider reset

[C:\Users\Yoan2\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted:

[C:\Users\Yoan2\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset

[C:\Users\Yoan2\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted:
[]





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Thu 08/13/2015 at 21:12:23.87
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

[Broni]

Re-run Farbar Recovery Scan Tool (FRST/FRST64) you ran at the very beginning of this topic.

• Double-click to run it. When the tool opens click Yes to disclaimer.
• Make sure you checkmark Addition.txt box.
• Press Scan button.
• Scan will create two logs, FRST.txt and Addition.txt in the same directory the tool is run. Please copy and paste them to your reply.

 

[Sparhawk52]

Additional scan result of Farbar Recovery Scan Tool (x64) Version:13-08-2015
Ran by Yoan2 (2015-08-13 22:37:05)
Running from C:\Users\Yoan2\Downloads
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2215824855-1170150186-1298706218-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2215824855-1170150186-1298706218-503 - Limited - Disabled)
Guest (S-1-5-21-2215824855-1170150186-1298706218-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2215824855-1170150186-1298706218-1007 - Limited - Enabled)
Yoan2 (S-1-5-21-2215824855-1170150186-1298706218-1005 - Administrator - Enabled) => C:\Users\Yoan2

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 17.0.0.124 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.12) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.8.158 - Adobe Systems, Inc.)
Age of Empires II: HD Edition (HKLM-x32\...\Steam App 221380) (Version: - Hidden Path Entertainment, Ensemble Studios)
AI Suite II (HKLM-x32\...\{34D3688E-A737-44C5-9E2A-FF73618728E1}) (Version: 2.01.01 - ASUSTeK Computer Inc.)
AIM 7 (HKLM-x32\...\AIM_7) (Version: - )
AIM for Windows (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\AIM) (Version: - AOL Inc.)
Akamai NetSession Interface (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\Akamai) (Version: - Akamai Technologies, Inc)
Anno 2070 (HKLM-x32\...\Steam App 48240) (Version: - BlueByte / related Design)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Archeage (HKLM-x32\...\Glyph Archeage) (Version: - Trion Worlds, Inc.)
Arctic Combat (HKLM-x32\...\Steam App 212370) (Version: - )
ARK: Survival Evolved (HKLM-x32\...\Steam App 346110) (Version: - Studio Wildcard)
ARMA 2 (HKLM-x32\...\Steam App 33900) (Version: - Bohemia Interactive)
Arma 2: DayZ Mod (HKLM-x32\...\Steam App 224580) (Version: - )
ARMA 2: Operation Arrowhead (HKLM-x32\...\Steam App 33930) (Version: - Bohemia Interactive)
Arma 2: Operation Arrowhead Beta (HKLM-x32\...\Steam App 219540) (Version: - )
Auto Clicker by Shocker (HKLM-x32\...\Auto Clicker by Shocker_is1) (Version: V3.0.1 - shockingsoft.com)
AutoHotkey 1.0.48.05 (HKLM-x32\...\AutoHotkey) (Version: 1.0.48.05 - Chris Mallett)
Avast Pro Antivirus (HKLM-x32\...\Avast) (Version: 10.3.2225 - AVAST Software)
Avengers Snapshots (HKLM-x32\...\Avengers Snapshots) (Version: - )
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.4.2.30944 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version: - )
Big Fish: Game Manager (HKLM-x32\...\BFGC) (Version: 3.2.0.6 - )
Blackthorne (HKLM-x32\...\{C563EEF9-17FF-4563-8B78-82AF0C4577CE}) (Version: 1.0.0 - Blizzard Entertainment)
BufferChm (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
C310 (x32 Version: 140.0.304.000 - Hewlett-Packard) Hidden
Call of Duty: Black Ops II - Multiplayer (HKLM-x32\...\Steam App 202990) (Version: - )
Call of Duty: Black Ops II - Zombies (HKLM-x32\...\Steam App 212910) (Version: - )
Call of Duty: Black Ops II (HKLM-x32\...\Steam App 202970) (Version: - )
Casino.com (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\Casino.com) (Version: - )
Castle Story (HKLM-x32\...\Steam App 227860) (Version: - Sauropod Studio)
CCleaner (HKLM\...\CCleaner) (Version: 4.14 - Piriform)
Cities XL 2012 (HKLM-x32\...\Steam App 201760) (Version: - )
Cities: Skylines (HKLM-x32\...\Steam App 255710) (Version: - Colossal Order)
Clicker Heroes (HKLM-x32\...\Steam App 363970) (Version: - )
Combined Community Codec Pack 2011-11-11 (HKLM-x32\...\Combined Community Codec Pack_is1) (Version: 2011.11.11.0 - CCCP Project)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Core Temp 1.0 RC6 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu)
CPUID ROG CPU-Z 1.58 (HKLM\...\CPUID ROG CPU-Z_is1) (Version: 1.58 - CPUID, Inc.)
Craft The World (HKLM-x32\...\Steam App 248390) (Version: - )
Crysis®3 MP Open Beta (HKLM-x32\...\{02454664-23E6-46B3-9CB3-30870AE3645E}) (Version: 1.0.0.0 - Electronic Arts)
Cube World version 0.0.1 (HKLM-x32\...\{D692A0E0-1BBB-4E9C-826E-4254EE330830}_is1) (Version: 0.0.1 - Picroma)
Curse Client (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse)
CuteFTP 9 (HKLM-x32\...\{89B9E358-75C6-4C6B-BD38-803FF156CC4B}) (Version: 9.0.0 - Globalscape)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.46.1.0327 - DT Soft Ltd)
Data Lifeguard Diagnostic for Windows 1.28 (HKLM-x32\...\{519C4DB6-B53B-4F5C-8297-89B2BE949FA5}_is1) (Version: - Western Digital Corporation)
DayZ (HKLM-x32\...\Steam App 221100) (Version: - Bohemia Interactive)
DayZ Commander (HKLM-x32\...\{EEFA60F7-E766-4BDC-AB0A-91CE2E38A829}) (Version: 0.9.85 - Dotjosh Studios)
DC Universe Online (HKLM-x32\...\Steam App 24200) (Version: - Sony Online Entertainment)
Dead Space™ (HKLM-x32\...\{9789E33B-317A-44B2-AF9A-FF8708AD93E0}) (Version: 1.0.0.222 - Electronic Arts)
Dead Space™ 3 (HKLM-x32\...\{D4329609-4102-4F8C-B83F-7FE024EEA314}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Destinations (x32 Version: 140.0.77.000 - Hewlett-Packard) Hidden
Deus Ex: Human Revolution - Director's Cut (HKLM-x32\...\Steam App 238010) (Version: - Eidos Montreal)
DeviceDiscovery (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
DisplayFusion 7.1 (HKLM-x32\...\B076073A-5527-4f4f-B46B-B10692277DA2_is1) (Version: 7.1.0.0 - Binary Fortress Software)
District 187 (HKLM-x32\...\Steam App 221080) (Version: - )
DivX Web Player (HKLM-x32\...\{B7050CBDB2504B34BC2A9CA0A692CC29}) (Version: 1.5.0 - DivX,Inc.)
Don't Starve (HKLM-x32\...\Steam App 219740) (Version: - )
DOOM 3: BFG Edition (HKLM-x32\...\Steam App 208200) (Version: - id Software)
Dota 2 (HKLM-x32\...\Steam App 570) (Version: - Valve)
DreamPlan Home Design Software (HKLM-x32\...\DreamPlan) (Version: 1.31 - NCH Software)
Dropbox (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\Dropbox) (Version: 3.4.6 - Dropbox, Inc.)
Dungeonland (HKLM-x32\...\Steam App 218130) (Version: - Critical Studio)
EA Sports™ FIFA World (HKLM-x32\...\{8F9AC744-EEF6-43DB-A4B6-FA1A18F1C640}) (Version: 7.0.0.47449 - Electronic Arts, Inc.)
Echo: Secret of the Lost Cavern (HKLM-x32\...\BFG-Echo - Secret of the Lost Cavern) (Version: - )
Far Cry 3 (HKLM-x32\...\{E3B9C5A9-BD7A-4B56-B754-FAEA7DD6FA88}) (Version: 1.00 - Ubisoft)
ffdshow [rev 2527] [2008-12-19] (HKLM-x32\...\ffdshow_is1) (Version: 1.0 - )
FileZilla Client 3.7.3 (HKLM-x32\...\FileZilla Client) (Version: 3.7.3 - Tim Kosse)
FINAL FANTASY VII (HKLM-x32\...\Steam App 39140) (Version: - Square Enix)
Game Dev Tycoon (HKLM-x32\...\Steam App 239820) (Version: - Greenheart Games)
GamersFirst LIVE! (HKLM-x32\...\GamersFirst LIVE!) (Version: - GamersFirst)
Glary Utilities PRO 5.25 (HKLM-x32\...\Glary Utilities 5) (Version: 5.25.0.44 - Glarysoft Ltd)
Glyph (HKLM-x32\...\Glyph) (Version: - Trion Worlds, Inc.)
Gnomoria (HKLM-x32\...\Steam App 224500) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 44.0.2403.155 - Google Inc.)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Talk Plugin (HKLM-x32\...\{CA3DD97D-1FD7-37A7-BD5C-FC4430C8B8E6}) (Version: 5.41.2.0 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6710.2136 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden
Guild Wars (HKLM-x32\...\Steam App 29720) (Version: - ArenaNet)
Guild Wars (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\Guild Wars) (Version: - )
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
HandBrake 0.10.1 (HKLM-x32\...\HandBrake) (Version: 0.10.1 - )
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes & Generals (HKLM-x32\...\Steam App 227940) (Version: - Reto-Moto)
Hewlett-Packard ACLM.NET v1.1.0.0 (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
Hitman: Absolution (HKLM-x32\...\Steam App 203140) (Version: - IO Interactive)
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.9.216 - SurfRight B.V.)
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.11352 - HP Photo Creations Powered by RocketLife)
HP Photosmart Prem C310 All-In-One Driver Software 14.0 Rel. 7 (HKLM\...\{4E484899-4F93-4086-88BA-56BDDF47A776}) (Version: 14.0 - HP)
HP Product Detection (HKLM-x32\...\{A436F67F-687E-4736-BD2B-537121A804CF}) (Version: 11.14.0001 - HP)
HP Smart Web Printing 4.60 (HKLM\...\HP Smart Web Printing) (Version: 4.60 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Support Solutions Framework (HKLM-x32\...\{FC3C2B77-6800-48C6-A15D-9D1031130C16}) (Version: 11.51.0049 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPAppStudio (x32 Version: 140.0.95.000 - Hewlett-Packard) Hidden
HPDiagnosticAlert (x32 Version: 1.00.0000 - Microsoft) Hidden
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden
iCloud (HKLM\...\{EAFB2AD8-D92B-464C-8D97-B9CB94703C4A}) (Version: 3.0.2.163 - Apple Inc.)
iFit Module (HKLM-x32\...\iFitModuleAir.A325EF93A9FDC16120FBA0CC8A28360B0E189979.1) (Version: 1.6.0 - ICON Health & Fitness, Inc.)
iFit Module (x32 Version: 1.6.0 - ICON Health & Fitness, Inc.) Hidden
iFitLIVE (HKLM-x32\...\iFitLIVE.A325EF93A9FDC16120FBA0CC8A28360B0E189979.1) (Version: 1.4.0 - ICON Health & Fitness, Inc.)
iFitLIVE (x32 Version: 1.4.0 - ICON Health & Fitness, Inc.) Hidden
Intel(R) Network Connections 16.5.2.0 (HKLM\...\PROSetDX) (Version: 16.5.2.0 - Intel)
Itibiti RTC (x32 Version: 0.0.1 - Itibiti Inc) Hidden
iTunes (HKLM\...\{A04DCB25-7040-4935-A30D-8E0A893ABF2D}) (Version: 11.1.2.32 - Apple Inc.)
Java 7 Update 71 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417071FF}) (Version: 7.0.710 - Oracle)
Java 7 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217071FF}) (Version: 7.0.710 - Oracle)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
JMicron JMB36X Driver (HKLM-x32\...\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}) (Version: 1.00.0000 - JMicron Technology Corp.)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Learning Lodge Navigator (HKLM-x32\...\VTechDownloadManager) (Version: - VTech)
Logitech Gaming Software 8.46 (HKLM\...\Logitech Gaming Software) (Version: 8.46.27 - Logitech Inc.)
MakeMKV v1.9.1 (HKLM-x32\...\MakeMKV) (Version: v1.9.1 - GuinpinSoft inc)
Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
marvell 91xx driver (HKLM-x32\...\MagniDriver) (Version: 1.0.0.1034 - Marvell)
Marvell MRU V4 (HKLM-x32\...\mv61xxMRU) (Version: 4.1.0.1610 - Marvell)
Mass Effect™ 3 (HKLM-x32\...\{534A31BD-20F4-46b0-85CE-09778379663C}) (Version: 1.05.0.0 - Electronic Arts)
Media Player Classic - Home Cinema 1.6.1.4235 (HKLM-x32\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.6.1.4235 - MPC-HC Team)
Metro 2033 (HKLM-x32\...\Steam App 43110) (Version: - THQ)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation)
Microsoft Office Word Viewer 2003 (HKLM-x32\...\{90850409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Thunderbird 12.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Thunderbird 12.0.1 (x86 en-US)) (Version: 12.0.1 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Mumble 1.2.10 (HKLM-x32\...\{63243F5C-E941-4461-A4B0-2689A9A3BF13}) (Version: 1.2.10 - Thorvald Natvig)
MURDERED: SOUL SUSPECT™ (HKLM-x32\...\Steam App 233290) (Version: - Airtight Games)
My Singing Monsters (HKLM-x32\...\BFG-My Singing Monsters) (Version: - )
My.com Game Center (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\MyComGames) (Version: 3.140 - My.com B.V.)
NEC Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}) (Version: 1.0.19.0 - NEC Electronics Corporation)
NEC Electronics USB 3.0 Host Controller Driver (x32 Version: 1.0.19.0 - NEC Electronics Corporation) Hidden
Network64 (Version: 140.0.215.000 - Hewlett-Packard) Hidden
Network64 (Version: 140.0.221.000 - Hewlett-Packard) Hidden
Neverwinter (HKLM-x32\...\Neverwinter) (Version: - Cryptic Studios)
Neverwinter (HKLM-x32\...\Steam App 109600) (Version: - Cryptic Studios)
No More Room in Hell (HKLM-x32\...\Steam App 224260) (Version: - No More Room in Hell Team)
Nosgoth (HKLM-x32\...\Steam App 200110) (Version: 140204.77077 - Square Enix Ltd)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 5.9.8 - )
NVIDIA 3D Vision Controller Driver 349.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 349.95 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 350.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 350.12 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.5.12.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.12.11 - NVIDIA Corporation)
NVIDIA Graphics Driver 350.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 350.12 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0324 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0324 - NVIDIA Corporation)
ObjectDock Plus 2 (HKLM-x32\...\ObjectDock Plus 2) (Version: 1.00 - Stardock Corporation)
OCCT 4.4.1 (HKLM-x32\...\OCCT) (Version: 4.4.1 - Ocbase.com)
Origin (HKLM-x32\...\Origin) (Version: 8.5.2.23 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.88.41.0 - Overwolf Ltd.)
PalaceChat version 4.2.133 (HKLM-x32\...\PalaceChat_is1) (Version: 4.2.133 - )
Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.1 - Pando Networks Inc.)
Path of Exile (HKLM-x32\...\{90A4562F-D4A1-4B65-906D-41F236CF6902}) (Version: 0.10.0.22479 - Grinding Gear Games)
Path of Exile (HKLM-x32\...\Steam App 238960) (Version: - Grinding Gear Games)
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.)
Peggle (HKLM-x32\...\{715AD72D-887A-459E-988B-D4F3E87FA24B}) (Version: 1.04.0.0 - PopCap Games)
PingPlotter Pro 3.42.3p (HKLM-x32\...\{76BFD10E-1701-43F4-BAF9-57FD51724A7A}) (Version: 3.42.3.5 - Nessoft, LLC)
PlanetSide 2 (HKLM-x32\...\Steam App 218230) (Version: - Sony Online Entertainment)
Play withSIX (HKLM-x32\...\{42DCB650-F003-4535-A5CD-32AD815CD2DD}) (Version: 1.20.0370 - SIX Networks)
PlayOn (HKLM-x32\...\{8B400FBF-66BC-4696-8452-BA464464A4CD}) (Version: 3.10.16 - MediaMall Technologies, Inc.)
Plex Media Server (HKLM-x32\...\{10d692ef-81ce-40ac-b82b-058286c058a6}) (Version: 0.9.1204 - Plex, Inc.)
Plex Media Server (x32 Version: 0.9.1204 - Plex, Inc.) Hidden
Popcorn Time (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\Popcorn Time) (Version: - Popcorn Official)
PS_AIO_07_C310_SW_Min (x32 Version: 140.0.304.000 - Hewlett-Packard) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
QuickTransfer (x32 Version: 140.0.98.000 - Hewlett-Packard) Hidden
RaidCall (HKLM-x32\...\RaidCall) (Version: 7.2.6-1.0.8500.17 - raidcall.com)
Rainmeter (HKLM-x32\...\Rainmeter) (Version: 2.2 r1116 - )
Razer Cortex (HKLM-x32\...\Razer Cortex_is1) (Version: 6.1.7.0 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Red Orchestra 2: Heroes of Stalingrad - Single Player (HKLM-x32\...\Steam App 236830) (Version: - )
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.4.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.4.0 - Renesas Electronics Corporation) Hidden
Rising Storm/Red Orchestra 2 Multiplayer (HKLM-x32\...\Steam App 35450) (Version: - Tripwire Interactive)
ROBLOX Player for Yoan2 (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - ROBLOX Corporation)
ROG GameFirst v4.53 (HKLM\...\ROG GameFirst) (Version: 4.53 - cFos Software GmbH, Bonn)
Safari (HKLM-x32\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
Scan (x32 Version: 140.0.80.000 - Hewlett-Packard) Hidden
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.12.11 - NVIDIA Corporation) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version: - 2K Games, Inc.)
Sid Meier's Civilization: Beyond Earth (HKLM-x32\...\Steam App 65980) (Version: - Firaxis Games)
SimCity 2000 Special Edition (HKLM-x32\...\{59D2C751-F7BE-4E9F-9C8C-1F16013802C7}) (Version: 2.0.0.1 - Electronic Arts)
SimCity 4 Deluxe (HKLM-x32\...\Steam App 24780) (Version: - Maxis)
SimCity™ (HKLM-x32\...\{F70FDE4B-8F86-4eb6-8C8E-636EC89F6419}) (Version: 4.0.86.0859 - Electronic Arts)
Six Updater (HKLM-x32\...\{2D8CED57-CCDB-4D86-9087-3BBCAE8F8F22}) (Version: 2.09.7024 - Six Projects)
skyforge_mycom (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\skyforge_mycom) (Version: 1.28 - My.com B.V.)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation)
Skype™ 7.7 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.7.103 - Skype Technologies S.A.)
Sleeping Dogs™ (HKLM-x32\...\Steam App 202170) (Version: - United Front Games)
SleepMapper Data Card Uploader 2.1.1 (HKLM-x32\...\4414-4382-9884-2117) (Version: 2.1.1 - Philips Respironics)
Smart Port Forwarding (HKLM-x32\...\Smart Port Forwarding) (Version: 1.0.0.1 - Brooks Younce Software)
SmartWebPrinting (x32 Version: 140.0.186.000 - Hewlett-Packard) Hidden
Smite (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF017}) (Version: 2.9.2835.5 - Hi-Rez Studios)
SolutionCenter (x32 Version: 140.0.214.000 - Hewlett-Packard) Hidden
Sound Blaster X-Fi MB 2 (HKLM-x32\...\{89F922D6-E3E0-4303-AF8E-CE18412E3A18}) (Version: 1.0 - Creative Technology Limited)
Spotify (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\Spotify) (Version: 1.0.11.134.ga37df67b - Spotify AB)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.2.25 - Safer-Networking Ltd.)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Starbound (HKLM-x32\...\Steam App 211820) (Version: - )
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Stardock Software (x32 Version: 1.00 - Stardock Corporation) Hidden
Status (x32 Version: 140.0.256.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Supreme Commander 2 (HKLM-x32\...\Steam App 40100) (Version: - Gas Powered Games)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
SysTools Hard Drive Data Recovery v3.3 (HKLM-x32\...\SysTools Hard Drive Data Recovery_is1) (Version: - )
Tap Tap Infinity (HKLM-x32\...\Steam App 380360) (Version: - Scary Bee LLC)
tConfig version 0.35.1a (HKLM-x32\...\{224E185A-DCC7-45C5-B04D-77E6CE82D83E}_is1) (Version: 0.35.1a - Surfpup)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 8 (HKLM-x32\...\TeamViewer 8) (Version: 8.0.20202 - TeamViewer)
Terraria (HKLM-x32\...\Steam App 105600) (Version: - Re-Logic)
Terraria Game Launcher version 3.0 (HKLM-x32\...\Terraria Game Launcher_is1) (Version: 3.0 - Eikester)
The Binding of Isaac (HKLM-x32\...\Steam App 113200) (Version: - )
The Elder Scrolls Online (HKLM-x32\...\The Elder Scrolls Online) (Version: 1.0.0.0 - Zenimax Online Studios)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios)
The Mighty Quest For Epic Loot (HKLM-x32\...\Steam App 239220) (Version: - Ubisoft Montreal)
The War Z version 1.0 (HKLM-x32\...\{BC3051A7-1021-4B57-A3DA-AAC24566FAE7}_is1) (Version: 1.0 - Arktos Entertainment Group LLC)
Theme Hospital (HKLM-x32\...\{5118A4C2-C8A4-4CE5-AC37-F3E51C25402F}) (Version: 3.0.0.2 - Electronic Arts)
Thief (HKLM-x32\...\Steam App 239160) (Version: - Eidos-Montréal)
Tomb Raider (HKLM-x32\...\Steam App 203160) (Version: - Crystal Dynamics)
Toolbox (x32 Version: 140.0.428.000 - Hewlett-Packard) Hidden
Torchlight II (HKLM-x32\...\Steam App 200710) (Version: - )
TrayApp (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Trove (HKLM-x32\...\Glyph Trove) (Version: - Trion Worlds, Inc.)
Tukui Client (HKLM-x32\...\{BAD6EBBD-A6A9-41C9-898A-8C868A552E4C}) (Version: 2.4.6 - Tukui)
Twilight Phenomena: Strange Menagerie Collector's Edition (HKLM-x32\...\BFG-Twilight Phenomena - Strange Menagerie Collector's Edition) (Version: - )
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Ultima 8 (HKLM-x32\...\{428C6B01-D292-46F9-9321-75668ED17DA2}) (Version: 1.0.0.1 - Electronic Arts)
Uninstall Dual Mode Camera (V25) (HKLM-x32\...\V25_2015_0121_1632_is1) (Version: - )
Unity Web Player (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Unturned (HKLM-x32\...\Steam App 304930) (Version: - Nelson Sexton)
VC80CRTRedist - 8.0.50727.762 (x32 Version: 1.0.0 - DivX, Inc) Hidden
Vegas Pro 11.0 (64-bit) (HKLM\...\{CF411A4F-5ED9-11E1-B971-F04DA23A5C58}) (Version: 11.0.595 - Sony)
Ventrilo Client (HKLM-x32\...\{789289CA-F73A-4A16-A331-54D498CE069F}) (Version: 3.0.8 - Flagship Industries, Inc.)
Ventrilo Client for Windows x64 (HKLM\...\{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}) (Version: 3.0.8.0 - Flagship Industries, Inc.)
Villagers and Heroes (HKLM-x32\...\Steam App 263540) (Version: - Mad Otter Games)
Visual Traceroute (HKLM-x32\...\{83B17F6C-F32B-43E1-94AE-F06DAFC7FA32}) (Version: 1.0.101 - Ipswitch, Inc.)
VTech Download Agent Library (x32 Version: 1.00.0000 - VTech) Hidden
WebReg (x32 Version: 140.0.212.017 - Hewlett-Packard) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.623 - Nullsoft, Inc)
WinDirStat 1.1.2 (HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\WinDirStat) (Version: - )
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Wing Commander III (HKLM-x32\...\{F96B9930-E22A-44D6-81B5-6C8E92C21B4B}) (Version: 2.0.0.2 - Electronic Arts)
WinRAR 4.10 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.10.0 - win.rar GmbH)
Wise Care 365 version 2.44 (HKLM-x32\...\{E864A1C8-EEE1-47D0-A7F8-00CC86D26D5E}_is1) (Version: 2.44 - WiseCleaner.com, Inc.)
Wise Game Booster 1.12 (HKLM-x32\...\Wise Game Booster_is1) (Version: 1.12 - WiseCleaner.com, Inc.)
Wise Registry Cleaner 7.69 (HKLM-x32\...\Wise Registry Cleaner_is1) (Version: 7.69 - WiseCleaner.com, Inc.)
World of Tanks (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812}_is1) (Version: - Wargaming.net)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
Worms Clan Wars (HKLM-x32\...\Steam App 233840) (Version: - Team17 Digital Ltd)
YNAB 4 version 4.3.729 (HKLM-x32\...\com.ynab.YNAB4.LiveCaptive_is1) (Version: 4.3.729 - YouNeedABudget.com)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{444785F1-DE89-4295-863A-D46C3A781394}\InprocServer32 -> C:\Users\Yoan2\AppData\LocalLow\Unity\WebPlayer\loader-x64\UnityWebPluginAX.ocx (Unity Technologies ApS)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{575fb331-5bba-4e77-8463-1e8d87b2e73c}\InprocServer32 -> C:\Windows\system32\dfshim.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncApi64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 22:34 - 2014-03-19 08:06 - 00450769 ___RA C:\WINDOWS\system32\Drivers\etc\hosts
108.162.204.16 thewarz.com
108.162.205.16 api.thewarz.com
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 123haustiereundmehr.com

There are 1000 more lines.


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00EEBA9C-F9EF-4272-B793-C830FBADD359} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\Windows\system32\dstokenclean.exe [2015-07-10] (Microsoft Corporation)
Task: {093364DD-AF57-4508-A17F-B79E8BC3C8FA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {0CCA7916-2916-4F12-BD32-1E3BE31E1269} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\Windows\System32\dsregcmd.exe [2015-07-10] (Microsoft Corporation)
Task: {1641F54C-1E57-4902-AB65-EE2B65E5629D} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan => C:\Windows\system32\usoclient.exe [2015-07-10] (Microsoft Corporation)
Task: {19865544-CE08-40BE-8B8C-87C47681433D} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sihboot => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {1D3D099E-EE1E-4907-8BA2-BA8F12D11AA6} - System32\Tasks\Microsoft\Windows\Location\Notifications => C:\Windows\System32\LocationNotificationWindows.exe [2015-07-10] (Microsoft Corporation)
Task: {2C6DB4F4-EB95-4CF8-830C-0A7C9D65EAF6} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {2C97A00A-1C5C-4318-B5CC-8A1A126B77F9} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\KeyPreGenTask
Task: {3D7E9A95-7F35-4431-BE1A-0DE52085177F} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {3F6E048D-6404-433B-8F5F-CFF4D89BF89E} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe generaltel.dll,RunTelemetryW
Task: {4034FA11-6F38-4ADD-B5CD-66D10D5E0B31} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {406D52BE-3273-4546-A6A4-906763206D83} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-08-05] (AVAST Software)
Task: {41160EA0-208B-4C3E-B4DB-805BBABC6B93} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\Windows\system32\dmclient.exe [2015-07-10] (Microsoft Corporation)
Task: {4454A8D0-2E4E-4A02-BF67-48DF6A7BFAB4} - System32\Tasks\Microsoft\Windows\Maps\MapsUpdateTask
Task: {4806BEC7-0ED6-4723-A243-3E27D9E280E9} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {495BF9D7-60F9-44C2-A49C-8021FC28343A} - System32\Tasks\ASUS\ASUS AI Suite II Execute => C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2012-03-13] (ASUSTeK Computer Inc.)
Task: {530D859B-07BA-4BC9-A716-037C6941545F} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [2015-05-11] (Glarysoft Ltd)
Task: {54341D27-5942-4F87-AB8C-490D00CB6AF4} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {5470888F-FD44-46BB-AFA4-B91B7BE5E8C1} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {571B8305-4FFF-47D5-A3FB-99A5B2152186} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2015-08-09] (Overwolf LTD)
Task: {5909A45E-F430-4269-B72A-BF82FC9A92B8} - System32\Tasks\{1C7DD4BA-5505-4F3C-A7F7-7C4299C0EF58} => pcalua.exe -a "C:\Users\Yoan2\Downloads\wlsetup-web (1).exe" -d C:\Users\Yoan2\Downloads
Task: {59CB53E9-9C5D-4B85-92AD-92C51352EBD4} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {5A756C90-5D6D-4766-BBF3-2570D07118E0} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {5DECB5B0-E3CD-432D-AC76-AF4CA8F0DB56} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {5E5515C1-7D87-4904-B9CE-FD29EB2ADB72} - System32\Tasks\Microsoft\Windows\Sysmain\ResPriStaticDbSync
Task: {611C823C-437B-46E7-9683-5312DFFCFD7B} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install => C:\Windows\system32\usoclient.exe [2015-07-10] (Microsoft Corporation)
Task: {64C4A532-9B1E-45B0-884E-85E542A5B3C3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {69C85107-E6E4-47D6-A914-50D57E127245} - System32\Tasks\{A2932869-229C-4B96-9C15-C859AAA45128} => pcalua.exe -a "C:\Program Files (x86)\Hi-Rez Studios\HiRezGamesDiagAndSupport.exe" -c uninstall=all
Task: {6E4CE09E-A8BD-4F2B-9B82-5EC5DBC9920F} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {711EE2F9-A611-4773-AF8E-D4B278A6718D} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\AikCertEnrollTask
Task: {73551810-E5F4-433E-9494-0D00B55C855E} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTask
Task: {744C9FEA-08B7-43E1-A729-0F94647D655C} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot => C:\Windows\system32\usoclient.exe [2015-07-10] (Microsoft Corporation)
Task: {78B77FA3-9D97-441D-97B6-68CEA40B4F74} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe generaltel.dll,RunTelemetry -maintenance
Task: {78E4A952-EF54-4BC5-A8E1-21B2489E126A} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2215824855-1170150186-1298706218-1001UA => C:\Users\Yoan\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {7A003965-A297-4DC6-B15B-852D798391E0} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot => C:\WINDOWS\system32\MusNotification.exe [2015-08-09] (Microsoft Corporation)
Task: {848DCC36-520C-4946-BF68-C7EFFEFA2F84} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot => C:\windows\system32\MusNotification.exe [2015-08-09] (Microsoft Corporation)
Task: {85CEECC4-9E1F-4C46-9051-5B8009BCA03B} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {8C79A0F5-F278-4DFA-A74E-2A155123F76E} - System32\Tasks\{5BCDEE9A-ABE2-4A80-A8C7-260E2DA86A9B} => c:\windows\system32\launchwinapp.exe [2015-07-10] (Microsoft Corporation)
Task: {8DEE873A-FADA-4DDD-A38A-E976E21CDCB5} - System32\Tasks\{45842536-A1E6-4D1E-AB19-D56A7C75BF37} => pcalua.exe -a H:\downloads\acidpro70c.exe -d H:\downloads
Task: {8DF84CB3-D8E0-4307-A35B-CA74E21786DB} - System32\Tasks\Microsoft\Windows\Clip\License Validation => C:\Windows\system32\ClipUp.exe [2015-08-09] (Microsoft Corporation)
Task: {91EEE95A-E3CD-4763-A683-4FE2AA623622} - System32\Tasks\Microsoft\Windows\SetupSQMTask => C:\WINDOWS\SYSTEM32\OOBE\SETUPSQM.EXE [2015-07-10] (Microsoft Corporation)
Task: {94BBCACE-C4CF-461B-A306-7E50780CFDEC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-19] (Google Inc.)
Task: {950DD47A-A45A-4F57-9E48-A4727C381A37} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {9760CD89-AD8B-4C9A-8748-1EDFF5741A21} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {9EE08649-B8AD-4478-B8A4-B9FB4FD16434} - System32\Tasks\{7F1A1D3F-B8FE-401E-970B-EACDDBFCDA58} => Chrome.exe http://ui.skype.com/ui/0/6.7.59.102/en/go/help.faq.installer?LastError=112
Task: {A0FDE821-0692-40DE-9721-977A1BBA6C3B} - System32\Tasks\Microsoft\Windows\RetailDemo\CleanupOfflineContent
Task: {A18EACEF-FD99-47AA-9E18-08EF1EB71B37} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {A2B64717-1142-4127-9A75-FF9FEB4DEB63} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {A364E297-00AD-490D-900E-22AC34598C71} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install => C:\Windows\system32\usoclient.exe [2015-07-10] (Microsoft Corporation)
Task: {A4F90324-922B-463B-92B4-17D62044914A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-19] (Google Inc.)
Task: {A5B6CD85-1B57-49B9-BA80-5D5D65F02826} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager
Task: {A69EE772-7EA6-4747-BFA4-7F4F1499B0FB} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {A723FA4E-62E7-4A5A-891F-4C6791C37842} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {A9108718-FACD-4890-AC22-72BA0AC8A41C} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {A9422B7C-95B1-44CF-82C9-FB09FBED0637} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {AC29E64E-3271-47BA-B8F1-914523CF379B} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Automatic App Update
Task: {AC63349B-E6D0-406D-9A3B-B8F0A6518EC4} - System32\Tasks\Core Temp Autostart Yoan2 => C:\Program Files\Core Temp\Core Temp.exe [2013-10-08] ()
Task: {ADE2F4D6-FE8A-43CC-8B1B-137B4020C796} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {B0AF1099-A5E5-4A25-B96C-93A3A200FDE3} - System32\Tasks\ASUS\ASUS RegRun Loader => C:\Program Files (x86)\ASUS\AASP\1.01.02\AsLoader.exe [2009-12-28] (ASUSTeK Computer Inc.)
Task: {B176823B-B24B-4036-98B2-E6FBDE3456F8} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {B380A902-6B7B-4CF9-8FA3-E372D358C210} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION

 

[Sparhawk52]

Task: {B427C49E-EA99-48A9-997D-43F474F4B186} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {B58FE319-86C7-4DE7-9304-C6EFA9E88A0D} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {B699E3AA-2BEA-4E8D-902D-EE1CE6FA7846} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {B9B36D41-C776-424E-9A13-5387E17A2CEB} - System32\Tasks\Microsoft\Windows\WCM\WiFiTask => C:\Windows\System32\WiFiTask.exe [2015-07-10] (Microsoft Corporation)
Task: {BCEBC9F7-01A9-484B-82E6-ECF6E0CD38A6} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {C1F2A4F6-AA1D-4CDC-9882-9339472E4F5A} - System32\Tasks\GlaryInitialize 5 => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe [2015-05-11] (Glarysoft Ltd)
Task: {C2162702-FFEB-48C0-AA5F-2DA3A8887D61} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\Installation
Task: {C3C8321E-2AC6-41F6-976D-F31E892BACA0} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {C4592693-BB85-4E5A-9DF6-F338B358BAE6} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {C56AFFD3-06B8-4A16-AF7E-F7A6EB3FAE9E} - System32\Tasks\Microsoft\Windows\TPM\Tpm-HASCertRetr
Task: {C5EE2EA2-5312-4D1F-B9D0-41B18DF31B78} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sih => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {C6CF8F42-6855-459E-AEBE-5735A43A302C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {C7A236B2-12E1-46DC-9501-3B1B0209CC09} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\Windows\System32\WindowsActionDialog.exe [2015-07-10] (Microsoft Corporation)
Task: {C7D4D1A1-B3D3-4ED8-8406-BE224904624C} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {CEE31615-3BEA-4D4F-86FD-805406B5741D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-12] (Adobe Systems Incorporated)
Task: {D00046E4-6CD5-4826-AC39-3F021BDF6635} - System32\Tasks\{F0DD35AE-11DD-4A62-9097-FCAAC9252BE9} => C:\Users\Yoan2\Downloads\301.42-desktop-win7-winvista-64bit-english-whql.exe
Task: {D2401052-A382-42DE-9C79-D1CF3563F654} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\Uninstallation
Task: {D33BCBD6-31E2-4DB4-B596-05ED27EFCC4A} - System32\Tasks\HP Photo Creations Communicator => C:\ProgramData\HP Photo Creations\Communicator.exe [2013-03-01] ()
Task: {D52FC474-C0DE-489B-B742-74C0421E986B} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {D6B5D304-5E71-4496-AB1B-40DD81862169} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-05-20] (Piriform Ltd)
Task: {DAF2BAE3-1C5B-4CB5-9F62-0911C031A15A} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics => C:\Windows\system32\disksnapshot.exe [2015-07-10] (Microsoft Corporation)
Task: {DEAB3144-B60A-4E9F-897E-F84357232B7C} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2215824855-1170150186-1298706218-1005Core => C:\Users\Yoan2\AppData\Local\Google\Update\GoogleUpdate.exe [2012-03-23] (Google Inc.)
Task: {E0A525A4-53F1-4F9D-BD62-041D3EB7A1B2} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2215824855-1170150186-1298706218-1005UA => C:\Users\Yoan2\AppData\Local\Google\Update\GoogleUpdate.exe [2012-03-23] (Google Inc.)
Task: {E159B038-7229-453D-9258-ECC09B630FE1} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {E4A4EEE6-3F90-43FA-A34C-A671E2033F87} - System32\Tasks\ASUS\Easy Update => C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe [2012-10-08] ()
Task: {EA3F661E-B31C-44A9-B40C-E3D5D56149D4} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display => C:\windows\system32\MusNotification.exe [2015-08-09] (Microsoft Corporation)
Task: {EE5AE38E-8C2F-4EDC-A274-028BBD688BDF} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2215824855-1170150186-1298706218-1001Core => C:\Users\Yoan\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {EF70A885-312A-4F7E-B6DF-255CF5D66978} - \Desk 365 RunAsStdUser -> No File <==== ATTENTION
Task: {F7677660-E4AE-4C58-A756-04F73CC12AF1} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {FFECEBD8-5FF5-4540-B628-3E0DEFFA5401} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\Check for updates (Spybot - Search & Destroy).job => 0x0106010016459D74C372CC48B6BB0C3BDAC9810546005E020000000000000000200000000014730F000000000313040000248005000000000000000000000000000000000000400043003A005C00500072006F006700720061006D002000460069006C00650073002000280078003800360029005C0053007000790062006F00740020002D002000530065006100720063006800200026002000440065007300740072006F007900200032005C00530044005500700064006100740065002E0065007800650000002B002F006100750074006F0075007000640061007400650020002F00730069006C0065006E00740020002F006100750074006F0063006C006F007300650020002F006200610063006B00670072006F0075006E006400000000001C0053007000790062006F00740020002D002000530065006100720063006800200026002000440065007300740072006F0079002000320000007A00540068006900730020007400610073006B002000770069006C006C00200072006500670075006C00610072006C007900200063006800650063006B00200066006F007200200073006F00660074007700610072006500200075007000640061007400650073002C00200061006E006400200069006E007300740061006C006C00200061006E007900200061007600610069006C00610062006C006500200075007000640061007400650073002C00200074006F00200065006E007300750072006500200079006F00750020006100720065002000770065006C006C002D00700072006F007400650063007400650064002E000000000008000313040000000000010030000000DE07030013000000000000000700230000000000000000000000000007000000010000000000000000000000
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2215824855-1170150186-1298706218-1001Core.job => C:\Users\Yoan\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2215824855-1170150186-1298706218-1001UA.job => C:\Users\Yoan\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2215824855-1170150186-1298706218-1005Core.job => C:\Users\Yoan2\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2215824855-1170150186-1298706218-1005UA.job => C:\Users\Yoan2\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\HP Photo Creations Communicator.job => C:\ProgramData\HP Photo Creations\Communicator.exe
Task: C:\WINDOWS\Tasks\Refresh immunization (Spybot - Search & Destroy).job => 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
Task: C:\WINDOWS\Tasks\Scan the system (Spybot - Search & Destroy).job => 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

==================== Loaded Modules (Whitelisted) ==============

2015-08-09 00:36 - 2015-08-09 00:36 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-08-08 20:42 - 2015-07-22 21:10 - 00116552 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00403968 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2012-05-27 21:03 - 2015-08-12 20:27 - 00076888 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2010-02-09 04:35 - 2010-02-09 04:35 - 00235560 _____ () C:\Program Files (x86)\Marvell\raid\svc\mvraidsvc.exe
2015-07-22 17:30 - 2015-07-22 17:30 - 00187048 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 02498808 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2012-01-24 19:43 - 2010-09-22 16:20 - 00776704 _____ () C:\Program Files (x86)\Stardock\ObjectDockPlus2\Dock64.dll
2013-12-19 21:21 - 2012-10-08 18:48 - 01404800 _____ () C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 02498808 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2012-01-24 18:43 - 2012-01-09 20:44 - 00193536 _____ () C:\Program Files\WinRAR\rarext.dll
2015-07-10 06:59 - 2015-07-10 06:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-08-11 15:14 - 2015-08-02 21:11 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-07-10 07:00 - 2015-07-10 09:14 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-08-11 15:14 - 2015-08-02 21:08 - 01806848 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-08-11 15:14 - 2015-08-02 21:09 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 07:00 - 2015-07-10 09:14 - 00210432 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
2014-09-19 00:03 - 2014-05-04 20:16 - 00927936 _____ () C:\Program Files (x86)\AutoClickerbyShocker\AutoClicker.exe
2015-08-05 21:33 - 2015-08-05 21:33 - 00102864 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-08-05 21:33 - 2015-08-05 21:33 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-08-13 13:28 - 2015-08-13 13:28 - 02962432 _____ () C:\Program Files\AVAST Software\Avast\defs\15081302\algo.dll
2011-11-02 00:26 - 2011-11-02 00:26 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2011-11-02 00:26 - 2011-11-02 00:26 - 01242472 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2008-01-17 13:17 - 2008-01-17 13:17 - 00073782 _____ () C:\Program Files (x86)\Marvell\raid\Apache2\bin\zlib1.dll
2013-04-30 12:27 - 2013-04-30 12:27 - 00000000 _____ () C:\WINDOWS\SYSTEM32\zraidapi.dll
2013-04-30 12:27 - 2013-04-30 12:27 - 00000000 _____ () C:\WINDOWS\SYSTEM32\mv_api.dll
2013-12-19 21:21 - 2012-09-19 16:38 - 05012856 _____ () C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzULIB.dll
2013-12-19 21:21 - 2010-06-21 16:21 - 00208896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\ImageHelper.dll
2012-01-24 18:58 - 2009-05-21 11:14 - 00053248 ____N () C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\HookKey32.dll
2012-01-24 18:58 - 2009-05-21 11:14 - 00253952 ____N () C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\pngio.dll
2012-01-24 18:56 - 2011-07-12 20:14 - 00147456 ____N () C:\Program Files (x86)\ASUS\AI Suite II\AssistFunc.dll
2012-01-24 18:56 - 2010-10-05 09:22 - 00253952 ____N () C:\Program Files (x86)\ASUS\AI Suite II\pngio.dll
2012-01-24 18:57 - 2010-05-30 19:27 - 01016320 ____N () C:\Program Files (x86)\ASUS\AI Suite II\AI Direct Link\AiDirectLink.dll
2012-01-24 18:56 - 2012-03-21 13:07 - 00972288 ____N () C:\Program Files (x86)\ASUS\AI Suite II\BarGadget\BarGadget.dll
2013-12-19 21:21 - 2012-08-01 11:51 - 01040896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EasyUpdt.dll
2012-01-24 18:57 - 2010-06-29 11:58 - 01235968 ____N () C:\Program Files (x86)\ASUS\AI Suite II\MyLogo\MyLogo.dll
2012-01-24 18:57 - 2010-07-02 16:02 - 01028608 ____N () C:\Program Files (x86)\ASUS\AI Suite II\Probe_II\ProbeII.dll
2012-01-24 18:56 - 2012-05-25 11:33 - 00883712 ____N () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\Sensor.dll
2012-01-24 18:56 - 2012-05-28 22:27 - 01622528 ____N () C:\Program Files (x86)\ASUS\AI Suite II\Sensor Graph\SensorGraph.dll
2012-01-24 18:56 - 2011-09-19 21:18 - 01243136 ____N () C:\Program Files (x86)\ASUS\AI Suite II\Settings\Settings.dll
2012-01-24 18:56 - 2011-07-21 10:06 - 00846848 ____N () C:\Program Files (x86)\ASUS\AI Suite II\Splitter\Splitter.dll
2012-01-24 18:56 - 2011-10-14 21:03 - 00885248 ____N () C:\Program Files (x86)\ASUS\AI Suite II\TabGadget\TabGadget.dll
2013-12-19 21:20 - 2012-10-12 04:58 - 00662016 _____ () C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMLib.dll
2012-01-24 18:56 - 2010-10-05 09:22 - 00208896 ____N () C:\Program Files (x86)\ASUS\AI Suite II\ImageHelper.dll
2015-07-10 07:58 - 2015-07-10 07:58 - 00143680 _____ () C:\Program Files (x86)\Mumble\mumble_ol.dll
2012-01-24 19:43 - 2010-09-30 21:50 - 00675840 _____ () C:\Program Files (x86)\Stardock\ObjectDockPlus2\DockShellHook.dll
2012-01-24 18:56 - 2009-08-12 21:15 - 00253952 ____N () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\pngio.dll
2015-05-17 18:06 - 2015-07-24 00:22 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-06-11 02:11 - 2015-06-11 02:11 - 00838792 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libxml2.dll
2015-06-11 02:11 - 2015-06-11 02:11 - 00049800 _____ () C:\Program Files (x86)\Plex\Plex Media Server\soci_sqlite3-vc80-3_0.dll
2015-06-11 02:11 - 2015-06-11 02:11 - 00086664 _____ () C:\Program Files (x86)\Plex\Plex Media Server\soci_core-vc80-3_0.dll
2015-06-11 02:11 - 2015-06-11 02:11 - 02092680 _____ () C:\Program Files (x86)\Plex\Plex Media Server\opencv_core249.dll
2015-06-11 02:11 - 2015-06-11 02:11 - 01883272 _____ () C:\Program Files (x86)\Plex\Plex Media Server\opencv_imgproc249.dll
2015-06-11 02:11 - 2015-06-11 02:11 - 00502920 _____ () C:\Program Files (x86)\Plex\Plex Media Server\tag.dll
2015-06-11 02:11 - 2015-06-11 02:11 - 00072840 _____ () C:\Program Files (x86)\Plex\Plex Media Server\zlib.dll
2015-06-11 02:11 - 2015-06-11 02:11 - 00196232 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libidn.dll
2013-04-30 12:27 - 2013-04-30 12:27 - 00000000 _____ () C:\WINDOWS\SYSTEM32\nvd3dum.dll
2013-04-30 12:27 - 2013-04-30 12:27 - 00000000 _____ () C:\WINDOWS\system32\nvapi.dll
2015-06-11 02:11 - 2015-06-11 02:11 - 00044680 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_socket.pyd
2015-06-11 02:11 - 2015-06-11 02:11 - 00027784 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_ssl.pyd
2015-06-11 02:11 - 2015-06-11 02:11 - 00018568 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_hashlib.pyd
2015-06-11 02:11 - 2015-06-11 02:11 - 00034952 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\simplejson\_speedups.pyd
2015-06-11 02:11 - 2015-06-11 02:11 - 00836232 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\lxml\etree.pyd
2015-06-11 02:11 - 2015-06-11 02:11 - 00062600 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libexslt.dll
2015-06-11 02:11 - 2015-06-11 02:11 - 00166024 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libxslt.dll
2015-06-11 02:11 - 2015-06-11 02:11 - 00192136 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\lxml\objectify.pyd
2015-06-11 02:11 - 2015-06-11 02:11 - 00016520 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\select.pyd
2015-06-11 02:11 - 2015-06-11 02:11 - 00054920 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\OpenSSL\crypto.pyd
2015-06-11 02:11 - 2015-06-11 02:11 - 00017032 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\OpenSSL\rand.pyd
2015-06-11 02:11 - 2015-06-11 02:11 - 00043656 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\OpenSSL\SSL.pyd
2015-06-11 02:11 - 2015-06-11 02:11 - 00081544 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_ctypes.pyd
2015-06-11 02:11 - 2015-06-11 02:11 - 00111240 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\pyexpat.pyd
2015-06-11 02:11 - 2015-06-11 02:11 - 00689800 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\unicodedata.pyd
2015-03-13 22:48 - 2015-03-13 22:48 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2012-01-24 19:43 - 2012-01-21 12:01 - 00807936 _____ () C:\Program Files (x86)\Stardock\ObjectDockPlus2\CrashRpt.dll
2012-01-24 19:43 - 2010-03-09 17:58 - 00053760 _____ () C:\Program Files (x86)\Stardock\ObjectDockPlus2\zlib.dll
2012-01-24 19:43 - 2010-03-09 17:58 - 00094208 _____ () C:\Program Files (x86)\Stardock\ObjectDockPlus2\Docklets\Clock\Clock.dll
2014-09-01 13:06 - 2015-07-30 19:47 - 00264192 _____ () C:\Program Files (x86)\Razer\Razer Cortex\D3DX8Wrapper.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:2CB9631F
AlternateDataStreams: C:\ProgramData\TEMP:3807D082
AlternateDataStreams: C:\ProgramData\TEMP:6E6A4F42
AlternateDataStreams: C:\ProgramData\TEMP:7C27C41C

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UserManager => ""="Service"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\sony.com -> sony.com

IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\123simsen.com -> www.123simsen.com

There are 7865 more restricted sites.

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\Control Panel\Desktop\\Wallpaper -> C:\Users\Yoan2\AppData\Local\DisplayFusion\Wallpaper_1
DNS Servers: 208.122.23.22 - 208.122.23.23
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Winamp.lnk => C:\Windows\pss\Winamp.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Yoan2^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Spotify => "C:\Users\Yoan2\AppData\Roaming\Spotify\spotify.exe" /uri spotify:autostart
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Yoan2\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{ABCC3F86-DCE9-4181-BC43-2D1A95C3140D}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{8AE6F3D2-C124-4202-9A52-17F26D1FE021}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [UDP Query User{08F9DFFA-5310-443B-AD36-CBC66268A14D}C:\users\yoan2\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\yoan2\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [TCP Query User{FD4EA049-0ACE-4F9E-A467-EA941455C67A}C:\users\yoan2\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\yoan2\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [{DA81EF98-E2C3-4588-A249-983E53A9BF3B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{25F380AE-0E5F-44AE-859E-C662CEF2C0B3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{3586A28B-6E02-4E0A-8C1A-BAF3F46D83E2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{E8626EA0-7898-4BBF-8FC4-3BD22FC5D7A3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{D0ABCBD6-DB4F-42C0-A998-1E238DF95615}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{3E23906C-5958-49FC-AD20-2FC0FA6C7168}] => (Allow) H:\Games\Steam\steamapps\common\Tap Tap Infinity\TapTapInfinity.exe
FirewallRules: [{66940F64-A1A6-44B7-A686-86CC77DF2277}] => (Allow) H:\Games\Steam\steamapps\common\Tap Tap Infinity\TapTapInfinity.exe
FirewallRules: [{62C27584-E498-493C-93A1-B8B8859B7B49}] => (Allow) H:\Games\Battle.net\Battle.net.exe
FirewallRules: [{C2CB453F-2613-4588-B2D3-4689B0B0D0AD}] => (Allow) H:\Games\Battle.net\Battle.net.exe
FirewallRules: [{96B85AE3-0E3E-4EB7-AE46-8911C1E19B68}] => (Allow) H:\Steam\Steam.exe
FirewallRules: [{9039E441-7803-431A-8002-DD0584703B4A}] => (Allow) H:\Steam\Steam.exe
FirewallRules: [{69CE3EE5-C5D4-4329-A2D4-03243EFCEC64}] => (Allow) C:\Program Files\Ventrilo\Ventrilo.exe
FirewallRules: [{423BA05A-20D2-404F-AE64-D55FF5DEB35C}] => (Allow) C:\Program Files\Ventrilo\Ventrilo.exe
FirewallRules: [{C5088FF9-2479-4911-A10C-0C91777EA578}] => (Allow) H:\Games\Steam\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{D4733796-B32D-4D74-BD27-B802493CD798}] => (Allow) H:\Games\Steam\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{3B00AA1D-F2DB-43DC-99CF-C1A651BAAAB5}] => (Allow) H:\Games\Steam\steamapps\common\VillagersAndHeroes\AMysticalLandSAC\VillagersAndHeroes.exe
FirewallRules: [{57FAC620-D4BE-419B-AE78-4CEF17484343}] => (Allow) H:\Games\Steam\steamapps\common\VillagersAndHeroes\AMysticalLandSAC\VillagersAndHeroes.exe
FirewallRules: [{586DD2A3-74F7-45AD-8CBD-F0902FEDDE6B}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\PlexDlnaServer.exe
FirewallRules: [{5243527D-A89A-476D-AA79-CF0D1F372982}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe
FirewallRules: [{A92B612B-B5DF-4245-ADF9-B157A5F1CB73}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe
FirewallRules: [{F6BD6F9E-AFB0-45C2-AB86-066FC75EE1F7}] => (Allow) H:\Games\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{06ED215D-FDF7-4FE8-8F9A-C3CE135D9386}] => (Allow) H:\Games\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [UDP Query User{85A12117-3A9F-4005-A9ED-D491B446BAC7}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{63CAF541-AB8B-43CE-AAC3-88BB3E0F1FC4}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{B49AA2B2-D98E-4B3F-99D5-BFBD0691BAAC}] => (Allow) H:\Games\Steam\steamapps\common\Clicker Heroes\Clicker Heroes.exe
FirewallRules: [{28190BA6-4B5C-4D7D-820A-0AB2485DBDF2}] => (Allow) H:\Games\Steam\steamapps\common\Clicker Heroes\Clicker Heroes.exe
FirewallRules: [{83E9DFC5-DE5E-49E7-930A-32332F3B8AB5}] => (Allow) H:\Games\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{00684598-C7C4-4C1C-9B7D-6204A26495B8}] => (Allow) H:\Games\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [UDP Query User{7C8438AC-AC65-4D5E-869B-86122EC681D8}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{FE767CEC-6CA8-4EBD-920E-47AED6C8A04D}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{FB1AC758-77F5-4B4B-9A3E-6F6B083FC03F}] => (Allow) H:\Games\Steam\steamapps\common\VillagersAndHeroes\AMysticalLandSAC\VillagersAndHeroes.exe
FirewallRules: [{414B7A42-C2EC-4E88-91AD-6C99102B7635}] => (Allow) H:\Games\Steam\steamapps\common\VillagersAndHeroes\AMysticalLandSAC\VillagersAndHeroes.exe
FirewallRules: [{640755CA-2D73-4797-ABEB-94554233C64E}] => (Allow) H:\Games\Steam\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{CD2B3DA9-1AF2-4D9A-9C2A-13AA3AE36DF8}] => (Allow) H:\Games\Steam\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{1E44B604-9472-4B09-A8A5-E8876301195A}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{DDED3876-217E-438B-BDED-2D555662E48B}] => (Allow) LPort=1900
FirewallRules: [{A8C163BF-9574-4EA2-9592-361D20A8C1B3}] => (Allow) LPort=2869
FirewallRules: [{6E397511-8EF2-4934-BFA8-3BF1BA3BA2F5}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{76863B53-AA83-4D6F-930F-26E9E3DB0FA8}] => (Allow) C:\Users\Yoan2\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [UDP Query User{35491D0C-AC5C-4C2D-861C-0EB023880CA7}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [TCP Query User{CBC09D30-6219-4479-82CA-5819B77F440E}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [UDP Query User{F1F803F0-0999-4978-8EC1-FEFFC1A1100B}C:\users\yoan2\appdata\local\popcorn time\node-webkit\popcorn time.exe] => (Allow) C:\users\yoan2\appdata\local\popcorn time\node-webkit\popcorn time.exe
FirewallRules: [TCP Query User{E97801CB-9D52-4D66-8674-B7688D876ED4}C:\users\yoan2\appdata\local\popcorn time\node-webkit\popcorn time.exe] => (Allow) C:\users\yoan2\appdata\local\popcorn time\node-webkit\popcorn time.exe
FirewallRules: [UDP Query User{5964A329-63FB-45B2-AA58-A23666C1A6C5}D:9\games\steam\steam.exe] => (Allow) D:9\games\steam\steam.exe
FirewallRules: [TCP Query User{8B42CC81-27A8-4DCB-BB19-110B50E0C13F}D:9\games\steam\steam.exe] => (Allow) D:9\games\steam\steam.exe
FirewallRules: [UDP Query User{4C58DA0F-CEE2-4B8A-B44B-5B009CC54A9C}D:6\games\steam\steam.exe] => (Allow) D:6\games\steam\steam.exe
FirewallRules: [TCP Query User{D4D8E74E-0A12-44AE-978B-21FB5837BEA6}D:6\games\steam\steam.exe] => (Allow) D:6\games\steam\steam.exe
FirewallRules: [{6A4806B2-1EB3-4B16-83F6-D8053D0455DA}] => (Allow) H:\Games\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{DCBF1BC3-E20F-44C3-B40F-6DF7C8B7F9C4}] => (Allow) H:\Games\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{EB85C458-3F05-4F86-8DD7-2B602B27B61B}] => (Allow) H:\Games\Steam\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{CBA5BA85-FBAA-4791-84A8-6810015722D7}] => (Allow) H:\Games\Steam\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{DA948C82-9E10-4504-B611-DE1CFA3B40FA}] => (Allow) H:\Games\Steam\steamapps\common\SleepingDogs\HKShip.exe
FirewallRules: [{4D118F3F-4FB0-4157-AD39-07CFFE383C43}] => (Allow) H:\Games\Steam\steamapps\common\SleepingDogs\HKShip.exe
FirewallRules: [{B366875A-C752-43D0-8402-11A283926969}] => (Allow) H:\Games\Steam\steamapps\common\Tomb Raider\TombRaider.exe
FirewallRules: [{F306FAC0-4595-4005-850C-97957D0557E4}] => (Allow) H:\Games\Steam\steamapps\common\Tomb Raider\TombRaider.exe
FirewallRules: [{E71E673C-0177-49A2-A523-DB423CBA1902}] => (Allow) H:\Games\Steam\steamapps\common\Murdered Soul Suspect\Binaries\Win64\Murdered.exe
FirewallRules: [{4C0E2AB3-3955-44B9-924B-F32F8D7D0CE8}] => (Allow) H:\Games\Steam\steamapps\common\Murdered Soul Suspect\Binaries\Win64\Murdered.exe
FirewallRules: [{D1983554-C2EE-403D-9827-96BE76A78C22}] => (Allow) H:\Games\Steam\steamapps\common\Thief\Binaries\Win64\Shipping-ThiefGame.exe
FirewallRules: [{DB362B68-30C9-496F-A881-71D305858869}] => (Allow) H:\Games\Steam\steamapps\common\Thief\Binaries\Win64\Shipping-ThiefGame.exe
FirewallRules: [{D3707704-88D0-4939-AADE-CD521D875968}] => (Allow) H:\Games\Steam\steamapps\common\Supreme Commander 2\bin\SupremeCommander2.exe
FirewallRules: [{A6A06E4F-1082-4D0C-AB5A-F9D881F950A5}] => (Allow) H:\Games\Steam\steamapps\common\Supreme Commander 2\bin\SupremeCommander2.exe
FirewallRules: [{0DFB9067-F86F-4240-9CF9-C519BB6F5823}] => (Allow) H:\Games\Steam\steamapps\common\Hitman Absolution\HMA.exe
FirewallRules: [{10A325BD-4832-4A57-AE8D-34E32C394A96}] => (Allow) H:\Games\Steam\steamapps\common\Hitman Absolution\HMA.exe
FirewallRules: [UDP Query User{CF28FF48-400A-47FA-8B26-3707863A16CC}C:\users\yoan2\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\yoan2\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{6B3C57CC-D4D4-4631-B004-3753699A19F0}C:\users\yoan2\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\yoan2\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{740BCAE3-5213-4B13-80B6-5D61D8163569}] => (Allow) H:\Games\Steam\steamapps\common\Call of Duty Black Ops II\t6zm.exe
FirewallRules: [{0835E02A-0995-43A3-823A-36134A842FA8}] => (Allow) H:\Games\Steam\steamapps\common\Call of Duty Black Ops II\t6zm.exe
FirewallRules: [{F053E3EB-2E39-4BD5-87DC-0AF41C6ED6BA}] => (Allow) H:\Games\Theme Hospital\data\Game\DOSBox\LAUNCHER.exe
FirewallRules: [{9AB1F433-B2E9-4204-8974-26435FB69B3F}] => (Allow) H:\Games\Theme Hospital\data\Game\DOSBox\LAUNCHER.exe
FirewallRules: [UDP Query User{D2C57CD4-4B70-44FB-AE9D-8381DA317415}H:\games\diablo iii\diablo iii.exe] => (Allow) H:\games\diablo iii\diablo iii.exe
FirewallRules: [TCP Query User{8AD227E0-30C1-4A24-A67A-B098C2A854A6}H:\games\diablo iii\diablo iii.exe] => (Allow) H:\games\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{FB700B5E-25F3-46D6-BDD7-E5BB52FD68D7}C:\windows\system32\java.exe] => (Allow) C:\windows\system32\java.exe
FirewallRules: [TCP Query User{803C2A60-D51E-4AC4-8832-7D20FD67E385}C:\windows\system32\java.exe] => (Allow) C:\windows\system32\java.exe
FirewallRules: [UDP Query User{E090D26F-529D-4A2C-9AF0-CB7565E3E9C7}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{BC497192-E793-4EB3-B7D1-4EE25733304A}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{F5D5EC82-3D8C-47AB-A3FA-B79CA2E505B8}C:\users\yoan2\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\yoan2\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{E7829489-10F2-4502-97F3-F3A1476447DE}C:\users\yoan2\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\yoan2\appdata\local\akamai\netsession_win.exe
FirewallRules: [{7810FC30-29C3-4E59-843C-56A3FA4A87C9}] => (Allow) C:\Program Files (x86)\MediaMall\Surfer.exe
FirewallRules: [{CCB814DC-57CB-4DCC-99EB-93D799B01E68}] => (Allow) C:\Program Files (x86)\MediaMall\PlayMark.exe
FirewallRules: [{ABE069BF-EF65-41BA-A6CD-69FE6CA55887}] => (Allow) C:\Program Files (x86)\MediaMall\SettingsManager.exe
FirewallRules: [{32EF24FA-D5F9-4202-A7F9-C97153AA8CD5}] => (Allow) C:\Program Files (x86)\MediaMall\MediaMallServer.exe
FirewallRules: [{DD13B863-72B5-4E84-8437-473B3D6A525F}] => (Allow) H:\Games\Steam\steamapps\common\Castle Story\Castle Story.exe
FirewallRules: [{C64A9402-F577-45AF-B76A-A631A4A40EC4}] => (Allow) H:\Games\Steam\steamapps\common\Castle Story\Castle Story.exe
FirewallRules: [{953D2EA1-FB08-4C8B-A57C-70E197F9A029}] => (Allow) H:\Games\SimCity 2000 SE\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{F1BDDB3D-8FB9-49C0-B5AC-1011F89256C9}] => (Allow) H:\Games\SimCity 2000 SE\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{CC0D2A87-A3BF-40EC-952C-054073075280}] => (Allow) H:\Games\Steam\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [{2CC7BA5B-E5FB-4491-A353-33BEC0436E3B}] => (Allow) H:\Games\Steam\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [{3E868760-52DA-47AE-8F7D-1339E70F9807}] => (Allow) H:\Games\Steam\steamapps\common\Game Dev Tycoon\nw.exe
FirewallRules: [{50E5A114-B434-467F-BFE9-12EB665C41CA}] => (Allow) H:\Games\Steam\steamapps\common\Game Dev Tycoon\nw.exe
FirewallRules: [{CA67B294-B112-4B23-97B0-7598DC7710CC}] => (Allow) H:\Games\Diablo III\Diablo III.exe
FirewallRules: [{EE567858-5799-4FFE-BE5C-8D88D54BCFD8}] => (Allow) H:\Games\Diablo III\Diablo III.exe
FirewallRules: [{0C1EA8BE-7654-47D1-9850-395148DEF278}] => (Allow) H:\Games\Steam\bin\steamwebhelper.exe
FirewallRules: [{F07FF20D-66E3-4C26-B48F-FBB05FD903E4}] => (Allow) H:\Games\Steam\bin\steamwebhelper.exe
FirewallRules: [{D1583212-8A86-4F14-A711-B7704B811BDE}] => (Allow) H:\Games\Wing Commander III\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{08E71717-76F6-432D-B10B-F6731DA63992}] => (Allow) H:\Games\Wing Commander III\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{4069B7FC-FF01-4020-ABCD-CB2459CBC7F4}] => (Allow) H:\Games\FIFA World\fifaworld.exe
FirewallRules: [{798E2331-CA74-4494-8A7D-7ED664BD53C6}] => (Allow) H:\Games\FIFA World\fifaworld.exe
FirewallRules: [{ADBCC2C9-7EDA-42DA-A755-89DAF6B805CD}] => (Allow) H:\Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{D499AF3B-60B6-42F5-B1D4-40D260DEAF2B}] => (Allow) H:\Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{CC72F54B-FD1F-4E61-BAEF-928B4229FBE4}] => (Allow) H:\Games\Steam\steamapps\common\DOOM 3 BFG Edition\Doom3BFG.exe
FirewallRules: [{011BF3F4-3B05-461D-91DD-4F1CE6EC88FB}] => (Allow) H:\Games\Steam\steamapps\common\DOOM 3 BFG Edition\Doom3BFG.exe
FirewallRules: [{0DDAD281-6866-4035-9E2F-78327AB61E8C}] => (Allow) H:\Games\Steam\steamapps\common\Unturned\Unturned.exe
FirewallRules: [{9F4F09F2-53A1-454D-BA71-2F148379A5FC}] => (Allow) H:\Games\Steam\steamapps\common\Unturned\Unturned.exe
FirewallRules: [{AB8EC68B-73BA-4F47-9BD1-D5A0F68C7751}] => (Allow) H:\Games\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{FFF88941-7C94-44C3-A5DD-67A5212B8FAB}] => (Allow) H:\Games\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{602CEFB5-C020-439F-9E0B-1C45C8733243}] => (Allow) H:\Games\Peggle Deluxe\Peggle.exe
FirewallRules: [{027F7E79-324A-4269-8956-6DB9134C9A79}] => (Allow) H:\Games\Peggle Deluxe\Peggle.exe
FirewallRules: [{AE997E76-3DB8-4C6D-92D3-C30B906CEF22}] => (Allow) H:\Games\Steam\steamapps\common\arma 2 operation arrowhead\ArmA2OA_BE.exe
FirewallRules: [{5B6101C0-04E6-41FA-AA4F-B3CBE4994C58}] => (Allow) H:\Games\Steam\steamapps\common\arma 2 operation arrowhead\ArmA2OA_BE.exe
FirewallRules: [{20C3C095-8AC4-4B3A-ABA9-89E8D6AE560C}] => (Allow) H:\Games\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{E5AB0CB2-14FB-4B01-A8D7-A1251EAC0E5F}] => (Allow) H:\Games\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [UDP Query User{3AC2F9F8-E66B-40D9-BE9E-1BF304AD0908}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [TCP Query User{A05F204D-0F25-4B11-BF51-27F38864961F}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [UDP Query User{5E98B01B-9E7E-4B9B-ADDC-C29EF3346EB4}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{27E4E6C4-E7FF-4570-BCFA-548209E1BBD2}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{107C0302-2FF5-4639-8A17-03B0F4EEBDC0}C:\windows\system32\java.exe] => (Allow) C:\windows\system32\java.exe
FirewallRules: [TCP Query User{1ACDB5DD-D9E4-464A-9FCB-490B4BCD9036}C:\windows\system32\java.exe] => (Allow) C:\windows\system32\java.exe
FirewallRules: [{8408D7A9-FDEF-45A2-B895-0E04C77257FD}] => (Allow) H:\Games\Steam\steamapps\common\Worms Clan Wars\WormsClanWars.exe
FirewallRules: [{B9C3E738-4294-4D6E-86A8-85C6D13BC46E}] => (Allow) H:\Games\Steam\steamapps\common\Worms Clan Wars\WormsClanWars.exe
FirewallRules: [{9197F872-460D-4C35-8704-48CFF74B31D3}] => (Allow) H:\Games\Steam\steamapps\common\Red Orchestra 2 - Single Player\Binaries\Win32\ROGame.exe
FirewallRules: [{EE1EEB9F-0BC7-4853-8DD3-7977B564C720}] => (Allow) H:\Games\Steam\steamapps\common\Red Orchestra 2 - Single Player\Binaries\Win32\ROGame.exe
FirewallRules: [{15BE4E83-7B22-41EF-8F84-6ADC8E9087E9}] => (Allow) H:\Games\Steam\steamapps\common\Red Orchestra 2\Binaries\Win32\ROGame.exe
FirewallRules: [{376E8891-8668-4CAC-BEDE-F126153BB291}] => (Allow) H:\Games\Steam\steamapps\common\Red Orchestra 2\Binaries\Win32\ROGame.exe
FirewallRules: [{B1C64E78-44EA-48E4-805D-A6898E499C1C}] => (Allow) H:\Games\Steam\steamapps\common\The Mighty Quest For Epic Loot\Launcher\MQELDiagnostics.exe
FirewallRules: [{A12EEE22-075B-4F4D-B45B-C760D6BD15D5}] => (Allow) H:\Games\Steam\steamapps\common\The Mighty Quest For Epic Loot\Launcher\MQELDiagnostics.exe
FirewallRules: [{C8CC1F76-7D80-44F9-A6B6-13A2C6FBC38A}] => (Allow) H:\Games\Steam\steamapps\common\The Mighty Quest For Epic Loot\Launcher\PublicLauncher.exe
FirewallRules: [{F1DE6264-B72D-4D3A-9A6D-181A8CF55818}] => (Allow) H:\Games\Steam\steamapps\common\The Mighty Quest For Epic Loot\Launcher\PublicLauncher.exe
FirewallRules: [{7BA2DDDE-18A6-45F8-88EA-FA109F0FFEE0}] => (Allow) H:\Games\Steam\steamapps\common\CraftTheWorld\CraftWorld.exe
FirewallRules: [{7AE51D74-E124-4C3D-B383-5C3EB25F1BEE}] => (Allow) H:\Games\Steam\steamapps\common\CraftTheWorld\CraftWorld.exe
FirewallRules: [{2B350679-FC23-4BED-B48E-25D2DD67A18F}] => (Allow) H:\Games\Dead Space\Dead Space.exe
FirewallRules: [{0E048142-AA39-47EC-9E3E-94ACC1D17585}] => (Allow) H:\Games\Dead Space\Dead Space.exe
FirewallRules: [{7B4DC540-9335-401A-A46C-E343E059E755}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{60DBEE9B-9145-4D66-9E15-48AE4FB81A4D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [UDP Query User{F9863AD7-C6CA-4E7F-BFB8-E4E5876EB76A}C:\program files (x86)\spybot - search & destroy 2\sdfiles.exe] => (Block) C:\program files (x86)\spybot - search & destroy 2\sdfiles.exe
FirewallRules: [TCP Query User{AF8ECB6E-A0DA-4C52-8B60-99B0134BE95E}C:\program files (x86)\spybot - search & destroy 2\sdfiles.exe] => (Block) C:\program files (x86)\spybot - search & destroy 2\sdfiles.exe
FirewallRules: [UDP Query User{D7396EDC-0AAE-44B8-90E1-60E3ACDA37FC}C:\program files (x86)\spybot - search & destroy 2\sdupdate.exe] => (Allow) C:\program files (x86)\spybot - search & destroy 2\sdupdate.exe
FirewallRules: [TCP Query User{CEDFDF7C-CC8C-46FD-910C-CCDA53645EC3}C:\program files (x86)\spybot - search & destroy 2\sdupdate.exe] => (Allow) C:\program files (x86)\spybot - search & destroy 2\sdupdate.exe
FirewallRules: [{CCE9516D-F5B3-49C5-BB4D-A6DE36F48888}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{23B33131-4C24-4D96-BBE0-B89E34BA1321}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{04AA0237-1225-4F1B-BEED-63AC0B6A27C8}] => (Allow) H:\Games\Steam\steamapps\common\DayZ\DayZ.exe
FirewallRules: [{8D8EE972-B29C-435A-AB5C-9FDC59065ABB}] => (Allow) H:\Games\Steam\steamapps\common\DayZ\DayZ.exe
FirewallRules: [{CCF1AE60-A589-4916-AACB-8F779F6F5541}] => (Allow) H:\Games\Steam\steamapps\common\nmrih\sdk\hl2.exe
FirewallRules: [{165CCB32-F049-4CC8-B0EA-3C38E9668E9B}] => (Allow) H:\Games\Steam\steamapps\common\nmrih\sdk\hl2.exe
FirewallRules: [{32C46FC3-6C3A-4373-B994-B60401991DF4}] => (Allow) H:\Games\Hearthstone\Hearthstone.exe
FirewallRules: [{A78572D0-B8DB-4408-BD03-3D1B3CC8DDA0}] => (Allow) H:\Games\Hearthstone\Hearthstone.exe
FirewallRules: [{88A10432-E1EB-4A90-89EA-9775B05F6AB7}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{FD19D33C-6D7E-4E17-841C-87AB7142EB65}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{395545D5-DD8C-4B16-A5E1-53F4B9AE8626}] => (Allow) H:\Games\Steam\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{F9CDD206-BCBF-4002-BDCB-A9AC0554BA1E}] => (Allow) H:\Games\Steam\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{A27B058A-C2F0-49C4-A12B-48C618D9A4F0}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{EE5B2563-E1A2-49CA-8DE0-EBECFB591C9D}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{4C272C71-68A4-4124-BCFF-DF33021F4E77}] => (Allow) H:\Games\Steam\steamapps\common\Game Dev Tycoon\GameDevTycoon.exe
FirewallRules: [{AEF610B0-31DD-49E2-9B2D-347DCECC8286}] => (Allow) H:\Games\Steam\steamapps\common\Game Dev Tycoon\GameDevTycoon.exe
FirewallRules: [{3C09FE58-915E-4FD1-8ABE-2BEB79142AA8}] => (Allow) H:\Games\Steam\steamapps\common\Game Dev Tycoon\GameDevTycoon.exe
FirewallRules: [{A867868B-941E-4067-A1ED-849233443E53}] => (Allow) H:\Games\Steam\steamapps\common\Game Dev Tycoon\GameDevTycoon.exe
FirewallRules: [{69BAD410-5D23-43FC-B7B1-4BCA5BFCC382}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{AAD12EF1-BE2B-4748-8D3B-8B9D041F4BA9}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{532F05B9-52B2-446D-8CEA-64D030822910}] => (Allow) H:\Games\Steam\steamapps\common\Game Dev Tycoon\GameDevTycoon.exe
FirewallRules: [{12F27184-21E7-4B91-AFFA-14D232A20A95}] => (Allow) H:\Games\Steam\steamapps\common\Game Dev Tycoon\GameDevTycoon.exe
FirewallRules: [{4F9D1392-6060-4843-B4C4-D723A206690A}] => (Allow) H:\Games\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{4197172C-6A2B-4126-A3B7-B28ECC3E8A5C}] => (Allow) H:\Games\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{FBA0161B-AB64-46CD-B851-A5C86FD6656E}] => (Allow) H:\Games\Steam\steamapps\common\Cryptic Studios\Neverwinter.exe
FirewallRules: [{49F6A2DD-7367-436F-97BE-A62896A0974D}] => (Allow) H:\Games\Steam\steamapps\common\Cryptic Studios\Neverwinter.exe
FirewallRules: [{95D257AE-DEA7-4EDC-B089-85CEB505E970}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{A195DCD0-A28B-44F3-9213-DEF49B631899}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe

 

[Sparhawk52]

FirewallRules: [{92F0743E-90B7-4A4B-99E1-DAD390AC2190}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
FirewallRules: [{FEC36050-D697-41A3-8106-0848C92AFACD}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
FirewallRules: [{BED80440-CAB4-4CF8-B94A-47B64F201BBE}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{4798462E-28DD-42AC-89DA-FBE0F207C5B0}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{A10E4BAE-6673-420B-A834-3998C53F9EB0}] => (Allow) H:\Games\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{9EFD6E4E-D303-46DF-A9B3-CAD34F00E404}] => (Allow) H:\Games\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{DD2E4E1E-290C-428E-8CFC-DEDF7EE6C424}] => (Allow) H:\Games\Steam\steamapps\common\apb reloaded\Launcher\APBLauncher.exe
FirewallRules: [{9C962A6C-92EB-4A6D-88BF-BADE21CCF573}] => (Allow) H:\Games\Steam\steamapps\common\apb reloaded\Launcher\APBLauncher.exe
FirewallRules: [{06D5566C-D13C-4806-9EB9-6009D14032FC}] => (Allow) H:\Games\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{11BF2F19-6DA5-42FD-B5DD-322B02DFB65F}] => (Allow) H:\Games\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{CE16BCF4-41F8-4745-AF88-4A7574AE5A7D}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{CE5FA133-9624-48F2-8AC0-489583876792}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{A38F9C88-5993-49B8-9394-20D8394699E0}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{8477E787-B908-45EC-870E-2DA63F4DB1F9}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{08014C5D-8113-4570-AA7D-0F7B63E640AF}] => (Allow) H:\Games\Steam\steamapps\common\Dungeonland\dungeonland.exe
FirewallRules: [{1A1AF13A-E527-43EC-A4AA-3ED75BA83B4A}] => (Allow) H:\Games\Steam\steamapps\common\Dungeonland\dungeonland.exe
FirewallRules: [{A80C3818-DACE-46EF-8DF2-A4DA767391A5}] => (Allow) H:\Games\Steam\steamapps\common\Dungeonland\dungeonland.exe
FirewallRules: [{007408DF-CF02-4723-806E-4019B4D540E4}] => (Allow) H:\Games\Steam\steamapps\common\Dungeonland\dungeonland.exe
FirewallRules: [{B3A7303F-2421-4437-8316-9F6625D45248}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{005351B6-2B2A-4D70-960D-AF3DFBC2F933}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{901B268F-5A63-4FCB-A23C-34FEE45D4B74}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{9E65E626-389E-4E3B-88B7-6B27BD9F6035}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{D59F5200-85E3-46DE-8F35-7C3B904ECC58}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{FA310EF4-85E9-4F91-A4CB-BC27371C3225}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{F6046166-CF83-46CA-A7F0-4F7AC1D667B9}] => (Allow) H:\Games\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{B53320DD-9916-4700-9786-81D937AEDDE5}] => (Allow) H:\Games\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{8F2527AE-66EA-4EE6-8B13-2B4B43B753B4}] => (Allow) H:\Games\Steam\steamapps\common\Age2HD\Launcher.exe
FirewallRules: [{D5781E75-633C-4EF7-80A3-E41E8F30B80D}] => (Allow) H:\Games\Steam\steamapps\common\Age2HD\Launcher.exe
FirewallRules: [{55B48500-1012-45CC-B865-DD7FAA197E6D}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{EE3F2C2B-F48D-4096-BC34-06E1108AA913}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [UDP Query User{11CB1A9F-50C9-4C1C-B514-69F26D08DB5A}H:\games\steam\steamapps\common\starbound\win32\starbound_server.exe] => (Allow) H:\games\steam\steamapps\common\starbound\win32\starbound_server.exe
FirewallRules: [TCP Query User{E71D2D9B-E64C-4B1B-A11B-DE15E436E643}H:\games\steam\steamapps\common\starbound\win32\starbound_server.exe] => (Allow) H:\games\steam\steamapps\common\starbound\win32\starbound_server.exe
FirewallRules: [{8BA57E58-21D4-44B3-B2B1-1ADBC5033370}] => (Allow) H:\Games\Steam\steamapps\common\Gnomoria\Gnomoria.exe
FirewallRules: [{48340B0D-E9B4-4322-8258-6B9669CFE8DB}] => (Allow) H:\Games\Steam\steamapps\common\Gnomoria\Gnomoria.exe
FirewallRules: [{B2533F67-851A-440F-BA98-ED6A973FAFB9}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{E9E21BAE-76BC-443C-A048-609E149F5F57}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{2DDBECD2-8917-491C-B8C4-1B6FAD1D4F09}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{0A89326C-4DB2-4A37-8C4A-9A0748BAA510}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{27A5B0D5-C49B-4CCE-B1C4-D2E31D640631}] => (Allow) H:\Games\Steam\steamapps\common\Age2HD\Launcher.exe
FirewallRules: [{3B498EF5-CBEC-4E1F-B120-5E6A3C15BA54}] => (Allow) H:\Games\Steam\steamapps\common\Age2HD\Launcher.exe
FirewallRules: [{17DD0389-1C77-44AB-8B50-462105B40374}] => (Allow) H:\Games\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{278F1389-1E44-4F44-8FEC-4EE006E0B632}] => (Allow) H:\Games\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{68267284-0407-49A0-A078-724D5CDABA0C}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{7F21F021-A97A-4CF6-BBD3-DBFEB0CDCCA1}] => (Allow) H:\Games\Steam\steamapps\common\dota 2 beta\dota.exe
FirewallRules: [{CBB1BBD2-6625-492F-8F58-C8DAB3347531}] => (Allow) H:\Games\Steam\steamapps\common\FINAL FANTASY VII\FF7_Launcher.exe
FirewallRules: [{A4A6D357-F1DD-4E0C-97BB-424697E7676D}] => (Allow) H:\Games\Steam\steamapps\common\FINAL FANTASY VII\FF7_Launcher.exe
FirewallRules: [UDP Query User{8078D311-E8F1-4655-A27E-312A6AB6AEC5}H:\games\steam\steam.exe] => (Allow) H:\games\steam\steam.exe
FirewallRules: [TCP Query User{FB01A3E7-0F2F-4926-8F96-F670B7FA32D0}H:\games\steam\steam.exe] => (Allow) H:\games\steam\steam.exe
FirewallRules: [UDP Query User{8F244CB8-71F3-4747-9F19-C5CB46D50AED}C:\program files (x86)\smart port forwarding\spf.exe] => (Allow) C:\program files (x86)\smart port forwarding\spf.exe
FirewallRules: [TCP Query User{D7DE2A29-F92F-4D42-9738-067DB0601B04}C:\program files (x86)\smart port forwarding\spf.exe] => (Allow) C:\program files (x86)\smart port forwarding\spf.exe
FirewallRules: [{1E9AA473-DFA4-4FA7-AB9E-FB9C7D9D2C3A}] => (Allow) H:\Games\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{830109DC-CBC4-4CF6-9922-7B90D43903F4}] => (Allow) H:\Games\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{19F30446-1228-4F68-802C-84C36D85C5AC}] => (Allow) H:\Games\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{254B0DE7-F716-4336-A30A-B789220711B4}] => (Allow) H:\Games\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{B05019C7-E8A6-4C53-A57F-1181553F6ACB}] => (Allow) H:\Games\Steam\steamapps\common\arma 2 operation arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [{4B3BF979-408A-4543-B7D0-6DDCC2FDAAA7}] => (Allow) H:\Games\Steam\steamapps\common\arma 2 operation arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [{2FF8239A-B807-4291-9226-B24FC1F1E2A5}] => (Allow) H:\Games\Steam\steamapps\common\arma 2 operation arrowhead\ArmA2OA.exe
FirewallRules: [{5A9A61BE-D4A3-4CB1-BF7F-6F2676139385}] => (Allow) H:\Games\Steam\steamapps\common\arma 2 operation arrowhead\ArmA2OA.exe
FirewallRules: [{5704D704-DE64-4D71-ACC2-5640A3A17592}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{4E7CA3D8-247B-4646-9B6D-6856C0E385D6}] => (Allow) H:\Games\Steam\steamapps\common\Call of Duty Black Ops II\t6zm.exe
FirewallRules: [{FE65218D-E4F9-493D-95CE-A38CFD01799B}] => (Allow) H:\Games\Steam\steamapps\common\Call of Duty Black Ops II\t6zm.exe
FirewallRules: [{8D543D05-9F66-4C70-88E1-49B525F765C1}] => (Allow) H:\Games\Steam\steamapps\common\Call of Duty Black Ops II\t6mp.exe
FirewallRules: [{3F47EC5F-F436-4D8D-B21B-DE5585F860FE}] => (Allow) H:\Games\Steam\steamapps\common\Call of Duty Black Ops II\t6mp.exe
FirewallRules: [{55ED883E-EA91-483B-85F6-A84D5A260683}] => (Allow) H:\Games\Steam\steamapps\common\apb reloaded\Binaries\VivoxVoiceService.exe
FirewallRules: [{C76274DD-A0D6-43D7-8F02-EC09E910323B}] => (Allow) H:\Games\Steam\steamapps\common\apb reloaded\Binaries\VivoxVoiceService.exe
FirewallRules: [{4F6EE094-6636-4DF1-9CD5-BD2571E7A43D}] => (Allow) H:\Games\Steam\steamapps\common\apb reloaded\Binaries\APB.exe
FirewallRules: [{0CC2A17D-EA10-44E7-991C-AC4758BA667E}] => (Allow) H:\Games\Steam\steamapps\common\apb reloaded\Binaries\APB.exe
FirewallRules: [{3EDE8626-C149-4FB8-8A73-FB333F4266DD}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
FirewallRules: [{3CB58AFC-FC54-4A43-BEC6-E8F3A8D562CA}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
FirewallRules: [{18409CA5-91AA-4781-ADE6-1793C6E413CC}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
FirewallRules: [{FFBC7313-4F51-4699-AFBF-001A427BEFC9}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
FirewallRules: [UDP Query User{D2DF0796-FE50-4365-A582-1E5E28BCB1CE}H:\filezilla ftp client\filezilla.exe] => (Allow) H:\filezilla ftp client\filezilla.exe
FirewallRules: [TCP Query User{DCE635A0-3748-488F-B3D4-5D085F71D273}H:\filezilla ftp client\filezilla.exe] => (Allow) H:\filezilla ftp client\filezilla.exe
FirewallRules: [{1B558D41-05C8-4F99-B9DB-E38F8789863C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{7675BF90-4613-4EAF-AA72-C8632DE9AEF7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{577CDD2E-DF40-42BA-9872-B5CDE18CA364}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{BC19AFC7-6BF9-4DC0-96A8-AE0ADDF4482E}] => (Allow) H:\The War Z\Infestation.exe
FirewallRules: [{94E23953-773C-47EF-BF38-04FC45BE734D}] => (Allow) H:\Games\Steam\steamapps\common\Call of Duty Black Ops II\t6sp.exe
FirewallRules: [{315BE416-0E68-4064-A8D5-F60477E913DB}] => (Allow) H:\Games\Steam\steamapps\common\Call of Duty Black Ops II\t6sp.exe
FirewallRules: [UDP Query User{DF0DA141-4B1B-4521-B74F-8CE56D90FEFB}H:\games\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) H:\games\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [TCP Query User{ABE122BF-BA2B-45ED-B6C4-AB323520700B}H:\games\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) H:\games\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [{E54D4AB5-10E0-4FC0-A1D8-2B748623BFD6}] => (Allow) H:\Games\Steam\steamapps\common\SimCity 4 Deluxe\Support\EA Help\Electronic_Arts_Technical_Support.htm
FirewallRules: [{75383BE9-0C52-44B4-9F42-7F1521812260}] => (Allow) H:\Games\Steam\steamapps\common\SimCity 4 Deluxe\Support\EA Help\Electronic_Arts_Technical_Support.htm
FirewallRules: [{46AE4071-A50F-4AC4-BDC8-4805B35A18ED}] => (Allow) H:\Games\Steam\steamapps\common\SimCity 4 Deluxe\Apps\SimCity 4.exe
FirewallRules: [{17F6C63E-1FC2-418B-9D1F-A23D1E872374}] => (Allow) H:\Games\Steam\steamapps\common\SimCity 4 Deluxe\Apps\SimCity 4.exe
FirewallRules: [{96EBD8C0-3D22-402E-991D-302FDEBA0B5C}] => (Allow) H:\Games\Steam\steamapps\common\Torchlight II\ModLauncher.exe
FirewallRules: [{9DA929DC-3D47-42E6-846E-8021357995A9}] => (Allow) H:\Games\Steam\steamapps\common\Torchlight II\ModLauncher.exe
FirewallRules: [{1C48ABEB-1253-43D5-A499-6EEEC0D0458E}] => (Allow) H:\Games\Steam\steamapps\common\ArcticCombat\GameLauncher_GP\MappingAccount.exe
FirewallRules: [{06E51988-CB4F-4D8E-899F-C1D5EA0DB589}] => (Allow) H:\Games\Steam\steamapps\common\ArcticCombat\GameLauncher_GP\MappingAccount.exe
FirewallRules: [{5C0E7F4F-6089-4929-BD5E-62A967487933}] => (Allow) H:\Games\Steam\steamapps\common\District 187\MarbleStation\GlbMSLauncher.exe
FirewallRules: [{83BCA40B-D025-43B4-8E74-E6D3AF7C8198}] => (Allow) H:\Games\Steam\steamapps\common\District 187\MarbleStation\GlbMSLauncher.exe
FirewallRules: [{20EDEAE3-2526-4BFD-96CA-EBF1B3307E85}] => (Allow) H:\Games\Battlefield 3\bf3.exe
FirewallRules: [{0F9B3D6A-3529-4944-BBDE-2218B89D74C1}] => (Allow) H:\Games\Battlefield 3\bf3.exe
FirewallRules: [{B0BDC6F2-B469-4F31-81FA-848B87FAF553}] => (Allow) H:\Games\Mass Effect 3\Binaries\Win32\MassEffect3.exe
FirewallRules: [{F8F23CA6-0016-478A-9477-534884FED19E}] => (Allow) H:\Games\Mass Effect 3\Binaries\Win32\MassEffect3.exe
FirewallRules: [{E3D2A09E-8795-4CE8-863E-665D15C7ADED}] => (Allow) H:\Games\Dead Space 3\deadspace3.exe
FirewallRules: [{033BA503-84A5-4780-B329-369BD1158572}] => (Allow) H:\Games\Dead Space 3\deadspace3.exe
FirewallRules: [UDP Query User{B7F7188F-EBA7-4773-A658-0E012B943BBA}H:\games\arma 2\expansion\beta\arma2oa.exe] => (Allow) H:\games\arma 2\expansion\beta\arma2oa.exe
FirewallRules: [TCP Query User{36BF6147-D951-4E49-95F8-83B544362DAB}H:\games\arma 2\expansion\beta\arma2oa.exe] => (Allow) H:\games\arma 2\expansion\beta\arma2oa.exe
FirewallRules: [UDP Query User{B37C6DE1-935C-4C60-85DF-401DC00DC602}C:\users\yoan2\appdata\local\play withsix\tools\mingw\bin\rsync.exe] => (Allow) C:\users\yoan2\appdata\local\play withsix\tools\mingw\bin\rsync.exe
FirewallRules: [TCP Query User{93907401-904B-4F94-9C21-3C832178423C}C:\users\yoan2\appdata\local\play withsix\tools\mingw\bin\rsync.exe] => (Allow) C:\users\yoan2\appdata\local\play withsix\tools\mingw\bin\rsync.exe
FirewallRules: [{D87DFD47-092C-406E-94DE-F618C065CCEA}] => (Allow) H:\Games\Steam\steamapps\common\Torchlight II\Torchlight2.exe
FirewallRules: [{EED8EC5F-6AD1-4BAC-A931-F5AE8E032476}] => (Allow) H:\Games\Steam\steamapps\common\Torchlight II\Torchlight2.exe
FirewallRules: [{4D80FBD4-2D0D-42D3-B257-3A64BF699DEC}] => (Allow) H:\Games\Crysis 3 MP Open Beta\bin32\Crysis 3 MP Open Beta.exe
FirewallRules: [{4C2B9B98-313F-4692-BFD9-3063EDC6F7BB}] => (Allow) H:\Games\Crysis 3 MP Open Beta\bin32\Crysis 3 MP Open Beta.exe
FirewallRules: [{A4740ADD-C754-406A-9063-A94418047FAC}] => (Allow) H:\Games\Steam\steamapps\common\the binding of isaac\Isaac.exe
FirewallRules: [{AC28586C-B784-439C-AC62-29CDA09C245F}] => (Allow) H:\Games\Steam\steamapps\common\the binding of isaac\Isaac.exe
FirewallRules: [{AB794060-DFFF-4E63-A5D2-ECAF8E72D908}] => (Allow) H:\Games\Steam\steamapps\common\arma 2 operation arrowhead\BEsetup\Setup_BattlEyeARMA2OA.exe
FirewallRules: [{19778E6B-E3C1-4199-8CB5-ABB67DC4FFEB}] => (Allow) H:\Games\Steam\steamapps\common\arma 2 operation arrowhead\BEsetup\Setup_BattlEyeARMA2OA.exe
FirewallRules: [{DD72C4FD-5DC2-4628-BB1F-EEFC478DBCBF}] => (Allow) H:\Games\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{35A74605-2783-43E4-8566-3B0E67609E07}] => (Allow) H:\Games\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{9A560254-657B-401D-8B48-5DF93CDD01FF}] => (Allow) H:\Games\Ubisoft\FarCry 3\bin\FC3Editor.exe
FirewallRules: [{19D9BC7D-50B2-4EE3-AE52-826C70CC49B4}] => (Allow) H:\Games\Ubisoft\FarCry 3\bin\FC3Editor.exe
FirewallRules: [{8C3D95FD-C6C0-4306-9BD1-A73C21420FB3}] => (Allow) H:\Games\Ubisoft\FarCry 3\bin\FC3Updater.exe
FirewallRules: [{B8566D26-AEBD-4EEE-A861-F2C52A8EBB19}] => (Allow) H:\Games\Ubisoft\FarCry 3\bin\FC3Updater.exe
FirewallRules: [{5E9AB848-7CC4-4572-AEE4-B437FF296092}] => (Allow) H:\Games\Ubisoft\FarCry 3\bin\farcry3_d3d11.exe
FirewallRules: [{B15A1E91-0D75-4913-A492-67E81D844EE8}] => (Allow) H:\Games\Ubisoft\FarCry 3\bin\farcry3_d3d11.exe
FirewallRules: [{463763B3-F7A7-4B08-B952-3E32C2E4D824}] => (Allow) H:\Games\Ubisoft\FarCry 3\bin\farcry3.exe
FirewallRules: [{D4109C2E-F9B2-4A49-AB2F-52CB2F6630AC}] => (Allow) H:\Games\Ubisoft\FarCry 3\bin\farcry3.exe
FirewallRules: [{575331B4-E19A-4A7B-9069-35ACA7934A70}] => (Allow) H:\Games\Steam\steamapps\common\Metro 2033\metro2033.exe
FirewallRules: [{B5BF02B3-29F1-4653-8002-ECD98927B09F}] => (Allow) H:\Games\Steam\steamapps\common\Metro 2033\metro2033.exe
FirewallRules: [UDP Query User{AE838AD5-3F92-47BF-8410-4E215AEE26DF}H:\games\steam\steamapps\common\planetside 2\planetside2.exe] => (Allow) H:\games\steam\steamapps\common\planetside 2\planetside2.exe
FirewallRules: [TCP Query User{3B3B7D1D-31BE-4AD5-B556-687DE252B1CA}H:\games\steam\steamapps\common\planetside 2\planetside2.exe] => (Allow) H:\games\steam\steamapps\common\planetside 2\planetside2.exe
FirewallRules: [{2A5C42BA-FAD0-44D2-9C80-04BD70A55415}] => (Allow) H:\Games\Steam\steamapps\common\PlanetSide 2\LaunchPad.exe
FirewallRules: [{4FBEFE18-610C-4888-8AFA-F0A31AA124DE}] => (Allow) H:\Games\Steam\steamapps\common\PlanetSide 2\LaunchPad.exe
FirewallRules: [{056F8B6D-C3CF-42AB-AFE3-756137566BF8}] => (Allow) H:\Games\Steam\steamapps\common\ArcticCombat\System\ArcticCombat.exe
FirewallRules: [{3E56A341-2710-4B5B-AC74-293816A26874}] => (Allow) H:\Games\Steam\steamapps\common\ArcticCombat\System\ArcticCombat.exe
FirewallRules: [UDP Query User{CC8D0949-A385-4E5F-A95B-004EC627E9D8}H:\games\steam\steamapps\common\terraria\terrariaserver.exe] => (Allow) H:\games\steam\steamapps\common\terraria\terrariaserver.exe
FirewallRules: [TCP Query User{A5A386F8-B056-4E3C-9667-A02BA226A93B}H:\games\steam\steamapps\common\terraria\terrariaserver.exe] => (Allow) H:\games\steam\steamapps\common\terraria\terrariaserver.exe
FirewallRules: [UDP Query User{B6080CDD-F203-4380-BEE2-8BFB701B055D}H:\games\starcraft ii\versions\base23260\sc2.exe] => (Block) H:\games\starcraft ii\versions\base23260\sc2.exe
FirewallRules: [TCP Query User{4435770D-3BA7-4117-9C7A-7952E9EEAC2B}H:\games\starcraft ii\versions\base23260\sc2.exe] => (Block) H:\games\starcraft ii\versions\base23260\sc2.exe
FirewallRules: [{27BCF3F0-6EFE-4AB2-9670-A80E9DEE9EC2}] => (Allow) H:\Games\StarCraft II\StarCraft II.exe
FirewallRules: [{362AC5CD-139A-41B0-A8F2-05B0530ACF96}] => (Allow) H:\Games\StarCraft II\StarCraft II.exe
FirewallRules: [{34C1422A-7E3D-442C-B3AF-4C768F416A2D}] => (Allow) C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{62935954-9D5A-4574-B370-69AB5D587167}] => (Allow) C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{D6F1214E-DD3B-4D88-9BAD-00442E128852}] => (Allow) H:\Games\Steam\steamapps\common\DC Universe Online\LaunchPad.exe
FirewallRules: [{297DC65B-3DD4-42D5-B7E5-5E01A7DB40CF}] => (Allow) H:\Games\Steam\steamapps\common\DC Universe Online\LaunchPad.exe
FirewallRules: [{36238A58-B01A-4947-9145-2C3F47E04663}] => (Allow) H:\Games\Steam\steamapps\common\Anno 2070\Anno5.exe
FirewallRules: [{2C1E93A5-7679-4BB0-94EC-DF7E96247039}] => (Allow) H:\Games\Steam\steamapps\common\Anno 2070\Anno5.exe
FirewallRules: [UDP Query User{948F4957-2CA4-4757-983B-70261F313B0E}C:\users\yoan2\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\yoan2\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{84961F7C-F738-4883-8C42-856A71BDDB0A}C:\users\yoan2\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\yoan2\appdata\local\akamai\netsession_win.exe
FirewallRules: [{2D2833A3-AC21-4409-87BA-FFD8BB71BB4D}] => (Allow) H:\Games\Steam\steamapps\common\arma 2 operation arrowhead\_runA2CO.cmd
FirewallRules: [{88B13E10-E974-4576-B6DF-1785D541FDE2}] => (Allow) H:\Games\Steam\steamapps\common\arma 2 operation arrowhead\_runA2CO.cmd
FirewallRules: [UDP Query User{DCCA5535-9DD9-467B-B5AD-16059F76B5E5}C:\users\yoan2\appdata\local\apps\2.0\tnmllmy5.7rx\nnt8c0ld.4ve\laun...app_59711684aa47878d_0001.001b_500f242478d49853\launcher.exe] => (Allow) C:\users\yoan2\appdata\local\apps\2.0\tnmllmy5.7rx\nnt8c0ld.4ve\laun...app_59711684aa47878d_0001.001b_500f242478d49853\launcher.exe
FirewallRules: [TCP Query User{7855A1CF-4242-4417-B81C-898E4F3EB7C7}C:\users\yoan2\appdata\local\apps\2.0\tnmllmy5.7rx\nnt8c0ld.4ve\laun...app_59711684aa47878d_0001.001b_500f242478d49853\launcher.exe] => (Allow) C:\users\yoan2\appdata\local\apps\2.0\tnmllmy5.7rx\nnt8c0ld.4ve\laun...app_59711684aa47878d_0001.001b_500f242478d49853\launcher.exe
FirewallRules: [{B7363FCE-08EC-4E02-8899-C62DDE021A26}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [UDP Query User{80CBB372-CF04-447A-8949-912DB12E61B5}C:\users\yoan2\appdata\local\apps\2.0\tnmllmy5.7rx\nnt8c0ld.4ve\laun...app_59711684aa47878d_0001.001b_6f29478cafd19413\launcher.exe] => (Allow) C:\users\yoan2\appdata\local\apps\2.0\tnmllmy5.7rx\nnt8c0ld.4ve\laun...app_59711684aa47878d_0001.001b_6f29478cafd19413\launcher.exe
FirewallRules: [TCP Query User{3D0E0604-26AF-45C0-8928-D1A3C7AA59B8}C:\users\yoan2\appdata\local\apps\2.0\tnmllmy5.7rx\nnt8c0ld.4ve\laun...app_59711684aa47878d_0001.001b_6f29478cafd19413\launcher.exe] => (Allow) C:\users\yoan2\appdata\local\apps\2.0\tnmllmy5.7rx\nnt8c0ld.4ve\laun...app_59711684aa47878d_0001.001b_6f29478cafd19413\launcher.exe
FirewallRules: [{DC53564E-9F0C-4780-B240-8D8174848B49}] => (Allow) H:\Games\Steam\steamapps\common\arma 2\arma2.exe
FirewallRules: [{20F3E6BD-1337-48E9-9040-F0DA6CEA7073}] => (Allow) H:\Games\Steam\steamapps\common\arma 2\arma2.exe
FirewallRules: [UDP Query User{E40FAFFF-C4F7-4337-B3BF-9636D5BE7495}H:\games\six projects\six updater\tools\bin\rsync.exe] => (Allow) H:\games\six projects\six updater\tools\bin\rsync.exe
FirewallRules: [TCP Query User{40BBE891-6B00-40C4-BAD2-4679C0B37CFE}H:\games\six projects\six updater\tools\bin\rsync.exe] => (Allow) H:\games\six projects\six updater\tools\bin\rsync.exe
FirewallRules: [{67621AAF-8912-41D3-B528-D3CB9FD65D6B}] => (Allow) H:\Games\Steam\steamapps\common\guild wars\Gw.exe
FirewallRules: [{2A364B31-9C9F-4BFD-A7E2-23A7EC859694}] => (Allow) H:\Games\Steam\steamapps\common\guild wars\Gw.exe
FirewallRules: [{D7F2E3A4-1024-45C6-803C-AC3215C0DC7A}] => (Allow) H:\Games\Steam\steamapps\common\cities xl 2012\CitiesXL_2012.exe
FirewallRules: [{E39292E3-1BAF-435D-87F1-BFD247F1ABC4}] => (Allow) H:\Games\Steam\steamapps\common\cities xl 2012\CitiesXL_2012.exe
FirewallRules: [{A184530E-B836-43D9-9923-07CC82DECCE2}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{65C3D9AE-BD7E-4AA6-B454-B19731AEC7B1}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [UDP Query User{1FB43598-A64F-48C6-8B6C-702DB100581F}H:\games\guild wars 2\gw2.exe] => (Allow) H:\games\guild wars 2\gw2.exe
FirewallRules: [TCP Query User{1ABEFB95-0F36-4F70-8302-82FC58A3B716}H:\games\guild wars 2\gw2.exe] => (Allow) H:\games\guild wars 2\gw2.exe
FirewallRules: [UDP Query User{A85ED890-03FC-42B8-A46F-DC14935B9989}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [TCP Query User{A1A7EB89-95BE-41C6-8955-A7CD2D978F15}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [UDP Query User{56E25E9D-02AD-40FC-9F4E-558BAEBDB94E}C:\users\yoan2\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\yoan2\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{F62911AD-7745-40DD-BCA8-8837245A75DF}C:\users\yoan2\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\yoan2\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{38E77646-8A45-45C8-9E26-AE13FB07970E}H:\games\world_of_tanks\worldoftanks.exe] => (Allow) H:\games\world_of_tanks\worldoftanks.exe
FirewallRules: [TCP Query User{0E018B1E-19F8-4F15-B5AD-FF87F9855022}H:\games\world_of_tanks\worldoftanks.exe] => (Allow) H:\games\world_of_tanks\worldoftanks.exe
FirewallRules: [UDP Query User{ED673B7E-6FB0-4C71-9028-E73A966C509B}H:\games\world_of_tanks\wotlauncher.exe] => (Allow) H:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [TCP Query User{42294421-648C-473B-AE58-F7C25DE12D5E}H:\games\world_of_tanks\wotlauncher.exe] => (Allow) H:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [{02BAA8E8-2930-45C5-8899-58DE2C60D8F6}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{EFE4908A-0329-4EFD-A75D-29F6B56A8D52}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{61640D0E-29F8-4C19-9EEE-F2376D523F3D}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{6B801986-41F9-4D8C-BB61-857A5845738B}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{A450A070-6425-4E9C-966A-388327A29919}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{9F339C02-048F-465B-AF3C-B8FDB31BAD35}] => (Allow) C:\Program Files (x86)\Ventrilo\Ventrilo.exe
FirewallRules: [{83EB0F2C-758F-4DCE-A8FF-B97A7B2A6676}] => (Allow) C:\Program Files (x86)\Ventrilo\Ventrilo.exe
FirewallRules: [{1CF0E808-7C60-4155-A6B5-FAA0BA27568E}] => (Allow) C:\Program Files (x86)\HP\digital imaging\smart web printing\smartwebprintexe.exe
FirewallRules: [{18B55D66-B8A0-44B4-9B1C-46B0523B9119}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{AA0EAD99-318A-42B2-B51B-D82BF4AE160C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{3B2B469C-2C1B-43B1-86DB-55A165FBA4EE}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{57D77FF2-30B3-4D40-8A66-4982E88D3722}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{C38277A6-C3C4-472B-9460-238CCB10B76B}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{3782C254-E428-43A2-8B70-4F256A527602}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{EC309C1C-C460-4113-A818-BE05886013A3}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{6444DDEC-21CC-4430-8F6A-194AD4608DA1}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{2D8EAD8F-172F-4446-9FDE-9AF289BD7D96}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{C207D216-120E-478F-90C1-114A2F1887DB}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{7C2FEB8D-3701-4259-8FA1-7D7C4E5B6124}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{645B38D7-ABD8-4DF2-B8DA-4F11BE6818EE}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{4AC7A84F-5B4A-4E9F-9691-83D35B01B806}] => (Allow) C:\Program Files (x86)\AIM\aim.exe
FirewallRules: [{61DD416D-BBB3-4F00-8B3A-5DD942B656CF}] => (Allow) C:\Program Files (x86)\AIM\aim.exe
FirewallRules: [UDP Query User{47ADF6AD-B68F-4BD4-8692-0918E583E8E6}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [TCP Query User{FD68BAA1-B030-4B54-847B-8BBD07F5B5A2}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [{9FD37DA0-AEF7-4E68-B475-35582E119112}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [UDP Query User{649305B4-1F78-4BFC-BF39-AA55DC0E66B8}C:\program files (x86)\marvell\raid\apache2\bin\httpd.exe] => (Allow) C:\program files (x86)\marvell\raid\apache2\bin\httpd.exe
FirewallRules: [TCP Query User{3D35E407-AADD-4ABB-BBA0-4CFE77F188E1}C:\program files (x86)\marvell\raid\apache2\bin\httpd.exe] => (Allow) C:\program files (x86)\marvell\raid\apache2\bin\httpd.exe
FirewallRules: [{D2E4563F-BE0C-47A5-846C-680015276025}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{6C765F81-FB82-4589-9631-7C0AD5B8AFF4}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{647E6627-8D6F-487A-818D-337EBC7E0066}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{F72A28EA-32AC-46F3-A729-49D40B94F3FD}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{5D154DE2-DA11-4C05-A674-8C1FA1AC443A}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{26D9D449-5CDD-44B7-9E03-3E626CDB5CD2}] => (Allow) H:\Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{2A4F200B-95C8-4614-97F1-D1F2002FD5B6}] => (Allow) H:\Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{B0B815B0-3457-4ADC-892A-2D82185D10E1}] => (Allow) H:\Games\Battlefield 4\bf4.exe
FirewallRules: [{9A2BA085-D2A2-44EE-A6D8-64809280CDD8}] => (Allow) H:\Games\Battlefield 4\bf4.exe
FirewallRules: [{CA3151FE-9A4A-42C1-8D8D-18AB189DA642}] => (Allow) H:\Games\Ultima 8\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{6ABBD6B8-EF98-431A-9DED-9CFC15EAC575}] => (Allow) H:\Games\Ultima 8\Game\Game\DOSBox\DOSBox.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot-S&D 2 Tray Icon
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/13/2015 10:19:48 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: WmiApRplC:\WINDOWS\system32\wbem\wmiaprpl.dll8

Error: (08/13/2015 10:19:48 PM) (Source: Perflib) (EventID: 1010) (User: )
Description: C:\Windows\System32\winspool.drvSpooler8

Error: (08/13/2015 10:19:47 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description:

Error: (08/13/2015 10:19:47 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: MSDTCC:\WINDOWS\system32\msdtcuiu.DLL8

Error: (08/13/2015 10:19:47 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: LsaC:\Windows\System32\Secur32.dll8

Error: (08/13/2015 10:19:47 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: ESENTC:\WINDOWS\system32\esentprf.dll8

Error: (08/13/2015 10:19:47 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8

Error: (08/13/2015 09:33:24 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: OHub.exe, version: 16.0.6106.2350, time stamp: 0x55c40ea1
Faulting module name: Mso30Imm.dll, version: 16.0.6014.1000, time stamp: 0x55a5783f
Exception code: 0xc0000005
Fault offset: 0x0000000000012b70
Faulting process id: 0x28f0
Faulting application start time: 0xOHub.exe0
Faulting application path: OHub.exe1
Faulting module path: OHub.exe2
Report Id: OHub.exe3
Faulting package full name: OHub.exe4
Faulting package-relative application ID: OHub.exe5

Error: (08/13/2015 09:24:40 PM) (Source: OverwolfUpdater) (EventID: 0) (User: )
Description: Service cannot be started. An instance of the service is already running

Error: (08/13/2015 09:24:40 PM) (Source: OverwolfUpdater) (EventID: 0) (User: )
Description: Service cannot be started. The handle is invalid


System errors:
=============
Error: (08/13/2015 09:48:21 PM) (Source: DCOM) (EventID: 10016) (User: Yoan-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Yoan-PCYoan2S-1-5-21-2215824855-1170150186-1298706218-1005LocalHost (Using LRPC)UnavailableUnavailable

Error: (08/13/2015 09:48:21 PM) (Source: DCOM) (EventID: 10016) (User: Yoan-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Yoan-PCYoan2S-1-5-21-2215824855-1170150186-1298706218-1005LocalHost (Using LRPC)UnavailableUnavailable

Error: (08/13/2015 09:48:21 PM) (Source: DCOM) (EventID: 10016) (User: Yoan-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Yoan-PCYoan2S-1-5-21-2215824855-1170150186-1298706218-1005LocalHost (Using LRPC)UnavailableUnavailable

Error: (08/13/2015 09:48:21 PM) (Source: DCOM) (EventID: 10016) (User: Yoan-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Yoan-PCYoan2S-1-5-21-2215824855-1170150186-1298706218-1005LocalHost (Using LRPC)UnavailableUnavailable

Error: (08/13/2015 09:34:07 PM) (Source: DCOM) (EventID: 10016) (User: Yoan-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Yoan-PCYoan2S-1-5-21-2215824855-1170150186-1298706218-1005LocalHost (Using LRPC)UnavailableUnavailable

Error: (08/13/2015 09:33:21 PM) (Source: DCOM) (EventID: 10016) (User: Yoan-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Yoan-PCYoan2S-1-5-21-2215824855-1170150186-1298706218-1005LocalHost (Using LRPC)UnavailableUnavailable

Error: (08/13/2015 09:33:21 PM) (Source: DCOM) (EventID: 10016) (User: Yoan-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Yoan-PCYoan2S-1-5-21-2215824855-1170150186-1298706218-1005LocalHost (Using LRPC)UnavailableUnavailable

Error: (08/13/2015 09:33:21 PM) (Source: DCOM) (EventID: 10016) (User: Yoan-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Yoan-PCYoan2S-1-5-21-2215824855-1170150186-1298706218-1005LocalHost (Using LRPC)UnavailableUnavailable

Error: (08/13/2015 09:33:21 PM) (Source: DCOM) (EventID: 10016) (User: Yoan-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Yoan-PCYoan2S-1-5-21-2215824855-1170150186-1298706218-1005LocalHost (Using LRPC)UnavailableUnavailable

Error: (08/13/2015 09:33:21 PM) (Source: DCOM) (EventID: 10016) (User: Yoan-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Yoan-PCYoan2S-1-5-21-2215824855-1170150186-1298706218-1005LocalHost (Using LRPC)UnavailableUnavailable


Microsoft Office:
=========================
Error: (08/13/2015 10:19:48 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: WmiApRplC:\WINDOWS\system32\wbem\wmiaprpl.dll8

Error: (08/13/2015 10:19:48 PM) (Source: Perflib) (EventID: 1010) (User: )
Description: C:\Windows\System32\winspool.drvSpooler8

Error: (08/13/2015 10:19:47 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description:

Error: (08/13/2015 10:19:47 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: MSDTCC:\WINDOWS\system32\msdtcuiu.DLL8

Error: (08/13/2015 10:19:47 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: LsaC:\Windows\System32\Secur32.dll8

Error: (08/13/2015 10:19:47 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: ESENTC:\WINDOWS\system32\esentprf.dll8

Error: (08/13/2015 10:19:47 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8

Error: (08/13/2015 09:33:24 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: OHub.exe16.0.6106.235055c40ea1Mso30Imm.dll16.0.6014.100055a5783fc00000050000000000012b7028f001d0d631350e20adC:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.6106.23501.0_x64__8wekyb3d8bbwe\OHub.exeC:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.6106.23501.0_x64__8wekyb3d8bbwe\Mso30Imm.dll56795ff1-e84d-4c17-82e7-5129e91b103fMicrosoft.MicrosoftOfficeHub_17.6106.23501.0_x64__8wekyb3d8bbweMicrosoft.MicrosoftOfficeHub

Error: (08/13/2015 09:24:40 PM) (Source: OverwolfUpdater) (EventID: 0) (User: )
Description: Service cannot be started. An instance of the service is already running

Error: (08/13/2015 09:24:40 PM) (Source: OverwolfUpdater) (EventID: 0) (User: )
Description: Service cannot be started. The handle is invalid


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7 CPU 950 @ 3.07GHz
Percentage of memory in use: 18%
Total physical RAM: 12279.11 MB
Available physical RAM: 10032.65 MB
Total Virtual: 24567.11 MB
Available Virtual: 21402.65 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:111.25 GB) (Free:28.1 GB) NTFS
Drive d: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[system with boot components (obtained from reading drive)]
Drive e: (Backup) (Fixed) (Total:931.51 GB) (Free:376.65 GB) NTFS
Drive f: () (Fixed) (Total:596.07 GB) (Free:218.11 GB) NTFS
Drive g: (Avengers) (CDROM) (Total:0.21 GB) (Free:0 GB) CDFS
Drive h: () (Fixed) (Total:1863.01 GB) (Free:1740.49 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 86428099)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or Vista) (Size: 931.5 GB) (Disk ID: A06529FA)
Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 596.2 GB) (Disk ID: 6833E79C)
Partition 1: (Not Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Active) - (Size=596.1 GB) - (Type=07 NTFS)

========================================================
Disk: 3 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 83B14C67)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)

==================== End of log ============================

 

[Broni]

You're good with Addition.txt log.
I still need FRST.txt log.

 

[Sparhawk52]

I don't understand.. I had 3 posts for the FRST.txt last night before I posted the addition.txt... here it is again. Also I came back to my computer this morning to find that same page loaded up in chrome this time... and it keeps creating htm files on my desktop.

 

[Sparhawk52]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:13-08-2015
Ran by Yoan2 (administrator) on YOAN-PC (13-08-2015 22:36:29)
Running from C:\Users\Yoan2\Downloads
Loaded Profiles: Yoan2 (Available Profiles: Yoan2 & DefaultAppPool)
Platform: Windows 10 Home (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool:

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
(cFos Software GmbH) C:\Program Files\ASUS\ROG GameFirst\spd.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\Common\HPSupportSolutionsFrameworkService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Apache Software Foundation) C:\Program Files (x86)\Marvell\raid\Apache2\bin\httpd.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Apache Software Foundation) C:\Program Files (x86)\Marvell\raid\Apache2\bin\httpd.exe
() C:\Program Files (x86)\Marvell\raid\svc\mvraidsvc.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
() C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
(Microsoft Corporation) C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(cFos Software GmbH) C:\Program Files\ASUS\ROG GameFirst\cfosspeed.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Akamai Technologies, Inc.) C:\Users\Yoan2\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\Yoan2\AppData\Local\Akamai\netsession_win.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe
(Spotify Ltd) C:\Users\Yoan2\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe
(Microsoft Corporation) C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster X-Fi MB 2\Sound Blaster Panel\VolPanlu.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionHookAppWIN6064.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionHookAppWIN6032.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster X-Fi MB 2\THXAudioCP\THXAudio.exe
(NEC Electronics Corporation) C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Python Software Foundation) C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AI Direct Link\AsCmd.exe
(Stardock) C:\Program Files (x86)\Stardock\ObjectDockPlus2\Dock64.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\PlexDlnaServer.exe
() C:\Program Files (x86)\AutoClickerbyShocker\AutoClicker.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Stardock) C:\Program Files (x86)\Stardock\ObjectDockPlus2\ObjectDock.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft) C:\Program Files (x86)\Stardock\ObjectDockPlus2\ObjectDockTray.exe
(NVIDIA Corporation) C:\Users\Yoan2\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
(Microsoft Corporation) C:\Windows\System32\msfeedssync.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8492800 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [THXCfg64] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\THXCfg64.dll,RunDLLEntry THXCfg64
HKLM\...\Run: [RunDLLEntry] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\AmbRunE.dll,RunDLLEntry
HKLM\...\Run: [ROG GameFirst] => C:\Program Files\ASUS\ROG GameFirst\cFosSpeed.exe [1305304 2010-07-27] (cFos Software GmbH)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [7477016 2013-04-24] (Logitech Inc.)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634896 2015-07-24] (NVIDIA Corporation)
HKLM-x32\...\Run: [VolPanel] => C:\Program Files (x86)\Creative\Sound Blaster X-Fi MB 2\Sound Blaster Panel\VolPanlu.exe [241789 2010-02-18] (Creative Technology Ltd)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [THX Audio Control Panel] => C:\Program Files (x86)\Creative\Sound Blaster X-Fi MB 2\THXAudioCP\THXAudio.exe [1349632 2010-06-11] (Creative Technology Ltd)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [106496 2010-01-22] (NEC Electronics Corporation)
HKLM-x32\...\Run: [MRUTray] => C:\Program Files (x86)\Marvell\raid\tray\MarvellTray.exe [731176 2010-02-09] ()
HKLM-x32\...\Run: [JMB36X IDE Setup] => C:\Windows\RaidTool\xInsIDE.exe [36864 2009-12-24] ()
HKLM-x32\...\Run: [ASUS AI Direct Link Command Execute] => C:\Program Files (x86)\ASUS\AI Suite II\AI Direct Link\AsCmd.exe [383104 2010-05-18] (ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [AgentMonitor] => h:\VTech\DownloadManager\System\AgentMonitor.exe
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [RazerCortex] => C:\Program Files (x86)\Razer\Razer Cortex\RazerCortex.exe [98256 2015-07-30] (Razer Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6109776 2015-08-05] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\Run: [Google Update] => C:\Users\Yoan2\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-03-23] (Google Inc.)
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\Run: [Akamai NetSession Interface] => C:\Users\Yoan2\AppData\Local\Akamai\netsession_win.exe [4691384 2015-07-23] (Akamai Technologies, Inc.)
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\Run: [DisplayFusion] => C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe [6886752 2015-01-07] (Binary Fortress Software)
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [37152 2015-05-11] (Glarysoft Ltd)
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\Run: [Spotify Web Helper] => C:\Users\Yoan2\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018360 2015-08-12] (Spotify Ltd)
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\Run: [Plex Media Server] => C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [5973640 2015-06-11] (Plex, Inc.)
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\Run: [MyComGames] => C:\Users\Yoan2\AppData\Local\MyComGames\MyComGames.exe [4071368 2015-07-29] ()
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\Overwolf.exe [41200 2015-08-09] (Overwolf LTD)
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\...\Run: [OneDrive] => C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\OneDrive.exe [402632 2015-08-09] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GamersFirst LIVE!.lnk [2013-08-17]
ShortcutTarget: GamersFirst LIVE!.lnk -> C:\Program Files (x86)\GamersFirst\LIVE!\Live.exe (GamersFirst)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2013-08-17]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ObjectDock Plus 2.lnk [2013-08-17]
ShortcutTarget: ObjectDock Plus 2.lnk -> C:\Program Files (x86)\Stardock\ObjectDockPlus2\ObjectDock.exe (Stardock)
Startup: C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip [2013-08-17] ()
Startup: C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SleepMapper Data Card Uploader.lnk [2015-08-05]
ShortcutTarget: SleepMapper Data Card Uploader.lnk -> C:\Program Files (x86)\SleepMapper Data Card Uploader\SleepMapper Data Card Uploader.exe ()
Startup: C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Stardock ObjectDock.lnk [2013-08-17]
ShortcutTarget: Stardock ObjectDock.lnk -> C:\Program Files (x86)\Stardock\ObjectDockPlus2\ObjectDock.exe (Stardock)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll [2015-08-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll [2015-08-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll [2015-08-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-08-05] (AVAST Software)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\FileSyncShell.dll [2015-08-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\FileSyncShell.dll [2015-08-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Yoan2\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\FileSyncShell.dll [2015-08-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Yoan2\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
HKU\S-1-5-21-2215824855-1170150186-1298706218-1005\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://ca.yahoo.com?fr=hp-avast&type=avastbcl
SearchScopes: HKLM-x32 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005 -> {4C5F41F5-9DFF-4E5A-BD94-857049B81D0B} URL = hxxp://www.youtube.com/results?search_query={searchTerms}
SearchScopes: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2014-10-23] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-08-05] (AVAST Software)
BHO: PlayOn -> {9A87E478-A2BD-44C4-9F8C-D3989A5271B1} -> C:\Program Files (x86)\MediaMall\toolbar\pobho64.dll No File
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-07-17] (Google Inc.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-10-23] (Oracle Corporation)
BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-10-22] (Hewlett-Packard Co.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-06-01] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-08-05] (AVAST Software)
BHO-x32: PlayOn -> {9A87E478-A2BD-44C4-9F8C-D3989A5271B1} -> C:\Program Files (x86)\MediaMall\toolbar\pobho.dll No File
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-07-17] (Google Inc.)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-06-01] (Oracle Corporation)
BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22] (Hewlett-Packard Co.)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
Toolbar: HKLM - PlayOn - {9A87E478-A2BD-44C4-9F8C-D3989A5271B1} - C:\Program Files (x86)\MediaMall\toolbar\pobho64.dll No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-07-17] (Google Inc.)
Toolbar: HKLM-x32 - PlayOn - {9A87E478-A2BD-44C4-9F8C-D3989A5271B1} - C:\Program Files (x86)\MediaMall\toolbar\pobho.dll No File
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-07-17] (Google Inc.)
DPF: HKLM-x32 {0D41B8C5-2599-4893-8183-00195EC8D5F9} hxxp://support.asus.com/select/asusTek_sys_ctrl3.cab
DPF: HKLM-x32 {4871A87A-BFDD-4106-8153-FFDE2BAC2967} hxxp://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.5.7.cab
DPF: HKLM-x32 {6A060448-60F9-11D5-A6CD-0002B31F7455}
DPF: HKLM-x32 {6C269571-C6D7-4818-BCA4-32A035E8C884} hxxp://ccfiles.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/110926/CTPID.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 208.122.23.22 208.122.23.23
Tcpip\..\Interfaces\{07d08562-845a-43e2-8251-4851d107c97f}: [DhcpNameServer] 208.122.23.22 208.122.23.23
Tcpip\..\Interfaces\{737ac502-b176-4220-a992-8ac62813902c}: [DhcpNameServer] 64.71.255.198 64.71.255.253

FireFox:
========
FF ProfilePath: C:\Users\Yoan2\AppData\Roaming\Mozilla\Firefox\Profiles\h6chord6.default
FF DefaultSearchEngine: Yahoo! (Avast)
FF DefaultSearchUrl: https://ca.search.yahoo.com/yhs/search
FF SearchEngineOrder.1: Yahoo! (Avast)
FF SelectedSearchEngine: Yahoo! (Avast)
FF Homepage: https://ca.yahoo.com?fr=hp-avast&type=avastbcl
FF Keyword.URL: https://ca.search.yahoo.com/yhs/search
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-12] ()
FF Plugin: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-10-23] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2014-10-23] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-12] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1218158.dll [2015-04-17] (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2013-10-01] ()
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2009-05-12] (DivX,Inc.)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-06-01] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-06-01] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-04-08] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-04-08] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [2012-05-27] (Pando Networks)
FF Plugin-x32: @raidcall.en/RCplugin -> C:\Users\Yoan2\AppData\Roaming\raidcall\plugins\nprcplugin.dll [2013-03-30] (Raidcall)
FF Plugin-x32: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll [2013-02-14] (RocketLife, LLP)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2215824855-1170150186-1298706218-1005: @my.com/Games -> C:\Users\Yoan2\AppData\Local\MyComGames\NPMyComDetector.dll [2015-07-29] (My.com, Inc)
FF Plugin HKU\S-1-5-21-2215824855-1170150186-1298706218-1005: @nsroblox.roblox.com/launcher -> C:\Users\Yoan2\AppData\Local\Roblox\Versions\version-6e655c3defe448aa\\NPRobloxProxy.dll [2012-12-26] ( Roblox Corporation)
FF Plugin HKU\S-1-5-21-2215824855-1170150186-1298706218-1005: @talk.google.com/GoogleTalkPlugin -> C:\Users\Yoan2\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-2215824855-1170150186-1298706218-1005: @talk.google.com/O1DPlugin -> C:\Users\Yoan2\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-2215824855-1170150186-1298706218-1005: @tools.google.com/Google Update;version=3 -> C:\Users\Yoan2\AppData\Local\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin HKU\S-1-5-21-2215824855-1170150186-1298706218-1005: @tools.google.com/Google Update;version=9 -> C:\Users\Yoan2\AppData\Local\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin HKU\S-1-5-21-2215824855-1170150186-1298706218-1005: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Yoan2\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-04-13] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-2215824855-1170150186-1298706218-1005: @unity3d.com/UnityPlayer64,version=1.0 -> C:\Users\Yoan2\AppData\LocalLow\Unity\WebPlayer\loader-x64\npUnity3D64.dll [2012-11-12] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-2215824855-1170150186-1298706218-1005: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [2012-05-27] (Pando Networks)
FF Plugin HKU\S-1-5-21-2215824855-1170150186-1298706218-1005: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2014-05-11] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\libdivx.dll [2009-05-01] (The OpenSSL Project, http://www.openssl.org/)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npCouponPrinter.dll [2009-11-06] (Coupons, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npdivx32.dll [2009-05-12] (DivX,Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMozCouponPrinter.dll [2009-11-06] (Coupons, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\ssldivx.dll [2009-05-01] (The OpenSSL Project, http://www.openssl.org/)
FF Plugin ProgramFiles/Appdata: C:\Users\Yoan2\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Yoan2\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF SearchPlugin: C:\Users\Yoan2\AppData\Roaming\Mozilla\Firefox\Profiles\h6chord6.default\searchplugins\bing-avast.xml [2014-06-08]
FF SearchPlugin: C:\Users\Yoan2\AppData\Roaming\Mozilla\Firefox\Profiles\h6chord6.default\searchplugins\yahoo-avast.xml [2014-07-11]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\glarysearch.xml [2012-03-01]
FF Extension: PlayOn - C:\Users\Yoan2\AppData\Roaming\Mozilla\Firefox\Profiles\h6chord6.default\Extensions\playonplugin@playon.tv [2015-01-02]
FF Extension: Greasemonkey - C:\Users\Yoan2\AppData\Roaming\Mozilla\Firefox\Profiles\h6chord6.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2014-04-05]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-02-01]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-02-01]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-05-01]
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-02-24]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-03-13]

Chrome:
=======
CHR Profile: C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Avast Online Security) - C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2013-06-05]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-05]
CHR Extension: (Skype Click to Call) - C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-08-13]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Yoan2\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswwebrepchrome-sp.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-13]
CHR HKLM-x32\...\Chrome\Extension: [lggaaajacmlhgbpldaboipiinndchjgm] - C:\Program Files (x86)\MediaMall\toolbar\ce.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [951936 2012-10-12] (ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [149120 2012-10-12] (ASUSTeK Computer Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-08-05] (AVAST Software)
S3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4047768 2015-07-20] (Avast Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2013-06-28] () [File not signed]
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [326144 2015-07-10] (Microsoft Corporation)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
S3 CDPSvc; C:\Windows\System32\CDPSvc.dll [134144 2015-07-10] (Microsoft Corporation)
R2 cFosSpeedS; C:\Program Files\ASUS\ROG GameFirst\spd.exe [487128 2010-07-27] (cFos Software GmbH)
R2 CoreMessagingRegistrar; C:\Windows\system32\coremessaging.dll [808856 2015-08-09] (Microsoft Corporation)
R2 CoreMessagingRegistrar; C:\Windows\SysWOW64\coremessaging.dll [510976 2015-08-09] (Microsoft Corporation)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2012-01-24] (Creative Labs) [File not signed]
S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2012-01-24] (Creative Labs) [File not signed]
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [286720 2009-08-28] (Creative Technology Ltd) [File not signed]
S3 diagnosticshub.standardcollector.service; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [27136 2015-07-10] (Microsoft Corporation)
R2 DisplayFusionService; C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe [3169648 2015-01-07] (Binary Fortress Software)
S3 DmEnrollmentSvc; C:\Windows\system32\Windows.Internal.Management.dll [267776 2015-07-10] (Microsoft Corporation)
S3 DmEnrollmentSvc; C:\Windows\SysWOW64\Windows.Internal.Management.dll [193024 2015-07-10] (Microsoft Corporation)
S3 embeddedmode; C:\Windows\System32\embeddedmodesvc.dll [87040 2015-07-10] (Microsoft Corporation)
S3 EntAppSvc; C:\Windows\system32\EnterpriseAppMgmtSvc.dll [275456 2015-07-10] (Microsoft Corporation)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155216 2015-07-24] (NVIDIA Corporation)
R2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [8704 2015-07-17] (Hi-Rez Studios) [File not signed]
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2010-10-22] (Hewlett-Packard Co.) [File not signed]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [89840 2015-03-28] (Hewlett-Packard Company)
S3 icssvc; C:\Windows\System32\tetheringservice.dll [148992 2015-08-09] (Microsoft Corporation)
R3 lfsvc; C:\Windows\SysWOW64\lfsvc.dll [22528 2015-07-10] (Microsoft Corporation)
R3 LicenseManager; C:\Windows\system32\LicenseManagerSvc.dll [21504 2015-07-10] (Microsoft Corporation)
S2 MapsBroker; C:\Windows\System32\moshost.dll [62464 2015-07-10] (Microsoft Corporation)
R2 Marvell RAID; C:\Program Files (x86)\Marvell\raid\svc\mvraidsvc.exe [235560 2010-02-09] ()
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
S3 McComponentHostService; C:\Program Files (x86)\McAfee Security Scan\3.8.150\McCHSvc.exe [235696 2014-04-09] (McAfee, Inc.)
R2 MRUWebService; C:\Program Files (x86)\Marvell\raid\Apache2\bin\httpd.exe [24635 2008-06-12] (Apache Software Foundation) [File not signed]
R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-08-09] (Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1871504 2015-07-24] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544592 2015-07-24] (NVIDIA Corporation)
S2 OneSyncSvc; C:\Windows\System32\APHostService.dll [296960 2015-07-10] (Microsoft Corporation)
R2 OneSyncSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
R2 OneSyncSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2007048 2015-08-12] (Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [995568 2015-08-09] (Overwolf LTD)
S3 PimIndexMaintenanceSvc; C:\Windows\System32\PimIndexMaintenance.dll [289280 2015-07-10] (Microsoft Corporation)
S3 PimIndexMaintenanceSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
S3 PimIndexMaintenanceSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2015-08-12] ()
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187048 2015-07-22] ()
S3 RetailDemo; C:\Windows\system32\RDXService.dll [988672 2015-08-02] (Microsoft Corporation)
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [129168 2015-07-30] (Razer Inc.)
S3 SensorDataService; C:\Windows\System32\SensorDataService.exe [1031680 2015-08-09] (Microsoft Corporation)
R3 StateRepository; C:\Windows\system32\windows.staterepository.dll [2674176 2015-07-10] (Microsoft Corporation)
R3 StateRepository; C:\Windows\SysWOW64\windows.staterepository.dll [2049024 2015-07-10] (Microsoft Corporation)
S3 UnistoreSvc; C:\Windows\System32\unistore.dll [1203200 2015-08-09] (Microsoft Corporation)
S3 UnistoreSvc; C:\Windows\SysWOW64\unistore.dll [925696 2015-08-09] (Microsoft Corporation)
S3 UnistoreSvc_Session1; C:\WINDOWS\System32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
S3 UnistoreSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
S3 UserDataSvc; C:\Windows\System32\userdataservice.dll [1420288 2015-08-09] (Microsoft Corporation)
S3 UserDataSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
S3 UserDataSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
S3 vmicvmsession; C:\Windows\System32\ICSvc.dll [506880 2015-07-10] (Microsoft Corporation)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-08-09] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-08-09] (Microsoft Corporation)
S3 WalletService; C:\Windows\system32\WalletService.dll [504320 2015-07-10] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
S2 WiseBootAssistant; C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe [580232 2013-04-25] (WiseCleaner.com) [File not signed]
S3 XblAuthManager; C:\Windows\System32\XblAuthManager.dll [918016 2015-07-10] (Microsoft Corporation)
S3 XblGameSave; C:\Windows\System32\XblGameSave.dll [1149440 2015-07-10] (Microsoft Corporation)
S3 XboxNetApiSvc; C:\Windows\system32\XboxNetApiSvc.dll [1019392 2015-07-10] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-10-12] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2012-10-12] ()
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-08-05] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28144 2015-08-05] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-08-05] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-08-05] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-08-05] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1048344 2015-08-13] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [447944 2015-08-05] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [150672 2015-08-05] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-08-05] (AVAST Software)
R3 CompositeBus; C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys [39936 2015-07-10] (Microsoft Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283200 2012-12-19] (DT Soft Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3436896 2015-07-10] (QLogic Corporation)
R1 FileCrypt; C:\Windows\System32\drivers\filecrypt.sys [83968 2015-07-10] (Microsoft Corporation)
S3 genericusbfn; C:\Windows\System32\drivers\genericusbfn.sys [20992 2015-07-10] (Microsoft Corporation)
R1 GpuEnergyDrv; C:\Windows\System32\drivers\gpuenergydrv.sys [8192 2015-07-10] (Microsoft Corporation)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20160 2015-05-13] (Glarysoft Ltd)
R1 HssDRV6; C:\Windows\system32\DRIVERS\hssdrv6.sys [41224 2012-06-01] (AnchorFree Inc.)
S3 ibbus; C:\Windows\System32\drivers\ibbus.sys [424800 2015-07-10] (Mellanox)
S3 IoQos; C:\Windows\System32\drivers\ioqos.sys [26624 2015-07-10] (Microsoft Corporation)
R3 LGSHidFilt; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys [66800 2013-01-17] (Logitech Inc.)
S0 LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [99168 2015-07-10] (Avago Technologies)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [113880 2015-08-13] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
S3 mlx4_bus; C:\Windows\System32\drivers\mlx4_bus.sys [705376 2015-07-10] (Mellanox)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-08-09] (Microsoft Corporation)
R3 msvad_simple; C:\Windows\system32\drivers\povrtdev.sys [28528 2013-12-17] (MediaMall Technologies, Inc.)
R3 MTsensor; C:\Windows\system32\DRIVERS\ASACPI.sys [17280 2013-05-17] ()
S3 ndfltr; C:\Windows\System32\drivers\ndfltr.sys [76128 2015-07-10] (Mellanox)
R0 ngvss; C:\Windows\System32\Drivers\ngvss.sys [115152 2015-08-05] (AVAST Software)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-07-24] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47976 2015-07-03] (NVIDIA Corporation)
R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [37184 2015-06-12] (Razer, Inc.)
R2 storqosflt; C:\Windows\System32\drivers\storqosflt.sys [61952 2015-07-10] (Microsoft Corporation)
R3 swenum; C:\Windows\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys [17760 2015-07-10] (Microsoft Corporation)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [35064 2015-08-13] ()
S3 UcmCx0101; C:\Windows\System32\Drivers\UcmCx.sys [61952 2015-07-10] (Microsoft Corporation)
S3 UcmUcsi; C:\Windows\System32\drivers\UcmUcsi.sys [46080 2015-08-09] (Microsoft Corporation)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [273824 2015-07-20] (Avast Software)
R0 WindowsTrustedRT; C:\Windows\System32\drivers\WindowsTrustedRT.sys [106520 2015-07-10] (Microsoft Corporation)
R0 WindowsTrustedRTProxy; C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys [17944 2015-07-10] (Microsoft Corporation)
S3 WinMad; C:\Windows\System32\drivers\winmad.sys [26976 2015-07-10] (Mellanox)
S3 WinVerbs; C:\Windows\System32\drivers\winverbs.sys [59232 2015-07-10] (Mellanox)
S3 xboxgip; C:\Windows\System32\drivers\xboxgip.sys [222720 2015-07-10] (Microsoft Corporation)
S3 xinputhid; C:\Windows\System32\drivers\xinputhid.sys [25600 2015-07-10] (Microsoft Corporation)
U3 idsvc; no ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

NETSVC: dosvc -> C:\Windows\system32\dosvc.dll (Microsoft Corporation)
NETSVC: DcpSvc -> C:\Windows\system32\dcpsvc.dll (Microsoft Corporation)
NETSVC: NetSetupSvc -> C:\Windows\System32\NetSetupSvc.dll (Microsoft Corporation)
NETSVC: dmwappushservice -> C:\Windows\system32\dmwappushsvc.dll (Microsoft Corporation)
NETSVC: XblGameSave -> C:\Windows\System32\XblGameSave.dll (Microsoft Corporation)
NETSVC: XboxNetApiSvc -> C:\Windows\system32\XboxNetApiSvc.dll (Microsoft Corporation)
NETSVC: UsoSvc -> C:\Windows\system32\usocore.dll (Microsoft Corporation)
NETSVC: UserManager -> C:\Windows\System32\usermgr.dll (Microsoft Corporation)
NETSVC: DmEnrollmentSvc -> C:\Windows\system32\Windows.Internal.Management.dll (Microsoft Corporation)
NETSVC: XblAuthManager -> C:\Windows\System32\XblAuthManager.dll (Microsoft Corporation)
NETSVC: RetailDemo -> C:\Windows\system32\RDXService.dll (Microsoft Corporation)
NETSVCx32: NetSetupSvc -> C:\Windows\SysWOW64\NetSetupSvc.dll ==> No File
NETSVCx32: UserManager -> C:\Windows\SysWOW64\usermgr.dll ==> No File

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-13 21:18 - 2015-08-13 21:18 - 00016148 _____ C:\WINDOWS\system32\YOAN-PC_Yoan2_HistoryPrediction.bin
2015-08-13 21:12 - 2015-08-13 21:12 - 00035936 _____ C:\Users\Yoan2\Desktop\JRT.txt
2015-08-13 21:07 - 2015-08-13 21:09 - 01791580 _____ (Malwarebytes Corporation) C:\Users\Yoan2\Downloads\JRT.exe
2015-08-13 21:00 - 2015-08-13 21:02 - 00000000 ____D C:\AdwCleaner
2015-08-13 20:55 - 2015-08-13 21:00 - 02248704 _____ C:\Users\Yoan2\Downloads\adwcleaner_4.208.exe
2015-08-13 20:53 - 2015-08-13 20:53 - 00001036 _____ C:\Users\Yoan2\Desktop\MBAM.txt
2015-08-13 20:40 - 2015-08-13 20:40 - 00008334 _____ C:\Users\Yoan2\Downloads\RKreport.txt
2015-08-13 20:12 - 2015-08-13 20:40 - 00000000 ____D C:\ProgramData\RogueKiller
2015-08-13 20:12 - 2015-08-13 20:12 - 00035064 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2015-08-13 20:03 - 2015-08-13 20:12 - 18723912 _____ C:\Users\Yoan2\Downloads\RogueKiller.exe
2015-08-13 17:16 - 2015-08-13 17:18 - 00153929 _____ C:\Users\Yoan2\Downloads\Addition.txt
2015-08-13 17:15 - 2015-08-13 22:36 - 00046278 _____ C:\Users\Yoan2\Downloads\FRST.txt
2015-08-13 17:15 - 2015-08-13 22:36 - 00000000 ____D C:\FRST
2015-08-13 17:14 - 2015-08-13 17:15 - 02173952 _____ (Farbar) C:\Users\Yoan2\Downloads\FRST64.exe
2015-08-13 16:58 - 2015-08-13 16:58 - 00003436 _____ C:\Users\Yoan2\Desktop\10863671.htm
2015-08-13 13:57 - 2015-08-13 13:57 - 00383808 _____ C:\WINDOWS\Minidump\081315-24093-01.dmp
2015-08-13 12:31 - 2015-08-13 12:31 - 00003436 _____ C:\Users\Yoan2\Desktop\10864109.htm
2015-08-13 09:30 - 2015-08-13 13:57 - 872489626 ____N C:\WINDOWS\MEMORY.DMP
2015-08-13 09:30 - 2015-08-13 13:57 - 00000000 ____D C:\WINDOWS\Minidump
2015-08-13 09:30 - 2015-08-13 09:30 - 00409864 _____ C:\WINDOWS\Minidump\081315-30500-01.dmp
2015-08-12 21:52 - 2015-08-13 22:36 - 00004152 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{C6BDE619-3322-4267-A02E-C7122E864DBE}
2015-08-12 20:27 - 2015-08-12 20:27 - 00018473 _____ C:\WINDOWS\DirectX.log
2015-08-12 14:05 - 2015-08-12 14:05 - 00003436 _____ C:\Users\Yoan2\Desktop\10883671.htm
2015-08-11 16:12 - 2015-08-11 16:12 - 00003436 _____ C:\Users\Yoan2\Desktop\10988453.htm
2015-08-11 15:14 - 2015-08-08 03:30 - 08020320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-08-11 15:14 - 2015-08-08 03:29 - 01822280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-08-11 15:14 - 2015-08-08 03:19 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe

 

[Sparhawk52]

2015-08-11 15:14 - 2015-08-08 03:01 - 01533496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-08-11 15:14 - 2015-08-08 02:48 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-08-11 15:14 - 2015-08-08 02:40 - 00365056 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-08-11 15:14 - 2015-08-08 02:24 - 02415104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-08-11 15:14 - 2015-08-08 02:24 - 01679360 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-08-11 15:14 - 2015-08-08 02:22 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2015-08-11 15:14 - 2015-08-08 02:21 - 00642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
2015-08-11 15:14 - 2015-08-08 02:15 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-08-11 15:14 - 2015-08-08 02:00 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-08-11 15:14 - 2015-08-05 23:18 - 00290768 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2015-08-11 15:14 - 2015-08-05 23:17 - 00237392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2015-08-11 15:14 - 2015-08-05 23:17 - 00200528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2015-08-11 15:14 - 2015-08-05 22:36 - 21874176 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-08-11 15:14 - 2015-08-05 22:22 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2015-08-11 15:14 - 2015-08-05 22:03 - 18805248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-08-11 15:14 - 2015-08-05 00:49 - 00783112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-08-11 15:14 - 2015-08-05 00:29 - 00644128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2015-08-11 15:14 - 2015-08-05 00:03 - 02416640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-08-11 15:14 - 2015-08-05 00:00 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2015-08-11 15:14 - 2015-08-04 23:54 - 01274880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-08-11 15:14 - 2015-08-04 23:47 - 03588096 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-08-11 15:14 - 2015-08-04 23:47 - 01383424 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-08-11 15:14 - 2015-08-04 23:43 - 01916416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-08-11 15:14 - 2015-08-04 23:39 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenter.dll
2015-08-11 15:14 - 2015-08-04 00:08 - 02462648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-08-11 15:14 - 2015-08-04 00:07 - 00102752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2015-08-11 15:14 - 2015-08-04 00:06 - 00583128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-08-11 15:14 - 2015-08-04 00:06 - 00243248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-08-11 15:14 - 2015-08-03 23:50 - 02151208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-08-11 15:14 - 2015-08-03 23:23 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2015-08-11 15:14 - 2015-08-03 23:21 - 16709120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-08-11 15:14 - 2015-08-03 23:10 - 13025792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-08-11 15:14 - 2015-08-03 22:59 - 01212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-08-11 15:14 - 2015-08-03 22:47 - 00898560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2015-08-11 15:14 - 2015-08-02 22:32 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2015-08-11 15:14 - 2015-08-02 22:28 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll
2015-08-11 15:14 - 2015-08-02 22:19 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2015-08-11 15:14 - 2015-08-02 22:19 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2015-08-11 15:14 - 2015-08-02 22:18 - 08613200 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2015-08-11 15:14 - 2015-08-02 22:18 - 01983840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-08-11 15:14 - 2015-08-02 22:18 - 00594472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2015-08-11 15:14 - 2015-08-02 22:18 - 00046432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpiowin32.sys
2015-08-11 15:14 - 2015-08-02 22:17 - 00516960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-08-11 15:14 - 2015-08-02 22:17 - 00052264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys
2015-08-11 15:14 - 2015-08-02 22:13 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-08-11 15:14 - 2015-08-02 22:12 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-08-11 15:14 - 2015-08-02 21:56 - 06878256 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2015-08-11 15:14 - 2015-08-02 21:50 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-08-11 15:14 - 2015-08-02 21:49 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2015-08-11 15:14 - 2015-08-02 21:31 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2015-08-11 15:14 - 2015-08-02 21:30 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
2015-08-11 15:14 - 2015-08-02 21:24 - 24592384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-08-11 15:14 - 2015-08-02 21:24 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2015-08-11 15:14 - 2015-08-02 21:24 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2015-08-11 15:14 - 2015-08-02 21:24 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll
2015-08-11 15:14 - 2015-08-02 21:23 - 02446336 _____ C:\WINDOWS\system32\InputService.dll
2015-08-11 15:14 - 2015-08-02 21:23 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2015-08-11 15:14 - 2015-08-02 21:22 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-08-11 15:14 - 2015-08-02 21:22 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-08-11 15:14 - 2015-08-02 21:22 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2015-08-11 15:14 - 2015-08-02 21:22 - 00293376 _____ C:\WINDOWS\system32\TextInputFramework.dll
2015-08-11 15:14 - 2015-08-02 21:21 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2015-08-11 15:14 - 2015-08-02 21:19 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2015-08-11 15:14 - 2015-08-02 21:19 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2015-08-11 15:14 - 2015-08-02 21:18 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-08-11 15:14 - 2015-08-02 21:18 - 03780096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-08-11 15:14 - 2015-08-02 21:18 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2015-08-11 15:14 - 2015-08-02 21:18 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkStatus.dll
2015-08-11 15:14 - 2015-08-02 21:15 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-11 15:14 - 2015-08-02 21:15 - 01290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-08-11 15:14 - 2015-08-02 21:15 - 00988672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-08-11 15:14 - 2015-08-02 21:15 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2015-08-11 15:14 - 2015-08-02 21:15 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2015-08-11 15:14 - 2015-08-02 21:15 - 00384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2015-08-11 15:14 - 2015-08-02 21:15 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2015-08-11 15:14 - 2015-08-02 21:14 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-08-11 15:14 - 2015-08-02 21:14 - 00247808 _____ C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-11 15:14 - 2015-08-02 21:12 - 19323392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-08-11 15:14 - 2015-08-02 21:12 - 01890304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-08-11 15:14 - 2015-08-02 21:12 - 01823232 _____ C:\WINDOWS\SysWOW64\InputService.dll
2015-08-11 15:14 - 2015-08-02 21:12 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2015-08-11 15:14 - 2015-08-02 21:12 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll
2015-08-11 15:14 - 2015-08-02 21:11 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-11 15:14 - 2015-08-02 21:11 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2015-08-11 15:14 - 2015-08-02 21:11 - 00200704 _____ C:\WINDOWS\SysWOW64\TextInputFramework.dll
2015-08-11 15:14 - 2015-08-02 21:10 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2015-08-11 15:14 - 2015-08-02 21:06 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2015-08-11 15:14 - 2015-08-02 21:03 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2015-08-11 15:14 - 2015-08-02 21:02 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2015-08-11 15:14 - 2015-08-02 21:02 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2015-08-11 15:14 - 2015-08-02 21:01 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-08-11 15:14 - 2015-08-02 21:00 - 01593856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-08-11 15:14 - 2015-08-02 20:59 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2015-08-11 13:31 - 2015-08-11 13:31 - 01384064 _____ (Skype Technologies S.A.) C:\Users\Yoan2\Downloads\SkypeSetup (1).exe
2015-08-11 13:31 - 2015-08-11 13:31 - 00003224 _____ C:\WINDOWS\System32\Tasks\{5BCDEE9A-ABE2-4A80-A8C7-260E2DA86A9B}
2015-08-11 13:30 - 2015-08-11 13:30 - 01384064 _____ (Skype Technologies S.A.) C:\Users\Yoan2\Downloads\SkypeSetup.exe
2015-08-11 12:46 - 2015-08-11 12:46 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2015-08-09 22:38 - 2015-08-09 22:38 - 00003436 _____ C:\Users\Yoan2\Desktop\92918171.htm
2015-08-09 22:38 - 2015-08-09 22:38 - 00000000 ____D C:\Users\Yoan2\AppData\Local\MicrosoftEdge
2015-08-09 21:50 - 2015-08-09 21:50 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2015-08-09 20:44 - 2015-08-13 22:20 - 00000000 ____D C:\Users\Yoan2\AppData\Local\Deployment
2015-08-09 19:39 - 2015-08-09 19:39 - 00002375 _____ C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-08-09 19:37 - 2015-08-09 21:43 - 00000000 ____D C:\Users\Yoan2\AppData\Local\Packages
2015-08-09 19:37 - 2015-08-09 19:37 - 00000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2015-08-09 19:37 - 2015-08-09 19:37 - 00000000 ____D C:\Users\Yoan2\AppData\Local\TileDataLayer
2015-08-09 19:37 - 2015-08-09 19:37 - 00000000 ____D C:\Users\Yoan2\AppData\Local\Publishers
2015-08-09 19:37 - 2015-08-09 19:37 - 00000000 ____D C:\Users\DefaultAppPool
2015-08-09 19:37 - 2015-08-08 20:48 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-09 19:37 - 2015-08-08 20:48 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Macromedia
2015-08-09 19:37 - 2015-07-10 07:04 - 00000000 __RSD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-08-09 19:37 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-09 19:37 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-08-09 19:37 - 2015-07-10 07:04 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-08-09 19:37 - 2015-03-23 17:33 - 00002104 _____ C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2015-08-09 19:36 - 2015-08-09 19:36 - 00000020 ___SH C:\Users\Yoan2\ntuser.ini
2015-08-09 00:40 - 2015-08-09 19:36 - 00000000 ___DC C:\WINDOWS\Panther
2015-08-09 00:37 - 2015-08-09 00:37 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 11557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 09889792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 07523328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 06305792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 04760576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 04532304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-08-09 00:37 - 2015-08-09 00:37 - 04398080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 04350464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 04169728 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 04047288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-08-09 00:37 - 2015-08-09 00:37 - 03687936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 02878000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 02662400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 02224128 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 02147080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 02116448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-08-09 00:37 - 2015-08-09 00:37 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 01773056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 01611264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 01562968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 01561872 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 01411072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 01356368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 01200400 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-08-09 00:37 - 2015-08-09 00:37 - 01085776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 01067520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 01043872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 01031680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2015-08-09 00:37 - 2015-08-09 00:37 - 01025840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-08-09 00:37 - 2015-08-09 00:37 - 00916800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00896144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00877016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00845664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00750592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00713312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00705520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efscore.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00569344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00527952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00521216 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00445240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2015-08-09 00:37 - 2015-08-09 00:37 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00407616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00403968 _____ C:\WINDOWS\system32\diagtrack_wininternal.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00333168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemcpl.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00285632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2015-08-09 00:37 - 2015-08-09 00:37 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00252768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00242264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2015-08-09 00:37 - 2015-08-09 00:37 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00181088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00097128 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00082616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2015-08-09 00:37 - 2015-08-09 00:37 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-08-09 00:37 - 2015-08-09 00:37 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-08-09 00:37 - 2015-08-09 00:37 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2015-08-09 00:37 - 2015-08-09 00:37 - 00000000 ____D C:\Windows.old
2015-08-09 00:36 - 2015-08-09 00:36 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 07051264 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 06488312 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 05118024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 05076480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 04611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 03362816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 02741760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 02606080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 02558976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 02207744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 02112512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01867160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01769056 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01591856 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01521664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01420288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01365072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01334784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-08-09 00:36 - 2015-08-09 00:36 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01177600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01169408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01135312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 01112064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01101792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-08-09 00:36 - 2015-08-09 00:36 - 00991584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00966424 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00934752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2015-08-09 00:36 - 2015-08-09 00:36 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00823336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00808856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00762896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 00695136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00658568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00654848 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00632168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00630160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00607008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00601344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-08-09 00:36 - 2015-08-09 00:36 - 00593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2015-08-09 00:36 - 2015-08-09 00:36 - 00562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 00521568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00507696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00505344 _____ C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-08-09 00:36 - 2015-08-09 00:36 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00425824 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 00412672 _____ C:\WINDOWS\system32\diagtrack_win.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 00335248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00325984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2015-08-09 00:36 - 2015-08-09 00:36 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00290312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00265480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00208736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OmaDmAgent.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2015-08-09 00:36 - 2015-08-09 00:36 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2015-08-09 00:36 - 2015-08-09 00:36 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2015-08-09 00:36 - 2015-08-09 00:36 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\unenrollhook.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00061280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2015-08-09 00:36 - 2015-08-09 00:36 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmprc.exe
2015-08-09 00:36 - 2015-08-09 00:36 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2015-08-09 00:36 - 2015-08-09 00:36 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\VoiceActivationManager.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VoiceActivationManager.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00032768 _____ C:\WINDOWS\system32\LicenseManagerApi.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2015-08-09 00:36 - 2015-08-09 00:36 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-08-09 00:35 - 2015-08-09 00:35 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2015-08-09 00:30 - 2015-08-09 00:30 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2015-08-09 00:30 - 2015-08-09 00:30 - 00000000 ____D C:\WINDOWS\system32\msmq
2015-08-09 00:30 - 2015-08-09 00:30 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2015-08-09 00:30 - 2015-08-09 00:30 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-08-09 00:30 - 2015-08-09 00:30 - 00000000 ____D C:\Program Files\MSBuild
2015-08-09 00:30 - 2015-08-09 00:30 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-08-09 00:30 - 2015-08-09 00:30 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-08-09 00:30 - 2015-08-09 00:30 - 00000000 ____D C:\inetpub
2015-08-09 00:29 - 2015-06-17 22:10 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-08-09 00:29 - 2015-06-17 22:10 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-09 00:29 - 2015-06-17 22:10 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-08-09 00:29 - 2015-05-30 01:07 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-08-09 00:29 - 2015-05-30 01:07 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-09 00:29 - 2015-05-30 01:07 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-08-08 20:55 - 2015-08-08 20:55 - 00000000 __SHD C:\Recovery
2015-08-08 20:54 - 2015-08-08 20:54 - 00022744 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-08-08 20:52 - 2015-08-12 13:49 - 00002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-08-08 20:48 - 2015-08-08 20:48 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-08-08 20:48 - 2015-08-08 20:48 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2015-08-08 20:48 - 2015-08-08 20:48 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2015-08-08 20:46 - 2015-08-08 20:46 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2015-08-08 20:45 - 2015-08-13 13:57 - 00000000 ____D C:\Users\Yoan2
2015-08-08 20:45 - 2015-08-09 19:37 - 00000000 ___RD C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-08 20:45 - 2015-07-10 07:04 - 00000000 __RSD C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-08-08 20:45 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools

 

[Sparhawk52]

2015-08-08 20:45 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-08-08 20:45 - 2015-07-10 07:04 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-08-08 20:44 - 2015-07-10 06:59 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2015-08-08 20:42 - 2015-08-13 21:24 - 01005598 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-08-08 20:42 - 2015-08-13 21:18 - 00000000 ____D C:\ProgramData\NVIDIA
2015-08-08 20:42 - 2015-08-08 20:46 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-08-08 20:42 - 2015-08-08 20:46 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-08-08 20:42 - 2015-08-08 20:46 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-08-08 20:42 - 2015-08-08 20:43 - 00021209 _____ C:\WINDOWS\iis.log
2015-08-08 20:42 - 2015-08-08 20:42 - 00961296 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2015-08-08 20:42 - 2015-08-08 20:42 - 00018960 _____ (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LNonPnP.sys
2015-08-08 20:42 - 2015-08-08 20:42 - 00000388 _____ C:\WINDOWS\LkmdfCoInst.log
2015-08-08 20:42 - 2015-08-08 20:42 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2015-08-08 20:42 - 2015-08-08 20:42 - 00000000 ____D C:\Program Files\Realtek
2015-08-08 20:42 - 2015-07-22 21:10 - 06873928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-08-08 20:42 - 2015-07-22 21:10 - 03493008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2015-08-08 20:42 - 2015-07-22 21:10 - 02558608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-08-08 20:42 - 2015-07-22 21:10 - 00937800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-08-08 20:42 - 2015-07-22 21:10 - 00385168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-08-08 20:42 - 2015-07-22 21:10 - 00062608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-08-08 20:42 - 2015-07-22 00:29 - 05121613 _____ C:\WINDOWS\system32\nvcoproc.bin
2015-08-08 20:41 - 2015-08-08 20:41 - 00023225 _____ C:\WINDOWS\system32\NetSetupMig.log
2015-08-08 20:40 - 2015-08-13 09:30 - 00012290 _____ C:\WINDOWS\PFRO.log
2015-08-08 20:13 - 2015-08-08 20:55 - 00006608 _____ C:\WINDOWS\comsetup.log
2015-08-08 20:12 - 2015-08-08 20:55 - 00010449 _____ C:\WINDOWS\diagerr.xml
2015-08-08 20:12 - 2015-08-08 20:55 - 00009528 _____ C:\WINDOWS\diagwrn.xml
2015-08-08 14:13 - 2015-08-08 14:13 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\ts3overlay
2015-08-08 14:09 - 2015-08-13 22:35 - 00000000 ____D C:\Users\Yoan2\AppData\Local\Purplizer
2015-08-08 14:08 - 2015-08-11 13:17 - 00000000 ____D C:\Program Files (x86)\Overwolf
2015-08-08 14:08 - 2015-08-08 20:54 - 00003838 _____ C:\WINDOWS\System32\Tasks\Overwolf Updater Task
2015-08-08 14:08 - 2015-08-08 20:49 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
2015-08-08 14:08 - 2015-08-08 14:08 - 00001975 _____ C:\Users\Public\Desktop\Overwolf.lnk
2015-08-08 14:08 - 2015-08-08 14:08 - 00000000 ____D C:\ProgramData\Overwolf
2015-08-07 18:46 - 2015-08-08 20:49 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Avengers Snapshots
2015-08-07 18:46 - 2015-08-07 18:57 - 00000000 ____D C:\Users\Yoan2\AppData\Local\Avengers Snapshots
2015-08-07 18:46 - 2015-08-07 18:55 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\vlc
2015-08-07 18:46 - 2015-08-07 18:46 - 00001742 _____ C:\Users\Yoan2\Desktop\Avengers Snapshots.lnk
2015-08-07 18:46 - 2015-08-07 18:46 - 00000000 ____D C:\ProgramData\Avengers Snapshots
2015-08-07 18:46 - 2015-08-07 18:46 - 00000000 ____D C:\ProgramData\Avengers
2015-08-07 18:41 - 2015-08-08 20:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ffdshow
2015-08-07 18:41 - 2015-08-07 18:46 - 00000000 ____D C:\Program Files\Avengers Snapshots
2015-08-07 18:41 - 2015-08-07 18:41 - 00000000 ____D C:\Program Files (x86)\V25
2015-08-07 18:41 - 2015-08-07 18:41 - 00000000 ____D C:\Program Files (x86)\MTA
2015-08-07 18:41 - 2010-05-29 15:56 - 00084264 _____ (Windows (R) Codename Longhorn DDK provider) C:\WINDOWS\system32\Drivers\jl2005c.sys
2015-08-07 18:41 - 2008-12-17 19:22 - 00057344 _____ C:\WINDOWS\SysWOW64\ff_vfw.dll
2015-08-07 18:41 - 2008-12-11 13:26 - 00060273 _____ (Open Source Software community project) C:\WINDOWS\SysWOW64\pthreadGC2.dll
2015-08-07 18:41 - 2005-08-10 10:44 - 00015360 _____ (JEILIN Technology Corp.) C:\WINDOWS\SysWOW64\jl2005c.ax
2015-08-05 21:33 - 2015-08-05 21:33 - 00378880 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2015-08-05 21:33 - 2015-08-05 21:33 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2015-08-05 11:30 - 2015-08-05 11:30 - 00002315 _____ C:\Users\Public\Desktop\SleepMapper Data Card Uploader.lnk
2015-08-05 11:30 - 2015-08-05 11:30 - 00000000 ____D C:\Users\Yoan2\SleepMapperDataCardUploaderSettings
2015-08-05 11:29 - 2015-08-08 20:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SleepMapper Data Card Uploader
2015-08-05 11:29 - 2015-08-05 11:29 - 00000000 ____D C:\Program Files (x86)\SleepMapper Data Card Uploader
2015-08-05 11:28 - 2015-08-05 11:29 - 34137072 _____ (Philips Respironics) C:\Users\Yoan2\Downloads\SleepMapper_Data_Card_Uploader_windows.exe
2015-08-05 03:40 - 2015-08-05 03:40 - 42740552 _____ C:\WINDOWS\system32\nvcompiler.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 37759304 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 30529168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 22983824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 18385304 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 16169160 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 16021920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 15762912 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 14521840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 13285144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 12983920 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 11852096 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 11153224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-08-05 03:40 - 2015-08-05 03:40 - 03360576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 02971920 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 02371216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 02174280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 01908368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435362.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 01569080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 01567888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435362.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 01173904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 01071248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 01063240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 00999864 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 00993608 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 00985248 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 00206152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2015-08-05 03:40 - 2015-08-05 03:40 - 00187136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 00165512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 00161064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 00137224 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2015-08-05 03:40 - 2015-08-05 03:40 - 00041784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2015-07-29 18:37 - 2015-08-08 20:45 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\My.com
2015-07-29 18:37 - 2015-07-29 18:37 - 00000122 _____ C:\Users\Yoan2\Desktop\Skyforge My.com.url
2015-07-29 17:50 - 2015-08-13 21:19 - 00000000 ____D C:\Users\Yoan2\AppData\Local\MyComGames
2015-07-29 17:50 - 2015-08-08 20:49 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\My.com Games
2015-07-29 17:50 - 2015-07-29 17:50 - 00002015 _____ C:\Users\Yoan2\Desktop\My.com Game Center.lnk
2015-07-29 17:49 - 2015-07-29 17:50 - 04542960 _____ C:\Users\Yoan2\Downloads\SkyforgeLoader_en.exe
2015-07-27 15:57 - 2015-07-27 15:57 - 07436840 _____ C:\Users\Yoan2\Downloads\ts3_overlay-v3.8.23.ts3_plugin
2015-07-23 04:02 - 2015-07-23 04:02 - 00031976 _____ C:\WINDOWS\system32\nvinfo.pb
2015-07-22 20:24 - 2015-07-22 20:24 - 00000000 ____D C:\Users\Yoan2\AppData\Local\CEF
2015-07-20 17:37 - 2015-08-05 21:33 - 00115152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\ngvss.sys
2015-07-20 13:50 - 2015-07-03 00:28 - 00069992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2015-07-20 13:50 - 2015-07-03 00:28 - 00065896 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2015-07-20 13:50 - 2015-07-03 00:28 - 00047976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2015-07-17 12:09 - 2015-07-17 12:10 - 16765230 _____ C:\Users\Yoan2\Downloads\ZygorGuides-5.0.12358.zip
2015-07-17 11:56 - 2015-08-04 12:31 - 00000000 ____D C:\TEamspeak
2015-07-17 11:56 - 2015-07-17 11:56 - 00000698 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2015-07-17 11:55 - 2015-07-17 11:56 - 28115400 _____ (TeamSpeak Systems GmbH) C:\Users\Yoan2\Downloads\TeamSpeak3-Client-win32-3.0.16.exe
2015-07-17 11:47 - 2015-07-17 11:47 - 00000000 __SHD C:\found.001
2015-07-17 11:42 - 2015-07-17 11:42 - 00000000 ____D C:\Users\Yoan2\AppData\Local\OCCT_-_Ocbase_-_Adrien_Me
2015-07-17 11:38 - 2015-07-17 11:38 - 03195602 _____ C:\Users\Yoan2\Downloads\elvui-8.19.zip
2015-07-17 11:38 - 2015-07-17 11:38 - 01803840 _____ C:\Users\Yoan2\Downloads\ElvUI Kkthnx 7.0.3 r8 (1).zip
2015-07-17 11:34 - 2015-07-17 11:34 - 05506635 _____ (Geeks3D ) C:\Users\Yoan2\Downloads\FurMark_1.16.0.0_Setup.exe
2015-07-17 11:20 - 2015-07-17 11:20 - 00000000 ____D C:\Users\Yoan2\Documents\OCCT
2015-07-17 11:16 - 2015-08-08 20:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OCCT
2015-07-17 11:16 - 2015-07-17 11:16 - 00000971 _____ C:\Users\Yoan2\Desktop\OCCT.lnk
2015-07-17 11:16 - 2015-07-17 11:16 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OCCT
2015-07-17 11:16 - 2015-07-17 11:16 - 00000000 ____D C:\Program Files (x86)\OCCTPT
2015-07-17 11:15 - 2015-07-17 11:16 - 06932340 _____ C:\Users\Yoan2\Downloads\OCCTPT4.4.1.exe

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-13 22:36 - 2012-11-25 16:32 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Mumble
2015-08-13 22:35 - 2012-09-03 01:57 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Skype
2015-08-13 22:34 - 2012-03-11 18:34 - 00000904 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2215824855-1170150186-1298706218-1001UA.job
2015-08-13 22:34 - 2012-03-11 18:34 - 00000852 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2215824855-1170150186-1298706218-1001Core.job
2015-08-13 22:30 - 2013-08-14 15:53 - 00000000 ____D C:\Users\Yoan2\AppData\Local\Battle.net
2015-08-13 22:21 - 2015-05-11 16:09 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-08-13 22:14 - 2014-08-20 19:46 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-08-13 21:47 - 2012-01-24 18:11 - 00000898 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-08-13 21:46 - 2012-06-26 13:20 - 00000908 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2215824855-1170150186-1298706218-1005UA.job
2015-08-13 21:46 - 2012-06-26 13:20 - 00000856 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2215824855-1170150186-1298706218-1005Core.job
2015-08-13 21:33 - 2015-07-10 08:22 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-08-13 21:33 - 2014-07-19 15:31 - 00000000 ____D C:\Users\Yoan2\AppData\Local\CrashDumps
2015-08-13 21:32 - 2014-09-19 00:03 - 00001158 _____ C:\Users\Public\Desktop\Auto Clicker by Shocker.lnk
2015-08-13 21:26 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-08-13 21:21 - 2014-02-01 12:15 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-08-13 21:19 - 2013-10-17 15:56 - 00000000 ____D C:\Users\Yoan2\AppData\Local\Overwolf
2015-08-13 21:18 - 2015-07-10 08:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-08-13 21:18 - 2013-05-11 21:24 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Wise Care 365
2015-08-13 21:18 - 2012-01-24 18:49 - 00000008 _____ C:\WINDOWS\mvraidver.dat
2015-08-13 21:18 - 2012-01-24 18:11 - 00000894 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-13 21:17 - 2015-07-10 05:05 - 00131072 ___SH C:\WINDOWS\system32\config\BBI
2015-08-13 21:10 - 2015-01-02 16:54 - 00000000 ____D C:\Program Files (x86)\MediaMall
2015-08-13 20:00 - 2014-02-14 15:24 - 00000000 ____D C:\Users\HomeGroupUser$
2015-08-13 20:00 - 2014-02-14 15:24 - 00000000 ____D C:\Users\Guest
2015-08-13 20:00 - 2014-02-14 15:24 - 00000000 ____D C:\Users\Administrator
2015-08-13 20:00 - 2009-07-13 23:20 - 00000000 ____D C:\Users\Default.migrated
2015-08-13 14:07 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\rescache
2015-08-13 13:42 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-08-13 13:32 - 2015-03-13 22:48 - 01048344 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2015-08-13 09:30 - 2012-04-06 10:36 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2015-08-12 20:40 - 2015-05-10 19:06 - 00000000 ____D C:\Users\Yoan2\AppData\Local\Spotify
2015-08-12 20:40 - 2015-05-10 19:05 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Spotify
2015-08-12 20:27 - 2012-05-27 21:03 - 00281872 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2015-08-12 20:27 - 2012-05-27 21:03 - 00076888 _____ C:\WINDOWS\SysWOW64\PnkBstrA.exe
2015-08-12 20:27 - 2012-04-06 10:29 - 00281872 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2015-08-12 18:34 - 2012-05-22 22:16 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Origin
2015-08-12 18:34 - 2012-04-05 22:27 - 00000000 ____D C:\ProgramData\Origin
2015-08-12 18:33 - 2012-04-12 00:36 - 00000000 ____D C:\Program Files (x86)\Origin
2015-08-12 18:23 - 2013-10-17 15:57 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\TS3Client
2015-08-12 11:08 - 2015-03-13 22:48 - 00004280 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2015-08-12 11:04 - 2015-07-10 08:20 - 00198400 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-08-12 11:04 - 2014-04-30 21:24 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-08-12 11:04 - 2014-04-30 21:24 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-08-12 11:03 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-12 11:03 - 2015-07-10 07:04 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-12 11:03 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-08-12 11:03 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-08-12 11:03 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-08-12 10:52 - 2014-04-30 21:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-08-12 10:51 - 2015-06-02 08:55 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-08-12 10:45 - 2015-06-02 08:55 - 132483416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-08-12 10:44 - 2015-07-10 06:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-08-12 06:21 - 2015-05-11 16:09 - 00003804 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-08-11 13:32 - 2012-09-03 01:56 - 00000000 ____D C:\ProgramData\Skype
2015-08-11 13:14 - 2015-07-12 10:20 - 00001329 _____ C:\Users\Public\Desktop\Razer Cortex.lnk
2015-08-11 12:46 - 2015-07-10 08:20 - 00026866 _____ C:\WINDOWS\setupact.log
2015-08-11 08:23 - 2012-10-04 10:45 - 00000000 ____D C:\Users\Yoan2\AppData\Local\Akamai
2015-08-10 19:49 - 2013-08-14 15:53 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Battle.net
2015-08-10 04:23 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\appcompat
2015-08-09 19:39 - 2015-03-23 17:33 - 00000000 ___RD C:\Users\Yoan2\OneDrive
2015-08-09 19:37 - 2015-07-10 07:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-08-09 19:37 - 2015-07-10 07:04 - 00000000 ___RD C:\WINDOWS\PrintDialog
2015-08-09 19:37 - 2015-07-10 07:04 - 00000000 ___RD C:\WINDOWS\MiracastView
2015-08-09 19:37 - 2015-07-10 07:04 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-08-09 00:40 - 2015-07-10 07:04 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2015-08-09 00:37 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2015-08-09 00:37 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-08-09 00:37 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\Provisioning
2015-08-09 00:37 - 2015-07-10 05:05 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2015-08-09 00:37 - 2015-07-10 05:05 - 00000000 ____D C:\WINDOWS\system32\Dism
2015-08-09 00:30 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2015-08-09 00:30 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2015-08-09 00:30 - 2015-07-10 07:01 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2015-08-09 00:30 - 2015-07-10 07:01 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
2015-08-09 00:30 - 2015-07-10 07:01 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
2015-08-09 00:30 - 2015-07-10 07:01 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2015-08-09 00:30 - 2015-07-10 07:01 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2015-08-09 00:30 - 2015-07-10 07:01 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb
2015-08-09 00:30 - 2015-07-10 07:01 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb
2015-08-09 00:30 - 2015-07-10 07:01 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb
2015-08-09 00:30 - 2015-07-10 07:01 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2015-08-09 00:30 - 2015-07-10 07:01 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb
2015-08-09 00:30 - 2015-07-10 07:01 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2015-08-09 00:30 - 2015-07-10 07:01 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2015-08-09 00:30 - 2015-07-10 07:01 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2015-08-09 00:30 - 2015-07-10 07:01 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2015-08-09 00:30 - 2015-07-10 07:01 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2015-08-09 00:30 - 2015-07-10 07:01 - 00009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof
2015-08-09 00:30 - 2015-07-10 07:00 - 01417728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2015-08-09 00:30 - 2015-07-10 07:00 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2015-08-09 00:30 - 2015-07-10 07:00 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2015-08-09 00:30 - 2015-07-10 07:00 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2015-08-09 00:30 - 2015-07-10 07:00 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2015-08-09 00:30 - 2015-07-10 07:00 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2015-08-09 00:30 - 2015-07-10 07:00 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2015-08-09 00:30 - 2015-07-10 07:00 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2015-08-09 00:30 - 2015-07-10 07:00 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2015-08-09 00:30 - 2015-07-10 07:00 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2015-08-09 00:30 - 2015-07-10 07:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2015-08-09 00:30 - 2015-07-10 07:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2015-08-09 00:30 - 2015-07-10 07:00 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2015-08-09 00:30 - 2015-07-10 07:00 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2015-08-09 00:30 - 2015-07-10 07:00 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2015-08-09 00:30 - 2015-07-10 07:00 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2015-08-09 00:30 - 2015-07-10 07:00 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2015-08-09 00:30 - 2015-07-10 07:00 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2015-08-09 00:30 - 2015-07-10 07:00 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2015-08-09 00:30 - 2015-07-10 07:00 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2015-08-09 00:30 - 2015-07-10 07:00 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2015-08-08 20:55 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\Registration
2015-08-08 20:54 - 2015-07-10 07:04 - 00000000 __RSD C:\WINDOWS\Media
2015-08-08 20:54 - 2015-07-10 07:04 - 00000000 __RHD C:\Users\Public\Libraries
2015-08-08 20:54 - 2015-03-23 17:38 - 00003292 _____ C:\WINDOWS\System32\Tasks\{1C7DD4BA-5505-4F3C-A7F7-7C4299C0EF58}
2015-08-08 20:54 - 2015-03-14 10:40 - 00003420 _____ C:\WINDOWS\System32\Tasks\GlaryInitialize 5
2015-08-08 20:54 - 2015-03-14 10:40 - 00003080 _____ C:\WINDOWS\System32\Tasks\GU5SkipUAC
2015-08-08 20:54 - 2014-12-23 20:30 - 00003996 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-08-08 20:54 - 2014-06-24 09:00 - 00002930 _____ C:\WINDOWS\System32\Tasks\Core Temp Autostart Yoan2
2015-08-08 20:54 - 2014-05-28 14:14 - 00002882 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-08-08 20:54 - 2013-10-01 19:22 - 00003314 _____ C:\WINDOWS\System32\Tasks\{A2932869-229C-4B96-9C15-C859AAA45128}
2015-08-08 20:54 - 2013-08-29 12:38 - 00003220 _____ C:\WINDOWS\System32\Tasks\{7F1A1D3F-B8FE-401E-970B-EACDDBFCDA58}
2015-08-08 20:54 - 2013-03-01 12:14 - 00003456 _____ C:\WINDOWS\System32\Tasks\HP Photo Creations Communicator
2015-08-08 20:54 - 2012-08-05 13:44 - 00003230 _____ C:\WINDOWS\System32\Tasks\{45842536-A1E6-4D1E-AB19-D56A7C75BF37}
2015-08-08 20:54 - 2012-07-23 17:33 - 00003168 _____ C:\WINDOWS\System32\Tasks\{F0DD35AE-11DD-4A62-9097-FCAAC9252BE9}
2015-08-08 20:54 - 2012-06-26 13:20 - 00003988 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2215824855-1170150186-1298706218-1005UA
2015-08-08 20:54 - 2012-06-26 13:20 - 00003592 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2215824855-1170150186-1298706218-1005Core
2015-08-08 20:54 - 2012-01-24 18:11 - 00004004 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-08-08 20:54 - 2012-01-24 18:11 - 00003752 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-08-08 20:50 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\spool
2015-08-08 20:49 - 2015-07-12 13:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2015-08-08 20:49 - 2015-07-10 07:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-08 20:49 - 2015-07-10 05:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-08-08 20:49 - 2015-07-09 14:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SysTools Hard Drive Data Recovery
2015-08-08 20:49 - 2015-07-02 20:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plex Media Server
2015-08-08 20:49 - 2015-05-02 21:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Handbrake
2015-08-08 20:49 - 2015-04-30 11:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YNAB 4
2015-08-08 20:49 - 2015-04-23 15:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft
2015-08-08 20:49 - 2015-04-08 20:12 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Elder Scrolls Online
2015-08-08 20:49 - 2015-03-23 18:00 - 00000000 ____D C:\WINDOWS\en
2015-08-08 20:49 - 2015-03-22 16:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Utilities
2015-08-08 20:49 - 2015-03-22 16:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite
2015-08-08 20:49 - 2015-03-18 21:36 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn Time
2015-08-08 20:49 - 2015-03-16 13:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-08-08 20:49 - 2015-03-14 10:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
2015-08-08 20:49 - 2015-03-13 22:48 - 00000000 ____D C:\WINDOWS\SysWOW64\vbox
2015-08-08 20:49 - 2015-03-13 22:48 - 00000000 ____D C:\WINDOWS\system32\vbox
2015-08-08 20:49 - 2015-02-18 19:23 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MakeMKV
2015-08-08 20:49 - 2015-01-02 16:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PlayOn
2015-08-08 20:49 - 2014-10-06 11:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PingPlotter Pro
2015-08-08 20:49 - 2014-10-06 11:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ipswitch Visual Traceroute
2015-08-08 20:49 - 2014-09-19 00:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auto Clicker by Shocker
2015-08-08 20:49 - 2014-08-20 21:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DOSBox-0.74
2015-08-08 20:49 - 2014-08-20 19:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-08-08 20:49 - 2014-06-24 08:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Core Temp
2015-08-08 20:49 - 2014-06-23 16:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-08-08 20:49 - 2014-06-22 12:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinDirStat
2015-08-08 20:49 - 2014-06-22 11:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2015-08-08 20:49 - 2014-06-15 20:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hi-Rez Studios
2015-08-08 20:49 - 2014-06-09 08:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
2015-08-08 20:49 - 2014-03-22 11:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PalaceChat
2015-08-08 20:49 - 2014-02-17 11:01 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-08-08 20:49 - 2014-01-16 01:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DisplayFusion
2015-08-08 20:49 - 2013-11-30 20:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Port Forwarding
2015-08-08 20:49 - 2013-10-29 18:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-08-08 20:49 - 2013-10-17 15:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2015-08-08 20:49 - 2013-09-19 17:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\My Singing Monsters
2015-08-08 20:49 - 2013-08-22 23:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Echo - Secret of the Lost Cavern
2015-08-08 20:49 - 2013-08-22 22:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Twilight Phenomena - Strange Menagerie Collector's Edition
2015-08-08 20:49 - 2013-05-11 21:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Game Booster
2015-08-08 20:49 - 2013-05-11 21:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Care 365
2015-08-08 20:49 - 2012-12-11 01:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Player Classic - Home Cinema
2015-08-08 20:49 - 2012-12-05 20:59 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2015-08-08 20:49 - 2012-11-17 00:20 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-08-08 20:49 - 2012-10-15 13:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2015-08-08 20:49 - 2012-08-28 11:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft
2015-08-08 20:49 - 2012-08-16 14:05 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2015-08-08 20:49 - 2012-07-23 17:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-08-08 20:49 - 2012-07-18 21:37 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2015-08-08 20:49 - 2012-07-10 11:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Guild Wars 2
2015-08-08 20:49 - 2012-06-22 08:59 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Curse
2015-08-08 20:49 - 2012-06-09 12:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Registry Cleaner
2015-08-08 20:49 - 2012-06-09 11:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-08-08 20:49 - 2012-06-08 14:04 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AIM for Windows
2015-08-08 20:49 - 2012-06-06 22:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Tanks
2015-08-08 20:49 - 2012-05-27 16:35 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-08-08 20:49 - 2012-04-12 00:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2015-08-08 20:49 - 2012-04-08 13:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey
2015-08-08 20:49 - 2012-03-15 18:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Combined Community Codec Pack
2015-08-08 20:49 - 2012-03-15 11:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIM
2015-08-08 20:49 - 2012-03-02 20:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MobMapUpdater
2015-08-08 20:49 - 2012-02-24 18:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2015-08-08 20:49 - 2012-02-15 09:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2015-08-08 20:49 - 2012-01-30 19:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-08-08 20:49 - 2012-01-24 22:44 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2015-08-08 20:49 - 2012-01-24 22:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2015-08-08 20:49 - 2012-01-24 19:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp
2015-08-08 20:49 - 2012-01-24 19:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rainmeter
2015-08-08 20:49 - 2012-01-24 18:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative
2015-08-08 20:49 - 2012-01-24 18:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-08 20:49 - 2012-01-24 18:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Marvell
2015-08-08 20:49 - 2012-01-24 18:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-08-08 20:49 - 2009-07-14 01:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-08-08 20:48 - 2015-07-10 07:05 - 00004362 _____ C:\WINDOWS\DtcInstall.log
2015-08-08 20:46 - 2015-07-10 09:14 - 00000000 ____D C:\WINDOWS\ShellNew
2015-08-08 20:46 - 2015-07-10 07:04 - 00000000 __SHD C:\Program Files\Windows Sidebar
2015-08-08 20:46 - 2015-07-10 07:04 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2015-08-08 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2015-08-08 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2015-08-08 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2015-08-08 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\Recovery
2015-08-08 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-08-08 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\system32\IME
2015-08-08 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\schemas
2015-08-08 20:46 - 2015-07-10 07:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-08-08 20:46 - 2015-05-11 16:19 - 00000000 ____D C:\WINDOWS\SysWOW64\Adobe
2015-08-08 20:46 - 2015-04-15 10:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tukui
2015-08-08 20:46 - 2015-03-14 16:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Western Digital Corporation
2015-08-08 20:46 - 2014-10-13 12:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-08-08 20:46 - 2014-05-02 22:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blizzard Classics
2015-08-08 20:46 - 2013-03-20 03:00 - 00000000 ____D C:\WINDOWS\system32\SPReview
2015-08-08 20:46 - 2013-03-20 03:00 - 00000000 ____D C:\WINDOWS\system32\EventProviders
2015-08-08 20:46 - 2013-02-25 15:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SIX Networks
2015-08-08 20:46 - 2013-01-13 11:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VTech
2015-08-08 20:46 - 2012-12-20 00:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Globalscape
2015-08-08 20:46 - 2012-11-25 16:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mumble
2015-08-08 20:46 - 2012-07-30 23:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2015-08-08 20:46 - 2012-07-24 09:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Six Projects
2015-08-08 20:46 - 2012-07-24 09:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bohemia Interactive
2015-08-08 20:46 - 2012-05-27 19:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GamersFirst
2015-08-08 20:46 - 2012-05-17 21:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ventrilo
2015-08-08 20:46 - 2012-01-27 10:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX
2015-08-08 20:46 - 2012-01-24 20:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2015-08-08 20:46 - 2012-01-24 19:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NEC Electronics
2015-08-08 20:46 - 2012-01-24 18:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2015-08-08 20:46 - 2012-01-24 18:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Renesas Electronics
2015-08-08 20:46 - 2009-07-14 03:44 - 00000000 ___RD C:\Users\Public\Recorded TV
2015-08-08 20:46 - 2009-07-14 01:32 - 00000000 ____D C:\Program Files\Microsoft Games
2015-08-08 20:46 - 2009-07-14 01:32 - 00000000 ____D C:\Program Files\DVD Maker
2015-08-08 20:46 - 2009-07-13 23:20 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2015-08-08 20:45 - 2015-07-11 19:49 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ventrilo
2015-08-08 20:45 - 2012-07-24 09:09 - 00000000 ____D C:\Users\Yoan2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bohemia Interactive
2015-08-08 20:42 - 2015-07-10 07:04 - 00000000 ____D C:\WINDOWS\Help
2015-08-08 20:42 - 2015-07-10 05:05 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-08-08 20:40 - 2015-07-10 05:05 - 00000000 __RHD C:\Users\Default
2015-08-08 20:16 - 2015-05-17 13:09 - 01997241 _____ C:\WINDOWS\WindowsUpdate (1).log
2015-08-08 20:16 - 2009-07-14 00:45 - 00015776 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-08-08 20:16 - 2009-07-14 00:45 - 00015776 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-08-08 20:13 - 2015-07-10 09:39 - 00000000 ___HD C:\$Windows.~BT
2015-08-08 11:38 - 2015-07-10 07:06 - 00794088 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-08-08 11:38 - 2015-07-10 07:06 - 00179688 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-08-05 21:33 - 2015-03-16 13:48 - 00028144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2015-08-05 21:33 - 2015-03-13 22:48 - 00447944 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2015-08-05 21:33 - 2015-03-13 22:48 - 00274808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2015-08-05 21:33 - 2015-03-13 22:48 - 00150672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2015-08-05 21:33 - 2015-03-13 22:48 - 00093528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2015-08-05 21:33 - 2015-03-13 22:48 - 00090968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2015-08-05 21:33 - 2015-03-13 22:48 - 00065224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2015-08-05 21:33 - 2015-03-13 22:48 - 00028656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2015-07-28 09:06 - 2012-11-17 00:24 - 00000000 ___RD C:\Users\Yoan2\Dropbox
2015-07-24 00:21 - 2014-06-18 17:40 - 01756608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2015-07-24 00:21 - 2014-06-18 17:40 - 01316000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2015-07-24 00:21 - 2013-11-14 22:16 - 01710568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2015-07-24 00:21 - 2013-11-14 22:16 - 01423304 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2015-07-19 13:07 - 2012-09-03 01:57 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-07-17 23:15 - 2013-08-30 16:26 - 00000003 _____ C:\WINDOWS\system32\HRUPPROG.TXT
2015-07-17 23:15 - 2013-08-13 14:30 - 00000000 ____D C:\Program Files (x86)\Hi-Rez Studios
2015-07-17 11:00 - 2014-12-17 21:08 - 00000000 __SHD C:\Users\Yoan2\AppData\Local\EmieBrowserModeList
2015-07-17 11:00 - 2014-05-07 12:09 - 00000000 __SHD C:\Users\Yoan2\AppData\Local\EmieUserList
2015-07-17 11:00 - 2014-05-07 12:09 - 00000000 __SHD C:\Users\Yoan2\AppData\Local\EmieSiteList
2015-07-14 22:54 - 2013-06-26 14:24 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk

==================== Files in the root of some directories =======

2014-10-06 11:34 - 2014-10-04 23:34 - 0000044 ____H () C:\Program Files (x86)\356d3804.tmp
2013-04-30 12:37 - 2013-04-30 12:37 - 0226293 _____ () C:\Users\Yoan2\AppData\Local\ars.cache
2013-04-30 12:37 - 2013-04-30 12:37 - 1016809 _____ () C:\Users\Yoan2\AppData\Local\census.cache
2013-09-05 11:30 - 2013-09-05 11:30 - 0003349 _____ () C:\Users\Yoan2\AppData\Local\CleanupUninstall.txt
2013-01-13 11:44 - 2013-01-13 12:12 - 0000579 _____ () C:\Users\Yoan2\AppData\Local\cookies.ini
2012-05-23 21:46 - 2014-03-02 22:17 - 0008192 _____ () C:\Users\Yoan2\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-04-30 12:16 - 2013-04-30 12:16 - 0000036 _____ () C:\Users\Yoan2\AppData\Local\housecall.guid.cache
2014-09-04 14:23 - 2014-09-04 14:24 - 0002053 _____ () C:\ProgramData\1409855032.11852.bin
2013-04-15 06:19 - 2013-04-15 06:19 - 0000000 _____ () C:\ProgramData\as98213.txt
2012-11-24 17:56 - 2012-09-25 17:56 - 0000032 ____R () C:\ProgramData\hash.dat
2012-02-24 18:15 - 2015-04-23 09:10 - 0009935 _____ () C:\ProgramData\hpzinstall.log
2013-04-15 06:19 - 2013-04-15 06:20 - 95023320 ____T () C:\ProgramData\iw44f.pad
2013-04-15 06:19 - 2013-04-15 06:19 - 0000151 _____ () C:\ProgramData\iw44f.reg

Files to move or delete:
====================
C:\ProgramData\hash.dat
C:\ProgramData\iw44f.pad
C:\ProgramData\iw44f.reg


Some files in TEMP:
====================
C:\Users\Yoan2\AppData\Local\Temp\dllnt_dump.dll
C:\Users\Yoan2\AppData\Local\Temp\Quarantine.exe
C:\Users\Yoan2\AppData\Local\Temp\sonarinst.exe
C:\Users\Yoan2\AppData\Local\Temp\sqlite3.dll
C:\Users\Yoan2\AppData\Local\Temp\xuh3mmqs.dll


Some zero byte size files/folders:
==========================
C:\Windows\System32\mv_api.dll
C:\Windows\System32\nvapi.dll
C:\Windows\System32\nvd3dum.dll
C:\Windows\System32\zraidapi.dll

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-08-08 20:40

==================== End of log ============================

 

[Broni]

FRST reports:

ATTENTION: System Restore is disabled

Did you disable system restore for whatever reason?

Download attached fixlist.txt file and save it to the Desktop.
NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

Run FRST(FRST64) and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.

 

[Sparhawk52]

I've had many problems with system restores in the past, the last time I bought a new drive and reinstalled Win 7 I left it off.

 

[Sparhawk52]

Fix result of Farbar Recovery Scan Tool (x64) Version:13-08-2015
Ran by Yoan2 (2015-08-14 21:05:26) Run:1
Running from C:\Users\Yoan2\Downloads
Loaded Profiles: Yoan2 (Available Profiles: Yoan2 & DefaultAppPool)
Boot Mode: Normal
==============================================

fixlist content:
*****************
CreateRestorePoint:
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Yoan2\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll No File
Task: {093364DD-AF57-4508-A17F-B79E8BC3C8FA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {4034FA11-6F38-4ADD-B5CD-66D10D5E0B31} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {4806BEC7-0ED6-4723-A243-3E27D9E280E9} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {54341D27-5942-4F87-AB8C-490D00CB6AF4} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {59CB53E9-9C5D-4B85-92AD-92C51352EBD4} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {5A756C90-5D6D-4766-BBF3-2570D07118E0} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {6E4CE09E-A8BD-4F2B-9B82-5EC5DBC9920F} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {B176823B-B24B-4036-98B2-E6FBDE3456F8} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {B380A902-6B7B-4CF9-8FA3-E372D358C210} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {B58FE319-86C7-4DE7-9304-C6EFA9E88A0D} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {C6CF8F42-6855-459E-AEBE-5735A43A302C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {EF70A885-312A-4F7E-B6DF-255CF5D66978} - \Desk 365 RunAsStdUser -> No File <==== ATTENTION
AlternateDataStreams: C:\ProgramData\TEMP:2CB9631F
AlternateDataStreams: C:\ProgramData\TEMP:3807D082
AlternateDataStreams: C:\ProgramData\TEMP:6E6A4F42
AlternateDataStreams: C:\ProgramData\TEMP:7C27C41C
HKLM-x32\...\Run: [] => [X]
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
BHO: PlayOn -> {9A87E478-A2BD-44C4-9F8C-D3989A5271B1} -> C:\Program Files (x86)\MediaMall\toolbar\pobho64.dll No File
BHO-x32: PlayOn -> {9A87E478-A2BD-44C4-9F8C-D3989A5271B1} -> C:\Program Files (x86)\MediaMall\toolbar\pobho.dll No File
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
Toolbar: HKLM - PlayOn - {9A87E478-A2BD-44C4-9F8C-D3989A5271B1} - C:\Program Files (x86)\MediaMall\toolbar\pobho64.dll No File
Toolbar: HKLM-x32 - PlayOn - {9A87E478-A2BD-44C4-9F8C-D3989A5271B1} - C:\Program Files (x86)\MediaMall\toolbar\pobho.dll No File
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswwebrepchrome-sp.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [lggaaajacmlhgbpldaboipiinndchjgm] - C:\Program Files (x86)\MediaMall\toolbar\ce.crx <not found>
U3 idsvc; no ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; no ImagePath
NETSVCx32: NetSetupSvc -> C:\Windows\SysWOW64\NetSetupSvc.dll ==> No File
NETSVCx32: UserManager -> C:\Windows\SysWOW64\usermgr.dll ==> No File
2014-10-06 11:34 - 2014-10-04 23:34 - 0000044 ____H () C:\Program Files (x86)\356d3804.tmp
2013-04-30 12:37 - 2013-04-30 12:37 - 0226293 _____ () C:\Users\Yoan2\AppData\Local\ars.cache
2013-04-30 12:37 - 2013-04-30 12:37 - 1016809 _____ () C:\Users\Yoan2\AppData\Local\census.cache
2013-09-05 11:30 - 2013-09-05 11:30 - 0003349 _____ () C:\Users\Yoan2\AppData\Local\CleanupUninstall.txt
2013-01-13 11:44 - 2013-01-13 12:12 - 0000579 _____ () C:\Users\Yoan2\AppData\Local\cookies.ini
2012-05-23 21:46 - 2014-03-02 22:17 - 0008192 _____ () C:\Users\Yoan2\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-04-30 12:16 - 2013-04-30 12:16 - 0000036 _____ () C:\Users\Yoan2\AppData\Local\housecall.guid.cache
2014-09-04 14:23 - 2014-09-04 14:24 - 0002053 _____ () C:\ProgramData\1409855032.11852.bin
2013-04-15 06:19 - 2013-04-15 06:19 - 0000000 _____ () C:\ProgramData\as98213.txt
2012-11-24 17:56 - 2012-09-25 17:56 - 0000032 ____R () C:\ProgramData\hash.dat
2012-02-24 18:15 - 2015-04-23 09:10 - 0009935 _____ () C:\ProgramData\hpzinstall.log
2013-04-15 06:19 - 2013-04-15 06:20 - 95023320 ____T () C:\ProgramData\iw44f.pad
2013-04-15 06:19 - 2013-04-15 06:19 - 0000151 _____ () C:\ProgramData\iw44f.reg
C:\ProgramData\hash.dat
C:\ProgramData\iw44f.pad
C:\ProgramData\iw44f.reg
C:\Users\Yoan2\AppData\Local\Temp\dllnt_dump.dll
C:\Users\Yoan2\AppData\Local\Temp\Quarantine.exe
C:\Users\Yoan2\AppData\Local\Temp\sonarinst.exe
C:\Users\Yoan2\AppData\Local\Temp\sqlite3.dll
C:\Users\Yoan2\AppData\Local\Temp\xuh3mmqs.dll
C:\Windows\System32\mv_api.dll
C:\Windows\System32\nvapi.dll
C:\Windows\System32\nvd3dum.dll
C:\Windows\System32\zraidapi.dll

*****************

Error: (0) Failed to create a restore point.
"HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}" => key removed successfully
"HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}" => key removed successfully
"HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}" => key removed successfully
"HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}" => key removed successfully
"HKU\S-1-5-21-2215824855-1170150186-1298706218-1005_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{093364DD-AF57-4508-A17F-B79E8BC3C8FA}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{093364DD-AF57-4508-A17F-B79E8BC3C8FA}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4034FA11-6F38-4ADD-B5CD-66D10D5E0B31}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4034FA11-6F38-4ADD-B5CD-66D10D5E0B31}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4806BEC7-0ED6-4723-A243-3E27D9E280E9}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4806BEC7-0ED6-4723-A243-3E27D9E280E9}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{54341D27-5942-4F87-AB8C-490D00CB6AF4}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{54341D27-5942-4F87-AB8C-490D00CB6AF4}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{59CB53E9-9C5D-4B85-92AD-92C51352EBD4}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{59CB53E9-9C5D-4B85-92AD-92C51352EBD4}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5A756C90-5D6D-4766-BBF3-2570D07118E0}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5A756C90-5D6D-4766-BBF3-2570D07118E0}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6E4CE09E-A8BD-4F2B-9B82-5EC5DBC9920F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6E4CE09E-A8BD-4F2B-9B82-5EC5DBC9920F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B176823B-B24B-4036-98B2-E6FBDE3456F8}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B176823B-B24B-4036-98B2-E6FBDE3456F8}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B380A902-6B7B-4CF9-8FA3-E372D358C210}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B380A902-6B7B-4CF9-8FA3-E372D358C210}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B58FE319-86C7-4DE7-9304-C6EFA9E88A0D}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B58FE319-86C7-4DE7-9304-C6EFA9E88A0D}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C6CF8F42-6855-459E-AEBE-5735A43A302C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C6CF8F42-6855-459E-AEBE-5735A43A302C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EF70A885-312A-4F7E-B6DF-255CF5D66978}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EF70A885-312A-4F7E-B6DF-255CF5D66978}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Desk 365 RunAsStdUser => key not found.
C:\ProgramData\TEMP => ":2CB9631F" ADS removed successfully.
C:\ProgramData\TEMP => ":3807D082" ADS removed successfully.
C:\ProgramData\TEMP => ":6E6A4F42" ADS removed successfully.
C:\ProgramData\TEMP => ":7C27C41C" ADS removed successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SDWinLogon" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9A87E478-A2BD-44C4-9F8C-D3989A5271B1}" => key removed successfully
"HKCR\CLSID\{9A87E478-A2BD-44C4-9F8C-D3989A5271B1}" => key removed successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9A87E478-A2BD-44C4-9F8C-D3989A5271B1}" => key removed successfully
"HKCR\Wow6432Node\CLSID\{9A87E478-A2BD-44C4-9F8C-D3989A5271B1}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => value removed successfully
"HKCR\CLSID\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} => value removed successfully
HKCR\CLSID\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{9A87E478-A2BD-44C4-9F8C-D3989A5271B1} => value removed successfully
HKCR\CLSID\{9A87E478-A2BD-44C4-9F8C-D3989A5271B1} => key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{9A87E478-A2BD-44C4-9F8C-D3989A5271B1} => value removed successfully
HKCR\Wow6432Node\CLSID\{9A87E478-A2BD-44C4-9F8C-D3989A5271B1} => key not found.
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck" => key removed successfully
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\lggaaajacmlhgbpldaboipiinndchjgm" => key removed successfully
idsvc => service removed successfully
wfpcapture => service removed successfully
wpcsvc => service removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs NetSetupSvc => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs UserManager => removed successfully
C:\Program Files (x86)\356d3804.tmp => moved successfully.
C:\Users\Yoan2\AppData\Local\ars.cache => moved successfully.
C:\Users\Yoan2\AppData\Local\census.cache => moved successfully.
C:\Users\Yoan2\AppData\Local\CleanupUninstall.txt => moved successfully.
C:\Users\Yoan2\AppData\Local\cookies.ini => moved successfully.
C:\Users\Yoan2\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully.
C:\Users\Yoan2\AppData\Local\housecall.guid.cache => moved successfully.
C:\ProgramData\1409855032.11852.bin => moved successfully.
C:\ProgramData\as98213.txt => moved successfully.
C:\ProgramData\hash.dat => moved successfully.
C:\ProgramData\hpzinstall.log => moved successfully.
C:\ProgramData\iw44f.pad => moved successfully.
C:\ProgramData\iw44f.reg => moved successfully.
"C:\ProgramData\hash.dat" => File/Folder not found.
"C:\ProgramData\iw44f.pad" => File/Folder not found.
"C:\ProgramData\iw44f.reg" => File/Folder not found.
C:\Users\Yoan2\AppData\Local\Temp\dllnt_dump.dll => moved successfully.
C:\Users\Yoan2\AppData\Local\Temp\Quarantine.exe => moved successfully.
C:\Users\Yoan2\AppData\Local\Temp\sonarinst.exe => moved successfully.
C:\Users\Yoan2\AppData\Local\Temp\sqlite3.dll => moved successfully.
C:\Users\Yoan2\AppData\Local\Temp\xuh3mmqs.dll => moved successfully.
C:\Windows\System32\mv_api.dll => moved successfully.
C:\Windows\System32\nvapi.dll => moved successfully.
C:\Windows\System32\nvd3dum.dll => moved successfully.
C:\Windows\System32\zraidapi.dll => moved successfully.

==== End of Fixlog 21:05:28 ====