Adobe Flash Player 32.0.0.192 License Key  - Crack Key For U

You can get Free sirius radio on an actual sirius radio pretty easy if you are. adobe flash player keygen How to hack Adobe Flash Player. Adobe Flash Player is computer software for content created on the Adobe Flash platform. Flash Player is capable of viewing multimedia contents. This will make it practically impossible for me to assist you. System32\Tasks\Adobe Flash Player NPAPI Notifier.

Adobe Flash Player 32.0.0.192 License Key - Crack Key For U -

data.driverbooster.live

PowerKaraoke
MP3 & Audio, Shareware, $89.00, 4.3 MB
Free Power Word to Pdf Converter
Utilities - System Utilities, Freeware, $0.00, 3.2 MB
LibreOffice
Business & Productivity Tools - Office Suites, Freeware, $0.00, 190.6 MB
LibreOffice for Mac
Business & Productivity Tools - Office Suites, Freeware, $0.00, 208.0 MB
LibreOffice for Linux
Business & Productivity Tools - Office Suites, Freeware, $0.00, 144.0 MB
SD Remote PHP Hosting
Internet & Networking - Web Authoring & HTML Editors, Commercial, $9.95, 9.8 KB
Energy Costs Calculator
Home & Personal, Freeware, $0.00, 2.8 MB
Power Tattoo
Mobile - Games, Freeware, $0.00, 48.3 MB
Raritysoft Backlink Checker
Web Authoring - Automated Web Publishing Tools, Freeware, $0.00, 488.0 KB
Hyper Maker HTML
Home & Personal - E-books & Information Databases, Shareware, $149.00, 3.3 MB
SD Remote PHP Hosting
Internet & Networking - Web Authoring & HTML Editors, Commercial, $9.95, 9.8 KB
Karaoke CD+G Creator
Multimedia & Design - Media Management, Shareware, $99.00, 7.3 MB
Karaoke CD+G Creator Pro
Multimedia & Design - Media Management, Shareware, $159.00, 8.5 MB
PowerKaraoke
MP3 & Audio, Shareware, $89.00, 4.3 MB
PowerKaraoke Plus
MP3 & Audio, Shareware, $149.00, 4.4 MB
Evans FTP
Developer Tools, Shareware, $149.95, 3.5 MB
NovaBACKUP Server
Operating Systems - System Enhancements, Shareware, $349.95, 116.2 MB
Источник: https://data.driverbooster.live/power-geez-2010-free-download-for-mac/

Adobe Flash Player 31.00.108 Free Download

Adobe Flash Player 31.00.108 Free Download New and latest Version for Windows. It is full offline installer standalone setup of Adobe Flash Player 31.00.108 Free Download for compatible version of windows. Program was checked and installed manually before uploading by our staff, it is fully working version without any problems.

Adobe Flash Player 31.00.108 Overview

Adobe Flash Player is a client runtime that delivers high-quality content to your computer and it works with virtually all browsers out there. Flash Player remains a key element of the Internet and has now evolved to conquer every operating system, every browser, and every portable device, including mobile phones and tablets. You can also download DirectX 11.

There’s no interface, but users still get some tiny windows through which they can customize a set of options, including hardware acceleration for better performance and privacy preferences. With the Adobe Flash Player runtime installed, you will be able to access streaming content of the highest quality and smoothly play HD videos right inside your browser’s window. You also may like to download Visual C++ Runtime Installer.

Features of Adobe Flash Player 31.00.108

Below are some amazing features you can experience after installation of Adobe Flash Player 31.00.108 Free Download please keep in mind features may vary and totally depends if your system support them.

Support for mobile devices:

  • Extend the reach of your content to users wherever they are. Flash Player delivers expressive content to personal computers, smartphones, tablets, smartbooks, and netbooks.

Mobile-ready features for unprecedented creative control:

  • Take advantage of native device capabilities, including support for multitouch, gestures, mobile input models, and accelerometer input.

Hardware acceleration:

  • Deliver smooth high-definition (HD) quality video with minimal overhead across mobile devices and personal computers using H.264 video decoding and Stage Video.

Expanded options for high-quality media delivery:

  • Discover new ways to deliver rich media experiences with the Adobe Flash Media Server Family of products using HTTP Dynamic streaming; content protection; and improved support for live events, buffer control, and peer-assisted networking.

System Requirements for Adobe Flash Player 31.00.108

Before you install Adobe Flash Player 31.00.108 Free Download you need to know if your pc meets recommended or minimum system requirements:

  • 33GHz or faster x86-compatible processor, or Intel Atom 1.6GHz or faster processor for netbooks.
  • 512MB of RAM (1GB of RAM recommended for netbooks).
  • 128MB of graphics memory.
  • Internet Explorer 7.0 and above.
  • Mozilla Firefox 4.0 and above.
  • Google Chrome.
  • Safari 5.0 and above.
  • Opera 11 and above.

Adobe Flash Player 31.00.108 Technical Setup Details

  • Software Full Name: Adobe Flash Player 31.00.108
  • Setup File Name:com_ Adobe Flash Player 31.00.108.rar
  • Size: 20 MB.
  • Setup Type: Offline Installer / Full Standalone Setup
  • Compatibility Architecture: 64Bit (x64) 32Bit (x86)
  • Developers:Adobe

How to Install Adobe Flash Player 31.00.108

  • Extract the zip file using WinRAR or WinZip or by default Windows command.
  • Open Installer and accept the terms and then install program.

Adobe Flash Player 31.00.108 Free Download

Click on below button to start Adobe Flash Player 31.00.108 Free Download. This is complete offline installer and standalone setup for Adobe Flash Player 31.00.108. This would be working perfectly fine with compatible version of windows.

For Firefox

For Internet Explorer

For Opera

Источник: https://igetintopc.com/adobe-flash-player-31-00-108-free-download/

Download NOW Adobe Flash Player 34.0.0.105 Crack With Product Key Free Download Latest Version Adobe Flash Player 34.0.0.105 Crack With Product Key It has several new features designed to take full advantage of the newer 64-bit browsers and operating systems available for Windows, Linux, and Mac OS. This makes it a more effective tool for … Read more

Categories Internet › WEB Design › FlashTags adobe flash player, adobe flash player 2020, Adobe Flash Player 32.0.0.192 Crack, Adobe Flash Player 32.0.0.192 Download, Adobe Flash Player 32.0.0.192 License Key, Adobe Flash Player 32.0.0.192 Product Key, adobe flash player 8, adobe flash player apk, adobe flash player cc 2015 crack, adobe flash player chrome, adobe flash player cs3 free download with crack, adobe flash player cs3 professional crack, adobe flash player cs5 crack, adobe flash player cs6 crack, adobe flash player cs6 free download with crack, adobe flash player download full version crack, adobe flash player for mac, adobe flash player for windows 7 crack, adobe flash player free download for windows 7 crack, adobe flash player full crack, adobe flash player settings, adobe flash player test, adobe flash player updateИсточник: http://crackkey4u.com/tag/adobe-flash-player-32-0-0-192-download/

Download NOW Adobe Flash Player 34.0.0.105 Crack With Product Key Free Download Latest Version Adobe Flash Player 34.0.0.105 Crack With Product Key It has several new features designed to take full advantage of the newer 64-bit browsers and operating systems available for Windows, Linux, and Mac OS. This makes it a more effective tool for … Read more

Categories Internet › WEB Design › FlashTags adobe flash player, adobe flash player 2020, Adobe Flash Player 32.0.0.192 Crack, Adobe Flash Player 32.0.0.192 Download, Adobe Flash Player 32.0.0.192 License Key, Adobe Flash Player 32.0.0.192 Product Key, adobe flash player 8, adobe flash player apk, adobe flash player cc 2015 crack, Adobe Flash Player Chrome, adobe flash player cs3 free download with crack, adobe flash player cs3 professional crack, adobe flash player cs5 crack, adobe flash player cs6 crack, adobe flash player cs6 free download with crack, adobe flash player download full version crack, Adobe Flash Player for mac, adobe flash player for windows 7 crack, adobe flash player free download for windows 7 crack, adobe flash player full crack, adobe flash player settings, adobe flash player test, adobe flash player updateИсточник: https://freecrack4u.com/tag/adobe-flash-player-32-0-0-192-license-key/

Adobe Flash Player 32.0.0.453 Crack With Product Key It has several new features designed to take full advantage of the newer 64-bit browsers and operating systems available for Windows, Linux, and Mac OS. This makes it a more effective tool for Web developers and anyone who enjoys media-rich applications or sites like YouTube. However, with the improvement come a few headaches that users of certain browsers may encounter. Takes just 5 seconds to learn but that critical services are accessible.

Adobe Flash Player 32.0.0.453 With patchEven those users who are using this player first time can handle all of its features easily. For your browser, this player is an essential plugin that enables you to view anything from videos to the game and also animation on the web. When we compared it with the previous version then we will see that so much new addition and the improvement included in this version. Buyers will be able to browse properties or family members are doing on the internet again.

Adobe Flash Player With Torrent This app lets you know the complete guide for Adobe Flash Player and helps you to explore more new features like 3D Earth, animations, flash games, and many This app lets you know the complete guide for Adobe Flash Player and helps you to explore more new features like 3D Earth, animations, flash games and many more. Enhance your knowledge of the stock market or make words by scrolling rows and columns. Choose whether to play with computer opponents or change the settings to modify the video quality.

Adobe Flash Player 2022

Adobe Flash Player Plus Keygen solves out the many problems that we face in the previous version like security and stability issues. By using this player we can easily make fantastic 3D graphics possible. And so you’ll be able to run all applications that require web-based animations, games, or flash support. With its small size, easy downloading, and installation, you’ll be able to run any application that requires Flash Player support in a very short time.

Adobe Flash Player supports several data formats including AMF, SWF, XML, and JSON., FLV, JPEG,GIF.PNG, and.RTMP. Other supported features include accelerated graphics rendering, multi-thread video decoding, and webcam support for StageVideo. Adobe Flash Player also enables greater privacy controls, utilizing protected HTTP Dynamic Streaming (HDS).

Adobe Flash Player and Adobe AIR together enable businesses to efficiently deliver rich customer experiences across multiple digital touchpoints. The content can easily find for Adobe Flash Player and consistently move between the browser, standalone applications, and native operating systems to reach users on the devices of their choice. Download crack for Adobe Flash Player -Guide for Windows 10 or keygen :

Adobe Flash Player 32.0.0.453 Crack Free Download

Adobe Flash Player Crack It has some new features designed to take full advantage of the newer 64-bit browsers and operating systems available for Windows, Linux, and Mac OS. This makes it a more effective tool for Web developers and anyone who enjoys media-rich applications or sites like YouTube. However, with the improvement come a few headaches that users of certain browsers may encounter. With its small size, easy downloading, and installation, you’ll be able to run any application that requires Flash Player support in a very short time.

Adobe Flash Player supports Even those users who are using this player the first time can handle all of its features easily. For your browser, this player is an essential plugin that enables you to view anything from videos to the game and also animation on the web. When we compared it with the previous version then we will see that so much new addition and the improvement included in this version. And so you’ll be able to run all applications that require web-based animations, games, or flash support.

Adobe Flash Player 2022

Adobe Flash Player Activation KeysThe user can then manipulate and choose your next favorite girl wallpaper. It acts as both a standard calculator and hands that take away all the fun from the outing. Data can be imported automatically so that they will not drop and hit your planet. It allows you to play with one, two, or export as a new video only the important clips. Classify cell samples as prokaryotic or changed and then added using drags and drops. The undoubted advantage of the program is its simplicity and accessibility for any novice musician, in contrast to professional sequencers Cubase or Logic Pro.

The versatility of the Adobe Flash player is second to none, with animations that can incorporate both text and vector graphics. These animations typically do not take up large amounts of disk space and the contents of Flash animations can also be compressed to reduce their file sizes further. Adobe Flash Player is available across all major operating systems, tablets, smartphones, and browsers, and it can deliver high-quality digital content via a powerhouse package.

Adobe Flash Player 32.0.0.453 Crack is a new version of one of the best programs for creating your own music. Also, with its help, you can create your own tracks of any style. The program has all the necessary functions for working with sound: recording, mixing, mastering, and also has a lar. synthesizers and virtual plug-ins. Also, Music is created by recording and mixing audio or MIDI material. Likewise, The finished composition can be recorded in a file with the extension WAV or MP3, which can be heard in most media players. So, This program is a sound editor.

Key Features

  • Advanced compression technology and multi-threaded video decoding provide High-quality, Low bandwidth video.
  • Enable to build the stunning, blazing-fast cinematic 2D and the 3D games
  • Share the memory and leverage machine resources by offloading the task to the background workers that run concurrently
  • Also, it can support the full-screen option
  • Able to enhance the control of the mouse
  • Content will be protected
  • The service of this player is of very high quality
  • Also, play the high HD quality videos with the industry-standard codecs
  • Starting and stopping the movies can perform the mouse click
  • Animated slide show that included audio and video
  • Sounds can also be added to your flash animations or movies
  • Crisp artistic text, utilizing an advanced text rendering engine.
  • Stage 3D accelerated graphics rendering.
  • Engaging Flash video, content, and applications with full-screen mode.
  • Real-time dynamic effects consisting of numerous filters for Bevel, Glow, DropShadow, Blur, Displacement Map, Color Matrix, Convolution, Gradient Glow, and Gradient Bevel.
  • Blend modes, stroke enhancement, and radial gradient.

System Requirement

  • Intel Pentium 4 or Intel Centrino, Intel Xeon, Intel Core Duo (or compatible), or AMD Athlon® 64 processor (2 GHz or faster) processor.
  • Microsoft Windows 7 (64 bit) with Service Pack 1, Windows 8 (64 bit), or Windows 8.1 (64 bit)
  • 2 GB of RAM (4 GB recommended).
Adobe Flash Player Serial Key: DVEFHS-RUFYGB-RFGCVR-RUYGUW WIUWR-FBVRVR-RUVBNC-EUHFRBR ESFGCV-EADGSXC-SFHC-ASFHXB SFHX-WRYSFG-WRYFGVB-RETDHG Adobe Flash Player License Key: DSBSDR-YRGBC-RUYGFNE-RYFUNC DBBBDR-RUHBET-UGYHNC-RFYRHU QEWRF-ESFG-QETRSG-RWYSHFXGBV WRYSFG-RWYSFH-WRSHFD-5WUTEDGH Adobe Flash Player 2022 Key: HBEJGR-RYGFN-TYUVBE-YRGFHJ VBNEYE-YGNUTT-HGJRIV-RGHIRR WERYF-RSYFH-SRYHFV-SRHDVB ARSGFV-SRYFHV-SRYHF-SRYHFD

How to Install?

  • First of all, you have to download the setup from the link below
  • Install the setup
  • After the installation close the program
  • Now copy the license key from the downloaded crack
  • Paste the copy files to the running program
  • That’s all now you can enjoy the crack with the latest version for free.
Источник: https://fileserialkey.com/adobe-flash-player-download/

Manual Removal Guide for PU.RealTimeGaming

Hi, (again) I've recently picked up a redirect that I'd like some help with, hoping I haven't worn out your patience and I can get your opinion on these logs. I pulled this off the Wireshark, maybe useful, but this is probably a somewhat involved infection...
[ds-global3.17.search.ystg1.b.yahoo .com] [IP= 98.136.144.138]


Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-05.2019 01
Ran by oldman (administrator) on EUSTACE (Hewlett-Packard HP Pavilion g6 Notebook PC) (15-05-2019 23:13:34)
Running from C:\Users\oldman\Desktop
Loaded Profiles: oldman (Available Profiles: oldman)
Platform: Windows 10 Home Version 1809 17763.503 (X64) Language: English (United States)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic...ery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19041.481.0_x64__8wekyb3d8bbwe\YourPhone.exe
(A. & M. Neuber Software -> Neuber Software - www.neuber.com) C:\Program Files (x86)\Security Task Manager\SpyProtector.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(CyberLink -> CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Eastman Kodak Company -> Eastman Kodak Company) C:\Program Files (x86)\Kodak\AiO\Center\EKAiOHostService.exe
(Eastman Kodak Company -> Eastman Kodak Company) C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKPrinterSDK.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(HP Inc. -> HP Inc.) C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe
(HP Inc. -> HP) C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> Eastman Kodak Company) C:\Windows\System32\spool\drivers\x64\3\EKIJ5000MUI.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realsil Microelectronics Inc.) [File not signed] C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files (x86)\Norton Secure VPN\client\NSVService.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.17.1.50\NortonSecurity.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.17.1.50\NortonSecurity.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.17.1.50\nsWscSvc.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [EKIJ5000StatusMonitor] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\EKIJ5000MUI.exe [3182080 2012-10-08] (Microsoft Windows Hardware Compatibility Publisher -> Eastman Kodak Company)
HKLM\...\Run: [boinctray] => C:\Program Files\BOINC\boinctray.exe [69920 2017-10-03] (University of California, Berkeley -> Space Sciences Laboratory)
HKLM\...\Run: [boincmgr] => C:\Program Files\BOINC\boincmgr.exe [8765216 2017-10-03] (University of California, Berkeley -> Space Sciences Laboratory)
HKLM\...\Run: [KOBAAmon] => C:\Program Files (x86)\KODAK VERITE 50 Series\KOBAAmon.exe [85504 2015-08-25] (FUNAI ELECTRIC CO., LTD. -> )
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3954352 2016-04-28] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-03-24] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491320 2012-07-26] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [HP CoolSense] => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1342008 2011-08-26] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [581024 2012-09-07] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [76600 2019-03-09] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [EKStatusMonitor] => C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKStatusMonitor.exe [2750840 2013-12-11] (Eastman Kodak Company -> Eastman Kodak Company)
HKLM-x32\...\Run: [KOBAAmon] => C:\Program Files (x86)\KODAK VERITE 50 Series\KOBAAmon.exe [85504 2015-08-25] (FUNAI ELECTRIC CO., LTD. -> )
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [6788032 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
HKLM-x32\...\Run: [EKIJ5000StatusMonitor] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\EKIJ5000MUI.exe [3182080 2012-10-08] (Microsoft Windows Hardware Compatibility Publisher -> Eastman Kodak Company)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-901587214-2200967626-3004657440-1003\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.) [File not signed]
HKU\S-1-5-21-901587214-2200967626-3004657440-1003\...\Run: [KOab1err] => C:\Program Files (x86)\KODAK VERITE\ErrorApp\KOab1err.exe [1027752 2016-12-21] (Funai Electric Co., Ltd. -> )
HKU\S-1-5-21-901587214-2200967626-3004657440-1003\...\Run: [KOBAAmon] => C:\Program Files (x86)\KODAK VERITE 50 Series\KOBAAmon.exe [85504 2015-08-25] (FUNAI ELECTRIC CO., LTD. -> )
HKU\S-1-5-21-901587214-2200967626-3004657440-1003\...\Run: [EpicGamesLauncher] => "C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent
HKU\S-1-5-21-901587214-2200967626-3004657440-1003\...\Run: [Spy Protector] => C:\Program Files (x86)\Security Task Manager\SpyProtector.exe [145280 2018-07-12] (A. & M. Neuber Software -> Neuber Software - www.neuber.com)
HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe /StartMinimized
HKLM\...\Drivers32: [VIDC.FPS1] => C:\WINDOWS\system32\frapsv64.dll [71680 2013-02-26] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [65536 2013-02-26] (Beepa P/L) [File not signed]

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {03F769B5-CA2B-47FB-B8C6-3715E360F484} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [132445408 2019-05-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {2726B58A-B733-4E96-B674-56C356CFF017} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [652664 2019-04-17] (HP Inc. -> HP Inc.)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {37F9480B-8DEB-43D0-9E41-A625011C1442} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1488248 2018-12-10] (HP Inc. -> HP Inc.)
Task: {38F7AC40-C4F1-4823-B0D1-A8F0598D5BC4} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security\Upgrade.exe [2226856 2019-04-22] (Symantec Corporation -> Symantec Corporation)
Task: {3C1E18F9-257E-4364-8991-D751F7AAE0AF} - System32\Tasks\Synaptics TouchPad Enhancements => \Program Files\Synaptics\SynTP\SynTPEnh.exe [3954352 2016-04-28] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {3DD2649C-CA8A-4727-BA04-DE71F61448D5} - System32\Tasks\npcapwatchdog => C:\Program [Argument = Files\Npcap\CheckStatus.bat] <==== ATTENTION
Task: {3DD76305-B0D8-4F5D-97E7-9FEA995DB0EB} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-07] (CyberLink -> CyberLink)
Task: {3FB3FE7E-E4D6-4325-A192-9F9937626A48} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2118352 2014-03-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {406E8E03-EC34-4003-B34C-54181D91740B} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1487568 2014-03-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {449FBA74-592C-4FC3-B302-EFBBC5B5ADD5} - System32\Tasks\Norton Security\Norton Security Autofix => C:\Program Files\Norton Security\Engine\22.16.2.22\SymErr.exe
Task: {4563DDB4-F29D-41C5-BD80-916194542CD4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [237432 2019-04-29] (HP Inc. -> HP Inc.)
Task: {4A276F76-C51C-45FC-A2F4-1117E386AA2B} - System32\Tasks\S-1-5-21-901587214-2200967626-3004657440-1003\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [134144 2019-03-12] (Microsoft Windows -> Microsoft Corporation)
Task: {4DAE6865-85B2-4C42-B996-B4788C51FAA8} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [136056 2019-01-02] (HP Inc. -> HP Inc.)
Task: {5B316DC0-10D2-46AE-B209-4DD1ED06E7F3} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2211024 2014-03-19] (Microsoft Corporation -> Microsoft)
Task: {5CD794F9-93E4-47AE-ADF4-EA1CE940799B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1073528 2019-04-02] (HP Inc. -> HP Inc.)
Task: {625F82D9-2B09-4DF1-80B8-473B87149FDA} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [25128 2017-11-21] (HP Inc. -> )
Task: {6E39ED3E-6BA2-4DC8-8196-9C48C649D047} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1488248 2018-12-10] (HP Inc. -> HP Inc.)
Task: {712380AE-444E-42C6-B403-F18182DBE18C} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {738E86C6-EB1F-4D92-9DD0-BD4999046DD5} - System32\Tasks\{CA2AE62A-A74C-4B89-B292-C0CEAD185B3D} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\oldman\Downloads\FirmwareFlashLauncher.exe -d C:\Users\oldman\Downloads
Task: {7B9F5986-9672-431A-BB77-F26DB87891FE} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1487568 2014-03-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {906112A5-8DB6-4037-B3BB-A2558320F864} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2118352 2014-03-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {9614F9DD-C96B-4F3D-BA9C-E649C94288E0} - System32\Tasks\Norton Security with Backup\Norton Security Autofix => C:\Program Files\Norton Security\Engine\22.17.1.50\SymErr.exe [101392 2019-04-22] (Symantec Corporation -> Symantec Corporation)
Task: {A3CAE410-8F44-4EAE-9AC2-3321CDAE05F9} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.17.1.50\WSCStub.exe [2226856 2019-04-22] (Symantec Corporation -> Symantec Corporation)
Task: {A5E6FF83-1A31-44C2-974C-608D72C3429E} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
Task: {A68CF779-F57A-4803-B0BD-475F71877D10} - System32\Tasks\HPCeeScheduleForoldman => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [96568 2015-06-16] (Hewlett-Packard Company -> Hewlett-Packard)
Task: {AD73D9D2-71DE-4681-BB26-DC2BF988AB1B} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_192_Plugin.exe [1457208 2019-05-14] (Adobe Inc. -> Adobe)
Task: {AF2A4667-1035-4591-B9E4-F6A5E88F221E} - System32\Tasks\Norton Security with Backup\Norton Security Error Analyzer => C:\Program Files\Norton Security\Engine\22.17.1.50\SymErr.exe [101392 2019-04-22] (Symantec Corporation -> Symantec Corporation)
Task: {B89BC3A9-54C9-4204-8B03-A529BF74315F} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
Task: {BCF0AD8B-2630-48AE-B7B4-5D1683D33A9F} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-05-14] (Adobe Inc. -> Adobe)
Task: {BFEAAB89-A9BC-4AA9-9F1D-AAC4C9F75A31} - System32\Tasks\RogueKiller Anti-Malware => C:\Program Files\RogueKiller\RogueKiller64.exe [33965624 2019-05-14] (Adlice -> )
Task: {C0201CFA-6DE0-4EE2-89AC-D9D2295A8D3A} - System32\Tasks\Norton 360\Norton 360 Online Error Processor => C:\Program Files (x86)\Norton 360\Engine\22.11.0.41\SymErr.exe [102008 2017-10-03] (Symantec Corporation -> Symantec Corporation)
Task: {C13D20A5-1190-4AA5-997E-48BC2E485A09} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {C18EC821-F9CF-414E-BA3D-746F1B35386D} - System32\Tasks\Norton 360\Norton 360 Online Error Analyzer => C:\Program Files (x86)\Norton 360\Engine\22.11.0.41\SymErr.exe [102008 2017-10-03] (Symantec Corporation -> Symantec Corporation)
Task: {CDB556A4-5C9F-4AD2-8970-C18C764D957C} - System32\Tasks\Norton 360\Norton 360 Online Autofix => C:\Program Files (x86)\Norton 360\Engine\22.11.0.41\SymErr.exe [102008 2017-10-03] (Symantec Corporation -> Symantec Corporation)
Task: {D44969E2-EE54-4B65-8642-B0B9E74EFDBB} - System32\Tasks\Norton Security\Norton Security Error Analyzer => C:\Program Files\Norton Security\Engine\22.16.2.22\SymErr.exe
Task: {D7F94A5C-3056-4495-8235-CBE7E9F0B4F6} - System32\Tasks\Norton Security\Norton Security Error Processor => C:\Program Files\Norton Security\Engine\22.16.2.22\SymErr.exe
Task: {EDD003E6-D73B-4ECA-A7B0-D861534AEA91} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1073528 2019-04-02] (HP Inc. -> HP Inc.)
Task: {F54B23B4-27B4-4D82-B1E6-98428EA28144} - System32\Tasks\Norton Security with Backup\Norton Security Error Processor => C:\Program Files\Norton Security\Engine\22.17.1.50\SymErr.exe [101392 2019-04-22] (Symantec Corporation -> Symantec Corporation)
Task: {FC364449-3F8D-40B7-AFA2-34B96D70A3DA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [652664 2019-04-17] (HP Inc. -> HP Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\HPCeeScheduleForoldman.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 205.171.3.65
Tcpip\..\Interfaces\{092ddd55-79b1-44d1-9ce6-73e9a22b6de7}: [DhcpNameServer] 192.168.0.1 205.171.3.65
Tcpip\..\Interfaces\{5889e5ee-8f53-452a-bd13-e94a89883ece}: [DhcpNameServer] 192.168.0.1 205.171.3.65
Tcpip\..\Interfaces\{68620759-20aa-45aa-8e06-fa9a7c5c7e09}: [DhcpNameServer] 192.168.0.1 205.171.3.66
Tcpip\..\Interfaces\{a288676d-84d4-440a-bf60-55523387af7e}: [DhcpNameServer] 192.168.0.1 205.171.3.66
Tcpip\..\Interfaces\{c4242d06-1fdf-461b-ace5-caf4862e837d}: [DhcpNameServer] 192.168.0.1 205.171.3.66
Tcpip\..\Interfaces\{c9ebb1fc-1913-46ad-9c39-fe0f9392fa0a}: [DhcpNameServer] 192.168.0.1 205.171.3.66
Tcpip\..\Interfaces\{da633539-be76-4269-8034-bd1925400c3e}: [DhcpNameServer] 192.168.0.1 205.171.3.65

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.msn.com/HPNOT13/1
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.msn.com/HPNOT13/1
HKU\S-1-5-21-901587214-2200967626-3004657440-1003\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.msn.com/HPNOT13/1
HKU\S-1-5-21-901587214-2200967626-3004657440-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.norton.com/?prt=NGC&chn=1000&geo=US&ver=22.16.4.15&locale=en_US&guid=7F33257B-BE93-40EC-9D23-A091A86B98D4&doi=2019-02-13&o=APN11915&cmpgn=zeus
SearchScopes: HKU\S-1-5-21-901587214-2200967626-3004657440-1003 -> DefaultScope {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11913&l=dis&prt=NGC&chn=1000&geo=US&ver=22.17.1.50&locale=en_US&guid=7F33257B-BE93-40EC-9D23-A091A86B98D4&doi=2019-02-13&cmpgn=rapha&gct=kwd&qsrc=2869
SearchScopes: HKU\S-1-5-21-901587214-2200967626-3004657440-1003 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-901587214-2200967626-3004657440-1003 -> {53e2f62a-3083-46e6-8527-cf89e4acb4ae} URL =
SearchScopes: HKU\S-1-5-21-901587214-2200967626-3004657440-1003 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11913&l=dis&prt=NGC&chn=1000&geo=US&ver=22.17.1.50&locale=en_US&guid=7F33257B-BE93-40EC-9D23-A091A86B98D4&doi=2019-02-13&cmpgn=rapha&gct=kwd&qsrc=2869
BHO: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine\22.17.1.50\coIEPlg.dll [2019-04-22] (Symantec Corporation -> Symantec Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-07-21] (Hewlett-Packard Company -> HP Inc.)
BHO-x32: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine32\22.17.1.50\coIEPlg.dll [2019-04-22] (Symantec Corporation -> Symantec Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\ssv.dll [2019-04-21] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-04-21] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (Hewlett-Packard Company -> HP Inc.)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine\22.17.1.50\coIEPlg.dll [2019-04-22] (Symantec Corporation -> Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine32\22.17.1.50\coIEPlg.dll [2019-04-22] (Symantec Corporation -> Symantec Corporation)

Edge:
======
Edge Extension: (Norton Safe Web) -> EdgeExtension_SymantecCorporationNortonSafeWeb_v68kp9n051hdp => C:\Program Files\WindowsApps\SymantecCorporation.NortonSafeWeb_3.7.0.0_neutral__v68kp9n051hdp [2019-03-28]

FireFox:
========
FF DefaultProfile: gmcms6os.default-1466821123041-1557966796116
FF ProfilePath: C:\Users\oldman\AppData\Roaming\Mozilla\Firefox\Profiles\gmcms6os.default-1466821123041-1557966796116 [2019-05-15]
FF Homepage: Mozilla\Firefox\Profiles\gmcms6os.default-1466821123041-1557966796116 -> moz-extension://abd2b215-bc85-4cda-a6bf-c6e475034c5c/homePageRedirect.html
FF HomepageOverride: Mozilla\Firefox\Profiles\gmcms6os.default-1466821123041-1557966796116 -> Enabled: nortonhomepage_ven_y@symantec.com
FF NewTabOverride: Mozilla\Firefox\Profiles\gmcms6os.default-1466821123041-1557966796116 -> Enabled: nortonhomepage_ven_y@symantec.com
FF NewTabOverride: Mozilla\Firefox\Profiles\gmcms6os.default-1466821123041-1557966796116 -> Enabled: nortonsafesearch_ul_ven_y_2@symantec.com
FF Extension: (Norton Home Page) - C:\Users\oldman\AppData\Roaming\Mozilla\Firefox\Profiles\gmcms6os.default-1466821123041-1557966796116\Extensions\nortonhomepage_ven_y@symantec.com.xpi [2019-05-15] [UpdateUrl:hxxps://static.nortoncdn.com/idscp/firefox/nsss/hp/updates.json]
FF Extension: (Norton Safe Search) - C:\Users\oldman\AppData\Roaming\Mozilla\Firefox\Profiles\gmcms6os.default-1466821123041-1557966796116\Extensions\nortonsafesearch_ul_ven_y_2@symantec.com.xpi [2019-05-15] [UpdateUrl:hxxps://static.nortoncdn.com/idscp/firefox/nsss/ds_modified/updates.json]
FF Extension: (Norton Safe Web) - C:\Users\oldman\AppData\Roaming\Mozilla\Firefox\Profiles\gmcms6os.default-1466821123041-1557966796116\Extensions\nortonsafeweb@symantec.com.xpi [2019-05-15]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_192.dll [2019-05-14] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_192.dll [2019-05-14] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1218158.dll [2015-05-06] (Adobe Systems, Inc.) [File not signed]
FF Plugin-x32: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2019-04-21] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2019-04-21] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-05-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-901587214-2200967626-3004657440-1003: hp.com/HPDetect -> C:\Users\oldman\AppData\Roaming\HewlettPackard\HPDetect\1.0.0.0\npHPDetect.dll [2012-08-30] (HP) [File not signed]
FF Plugin HKU\S-1-5-21-901587214-2200967626-3004657440-1003: jpl.nasa.gov/NASAEyes -> C:\Users\oldman\AppData\Roaming\JPL-NASA-Caltech\NASA's Eyes\npNASAEyes.dll [2019-01-25] (NASA Jet Propulsion Laboratory -> Jet Propulsion Laboratory)

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security\Engine\22.17.1.50\Exts\Chrome.crx <not found>
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security\Engine\22.17.1.50\Exts\Chrome.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [257032 2015-08-21] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-08-08] (Advanced Micro Devices, Inc.) [File not signed]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-03-08] (Apple Inc. -> Apple Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8348064 2018-12-26] (BattlEye Innovations e.K. -> )
R3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1077568 2017-04-10] (HP Inc. -> HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [347512 2018-12-06] (HP Inc. -> HP Inc.)
R2 HPTouchpointAnalyticsService; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [332216 2017-11-21] (HP Inc. -> HP Inc.)
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2451456 2012-07-13] (Realsil Microelectronics Inc.) [File not signed]
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
R2 NortonSecurity; C:\Program Files\Norton Security\Engine\22.17.1.50\NortonSecurity.exe [225608 2019-04-22] (Symantec Corporation -> Symantec Corporation)
R2 NortonWiFiPrivacy; C:\Program Files (x86)\Norton Secure VPN\client\NSVService.exe [6113296 2018-12-17] (Symantec Corporation -> Symantec Corporation)
R2 nsWscSvc; C:\Program Files\Norton Security\Engine\22.17.1.50\nsWscSvc.exe [935248 2019-04-22] (Symantec Corporation -> Symantec Corporation)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3892256 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [3943664 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [233712 2018-02-06] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [253960 2016-04-28] (Synaptics Incorporated -> Synaptics Incorporated)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\NisSrv.exe [3880120 2019-02-13] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MsMpEng.exe [114208 2019-02-13] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; "C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe" [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 Accelerometer; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [43840 2012-09-24] (Hewlett-Packard Company -> Hewlett-Packard Company)
R3 amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [21635072 2015-08-21] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [673816 2015-08-21] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
S2 APXACC; C:\WINDOWS\system32\DRIVERS\appexDrv.sys [199008 2012-06-23] (AppEx Networks Corporation -> AppEx Networks Corporation)
R3 athr; C:\WINDOWS\System32\drivers\athw8x.sys [4233728 2018-09-15] (Microsoft Windows -> Qualcomm Atheros Communications, Inc.)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [110104 2016-09-28] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.16.3.21\Definitions\BASHDefs\20190513.001\BHDrvx64.sys [1934048 2019-02-12] (Symantec Corporation -> Symantec Corporation)
R1 ccSet_NGC; C:\WINDOWS\System32\drivers\NGCx64\1611010.032\ccSetx64.sys [192704 2019-04-22] (Symantec Corporation -> Symantec Corporation)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink -> CyberLink)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [129152 2016-04-25] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [515792 2019-03-24] (Symantec Corporation -> Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [153296 2019-02-13] (Symantec Corporation -> Symantec Corporation)
R0 hpdskflt; C:\WINDOWS\System32\DRIVERS\hpdskflt.sys [31040 2012-09-24] (Hewlett-Packard Company -> Hewlett-Packard Company)
R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.16.3.21\Definitions\IPSDefs\20190515.061\IDSvia64.sys [1441800 2019-04-18] (Symantec Corporation -> Symantec Corporation)
R3 kmloop; C:\WINDOWS\System32\drivers\loop.sys [17408 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-02-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R1 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [82752 2019-01-12] (Insecure.Com LLC -> Insecure.Com LLC.)
U5 PROCMON24; C:\Windows\System32\Drivers\PROCMON24.sys [97176 2019-05-08] (Microsoft Windows Hardware Compatibility Publisher -> Sysinternals - www.sysinternals.com)
R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [310528 2015-06-29] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
S3 RzCommon; C:\WINDOWS\System32\drivers\RzCommon.sys [49032 2019-01-16] (Razer USA Ltd. -> Razer Inc)
S3 RzDev_0060; C:\WINDOWS\System32\drivers\RzDev_0060.sys [51688 2018-04-22] (Razer USA Ltd. -> Razer Inc)
S3 SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-08-24] (Synaptics Incorporated -> Synaptics Incorporated)
S3 SmbDrvI; C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [43832 2012-08-24] (Synaptics Incorporated -> Synaptics Incorporated)
R1 SRTSP; C:\WINDOWS\System32\drivers\NGCx64\1611010.032\SRTSP64.SYS [864480 2019-04-22] (Symantec Corporation -> Symantec Corporation)
R1 SRTSPX; C:\WINDOWS\System32\drivers\NGCx64\1611010.032\SRTSPX64.SYS [49888 2019-04-22] (Symantec Corporation -> Symantec Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [221824 2016-04-25] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R0 SymEFASI; C:\WINDOWS\System32\drivers\NGCx64\1611010.032\SYMEFASI64.SYS [1998552 2019-04-22] (Symantec Corporation -> Symantec Corporation)
S0 SymELAM; C:\WINDOWS\System32\drivers\NGCx64\1611010.032\SymELAM.sys [25744 2019-04-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Symantec Corporation)
R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS [100064 2019-03-30] (Symantec Corporation -> Symantec Corporation)
S4 SymEvnt; C:\Program Files\Norton Security\NortonData\22.16.3.21\SymPlatform\SymEvnt.sys [709128 2019-04-27] (Symantec Corporation -> Symantec Corporation)
R1 SymIRON; C:\WINDOWS\System32\drivers\NGCx64\1611010.032\Ironx64.SYS [315912 2019-04-22] (Symantec Corporation -> Symantec Corporation)
R1 SymNetS; C:\WINDOWS\System32\drivers\NGCx64\1611010.032\symnets.sys [573448 2019-04-22] (Symantec Corporation -> Symantec Corporation)
R3 SymTAP; C:\WINDOWS\System32\drivers\SymTAP.sys [52104 2018-10-16] (Symantec Corporation -> The OpenVPN Project)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2018-01-30] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 usbfilter; C:\WINDOWS\system32\DRIVERS\usbfilter.sys [57000 2012-06-19] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R3 USBPcap; C:\WINDOWS\system32\DRIVERS\USBPcap.sys [50224 2017-08-20] (Tomasz Moń -> USBPcap)
S3 VBoxNetAdp; C:\WINDOWS\System32\drivers\VBoxNetAdp6.sys [196040 2017-07-27] (Oracle Corporation -> Oracle Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46680 2019-02-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [330936 2019-02-13] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62136 2019-02-13] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [34944 2018-05-11] (HP Inc. -> HP)
S3 wpCtrlDrv_NGC; C:\WINDOWS\System32\drivers\NGCx64\1611010.032\wpCtrlDrv.sys [1012120 2019-04-22] (Symantec Corporation -> Symantec Corporation)
U4 npcap_wifi; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-05-15 23:13 - 2019-05-15 23:17 - 000036936 _____ C:\Users\oldman\Desktop\FRST.txt
2019-05-15 23:12 - 2019-05-15 23:12 - 000000000 ____D C:\RegBackup
2019-05-15 23:11 - 2019-05-15 23:11 - 002434560 _____ (Farbar) C:\Users\oldman\Desktop\FRST64.exe
2019-05-15 22:42 - 2019-05-15 22:42 - 000111688 _____ (Duckware) C:\Users\oldman\x.exe
2019-05-15 20:42 - 2019-05-15 20:42 - 076647212 _____ C:\Users\oldman\Desktop\W-S 5-15 F.F refresh.pcapng
2019-05-15 20:41 - 2019-05-15 20:41 - 000000196 _____ C:\Users\oldman\Desktop\W-S redirector. com etc..txt
2019-05-15 17:54 - 2019-05-15 17:54 - 000000495 _____ C:\Users\oldman\Desktop\IE cache 5-15.txt
2019-05-15 14:49 - 2019-05-15 14:49 - 000000000 ____D C:\WINDOWS\System32\Tasks\Remediation
2019-05-15 14:26 - 2019-05-15 14:26 - 000393168 _____ (Bleeping Computer, LLC) C:\Users\oldman\Desktop\show-hidden.exe
2019-05-15 13:21 - 2019-05-15 13:21 - 026807808 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 023438848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 020814848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 019022336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 006072320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 004883968 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 004660736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 003905536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 003743744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 001290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 001062400 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-05-15 13:21 - 2019-05-15 13:21 - 000427520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 000376320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-05-15 13:21 - 2019-05-15 13:21 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-05-15 13:21 - 2019-05-15 13:21 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-kernel-processor-power-events.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-05-15 13:20 - 2019-05-15 13:21 - 007879680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 009682744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-05-15 13:20 - 2019-05-15 13:20 - 007883776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 007687576 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 007645384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 006542464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 006440960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 006309040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 005498880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 005040640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-05-15 13:20 - 2019-05-15 13:20 - 003637248 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-05-15 13:20 - 2019-05-15 13:20 - 003557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 003384832 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 003363856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-05-15 13:20 - 2019-05-15 13:20 - 002780000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 002708480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-05-15 13:20 - 2019-05-15 13:20 - 002422272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-05-15 13:20 - 2019-05-15 13:20 - 002278240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 002189312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 001860096 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 001760768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 001701888 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 001699496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-05-15 13:20 - 2019-05-15 13:20 - 001641616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 001605120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 001484800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 001470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-05-15 13:20 - 2019-05-15 13:20 - 001395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 001387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 001342608 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-05-15 13:20 - 2019-05-15 13:20 - 001253904 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-05-15 13:20 - 2019-05-15 13:20 - 001225728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-05-15 13:20 - 2019-05-15 13:20 - 001179680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-05-15 13:20 - 2019-05-15 13:20 - 001054712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-05-15 13:20 - 2019-05-15 13:20 - 001048376 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-05-15 13:20 - 2019-05-15 13:20 - 001026792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000895792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000807464 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-05-15 13:20 - 2019-05-15 13:20 - 000758896 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-05-15 13:20 - 2019-05-15 13:20 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000660992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000586280 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-05-15 13:20 - 2019-05-15 13:20 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000508432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-05-15 13:20 - 2019-05-15 13:20 - 000495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000449376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000444944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-05-15 13:20 - 2019-05-15 13:20 - 000387832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000254952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2019-05-15 13:20 - 2019-05-15 13:20 - 000223544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2019-05-15 13:20 - 2019-05-15 13:20 - 000216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000212792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-05-15 13:20 - 2019-05-15 13:20 - 000203272 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000202768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2019-05-15 13:20 - 2019-05-15 13:20 - 000201016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2019-05-15 13:20 - 2019-05-15 13:20 - 000198456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2019-05-15 13:20 - 2019-05-15 13:20 - 000192824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-05-15 13:20 - 2019-05-15 13:20 - 000179728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2019-05-15 13:20 - 2019-05-15 13:20 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000177976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-05-15 13:20 - 2019-05-15 13:20 - 000163240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2019-05-15 13:20 - 2019-05-15 13:20 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000147736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2019-05-15 13:20 - 2019-05-15 13:20 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000121656 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2019-05-15 13:20 - 2019-05-15 13:20 - 000090640 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000080184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-05-15 13:20 - 2019-05-15 13:20 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-05-15 13:20 - 2019-05-15 13:20 - 000066688 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdll.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000055792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdll.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-05-15 13:20 - 2019-05-15 13:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-05-15 13:20 - 2019-05-15 13:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-05-15 13:20 - 2019-05-15 13:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-05-15 13:20 - 2019-05-15 13:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-05-15 13:20 - 2019-05-15 13:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-05-15 13:20 - 2019-05-15 13:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-05-15 13:20 - 2019-05-15 13:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-05-14 21:07 - 2019-05-14 21:07 - 000000064 _____ C:\Users\oldman\Desktop\WFA address.txt
2019-05-14 16:47 - 2019-05-15 22:16 - 000000223 _____ C:\Users\oldman\Desktop\stuff to scan 2day.txt
2019-05-14 16:03 - 2019-05-14 16:03 - 000000899 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2019-05-14 16:03 - 2019-05-14 16:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2019-05-14 16:03 - 2019-05-14 16:03 - 000000000 ____D C:\Program Files\RogueKiller
2019-05-14 15:17 - 2019-05-14 15:20 - 422061832 _____ C:\Users\oldman\Desktop\5-14 fun.pcapng
2019-05-14 14:50 - 2019-05-15 13:50 - 000000606 _____ C:\Users\oldman\Desktop\Todays stuff.txt
2019-05-12 23:06 - 2019-04-04 13:11 - 000454145 ____R C:\WINDOWS\system32\Drivers\etc\hosts.20190512-230640.backup
2019-05-12 14:27 - 2019-05-12 14:27 - 002060772 _____ C:\Users\oldman\Desktop\code.jquery WS.pcapng
2019-05-10 21:15 - 2019-05-10 22:01 - 000000443 _____ C:\Users\oldman\Desktop\J.Swift quote.txt
2019-05-10 18:46 - 2019-05-10 18:47 - 000388608 _____ (Trend Micro Inc.) C:\Users\oldman\Desktop\HijackThis.exe
2019-05-10 09:13 - 2019-05-15 16:49 - 000000000 ____D C:\WINDOWS\System32\Tasks\Norton Security with Backup
2019-05-10 09:12 - 2019-05-10 22:22 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
2019-05-10 09:12 - 2019-05-10 09:12 - 000003376 _____ C:\WINDOWS\System32\Tasks\Norton WSC Integration
2019-05-08 18:13 - 2019-05-08 18:13 - 001054490 _____ C:\Users\oldman\Desktop\ProcessMonitor.zip
2019-05-08 14:26 - 2019-05-08 18:38 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2019-05-05 13:34 - 2019-05-05 13:34 - 000000260 _____ C:\Users\oldman\Desktop\Gaba Lyrica links.txt
2019-05-03 16:14 - 2019-05-03 16:14 - 003551112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-05-03 16:14 - 2019-05-03 16:14 - 000263576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-05-03 16:14 - 2019-05-03 16:14 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll
2019-05-03 16:14 - 2019-05-03 16:14 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncCsp.dll
2019-05-03 16:14 - 2019-05-03 16:14 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\EASPolicyManagerBrokerHost.exe
2019-05-03 16:13 - 2019-05-03 16:14 - 005436904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 012844032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 012140032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 005296640 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 005210904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 003982848 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 003426816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 003406848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 002701512 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 002393088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 002205184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 002073960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 001994976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 001768960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 001674696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 001671352 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 001653760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 001467552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 001382912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 001315328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 001001472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000782848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000780632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcrt.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000725696 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000695296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2019-05-03 16:13 - 2019-05-03 16:13 - 000673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000649064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000638376 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcrt.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000610304 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2019-05-03 16:13 - 2019-05-03 16:13 - 000553656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000540720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000531968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000514632 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000454160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-05-03 16:13 - 2019-05-03 16:13 - 000451080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiag.exe
2019-05-03 16:13 - 2019-05-03 16:13 - 000359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-05-03 16:13 - 2019-05-03 16:13 - 000349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000320512 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2019-05-03 16:13 - 2019-05-03 16:13 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiag.exe
2019-05-03 16:13 - 2019-05-03 16:13 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2019-05-03 16:13 - 2019-05-03 16:13 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2019-05-03 16:13 - 2019-05-03 16:13 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2019-05-03 16:13 - 2019-05-03 16:13 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000122680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000086960 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2019-05-03 16:13 - 2019-05-03 16:13 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnosticsTool.exe
2019-05-03 16:12 - 2019-05-03 16:12 - 004997096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2019-05-03 16:12 - 2019-05-03 16:12 - 002995712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-05-03 16:12 - 2019-05-03 16:12 - 001219640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2019-05-03 16:12 - 2019-05-03 16:12 - 000999424 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-05-03 16:12 - 2019-05-03 16:12 - 000806600 _____ C:\WINDOWS\SysWOW64\locale.nls
2019-05-03 16:12 - 2019-05-03 16:12 - 000806600 _____ C:\WINDOWS\system32\locale.nls
2019-05-03 16:12 - 2019-05-03 16:12 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-05-03 16:12 - 2019-05-03 16:12 - 000679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2019-05-03 16:12 - 2019-05-03 16:12 - 000676256 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2019-05-03 16:12 - 2019-05-03 16:12 - 000651576 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-05-03 16:12 - 2019-05-03 16:12 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\DDDS.dll
2019-05-03 16:12 - 2019-05-03 16:12 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2019-05-03 16:12 - 2019-05-03 16:12 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\system32\SDDS.dll
2019-05-03 16:12 - 2019-05-03 16:12 - 000421392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-05-03 16:12 - 2019-05-03 16:12 - 000366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2019-05-03 16:12 - 2019-05-03 16:12 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2019-05-03 16:12 - 2019-05-03 16:12 - 000280592 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-05-03 16:12 - 2019-05-03 16:12 - 000244224 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpnServiceDS.dll
2019-05-03 16:12 - 2019-05-03 16:12 - 000197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2019-05-03 16:12 - 2019-05-03 16:12 - 000161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2019-05-03 16:12 - 2019-05-03 16:12 - 000157200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2019-04-25 13:13 - 2019-04-25 13:14 - 029937376 _____ (Adlice Software ) C:\Users\oldman\Desktop\setup(1).exe
2019-04-22 16:15 - 2019-04-22 16:16 - 000000000 ____D C:\Users\oldman\Desktop\Genesight Copy
2019-04-16 12:27 - 2019-04-16 12:27 - 000001827 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wireshark.lnk
2019-04-15 12:06 - 2019-04-15 12:06 - 000001816 _____ C:\Users\Public\Desktop\iTunes.lnk
2019-04-15 12:06 - 2019-04-15 12:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2019-04-15 12:06 - 2019-04-15 12:06 - 000000000 ____D C:\Program Files\iPod
2019-04-15 12:04 - 2019-04-15 12:06 - 000000000 ____D C:\Program Files\iTunes

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-05-15 23:13 - 2018-12-06 16:03 - 000000000 ____D C:\FRST
2019-05-15 23:12 - 2016-11-28 01:03 - 000000000 ____D C:\Users\oldman\AppData\LocalLow\Mozilla
2019-05-15 22:47 - 2019-04-10 12:18 - 000000000 ____D C:\Users\oldman\AppData\Local\Razer
2019-05-15 22:47 - 2019-04-10 12:07 - 000000000 ____D C:\ProgramData\Razer
2019-05-15 22:46 - 2019-04-10 12:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2019-05-15 22:46 - 2019-04-10 12:14 - 000000000 ____D C:\Program Files\Razer
2019-05-15 22:46 - 2019-04-10 12:06 - 000000000 ____D C:\Program Files (x86)\Razer
2019-05-15 22:46 - 2018-09-15 01:31 - 000000000 ____D C:\WINDOWS\INF
2019-05-15 22:42 - 2019-01-12 12:12 - 000000000 ____D C:\Users\oldman
2019-05-15 22:42 - 2016-08-11 14:50 - 000000000 ___HD C:\jexepackres
2019-05-15 22:42 - 2016-08-11 14:50 - 000000000 ____D C:\Users\oldman\applogs
2019-05-15 22:42 - 2016-08-11 14:50 - 000000000 ____D C:\Program Files (x86)\AstroViewer 3.1.6
2019-05-15 22:32 - 2018-09-15 01:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-05-15 22:02 - 2019-01-12 12:04 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-05-15 18:33 - 2019-02-10 15:06 - 000000000 ____D C:\Users\oldman\Desktop\Old Firefox Data
2019-05-15 17:55 - 2019-01-12 12:27 - 000004152 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{D6FF1BE5-40C3-4B52-A236-97274056599C}
2019-05-15 14:47 - 2019-03-02 17:10 - 000301208 _____ C:\Users\oldman\Desktop\Show-Hidden.txt
2019-05-15 14:17 - 2018-09-15 01:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-05-15 14:17 - 2018-09-15 01:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-05-15 14:15 - 2018-11-01 16:21 - 000000000 ____D C:\Users\oldman\Desktop\malware tools
2019-05-15 14:08 - 2019-01-12 12:30 - 000935120 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-05-15 14:02 - 2019-01-12 12:04 - 000284848 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-05-15 14:01 - 2016-08-20 10:31 - 000000000 ____D C:\ProgramData\Kodak
2019-05-15 14:01 - 2015-12-03 22:03 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2019-05-15 14:00 - 2019-01-12 12:27 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-05-15 13:59 - 2018-09-15 00:09 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2019-05-15 13:59 - 2015-07-29 03:19 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2019-05-15 13:57 - 2018-09-15 01:33 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-05-15 13:57 - 2018-09-15 01:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-05-15 13:26 - 2018-09-15 01:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-05-15 12:41 - 2018-06-12 18:34 - 000000000 ____D C:\ProgramData\SecTaskMan
2019-05-14 23:49 - 2019-01-12 12:27 - 000004574 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-05-14 23:48 - 2019-02-12 15:21 - 006194744 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2019-05-14 23:48 - 2018-09-15 01:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-05-14 23:48 - 2018-09-15 01:33 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-05-14 23:25 - 2015-05-03 12:07 - 000000000 ____D C:\Users\oldman\AppData\Local\Battle.net
2019-05-14 23:12 - 2015-05-03 12:09 - 000000000 ____D C:\Program Files (x86)\Diablo III
2019-05-14 16:04 - 2019-03-31 16:21 - 000003138 _____ C:\WINDOWS\System32\Tasks\RogueKiller Anti-Malware
2019-05-14 15:57 - 2015-10-21 19:23 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-05-14 15:30 - 2017-05-02 14:10 - 000000352 _____ C:\WINDOWS\Tasks\HPCeeScheduleForoldman.job
2019-05-14 15:23 - 2015-05-03 19:25 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-05-14 15:13 - 2015-05-03 19:25 - 132445408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-05-14 11:16 - 2019-01-12 12:27 - 000003248 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForoldman
2019-05-13 15:23 - 2018-09-15 01:36 - 000835688 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-05-13 15:23 - 2018-09-15 01:36 - 000179816 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-05-12 23:32 - 2015-05-23 09:11 - 000000000 ____D C:\Users\oldman\AppData\Local\CrashDumps
2019-05-12 12:40 - 2018-06-23 20:30 - 000000000 ____D C:\Users\oldman\Desktop\scan logs and stuff
2019-05-11 23:14 - 2019-01-12 12:27 - 000003364 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-901587214-2200967626-3004657440-1003
2019-05-11 23:14 - 2019-01-12 12:12 - 000002403 _____ C:\Users\oldman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-05-11 23:14 - 2015-06-27 12:46 - 000000000 ___RD C:\Users\oldman\OneDrive
2019-05-11 19:27 - 2019-03-30 20:51 - 000153328 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2019-05-10 22:22 - 2019-02-13 11:45 - 000002408 _____ C:\Users\Public\Desktop\Norton Security.lnk
2019-05-10 14:50 - 2015-07-29 00:21 - 000000000 ____D C:\Users\oldman\AppData\Local\ElevatedDiagnostics
2019-05-10 09:41 - 2015-06-10 01:43 - 000000000 ____D C:\Program Files\Common Files\AV
2019-05-10 09:12 - 2018-02-26 15:03 - 000000000 ____D C:\WINDOWS\system32\Drivers\NGCx64
2019-05-09 23:33 - 2015-05-03 12:07 - 000000000 ____D C:\Program Files (x86)\Battle.net
2019-05-08 23:15 - 2018-06-27 01:41 - 000000000 ____D C:\ProgramData\Packages
2019-05-08 19:21 - 2019-03-04 16:43 - 000097176 ____H (Sysinternals - www.sysinternals.com) C:\WINDOWS\system32\Drivers\PROCMON24.SYS
2019-05-08 19:20 - 2019-03-04 16:43 - 000000000 ____D C:\Users\oldman\Desktop\ProcessMonitor
2019-05-08 18:40 - 2018-09-15 00:09 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2019-05-08 18:38 - 2015-05-03 11:47 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-05-08 17:40 - 2015-05-03 11:47 - 000001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-05-08 13:50 - 2018-01-03 21:16 - 000000000 ____D C:\Users\oldman\AppData\Local\PlaceholderTileLogoFolder
2019-05-04 23:54 - 2016-06-26 04:54 - 000000000 ____D C:\Users\oldman\AppData\Local\NPE
2019-05-03 17:22 - 2018-09-15 01:33 - 000000000 ____D C:\WINDOWS\TextInput
2019-05-03 17:22 - 2018-09-15 01:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-04-30 13:53 - 2017-12-09 01:36 - 000000000 ____D C:\Users\oldman\AppData\Local\Packages
2019-04-23 12:15 - 2015-05-03 12:07 - 000000000 ____D C:\Users\oldman\AppData\Local\Blizzard Entertainment
2019-04-21 18:53 - 2018-04-13 01:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-04-21 18:53 - 2015-06-13 14:02 - 000000000 ____D C:\Program Files (x86)\Java
2019-04-21 18:52 - 2018-04-13 01:24 - 000099192 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2019-04-17 15:07 - 2015-07-14 21:37 - 000000000 ____D C:\Users\oldman\Documents\Youcam
2019-04-17 14:34 - 2015-06-02 17:51 - 000000000 ____D C:\Users\oldman\AppData\Roaming\Skype
2019-04-16 12:27 - 2019-03-03 17:49 - 000000000 ____D C:\Program Files\Wireshark

==================== Files in the root of some directories =======

2019-05-15 22:42 - 2019-05-15 22:42 - 000111688 _____ (Duckware) C:\Users\oldman\x.exe
2015-08-15 18:31 - 2018-11-02 19:18 - 000011264 _____ () C:\Users\oldman\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-08-01 13:43 - 2019-05-06 13:17 - 000140696 _____ () C:\Users\oldman\AppData\Local\installer.log
2015-08-01 13:43 - 2015-08-01 13:43 - 000000236 _____ () C:\Users\oldman\AppData\Local\LaunchHomeCenter.log
2015-05-23 09:41 - 2018-02-14 00:28 - 000007674 _____ () C:\Users\oldman\AppData\Local\resmon.resmoncfg

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-05.2019 01
Ran by oldman (15-05-2019 23:18:20)
Running from C:\Users\oldman\Desktop
Windows 10 Home Version 1809 17763.503 (X64) (2019-01-12 18:50:39)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-901587214-2200967626-3004657440-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-901587214-2200967626-3004657440-503 - Limited - Disabled)
Guest (S-1-5-21-901587214-2200967626-3004657440-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-901587214-2200967626-3004657440-1009 - Limited - Enabled)
oldman (S-1-5-21-901587214-2200967626-3004657440-1003 - Administrator - Enabled) => C:\Users\oldman
WDAGUtilityAccount (S-1-5-21-901587214-2200967626-3004657440-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Norton Security (Enabled - Up to date) {A2708B76-6835-6565-CB96-694212954A75}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {4C1D9672-63FE-5C90-371E-8FDA591C5B75}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Norton Security (Enabled) {9A4B0A53-225A-643D-E0C9-C077EC460D0E}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 19.012.20034 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.192 - Adobe)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.8.158 - Adobe Systems, Inc.)
aioprnt (HKLM\...\{0645A454-AD44-4F0D-99CF-6B762735AD1F}) (Version: 5.3.1.0 - Eastman Kodak Company) Hidden
aioscnnr (HKLM-x32\...\{376348C2-E372-48BC-A138-E896757BD86A}) (Version: 5.8.10.0 - Your Company Name) Hidden
aioscnnr (HKLM-x32\...\{EF53BFAB-4C10-40DB-A82D-9B07111715C6}) (Version: 7.6.13.10 - Your Company Name) Hidden
AMD Catalyst Install Manager (HKLM\...\{D01E0B82-7D6E-F9AC-9A7D-C6076264F419}) (Version: 8.0.881.0 - Advanced Micro Devices, Inc.)
AMD Quick Stream (HKLM\...\{E9EED4AE-682B-4501-9574-D09A21717599}_is1) (Version: 3.3.26.0 - AppEx Networks)
Apple Application Support (32-bit) (HKLM-x32\...\{9F7041CB-8398-4691-B8CB-0D52273BB3D9}) (Version: 7.4 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{6E7DF4EE-1976-4215-9D81-755AFC95687D}) (Version: 7.4 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BA2A6DBB-B09A-43D8-84F3-21C1537B47D9}) (Version: 12.2.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BOINC (HKLM\...\{F1361096-9418-489B-983B-5F8C3972E05E}) (Version: 7.8.3 - Space Sciences Laboratory, U.C. Berkeley)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
C4USelfUpdater (HKLM-x32\...\{48B41C3A-9A92-4B81-B653-C97FEB85C910}) (Version: 1.00.0000 - Your Company Name) Hidden
center (HKLM-x32\...\{56BA241F-580C-43D2-8403-947241AAE633}) (Version: 7.8.0.0 - Eastman Kodak Company) Hidden
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.1.5407 - CyberLink Corp.)
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.1.1916 - CyberLink Corp.)
CyberLink PhotoDirector (HKLM-x32\...\InstallShield_{4862344A-A39C-4897-ACD4-A1BED5163C5A}) (Version: 2.0.1.3119 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.1.1926 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.1.1925 - CyberLink Corp.)
CyberLink PowerDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.6.4319 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.5.4.5527 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Energy Star (HKLM\...\{0FA995CC-C849-4755-B14B-5404CC75DC24}) (Version: 1.0.8 - Hewlett-Packard)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
essentials (HKLM-x32\...\{BE94C681-68E2-4561-8ABC-8D2E799168B4}) (Version: 7.8.0.0 - Eastman Kodak Company) Hidden
Google Earth Pro (HKLM\...\{F914BC59-918A-498F-B2E3-B274C9CB48A8}) (Version: 7.3.2.5491 - Google)
Hewlett-Packard ACLM.NET v1.2.2.3 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM\...\{54CE68A8-4F2D-4328-B1F7-D6C720405F7F}) (Version: 4.2.9.1 - Hewlett-Packard Company)
HP Connected Music (Meridian - installer) (HKLM-x32\...\StartHPConnectedMusic) (Version: v1.0 - Meridian Audio Ltd)
HP CoolSense (HKLM-x32\...\{16B7BDA1-B967-4D2D-8B27-E12727C28350}) (Version: 2.10.3 - Hewlett-Packard Company)
HP Documentation (HKLM-x32\...\{1AC082E0-049D-4C5C-9ECF-9473AD5A949D}) (Version: 1.1.0.0 - Hewlett-Packard)
HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.3.0 - WildTangent)
HP MyRoom (HKLM-x32\...\{32F06015-D852-4A57-A0DD-8D08D17633AC}) (Version: 10.4.0156 - Hewlett-Packard)
HP PC Hardware Diagnostics Windows (HKLM-x32\...\{7FF9E31F-FAC5-4C7B-970B-FE464B8C6A62}) (Version: 1.5.2.0 - HP Inc.)
HP Quick Launch (HKLM-x32\...\{E5823036-6F09-4D0A-B05C-E2BAA129288A}) (Version: 3.0.6 - Hewlett-Packard Company)
HP Registration Service (HKLM\...\{E4D6CCF2-0AAF-4B9C-9DE5-893EDC9B4BAA}) (Version: 1.0.5976.4186 - Hewlett-Packard)
HP Software Framework (HKLM-x32\...\{5094249B-9542-4536-AE76-B769EE085C99}) (Version: 7.1.6.1 - HP)
HP Software Framework (HKLM-x32\...\{835B275B-F29B-464B-BD4B-097FD55FAB0A}) (Version: 4.6.8.1 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.7.50.3 - Hewlett-Packard Company)
HP Support Solutions Framework (HKLM-x32\...\{55065080-504F-43BB-BE00-36B80D7D39A5}) (Version: 12.10.49.21 - Hewlett-Packard Company)
HP Touchpoint Analytics Client (HKLM\...\{E5FB98E0-0784-44F0-8CEC-95CD4690C43F}) (Version: 4.0.2.1439 - HP Inc.)
HP Utility Center (HKLM-x32\...\{0C57987A-A03A-4B95-A309-D23F78F406CA}) (Version: 1.0.7 - Hewlett-Packard)
HP Wireless Button Driver (HKLM-x32\...\{941DE69D-6CEE-4171-8F1F-3D7E352AA498}) (Version: 1.0.5.1 - Hewlett-Packard Company)
HPDetect (HKLM-x32\...\{CCCDD476-98F9-4B06-91DB-23F27CEC3BE1}) (Version: 1.0.0.0 - HP)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6417.0 - IDT)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.40 - Irfan Skiljan)
iTunes (HKLM\...\{DF90B2B3-5832-4E85-934D-8048B33A1D67}) (Version: 12.9.4.102 - Apple Inc.)
Java 8 Update 211 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180211F0}) (Version: 8.0.2110.12 - Oracle Corporation)
Kodak AIO Printer (HKLM\...\{27EF8E7F-88D1-4ec5-ADE2-7E447FDF114E}) (Version: 7.8.1.0 - Eastman Kodak Company) Hidden
KODAK AiO Software (HKLM-x32\...\{E0F274B7-592B-4669-8FB8-8D9825A09858}) (Version: 7.9.1.1 - Eastman Kodak Company)
KODAK VERITE 50 Series Uninstaller (HKLM\...\KODAK VERITE 50 Series) (Version: - FUNAI ELECTRIC CO., LTD.)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Malwarebytes version 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-901587214-2200967626-3004657440-1003\...\OneDriveSetup.exe) (Version: 19.062.0331.0006 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Mozilla Firefox 66.0.5 (x64 en-US) (HKLM\...\Mozilla Firefox 66.0.5 (x64 en-US)) (Version: 66.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 64.0 - Mozilla)
Norton Secure VPN (HKLM-x32\...\Norton Secure VPN) (Version: 1.7.0.325 - Symantec Corporation)
Norton Security (HKLM-x32\...\NGC) (Version: 22.17.1.50 - Symantec Corporation)
Norton WiFi Privacy (HKLM-x32\...\Norton WiFi Privacy) (Version: 1.4.9 - Symantec Corporation)
Npcap 0.992 (HKLM-x32\...\NpcapInst) (Version: 0.992 - Nmap Project)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
ocr (HKLM-x32\...\{BFBCF96F-7361-486A-965C-54B17AC35421}) (Version: 6.2.3.50 - Eastman Kodak Company) Hidden
PreReq (HKLM-x32\...\{DA5BDB2A-12F0-4343-8351-21AAEB293990}) (Version: 6.2.4.0 - Eastman Kodak Company) Hidden
Python 3.5.2 (32-bit) (HKU\S-1-5-21-901587214-2200967626-3004657440-1003\...\{cf72a2ab-2f1d-49fd-a0d7-1065e6357e1e}) (Version: 3.5.2150.0 - Python Software Foundation)
Python 3.5.2 Core Interpreter (32-bit) (HKLM-x32\...\{EB0611B2-7F10-4D97-BCF2-DCAAB1199498}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Development Libraries (32-bit) (HKLM-x32\...\{5DB2183B-62D3-407F-BBC1-EAD2F36283FA}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Documentation (32-bit) (HKLM-x32\...\{1FBA5182-78DD-4940-9F06-96E5042B7061}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Executables (32-bit) (HKLM-x32\...\{33B10015-A9B1-4210-B50A-26C6443979B0}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 pip Bootstrap (32-bit) (HKLM-x32\...\{9ADF9987-3327-48C6-91B3-B10900366491}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Standard Library (32-bit) (HKLM-x32\...\{FCBB04F4-D2CF-4F55-BE92-B3898696B318}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Tcl/Tk Support (32-bit) (HKLM-x32\...\{C1153533-FDC4-4922-892D-B71810F69566}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Test Suite (32-bit) (HKLM-x32\...\{9D50A6D7-410A-4469-87B7-35FA84CBD479}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Utility Scripts (32-bit) (HKLM-x32\...\{E6DEBF43-7ACF-4E88-9BBF-9B5945683281}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{963ECCDD-F09F-4C24-9367-8B5D748AA7C8}) (Version: 3.5.2121.0 - Python Software Foundation)
Qualcomm Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 10.0 - Qualcomm Atheros)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.3.730.2012 - Realtek)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.2.8400.29029 - Realtek Semiconductor Corp.)
RogueKiller version 13.2.0.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 13.2.0.0 - Adlice Software)
Security Task Manager 2.3 (HKLM-x32\...\Security Task Manager) (Version: 2.3 - Neuber Software)
Skype™ 7.33 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.105 - Skype Technologies S.A.)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.7.64.0 - Safer-Networking Ltd.)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.12.98 - Synaptics Incorporated)
TreeSize Free V4.3.1 (HKLM-x32\...\TreeSize Free_is1) (Version: 4.3.1 - JAM Software)
Tweaking.com - Registry Backup (HKLM-x32\...\Tweaking.com - Registry Backup) (Version: 3.5.3 - Tweaking.com)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation)
USBPcap 1.2.0.4 (HKLM\...\USBPcap) (Version: 1.2.0.4 - Tomasz Mon)
Windows 10 Upgrade Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17384 - Microsoft Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Wireshark 3.0.1 64-bit (HKLM-x32\...\Wireshark) (Version: 3.0.1 - The Wireshark developer community, hxxps://www.wireshark.org)
WorldWide Telescope (HKLM-x32\...\{412B591F-3F86-4A1C-9DF6-854892DE27BB}) (Version: 5.5.03 - WorldWide Telescope)

Packages:
=========
All My LAN -> C:\Program Files\WindowsApps\13258Thoroughsoft.AllMyLAN_1.1.7.0_x64__set6qczgvnq5g [2019-04-17] (Thoroughsoft)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.137.700.0_x86__kgqvnymyfvs32 [2019-04-17] (king.com)
Diagnostic Data Viewer -> C:\Program Files\WindowsApps\Microsoft.DiagnosticDataViewer_3.1904.1071.0_x64__8wekyb3d8bbwe [2019-04-18] (Microsoft Corporation)
Disney Magic Kingdoms -> C:\Program Files\WindowsApps\A278AB0D.DisneyMagicKingdoms_3.9.0.7_x86__h6adky7gbf63m [2019-04-17] (Gameloft.)
HP Registration -> C:\Program Files\WindowsApps\AD2F1837.HPRegistration_1.2.1.166_neutral__v10z8vjag6ke6 [2018-10-17] (Hewlett-Packard Company)
HP+ -> C:\Program Files\WindowsApps\AD2F1837.HP_1.2.0.93_neutral__v10z8vjag6ke6 [2018-10-17] (Hewlett-Packard Company)
Hulu -> C:\Program Files\WindowsApps\HuluLLC.HuluPlus_2.5.3.0_neutral__fphbd361v8tya [2019-03-08] (Hulu.)
Kindle -> C:\Program Files\WindowsApps\AMZNMobileLLC.KindleforWindows8_2.1.0.2_neutral__stfe6vwa9jnbp [2018-10-17] (AMZN Mobile LLC)
Microsoft Mahjong -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMahjong_3.9.4100.0_x64__8wekyb3d8bbwe [2019-04-19] (Microsoft Studios)
Microsoft Visual C++ 2013 Runtime Package -> C:\Program Files\WindowsApps\Microsoft.VCLibs.120.00.Universal_12.0.30501.0_x64__8wekyb3d8bbwe [2018-10-17] (Microsoft Platform Extensions)
Microsoft Visual C++ 2013 Runtime Package -> C:\Program Files\WindowsApps\Microsoft.VCLibs.120.00.Universal_12.0.30501.0_x86__8wekyb3d8bbwe [2018-10-17] (Microsoft Platform Extensions)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.93.375.0_x64__mcm4njqhnhss8 [2019-02-19] (Netflix, Inc.)
Network Inspector -> C:\Program Files\WindowsApps\48425ShipwreckSoftware.NetworkInspector_2.3.24.0_x64__jh2negtepkzpr [2019-04-17] (Shipwreck Software)
Norton Safe Web -> C:\Program Files\WindowsApps\SymantecCorporation.NortonSafeWeb_3.7.0.0_neutral__v68kp9n051hdp [2019-03-28] (Symantec Corporation)
Norton Studio -> C:\Program Files\WindowsApps\SymantecCorporation.NortonStudio_2.2.0.0_x86__v68kp9n051hdp [2018-10-17] (Symantec Corporation)
Spider Solitaire HD -> C:\Program Files\WindowsApps\32988BernardoZamora.SpiderSolitaireHD_1.18.0.27_x64__1fgex2kbsn6g8 [2018-10-17] (Bernardo Zamora)
TreeSize Free -> C:\Program Files\WindowsApps\JAMSoftware.TreeSizeFree_4.3.1.0_x86__37s2tpab2h9zg [2019-03-05] (JAM Software)
Xbox 360 SmartGlass -> C:\Program Files\WindowsApps\Microsoft.XboxCompanion_1.4.3.0_x64__8wekyb3d8bbwe [2018-10-17] (Microsoft Corporation)
Xbox One SmartGlass -> C:\Program Files\WindowsApps\Microsoft.XboxOneSmartGlass_2.2.1702.2004_x64__8wekyb3d8bbwe [2018-10-17] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-901587214-2200967626-3004657440-1003_Classes\CLSID\{D9AC5E73-BB10-467b-B884-AA1E475C51F5}\Shell\Open\Command -> C:\Program Files\Synaptics\SynTP\SynTPCpl.dll (Synaptics Incorporated -> Synaptics Incorporated)
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.17.1.50\buShell.dll [2019-04-22] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.17.1.50\buShell.dll [2019-04-22] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.17.1.50\buShell.dll [2019-04-22] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.17.1.50\buShell.dll [2019-04-22] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.17.1.50\buShell.dll [2019-04-22] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.17.1.50\buShell.dll [2019-04-22] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers1: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.17.1.50\buShell.dll [2019-04-22] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2012-07-27] (CyberLink -> Cyberlink)
ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers1: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.17.1.50\NavShExt.dll [2019-04-22] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2012-07-27] (CyberLink -> Cyberlink)
ContextMenuHandlers2: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.17.1.50\NavShExt.dll [2019-04-22] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.17.1.50\buShell.dll [2019-04-22] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers6: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.17.1.50\NavShExt.dll [2019-04-22] (Symantec Corporation -> Symantec Corporation)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2012-08-08 11:36 - 2012-08-08 11:36 - 000073728 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2012-08-08 11:36 - 2012-08-08 11:36 - 000361984 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
2015-08-31 10:59 - 2015-08-31 10:59 - 000075264 _____ (Eastman Kodak Company) [File not signed] C:\Program Files (x86)\Kodak\AiO\Center\Logger.dll
2015-05-03 00:33 - 2012-07-13 19:02 - 002451456 _____ (Realsil Microelectronics Inc.) [File not signed] C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
2015-05-03 00:33 - 2012-02-07 16:59 - 000166912 _____ (Realtek Semiconductor Corp.) [File not signed] C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RsCRLib.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [472]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

There are 7945 more sites.

IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\...\123simsen.com -> www.123simsen.com

There are 7946 more sites.


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-05-21 21:01 - 2019-05-12 23:06 - 000454145 ____R C:\WINDOWS\system32\drivers\etc\hosts

127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123haustiereundmehr.com
127.0.0.1 123moviedownload.com

There are 15617 more lines.


2017-09-14 18:48 - 2017-09-14 18:53 - 000000435 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Razer\ChromaBroadcast\bin;C:\Program Files\Razer\ChromaBroadcast\bin;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\AMD APP\bin\x86_64;C:\Program Files (x86)\AMD APP\bin\x86;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files (x86)\Skype\Phone\;C:\WINDOWS\System32\OpenSSH\;C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\WindowsApps;
HKU\S-1-5-21-901587214-2200967626-3004657440-1003\Control Panel\Desktop\\Wallpaper -> C:\Users\oldman\Pictures\Spacey pictures\3772-84mcnaught_druckmuller720.jpg
DNS Servers: 192.168.0.1 - 205.171.3.65
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKLM\...\StartupApproved\Run: => "EKIJ5000StatusMonitor"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "boincmgr"
HKLM\...\StartupApproved\Run: => "boinctray"
HKLM\...\StartupApproved\Run: => "KOBAAmon"
HKLM\...\StartupApproved\Run32: => "CLVirtualDrive"
HKLM\...\StartupApproved\Run32: => "RemoteControl10"
HKLM\...\StartupApproved\Run32: => "EKStatusMonitor"
HKLM\...\StartupApproved\Run32: => "APSDaemon"
HKLM\...\StartupApproved\Run32: => "QuickTime Task"
HKLM\...\StartupApproved\Run32: => "KOBAAmon"
HKU\S-1-5-21-901587214-2200967626-3004657440-1003\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-901587214-2200967626-3004657440-1003\...\StartupApproved\Run: => "SpybotPostWindows10UpgradeReInstall"
HKU\S-1-5-21-901587214-2200967626-3004657440-1003\...\StartupApproved\Run: => "BingSvc"
HKU\S-1-5-21-901587214-2200967626-3004657440-1003\...\StartupApproved\Run: => "KOab1err"
HKU\S-1-5-21-901587214-2200967626-3004657440-1003\...\StartupApproved\Run: => "EpicGamesLauncher"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{02A0DC13-4512-4DA3-AB45-8912D3DF93D8}] => (Allow) LPort=9322
FirewallRules: [{66B8882C-58B1-4E9E-B9A0-31F300A5E704}] => (Allow) LPort=5353
FirewallRules: [{5C19FB7B-5B75-4C8B-AB2E-EAAFFD3DFE93}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{71246B5F-9658-4563-8FB3-C9AD629BB5AC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{3044EDD6-7A83-492B-B5BF-DDD5DDC4181C}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{36EB4030-7840-451A-8178-E1BF4B08C5A5}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service

==================== Restore Points =========================

28-04-2019 22:55:16 Scheduled Checkpoint
03-05-2019 15:59:03 Windows Update
13-05-2019 13:03:24 Scheduled Checkpoint

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (05/15/2019 02:01:18 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Security Center failed to validate caller with error %1.

Error: (05/15/2019 02:01:08 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 15 144.106.254.169.in-addr.arpa. PTR eustace.local.

Error: (05/15/2019 02:01:08 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 169.254.106.144:5353 17 144.106.254.169.in-addr.arpa. PTR eustace-2.local.

Error: (05/15/2019 02:01:08 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 15 181.13.254.169.in-addr.arpa. PTR eustace.local.

Error: (05/15/2019 02:01:08 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 169.254.13.181:5353 17 181.13.254.169.in-addr.arpa. PTR eustace-2.local.

Error: (05/15/2019 12:41:25 PM) (Source: ESENT) (EventID: 413) (User: )
Description: TaskMan (1292,R,98) {856C0929-8756-4B9D-9646-8E7FBAA2B3CE}: Unable to create a new logfile because the database cannot write to the log drive. The drive may be read-only, out of disk space, misconfigured, or corrupted. Error -528.

Error: (05/15/2019 12:41:25 PM) (Source: ESENT) (EventID: 454) (User: )
Description: TaskMan (1292,R,98) {27ECD5A8-FE52-4AB2-86CA-0E8C673383A3}: Database recovery/restore failed with unexpected error -1811.

Error: (05/15/2019 11:35:38 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 15 7.0.168.192.in-addr.arpa. PTR eustace.local.


System errors:
=============
Error: (05/15/2019 02:01:25 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Razer Synapse Service service depends on the Razer Game Manager Service service which failed to start because of the following error:
The service did not respond to the start or control request in a timely fashion.

Error: (05/15/2019 02:01:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The RzActionSvc service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.

Error: (05/15/2019 02:01:25 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the RzActionSvc service to connect.

Error: (05/15/2019 02:01:24 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Razer Game Manager Service service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.

Error: (05/15/2019 02:01:24 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Razer Game Manager Service service to connect.

Error: (05/15/2019 02:00:49 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The APXACC service failed to start due to the following error:
A device attached to the system is not functioning.

Error: (05/15/2019 02:00:49 PM) (Source: APXACC) (EventID: 1003) (User: )
Description: The NDIS6 LWF initialization has failed. (0xC0000001)

Error: (05/15/2019 01:59:11 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Razer Synapse Service service.


CodeIntegrity:
===================================

Date: 2019-05-15 14:01:03.837
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Norton Security\Engine\22.17.1.50\WSCStub.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-05-15 14:01:03.813
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Norton Security\Engine\22.17.1.50\WSCStub.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-05-15 14:01:03.369
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Norton Security\Engine\22.17.1.50\WSCStub.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-05-15 14:01:03.337
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Norton Security\Engine\22.17.1.50\WSCStub.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-05-14 15:40:04.377
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Norton Security\Engine\22.17.1.50\WSCStub.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-05-14 15:40:04.183
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Norton Security\Engine\22.17.1.50\WSCStub.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-05-14 15:40:03.785
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Norton Security\Engine\22.17.1.50\WSCStub.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-05-14 15:40:03.660
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Norton Security\Engine\22.17.1.50\WSCStub.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

BIOS: Insyde F.26 02/21/2013
Motherboard: Hewlett-Packard 1849
Processor: AMD A4-4300M APU with Radeon(tm) HD Graphics
Percentage of memory in use: 70%
Total physical RAM: 3554.26 MB
Available physical RAM: 1031.57 MB
Total Virtual: 6498.26 MB
Available Virtual: 3682.55 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:567.72 GB) (Free:330.25 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (RECOVERY) (Fixed) (Total:25.37 GB) (Free:2.96 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive f: () (Removable) (Total:1.83 GB) (Free:1.83 GB) FAT

\\?\Volume{4807027d-70e4-4ed9-b189-6eac7a96e0a4}\ (WINRE) (Fixed) (Total:0.39 GB) (Free:0.15 GB) NTFS
\\?\Volume{c4bc7cea-39ce-4f4a-ab14-7934f0e01657}\ () (Fixed) (Total:0.96 GB) (Free:0.34 GB) NTFS
\\?\Volume{de27d039-3a8b-420a-8f61-0de10dba9383}\ () (Fixed) (Total:0.92 GB) (Free:0.34 GB) NTFS
\\?\Volume{228ede67-33cc-42ee-9814-03e998f454e7}\ () (Fixed) (Total:0.44 GB) (Free:0.41 GB) NTFS
\\?\Volume{873941c3-cd87-496d-8c74-8b333ed59eac}\ () (Fixed) (Total:0.25 GB) (Free:0.16 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 596.2 GB) (Disk ID: 9E4D4388)

Partition: GPT.

========================================================
Disk: 1 (Size: 1.8 GB) (Disk ID: CC5963D4)
Partition 1: (Not Active) - (Size=1.8 GB) - (Type=0E)

==================== End of Addition.txt ============================

Источник: https://corby1.rssing.com/chan-1706569/all_p350.html
hxxps://it.yahoo.com/?type=orcl_hpset
FF Extension: (Sicurezza browser Avira) - C:\Users\ASUS\AppData\Roaming\Mozilla\Firefox\Profiles\jb8uumon.default\Extensions\abs@avira.com.xpi [2018-08-06] [UpdateUrl:hxxps://download.avira.com/package/abs/firefox/update-webext.rdf]
FF Extension: (Bing Search) - C:\Users\ASUS\AppData\Roaming\Mozilla\Firefox\Profiles\jb8uumon.default\Extensions\bingsearch.full@microsoft.com.xpi [2016-01-09] [Legacy]
FF SearchPlugin: C:\Users\ASUS\AppData\Roaming\Mozilla\Firefox\Profiles\jb8uumon.default\searchplugins\bing-.xml [2016-01-09]
FF SearchPlugin: C:\Users\ASUS\AppData\Roaming\Mozilla\Firefox\Profiles\jb8uumon.default\searchplugins\yahoo-ysp.xml [2015-10-25]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_192.dll [2019-05-15] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.181.2 -> C:\Program Files\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll [2018-07-19] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.181.2 -> C:\Program Files\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2018-07-19] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-12-09] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_192.dll [2019-05-15] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1234204.dll [2018-06-06] (Adobe Systems, Inc.) [File not signed]
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google Inc -> Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-03-12] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-03-12] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-03-13] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-03-13] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @real.com/nppl3260;version=6.0.12.69 -> C:\Program Files (x86)\Real Alternative\browser\plugins\nppl3260.dll [2008-09-10] (RealNetworks, Inc. -> RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpjplug;version=6.0.12.69 -> C:\Program Files (x86)\Real Alternative\browser\plugins\nprpjplug.dll [2008-09-10] (RealNetworks, Inc.) [File not signed]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN -> VideoLAN)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-12-09] (Adobe Systems Incorporated -> Adobe Systems)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\bd_js_config.js [2019-07-18] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files\mozilla firefox\bd_config.cfg [2019-07-18] <==== ATTENTION

Chrome:
=======
CHR HomePage: Default -> msn.com
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR DefaultSearchURL: Default -> hxxps://pandasecurity.mystart.com/results.php?pr=vmn&id=pandasafeweb&v=1_0_chromeextension_unknown__&searchfeed=web&hsimp=yhs-panda1&ent=ch_ss&q={searchTerms}
CHR DefaultSearchKeyword: Default -> safeWeb
CHR DefaultSuggestURL: Default -> hxxps://www.bing.com/osjson.aspx?FORM=__PARAM__DF&PC=__PARAM__&query={searchTerms}
CHR Profile: C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default [2019-09-29]
CHR Extension: (Presentazioni) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-07-22]
CHR Extension: (Documenti) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-07-22]
CHR Extension: (Google Drive) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-07-22]
CHR Extension: (YouTube) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-07-22]
CHR Extension: (Panda Safe Web) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\fagakgcelolinfnkfgekcnedpaklfcok [2018-08-26]
CHR Extension: (MSN Homepage & Bing Search Engine) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2019-07-28]
CHR Extension: (Fogli) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-07-22]
CHR Extension: (Sicurezza browser Avira) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2019-08-22]
CHR Extension: (Documenti Google offline) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-26]
CHR Extension: (Pagamenti Chrome Web Store) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-07-22]
CHR Extension: (Yahoo Partner) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\npdicihegicnhaangkdmcgbjceoemeoo [2019-05-16]
CHR Extension: (Gmail) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-01]
CHR Extension: (Chrome Media Router) - C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-28]
CHR HKLM\...\Chrome\Extension: [fagakgcelolinfnkfgekcnedpaklfcok] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1781095109-3830667393-2323447585-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fagakgcelolinfnkfgekcnedpaklfcok] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fknfdieimobmimhdkfkheeejenmdjhoe] - C:\Program Files (x86)\pandasecuritytb\chrome-newtab-search.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [npdicihegicnhaangkdmcgbjceoemeoo] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3117648 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2888272 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-03-17] (Apple Inc. -> Apple Inc.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-05-07] (ASUSTeK Computer Inc. -> )
R2 ASGT; C:\Windows\SysWOW64\ASGT.exe [55296 2012-01-17] () [File not signed]
R2 bdredline; C:\Program Files\Bitdefender Antivirus Free\bdredline.exe [2500144 2019-05-28] (Bitdefender SRL -> Bitdefender)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8352184 2019-01-27] (BattlEye Innovations e.K. -> )
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3729512 2018-10-19] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [781440 2019-03-11] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [192200 2016-11-25] (Huawei Software Technologies Co., LTD. -> )
R2 Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel® Trusted Connect Service -> Intel® Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-03-12] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6347056 2018-09-19] (Malwarebytes Corporation -> Malwarebytes)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [4362656 2016-02-24] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1881144 2016-06-15] (NVIDIA Corporation -> NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634232 2016-06-15] (NVIDIA Corporation -> NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-06-15] (NVIDIA Corporation -> NVIDIA Corporation)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1291888 2019-07-15] (Bitdefender SRL -> Bitdefender)
R2 updatesrv; C:\Program Files\Bitdefender Antivirus Free\updatesrv.exe [238376 2019-05-28] (Bitdefender SRL -> Bitdefender)
R2 vsserv; C:\Program Files\Bitdefender Antivirus Free\vsserv.exe [238376 2019-05-28] (Bitdefender SRL -> Bitdefender)
R2 vsservppl; C:\Program Files\Bitdefender Antivirus Free\vsservppl.exe [238376 2019-05-28] (Bitdefender SRL -> Bitdefender)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.227\WsAppService.exe [492768 2017-06-21] (Wondershare Technology Co.,Ltd -> Wondershare)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-08-22] (ASUSTeK Computer Inc. -> )
R1 atc; C:\Windows\System32\DRIVERS\atc.sys [1586784 2019-07-18] (Bitdefender SRL -> Bitdefender S.R.L. Bucharest, ROMANIA)
R2 BdDci; C:\Windows\System32\DRIVERS\bddci.sys [739264 2019-08-09] (Bitdefender SRL -> Bitdefender)
S3 DigiartyVirtualCDBus; C:\Windows\System32\drivers\DigiartyVirtualCDBus.sys [275648 2017-02-01] (Chengdu Deyi Software, Inc -> LotSoft, Inc.)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2018-08-11] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2018-08-11] (Disc Soft Ltd -> Disc Soft Ltd)
R3 edrsensor; C:\Windows\System32\DRIVERS\edrsensor.sys [296896 2019-08-20] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA)
R1 Gemma; C:\Windows\System32\DRIVERS\gemma.sys [596632 2019-09-17] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA)
R0 gzflt; C:\Windows\System32\drivers\gzflt.sys [188384 2019-04-26] (Bitdefender SRL -> BitDefender LLC)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2016-11-25] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28656 2013-01-31] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-06-15] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation -> NVIDIA Corporation)
R2 trufos; C:\Windows\System32\drivers\trufos.sys [611728 2019-07-18] (Bitdefender SRL -> Bitdefender)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2016-12-21] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [140672 2014-11-24] (Microsoft Windows Hardware Compatibility Publisher -> MBB)
R3 wovad_micarray; C:\Windows\System32\drivers\womic.sys [35696 2017-11-25] (Beijing Wolicheng Technology Co., Ltd. -> Windows ® Win 7 DDK provider)
S3 btaudio; system32\drivers\btaudio.sys [X]
S3 BTDriver; system32\DRIVERS\btport.sys [X]
S3 BTWDNDIS; system32\DRIVERS\btwdndis.sys [X]
S3 btwhid; system32\DRIVERS\btwhid.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [X]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-09-30 10:01 - 2019-09-30 10:01 - 000031533 _____ C:\Users\Computer\Desktop\FRST.txt
2019-09-30 09:59 - 2019-09-30 09:59 - 001615360 _____ (Farbar) C:\Users\Computer\Desktop\FRST64.exe
2019-09-21 00:27 - 2019-09-21 00:39 - 000000000 ____D C:\Users\Computer\AppData\Roaming\BitTorrent
2019-09-20 14:48 - 2019-09-20 19:16 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-09-14 17:55 - 2019-09-14 17:56 - 000000000 ___RD C:\Users\Computer\Documents\Scanned Documents
2019-09-14 17:55 - 2019-09-14 17:55 - 000000000 ____D C:\Users\Computer\Documents\Fax
2019-09-13 20:56 - 2019-09-13 20:56 - 000174063 _____ C:\Users\ASUS\Desktop\ProspettoISSE_503969634f6b414d4f6d49643962377a2b71386a55673d3d_323970183.pdf
2019-09-13 20:25 - 2019-09-13 20:25 - 000229326 _____ C:\Users\ASUS\Downloads\LUCARELLI CERTIF INTER.pdf
2019-09-07 20:17 - 2019-09-07 20:22 - 000000000 ____D C:\Users\Public\BlueStacks
2019-09-07 18:38 - 2019-09-07 18:38 - 001398581 _____ C:\Users\ASUS\Downloads\tv_channels_anto.unzist68 (8).m3u
2019-09-05 11:33 - 2019-09-06 22:22 - 000001197 _____ C:\Users\Computer\Desktop\Underworld.lnk
2019-09-02 17:03 - 2019-09-02 17:03 - 000019680 _____ (EasyAntiCheat Oy) C:\Windows\system32\eac_usermode_2099139472135.dll

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-09-30 10:02 - 2019-03-23 16:27 - 000000000 ____D C:\Program Files\Bitdefender Antivirus Free
2019-09-30 10:01 - 2018-08-20 16:14 - 000000000 ____D C:\FRST
2019-09-30 10:00 - 2019-03-23 16:24 - 000003648 _____ C:\Windows\system32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
2019-09-30 09:59 - 2017-04-28 22:38 - 000000000 ____D C:\Users\Computer\AppData\LocalLow\Mozilla
2019-09-30 09:57 - 2018-02-05 20:57 - 000065536 _____ C:\Windows\system32\Ikeext.etl
2019-09-30 09:57 - 2013-12-30 22:53 - 000000000 ____D C:\ProgramData\NVIDIA
2019-09-30 09:57 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-09-30 05:23 - 2018-10-01 20:31 - 000000000 ____D C:\Program Files (x86)\Steam
2019-09-30 04:22 - 2009-07-14 06:45 - 000025920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-09-30 04:22 - 2009-07-14 06:45 - 000025920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-09-30 04:13 - 2010-11-21 17:31 - 052198392 _____ C:\Windows\system32\perfh010.dat
2019-09-30 04:13 - 2010-11-21 17:31 - 018083016 _____ C:\Windows\system32\perfc010.dat
2019-09-30 04:13 - 2009-07-14 07:13 - 000006698 _____ C:\Windows\system32\PerfStringBackup.INI
2019-09-30 00:11 - 2018-07-20 03:59 - 000000000 ____D C:\Users\Computer\AppData\Roaming\.minecraft
2019-09-29 21:01 - 2019-04-29 22:51 - 000000000 ____D C:\Users\Computer\Desktop\arte
2019-09-29 20:25 - 2009-07-14 07:32 - 000000000 ____D C:\Windows\system32\FxsTmp
2019-09-28 10:50 - 2014-01-21 14:50 - 000000000 ____D C:\Windows\system32\appmgmt
2019-09-25 22:25 - 2019-08-02 01:49 - 000000000 ____D C:\Users\Computer\Desktop\lolcgm
2019-09-25 00:26 - 2018-08-26 20:32 - 000002222 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-09-25 00:26 - 2018-08-26 20:32 - 000002181 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-09-25 00:26 - 2018-08-26 20:32 - 000002181 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2019-09-21 00:28 - 2019-07-25 17:57 - 000000000 ____D C:\Users\ASUS\AppData\Roaming\BitTorrent
2019-09-20 19:16 - 2018-08-23 10:56 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-09-20 14:53 - 2018-09-24 23:21 - 000001789 _____ C:\Users\Computer\Desktop\League of Legends.lnk
2019-09-18 19:04 - 2019-07-06 21:38 - 000000000 ____D C:\Users\Computer\Desktop\MinecraftServer
2019-09-17 16:50 - 2019-03-23 16:28 - 000596632 _____ (BitDefender S.R.L. Bucharest, ROMANIA) C:\Windows\system32\Drivers\gemma.sys
2019-09-14 21:43 - 2018-07-03 01:38 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update
2019-09-12 17:45 - 2009-07-14 07:08 - 000032556 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2019-09-08 21:49 - 2017-04-28 17:05 - 000000000 ____D C:\Users\Computer\Documents\My Games
2019-09-08 18:58 - 2013-12-30 23:00 - 000000000 ____D C:\Users\ASUS\AppData\Roaming\vlc
2019-09-08 05:15 - 2017-04-28 17:05 - 000000000 ____D C:\Users\Computer\AppData\Roaming\vlc
2019-09-07 19:31 - 2016-09-17 10:34 - 000000000 ____D C:\Users\ASUS\Desktop\pay tv
2019-09-07 19:31 - 2013-12-30 23:15 - 000000000 ____D C:\Users\ASUS\AppData\Roaming\uTorrent
2019-09-07 18:37 - 2019-07-27 18:51 - 000000000 ____D C:\Users\ASUS\AppData\LocalLow\uTorrent

==================== Files in the root of some directories ================

2014-01-01 22:16 - 2017-10-24 21:48 - 000000000 _____ () C:\Users\ASUS\AppData\Roaming\AVSDVDPlayer.m3u
2017-04-29 22:06 - 2017-04-29 22:06 - 000079616 _____ () C:\Users\ASUS\AppData\Roaming\icarus-dxdiag.xml
2015-01-29 13:09 - 2015-02-07 20:15 - 000007859 _____ () C:\Users\ASUS\AppData\Roaming\pcouffin.cat
2015-01-29 13:09 - 2015-02-07 20:15 - 000001167 _____ () C:\Users\ASUS\AppData\Roaming\pcouffin.inf
2015-01-29 13:09 - 2015-02-07 20:15 - 000000055 _____ () C:\Users\ASUS\AppData\Roaming\pcouffin.log
2018-11-03 18:57 - 2018-11-03 18:57 - 000000000 _____ () C:\Users\ASUS\AppData\Local\oobelibMkey.log
2014-09-29 11:40 - 2014-09-29 11:40 - 000000874 _____ () C:\Users\ASUS\AppData\Local\recently-used.xbel
2017-08-07 03:54 - 2017-08-07 04:24 - 000000126 _____ () C:\Users\ASUS\AppData\Local\uts.ini

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2019-09-21 00:59
==================== End of FRST.txt ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-09-2019
Ran by ASUS (30-09-2019 10:02:52)
Running from C:\Users\Computer\Desktop
Windows 7 Enterprise Service Pack 1 (X64) (2013-12-30 20:15:03)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1781095109-3830667393-2323447585-500 - Administrator - Disabled)
ASUS (S-1-5-21-1781095109-3830667393-2323447585-1000 - Administrator - Enabled) => C:\Users\ASUS
Computer (S-1-5-21-1781095109-3830667393-2323447585-1015 - Limited - Enabled) => C:\Users\Computer
Computer_2 (S-1-5-21-1781095109-3830667393-2323447585-1010 - Limited - Enabled) => C:\Users\Computer_2
Guest (S-1-5-21-1781095109-3830667393-2323447585-501 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Bitdefender Antivirus Free Antimalware (Enabled - Up to date) {EA21BCE8-A461-99C3-3A0D-4C964E75494E}
AS: Bitdefender Antivirus Free Antimalware (Enabled - Up to date) {51405D0C-825B-964D-00BD-77E435F203F3}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-1781095109-3830667393-2323447585-1000\...\uTorrent) (Version: 3.5.5.45146 - BitTorrent Inc.)
µTorrent (HKU\S-1-5-21-1781095109-3830667393-2323447585-1015\...\uTorrent) (Version: 3.5.5.45146 - BitTorrent Inc.)
7-Zip 16.02 (x64) (HKLM\...\7-Zip) (Version: 16.02 - Igor Pavlov)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.9.5.353 - Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.192 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.192 - Adobe)
Adobe Photoshop CC 2017 (HKLM-x32\...\PHSP_18_0_1) (Version: 18.0.1 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.3 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.3.4.204 - Adobe Systems, Inc.)
Aggiornamenti NVIDIA 2.11.4.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.11.4.1 - NVIDIA Corporation) Hidden
Akamai NetSession Interface (HKU\S-1-5-21-1781095109-3830667393-2323447585-1000\...\Akamai) (Version: - Akamai Technologies, Inc)
Among the Sleep Enhanced Edition (HKLM-x32\...\Among the Sleep Enhanced Edition_is1) (Version: - )
Apple Mobile Device Support (HKLM\...\{DB18F1C0-846F-46F5-A074-5B97C8AF5C8E}) (Version: 10.3.1.2 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{52D87F32-70E4-4348-8148-C0B9F35B1314}) (Version: 2.3.0.177 - Apple Inc.)
ASUS GPU Tweak (HKLM-x32\...\{532F6E8A-AF97-41C3-915F-39F718EC07D1}) (Version: 2.3.9.2 - ASUSTek COMPUTER INC.) Hidden
ASUS GPU Tweak (HKLM-x32\...\InstallShield_{532F6E8A-AF97-41C3-915F-39F718EC07D1}) (Version: 2.3.9.2 - ASUSTek COMPUTER INC.)
ASUS Product Register Program (HKLM-x32\...\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}) (Version: 1.0.020 - ASUSTek Computer Inc.)
aTube Catcher (HKLM-x32\...\aTube Catcher) (Version: 3.8.7971 - DsNET Corp)
Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team)
Auto Clicker by Shocker (HKU\S-1-5-21-1781095109-3830667393-2323447585-1015\...\Auto Clicker by Shocker_is1) (Version: V3.0.1 - shockingsoft.com)
Auto Keyboard v6.3 (HKLM-x32\...\{71E16EE4-BBED-44A8-8724-9E68D05EE945}_is1) (Version: 6.3 - MurGee.com)
Autodesk Certificate Package (x64) - 5.1.4 (HKLM\...\{79D5E475-5EAB-4474-84F5-BD612337A175}) (Version: 5.1.4.100 - Autodesk)
Autodesk License Service (x64) - 5.1.5 (HKLM\...\{3609A8D9-FC0C-4C9B-9F58-0B1D1A4FE556}) (Version: 5.1.5.0 - Autodesk)
Autodesk Maya 2018 (HKLM\...\{DBC07F9F-5C44-4E76-8805-A970807DBD6B}) (Version: 18.0.0.5870 - Autodesk) Hidden
Autodesk Maya 2018 (HKLM\...\Autodesk Maya 2018) (Version: 18.0.0.5870 - Autodesk)
Autodesk Network License Manager (HKLM\...\{4BE91685-1632-47FC-B563-A8A542C6664C}) (Version: 11.12.0 - Autodesk)
AutoHotkey 1.1.30.03 (HKLM\...\AutoHotkey) (Version: 1.1.30.03 - Lexikos)
AVS Media Player 4.2.2.104 (HKLM-x32\...\AVS Media Player_is1) (Version: 4.2.2.104 - Online Media Technologies Ltd.)
AVS Video Converter 8.5 (HKLM-x32\...\AVS4YOU Video Converter 7_is1) (Version: 8.5.1.551 - Online Media Technologies Ltd.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bifrost for Maya 2018 (HKLM\...\{88F9B0C0-F303-45AD-8FC8-48373B4479BD}) (Version: 1.5.0.0 - Autodesk)
Bifrost for Maya 2018 1.5.0.0 (HKLM\...\Bifrost for Maya 2018) (Version: - )
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 1.0.1 - Bitdefender)
Bitdefender Antivirus Free (HKLM\...\{1FCCF41D-5F00-4FE2-9653-162D0486C8B4}) (Version: 1.0.15.89 - Bitdefender)
BitTorrent (HKU\S-1-5-21-1781095109-3830667393-2323447585-1000\...\BitTorrent) (Version: 7.10.5.45312 - BitTorrent Inc.)
Blender (HKLM\...\{E29A1273-2E7A-40E7-AA63-428A11D59429}) (Version: 2.79.2 - Blender Foundation)
Camtasia Studio 8 (HKLM-x32\...\{A0FC961E-DC6D-4144-9277-ECDBB99D0AB9}) (Version: 8.5.1.1962 - TechSmith Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.44 - Piriform)
CDex - Open Source Digital Audio CD Extractor (HKLM-x32\...\CDex) (Version: 1.70.4.2009 - Georgy Berdyshev)
Cheat Engine 6.8.3 (HKLM\...\Cheat Engine 6.8.3_is1) (Version: - Cheat Engine)
Citra (HKU\S-1-5-21-1781095109-3830667393-2323447585-1015\...\{51e249c3-35d1-402a-8333-97b1f453d31c}) (Version: 1.0.0 - Citra Team)
CloneDVD2 (HKLM-x32\...\CloneDVD2) (Version: 2.9.3.0 - Elaborate Bytes)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.9.0.0650 - Disc Soft Ltd)
Disinstalla EPSON SX130 Series Printer (HKLM\...\EPSON SX130 Series) (Version: - SEIKO EPSON Corporation)
eMule (HKLM-x32\...\eMule) (Version: - )
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
Epson Software Updater (HKLM-x32\...\{B4F0E794-11F5-4971-85EC-6D7F2E4DAC68}) (Version: 4.4.3 - SEIKO EPSON CORPORATION)
Fallen Earth (HKLM-x32\...\GamersFirst Fallen Earth) (Version: - GamersFirst)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 77.0.3865.90 - Google LLC)
Google Earth Pro (HKLM\...\{70A0F34E-564B-4F93-ADD6-3BAEC6E44075}) (Version: 7.3.2.5776 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
Google+ Auto Backup (HKLM-x32\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google)
Gyazo 3.5.6.0 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version: - Nota Inc.)
HiPatch (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF000}) (Version: 5.1.2.0 - Hi-Rez Studios)
Hi-Rez Studios Games (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
HiSuite (HKLM-x32\...\Hi Suite) (Version: 1.0 - Huawei Technologies Co.,Ltd)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1323 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.0.0.1083 - Intel Corporation)
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation)
iTunes (HKLM\...\{164600BE-9CEC-44E6-9B38-2B12D5FE2342}) (Version: 12.6.0.100 - Apple Inc.)
Java 8 Update 181 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180181F0}) (Version: 8.0.1810.13 - Oracle Corporation)
Java SE Development Kit 8 Update 144 (HKLM-x32\...\{32A3A4F4-B792-11D6-A78A-00B0D0180144}) (Version: 8.0.1440.1 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LAV Filters 0.55.3 (HKLM-x32\...\lavfilters_is1) (Version: 0.55.3 - Hendrik Leppkes)
League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
Life is Strange: Complete Season 1 (HKLM-x32\...\Life is Strange: Complete Season 1_is1) (Version: - )
Malwarebytes versione 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes)
MediaTek Driver Packages version 5.14.53.00 (HKLM\...\MediaTek Driver Packages_is1) (Version: 5.14.53.00 - MediaTek.Inc.)
Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft .NET Framework 4.7 (Italiano) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1040) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office Language Pack 2010 - Italian/Italiano (HKLM-x32\...\Office14.OMUI.it-it) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Small Business Basics 2010 (HKLM-x32\...\Office14.SMALLBUSBASICS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{e9c79bb5-31ef-4a80-90e9-1a39971dae23}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{eb96e401-0158-4062-b443-aff1b34e69b3}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 x64 Additional Runtime - 14.12.25711 (HKLM\...\{7D02C46E-2953-3EB1-A5D5-7943C9D7684F}) (Version: 14.12.25711 - Microsoft Corporation)
Microsoft Visual C++ 2017 x64 Minimum Runtime - 14.12.25711 (HKLM\...\{043D5787-5988-3DE2-928D-3B6A75E2126E}) (Version: 14.12.25711 - Microsoft Corporation)
Microsoft Visual C++ 2017 x86 Additional Runtime - 14.12.25711 (HKLM-x32\...\{8FDCF95F-4756-34F4-9DA2-D708E7FAC504}) (Version: 14.12.25711 - Microsoft Corporation)
Microsoft Visual C++ 2017 x86 Minimum Runtime - 14.12.25711 (HKLM-x32\...\{6E894015-A182-3C1E-A7D2-3032CB2E1D43}) (Version: 14.12.25711 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{FD9D64F4-CAF5-3D23-845A-B843C78CC1A5}) (Version: 10.0.60830 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools per Office Runtime (x64) - Language Pack - ITA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - ITA) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Movie Maker (HKLM-x32\...\{312F7EE7-37D0-484D-B974-0CE1B8560C79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox (3.0.16) (HKLM-x32\...\Mozilla Firefox (3.0.16)) (Version: 3.0.16 (en-US) - Mozilla)
Mozilla Firefox 69.0.1 (x64 en-US) (HKLM\...\Mozilla Firefox 69.0.1 (x64 en-US)) (Version: 69.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 61.0.2 - Mozilla)
MtoA for Maya 2018 (HKU\S-1-5-21-1781095109-3830667393-2323447585-1000\...\MtoA2018) (Version: 2.0.1 - Solid Angle)
MySQL Connector/ODBC 5.1 (HKLM\...\{DD4937E6-77BF-4173-AD69-18D5B1C6D284}) (Version: 5.1.13 - Oracle Corporation)
NCSOFT Game Launcher (HKLM-x32\...\NCLauncher_NCWest) (Version: - NCSOFT)
Nero Burning ROM 10 (HKLM-x32\...\{7A5D731D-B4B3-490E-B339-75685712BAAB}) (Version: 10.2.11000.12.100 - Nero AG)
Nero Burning ROM 10 (HKLM-x32\...\{FE83F463-7E61-4B18-9FA0-B94B90A0B6B9}) (Version: 10.5.10300 - Nero AG)
Nero BurnRights 10 (HKLM-x32\...\{943CFD7D-5336-47AF-9418-E02473A5A517}) (Version: 4.2.10300.0.102 - Nero AG)
Nero Update (HKLM-x32\...\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}) (Version: 1.0.0018 - Nero AG)
No-IP DUC (HKLM-x32\...\NoIPDUC) (Version: 4.0.2 - Vitalwerks Internet Solutions LLC)
NVIDIA Driver 3D Vision 347.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 347.88 - NVIDIA Corporation)
NVIDIA Driver audio HD 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
NVIDIA Driver del controller 3D Vision 347.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 347.09 - NVIDIA Corporation)
NVIDIA Driver grafico 347.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.88 - NVIDIA Corporation)
NVIDIA Photoshop Plug-ins 64 bit (HKLM-x32\...\{5E386C5B-CDE7-435A-B5C9-EC73A1B0553A}) (Version: 8.50 - )
NVIDIA PhysX System Software 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Pacchetto driver Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/28/2014 11.0.0000.00000) (HKLM\...\092555911492C6959D2596D612F52DCA71881CA2) (Version: 08/28/2014 11.0.0000.00000 - Google, Inc.)
paint.net (HKLM\...\{E8FA8815-3817-4128-A814-E2EAC456ADF0}) (Version: 4.0.21 - dotPDN LLC)
Pale Moon 28.0.0.1 (x86 en-US) (HKLM-x32\...\Pale Moon 28.0.0.1 (x86 en-US)) (Version: 28.0.0.1 - Moonchild Productions)
Pannello di controllo NVIDIA 347.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 347.88 - NVIDIA Corporation) Hidden
PBE (HKLM-x32\...\PBE 1.0) (Version: 1.0 - Riot Games, Inc)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Raccolta foto (HKLM-x32\...\{86A1CEAD-EF47-47BB-AE79-DA8C09E15382}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.67.1226.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6782 - Realtek Semiconductor Corp.)
RogueKiller version 12.12.31.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 12.12.31.0 - Adlice Software)
Samsung Kies3 (HKLM-x32\...\{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16044.2 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16044.2 - Samsung Electronics Co., Ltd.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-008B-0000-0000-0000000FF1CE}_Office14.SMALLBUSBASICS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 Language Pack (KB2687449) 32-Bit Edition (HKLM-x32\...\{90140000-0100-0410-0000-0000000FF1CE}_Office14.OMUI.it-it_{B459ADCD-B09F-4C2D-B75A-5BCE4876F27A}) (Version: - Microsoft)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.11.4.1 - NVIDIA Corporation) Hidden
Skype versione 8.18 (HKLM-x32\...\Skype_is1) (Version: 8.18 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Supporto applicazioni Apple (32 bit) (HKLM-x32\...\{05E07D23-91E9-4E70-A4CC-EF505088F967}) (Version: 5.4.1 - Apple Inc.)
Supporto applicazioni Apple (64 bit) (HKLM\...\{741291DA-2B34-4D44-8FB6-58EDE21261D8}) (Version: 5.4.1 - Apple Inc.)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
The Sims 4 (HKLM-x32\...\{FF4D82FF-E0AB-48FF-8085-0B7F0C58C93E}) (Version: 1.0.797.20 - Electronic Arts)
Tomb Raider: Underworld 1.0 (HKLM-x32\...\Tomb Raider: Underworld) (Version: - )
Ultimate Unwrap3D Pro 3.50.36 (x64) Demo (HKLM\...\Ultimate Unwrap3D Pro 3.50.36 (x64) Demo_is1) (Version: 3.50.36 - Ultimate Unwrap3D Pro (x64) Demo)
Vegas Pro 13.0 (64-bit) (HKLM\...\{CDA02BF0-BFBC-11E3-AFA0-F04DA23A5C58}) (Version: 13.0.290 - Sony)
Video to Video (HKLM-x32\...\{7F95A744-78DA-4AED-A8F0-A0AF330B8411}_is1) (Version: - Media Converters)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinHTTrack Website Copier 3.49-2 (x64) (HKLM\...\WinHTTrack Website Copier_is1) (Version: 3.49.2 - HTTrack)
WinRAR 5.40 beta 3 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.3 - win.rar GmbH)
WO Mic Client (HKLM-x32\...\WOMic) (Version: - )
Wwise Launcher (HKLM-x32\...\{E88227BB-3682-4F7C-8443-18867DFEBA69}) (Version: 18.11.14.831 - Audiokinetic Inc.)
YouTube Downloader 5.0 HD version 5.0 (HKLM-x32\...\{19D5222A-2997-44DF-A41F-1806CB847A5D}_is1) (Version: 5.0 - Hexotic Software)
ZBrush 2018 (HKLM\...\ZBrush 2018 2018) (Version: 2018 - Pixologic)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1781095109-3830667393-2323447585-1000_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Program Files\Common Files\Autodesk Shared\DirectConnect2016 (64-bit)\bin\Aruba\Inventor Server\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-1781095109-3830667393-2323447585-1000_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Program Files\Common Files\Autodesk Shared\DirectConnect2016 (64-bit)\bin\Aruba\Inventor Server\Bin\TestServer.dll => No File
CustomCLSID: HKU\S-1-5-21-1781095109-3830667393-2323447585-1000_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Program Files\Common Files\Autodesk Shared\DirectConnect2016 (64-bit)\bin\Aruba\Inventor Server\Bin\TestServer.dll => No File
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-10-19] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-10-19] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2015-03-13] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes Corporation -> Malwarebytes)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

Shortcut: C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\XAMPP for Windows\XAMPP Setup.lnk -> C:\xampp\xampp_setup.bat (No File)
Shortcut: C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\XAMPP for Windows\XAMPP Shell.lnk -> C:\xampp\xampp_shell.bat (No File)
Shortcut: C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\XAMPP for Windows\XAMPP Uninstall.lnk -> C:\xampp\uninstall_xampp.bat (No File)

==================== Loaded Modules (Whitelisted) ==============

2013-12-30 22:16 - 2019-09-30 09:57 - 000026624 _____ () [File not signed] C:\Program Files (x86)\ASUS\AXSP\1.01.02\PEbiosinterface32.dll
2016-11-04 10:00 - 2009-08-11 22:22 - 000580096 _____ () [File not signed] C:\Windows\system32\ac3filter64.acm
2016-07-11 21:32 - 2016-05-21 10:19 - 000077312 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2013-01-31 16:20 - 2013-01-31 16:20 - 000503296 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel® Rapid Storage Technology\ISDI2.dll
2013-01-31 16:20 - 2013-01-31 16:20 - 000285696 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel® Rapid Storage Technology\PsiData.dll
2016-02-22 19:37 - 2016-02-22 19:37 - 000225280 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll
2017-08-07 03:02 - 2015-02-27 10:35 - 000489984 _____ (Newtonsoft) [File not signed] C:\Program Files (x86)\Wondershare\WAF\2.4.3.227\Newtonsoft.Json.dll
2015-04-02 16:40 - 2015-03-13 17:38 - 001404152 _____ (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [File not signed] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI64.dll
2017-08-07 03:02 - 2017-06-21 09:24 - 000087552 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Wondershare\WAF\2.4.3.227\WsAppCollect.dll
2017-08-07 03:02 - 2017-06-21 09:24 - 000198144 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Wondershare\WAF\2.4.3.227\WsAppCommon.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [480]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-12-18 08:45 - 2019-01-31 20:34 - 000000027 _____ C:\Windows\system32\drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1781095109-3830667393-2323447585-1000\Control Panel\Desktop\\Wallpaper ->
HKU\S-1-5-21-1781095109-3830667393-2323447585-1015\Control Panel\Desktop\\Wallpaper -> C:\Users\Computer\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: gusvc => 3
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SPDriverInstall.lnk => C:\Windows\pss\SPDriverInstall.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^ASUS^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2010 Screen Clipper and Launcher.lnk => C:\Windows\pss\OneNote 2010 Screen Clipper and Launcher.lnk.Startup
MSCONFIG\startupfolder: C:^Users^ASUS^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Ritaglio schermata e avvio di OneNote 2010.lnk => C:\Windows\pss\Ritaglio schermata e avvio di OneNote 2010.lnk.Startup
MSCONFIG\startupreg: AdobeGCInvoker-1.0 => "C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe"
MSCONFIG\startupreg: avgnt => "C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min
MSCONFIG\startupreg: Avira SystrayStartTrigger => "C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe"
MSCONFIG\startupreg: BlueStacks Agent => C:\Program Files (x86)\BlueStacks\HD-Agent.exe
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: CCleaner Smart Cleaning => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: DAEMON Tools Lite Automount => "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
MSCONFIG\startupreg: EpicGamesLauncher => "I:\$Programmi (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent
MSCONFIG\startupreg: Gyazo =>
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "I:\$Programmi (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: MicrosoftRuntime => C:\Users\Computer\AppData\Roaming\libraries\MicrosoftRuntimeUpdate.vbe
MSCONFIG\startupreg: MicrosoftRuntimeUpdate => C:\Users\Computer\AppData\Roaming\libraries\MicrosoftRuntimeUpdate.vbe
MSCONFIG\startupreg: ShadowPlay => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: uTorrent => "C:\Users\ASUS\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{719C953C-5CE9-4921-994F-B3A4FD6E4B45}] => (Allow) C:\Users\ASUS\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{EEF35FDB-F2DE-4063-B5FB-1653AD20AEDD}] => (Allow) C:\Users\ASUS\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{E21174B3-F34C-415C-BAB8-5DA8EDBCC33A}] => (Allow) C:\xampp\apache\bin\apache.exe (Apache Software Foundation) [File not signed]
FirewallRules: [{5CEBEC81-06D8-4747-931D-170DCD9BF1E4}] => (Allow) C:\xampp\apache\bin\apache.exe (Apache Software Foundation) [File not signed]
FirewallRules: [TCP Query User{69E5F138-77A2-47F1-99E2-4474A6C728F5}C:\users\asus\appdata\roaming\skype\nuova cartella (3)\nuova cartella (2)\v26 holograph emulator\bin\release\holograph emulator.exe] => (Allow) C:\users\asus\appdata\roaming\skype\nuova cartella (3)\nuova cartella (2)\v26 holograph emulator\bin\release\holograph emulator.exe (Holograph team) [File not signed]
FirewallRules: [UDP Query User{965760EF-D5FF-4FA9-8821-263FCF4AABB7}C:\users\asus\appdata\roaming\skype\nuova cartella (3)\nuova cartella (2)\v26 holograph emulator\bin\release\holograph emulator.exe] => (Allow) C:\users\asus\appdata\roaming\skype\nuova cartella (3)\nuova cartella (2)\v26 holograph emulator\bin\release\holograph emulator.exe (Holograph team) [File not signed]
FirewallRules: [{55E122F9-42DC-47F2-9FB3-E6C3A5938CC8}] => (Allow) C:\xampp\mysql\bin\mysql.exe (MySQL AB -> )
FirewallRules: [{BBA120F9-08AC-45B2-87CF-17F16658EEDA}] => (Allow) C:\xampp\mysql\bin\mysql.exe (MySQL AB -> )
FirewallRules: [{9C1C6EDE-668B-43D0-926E-E07D827FE431}] => (Allow) C:\xampp\mysql\bin\mysqld.exe (MySQL AB -> )
FirewallRules: [{8ADC8BA3-C3E2-4F9E-998E-B068FF4E3B4B}] => (Allow) C:\xampp\mysql\bin\mysqld.exe (MySQL AB -> )
FirewallRules: [{2EF83310-AE0F-44D2-84CA-BEA1A0850955}] => (Allow) C:\xampp\mysql\bin\mysqld.exe (MySQL AB -> )
FirewallRules: [{DD51F668-9164-44EE-AB51-D96B1E7AD1E4}] => (Allow) C:\xampp\mysql\bin\mysqld.exe (MySQL AB -> )
FirewallRules: [{E06881FD-9694-40B9-B875-BF284BF9C2D3}] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [File not signed]
FirewallRules: [{7C105C62-D22F-484E-A84A-CF5A5AE88A7A}] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [File not signed]
FirewallRules: [TCP Query User{EF346396-048B-4881-91D1-58BC5A407AFA}C:\users\asus\appdata\roaming\skype\nuova cartella (3)\nuova cartella (2)\v26 holograph emulator\bin\debug\holograph emulator.exe] => (Allow) C:\users\asus\appdata\roaming\skype\nuova cartella (3)\nuova cartella (2)\v26 holograph emulator\bin\debug\holograph emulator.exe (Holograph team) [File not signed]
FirewallRules: [UDP Query User{A5D0104C-37F7-49AC-ABCE-429EB483E670}C:\users\asus\appdata\roaming\skype\nuova cartella (3)\nuova cartella (2)\v26 holograph emulator\bin\debug\holograph emulator.exe] => (Allow) C:\users\asus\appdata\roaming\skype\nuova cartella (3)\nuova cartella (2)\v26 holograph emulator\bin\debug\holograph emulator.exe (Holograph team) [File not signed]
FirewallRules: [TCP Query User{2F607D5B-8CC3-49C4-9235-E0EE2657F84B}C:\program files\winhttrack\winhttrack.exe] => (Allow) C:\program files\winhttrack\winhttrack.exe (HTTrack) [File not signed]
FirewallRules: [UDP Query User{0C45E74E-3C8C-4F4E-B353-1D4F0ED196BF}C:\program files\winhttrack\winhttrack.exe] => (Allow) C:\program files\winhttrack\winhttrack.exe (HTTrack) [File not signed]
FirewallRules: [TCP Query User{B67E2727-3300-4851-B991-D25730A63B2D}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [File not signed]
FirewallRules: [UDP Query User{42B71DE1-7A2C-400C-A113-B8561B751747}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [File not signed]
FirewallRules: [TCP Query User{7038203C-075F-4B99-9547-345A64136771}C:\users\asus\appdata\roaming\skype\nabbo hotel\v26 holograph emulator\bin\release\holograph emulator.exe] => (Allow) C:\users\asus\appdata\roaming\skype\nabbo hotel\v26 holograph emulator\bin\release\holograph emulator.exe (Holograph team) [File not signed]
FirewallRules: [UDP Query User{1613DFA9-9F21-4C2B-AA09-7A02C7396B5F}C:\users\asus\appdata\roaming\skype\nabbo hotel\v26 holograph emulator\bin\release\holograph emulator.exe] => (Allow) C:\users\asus\appdata\roaming\skype\nabbo hotel\v26 holograph emulator\bin\release\holograph emulator.exe (Holograph team) [File not signed]
FirewallRules: [TCP Query User{FB05E5F1-C452-4EEE-8B16-FCDDC403C9E6}C:\users\asus\appdata\roaming\skype\nabbo hotel\pack old davinci v2 [habbo v1]\server old davinci v2 [flatfile]\old davinci v2 - privadas.exe] => (Allow) C:\users\asus\appdata\roaming\skype\nabbo hotel\pack old davinci v2 [habbo v1]\server old davinci v2 [flatfile]\old davinci v2 - privadas.exe (-) [File not signed]
FirewallRules: [UDP Query User{AE0F25CF-5213-46A8-8FD9-6E776B22C771}C:\users\asus\appdata\roaming\skype\nabbo hotel\pack old davinci v2 [habbo v1]\server old davinci v2 [flatfile]\old davinci v2 - privadas.exe] => (Allow) C:\users\asus\appdata\roaming\skype\nabbo hotel\pack old davinci v2 [habbo v1]\server old davinci v2 [flatfile]\old davinci v2 - privadas.exe (-) [File not signed]
FirewallRules: [TCP Query User{9A2C29EA-13E3-40A4-8B44-B1B53D87318B}C:\users\asus\appdata\roaming\skype\nabbo hotel\pack old davinci v2 [habbo v1]\server old davinci v2 [flatfile]\old davinci v2 - publicas.exe] => (Allow) C:\users\asus\appdata\roaming\skype\nabbo hotel\pack old davinci v2 [habbo v1]\server old davinci v2 [flatfile]\old davinci v2 - publicas.exe (-) [File not signed]
FirewallRules: [UDP Query User{8C2FDBE5-FC19-4717-A25B-566D190DBD6D}C:\users\asus\appdata\roaming\skype\nabbo hotel\pack old davinci v2 [habbo v1]\server old davinci v2 [flatfile]\old davinci v2 - publicas.exe] => (Allow) C:\users\asus\appdata\roaming\skype\nabbo hotel\pack old davinci v2 [habbo v1]\server old davinci v2 [flatfile]\old davinci v2 - publicas.exe (-) [File not signed]
FirewallRules: [{3242FD3C-CF38-4E41-B0D9-1D326246E628}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{3BE32F76-9CF4-43ED-AC1F-23B3845D8BD4}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{32BC0C47-9CFA-47CB-9506-42239781EF75}I:\programmi 2\xdccmule\mirc.exe] => (Allow) I:\programmi 2\xdccmule\mirc.exe (mIRC Co. Ltd.) [File not signed]
FirewallRules: [UDP Query User{8BBC2912-6BB6-4462-BC29-1F180B80B0F5}I:\programmi 2\xdccmule\mirc.exe] => (Allow) I:\programmi 2\xdccmule\mirc.exe (mIRC Co. Ltd.) [File not signed]
FirewallRules: [TCP Query User{B643E3C0-E02E-4B79-B68F-9399DEC6ED4E}C:\program files (x86)\emule\emule.exe] => (Allow) C:\program files (x86)\emule\emule.exe (hxxp://www.emule-project.net) [File not signed]
FirewallRules: [UDP Query User{29F54FB1-0D77-4454-9DE0-B68B15093BEC}C:\program files (x86)\emule\emule.exe] => (Allow) C:\program files (x86)\emule\emule.exe (hxxp://www.emule-project.net) [File not signed]
FirewallRules: [{7EAC84DA-FC9E-4293-BCD6-40CF8179A4C2}] => (Allow) LPort=8317
FirewallRules: [TCP Query User{719562A5-5B27-498F-B858-1F8CC168E59E}I:\$programmi (x86)\habbo\v26 holograph emulator\bin\release\holograph emulator.exe] => (Allow) I:\$programmi (x86)\habbo\v26 holograph emulator\bin\release\holograph emulator.exe (Holograph team) [File not signed]
FirewallRules: [UDP Query User{D09D5BA9-4759-47B4-B785-27DE5A673212}I:\$programmi (x86)\habbo\v26 holograph emulator\bin\release\holograph emulator.exe] => (Allow) I:\$programmi (x86)\habbo\v26 holograph emulator\bin\release\holograph emulator.exe (Holograph team) [File not signed]
FirewallRules: [{CB41DF0A-BE22-4931-AA08-EDBCEF5E2F84}] => (Allow) LPort=8126
FirewallRules: [TCP Query User{F31AD6C1-EBD9-4F53-8837-458A7586792D}I:\programmi 2\xdccmule\mirc.exe] => (Allow) I:\programmi 2\xdccmule\mirc.exe (mIRC Co. Ltd.) [File not signed]
FirewallRules: [UDP Query User{93F8D023-B2CE-432F-BA37-002FF67CFD37}I:\programmi 2\xdccmule\mirc.exe] => (Allow) I:\programmi 2\xdccmule\mirc.exe (mIRC Co. Ltd.) [File not signed]
FirewallRules: [TCP Query User{03B1B92A-AD13-4195-B747-0C3B54DCD244}C:\program files (x86)\emule\emule.exe] => (Allow) C:\program files (x86)\emule\emule.exe (hxxp://www.emule-project.net) [File not signed]
FirewallRules: [UDP Query User{89C5D001-C2A5-45E6-9062-AEFA316CC4B1}C:\program files (x86)\emule\emule.exe] => (Allow) C:\program files (x86)\emule\emule.exe (hxxp://www.emule-project.net) [File not signed]
FirewallRules: [TCP Query User{70D8E39F-7071-417C-8246-CCA738C6006F}C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe No File
FirewallRules: [UDP Query User{9CC81E11-7DA7-4DCA-BB6D-4A12F2A8BA47}C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe No File
FirewallRules: [TCP Query User{C949366D-7EBC-448B-9909-21BE5C89C47B}C:\users\computer_2\downloads\lolinstaller.exe] => (Allow) C:\users\computer_2\downloads\lolinstaller.exe (Garena Online Pte Ltd -> )
FirewallRules: [UDP Query User{06B4CA40-5EFF-4434-BAAE-DEBAA6429815}C:\users\computer_2\downloads\lolinstaller.exe] => (Allow) C:\users\computer_2\downloads\lolinstaller.exe (Garena Online Pte Ltd -> )
FirewallRules: [{BE13D659-FB08-4F4F-942E-37AC3388773A}] => (Allow) C:\Users\Computer_2\AppData\Roaming\uTorrent\uTorrent.exe No File
FirewallRules: [{E3B84CF6-6FF6-4FC7-8D96-6AE57D4DE3DE}] => (Allow) C:\Users\Computer_2\AppData\Roaming\uTorrent\uTorrent.exe No File
FirewallRules: [{57DDB25B-2CB5-465A-9F21-7934EF9A50E6}] => (Allow) C:\Users\Computer_2\AppData\Roaming\uTorrent\uTorrent.exe No File
FirewallRules: [{3B5CC651-BCCC-4AC5-9C9F-E90B83BFBD7B}] => (Allow) C:\Users\Computer_2\AppData\Roaming\uTorrent\uTorrent.exe No File
FirewallRules: [{A286D924-C618-46D2-B1D0-9515811CCA9A}] => (Allow) C:\Users\Computer_2\AppData\Roaming\uTorrent\uTorrent.exe No File
FirewallRules: [{A4102A26-95B1-4999-A3BE-15E18DBD6451}] => (Allow) C:\Users\Computer_2\AppData\Roaming\uTorrent\uTorrent.exe No File
FirewallRules: [{2C15897A-8FEB-4CED-97F2-78E0C6BA937A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe No File
FirewallRules: [{0CDAC442-07D6-4A68-A240-35F5E6E41B76}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe No File
FirewallRules: [{18C39BF6-C35E-4E2B-8C81-0E196EE86FE2}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe No File
FirewallRules: [{B523B6FD-21C3-4019-AB23-94E61C15CB0F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe No File
FirewallRules: [{CC961186-5F25-4F00-847F-30BB2EF85E48}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{E9BFA387-BBAD-4E53-A576-46B32D97ED24}I:\$programmi (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) I:\$programmi (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe No File
FirewallRules: [UDP Query User{4C6CD757-A4D3-4DB6-A1AF-A22260B60AD3}I:\$programmi (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) I:\$programmi (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe No File
FirewallRules: [{CB4675BD-35DE-40EC-AE40-3AF10D7898EF}] => (Allow) I:\$Programmi (x86)\Steam\Steam.exe No File
FirewallRules: [{4CDCC9DB-FF15-47A8-A2CB-EDEEAA280FC7}] => (Allow) I:\$Programmi (x86)\Steam\Steam.exe No File
FirewallRules: [{EDE22387-C432-4058-B884-7FC95DEA3D5A}] => (Allow) I:\$Programmi (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{D12B0F2B-C4EF-4B80-B39C-10495F3741E1}] => (Allow) I:\$Programmi (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{A61165E0-EFA9-479A-87D5-FA150B3C0234}] => (Allow) I:\$Programmi (x86)\Steam\steamapps\common\Battlerite\Battlerite.exe No File
FirewallRules: [{0B7F0F84-5C5B-4C97-8A23-EADCB410B614}] => (Allow) I:\$Programmi (x86)\Steam\steamapps\common\Battlerite\Battlerite.exe No File
FirewallRules: [{0CDF2252-730B-490E-BF7A-E8C1755FB8FE}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{73F74701-8434-4183-B933-E3E790335C2D}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{6E726F59-03D0-4CD1-AB19-C2286EB092FF}I:\$programmi (x86)\fallout 4\fallout 4\fallout4.exe] => (Block) I:\$programmi (x86)\fallout 4\fallout 4\fallout4.exe (Bethesda Softworks) [File not signed]
FirewallRules: [UDP Query User{107454B3-FD94-4327-946A-B44D2C9221E7}I:\$programmi (x86)\fallout 4\fallout 4\fallout4.exe] => (Block) I:\$programmi (x86)\fallout 4\fallout 4\fallout4.exe (Bethesda Softworks) [File not signed]
FirewallRules: [TCP Query User{57946B07-9C33-436E-924C-350A7D99248E}I:\$programmi (x86)\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{AFFCD63D-9E10-4C17-B0C1-7EE0B5464185}I:\$programmi (x86)\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{ABEB0CD8-118C-49E9-A5D4-1943F2EF01A7}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.1.148\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.1.148\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{A24A64F5-9415-4EC4-B91F-628E4947C11D}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.1.148\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.1.148\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{F70AB501-9DD7-4653-9D21-8403499A1CA8}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.1.149\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.1.149\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{1D32945D-C555-4750-9D47-BC61204EBC8A}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.1.149\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.1.149\deploy\leagueclient.exe No File
FirewallRules: [{3866753E-124B-4D55-B89B-D7FC791778A3}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{22D1C8D7-84A0-44DE-AC42-0994624806CA}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{9F24F0B4-B8EA-48C1-A6D7-2661FBE8CA66}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{D8D92952-E8EF-4B05-A465-0410BCD6E123}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe No File
FirewallRules: [{1C7725F6-2A09-41EE-A6CF-1FFEC56C49E5}] => (Allow) I:\$Programmi (x86)\WOMic\womicclient.exe () [File not signed]
FirewallRules: [{9D2872A9-9F82-43B0-96CA-A502B51AF8FD}] => (Allow) I:\$Programmi (x86)\WOMic\womicclient.exe () [File not signed]
FirewallRules: [{FDCF8283-888F-48CC-95AC-63B9FE75AC2D}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F427CE0E-4705-4F14-B5B1-669B0637A059}] => (Allow) LPort=2869
FirewallRules: [{4CF3A2D5-E40B-4E3A-B32E-3AD8ADB946A1}] => (Allow) LPort=1900
FirewallRules: [{9870317C-4428-485E-B03C-BF79698B1D6E}] => (Allow) I:\$Programmi (x86)\WOMic\womicclient.exe () [File not signed]
FirewallRules: [{E03315AC-BE24-494C-BFF8-C33FC9875B16}] => (Allow) I:\$Programmi (x86)\WOMic\womicclient.exe () [File not signed]
FirewallRules: [{6899DB35-D4A6-4872-B648-2EDD5166343D}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{C5024CAF-E136-4282-82B7-D62F3FF778E4}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{841ED0EB-BF98-4E73-B180-6839B605D43C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{AB0E42A1-3B1B-4824-BA68-5CD9C8E3931A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{329FF780-4D41-4310-9CCE-D2220B0AFF99}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2D4F111C-75B2-47B3-A76A-B30956A1C1AC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B4700A1F-8823-47DB-9D9B-92C45A233918}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{A36523EA-FC14-4B07-BD5D-05DB9B005022}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{70B931A8-706B-40A8-9B65-96CE82C81524}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{860AC940-E6EF-4916-80AC-90973222D77E}C:\users\asus\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\asus\appdata\local\akamai\netsession_win.exe (Akamai Technologies, Inc. -> Akamai Technologies, Inc.)
FirewallRules: [UDP Query User{6C327788-D7FF-4AC7-AA5B-EC21B896F23A}C:\users\asus\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\asus\appdata\local\akamai\netsession_win.exe (Akamai Technologies, Inc. -> Akamai Technologies, Inc.)
FirewallRules: [TCP Query User{D0914E2F-F212-45B2-B4E0-13A858794942}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{4FB4E2C2-5BDE-4B45-A952-F386CB98254C}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{9114F3D0-9B01-41C6-AE57-7B7B09A93EC1}C:\users\asus\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\asus\appdata\local\akamai\netsession_win.exe (Akamai Technologies, Inc. -> Akamai Technologies, Inc.)
FirewallRules: [UDP Query User{AC9FE17B-AD7D-4832-8663-2C361F6FA640}C:\users\asus\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\asus\appdata\local\akamai\netsession_win.exe (Akamai Technologies, Inc. -> Akamai Technologies, Inc.)
FirewallRules: [TCP Query User{900C3607-1C80-49FB-B7D3-79504FC3ADE2}I:\$programmi (x86)\hi-rez studios\hirezgames\smite\binaries\win64\smite.exe] => (Allow) I:\$programmi (x86)\hi-rez studios\hirezgames\smite\binaries\win64\smite.exe No File
FirewallRules: [UDP Query User{384BC376-1FFC-4E91-BD3B-FBE8C565540F}I:\$programmi (x86)\hi-rez studios\hirezgames\smite\binaries\win64\smite.exe] => (Allow) I:\$programmi (x86)\hi-rez studios\hirezgames\smite\binaries\win64\smite.exe No File
FirewallRules: [TCP Query User{6D1AB711-29AB-49C4-8D21-F8B5535BA852}I:\$programmi (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) I:\$programmi (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
FirewallRules: [UDP Query User{BF7A7DF5-EC29-4136-8CAA-3BE8C57CA860}I:\$programmi (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) I:\$programmi (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
FirewallRules: [TCP Query User{DF02F720-2FDB-4244-8AE2-3A4B86929CFD}I:\$programmi (x86)\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) I:\$programmi (x86)\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe No File
FirewallRules: [UDP Query User{383CABFE-2B21-4F7B-98F5-F61971B4414B}I:\$programmi (x86)\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) I:\$programmi (x86)\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe No File
FirewallRules: [TCP Query User{3FC725A1-D17E-4509-8F45-846266F08E6C}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{D5B2423E-DE56-4722-BBDA-431D56E8BD22}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{40BE3111-47EF-4DF7-B4ED-ADDFE456BAF8}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{C6000190-F626-43CA-A8C6-6BFDFFB66A75}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe No File
FirewallRules: [{09DA8B42-3869-42AF-84A9-44A1FEEA3A2E}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe No File
FirewallRules: [{76DA8A6E-5F0E-4FCF-B90E-9431B174AAB7}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe No File
FirewallRules: [{34258737-13EC-4CD5-8527-4D453E471911}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{9437D9BC-47B6-40F1-A17A-5A78C78C2F3E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{4D4C4731-E6DE-49E0-BB1D-925936DAB377}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{BDB5871E-3D7D-4D6C-96E7-6288BACC69B9}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{0BFB805E-C398-44B3-92C4-CC63D84E4B0E}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.8\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.8\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{50E88CBC-95B6-4528-9B98-979D8955B94F}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.8\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.8\deploy\leagueclient.exe No File
FirewallRules: [{38B5A9C3-506F-48BD-BCAD-C840657FE402}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.8\deploy\leagueclient.exe No File
FirewallRules: [{974FF7A4-4507-40FA-8DE0-D6040730CEC3}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.8\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{BD53BF98-295E-4BFC-A82A-0190809A3DF3}I:\$programmi (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) I:\$programmi (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
FirewallRules: [UDP Query User{0990C0CF-D722-4F4F-B983-EABCD8CB72FA}I:\$programmi (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) I:\$programmi (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
FirewallRules: [TCP Query User{3A7BE1E2-75A4-4858-AAF0-F9582671D055}I:\$programmi (x86)\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Block) I:\$programmi (x86)\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe No File
FirewallRules: [UDP Query User{5CE0626A-0382-473B-B3E6-F7D254FF3CBF}I:\$programmi (x86)\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Block) I:\$programmi (x86)\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe No File
FirewallRules: [TCP Query User{A82043B0-612E-4783-8E12-952ABFCB8B28}I:\$programmi (x86)\hi-rez studios\hirezgames\smite\binaries\win64\smite.exe] => (Block) I:\$programmi (x86)\hi-rez studios\hirezgames\smite\binaries\win64\smite.exe No File
FirewallRules: [UDP Query User{76A6F7B4-E5B5-4034-BDB6-758ADEFE0A4F}I:\$programmi (x86)\hi-rez studios\hirezgames\smite\binaries\win64\smite.exe] => (Block) I:\$programmi (x86)\hi-rez studios\hirezgames\smite\binaries\win64\smite.exe No File
FirewallRules: [{FA59ED44-E7DD-45CD-ADE4-7159398395A2}] => (Allow) I:\$Programmi (x86)\Pale Moon\palemoon.exe (Moonchild Productions) [File not signed]
FirewallRules: [{6968999B-29EF-4011-BABF-7A498BCB65DB}] => (Allow) I:\$Programmi (x86)\Pale Moon\palemoon.exe (Moonchild Productions) [File not signed]
FirewallRules: [TCP Query User{8C3D56B0-365C-4558-9278-2FFA95A81261}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{408F6918-3F0C-4E97-88EE-0769CB929449}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe No File
FirewallRules: [{7B89CEFE-A59E-4513-B1DA-FBA1CB9AC260}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe No File
FirewallRules: [{5CACBE94-5070-4278-8B19-508E61098548}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{B7397997-E882-4AEA-8762-BE694229B05D}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.18\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.18\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{4A18A4D1-ED2C-4CC9-AF7F-82C2B328BB82}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.18\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.18\deploy\leagueclient.exe No File
FirewallRules: [{E982D061-A200-4C0A-A529-B71D9DB8BE4F}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.18\deploy\leagueclient.exe No File
FirewallRules: [{735DE83E-9FB0-403B-9B25-A7E1F3738CB5}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.18\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{EE4CB775-884E-4E74-B8E9-CBDE6EB3664A}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.19\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.19\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{EB5B6540-6B6D-4425-B0DC-697AC930A4ED}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.19\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.19\deploy\leagueclient.exe No File
FirewallRules: [{C50EDCDD-DFC2-43BF-A660-8D123F3CE949}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.19\deploy\leagueclient.exe No File
FirewallRules: [{41F1BD84-334C-4B58-AA0F-4E721276B434}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.19\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{6B6108B9-E71E-4FEF-85F1-B26D16C3EDDA}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.161\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.161\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{343AA350-D374-4E8F-A866-F15C37365B89}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.161\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.161\deploy\leagueclient.exe No File
FirewallRules: [{CAF6D72F-524D-4A97-82DD-82405AB69751}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.161\deploy\leagueclient.exe No File
FirewallRules: [{C473BB74-127A-4C91-9019-6FA82831D344}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.161\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{FF4E4FBE-7ADC-4225-A762-82B8B2146152}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.162\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.162\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{AB7B0D51-BE0B-424C-A41B-049CB0B1FF64}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.162\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.162\deploy\leagueclient.exe No File
FirewallRules: [{CFC999F6-A651-4328-A528-F15948772D67}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.162\deploy\leagueclient.exe No File
FirewallRules: [{660B2AFD-84D1-417D-B602-E97836299DB7}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.162\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{6114D69D-A8B5-44DF-B891-FEBB4F1B83CF}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{0CE6817B-2754-4105-A04A-5BD5A2930254}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe No File
FirewallRules: [{53D20362-D907-4B73-9A5F-610DDC9CE30B}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe No File
FirewallRules: [{0DDE5AEE-CD36-48E9-A86F-BF108F251216}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe No File
FirewallRules: [{F5AF29FD-EC3D-44B9-8AAC-9D66132E54CE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{476BD4D6-45F4-419D-BA5C-F08559227036}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{8A2333B5-CFB2-4C07-B2DC-585B77BDB1A9}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{9A2F8310-0183-4A2F-9E6D-BADD2261C0A7}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{41CF67A8-5B8D-4A62-85EC-28196B99FC42}] => (Allow) I:\$Programmi (x86)\Steam\steamapps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{3CA1707C-FA18-43A3-85B9-57CC70C0EFD4}] => (Allow) I:\$Programmi (x86)\Steam\steamapps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [TCP Query User{7A8A54BF-DA16-448B-8F6A-06552A5D664B}I:\$programmi (x86)\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) I:\$programmi (x86)\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [UDP Query User{138DB96E-E695-4088-87F8-F4739B1A57FC}I:\$programmi (x86)\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) I:\$programmi (x86)\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{70BD6F8A-33F3-45D9-9AE3-54FDB2EDF536}] => (Block) I:\$programmi (x86)\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{CE035340-DCA8-4FCF-9662-7181D134416C}] => (Block) I:\$programmi (x86)\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [TCP Query User{71F54278-3CF9-4421-A721-BF950B21399E}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.164\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.164\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{F30AC84E-AB3C-45A3-B5B6-74DCA811A8ED}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.164\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.164\deploy\leagueclient.exe No File
FirewallRules: [{2FABCA51-5924-4A34-A7BD-246BB538AF78}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.164\deploy\leagueclient.exe No File
FirewallRules: [{A1AC20C9-C69F-4816-B2B0-9F8A0FE7D301}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.164\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{6BA0CFE4-6118-43C7-9C07-359CD262DE42}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.165\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.165\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{48AA7683-20FD-4754-8FFD-8910AD9CD30C}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.165\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.165\deploy\leagueclient.exe No File
FirewallRules: [{7C85FE72-86A2-4DCB-AB36-204A9082F2DA}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.165\deploy\leagueclient.exe No File
FirewallRules: [{78C2EDA7-F5B3-4D61-8E75-BE8935B15C82}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.165\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{C059A443-D661-4DFD-94B1-D32374A2A246}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{9DC00E84-8018-4C93-ADCB-D5DA7970D0B0}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe No File
FirewallRules: [{78BCC960-643C-43C7-A8EF-C12FB5BDC017}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe No File
FirewallRules: [{6ECB297F-67DA-4AF6-A8CC-D3960B2CA8F6}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{37277F31-4827-482F-A9FE-6F6FC7E06BD5}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.167\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.167\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{C7EF7C32-6FFE-4931-9875-185537D17F89}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.167\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.167\deploy\leagueclient.exe No File
FirewallRules: [{33B55C87-91D2-458D-8CF0-03D5BCF53323}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.167\deploy\leagueclient.exe No File
FirewallRules: [{B16F2C9E-1B32-4133-B176-841E7D29EB8F}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.167\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{DE8A960F-A611-4CA5-991A-E70FF2436767}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.38\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.38\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{1F25BBB4-A3DC-4229-A1BF-70765F7EFD1D}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.38\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.38\deploy\leagueclient.exe No File
FirewallRules: [{458EACDA-5BB1-470E-B92D-3CD968E11C13}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.38\deploy\leagueclient.exe No File
FirewallRules: [{FAD42C14-C13E-4C43-81E0-35DA51D1241D}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.38\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{CCB04808-67B9-4EA0-A20B-CDA0DD6B1789}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{B3DA7E9A-6AD5-47C2-9047-0EA2BAEC73FE}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe No File
FirewallRules: [{4A6959E3-DBB7-446F-8E84-508C8E79E335}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe No File
FirewallRules: [{44B596B4-AF41-4E55-AF38-6F2109236C01}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe No File
FirewallRules: [{A058251D-8DBF-45C2-B926-D527E23DBF2E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{909ECB6D-A656-471E-AD48-D86C605475DD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{707AE347-EC91-4BA1-BB19-F6947279629E}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.44\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.44\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{98F16D7E-AA78-4A0B-8F90-1021597699FE}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.44\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.44\deploy\leagueclient.exe No File
FirewallRules: [{D9567739-98DB-474D-AB76-E57BD4A99841}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.44\deploy\leagueclient.exe No File
FirewallRules: [{41D7C57F-2E2A-4A7D-B5BE-AE76080916FA}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.44\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{3EAD587F-9B62-4D82-B7D5-FDF08EDFFD9A}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.170\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.170\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{ACACB392-20AC-4009-9CCE-B29A80CED493}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.170\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.170\deploy\leagueclient.exe No File
FirewallRules: [{BA4A6F6F-A40A-4078-A34A-65829F04308A}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.170\deploy\leagueclient.exe No File
FirewallRules: [{19B9D67F-0E38-463E-888B-AEEB17078809}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.170\deploy\leagueclient.exe No File
FirewallRules: [{F6FD0426-4B73-40EB-897B-08E00E1D9964}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [TCP Query User{88FF4800-06FC-4B35-9AAC-8FCF584BBCEE}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.46\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.46\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{AAA120BB-1611-4698-B2BB-C86E8880F626}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.46\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.46\deploy\leagueclient.exe No File
FirewallRules: [{E56834FA-5858-4419-B1C1-E8BE89137EB0}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.46\deploy\leagueclient.exe No File
FirewallRules: [{42031C12-98A7-4A93-8E08-871462EB584A}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.46\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{1E0DEF2C-F7E1-44C9-92E6-2896920BD945}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.171\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.171\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{4B75373B-1E4D-49E6-9ACF-5A9156CA5C44}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.171\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.171\deploy\leagueclient.exe No File
FirewallRules: [{D30A6391-3C03-4ACF-A146-5156D241BC5C}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.171\deploy\leagueclient.exe No File
FirewallRules: [{D89462F6-0D0C-4157-9959-56A6F0753FAC}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.171\deploy\leagueclient.exe No File
FirewallRules: [{7DA448C4-24F3-46E6-9DF0-7D9B04FF47FF}] => (Allow) C:\Program Files (x86)\Audiokinetic\Wwise 2018.1.3.6784\Authoring\x64\Release\bin\Wwise.exe (Audiokinetic Inc.) [File not signed]
FirewallRules: [{2E0CED27-6781-4D2F-B652-FF56CD236DAF}] => (Allow) C:\Program Files (x86)\Audiokinetic\Wwise 2018.1.3.6784\Authoring\x64\Release\bin\Wwise.exe (Audiokinetic Inc.) [File not signed]
FirewallRules: [TCP Query User{A1D7287A-3B61-46C5-9705-BE5C9A1743EA}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.172\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.172\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{24177603-8497-4740-B4BC-599555BD1B38}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.172\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.172\deploy\leagueclient.exe No File
FirewallRules: [{14CDF1EE-FA2F-48C3-8927-A0CB164F2176}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.172\deploy\leagueclient.exe No File
FirewallRules: [{AF7FAF3D-5FEE-44A6-A965-9A5CBBCCC5DA}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.172\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{82E994A8-50C6-421F-94FE-A0787174BE59}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.57\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.57\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{AC0AE876-7BEE-4A05-A18C-8BA066E0296E}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.57\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.57\deploy\leagueclient.exe No File
FirewallRules: [{77D6F776-8C7A-41E4-B023-4F0A10AFEC6E}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.57\deploy\leagueclient.exe No File
FirewallRules: [{3C648FDE-F609-4F43-AF29-59AE344238BD}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.57\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{657C491F-CFE0-4919-AE66-454C7AB8F5BF}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.58\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.58\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{AAEB6D82-5470-420A-B253-8A596AEDCE9E}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.58\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.58\deploy\leagueclient.exe No File
FirewallRules: [{81F98F0B-CE05-4F40-A02D-FABD52563CA3}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.58\deploy\leagueclient.exe No File
FirewallRules: [{1EBEA43E-1C5F-47AB-A487-6A067D9BC98A}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.58\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{AC3F6FC5-F4D4-4BF0-BD7A-7000E5AE4C98}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.59\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.59\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{07A319E8-69E9-40C7-A95D-62460CF5704E}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.59\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.59\deploy\leagueclient.exe No File
FirewallRules: [{6B7A83CC-9F48-4DA8-AD53-1474265688C5}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.59\deploy\leagueclient.exe No File
FirewallRules: [{E55364C9-FDD0-463C-B560-D45B13607237}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.59\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{2AFA1643-A3FD-4D65-AE15-D4E0D1569029}I:\$programmi (x86)\fallout 4\fallout 4\fallout4.exe] => (Block) I:\$programmi (x86)\fallout 4\fallout 4\fallout4.exe (Bethesda Softworks) [File not signed]
FirewallRules: [UDP Query User{F70D0270-DE17-484C-84B3-6861A44DDEEE}I:\$programmi (x86)\fallout 4\fallout 4\fallout4.exe] => (Block) I:\$programmi (x86)\fallout 4\fallout 4\fallout4.exe (Bethesda Softworks) [File not signed]
FirewallRules: [TCP Query User{85EE690D-697D-431B-B72F-D6BA75A827AF}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.64\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.64\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{D32D51B9-61CE-4E04-A609-8B92919E2CD9}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.64\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.64\deploy\leagueclient.exe No File
FirewallRules: [{98DC0AAF-B3ED-4D32-8234-F958FE6E8BB4}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.64\deploy\leagueclient.exe No File
FirewallRules: [{0371E0AE-41B6-41FA-AB7A-91578AC8325D}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.64\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{ABB84E36-46F8-415F-999A-36C422EA13FC}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.65\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.65\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{A94BCD36-5162-4F4C-9AB2-9A19FDE133B0}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.65\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.65\deploy\leagueclient.exe No File
FirewallRules: [{9435E4F5-DCBD-4632-80D1-0051F2B40908}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.65\deploy\leagueclient.exe No File
FirewallRules: [{3443FFEC-0A37-4904-968D-D00D1777FFB6}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.65\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{D16971AA-44A9-4B67-8CAA-29ED26A3B51E}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.174\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.174\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{DE4EC9EF-AF8C-4EAF-95AB-DA523FFBF209}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.174\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.174\deploy\leagueclient.exe No File
FirewallRules: [{1A8102C4-F948-4697-9359-1524CA61F7A3}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.174\deploy\leagueclient.exe No File
FirewallRules: [{FA7A7658-84AE-407D-867A-824780642AE1}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.174\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{E51B1A23-6742-4C1D-B653-491082B753B9}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.66\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.66\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{21841B17-0A5D-4B50-8851-03938D86CA82}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.66\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.66\deploy\leagueclient.exe No File
FirewallRules: [{24E7B6AA-4964-47A1-8AEB-7E0947EB9B72}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.66\deploy\leagueclient.exe No File
FirewallRules: [{05EDDF5A-C72D-429B-B0E0-451C178DFA2D}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.66\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{8BDD6833-8E1C-41C0-B3C9-969D45A85B3B}I:\$programmi (x86)\overwatch\overwatch.exe] => (Allow) I:\$programmi (x86)\overwatch\overwatch.exe No File
FirewallRules: [UDP Query User{A65D10C4-61B8-406A-957E-B7D79F19140C}I:\$programmi (x86)\overwatch\overwatch.exe] => (Allow) I:\$programmi (x86)\overwatch\overwatch.exe No File
FirewallRules: [{07C2833E-5CBE-486B-81BF-2F3EA053DA26}] => (Block) I:\$programmi (x86)\overwatch\overwatch.exe No File
FirewallRules: [{9E8AAD97-2945-4060-A7C7-CECF9A49F8DB}] => (Block) I:\$programmi (x86)\overwatch\overwatch.exe No File
FirewallRules: [TCP Query User{503F379E-1022-41F3-A0C4-080A6A5E50E7}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.67\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.67\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{F70890A2-C583-46F0-9E5C-9BA83294300B}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.67\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.67\deploy\leagueclient.exe No File
FirewallRules: [{EE7843B5-747F-4A4A-A83A-396A7C725AE1}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.67\deploy\leagueclient.exe No File
FirewallRules: [{934F45AC-48E4-4696-B7D9-5DEAAC80D702}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.67\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{87D994F2-4F33-48B9-BC05-46C60EA5D7E4}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.175\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.175\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{F0B3DC92-C001-4257-82E3-10E04071850A}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.175\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.175\deploy\leagueclient.exe No File
FirewallRules: [{9A729903-A9EF-49D0-83E6-FFF48BC0C87D}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.175\deploy\leagueclient.exe No File
FirewallRules: [{FC4372B5-46F0-40E0-8218-FB7D7D71FF37}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.175\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{C2E7BE0C-7592-4BE9-9D88-7A170C5370CA}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.70\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.70\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{B9450F44-34F4-4A3B-9093-8FB76EF54761}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.70\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.70\deploy\leagueclient.exe No File
FirewallRules: [{501D7DC7-C251-406E-852F-9EB5715C8DC0}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.70\deploy\leagueclient.exe No File
FirewallRules: [{C57E18FF-4704-4BC5-AA46-7D25B6D1F7D8}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.70\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{98D3F150-77DE-451A-97B4-3D1B4FE58253}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.72\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.72\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{F003589B-F8FC-4BC5-8BED-5E43BE275415}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.72\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.72\deploy\leagueclient.exe No File
FirewallRules: [{C49C6152-C791-4776-A96E-EB4BD50CD5BF}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.72\deploy\leagueclient.exe No File
FirewallRules: [{50B92031-7D55-4B67-B762-6F2061B6F976}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.72\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{C2403A60-DF53-48A6-ABE7-695D23F3B9C2}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.177\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.177\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{DAFDFEB1-DF65-475F-84A3-6DDBFB021318}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.177\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.177\deploy\leagueclient.exe No File
FirewallRules: [{8A22BB99-0691-4B68-BB4B-4241E8B22D6B}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.177\deploy\leagueclient.exe No File
FirewallRules: [{0933A2BC-BB7F-433D-9973-6E91FDCEA60D}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.177\deploy\leagueclient.exe No File
FirewallRules: [{0A47638F-D8FB-47C3-92A6-1ED1F344877C}] => (Allow) I:\$Programmi (x86)\League of Legends\League of Legends\LeagueClient.exe (Riot Games, Inc. -> )
FirewallRules: [{ECEA46AE-D7C9-4291-9E89-6603851CE9A7}] => (Allow) I:\$Programmi (x86)\League of Legends\League of Legends\LeagueClient.exe (Riot Games, Inc. -> )
FirewallRules: [TCP Query User{6AB27BFE-D59E-44F5-87A6-FE65F14393B4}C:\program files\java\jre1.8.0_181\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_181\bin\javaw.exe
FirewallRules: [UDP Query User{8EB30D4B-2449-4928-8CAF-80718410982A}C:\program files\java\jre1.8.0_181\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_181\bin\javaw.exe
FirewallRules: [{25EA3527-38FF-43D7-9398-B3F3BABF6F46}] => (Block) C:\program files\java\jre1.8.0_181\bin\javaw.exe
FirewallRules: [{EAE75241-5AEE-4A9F-A1A4-82509BF6FC18}] => (Block) C:\program files\java\jre1.8.0_181\bin\javaw.exe
FirewallRules: [TCP Query User{10B65860-9696-4E58-A3EB-0E32858322C4}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{5048E5B5-AB62-4A96-A9DE-4E65A8B45C85}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe No File
FirewallRules: [{F5CE770A-D392-422F-9F62-4AD2EFAB9C5D}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe No File
FirewallRules: [{831BF03F-8E35-4176-862B-FD571C96FC7D}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{5047A585-9297-40A5-BC78-9282B9968117}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.82\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.82\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{1B201248-DEFD-43C6-8B2A-30E47D89A874}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.82\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.82\deploy\leagueclient.exe No File
FirewallRules: [{0983ADC1-D9A8-49A8-A8B2-F8DABCE04F14}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.82\deploy\leagueclient.exe No File
FirewallRules: [{6C7B943A-500D-4B20-A164-05B7767F9F13}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.82\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{70F46FC7-7E2C-44A1-A7AC-39F4FE720FE1}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.83\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.83\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{5C5116DA-5D2E-4888-A6A0-EA39D339C481}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.83\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.83\deploy\leagueclient.exe No File
FirewallRules: [{CB5B26A8-2FAF-428A-B8CF-F67B9D2B048C}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.83\deploy\leagueclient.exe No File
FirewallRules: [{8266019D-4D14-4FEB-99BC-2BAE31BDE72C}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.83\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{33DBA8DA-6874-4D57-BD8E-A076045279DC}I:\$programmi (x86)\steam\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe] => (Allow) I:\$programmi (x86)\steam\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe () [File not signed]
FirewallRules: [UDP Query User{5E354D7E-A249-4354-8723-B013AD7DCC22}I:\$programmi (x86)\steam\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe] => (Allow) I:\$programmi (x86)\steam\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe () [File not signed]
FirewallRules: [{35D3BFFD-958D-40AB-B4A8-910255A4AC59}] => (Block) I:\$programmi (x86)\steam\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe () [File not signed]
FirewallRules: [{3B55A233-C620-4A96-8EDA-74BA08A40354}] => (Block) I:\$programmi (x86)\steam\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe () [File not signed]
FirewallRules: [TCP Query User{C62907FB-00BF-4B01-AC61-65BAD67878CB}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.85\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.85\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{348B04C0-8C12-47AC-9856-9EB79DFE6FF5}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.85\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.85\deploy\leagueclient.exe No File
FirewallRules: [{6CF4C8A3-A2B6-4965-B36A-245E2AA2FCB4}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.85\deploy\leagueclient.exe No File
FirewallRules: [{3DD9A3C9-32B8-4D2A-B41A-0AEC5D1A8F2C}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.85\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{7B78227F-1CA1-4EA1-AAA5-2ABCB6F4CCD3}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{A7A4ED75-BF46-421A-A8B8-762D9CDABA0C}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe No File
FirewallRules: [{5FB8922D-51AA-4238-8293-4B06618F55FF}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe No File
FirewallRules: [{45C56576-24AF-4A30-9A2C-66B4C4BCFFF9}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{C72E1431-AB37-4014-B399-9AAEEFCA6C78}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.86\deploy\leagueclient.exe] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.86\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{1B8531F9-BF0C-44CB-8BEA-B7EE98656226}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.86\deploy\leagueclient.exe] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.86\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{2188097A-C030-4617-9499-9D06C50E68F1}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.88\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.88\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{C5ED7462-567F-473E-A042-B4DB27FB94F9}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.88\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.88\deploy\leagueclient.exe No File
FirewallRules: [{2BDC15CD-CBC7-4671-A0A7-7572A8DE0CE3}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.88\deploy\leagueclient.exe No File
FirewallRules: [{C1A1A587-F364-4E8B-A368-7949905F1C07}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.88\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{CFFA920A-8F48-4CE1-87E5-EE32E1D25E24}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.89\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.89\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{465A1DB4-E66F-4CFE-AC16-279B1C16098C}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.89\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.89\deploy\leagueclient.exe No File
FirewallRules: [{862B5D1B-2E33-4401-A3FA-553736C6E6D2}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.89\deploy\leagueclient.exe No File
FirewallRules: [{8D5946FD-5DA9-4BEE-9C87-2DF9D5B63059}] => (Block) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.89\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{8C08796D-1B4F-4804-93A4-26D10EFA238D}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{0BA1BA10-D3BD-4418-BF1D-7F97A1D68E20}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe No File
FirewallRules: [{4F7897BE-FCA9-48B2-AB55-6DAD1184400A}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe No File
FirewallRules: [{57E713DE-5A6D-4D3C-8BE7-8E4A5D1DA5C4}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{57B3A700-1196-456D-9677-BA7AC2C68FA4}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{3745A873-71BD-4729-9CDE-5C5292EFF97C}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe No File
FirewallRules: [{DD6D81F4-A8CD-4B03-8EB6-54AC90F299F5}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe No File
FirewallRules: [{DB3ECD35-D293-4AFD-97ED-1BDA59B2EF45}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{BC9A258C-45B1-428F-B86C-031368B3FB91}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.182\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.182\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{5251AB72-30B2-41B6-8247-2217D1AA840E}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.182\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.182\deploy\leagueclient.exe No File
FirewallRules: [{4D104E36-31E8-4DB6-B241-90D833C9CE01}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.182\deploy\leagueclient.exe No File
FirewallRules: [{43F4D207-DBDB-4F05-BA11-B359BF64A293}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.182\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{CF9A2128-7F41-4474-B37A-D3485C99E8C9}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{2A012ABE-EA21-42CD-B3D7-D8E777FDBAFE}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe No File
FirewallRules: [{5CB6C897-A234-4393-BB37-3DE7F97FE7D6}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe No File
FirewallRules: [{18EF1498-F92E-4BC1-BF65-87A4D9D01442}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{ADA50F59-D4D0-4658-A768-6ADB306BAAAA}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.184\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.184\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{A9E4E545-5445-4374-9A8C-C2936BCEC864}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.184\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.184\deploy\leagueclient.exe No File
FirewallRules: [{3FF7B692-D5A3-4DDD-A37B-8556C1C578B7}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.184\deploy\leagueclient.exe No File
FirewallRules: [{A5393997-AB77-44E1-B6BE-C6C82AC8BC6A}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.184\deploy\leagueclient.exe No File
FirewallRules: [{FD5543C3-FECD-4AAE-A85D-E16FC32C08FC}] => (Allow) C:\Program Files (x86)\Audiokinetic\Wwise 2016.2.6.6153\Authoring\Win32\Release\bin\Wwise.exe (Audiokinetic Inc.) [File not signed]
FirewallRules: [{F4587A16-52E1-4F9E-92F4-C77CD1CC5622}] => (Allow) C:\Program Files (x86)\Audiokinetic\Wwise 2016.2.6.6153\Authoring\Win32\Release\bin\Wwise.exe (Audiokinetic Inc.) [File not signed]
FirewallRules: [{2214DEA8-3FFD-4D50-9973-0CE917317643}] => (Allow) C:\Program Files (x86)\Audiokinetic\Wwise 2016.2.6.6153\Authoring\x64\Release\bin\Wwise.exe (Audiokinetic Inc.) [File not signed]
FirewallRules: [{D4AA81C1-AD4C-4A11-80CE-6324FDED96CD}] => (Allow) C:\Program Files (x86)\Audiokinetic\Wwise 2016.2.6.6153\Authoring\x64\Release\bin\Wwise.exe (Audiokinetic Inc.) [File not signed]
FirewallRules: [TCP Query User{9CE9A639-7C8A-4F65-B976-6A60E54AFE12}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.193\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.193\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{DF82721A-7789-41C9-946B-47F6E9AA6C01}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.193\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.193\deploy\leagueclient.exe No File
FirewallRules: [{D485D31A-8635-403C-88A1-55660A4C1857}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.193\deploy\leagueclient.exe No File
FirewallRules: [{AC5CF4EC-A4B3-4217-AB92-B696BA177E4D}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.193\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{3C56B2DC-0042-4718-8AEF-9518908A57ED}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{788A53F2-E5BB-41BF-B432-B1DAE6172D03}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe No File
FirewallRules: [{1EE15602-86D8-44ED-AB0D-EDEA5B441629}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe No File
FirewallRules: [{B46F6D95-487F-443C-8015-EC05FC9CF3C3}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{0C12EA62-4688-4CD1-BF15-79B76DFB67BE}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.194\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.194\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{E8BD4BD3-AF9E-4E77-BC3F-B3548A45E213}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.194\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.194\deploy\leagueclient.exe No File
FirewallRules: [{4186B84B-5BA3-44E3-A1CD-A98489A54702}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.194\deploy\leagueclient.exe No File
FirewallRules: [{839AB640-656F-4228-9987-70601F6C18C2}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.194\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{568169D9-368A-481E-A8A8-C1BEC23FD6F1}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.196\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.196\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{D80FBDD3-12DE-4F9C-BC15-91A526CE11C1}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.196\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.196\deploy\leagueclient.exe No File
FirewallRules: [{226E5E2D-0064-47E1-8F9A-8BD05DEFBC49}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.196\deploy\leagueclient.exe No File
FirewallRules: [{B5B4D6E1-40C6-4A46-8289-8D126F7AD1B1}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.196\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{528C405D-1ADC-4855-AF09-662B06233238}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.197\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.197\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{B2B5A874-E996-42D0-8C11-352B3CC28BAE}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.197\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.197\deploy\leagueclient.exe No File
FirewallRules: [{0FFFFBA3-E999-4E47-9535-02281D46EF82}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.197\deploy\leagueclient.exe No File
FirewallRules: [{E59C64EA-3084-463B-950B-741E87C5A1E5}] => (Block) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.197\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{B1195A0F-E8CA-4BC4-ABA7-6A432994F8F6}I:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) I:\program files (x86)\origin games\apex\r5apex.exe No File
FirewallRules: [UDP Query User{51C8C7AA-70B4-43DD-8D33-754BCE7BFEFC}I:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) I:\program files (x86)\origin games\apex\r5apex.exe No File
FirewallRules: [{B6D5BDED-2390-4DD5-8C37-A8DD71DBB62E}] => (Block) I:\program files (x86)\origin games\apex\r5apex.exe No File
FirewallRules: [{F31B54AB-5961-4751-B1D0-0AE5B030638C}] => (Block) I:\program files (x86)\origin games\apex\r5apex.exe No File
FirewallRules: [TCP Query User{4E42423F-E8C1-4F26-B2AD-056B17169D0F}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.116\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.116\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{1F230DAB-653E-408B-90EA-DE23E0547A60}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.116\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.116\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{5B984EDA-C279-4C78-82C9-631FEF8D244C}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.164\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.164\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{61165523-138E-4580-864E-7484353927A7}I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.164\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\rads\projects\league_client\releases\0.0.2.164\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{989F7663-77B5-43E8-8434-3973C3B6EF04}I:\$programmi (x86)\league of legends\pbe\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [UDP Query User{90482229-58CC-4729-B6AD-ADFDD1EC93BF}I:\$programmi (x86)\league of legends\pbe\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [TCP Query User{9B7F7B4F-3765-4BB2-8A14-60B4B514DB7B}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.198\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.198\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{31E050EA-EB80-4560-AD87-777586B4A4B0}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.198\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.198\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{09191D4C-46F3-4696-9FD9-FE034B2D45BB}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.199\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.199\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{201718B0-35FE-4135-BF76-CD1E6402D4AF}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.199\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.199\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{D90BF0F8-4E14-4343-853A-239DF5BA24F1}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.200\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.200\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{2C04B668-D38E-43B5-9039-99E280C0EB61}I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.200\deploy\leagueclient.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.200\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{46643802-6C69-49C2-BA56-31A061B32EBB}C:\users\computer\appdata\local\citra\nightly-mingw\citra-qt.exe] => (Block) C:\users\computer\appdata\local\citra\nightly-mingw\citra-qt.exe () [File not signed]
FirewallRules: [UDP Query User{2963C140-8308-420F-8B30-A04A6054F7EC}C:\users\computer\appdata\local\citra\nightly-mingw\citra-qt.exe] => (Block) C:\users\computer\appdata\local\citra\nightly-mingw\citra-qt.exe () [File not signed]
FirewallRules: [{9CCF581F-892E-4847-9A88-6BEAF2CA9C44}] => (Allow) C:\Users\Computer\AppData\Roaming\uTorrent\uTorrent.exe No File
FirewallRules: [{F52CCC84-106D-4563-B0F9-423C9239C90A}] => (Allow) C:\Users\Computer\AppData\Roaming\uTorrent\uTorrent.exe No File
FirewallRules: [TCP Query User{FD0CC5A4-B403-4FA0-974D-3080D4AA80E8}C:\users\computer\appdata\roaming\utorrent\updates\3.5.5_45231.exe] => (Allow) C:\users\computer\appdata\roaming\utorrent\updates\3.5.5_45231.exe No File
FirewallRules: [UDP Query User{8801955C-FBBC-41D0-BFCC-04F13BC899E3}C:\users\computer\appdata\roaming\utorrent\updates\3.5.5_45231.exe] => (Allow) C:\users\computer\appdata\roaming\utorrent\updates\3.5.5_45231.exe No File
FirewallRules: [TCP Query User{3CC4A6EC-58E4-4F69-B509-F3ABFAFC75C0}C:\program files (x86)\common files\oracle\java\javapath_target_14439171\java.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_14439171\java.exe
FirewallRules: [UDP Query User{C095D600-4DA0-48BB-B374-8C82EBA88F82}C:\program files (x86)\common files\oracle\java\javapath_target_14439171\java.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_14439171\java.exe
FirewallRules: [{D8C467D6-8550-44F7-9C1E-1045EDF2C58D}] => (Allow) LPort=25565
FirewallRules: [{BA753548-FBE0-4431-A1F7-3198E85CFE2E}] => (Allow) LPort=25565
FirewallRules: [{DED17558-4328-4EB3-B580-4D22F6747319}] => (Allow) %ProgramFiles%\Java\jre1.8.0_181\bin\javaw.exe No File
FirewallRules: [TCP Query User{8FD5923C-E5AA-47A2-B9EC-30E109F5E03D}I:\$programmi (x86)\overwatch\_retail_\overwatch.exe] => (Allow) I:\$programmi (x86)\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{53911F38-0B2B-4B04-9760-B055FD55EA5C}I:\$programmi (x86)\overwatch\_retail_\overwatch.exe] => (Allow) I:\$programmi (x86)\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{518CB5DE-B5D6-41F6-8BA2-538B3CED9BFB}C:\users\computer\appdata\roaming\utorrent\updates\3.5.5_45291.exe] => (Allow) C:\users\computer\appdata\roaming\utorrent\updates\3.5.5_45291.exe No File
FirewallRules: [UDP Query User{C567EF30-098B-41A5-B0A0-E45FE50E2234}C:\users\computer\appdata\roaming\utorrent\updates\3.5.5_45291.exe] => (Allow) C:\users\computer\appdata\roaming\utorrent\updates\3.5.5_45291.exe No File
FirewallRules: [TCP Query User{8AC1D412-8518-4A99-8F12-9DEB8F639F20}C:\users\asus\appdata\roaming\utorrent\updates\3.5.5_45291.exe] => (Block) C:\users\asus\appdata\roaming\utorrent\updates\3.5.5_45291.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{7A3D87D4-1573-49AF-8CCA-CF1067CD66C1}C:\users\asus\appdata\roaming\utorrent\updates\3.5.5_45291.exe] => (Block) C:\users\asus\appdata\roaming\utorrent\updates\3.5.5_45291.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{5F12024F-BB3B-4BDE-B867-75FB18C52446}I:\$programmi (x86)\league of legends\riot client\riotclientservices.exe] => (Allow) I:\$programmi (x86)\league of legends\riot client\riotclientservices.exe (Riot Games, Inc. -> )
FirewallRules: [UDP Query User{9D781254-4DE9-4025-9281-BA97797963AD}I:\$programmi (x86)\league of legends\riot client\riotclientservices.exe] => (Allow) I:\$programmi (x86)\league of legends\riot client\riotclientservices.exe (Riot Games, Inc. -> )
FirewallRules: [TCP Query User{D2472567-3BD0-48B8-ABCC-A1077355ED64}I:\$programmi (x86)\league of legends\pbe\game\league of legends.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\game\league of legends.exe (Riot Games, Inc. -> )
FirewallRules: [UDP Query User{704D57D8-A6C0-4EED-AC3B-E784FEE006D9}I:\$programmi (x86)\league of legends\pbe\game\league of legends.exe] => (Allow) I:\$programmi (x86)\league of legends\pbe\game\league of legends.exe (Riot Games, Inc. -> )
FirewallRules: [TCP Query User{33D756C8-69D0-4143-8F75-2CC42F22851C}I:\$programmi (x86)\league of legends\league of legends\game\league of legends.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\game\league of legends.exe (Riot Games, Inc. -> )
FirewallRules: [UDP Query User{C8FE8BC4-2CEF-453A-B71D-7071F09256A7}I:\$programmi (x86)\league of legends\league of legends\game\league of legends.exe] => (Allow) I:\$programmi (x86)\league of legends\league of legends\game\league of legends.exe (Riot Games, Inc. -> )
FirewallRules: [{D4D0C030-623A-42DE-BF0B-21D4D7A67751}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe No File
FirewallRules: [{0C93BCD7-4970-41AE-8260-60B928D775E1}] => (Allow) C:\Users\Computer\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{985EB4EC-9E34-44EC-AC21-93A48BBA29FD}] => (Allow) C:\Users\Computer\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{1BA98DBA-6AA5-4AE2-A49E-8CCFA42A8221}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{AE431783-98A5-4170-AAA6-8285C9CA1B11}] => (Allow) I:\$Programmi (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [File not signed]
FirewallRules: [{B3ED5906-5435-48E2-A07E-EB4B65BB0ADA}] => (Allow) I:\$Programmi (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [File not signed]

==================== Codecs (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\system32\frapsv64.dll [71680 2013-02-26] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [msacm.ac3filter] => C:\Windows\system32\ac3filter64.acm [580096 2009-08-11] () [File not signed]
HKLM\...\Drivers32: [msacm.voxacm160] => C:\Windows\SysWOW64\vct3216.acm [82944 2003-05-22] (Voxware, Inc.) [File not signed]
HKLM\...\Drivers32: [msacm.scg726] => C:\Windows\SysWOW64\scg726.acm [13239 2000-03-14] (SHARP Corporation) [File not signed]
HKLM\...\Drivers32: [msacm.alf2cd] => C:\Windows\SysWOW64\alf2cd.acm [38912 2003-05-22] (NCT Company) [File not signed]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\SysWOW64\AC3ACM.acm [81920 2004-02-04] (fccHandler) [File not signed]
HKLM\...\Drivers32: [vidc.dvsd] => C:\Windows\SysWOW64\mcdvd_32.dll [261632 2007-09-27] (MainConcept) [File not signed]
HKLM\...\Drivers32: [vidc.xvid] => C:\Windows\SysWOW64\xvidvfw.dll [139264 2007-09-27] () [File not signed]
HKLM\...\Drivers32: [vidc.DIVX] => C:\Windows\SysWOW64\DivX.dll [638976 2007-09-27] (DivXNetworks, Inc.) [File not signed]
HKLM\...\Drivers32: [vidc.mpg4] => C:\Windows\SysWOW64\mpg4c32.dll [413760 2007-09-27] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [vidc.mp42] => C:\Windows\SysWOW64\mpg4c32.dll [413760 2007-09-27] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [vidc.mp43] => C:\Windows\SysWOW64\mpg4c32.dll [413760 2007-09-27] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-19] (Fox Magic Software) [File not signed]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [65536 2013-02-26] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2008-09-05] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2008-09-05] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [VIDC.FFDS] => C:\Windows\SysWOW64\ff_vfw.dll [85504 2009-12-05] () [File not signed]
HKLM\...\Drivers32: [msacm.ac3filter] => C:\Windows\SysWOW64\ac3filter.acm [497664 2009-08-11] () [File not signed]

==================== Restore Points =========================


==================== Faulty Device Manager Devices =============

Name: Teredo Tunneling Pseudo-Interface
Description: Scheda Microsoft Teredo Tunneling
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: pcouffin device ...
Description: pcouffin device ...
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (09/30/2019 10:01:10 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Impossibile caricare il file del Registro di sistema delle classi.
DETTAGLI - Impossibile trovare il file specificato.

Error: (09/30/2019 09:57:58 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Impossibile riattivare il filtro eventi con query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" nello spazio dei nomi "//./root/CIMV2". Errore 0x80041003. Impossibile recapitare gli eventi tramite questo filtro fino alla risoluzione del problema.

Error: (09/30/2019 04:13:17 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Scaricamento delle stringhe dei contatori delle prestazioni per il servizio WmiApRpl (WmiApRpl) non riuscito. Il primo valore DWORD nella sezione Data contiene il codice di errore.

Error: (09/30/2019 04:13:17 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Le stringhe relative alle prestazioni nel valore Performance del Registro di sistema sono state danneggiate durante l'elaborazione dell'estensione del provider contatori Performance. Il valore BaseIndex è il primo valore DWORD della sezione Data, il valore LastCounter è il secondo valore DWORD della sezione Data e il valore LastHelp è il terzo valore DWORD della sezione Data.

Error: (09/30/2019 04:13:16 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Le stringhe relative alle prestazioni nel valore Performance del Registro di sistema sono state danneggiate durante l'elaborazione dell'estensione del provider contatori Performance. Il valore BaseIndex è il primo valore DWORD della sezione Data, il valore LastCounter è il secondo valore DWORD della sezione Data e il valore LastHelp è il terzo valore DWORD della sezione Data.

Error: (09/30/2019 04:11:45 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Impossibile caricare il file del Registro di sistema delle classi.
DETTAGLI - Impossibile trovare il file specificato.

Error: (09/30/2019 04:07:14 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Impossibile riattivare il filtro eventi con query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" nello spazio dei nomi "//./root/CIMV2". Errore 0x80041003. Impossibile recapitare gli eventi tramite questo filtro fino alla risoluzione del problema.

Error: (09/29/2019 08:38:32 PM) (Source: Windows Backup) (EventID: 4104) (User: )
Description: Backup non riuscito. Errore: Windows Backup: errore durante il tentativo di lettura dalla copia shadow in uno dei volumi in corso di backup. Controllare i registri eventi per individuare eventuali errori rilevanti. (0x81000037).


System errors:
=============
Error: (09/30/2019 09:58:06 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Le impostazioni delle autorizzazioni predefinite del computer non concedono l'autorizzazione di Attivazione Locale per l'applicazione server COM con CLSID
{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}
e APPID
{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}
all'utente NT AUTHORITY\SID SERVIZIO LOCALE (S-1-5-19) dall'indirizzo LocalHost (tramite LRPC). Per modificare tale autorizzazione di sicurezza, è possibile utilizzare lo strumento amministrativo Servizi componenti.

Error: (09/30/2019 04:07:29 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Le impostazioni delle autorizzazioni predefinite del computer non concedono l'autorizzazione di Attivazione Locale per l'applicazione server COM con CLSID
{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}
e APPID
{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}
all'utente NT AUTHORITY\SID SERVIZIO LOCALE (S-1-5-19) dall'indirizzo LocalHost (tramite LRPC). Per modificare tale autorizzazione di sicurezza, è possibile utilizzare lo strumento amministrativo Servizi componenti.

Error: (09/29/2019 08:24:13 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Le impostazioni delle autorizzazioni predefinite del computer non concedono l'autorizzazione di Attivazione Locale per l'applicazione server COM con CLSID
{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}
e APPID
{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}
all'utente NT AUTHORITY\SID SERVIZIO LOCALE (S-1-5-19) dall'indirizzo LocalHost (tramite LRPC). Per modificare tale autorizzazione di sicurezza, è possibile utilizzare lo strumento amministrativo Servizi componenti.

Error: (09/29/2019 09:29:59 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Le impostazioni delle autorizzazioni predefinite del computer non concedono l'autorizzazione di Attivazione Locale per l'applicazione server COM con CLSID
{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}
e APPID
{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}
all'utente NT AUTHORITY\SID SERVIZIO LOCALE (S-1-5-19) dall'indirizzo LocalHost (tramite LRPC). Per modificare tale autorizzazione di sicurezza, è possibile utilizzare lo strumento amministrativo Servizi componenti.

Error: (09/28/2019 08:21:41 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Le impostazioni delle autorizzazioni predefinite del computer non concedono l'autorizzazione di Attivazione Locale per l'applicazione server COM con CLSID
{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}
e APPID
{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}
all'utente NT AUTHORITY\SID SERVIZIO LOCALE (S-1-5-19) dall'indirizzo LocalHost (tramite LRPC). Per modificare tale autorizzazione di sicurezza, è possibile utilizzare lo strumento amministrativo Servizi componenti.

Error: (09/28/2019 05:43:02 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Le impostazioni delle autorizzazioni predefinite del computer non concedono l'autorizzazione di Attivazione Locale per l'applicazione server COM con CLSID
{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}
e APPID
{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}
all'utente NT AUTHORITY\SID SERVIZIO LOCALE (S-1-5-19) dall'indirizzo LocalHost (tramite LRPC). Per modificare tale autorizzazione di sicurezza, è possibile utilizzare lo strumento amministrativo Servizi componenti.

Error: (09/28/2019 10:42:15 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Le impostazioni delle autorizzazioni predefinite del computer non concedono l'autorizzazione di Attivazione Locale per l'applicazione server COM con CLSID
{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}
e APPID
{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}
all'utente NT AUTHORITY\SID SERVIZIO LOCALE (S-1-5-19) dall'indirizzo LocalHost (tramite LRPC). Per modificare tale autorizzazione di sicurezza, è possibile utilizzare lo strumento amministrativo Servizi componenti.

Error: (09/27/2019 11:17:06 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Le impostazioni delle autorizzazioni predefinite del computer non concedono l'autorizzazione di Attivazione Locale per l'applicazione server COM con CLSID
{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}
e APPID
{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}
all'utente NT AUTHORITY\SID SERVIZIO LOCALE (S-1-5-19) dall'indirizzo LocalHost (tramite LRPC). Per modificare tale autorizzazione di sicurezza, è possibile utilizzare lo strumento amministrativo Servizi componenti.


Windows Defender:
===================================
Date: 2017-03-07 21:38:05.189
Description:
Windows Defender: errore durante il tentativo di caricare le firme. Verrà tentato di ripristinare un set di firme valido.
Firme tentate:Corrente
Codice errore:0x80070003
Descrizione errore:Impossibile trovare il percorso specificato.
Versione firma:0.0.0.0
Versione modulo:0.0.0.0

Date: 2017-03-07 21:32:05.628
Description:
Windows Defender: errore durante il tentativo di caricare le firme. Verrà tentato di ripristinare un set di firme valido.
Firme tentate:Corrente
Codice errore:0x80070003
Descrizione errore:Impossibile trovare il percorso specificato.
Versione firma:0.0.0.0
Versione modulo:0.0.0.0

Date: 2017-03-07 21:27:11.462
Description:
Windows Defender: errore durante il tentativo di caricare le firme. Verrà tentato di ripristinare un set di firme valido.
Firme tentate:Corrente
Codice errore:0x80070003
Descrizione errore:Impossibile trovare il percorso specificato.
Versione firma:0.0.0.0
Versione modulo:0.0.0.0

Date: 2017-03-07 21:21:05.715
Description:
Windows Defender: errore durante il tentativo di caricare le firme. Verrà tentato di ripristinare un set di firme valido.
Firme tentate:Corrente
Codice errore:0x80070002
Descrizione errore:Impossibile trovare il file specificato.
Versione firma:0.0.0.0
Versione modulo:0.0.0.0

Date: 2017-03-07 21:15:03.894
Description:
Windows Defender: errore durante il tentativo di caricare le firme. Verrà tentato di ripristinare un set di firme valido.
Firme tentate:Corrente
Codice errore:0x80070003
Descrizione errore:Impossibile trovare il percorso specificato.
Versione firma:0.0.0.0
Versione modulo:0.0.0.0

CodeIntegrity:
===================================

Date: 2018-08-15 02:06:49.156
Description:
Impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\ComboFix\catchme.sys. Impossibile trovare l'hash del file nel sistema. Causa possibile: installazione di un file danneggiato o con firma non corretta in seguito a una modifica hardware o software o malware di origine sconosciuta.

Date: 2018-08-15 02:06:49.125
Description:
Impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\ComboFix\catchme.sys. Impossibile trovare l'hash del file nel sistema. Causa possibile: installazione di un file danneggiato o con firma non corretta in seguito a una modifica hardware o software o malware di origine sconosciuta.

Date: 2018-08-15 02:06:49.094
Description:
Источник: https://www.bleepingcomputer.com/forums/t/705227/suspicious-dll-file-detected-multiple-times-by-bitdefender/

Download NOW Adobe Flash Player 34.0.0.105 Crack With Product Key Free Download Latest Version Adobe Flash Player 34.0.0.105 Crack With Product Key It has several new features designed to take full advantage of the newer 64-bit browsers and operating systems available for Windows, Linux, and Mac OS. This makes it a more effective tool for … Read more

Categories Internet › WEB Design › FlashTags adobe flash player, adobe flash player 2020, Adobe Flash Player 32.0.0.192 Crack, Adobe Flash Player 32.0.0.192 Download, Adobe Flash Player 32.0.0.192 License Key, Adobe Flash Player 32.0.0.192 Product Key, adobe flash player 8, adobe flash player apk, adobe flash player cc 2015 crack, adobe flash player chrome, adobe flash player cs3 free download with crack, adobe flash player cs3 professional crack, adobe flash player cs5 crack, adobe flash player cs6 crack, adobe flash player cs6 free download with crack, adobe flash player download full version crack, adobe flash player for mac, adobe flash player for windows 7 crack, adobe flash player free download for windows 7 crack, adobe flash player full crack, adobe flash player settings, adobe flash player test, adobe flash player updateИсточник: http://crackkey4u.com/tag/adobe-flash-player-32-0-0-192-download/

Suspicious .dll file detected multiple times by Bitdefender

Hello!
I did the scan, however when I first opened FRST an error message popped up: Failed to update (version displayed is 29-09-2019)
Attached File FRST.txt  36.62KB  1 downloads
Addition.txt:https://ufile.io/t3yxk2lc

(it didn't let me upload the Addition file for some reason)

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-09-2019
Ran by ASUS (administrator) on ASUS-PC (ASUS All Series) (30-09-2019 10:01:07)
Running from C:\Users\Computer\Desktop
Loaded Profiles: ASUS & Computer (Available Profiles: ASUS & Computer_2 & Computer)
Platform: Windows 7 Enterprise Service Pack 1 (X64) Language: Italiano (Italia)
Internet Explorer Version 11 (Default debut video capture registration code 2018 - Free Activators Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Windows\SysWOW64\ASGT.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\DiscoverySrv.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Antivirus Free\bdagent.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Antivirus Free\bdredline.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Antivirus Free\updatesrv.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Antivirus Free\vsserv.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Antivirus Free\vsservppl.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe
(Huawei Software Technologies Co., LTD. -> ) C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel® Corporation) [File not signed] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Nero AG -> Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files smadav 2020 rev 13.7 registration key Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_IATIHJE.EXE
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.227\WsAppService.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\.\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2398776 2016-06-15] (NVIDIA Corporation -> NVIDIA Corporation)
HKU\S-1-5-21-1781095109-3830667393-2323447585-1000\.\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHJE.EXE [283232 2012-02-29] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1781095109-3830667393-2323447585-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\ssText3d.scr [333824 2010-11-21] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-1781095109-3830667393-2323447585-1015\.\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHJE.EXE [283232 2012-02-29] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1781095109-3830667393-2323447585-1015\.\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [731240 2018-10-19] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.90\Installer\chrmstp.exe [2019-09-25] (Google LLC -> Google LLC)
HKLM\Software\.\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {021B7B7F-EEBF-40AF-A66D-44524C3C4F4B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-11-10] (Google Inc -> Google Inc.)
Task: {034D0C5E-D1AE-4FA1-B73D-09132D095BD8} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1873288 2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
Task: {11BFD2AC-F4CB-455F-9AB2-98FAA19E4F2F} - System32\Tasks\{C14F7ECB-5613-4EAC-B7C7-C79032F2E97D} => C:\Windows\system32\pcalua.exe -a C:\xampp\Uninstall.exe -d C:\xampp
Task: {145172A3-A009-40FA-8955-F99320B838EE} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [6785448 2019-04-10] (Nota Inc. -> Nota Inc.)
Task: {179CE74A-A529-481A-A188-C82315321313} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [488760 2019-07-15] (Bitdefender SRL -> Bitdefender)
Task: {2A4409AF-19D3-4D33-9A69-BAEE74D062DB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-11-10] (Google Inc -> Google Inc.)
Task: {2B8D30A0-4D56-4026-9C22-C9397D714FDB} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [570240 2017-02-14] (Apple Inc. -> Apple Inc.)
Task: {5F4A6E34-764D-4996-9FA8-C64CC20276FB} - \{19F3B997-40FE-4D7B-8AE3-5BA1C0588608} -> No File <==== ATTENTION
Task: {8F9ECEF6-68EF-4F32-A704-58EC9AB703C8} - System32\Tasks\AdobeGCInvoker-1.0-ASUS-PC-ASUS => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2849872 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {962DB373-AC92-421D-80D1-D58DD1B11CA6} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {979DBC7C-9A7B-4C44-8F9A-70DA7844344F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [14679256 2019-02-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {A089E0E5-11B7-404F-9AAA-AE5FC87F306C} - \{4F40E78F-E952-4233-A148-37C720A9C33A} -> No File <==== ATTENTION
Task: {A2FE0A1C-44B4-40E8-9A5A-D91F4E922902} - \{3EA36C70-3445-41A2-8542-376735867E02} -> No File <==== ATTENTION
Task: {A78BF7AE-0D3A-4BC2-BBA7-73012E848B90} - System32\Tasks\AdobeGCInvoker-1.0-ASUS-PC-Computer => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2849872 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {C061BC89-83CD-4CC6-9D3D-06D0765BB4BB} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_192_Plugin.exe [1457208 2019-05-15] (Adobe Inc. -> Adobe)
Task: {C46B5278-0940-45DD-BA18-8137704465CD} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {E2F289D2-54D4-4311-94C9-BF4C3924C568} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {E6CB70D1-77DD-4386-93FE-9AC707C1BC85} - System32\Tasks\{310AC8B6-587F-44EB-B8E7-0B77E1FFF875} => C:\Windows\system32\pcalua.exe -a "C:\Users\ASUS\AppData\Roaming\YouTube Downloader 5.0\YouTube Downloader 5.0.exe" -d "C:\Users\ASUS\AppData\Roaming\YouTube Downloader 5.0"
Task: {EA2460E9-1081-4AA9-B92E-8A9AA53D80F8} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [6785448 2019-04-10] (Nota Inc. -> Nota Inc.)
Task: {F030BB34-BBAF-41D1-9573-9C87D121C617} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [3196064 2013-01-25] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) [File not signed]
Task: {F6022FA6-0CF1-4852-B25F-C7554E86B65A} - \{E5AD658D-8C6B-46E9-A6EF-D12B5AD77EE5} -> No File <==== ATTENTION
Task: {FAAA9FC5-758E-4A8D-88BD-968E86B0959A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-05-15] (Adobe Inc. -> Adobe)
Task: {FB20308B-1A8B-434C-916B-DB8FD8C31B23} - System32\Tasks\AdobeAAMUpdater-1.0-ASUS-PC-Computer_2 => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated -> Adobe Systems Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\.\Interfaces\{128081DB-7BCF-4343-ACE7-34EBC3FB9E10}: [DhcpNameServer] 192.168.137.129
Tcpip\.\Interfaces\{32A38501-AD4F-4F42-AD50-8F7DE9D6CC63}: [DhcpNameServer] 192.168.137.129
Tcpip\.\Interfaces\{44A7DF1D-A8D0-4CA8-86F9-1B8A7E155B86}: [DhcpNameServer] 192.168.42.129
Tcpip\.\Interfaces\{7BAFFF1F-BAB6-4B7E-8A79-D70C176BA082}: [DhcpNameServer] 192.168.1.1
Tcpip\.\Interfaces\{99D9B72F-0DB2-4664-BF8E-72A7C7651ABD}: [DhcpNameServer] 192.168.42.129
Tcpip\.\Interfaces\{99DC9AB4-E3A4-410E-B2EE-6A3700983A41}: [DhcpNameServer] 192.168.42.129
Tcpip\.\Interfaces\{DBF53992-E154-4CC6-B2EF-7B47927B1B59}: [DhcpNameServer] 192.168.42.129

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1781095109-3830667393-2323447585-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1781095109-3830667393-2323447585-1015\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1781095109-3830667393-2323447585-1015\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/it-it/?ocid=iehp
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1781095109-3830667393-2323447585-1000 -> {9AE9D564-77E2-4AEB-B0A6-9E01988A78DC} URL = hxxps://it.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_181\bin\ssv.dll [2018-07-19] (Oracle America, Inc. -> Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc -> Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-07-19] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Guida per l'accesso all'account Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-23] (Google Inc -> Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-23] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-1781095109-3830667393-2323447585-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc -> Google Inc.)
DPF: HKLM-x32 {233C1507-6A77-46A4-9443-F871F945D258} hxxps://fpdownload.macromedia.com/pub/shockwave/cabs/director/sw.cab

FireFox:
========
FF ProfilePath: C:\Users\ASUS\AppData\Roaming\Mozilla\Firefox\Profiles\jb8uumon.default [2019-07-06]
FF Homepage: Mozilla\Firefox\Profiles\jb8uumon.default -> hxxp://www.msn.com/?pc=SL5M&ocid=SL5MDHP&osmkt=it-it

Virus? Slow internet, loss of connection, Windows basic display after restart

Well it loaded and ran fine in normal Windows.

 

FRST

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-05.2019

Ran by Jason (administrator) on I5 (30-05-2019 18:20:22)

Running from J:\

Loaded Profiles: Jason (Available Profiles: Jason & postgres)

Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: English (United States)

Internet Explorer Version 11 (Default browser: Chrome)

Boot Mode: Normal

Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

 

==================== Processes (Whitelisted) =================

 

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

 

(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe

 

==================== Registry (Whitelisted) ===========================

 

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

 

HKLM-x32\.\Run: [] => [X]

HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\MountPoints2: {747ec05b-3c20-11e4-8982-c8600073464a} - J:\AutoRun.exe

HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.169\Installer\chrmstp.exe [2019-05-21] (Google LLC -> Google Inc.)

HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level

HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> Antenna design software - Activators Patch Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2019-05-03] (Adobe Inc. -> Adobe Systems, Inc.)

BootExecute: autocheck autochk * sdnclean64.exe

GroupPolicy: Restriction ? <==== ATTENTION

 

==================== Scheduled Tasks (Whitelisted) =============

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

Task: {02884394-2980-4D94-91F3-EE43A808E7BA} - System32\Tasks\ASUS\ASUS AI Suite II Execute => C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2931328 2010-11-26] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)

Task: {1227B66E-EECB-4874-A331-B6ADD62938C1} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [4747720 2014-06-27] (Safer Networking Ltd. -> Safer-Networking Ltd.)

Task: {2278832B-CED6-4DC8-800F-A9D580C14C87} - System32\Tasks\{DF230B9A-511F-4D40-BFB0-AF8061C67678} => C:\Windows\system32\pcalua.exe -a C:\Users\Jason\Downloads\WebPluginNVR.exe -d C:\Users\Jason\Downloads

Task: {23E3C28B-9971-4209-AF0C-976FC2647693} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)

Task: {49724A37-E871-4100-8B06-95B93B7771A0} - System32\Tasks\{BCAA80DF-6DA4-463D-814D-DBD0E500D254} => C:\Users\Jason\Downloads\WebPluginNVR (5).exe

Task: {500E4633-F29F-4BAE-A1D5-2E58546FAC52} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [979024 2019-02-13] (Microsoft Corporation -> Microsoft Corporation)

Task: {76A84527-2D6D-4F0D-B8EA-870931000957} - System32\Tasks\ASUS\ASUS DigiVRM Help => C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\VRMHelp.exe [1116800 2011-04-13] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)

Task: {8B86ABDC-7173-4D55-8FF8-46E0DDC37267} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\\MpCmdRun.exe [410784 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)

Task: {A20C5D92-0286-42E3-82AA-46964B0C6384} - System32\Tasks\GoogleUpdateTaskMachineUA Malware Hunter Pro 1.125.0.723 Crack + License Key Free 2021 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-01] (Google Inc -> Google Inc.)

Task: {A7E43033-DD2E-4A19-86F2-D729DBABC9AF} - System32\Tasks\ASUS\ASUS Mobilink Execute => C:\Program Files (x86)\ASUS\AI Suite II\ASUS Mobilink\ASUS Mobilink.exe [1020544 2010-11-25] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)

Task: {AC18A91E-9C11-4F10-807F-A55D81F55F3C} - System32\Tasks\Safer-Networking\Spybot Movavi Video Editor 21.5.0 Crack With Patch Full Version Free Download For PC Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [5753752 2016-03-21] (Safer-Networking Ltd. -> Safer-Networking Ltd.) [File not signed]

Task: {B4BC4755-2E7F-4616-8759-44CDFD3E3B7D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [979024 2019-02-13] (Microsoft Corporation -> Microsoft Corporation)

Task: {B80ABA68-8A7E-487B-BCF0-008EFD7616EA} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)

Task: {BB6AB154-593D-4575-A2D4-B052D8116EF2} - System32\Tasks\{4104B6C9-8C4D-4E85-82B0-73A3945F80F1} => C:\Windows\system32\pcalua.exe -a "C:\Users\Jason\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\N9OSI9FN\dds_support.exe" -d C:\Users\Jason\Desktop

Task: {BBF56A4D-4B0A-4853-82BB-746AC74353BF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-01] (Google Inc -> Google Inc.)

Task: {C33358A1-9A68-4DC2-B1DE-E4574BA77CE7} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [6193080 2016-03-21] (Safer-Networking Ltd. -> Safer-Networking Ltd.) [File not signed]

Task: {CF8BA83E-6E0E-48FB-8E68-BF038A4C0596} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-05-15] (Adobe Inc. -> Adobe)

Task: {EFE7779B-AE9F-4347-8CD4-8F32049C724A} - System32\Tasks\ASUS\USB 3.0 Boost Service => C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr.exe [90112 2011-09-09] () [File not signed]

Task: {EFFEA10B-966F-44A2-B901-66CCE10FE525} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [1146048 2018-05-28] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co. Ltd.)

Task: {F4AB9BB4-0B74-4F7B-BC78-99AFA8B389BD} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_192_Plugin.exe [1457208 2019-05-15] (Adobe Inc. -> Adobe)

Task: {F7C10B64-2711-436D-B62C-71E9EB786B2A} - System32\Tasks\{20713AEE-C904-474A-A659-0902AD7D6D19} => C:\Windows\system32\pcalua.exe -a C:\Users\Jason\AppData\Local\Temp\Temp1_ActiveX_EN.zip\ActiveX_EN.exe <==== ATTENTION

 

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

 

 

==================== Internet (Whitelisted) ====================

 

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

 

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

Tcpip\.\Interfaces\{043B44AD-DBEB-48D1-A0B6-BACA6B7E7EB8}: [DhcpNameServer] 172.20.10.1

Tcpip\.\Interfaces\{629BF696-16FB-4907-A00B-E6FF14E6D02F}: [DhcpNameServer] 192.168.1.1

 

Internet Explorer:

==================

HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://cooksgreen.ddns.net:81/asppage/common/login.asp?id=1&ret=1

HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://fga07192.ippostcode.com/doc/page/login.asp

SearchScopes: HKU\S-1-5-21-2649046142-4009747702-1050386706-1000 -> DefaultScope {8C697EEA-48D8-4D28-BE39-04223991D058} URL = hxxp://www.google.com/search?q={searchTerms}

SearchScopes: HKU\S-1-5-21-2649046142-4009747702-1050386706-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

SearchScopes: HKU\S-1-5-21-2649046142-4009747702-1050386706-1000 -> {8C697EEA-48D8-4D28-BE39-04223991D058} URL = hxxp://www.google.com/search?q={searchTerms}

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2019-02-13] (Microsoft Corporation -> Microsoft Corporation)

BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_211\bin\ssv.dll [2019-05-25] (Oracle America, Inc. -> Oracle Corporation)

BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL [2019-02-13] (Microsoft Corporation -> Microsoft Corporation)

BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2019-02-13] (Microsoft Corporation -> Microsoft Corporation)

BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-05-25] (Oracle America, Inc. -> Oracle Corporation)

BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\ssv.dll [2019-05-25] (Oracle America, Inc. -> Oracle Corporation)

BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-03-13] (Atheros Communications Inc. -> Atheros Commnucations) [File not signed]

BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2019-02-13] (Microsoft Corporation -> Microsoft Corporation)

BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-05-25] (Oracle America, Inc. -> Oracle Corporation)

DPF: HKLM-x32 {610817B6-C091-4173-B366-F249127FB59E} hxxp://88.97.42.10/NetActiveX.exe

Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2017-07-18] (Microsoft Corporation -> Microsoft Corporation)

 

FireFox:

========

FF ProfilePath: C:\Users\Jason\AppData\Roaming\TomTom\HOME\Profiles\yj5f3cl2.default [2015-03-30]

FF Extension: (No Name) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [not found]

FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_192.dll [2019-05-15] (Adobe Inc. -> )

FF Plugin: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2019-05-25] (Oracle America, Inc. -> Oracle Corporation)

FF Plugin: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2019-05-25] (Oracle America, Inc. -> Oracle Corporation)

FF Plugin: @microsoft.com/GENUINE -> disabled [No File]

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)

FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_192.dll [2019-05-15] (Adobe Inc. -> )

FF Plugin-x32: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2019-05-25] (Oracle America, Inc. -> Oracle Corporation)

FF Plugin-x32: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2019-05-25] (Oracle America, Inc. -> Oracle Corporation)

FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)

FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-05-16] (Microsoft Corporation -> Microsoft Corporation)

FF Plugin-x32: @npWebPluginNVR -> C:\Program Files (x86)\Web WebPluginNVR\npWebPluginNVR.dll [2016-07-29] () [File not signed]

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)

FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)

FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-05-03] (Adobe Inc. -> Adobe Systems Inc.)

FF Plugin-x32: Web Components -> C:\Program Files (x86)\Web Components\npWebVideoPlugin.dll [2015-03-12] (System Q Ltd -> )

 

Chrome: 

=======

CHR DefaultProfile: Default

CHR HomePage: Default -> hxxp://uk.mg.bt.mail.yahoo.com/dc/launch?.partner=bt-1&.gx=1&.rand=74mcq1aq046oh

CHR Webroot lifetime license Default -> "hxxps://www.miningrigrentals.com/account/myrigs","hxxps://www.litecoinpool.org/account"

CHR Profile: C:\Users\Jason\AppData\Local\Google\Chrome\User Data\Default [2019-05-30]

CHR Extension: (Slides) - C:\Users\Jason\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]

CHR Extension: (Docs) - C:\Users\Jason\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]

CHR Extension: (Google Drive) - C:\Users\Jason\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-18]

CHR Extension: (YouTube) - C:\Users\Jason\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-08]

CHR Extension: (Google Search) - C:\Users\Jason\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-18]

CHR Extension: (Adobe Acrobat) - C:\Users\Jason\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-05-24]

CHR Extension: (Quidco Cashback Reminder) - C:\Users\Jason\AppData\Local\Google\Chrome\User Data\Default\Extensions\elfdpdgmnodokhbiabbcjabmhpdajcog [2016-05-21]

CHR Extension: (Sheets) - C:\Users\Jason\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]

CHR Extension: (Chrome Remote Desktop) - C:\Users\Jason\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2019-04-25]

CHR Extension: (Google Docs Offline) - C:\Users\Jason\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-10-02]

CHR Extension: (IE Tab) - C:\Users\Jason\AppData\Local\Google\Chrome\User Data\Default\Extensions\hehijbfgiekmjfkfjpbkbammjbdenadd [2019-05-24]

CHR Extension: (TREZOR Chrome Extension) - C:\Users\Jason\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcjjhjgimijdkoamemaghajlhegmoclj [2017-12-11]

CHR Extension: (Samba Mobile Battery) - C:\Users\Jason\AppData\Local\Google\Chrome\User Data\Default\Extensions\nemfbbkoiephopbappajomglbiadblih [2016-05-21]

CHR Extension: (Chrome Web Store Payments) - C:\Users\Jason\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-03-22]

CHR Extension: (Gmail) - C:\Users\Jason\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-25]

CHR Extension: (Chrome Media Router) - C:\Users\Jason\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-05-24]

CHR HKLM-x32\.\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

 

==================== Services (Whitelisted) ====================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

S4 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-03-08] (Apple Inc. -> Apple Inc.)

S4 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe [922240 2011-06-13] (ASUSTeK Computer Inc. -> )

S4 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe [915584 2010-12-02] (ASUSTeK Computer Inc. -> )

S4 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [586880 2010-10-21] (ASUSTeK Computer Inc. -> )

S4 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [74912 2011-03-13] (Atheros Communications Inc. -> Atheros Commnucations) [File not signed]

S4 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\74.0.3729.56\remoting_host.exe [73200 2019-04-01] (Google LLC -> Google Inc.)

S4 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3058256 2019-02-13] (Microsoft Corporation -> Microsoft Corporation)

S4 COMSysApp; C:\Windows\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} [9728 2009-07-14] (Microsoft Windows -> Microsoft Corporation)

S4 COMSysApp; C:\Windows\SysWOW64\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} [7168 2009-07-14] (Microsoft Windows -> Microsoft Corporation)

S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)

R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)

S4 NetTimeSvc; C:\Program Files (x86)\NetTime\NetTimeService.exe [473088 2012-05-12] () [File not signed]

S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)

S4 NoIPDUCService4; C:\Program Files (x86)\No-IP\ducservice.exe [12288 2015-07-20] () [File not signed]

S4 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer Networking Ltd. -> Safer-Networking Ltd.)

S4 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [4088608 2016-09-21] (Safer-Networking Ltd. -> Safer-Networking Ltd.) [File not signed]

S4 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [235984 2016-11-24] (Safer-Networking Ltd. -> Safer-Networking Ltd.) [File not signed]

S4 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)

S4 postgresql-x64-9.3; "C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe" runservice -N "postgresql-x64-9.3" -D "C:/Program Files/PostgreSQL/9.3/data" -w [X] <==== ATTENTION

 

===================== Drivers (Whitelisted) ======================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

R0 AiChargerPlus; C:\Windows\System32\DRIVERS\AiChargerPlus.sys [14464 2010-11-08] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-08-24] (ASUSTeK Computer Inc. -> )

R3 asmthub3; C:\Windows\System32\DRIVERS\asmthub3.sys [130536 2012-02-21] (MCCI Internal Testing Software -> ASMedia Technology Inc)

R3 asmtxhci; C:\Windows\System32\DRIVERS\asmtxhci.sys [396776 2012-02-21] (MCCI Internal Techtool pro 10 download - Free Activators Software -> ASMedia Technology Inc)

R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2010-08-03] (ASUSTeK Computer Inc. -> )

R3 ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [46152 2011-09-20] (MCCI Corporation -> MCCI Corporation)

S3 ATHDFU; C:\Windows\System32\Drivers\AthDfu.sys [51872 2011-03-13] (Atheros Communications Inc. -> Windows ® Win 7 DDK provider)

R3 GeneStor; C:\Windows\System32\DRIVERS\GeneStor.sys avast premier 2020 license key till 2033 2016-08-22] (GENESYS LOGIC, INC. -> GenesysLogic)

R3 igfx; C:\Windows\System32\DRIVERS\igdkmd64.sys [5363200 2014-01-29] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)

R3 IntcDAud; C:\Windows\System32\DRIVERS\IntcDAud.sys [317440 2010-10-14] (Microsoft Windows Hardware Compatibility Publisher -> Intel® Corporation)

R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)

R0 mv91xx; C:\Windows\System32\DRIVERS\mv91xx.sys [297000 2010-08-27] (Marvell Semiconductor -> Marvell Semiconductor, Inc.)

S3 Netaapl; C:\Windows\System32\DRIVERS\netaapl64.sys [23040 2014-08-16] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)

S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)

S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2015-06-17] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)

S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [19968 2013-02-12] (Microsoft Windows -> Microsoft Corporation)

S1 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [132120 2016-10-18] (Oracle Corporation -> Oracle Corporation)

 

==================== NetSvcs (Whitelisted) ===================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

 

==================== Three months (created) ========

 

(If an entry is included in the fixlist, the file/folder will be moved.)

 

2019-05-30 18:19 - 2019-05-30 18:20 - 000000000 ____D C:\FRST

2019-05-29 22:27 - 2019-05-29 22:27 - 000001867 _____ C:\Users\Public\Desktop\Malwarebytes.lnk

2019-05-29 22:27 - 2019-05-29 22:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes

2019-05-29 22:27 - 2019-01-08 16:32 - 000153328 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys

2019-05-29 21:51 - 2019-05-29 22:26 - 000000000 ____D C:\Users\Jason\AppData\Local\NPE

2019-05-29 21:51 - 2019-05-29 21:51 - 000000000 ____D C:\ProgramData\Norton

2019-05-29 20:48 - 2019-05-30 17:55 - 000693474 _____ C:\Windows\ntbtlog.txt

2019-05-29 20:07 - 2019-05-29 20:07 - 000000000 ____D C:\Windows\pss

2019-05-29 18:57 - 2019-05-29 18:57 - 000000000 ___RD C:\Users\Jason\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices

2019-05-28 18:24 - 2019-05-28 18:24 - 002117696 _____ C:\Users\Jason\Downloads\BlagoMiner-v.1.190301.0.zip

2019-05-28 17:17 - 2019-05-28 18:25 - 000000000 ____D C:\Mining

2019-05-28 10:49 - Enscape 3D 3.1 Crack With Torrent Free Download 17:53 - 000000000 ____D C:\Users\Jason\AppData\Roaming\btchd

2019-05-28 10:48 - 2019-05-28 10:48 - 000000000 ____D C:\Users\Jason\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitcoinHD Chain

2019-05-28 10:48 - 2019-05-28 10:48 - 000000000 ____D C:\Program Files\BitcoinHD

2019-05-27 18:13 - 2019-05-27 18:13 - 000002422 _____ C:\Users\Jason\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Phoenix Burst Wallet.lnk

2019-05-27 18:13 - 2019-05-27 18:13 - 000002414 _____ C:\Users\Jason\Desktop\Phoenix Burst Wallet.lnk

2019-05-27 18:13 - 2019-05-27 18:13 - 000000000 ____D C:\Users\Jason\AppData\Local\phoenix-updater

2019-05-27 18:12 - 2019-05-27 18:12 - 046314776 _____ (Burst Apps Team) C:\Users\Jason\Downloads\win-phoenix-burst-wallet-setup.1.0.0-beta.7.exe

2019-05-27 11:07 - 2019-05-29 20:11 - 000001078 _____ C:\Users\Jason\Desktop\BurstWallet - Shortcut.lnk

2019-05-25 19:50 - 2019-05-29 20:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Qbundle

2019-05-25 19:28 - 2019-05-28 17:52 - 000001007 _____ C:\Users\Jason\Desktop\Scavenger Miner.lnk

2019-05-25 12:23 - 2019-05-25 12:23 - 000110968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll

2019-05-25 12:22 - 2019-05-25 12:23 - 079721824 _____ (Oracle Corporation) C:\Users\Jason\Downloads\jre-8u211-windows-x64.exe

2019-05-25 12:02 - 2019-05-27 18:13 - 000000000 ____D C:\Users\Jason\AppData\Roaming\Phoenix Burst Wallet

2019-05-25 10:56 - 2019-05-25 10:56 - 001486376 _____ (Microsoft Corporation) C:\Users\Jason\Downloads\ndp48-web.exe

2019-05-25 09:08 - 2019-05-18 03:18 - 000397104 _____ (Microsoft Corporation) Pdf to text converter command line 09:08 - 2019-05-18 02:27 - 000348984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll

2019-05-25 09:08 - 2019-05-17 06:03 - 025733632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2019-05-25 09:08 - 2019-05-17 05:52 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2019-05-25 09:08 - 2019-05-17 05:51 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll

2019-05-25 09:08 - 2019-05-17 05:39 - 002902016 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2019-05-25 09:08 - 2019-05-17 05:38 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll

2019-05-25 09:08 - 2019-05-17 05:37 - 000578560 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll

2019-05-25 09:08 - 2019-05-17 05:37 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec

2019-05-25 09:08 - 2019-05-17 05:37 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll

2019-05-25 09:08 - 2019-05-17 05:37 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll

2019-05-25 09:08 - 2019-05-17 05:30 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2019-05-25 09:08 - 2019-05-17 05:29 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

2019-05-25 09:08 - 2019-05-17 05:28 - 005775360 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2019-05-25 09:08 - 2019-05-17 05:27 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll

2019-05-25 09:08 - 2019-05-17 05:26 - 000790528 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll

2019-05-25 09:08 - 2019-05-17 05:26 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe

2019-05-25 09:08 - 2019-05-17 05:26 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe

2019-05-25 09:08 - 2019-05-17 05:25 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll

2019-05-25 09:08 - 2019-05-17 05:18 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe

2019-05-25 09:08 - 2019-05-17 05:17 - 020279296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2019-05-25 09:08 - 2019-05-17 05:15 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll

2019-05-25 09:08 - 2019-05-17 05:11 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2019-05-25 09:08 - 2019-05-17 05:08 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx

2019-05-25 09:08 - 2019-05-17 05:08 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll

2019-05-25 09:08 - 2019-05-17 05:07 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll

2019-05-25 09:08 - 2019-05-17 05:04 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll

2019-05-25 09:08 - 2019-05-17 05:04 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2019-05-25 09:08 - 2019-05-17 05:02 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll

2019-05-25 09:08 - 2019-05-17 05:00 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll

2019-05-25 09:08 - 2019-05-17 05:00 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll

2019-05-25 09:08 - 2019-05-17 05:00 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll

2019-05-25 09:08 - 2019-05-17 04:59 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec

2019-05-25 09:08 - 2019-05-17 04:59 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll

2019-05-25 09:08 - 2019-05-17 04:58 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll

2019-05-25 09:08 - 2019-05-17 04:56 - 002295808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2019-05-25 09:08 - 2019-05-17 04:53 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2019-05-25 09:08 - 2019-05-17 04:53 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll

2019-05-25 09:08 - 2019-05-17 04:51 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2019-05-25 09:08 - 2019-05-17 04:51 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll

2019-05-25 09:08 - 2019-05-17 04:50 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll

2019-05-25 09:08 - 2019-05-17 04:50 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe

2019-05-25 09:08 - 2019-05-17 04:49 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2019-05-25 09:08 - 2019-05-17 04:49 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2019-05-25 09:08 - 2019-05-17 04:49 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll

2019-05-25 09:08 - 2019-05-17 04:47 - 015284736 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2019-05-25 09:08 - 2019-05-17 04:47 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll

2019-05-25 09:08 - 2019-05-17 04:46 - 002135552 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2019-05-25 09:08 - 2019-05-17 04:42 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll

2019-05-25 09:08 - 2019-05-17 04:37 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx

2019-05-25 09:08 - 2019-05-17 04:37 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll

2019-05-25 09:08 - 2019-05-17 04:36 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll

2019-05-25 09:08 - 2019-05-17 04:34 - 004858880 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2019-05-25 09:08 - 2019-05-17 04:34 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll

2019-05-25 09:08 - 2019-05-17 04:33 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll

2019-05-25 09:08 - 2019-05-17 04:32 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll

2019-05-25 09:08 - 2019-05-17 04:31 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll

2019-05-25 09:08 - 2019-05-17 04:28 - 004493312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2019-05-25 09:08 - 2019-05-17 04:25 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll

2019-05-25 09:08 - 2019-05-17 04:24 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2019-05-25 09:08 - 2019-05-17 04:23 - 013682176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2019-05-25 09:08 - 2019-05-17 04:23 - 002059776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl

2019-05-25 09:08 - 2019-05-17 04:23 - 001557504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2019-05-25 09:08 - 2019-05-17 04:23 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll

2019-05-25 09:08 - 2019-05-17 04:12 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2019-05-25 09:08 - 2019-05-17 04:05 - 004386304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2019-05-25 09:08 - 2019-05-17 04:01 - 001323008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2019-05-25 09:08 - 2019-05-17 04:00 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

2019-05-25 09:08 - 2019-04-30 03:09 - 005552872 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe

2019-05-25 09:08 - 2019-04-30 03:09 - 001664360 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll

2019-05-25 09:08 - 2019-04-30 03:09 - 000708328 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi

2019-05-25 09:08 - 2019-04-30 03:09 - 000631680 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi

2019-05-25 09:08 - 2019-04-30 03:09 - 000262376 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll

2019-05-25 09:08 - 2019-04-30 03:09 - 000153832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys

2019-05-25 09:08 - 2019-04-30 03:09 - 000095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys

2019-05-25 09:08 - 2019-04-30 03:07 - 001472512 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll

2019-05-25 09:08 - 2019-04-30 03:07 - 000733184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll

2019-05-25 09:08 - 2019-04-30 03:07 - 000408576 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll

2019-05-25 09:08 - 2019-04-30 03:06 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll

2019-05-25 09:08 - 2019-04-30 02:59 - 004057320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe

2019-05-25 09:08 - 2019-04-30 02:59 - 003963624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe

2019-05-25 09:08 - 2019-04-30 02:58 - 001314104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll

2019-05-25 09:08 - 2019-04-30 02:56 - 000555520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll

2019-05-25 09:08 - 2019-04-30 02:56 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll

2019-05-25 09:08 - 2019-04-30 02:56 - 000275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll

2019-05-25 09:08 - 2019-04-23 19:42 - 000634312 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe

2019-05-25 09:08 - 2019-04-19 03:44 - 000185064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys

2019-05-25 09:08 - 2019-04-19 03:43 - 000064232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ULIAGPKX.SYS

2019-05-25 09:08 - 2019-04-19 03:43 - 000063208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\termdd.sys

2019-05-25 09:08 - 2019-04-19 03:43 - 000060648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\AGP440.sys

2019-05-25 09:08 - 2019-04-19 03:43 - 000031976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mssmbios.sys

2019-05-25 09:08 - 2019-04-19 03:43 - 000023784 _____ (Microsoft Corporation) C:\Windows\system32\streamci.dll

2019-05-25 09:08 - 2019-04-19 03:43 - 000020200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\isapnp.sys

2019-05-25 09:08 - 2019-04-19 03:42 - 000122600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\NV_AGP.SYS

2019-05-25 09:08 - 2019-04-19 03:42 - 000068328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys

2019-05-25 09:08 - 2019-04-19 03:42 - 000036064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vdrvroot.sys

2019-05-25 09:08 - 2019-04-19 03:42 - 000015080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msisadrv.sys

2019-05-25 09:08 - 2019-04-19 03:42 - 000012136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\swenum.sys

2019-05-25 09:08 - 2019-04-16 16:17 - 012880896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll

2019-05-25 09:08 - 2019-04-16 16:17 - 000583680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll

2019-05-25 09:08 - 2019-04-16 16:05 - 014184448 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll

2019-05-25 09:08 - 2019-04-16 16:05 - 002072576 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll

2019-05-25 09:08 - 2019-04-16 16:05 - 000878080 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll

2019-05-25 09:08 - 2019-04-14 06:42 - 000309480 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll

2019-05-25 09:08 - 2019-04-14 06:40 - 000111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll

2019-05-25 09:08 - 2019-04-14 06:39 - 000071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll

2019-05-25 09:08 - 2019-04-14 06:28 - 000383720 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll

2019-05-25 09:08 - 2019-04-14 06:26 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll

2019-05-25 09:08 - 2019-04-14 06:26 - 000101376 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll

2019-05-25 09:08 - 2019-04-12 14:05 - 000994384 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll

2019-05-25 09:08 - 2019-04-12 14:05 - 000064248 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:05 - 000020944 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:05 - 000019408 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:05 - 000017656 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:05 - 000017656 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:05 - 000016120 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:05 - 000015608 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:05 - 000014288 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll

2019-05-25 09:08 - 2019-04-12 14:05 - 000014072 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:05 - 000013560 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:05 - 000012752 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:05 - 000012536 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:05 - 000012240 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll

2019-05-25 09:08 - 2019-04-12 14:05 - 000012024 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:05 - 000012024 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:05 - 000012024 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:05 - 000012024 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:05 - 000012024 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll

2019-05-25 09:08 - 2019-04-12 14:05 - 000011512 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:05 - 000011512 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:05 - 000011512 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:05 - 000011504 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll

2019-05-25 09:08 - 2019-04-12 14:04 - 000914584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll

2019-05-25 09:08 - 2019-04-12 14:04 - 000065784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:04 - 000021752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:04 - 000018680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:04 - 000017352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:04 - 000017144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:04 - 000015608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:04 - 000015096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:04 - 000013560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:04 - 000013560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll

2019-05-25 09:08 - 2019-04-12 14:04 - 000013048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:04 - 000012024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:04 - 000012024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:04 - 000011728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll

2019-05-25 09:08 - 2019-04-12 14:04 - 000011512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:04 - 000011512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:04 - 000011512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:04 - 000011512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:04 - 000011512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll

2019-05-25 09:08 - 2019-04-12 14:04 - 000011000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:04 - 000011000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:04 - 000011000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll

2019-05-25 09:08 - 2019-04-12 14:04 - 000011000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll

2019-05-25 09:08 - 2019-04-09 16:05 - 003165184 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll

2019-05-25 09:08 - 2019-04-09 15:53 - 002651136 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll

2019-05-25 09:08 - 2019-04-09 15:52 - 000709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll

2019-05-25 09:08 - 2019-04-07 16:17 - 011411968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll

2019-05-25 09:08 - 2019-04-07 16:17 - 000617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll

2019-05-25 09:08 - 2019-04-07 16:17 - 000382976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll

2019-05-25 09:08 - 2019-04-07 16:17 - 000160256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll

2019-05-25 09:08 - 2019-04-07 16:16 - 003207168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll

2019-05-25 09:08 - 2019-04-07 16:15 - 000988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll

2019-05-25 09:08 - 2019-04-07 16:15 - 000744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll

2019-05-25 09:08 - 2019-04-07 16:05 - 000094440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys

2019-05-25 09:08 - 2019-04-07 16:03 - 014637568 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll

2019-05-25 09:08 - 2019-04-07 16:03 - 001281536 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll

2019-05-25 09:08 - 2019-04-07 16:03 - 000782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll

2019-05-25 09:08 - 2019-04-07 16:03 - 000499712 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll

2019-05-25 09:08 - 2019-04-07 16:03 - 000486400 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll

2019-05-25 09:08 - 2019-04-07 16:03 - 000174080 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll

2019-05-25 09:08 - 2019-04-07 16:03 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll

2019-05-25 09:08 - 2019-04-07 16:02 - 004120576 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll

2019-05-25 09:08 - 2019-04-07 16:02 - 001202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll

2019-05-25 09:08 - 2019-04-07 16:02 - 000842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll

2019-05-25 09:08 - 2019-04-07 16:02 - 000641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll

2019-05-25 09:08 - 2019-04-07 16:02 - 000497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll

2019-05-25 09:08 - 2019-04-07 16:02 - 000325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll

2019-05-25 09:08 - 2019-04-07 15:57 - 000663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys

2019-05-25 09:08 - 2019-04-07 15:42 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll

2019-05-25 09:08 - 2019-04-07 15:42 - 000376320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspbde40.dll

2019-05-25 09:08 - 2019-04-07 15:42 - 000353280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll

2019-05-25 09:08 - 2019-04-07 15:42 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll

2019-05-25 09:08 - 2019-04-07 15:42 - 000240640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msltus40.dll

2019-05-25 09:08 - 2019-04-07 15:38 - 000407040 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe

2019-05-25 09:08 - 2019-04-07 15:36 - 003229184 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys

2019-05-25 09:08 - 2019-04-05 01:34 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\cryptdll.dll

2019-05-25 09:08 - 2019-04-05 01:23 - 000057856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdll.dll

2019-05-25 09:07 - 2019-04-30 03:07 - 001211392 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll

2019-05-25 09:07 - 2019-04-30 03:07 - 001162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll

2019-05-25 09:07 - 2019-04-30 03:07 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll

2019-05-25 09:07 - 2019-04-30 03:07 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll

2019-05-25 09:07 - 2019-04-30 03:07 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll

2019-05-25 09:07 - 2019-04-30 03:07 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll

2019-05-25 09:07 - 2019-04-30 03:07 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll

2019-05-25 09:07 - 2019-04-30 03:07 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll

2019-05-25 09:07 - 2019-04-30 03:07 - 000236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll

2019-05-25 09:07 - 2019-04-30 03:07 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll

2019-05-25 09:07 - 2019-04-30 03:07 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll

2019-05-25 09:07 - 2019-04-30 03:07 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll

2019-05-25 09:07 - 2019-04-30 03:07 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll

2019-05-25 09:07 - 2019-04-30 03:07 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll

2019-05-25 09:07 - 2019-04-30 03:07 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll

2019-05-25 09:07 - 2019-04-30 03:07 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll

2019-05-25 09:07 - 2019-04-30 03:07 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll

2019-05-25 09:07 - 2019-04-30 03:07 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll

2019-05-25 09:07 - 2019-04-30 03:07 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll

2019-05-25 09:07 - 2019-04-30 03:07 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll

2019-05-25 09:07 - 2019-04-30 03:07 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll

2019-05-25 09:07 - 2019-04-30 03:07 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll

2019-05-25 09:07 - 2019-04-30 03:07 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll

2019-05-25 09:07 - 2019-04-30 03:07 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 03:06 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 02:56 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll

2019-05-25 09:07 - 2019-04-30 02:41 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe

2019-05-25 09:07 - 2019-04-30 02:41 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe

2019-05-25 09:07 - 2019-04-30 02:41 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys

2019-05-25 09:07 - 2019-04-30 02:41 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe

2019-05-25 09:07 - 2019-04-30 02:38 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe

2019-05-25 09:07 - 2019-04-30 02:38 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys

2019-05-25 09:07 - 2019-04-30 02:37 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe

2019-05-25 09:07 - 2019-04-30 02:37 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe

2019-05-25 09:07 - 2019-04-30 02:37 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll

2019-05-25 09:07 - 2019-04-30 02:35 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys

2019-05-25 09:07 - 2019-04-30 02:35 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys

2019-05-25 09:07 - 2019-04-30 02:35 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys

2019-05-25 09:07 - 2019-04-30 02:35 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys

2019-05-25 09:07 - 2019-04-30 02:35 - 000161280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys

2019-05-25 09:07 - 2019-04-30 02:35 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys

2019-05-25 09:07 - 2019-04-30 02:34 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe

2019-05-25 09:07 - 2019-04-30 02:34 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys

2019-05-25 09:07 - 2019-04-30 02:34 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys

2019-05-25 09:07 - 2019-04-30 02:34 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys

2019-05-25 09:07 - 2019-04-30 02:34 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys

2019-05-25 09:07 - 2019-04-30 02:34 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys

2019-05-25 09:07 - 2019-04-30 02:34 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe

2019-05-25 09:07 - 2019-04-30 02:33 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll

2019-05-25 09:07 - 2019-04-30 02:33 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe

2019-05-25 09:07 - 2019-04-30 02:33 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll

2019-05-25 09:07 - 2019-04-30 02:33 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe

2019-05-25 09:07 - 2019-04-30 02:33 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe

2019-05-25 09:07 - 2019-04-30 02:32 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 02:32 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 02:32 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll

2019-05-25 09:07 - 2019-04-30 02:32 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll

2019-05-25 09:07 - 2019-04-16 16:17 - 001425920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll

2019-05-25 09:07 - 2019-04-16 16:17 - 000628224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll

2019-05-25 09:07 - 2019-04-16 16:17 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll

2019-05-25 09:07 - 2019-04-16 16:17 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll

2019-05-25 09:07 - 2019-04-16 16:16 - 001499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll

2019-05-25 09:07 - 2019-04-16 16:05 - 001867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll

2019-05-25 09:07 - 2019-04-16 16:05 - 000806400 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll

2019-05-25 09:07 - 2019-04-16 16:05 - 000516096 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll

2019-05-25 09:07 - 2019-04-16 16:05 - 000405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll

2019-05-25 09:07 - 2019-04-16 16:05 - 000026112 _____ (Microsoft Corporation) Magic Desktop 9.5.0 Crack + License Key Free Download 2020 09:07 - 2019-04-16 16:05 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll

2019-05-25 09:07 - 2019-04-16 15:55 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll

2019-05-25 09:07 - 2019-04-14 06:40 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll

2019-05-25 09:07 - 2019-04-14 06:39 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll

2019-05-25 09:07 - 2019-04-14 06:26 - 000046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll

2019-05-25 09:07 - 2019-04-14 06:26 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll

2019-05-25 09:07 - 2019-04-14 06:26 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll

2019-05-25 09:07 - 2019-04-14 06:12 - 000034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll

2019-05-25 09:07 - 2019-04-09 16:17 - 000174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll

2019-05-25 09:07 - 2019-04-09 16:05 - 000573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll

2019-05-25 09:07 - 2019-04-09 16:05 - 000192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll

2019-05-25 09:07 - 2019-04-09 16:05 - 000098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll

2019-05-25 09:07 - 2019-04-09 16:05 - 000093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll

2019-05-25 09:07 - 2019-04-09 16:05 - 000035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe

2019-05-25 09:07 - 2019-04-09 16:05 - 000030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll

2019-05-25 09:07 - 2019-04-09 16:03 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll

2019-05-25 09:07 - 2019-04-09 15:52 - 000140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe

2019-05-25 09:07 - 2019-04-09 15:52 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll

2019-05-25 09:07 - 2019-04-09 15:52 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe

2019-05-25 09:07 - 2019-04-09 15:52 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll

2019-05-25 09:07 - 2019-04-09 15:52 - 000012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll

2019-05-25 09:07 - 2019-04-07 16:17 - 012574208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL

2019-05-25 09:07 - 2019-04-07 16:17 - 000179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll

2019-05-25 09:07 - 2019-04-07 16:16 - 001329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll

2019-05-25 09:07 - 2019-04-07 16:16 - 000519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll

2019-05-25 09:07 - 2019-04-07 16:16 - 000504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll

2019-05-25 09:07 - 2019-04-07 16:16 - 000442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll

2019-05-25 09:07 - 2019-04-07 16:16 - 000354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll

2019-05-25 09:07 - 2019-04-07 16:16 - 000265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll

2019-05-25 09:07 - 2019-04-07 16:16 - 000103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll

2019-05-25 09:07 - 2019-04-07 16:16 - 000046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssign32.dll

2019-05-25 09:07 - 2019-04-07 16:16 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll

2019-05-25 09:07 - 2019-04-07 16:15 - 001177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll

2019-05-25 09:07 - 2019-04-07 16:15 - 001005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll

2019-05-25 09:07 - 2019-04-07 16:15 - 000489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll

2019-05-25 09:07 - 2019-04-07 16:15 - 000406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll

2019-05-25 09:07 - 2019-04-07 16:15 - 000373248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll

2019-05-25 09:07 - 2019-04-07 16:15 - 000195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll

2019-05-25 09:07 - 2019-04-07 16:15 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll

2019-05-25 09:07 - 2019-04-07 16:15 - 000106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll

2019-05-25 09:07 - 2019-04-07 16:15 - 000080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll

2019-05-25 09:07 - 2019-04-07 16:03 - 012574720 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL

2019-05-25 09:07 - 2019-04-07 16:03 - 001574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll

2019-05-25 09:07 - 2019-04-07 16:03 - 000371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll

2019-05-25 09:07 - 2019-04-07 16:03 - 000229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll

2019-05-25 09:07 - 2019-04-07 16:03 - 000187904 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll

2019-05-25 09:07 - 2019-04-07 16:03 - 000037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll

2019-05-25 09:07 - 2019-04-07 16:03 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll

2019-05-25 09:07 - 2019-04-07 16:03 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll

2019-05-25 09:07 - 2019-04-07 16:03 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll

2019-05-25 09:07 - 2019-04-07 16:03 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx

2019-05-25 09:07 - 2019-04-07 16:03 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll

2019-05-25 09:07 - 2019-04-07 16:02 - 001484800 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll

2019-05-25 09:07 - 2019-04-07 16:02 - 001068544 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll

2019-05-25 09:07 - 2019-04-07 16:02 - 000680448 _____ (Microsoft Corporation) Freemake video converter full - Crack Key For U 09:07 - 2019-04-07 16:02 - 000632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll

2019-05-25 09:07 - 2019-04-07 16:02 - 000438784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll

2019-05-25 09:07 - 2019-04-07 16:02 - 000433152 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll

2019-05-25 09:07 - 2019-04-07 16:02 - 000295936 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll

2019-05-25 09:07 - 2019-04-07 16:02 - 000284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll

2019-05-25 09:07 - 2019-04-07 16:02 - 000206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll

2019-05-25 09:07 - 2019-04-07 16:02 - 000190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll

2019-05-25 09:07 - 2019-04-07 16:02 - 000141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll

2019-05-25 09:07 - 2019-04-07 16:02 - 000081920 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll

2019-05-25 09:07 - 2019-04-07 16:02 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\mssign32.dll

2019-05-25 09:07 - 2019-04-07 16:02 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll

2019-05-25 09:07 - 2019-04-07 16:02 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll

2019-05-25 09:07 - 2019-04-07 16:02 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx

2019-05-25 09:07 - 2019-04-07 16:02 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll

2019-05-25 09:07 - 2019-04-07 16:02 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll

2019-05-25 09:07 - 2019-04-07 16:01 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe

2019-05-25 09:07 - 2019-04-07 16:01 - 000023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe

2019-05-25 09:07 - 2019-04-07 15:49 - 000054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe

2019-05-25 09:07 - 2019-04-07 15:48 - 000028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll

2019-05-25 09:07 - 2019-04-07 15:45 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe

2019-05-25 09:07 - 2019-04-07 15:45 - 000055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe

2019-05-25 09:07 - 2019-04-07 15:45 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe

2019-05-25 09:07 - 2019-04-07 15:35 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe

2019-05-25 09:07 - 2019-04-07 15:33 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe

2019-05-25 09:07 - 2019-04-07 15:33 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe

2019-05-24 20:24 - 2019-05-24 20:24 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01011.Wdf

2019-05-24 19:44 - 2019-05-24 22:01 - 000000000 ____D C:\Users\Jason\AppData\Roaming\TREZOR Bridge

2019-05-24 19:44 - 2019-05-24 19:45 - 000000258 __RSH C:\ProgramData\ntuser.pol

2019-05-24 19:44 - 2019-05-24 19:44 - 001795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll

2019-05-24 19:44 - 2019-05-24 19:44 - 001002728 _____ (Microsoft Corporation) C:\Windows\system32\WinUSBCoInstaller2.dll

2019-05-24 19:44 - 2019-05-24 19:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TREZOR Bridge

2019-05-24 19:43 - 2019-05-24 19:45 - 000000000 ____D C:\Program Files (x86)\TREZOR Bridge

2019-05-24 19:43 - 2019-05-24 19:43 - 015465928 _____ C:\Users\Jason\Downloads\trezor-bridge-2.0.27-win32-install.exe

2019-04-27 17:54 - 2019-04-11 02:11 - 000419648 _____ C:\Windows\SysWOW64\locale.nls

2019-04-27 17:54 - 2019-04-11 02:11 - 000419648 _____ C:\Windows\system32\locale.nls

2019-04-26 16:38 - 2019-04-26 16:38 - 000000000 ____D C:\Users\Jason\AppData\Local\poker

2019-04-26 16:36 - 2019-04-26 16:37 - 233643573 _____ (888) C:\Users\Jason\Documents\888pokersetup.exe

2019-04-26 16:35 - 2019-04-26 17:22 - 000000000 ____D C:\Users\Jason\Documents\888poker

2019-04-26 16:35 - 2019-04-26 16:36 - 000682200 _____ (Random-Logic) C:\Users\Jason\Downloads\888poker_installer.exe

2019-04-26 16:27 - 2019-04-26 16:27 - 000001804 _____ C:\Users\Jason\AppData\Roaming\Microsoft\Windows\Start Menu\Winner Poker.lnk

2019-04-26 16:27 - 2019-04-26 16:27 - 000001802 _____ C:\Users\Jason\Desktop\Winner Poker.lnk

2019-04-26 16:25 - 2019-04-26 16:27 - 000000000 ____D C:\Users\Jason\AppData\Local\Winner Poker

2019-04-25 19:34 - 2019-04-25 19:34 - 000000058 _____ C:\Users\Jason\Downloads\holdem_license.txt

2019-04-25 18:17 - 2019-04-25 18:17 - 005508778 _____ (Shanky Technologies ) C:\Users\Jason\Downloads\holdem_installer.exe

2019-04-17 20:53 - 2019-04-17 20:53 - 000268143 _____ C:\Users\Jason\Desktop\11KV certificate.pdf

2019-04-17 20:51 - 2019-04-17 20:51 - 000264056 _____ C:\Users\Jason\Desktop\gtc10001.pdf

2019-04-09 21:08 - 2019-03-29 02:36 - 000114688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\luafv.sys

2019-04-09 21:08 - 2019-03-27 01:40 - 003181568 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll

2019-04-09 21:08 - 2019-03-21 03:10 - 000032768 _____ (Microsoft Corporation) C:\Windows\system32\sxssrv.dll

2019-04-09 21:08 - 2019-03-16 05:11 - 000114408 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe

2019-04-09 21:08 - 2019-03-16 05:09 - 003247616 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll

2019-04-09 21:08 - 2019-03-16 05:09 - 000504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll

2019-04-09 21:08 - 2019-03-16 05:09 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll

2019-04-09 21:08 - 2019-03-16 05:09 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll

2019-04-09 21:08 - 2019-03-16 05:09 - 000008192 _____ (Microsoft Corporation) C:\Windows\system32\msimg32.dll

2019-04-09 21:08 - 2019-03-16 05:08 - 001942016 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll

2019-04-09 21:08 - 2019-03-16 05:08 - 000070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll

2019-04-09 21:08 - 2019-03-16 04:58 - 002368000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll

2019-04-09 21:08 - 2019-03-16 04:58 - 001806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll

2019-04-09 21:08 - 2019-03-16 04:58 - 000337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll

2019-04-09 21:08 - 2019-03-16 04:58 - 000046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll

2019-04-09 21:08 - 2019-03-16 04:58 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll

2019-04-09 21:08 - 2019-03-16 04:58 - 000004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimg32.dll

2019-04-09 21:08 - 2019-03-16 04:42 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe

2019-04-09 21:08 - 2019-03-16 04:38 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe

2019-04-09 21:08 - 2019-03-13 15:35 - 000475648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxbde40.dll

2019-04-09 21:08 - 2019-03-11 22:41 - 002009600 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll

2019-04-09 21:08 - 2019-03-11 22:41 - 001894912 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll

2019-04-09 21:08 - 2019-03-11 22:41 - 001032192 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll

2019-04-09 21:08 - 2019-03-11 22:41 - 000688128 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll

2019-04-09 21:08 - 2019-03-11 22:41 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\oleprn.dll

2019-04-09 21:08 - 2019-03-11 22:41 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll

2019-04-09 21:08 - 2019-03-11 22:41 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll

2019-04-09 21:08 - 2019-03-11 22:33 - 001391616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll

2019-04-09 21:08 - 2019-03-11 22:33 - 001241088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll

2019-04-09 21:08 - 2019-03-11 22:33 - 000827904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll

2019-04-09 21:08 - 2019-03-11 22:33 - 000107520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleprn.dll

2019-04-09 21:08 - 2019-03-11 22:33 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll

2019-04-09 21:08 - 2019-03-11 22:33 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll

2019-04-09 21:08 - 2019-02-21 16:48 - 000025088 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe

2019-04-09 21:08 - 2019-02-21 16:43 - 000026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netbtugc.exe

2019-04-09 21:08 - 2019-02-21 16:37 - 000262656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys

2019-04-07 15:44 - 2019-04-07 15:44 - 000557755 _____ C:\Users\Jason\Downloads\P&P Swing sign.pdf

2019-04-07 15:28 - 2019-04-07 15:28 - 000674853 _____ C:\Users\Jason\Downloads\P&P Poster.pdf

2019-04-07 13:32 - 2019-04-07 13:32 - 000001747 _____ C:\Users\Public\Desktop\iTunes.lnk

2019-04-07 13:32 - 2019-04-07 13:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes

2019-04-07 13:32 - 2019-04-07 13:32 - 000000000 ____D C:\Program Files\iTunes

2019-04-07 13:32 - 2019-04-07 13:32 - 000000000 ____D C:\Program Files\iPod

2019-04-07 13:31 - 2019-03-05 03:44 - 000076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys

2019-04-07 13:31 - 2019-03-05 03:44 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys

2019-04-07 13:31 - 2019-03-05 03:44 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys

2019-04-07 13:31 - 2019-02-22 03:35 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll

2019-04-07 13:31 - 2019-02-16 07:02 - 000972288 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll

2019-04-07 13:31 - 2019-02-16 07:02 - 000443904 _____ download ccleaner slim - Crack Key For U Corporation) C:\Windows\system32\winspool.drv

2019-04-07 13:31 - 2019-02-16 06:50 - 000321536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv

2019-04-07 13:31 - 2019-02-15 17:09 - 000355328 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll

2019-04-07 13:31 - 2019-02-15 16:58 - 000320512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll

2019-04-07 13:31 - 2019-02-15 16:40 - 000415744 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe

2019-04-07 13:31 - 2019-02-15 16:40 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe

2019-04-07 13:31 - 2019-02-15 16:38 - 000360960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe

2019-04-07 13:31 - 2019-02-15 16:38 - 000028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe

2019-04-07 13:31 - 2019-02-10 17:10 - 001680104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys

2019-04-07 13:31 - 2019-02-10 16:36 - 000328192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys

2019-04-07 13:31 - 2019-02-10 16:36 - 000205312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys

2019-04-07 13:31 - 2019-02-10 16:36 - 000195584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys

2019-04-07 13:31 - 2019-02-10 16:35 - 000092672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdfs.sys

2019-04-07 13:31 - 2019-02-08 17:07 - 001133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll

2019-04-07 13:31 - 2019-02-08 16:59 - 000805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll

2019-04-07 13:31 - 2019-02-07 17:06 - 000027648 _____ (Microsoft Corporation) C:\Windows\system32\brdgcfg.dll

2019-04-07 13:31 - 2019-02-07 17:06 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\bridgeres.dll

2019-04-07 13:31 - 2019-02-07 17:01 - 000095232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys

2019-04-07 13:31 - 2019-02-07 16:46 - 000020992 _____ (Microsoft Corporation) C:\Windows\system32\bridgeunattend.exe

2019-04-07 13:31 - 2019-02-03 16:36 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msfs.sys

2019-04-07 13:31 - 2019-01-04 17:13 - 000143592 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe

2019-04-07 13:31 - 2019-01-04 17:07 - 000727040 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll

2019-04-07 13:31 - 2019-01-04 15:05 - 002862592 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe

2019-04-07 13:31 - 2019-01-04 15:05 - 001635328 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll

2019-04-07 13:31 - 2019-01-04 15:05 - 000799744 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll

2019-04-07 13:31 - 2019-01-04 15:05 - 000623104 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll

2019-04-07 13:31 - 2019-01-04 15:05 - 000495616 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll

2019-04-07 13:31 - 2019-01-04 15:05 - 000451584 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll

2019-04-07 13:31 - 2019-01-04 15:05 - 000313856 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll

2019-04-07 13:31 - 2019-01-04 15:05 - 000253952 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll

2019-04-07 13:30 - 2019-04-07 13:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud

2019-04-04 17:38 - 2019-04-01 15:55 - 000334336 _____ (Microsoft Corporation) C:\Windows\system32\sipnotify.exe

2019-03-28 02:11 - 2019-03-28 02:11 - 000029232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll

2019-03-28 02:11 - 2019-03-28 02:11 - 000017968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr110_clr0400.dll

2019-03-28 02:11 - 2019-03-28 02:11 - 000017968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr100_clr0400.dll

2019-03-28 02:11 - 2019-03-28 02:11 - 000017968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp110_clr0400.dll

2019-03-28 02:09 - 2019-03-28 02:09 - 000032816 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll

2019-03-28 02:09 - 2019-03-28 02:09 - 000017968 _____ (Microsoft Corporation) C:\Windows\system32\msvcr110_clr0400.dll

2019-03-28 02:09 - 2019-03-28 02:09 - 000017968 _____ (Microsoft Corporation) C:\Windows\system32\msvcr100_clr0400.dll

2019-03-28 02:09 - 2019-03-28 02:09 - 000017968 _____ (Microsoft Corporation) C:\Windows\system32\msvcp110_clr0400.dll

2019-03-27 10:16 - 2019-03-27 10:16 - 000772176 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase_clr0400.dll

2019-03-27 10:16 - 2019-03-27 10:16 - 000702400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase_clr0400.dll

2019-03-27 10:16 - 2019-03-27 Adobe Flash Player 32.0.0.192 License Key - Crack Key For U - 000622832 _____ (Microsoft Corporation) C:\Windows\system32\msvcp140_clr0400.dll

2019-03-27 10:16 - 2019-03-27 10:16 - 000433448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp140_clr0400.dll

2019-03-27 10:16 - 2019-03-27 10:16 - 000087296 _____ (Microsoft Corporation) C:\Windows\system32\vcruntime140_clr0400.dll

2019-03-27 10:16 - 2019-03-27 10:16 - 000083768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vcruntime140_clr0400.dll

2019-03-13 00:58 - 2019-02-16 06:32 - 000142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe

2019-03-13 00:58 - 2019-02-16 06:30 - 000123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe

2019-03-11 14:35 - 2019-03-11 14:35 - 000993632 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll

2019-03-11 14:35 - 2019-03-11 14:35 - 000987840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr120_clr0400.dll

2019-03-11 14:35 - 2019-03-11 14:35 - 000690008 _____ (Microsoft Corporation) C:\Windows\system32\msvcp120_clr0400.dll

2019-03-11 14:35 - 2019-03-11 14:35 - 000485576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp120_clr0400.dll

 

==================== Three months (modified) ========

 

(If an entry is included in the fixlist, the file/folder will be moved.)

 

2019-05-29 22:27 - 2014-09-14 15:27 - 000000000 ____D C:\ProgramData\Malwarebytes

2019-05-29 21:59 - 2017-05-07 17:33 - 000000000 ____D C:\Users\Jason\AppData\Local\ElevatedDiagnostics

2019-05-29 21:03 - 2009-07-14 05:45 - 000028944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2019-05-29 21:03 - 2009-07-14 05:45 - 000028944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2019-05-29 20:36 - 2014-09-14 17:32 - 000000000 ____D C:\Users\Jason\AppData\Local\CrashDumps

2019-05-29 19:02 - 2009-07-14 06:13 - 000781790 _____ C:\Windows\system32\PerfStringBackup.INI

2019-05-29 19:02 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf

2019-05-29 18:57 - 2015-03-14 17:52 - 000000000 ___RD C:\Users\Jason\iCloudDrive

2019-05-29 18:57 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT

2019-05-28 14:50 - 2018-03-07 20:59 - 000000000 ____D C:\Wallets

2019-05-26 05:59 - 2015-05-16 08:31 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft

2019-05-26 05:58 - 2015-05-16 08:28 - 000000000 ____D C:\Program Files\Microsoft Office 15

2019-05-25 18:14 - 2014-09-14 13:45 - 000000000 ____D C:\Users\Jason

2019-05-25 15:15 - 2018-08-05 17:18 - 000000000 ____D C:\Windows\rescache

2019-05-25 14:03 - 2014-09-14 15:11 - 000773912 _____ C:\Windows\SysWOW64\PerfStringBackup.INI

2019-05-25 12:23 - 2018-03-07 19:05 - 000000000 ____D C:\Program Files\Java

2019-05-25 12:23 - 2018-03-07 19:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java

2019-05-25 10:51 - 2014-09-14 15:43 - 000000000 ____D C:\Nvidia

2019-05-25 09:17 - 2009-07-14 05:45 - 000327160 _____ C:\Windows\system32\FNTCACHE.DAT

2019-05-25 09:16 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\SysWOW64\Dism

2019-05-25 09:16 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\Dism

2019-05-25 09:15 - 2014-09-14 14:31 - 000000000 ____D C:\Windows\system32\MRT

2019-05-25 09:13 - 2014-09-14 14:31 - 132445408 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe

2019-05-25 09:07 - 2018-03-07 19:03 - 000000000 ____D C:\Program Files (x86)\Java

2019-05-25 09:06 - 2018-03-07 19:03 - 000099192 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll

2019-05-24 19:44 - 2009-07-14 04:20 - 000000000 ___HD C:\Windows\system32\GroupPolicy

2019-05-21 21:30 - 2014-09-14 13:47 - 000002184 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk

2019-05-21 21:30 - 2014-09-14 13:47 - 000002143 _____ C:\Users\Public\Desktop\Google Chrome.lnk

2019-05-15 01:24 - 2014-09-14 13:47 - 000003332 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA

2019-05-15 01:24 - 2014-09-14 13:47 - 000003204 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore

2019-05-15 00:53 - 2018-07-24 19:25 - 000004324 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater

2019-05-15 00:53 - 2018-03-14 07:13 - 000004450 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier

2019-05-15 00:53 - 2015-05-26 19:28 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe

2019-05-15 00:53 - 2015-05-26 19:28 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

2019-05-15 00:53 - 2015-05-26 19:28 - 000000000 ____D C:\Windows\system32\Macromed

2019-05-15 00:53 - 2014-09-14 13:59 - 000000000 ____D C:\Windows\SysWOW64\Macromed

2019-05-14 23:13 - 2015-11-16 19:28 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

 

==================== Files in the root of some directories =======

 

2017-08-21 21:23 - 2017-09-26 16:10 - 000007600 _____ () C:\Users\Jason\AppData\Local\Resmon.ResmonCfg

2008-02-05 13:28 - 2008-02-05 13:28 - 000000051 _____ () C:\Users\Jason\AppData\Local\setup.txt

 

==================== FCheck ================================

 

(If an entry is included in the fixlist, the file/folder will be moved.)

 

FCheck: C:\Windows\system32\MRT-KB890830.exe [2018-07-24] <==== ATTENTION (zero byte File/Folder)

 

==================== SigCheck ===============================

 

(There is no automatic fix for files that do not pass verification.)

 

 

LastRegBack: 2019-05-23 00:06

==================== End of FRST.txt ============================

 

 

 

ADDITION

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-05.2019

Ran by Jason (30-05-2019 18:21:27)

Running from J:\

Windows 7 Home Premium Service Pack 1 (X64) (2014-09-14 12:45:15)

Boot Mode: Normal

==========================================================

 

 

==================== Accounts: =============================

 

Administrator (S-1-5-21-2649046142-4009747702-1050386706-500 - Administrator - Disabled)

Guest (S-1-5-21-2649046142-4009747702-1050386706-501 - Limited - Disabled)

HomeGroupUser$ (S-1-5-21-2649046142-4009747702-1050386706-1003 - Limited - Enabled)

Jason (S-1-5-21-2649046142-4009747702-1050386706-1000 - Administrator - Enabled) => C:\Users\Jason

postgres (S-1-5-21-2649046142-4009747702-1050386706-1001 - Limited - Enabled) => C:\Users\postgres

 

==================== Security Center ========================

 

(If an entry is included in the Folder Lock Key 7.8.5 Crack + Serial Key Free Download 2021, it will be removed.)

 

 

==================== Installed Programs ======================

 

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

 

7-Zip 18.01 (x64) (HKLM\.\7-Zip) (Version: 18.01 - Igor Pavlov)

888poker (HKLM-x32\.\{04930ACC-2BE8-4A77-9DED-38755F3114C8}) (Version: 7.14.00110 - 888) Hidden

888poker (HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\InstallShield_{04930ACC-2BE8-4A77-9DED-38755F3114C8}) (Version: 7.14.00110 - 888)

activex_new (HKLM-x32\.\activex_new_is1) (Version:  - )

Adobe Acrobat Reader DC (HKLM-x32\.\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 19.012.20034 - Adobe Systems Incorporated)

Adobe Flash Player 32 ActiveX (HKLM-x32\.\Adobe Flash Player ActiveX) (Version: 32.0.0.192 - Adobe)

Adobe Flash Player 32 NPAPI (HKLM-x32\.\Adobe Flash Player NPAPI) (Version: 32.0.0.192 - Adobe)

AI Suite II (HKLM-x32\.\{34D3688E-A737-44C5-9E2A-FF73618728E1}) (Version: 1.02.03 - ASUSTeK Computer Inc.)

Apple Application Support (32-bit) (HKLM-x32\.\{9F7041CB-8398-4691-B8CB-0D52273BB3D9}) (Version: 7.4 - Apple Inc.)

Apple Application Support (64-bit) (HKLM\.\{6E7DF4EE-1976-4215-9D81-755AFC95687D}) (Version: 7.4 - Apple Inc.)

Apple Mobile Device Support (HKLM\.\{BA2A6DBB-B09A-43D8-84F3-21C1537B47D9}) (Version: 12.2.0.15 - Apple Inc.)

Apple Software Update (HKLM-x32\.\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)

Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\.\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.14.8.0 - Asmedia Technology)

balenaEtcher 1.4.8 (only current user) (HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\d2f3b6c7-6f49-59e2-b8a5-f72e33900c2b) (Version: 1.4.8 - Balena Inc.)

Bitcoin Core (64-bit) (HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\Bitcoin Core (64-bit)) (Version: 0.9.3 - Bitcoin Core project)

BitcoinHD Chain (64-bit) (HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\BitcoinHD Chain (64-bit)) (Version: 1.2.4 - BitcoinHD Chain project)

Bluetooth Win7 Suite (64) (HKLM\.\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.2.0.65 - Atheros Communications)

Bonjour (HKLM\.\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)

Chrome Remote Desktop Host (HKLM-x32\.\{786E64DA-CDC1-432B-BCAB-5912C73A72E9}) (Version: 74.0.3729.56 - Google Inc.)

Coral Poker (HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\Coral Poker) (Version:  - )

Coral Poker Notification (HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\Coral Poker notification) (Version:  - )

Darkcoin (HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\Darkcoin) (Version: 0.10.16.16 - Darkcoin Project)

Delta 0.9.2 (only current user) (HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\0161ecdc-2041-5655-9e4e-ee442fb322e0) (Version: 0.9.2 - Opus Labs CVBA)

Google Chrome (HKLM-x32\.\Google Chrome) (Version: 74.0.3729.169 - Google Inc.)

Google Update Helper (HKLM-x32\.\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden

Google Update Helper (HKLM-x32\.\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden

Haasbot 2.0 (HKLM-x32\.\{71720603-D982-4A65-9174-3CC2904E3E1F}) (Version: 2.2.0 - Haasonline Software)

HP Officejet 6500 E710n-z Basic Device Software (HKLM\.\{D79A5962-7305-41B9-A39E-A98AB598F372}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)

HP Officejet 6500 E710n-z Help (HKLM-x32\.\{130E5108-547F-4482-91EE-F45C784E08C7}) (Version: 140.0.2.2 - Hewlett Packard)

HP Update (HKLM-x32\.\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)

I.R.I.S. OCR (HKLM-x32\.\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)

iCloud (HKLM\.\{03742818-3BC2-45BA-B6BB-4C2D453FD033}) (Version: 7.11.0.19 - Apple Inc.)

Intel® Management Engine Components (HKLM-x32\.\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)

Intel® Network Connections 15.6.25.0 (HKLM\.\PROSetDX) (Version: 15.6.25.0 - Intel)

Intel® Processor Graphics (HKLM-x32\.\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation)

Intel® Watchdog Timer Driver (Intel® WDT) (HKLM-x32\.\{3FD0C489-0F02-481a-A3E1-9754CD396761}) (Version:  - Intel Corporation)

Inview Management Station (HKLM-x32\.\IMS_is1) (Version: 2.0.3.0.10.0 - Sunell)

iTunes (HKLM\.\{CAA61CDB-0E1E-4E7F-89E1-36FBCC3C0EFB}) (Version: 12.9.4.102 - Apple Inc.)

Java 8 Update 211 (64-bit) (HKLM\.\{26A24AE4-039D-4CA4-87B4-2F64180211F0}) (Version: 8.0.2110.12 - Oracle Corporation)

Java 8 Update 211 (HKLM-x32\.\{26A24AE4-039D-4CA4-87B4-2F32180211F0}) (Version: 8.0.2110.12 - Oracle Corporation)

Malwarebytes version 3.7.1.2839 (HKLM\.\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 Efofex FX Draw Tools 21.4.28 + Crack [Latest Version] 2021 Malwarebytes)

marvell 91xx driver (HKLM-x32\.\MagniDriver) (Version: 1.0.0.1045 - Marvell)

Microsoft .NET Framework 4.8 (HKLM\.\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)

Microsoft Office Home and Student 2013 - en-us (HKLM\.\HomeStudentRetail - en-us) (Version: 15.0.5137.1000 - Microsoft Corporation)

Microsoft OneDrive (HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\OneDriveSetup.exe) (Version: 17.3.4604.0120 - Microsoft Corporation)

Microsoft Security Essentials (HKLM\.\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation)

Microsoft Silverlight (HKLM\.\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\.\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\.\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\.\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\.\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\.\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)

Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\.\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)

NetBet Poker (HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\Netbet Poker) (Version: 1.1.1.35 - NetBet Poker)

NetClientOCX version 6.3.2.6 (HKLM-x32\.\{09E218A5-2C33-4E05-905E-F622440C1F83}_is1) (Version: 6.3.2.6 - longse, Inc.)

NetTime (HKLM-x32\.\NetTime_is1) (Version:  - Mark Griffiths)

No-IP DUC (HKLM-x32\.\NoIPDUC) (Version: 4.1.1 - Vitalwerks Internet Solutions LLC)

Office 15 Click-to-Run Extensibility Component (HKLM-x32\.\{90150000-008C-0000-0000-0000000FF1CE}) (Version: 15.0.5137.1000 - Microsoft Corporation) Hidden

Office 15 Click-to-Run Licensing Component (HKLM\.\{90150000-008F-0000-1000-0000000FF1CE}) (Version: 15.0.5137.1000 - Microsoft Corporation) Hidden

Office 15 Click-to-Run Localization Component (HKLM-x32\.\{90150000-008C-0409-0000-0000000FF1CE}) (Version: 15.0.5137.1000 - Microsoft Corporation) Hidden

Paycoin (HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\Paycoin) (Version: 0.1.2.20 - Paycoin project)

Phoenix Burst Wallet 1.0.0-beta.7 (HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\51768e19-095d-511e-91cc-7570f2d96346) (Version: 1.0.0-beta.7 - Burst Apps Team)

PostgreSQL 9.3  (HKLM\.\PostgreSQL 9.3) (Version: 9.3 - PostgreSQL Global Development Group)

Qbundle (HKLM\.\{43A704F7-82F6-44FC-84C4-7FD4A8D358A1}) (Version: 2.1.0 - Adobe Flash Player 32.0.0.192 License Key - Crack Key For U High Definition Audio Driver (HKLM-x32\.\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6251 - Realtek Semiconductor Corp.)

Samsung Data Migration (HKLM-x32\.\{3B304604-0BF5-488E-AB95-F2F2E31206F3}) (Version: 3.1 - Samsung)

Samsung Magician (HKLM-x32\.\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 5.2.1.1780 - Samsung Electronics)

Spybot - Search & Destroy (HKLM-x32\.\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)

Storj Share (64-bit) (HKLM\.\Storj Share) (Version: 7.3.4 - Storj Labs Inc.)

Titanbet Poker UK (HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\Titanbet Poker) (Version: 1.1.1.32 - Titanbet Poker UK)

Titanbet Poker UK (HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\Titanbet.co.uk) (Version:  - )

TomTom MyDrive Connect 4.2.4.3691 (HKLM-x32\.\MyDriveConnect) (Version: 4.2.4.3691 - TomTom)

Visual Studio C++ 10.0 Runtime (HKLM-x32\.\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)

Web Components (HKLM-x32\.\{03B13AF8-9625-478A-AF0E-205337B9415A}_is1) (Version:  - )

WebPluginNVR (HKLM-x32\.\{102325F8-ABE3-4D84-AA27-CFC7E39EF539}) (Version: 1.0.1 - ) Hidden

WebPluginNVR (HKLM-x32\.\InstallShield_{102325F8-ABE3-4D84-AA27-CFC7E39EF539}) (Version: 1.0.1 - )

William Hill Poker (HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\William Hill Poker) (Version: 1.1.1.32 - William Hill Poker)

William Hill Poker Notification (HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\William Hill Poker notification) (Version:  - )

Windows Driver Package - Silicon Laboratories Inc. (silabser) Ports  (05/23/2018 6.7.6.2130) (HKLM\.\C9C3E5CCB43EEF685DD0E2BB4263DDC88C9B3834) (Version: 05/23/2018 6.7.6.2130 - Silicon Laboratories Inc.)

Windows Driver Package - Silicon Laboratories Inc. (silabser) Ports  (09/27/2017 6.7.5.1893) (HKLM\.\3C57DA61F41601ACF85CC77F740AA00672E0BCD7) (Version: 09/27/2017 6.7.5.1893 - Silicon Laboratories Inc.)

Winner Poker (HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\winnerpoker) (Version: 1.1.1.35 - Winner Poker)

 

==================== Custom CLSID (Whitelisted): ==========================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-28] (Igor Pavlov) [File not signed]

ContextMenuHandlers1: [Atheros] -> {B8952421-0E55-400B-94A6-FA858FC0A39F} => C:\Program Files (x86)\Bluetooth Suite\BtvAppExt.dll [2011-03-13] (Atheros Communications Inc. -> Atheros Commnucations) [File Inpaint 9.0.2 Serial key Crack Free signed]

ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)

ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2019-03-13] (Apple Inc. -> Apple Inc.)

ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2014-06-24] (Safer Networking Ltd. -> Safer-Networking Ltd.)

ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2014-06-24] (Safer Networking Ltd. -> Safer-Networking Ltd.)

ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)

ContextMenuHandlers3: [FTShellContext] -> {AFF81F7B-6942-40c4-AADA-7214EF7B6DD1} => C:\Program Files (x86)\Bluetooth Suite\ShellContextExt.dll [2011-03-13] (Atheros Communications Inc. -> Atheros Commnucations) [File not signed]

ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-28] (Igor Pavlov) [File not signed]

ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)

ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2014-01-29] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)

ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-28] (Igor Pavlov) [File not signed]

ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2014-06-24] (Safer Networking Ltd. -> Safer-Networking Ltd.)

ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2014-06-24] (Safer Networking Ltd. -> Safer-Networking Ltd.)

 

==================== Shortcuts & WMI ========================

 

(The entries could be listed to be restored or removed.)

 

 

ShortcutWithArgument: C:\Users\Jason\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\TREZOR Chrome Extension.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=jcjjhjgimijdkoamemaghajlhegmoclj

ShortcutWithArgument: C:\Users\Jason\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\ec721606cad66bad\Chrome Remote Desktop.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=gbchcmhmhahfdphkhkmpfmihenigjmpp

 

==================== Loaded Modules (Whitelisted) ==============

 

2011-03-13 10:58 - 2011-03-13 10:58 - 000061088 _____ (Atheros Communications Inc. -> Atheros Commnucations) [File not signed] C:\Program Files (x86)\Bluetooth Suite\AthCopyHook.dll

 

==================== Alternate Data Streams (Whitelisted) =========

 

(If an entry is included in the fixlist, only the ADS will be removed.)

 

 

==================== Safe Mode (Whitelisted) ===================

 

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

 

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SMR521 => ""="Service"

 

==================== Association (Whitelisted) ===============

 

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

 

 

==================== Internet Explorer trusted/restricted ===============

 

(If an entry is included in the fixlist, it will be removed from the registry.)

 

IE restricted site: HKU\.DEFAULT\.\007guard.com -> install.007guard.com

IE restricted site: HKU\.DEFAULT\.\008i.com -> 008i.com

IE restricted site: HKU\.DEFAULT\.\008k.com -> www.008k.com

IE restricted site: HKU\.DEFAULT\.\00hq.com -> www.00hq.com

IE restricted site: HKU\.DEFAULT\.\010402.com -> 010402.com

IE restricted site: HKU\.DEFAULT\.\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com

IE restricted site: HKU\.DEFAULT\.\0scan.com -> www.0scan.com

IE restricted site: HKU\.DEFAULT\.\1-2005-search.com -> www.1-2005-search.com

IE restricted site: HKU\.DEFAULT\.\1-domains-registrations.com -> www.1-domains-registrations.com

IE restricted site: HKU\.DEFAULT\.\1000gratisproben.com -> www.1000gratisproben.com

IE restricted site: HKU\.DEFAULT\.\1001namen.com -> www.1001namen.com

IE restricted site: HKU\.DEFAULT\.\100888290cs.com -> mir.100888290cs.com

IE restricted site: HKU\.DEFAULT\.\100sexlinks.com -> www.100sexlinks.com

IE restricted site: HKU\.DEFAULT\.\10sek.com -> www.10sek.com

IE restricted site: HKU\.DEFAULT\.\12-26.net -> user1.12-26.net

IE restricted site: HKU\.DEFAULT\.\12-27.net -> user1.12-27.net

IE restricted site: HKU\.DEFAULT\.\123fporn.info -> www.123fporn.info

IE restricted site: HKU\.DEFAULT\.\123haustiereundmehr.com -> www.123haustiereundmehr.com

IE restricted site: HKU\.DEFAULT\.\123moviedownload.com -> www.123moviedownload.com

IE restricted site: HKU\.DEFAULT\.\123simsen.com -> www.123simsen.com

 

There are 7937 more sites.

 

IE restricted site: HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\007guard.com -> install.007guard.com

IE restricted site: HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\008i.com -> 008i.com

IE restricted site: HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\008k.com -> www.008k.com

IE restricted site: HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\00hq.com -> www.00hq.com

IE restricted site: HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\010402.com -> 010402.com

IE restricted site: HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com

IE restricted site: HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\0scan.com -> www.0scan.com

IE restricted site: HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\1-2005-search.com -> www.1-2005-search.com

IE restricted site: HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\1-domains-registrations.com -> www.1-domains-registrations.com

IE restricted site: HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\1000gratisproben.com -> www.1000gratisproben.com

IE restricted site: HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\1001namen.com -> www.1001namen.com

IE restricted site: HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\100888290cs.com -> mir.100888290cs.com

IE restricted site: HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\100sexlinks.com -> www.100sexlinks.com

IE restricted site: HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\10sek.com -> www.10sek.com

IE restricted site: Emsisoft anti malware serial key - Activators Patch -> user1.12-26.net

IE restricted site: HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\12-27.net -> user1.12-27.net

IE restricted site: HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\123fporn.info -> www.123fporn.info

IE restricted site: HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\123haustiereundmehr.com -> www.123haustiereundmehr.com

IE restricted site: HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\123moviedownload.com -> www.123moviedownload.com

IE restricted site: HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\.\123simsen.com -> www.123simsen.com

 

There are 7937 more sites.

 

 

==================== Hosts content: ==========================

 

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

 

2009-07-14 03:34 - 2018-03-28 19:27 - 000454686 ____N C:\Windows\system32\drivers\etc\hosts

 

127.0.0.1pokercheat.org

127.0.0.1www.pokercheat.org

127.0.0.1www.007guard.com

127.0.0.1007guard.com

127.0.0.1008i.com

127.0.0.1www.008k.com

127.0.0.1008k.com

127.0.0.1www.00hq.com

127.0.0.100hq.com

127.0.0.1010402.com

127.0.0.1www.032439.com

127.0.0.1032439.com

127.0.0.1www.0scan.com

127.0.0.10scan.com

127.0.0.11000gratisproben.com

127.0.0.1www.1000gratisproben.com

127.0.0.11001namen.com

127.0.0.1www.1001namen.com

127.0.0.1100888290cs.com

127.0.0.1www.100888290cs.com

127.0.0.1www.100sexlinks.com

127.0.0.1100sexlinks.com

127.0.0.110sek.com

127.0.0.1www.10sek.com

127.0.0.1www.1-2005-search.com

127.0.0.11-2005-search.com

127.0.0.1123fporn.info

127.0.0.1www.123fporn.info

127.0.0.1123haustiereundmehr.com

127.0.0.1www.123haustiereundmehr.com

 

There are 15604 more lines.

 

 

==================== Other Areas ============================

 

(Currently there is no automatic fix for this section.)

 

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\DMIX

HKU\S-1-5-21-2649046142-4009747702-1050386706-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Jason\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg

DNS Servers: Media is not connected to internet.

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

mpsdrv => Firewall Service is not running.

MpsSvc => Firewall Service is not running.

bfe => Firewall Service is not running.

 

==================== MSCONFIG/TASK MANAGER disabled items ==

 

If an entry is included in the fixlist, it will be removed.

 

MSCONFIG\Services: AdobeARMservice => 2

MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3

MSCONFIG\Services: AeLookupSvc => 3

MSCONFIG\Services: ALG => 3

MSCONFIG\Services: AppIDSvc => 3

MSCONFIG\Services: Apple Mobile Device Service => 2

MSCONFIG\Services: asComSvc => 2

MSCONFIG\Services: asHmComSvc => 2

MSCONFIG\Services: AsSysCtrlService => 2

MSCONFIG\Services: AtherosSvc => 2

MSCONFIG\Services: AudioEndpointBuilder => 2

MSCONFIG\Services: AudioSrv => 2

MSCONFIG\Services: AxInstSV => 3

MSCONFIG\Services: BDESVC => 3

MSCONFIG\Services: BFE => 2

MSCONFIG\Services: BITS => 3

MSCONFIG\Services: Bonjour Service => 2

MSCONFIG\Services: Browser => 3

MSCONFIG\Services: bthserv => 3

MSCONFIG\Services: CertPropSvc => 3

MSCONFIG\Services: chromoting => 2

MSCONFIG\Services: ClickToRunSvc => 2

MSCONFIG\Services: clr_optimization_v4.0.30319_32 => 2

MSCONFIG\Services: clr_optimization_v4.0.30319_64 => 2

MSCONFIG\Services: COMSysApp => 3

MSCONFIG\Services: cphs => 3

MSCONFIG\Services: CryptSvc => 2

MSCONFIG\Services: defragsvc => 3

MSCONFIG\Services: Dhcp => 2

MSCONFIG\Services: DiagTrack => 2

MSCONFIG\Services: Dnscache => 2

MSCONFIG\Services: dot3svc => 3

MSCONFIG\Services: DPS => 2

MSCONFIG\Services: EapHost => 3

MSCONFIG\Services: EFS => 2

MSCONFIG\Services: ehRecvr => 3

MSCONFIG\Services: ehSched => 3

MSCONFIG\Services: eventlog => 2

MSCONFIG\Services: EventSystem => 2

MSCONFIG\Services: Fax => 3

MSCONFIG\Services: fdPHost => 3

MSCONFIG\Services: FDResPub => 3

MSCONFIG\Services: FontCache => 2

MSCONFIG\Services: FontCache3.0.0.0 => 3

MSCONFIG\Services: GoogleChromeElevationService => 3

MSCONFIG\Services: gupdate => 2

MSCONFIG\Services: gupdatem => 3

MSCONFIG\Services: hidserv => 3

MSCONFIG\Services: hkmsvc => 3

MSCONFIG\Services: HomeGroupListener => 3

MSCONFIG\Services: HomeGroupProvider => 3

MSCONFIG\Services: idsvc => 3

MSCONFIG\Services: IEEtwCollectorService => 3

MSCONFIG\Services: IKEEXT => 3

MSCONFIG\Services: Intel® PROSet Monitoring Service => 2

MSCONFIG\Services: IPBusEnum => 3

MSCONFIG\Services: iphlpsvc => 2

MSCONFIG\Services: iPod Service => 3

MSCONFIG\Services: KeyIso => 3

MSCONFIG\Services: KtmRm => 3

MSCONFIG\Services: LanmanServer => 2

MSCONFIG\Services: LanmanWorkstation => 2

MSCONFIG\Services: lltdsvc => 3

MSCONFIG\Services: lmhosts => 2

MSCONFIG\Services: MBAMService => 2

MSCONFIG\Services: MMCSS => 2

MSCONFIG\Services: MpsSvc => 2

MSCONFIG\Services: MSDTC => 3

MSCONFIG\Services: MSiSCSI => 3

MSCONFIG\Services: msiserver => 3

MSCONFIG\Services: napagent => 3

MSCONFIG\Services: Netlogon => 3

MSCONFIG\Services: Netman => 3

MSCONFIG\Services: netprofm => 3

MSCONFIG\Services: NetTimeSvc => 2

MSCONFIG\Services: NlaSvc => 2

MSCONFIG\Services: NoIPDUCService4 => 2

MSCONFIG\Services: nsi => 2

MSCONFIG\Services: ose => 3

MSCONFIG\Services: osppsvc => 3

MSCONFIG\Services: p2pimsvc => 3

MSCONFIG\Services: p2psvc => 3

MSCONFIG\Services: PcaSvc => 2

MSCONFIG\Services: PerfHost => 3

MSCONFIG\Services: pla => 3

MSCONFIG\Services: PNRPAutoReg => 3

MSCONFIG\Services: PNRPsvc => 3

MSCONFIG\Services: PolicyAgent => 3

MSCONFIG\Services: postgresql-x64-9.3 => 2

MSCONFIG\Services: Power => 2

MSCONFIG\Services: ProtectedStorage => 3

MSCONFIG\Services: QWAVE => 3

MSCONFIG\Services: RasAuto => 3

MSCONFIG\Services: RasMan => 3

MSCONFIG\Services: RemoteRegistry => 3

MSCONFIG\Services: RpcLocator => 3

MSCONFIG\Services: SamSs => 2

MSCONFIG\Services: SCardSvr => 3

MSCONFIG\Services: SCPolicySvc => 3

MSCONFIG\Services: SDRSVC => 3

MSCONFIG\Services: SDScannerService => 2

MSCONFIG\Services: SDUpdateService => 2

MSCONFIG\Services: SDWSCService => 2

MSCONFIG\Services: seclogon => 3

MSCONFIG\Services: SENS => 2

MSCONFIG\Services: SensrSvc => 3

MSCONFIG\Services: SessionEnv => 3

MSCONFIG\Services: ShellHWDetection => 2

MSCONFIG\Services: SNMPTRAP => 3

MSCONFIG\Services: Spooler => 2

MSCONFIG\Services: sppuinotify => 3

MSCONFIG\Services: SSDPSRV => 3

MSCONFIG\Services: SstpSvc => 3

MSCONFIG\Services: stisvc => 2

MSCONFIG\Services: swprv => 3

MSCONFIG\Services: SysMain => 3

MSCONFIG\Services: TabletInputService => 3

MSCONFIG\Services: TapiSrv => 3

MSCONFIG\Services: TermService => 3

MSCONFIG\Services: Themes => 2

MSCONFIG\Services: THREADORDER => 3

MSCONFIG\Services: TrkWks => 2

MSCONFIG\Services: TrustedInstaller => 3

MSCONFIG\Services: UI0Detect => 3

MSCONFIG\Services: upnphost => 3

MSCONFIG\Services: UxSms => 2

MSCONFIG\Services: VaultSvc => 3

MSCONFIG\Services: vds => 3

MSCONFIG\Services: VSS => 3

MSCONFIG\Services: W32Time => 3

MSCONFIG\Services: WatAdminSvc => 3

MSCONFIG\Services: VueScan Pro 9.7.56 Crack Plus Serial Keygen Full Latest Downloads 2021 => 3

MSCONFIG\Services: WbioSrvc => 3

MSCONFIG\Services: wcncsvc => 3

MSCONFIG\Services: WcsPlugInService => 3

MSCONFIG\Services: WdiServiceHost => 3

MSCONFIG\Services: WdiSystemHost => 3

MSCONFIG\Services: WebClient => 3

MSCONFIG\Services: Wecsvc => 3

MSCONFIG\Services: wercplsupport => 3

MSCONFIG\Services: WerSvc => 3

MSCONFIG\Services: WinDefend => 3

MSCONFIG\Services: WinHttpAutoProxySvc => 3

MSCONFIG\Services: Winmgmt => 2

MSCONFIG\Services: WinRM => 3

MSCONFIG\Services: Wlansvc => 3

MSCONFIG\Services: wmiApSrv => 3

MSCONFIG\Services: WMPNetworkSvc => 2

MSCONFIG\Services: WPCSvc => 3

MSCONFIG\Services: WPDBusEnum => 3

MSCONFIG\Services: wscsvc => 2

MSCONFIG\Services: WSearch => 2

MSCONFIG\Services: wuauserv => 2

MSCONFIG\Services: wudfsvc => 3

MSCONFIG\Services: WwanSvc => 3

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^TREZOR Bridge.lnk => C:\Windows\pss\TREZOR Bridge.lnk.CommonStartup

MSCONFIG\startupfolder: C:^Users^Jason^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Coral Poker notification.lnk => C:\Windows\pss\Coral Poker notification.lnk.Startup

MSCONFIG\startupfolder: C:^Users^Jason^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Monitor Ink Alerts - HP Officejet 6500 E710n-z (Network).lnk => C:\Windows\pss\Monitor Ink Alerts - HP Officejet 6500 E710n-z (Network).lnk.Startup

MSCONFIG\startupfolder: C:^Users^Jason^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^William Hill Poker notification.lnk => C:\Windows\pss\William Hill Poker notification.lnk.Startup

MSCONFIG\startupreg: ApplePhotoStreams => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe

MSCONFIG\startupreg: ASUS AiChargerPlus Execute => C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe

MSCONFIG\startupreg: ASUS ShellProcess Execute => C:\Program Files (x86)\ASUS\AI Suite II\ASUS Mobilink\Simulator\AsShellProcess.exe

MSCONFIG\startupreg: AthBtTray => "C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"

MSCONFIG\startupreg: AtherosBtStack => "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"

MSCONFIG\startupreg: HotKeysCmds => "C:\Windows\system32\hkcmd.exe"

MSCONFIG\startupreg: HP Officejet 6500 E710n-z (NET) => "C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\ScanToPCActivationApp.exe" -deviceID "CN13T1220205JW:NW" -scfn "HP Officejet 6500 E710n-z (NET)" -AutoStart 1

MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe

MSCONFIG\startupreg: iCloudDrive => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe

MSCONFIG\startupreg: iCloudServices => "C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"

MSCONFIG\startupreg: IgfxTray => "C:\Windows\system32\igfxtray.exe"

MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"

MSCONFIG\startupreg: Logitech Download Assistant => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch

MSCONFIG\startupreg: MSC => "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey

MSCONFIG\startupreg: NetTime => C:\Program Files (x86)\NetTime\NetTime.exe

MSCONFIG\startupreg: Persistence => "C:\Windows\system32\igfxpers.exe"

MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s

MSCONFIG\startupreg: SDTray => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"

MSCONFIG\startupreg: SpybotPostWindows10UpgradeReInstall => "C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe"

MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

MSCONFIG\startupreg: UMonit => C:\Windows\SysWOW64\UMonit64.exe

 

==================== FirewallRules (Whitelisted) ===============

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

FirewallRules: [{666309D2-7826-41DB-8895-8FF1135076C5}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite II\ASUS Mobilink\iPhone Simulator\pnSvc.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer AirMagic Creative Edition Free Download [TCP Query User{96A48C7A-604A-4863-8F7C-4857F1FBBEDC}C:\program files\bitcoin\bitcoin-qt.exe] => (Allow) C:\program files\bitcoin\bitcoin-qt.exe () [File not signed]

FirewallRules: [UDP Query User{B824BC6A-6B97-4528-9650-77F318D3D83D}C:\program files\bitcoin\bitcoin-qt.exe] => (Allow) C:\program files\bitcoin\bitcoin-qt.exe () [File not signed]

FirewallRules: [TCP Query User{F33076C7-752E-4B39-A7D2-09FA643F4B95}C:\program files (x86)\darkcoin\darkcoin-qt.exe] => (Allow) C:\program files (x86)\darkcoin\darkcoin-qt.exe () [File not signed]

FirewallRules: [UDP Query User{07651D24-B99D-4499-8467-86EFF4414265}C:\program files (x86)\darkcoin\darkcoin-qt.exe] => (Allow) C:\program files (x86)\darkcoin\darkcoin-qt.exe () [File not signed]

FirewallRules: [TCP Query User{3743E61D-E9D2-4632-BFAA-C621D6E348E9}C:\users\jason\downloads\win64\64\paycoin.exe] => (Allow) C:\users\jason\downloads\win64\64\paycoin.exe No File

FirewallRules: [UDP Query User{7CF45EF3-B728-46DC-B844-83F9376835BE}C:\users\jason\downloads\win64\64\paycoin.exe] => (Allow) C:\users\jason\downloads\win64\64\paycoin.exe No File

FirewallRules: [TCP Query User{4C9418C3-5AE6-4523-B5D0-E7775CB1ED56}C:\users\jason\downloads\win64 (1)\64\paycoin.exe] => (Allow) C:\users\jason\downloads\win64 (1)\64\paycoin.exe No File

FirewallRules: [UDP Query User{FE1E6EB2-6D9F-47D1-BC97-FBF6EF7F8604}C:\users\jason\downloads\win64 (1)\64\paycoin.exe] => (Allow) C:\users\jason\downloads\win64 (1)\64\paycoin.exe No File

FirewallRules: [TCP Query User{54C8EED2-1794-4EE4-8619-1C8C9643CE52}C:\program files (x86)\paycoin\paycoin.exe] => (Allow) C:\program files (x86)\paycoin\paycoin.exe () [File not signed]

FirewallRules: [UDP Query User{5DB97DAF-CCFD-4182-9C05-A0DD93880AE7}C:\program files (x86)\paycoin\paycoin.exe] => (Allow) C:\program files (x86)\paycoin\paycoin.exe () [File not signed]

FirewallRules: [TCP Query User{F3D194EF-3AEB-45B8-A49D-02C80E67EE17}C:\users\jason\desktop\paycoin\64\paycoin.exe] => (Allow) C:\users\jason\desktop\paycoin\64\paycoin.exe No File

FirewallRules: [UDP Query User{02023E26-9F24-4D3D-AE51-CD7178654C96}C:\users\jason\desktop\paycoin\64\paycoin.exe] => (Allow) C:\users\jason\desktop\paycoin\64\paycoin.exe No File

FirewallRules: [TCP Query User{74BDA4CB-89F5-4B62-9AAC-98094A48DAD6}C:\users\jason\desktop\xpy\64\paycoin.exe] => (Allow) C:\users\jason\desktop\xpy\64\paycoin.exe No File

FirewallRules: [UDP Query User{384E7C19-EF34-4CB0-9473-45F744C7CA82}C:\users\jason\desktop\xpy\64\paycoin.exe] => (Allow) C:\users\jason\desktop\xpy\64\paycoin.exe No File

FirewallRules: [{8E35E3C3-F7C9-4747-A829-B774DC7F982D}] => (Allow) C:\Users\Jason\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{52422E9F-1D73-4587-8241-5220B7C20792}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{10A851B6-9A21-4BFD-9826-8F7F725D317E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{4EAFE303-D236-4083-96B6-60BC1A86BBFF}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{C6788948-CEBA-41BE-A0C2-16901D2C7C0D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [TCP Query User{937E366B-0B67-4DBD-AB48-32B4E3E07BB3}C:\users\jason\desktop\paycoin\64\paycoind.exe] => (Allow) C:\users\jason\desktop\paycoin\64\paycoind.exe No File

FirewallRules: [UDP Query User{338871DC-21CA-40A4-AD77-559E93DB7CE2}C:\users\jason\desktop\paycoin\64\paycoind.exe] => (Allow) C:\users\jason\desktop\paycoin\64\paycoind.exe No File

FirewallRules: [TCP Query User{F311FAFF-D8F7-4C67-892E-F1E28F04393C}C:\users\jason\desktop\nvr\tool\ipsearch\devicesearch(2016)\devicesearch.exe] => (Allow) C:\users\jason\desktop\nvr\tool\ipsearch\devicesearch(2016)\devicesearch.exe (TODO: <公司名>) [File not signed]

FirewallRules: [UDP Query User{90FA97D6-DF94-42FB-8111-6BE083FAB06A}C:\users\jason\desktop\nvr\tool\ipsearch\devicesearch(2016)\devicesearch.exe] => (Allow) C:\users\jason\desktop\nvr\tool\ipsearch\devicesearch(2016)\devicesearch.exe (TODO: <公司名>) [File not signed]

FirewallRules: [TCP Query User{621ED216-035E-4805-9FB3-7700DF443671}C:\users\jason\desktop\nvr\tool\ipsearch\ip search(2.0)\ipsearch.exe] => (Allow) C:\users\jason\desktop\nvr\tool\ipsearch\ip search(2.0)\ipsearch.exe () [File not signed]

FirewallRules: [UDP Query User{1A0D5C66-9DA3-4664-BB2E-D0EF7B6E0A9B}C:\users\jason\desktop\nvr\tool\ipsearch\ip search(2.0)\ipsearch.exe] => (Allow) C:\users\jason\desktop\nvr\tool\ipsearch\ip search(2.0)\ipsearch.exe () [File not signed]

FirewallRules: [TCP Query User{81E3F2A9-8B37-4051-B4B9-F65D12593F07}C:\program files (x86)\inview management station\protectprocessservice.exe] => (Allow) C:\program files (x86)\inview management station\protectprocessservice.exe No File

FirewallRules: [UDP Query User{8C1F12F6-2A3B-4FC5-9599-D55EC1ABBD46}C:\program files (x86)\inview management station\protectprocessservice.exe] => SoftPerfect Network Scanner License key C:\program files (x86)\inview management station\protectprocessservice.exe No File

FirewallRules: [TCP Query User{D077100A-956C-4905-B506-4D58FCBDA824}C:\program files (x86)\inview management station\cmsserver.exe] => (Block) C:\program files (x86)\inview management station\cmsserver.exe No File

FirewallRules: [UDP Query User{D32296C3-6F56-411B-81EC-FA215D7A7575}C:\program files (x86)\inview management station\cmsserver.exe] => (Block) C:\program files (x86)\inview management station\cmsserver.exe No File

FirewallRules: [TCP Query User{EF43598E-A75C-4B71-9EB0-E050ACB62EF4}C:\program files (x86)\inview management station\ims.exe] => (Allow) C:\program files (x86)\inview management station\ims.exe () [File not signed]

FirewallRules: [UDP Query User{A50ED3B2-7CEB-467B-B564-DF73524141DB}C:\program files (x86)\inview management station\ims.exe] => (Allow) C:\program files (x86)\inview management station\ims.exe () [File not signed]

FirewallRules: [{685B3A58-8DF6-45BA-8B66-91D0C92B453A}] => (Allow) C:\Users\Jason\AppData\Local\Temp\7zS7496\HPDiagnosticCoreUI.exe No File

FirewallRules: [{34287E28-1102-453F-AFEF-C065B71CF1BE}] => (Allow) C:\Users\Jason\AppData\Local\Temp\7zS7496\HPDiagnosticCoreUI.exe No File

FirewallRules: [{D36FF73D-37F7-4E5F-BCDF-26A29944DEFD}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710n-z\bin\FaxApplications.exe (Hewlett Packard -> Hewlett-Packard Co.)

FirewallRules: [{4B7A1EBB-14FC-412D-971B-3705348D4254}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710n-z\bin\DigitalWizards.exe (Hewlett Packard -> Hewlett-Packard Co.)

FirewallRules: [{17EE566D-7A94-4005-8EFD-B4217921E786}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710n-z\bin\SendAFax.exe (Hewlett Packard -> Hewlett-Packard Co.)

FirewallRules: [{7F0886CD-B71B-41D5-9F7A-777A56A6338B}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\DeviceSetup.exe (Hewlett Packard -> Hewlett-Packard Co.)

FirewallRules: [{DAE29F66-0825-40F4-86CF-90C080D24617}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\HPNetworkCommunicator.exe (Hewlett Packard -> Hewlett-Packard Co.)

FirewallRules: [{2B1CF993-8D81-4D56-9DA1-60595A5E0244}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> Hewlett-Packard Co.)

FirewallRules: [TCP Query User{29D430A6-CEB2-4C32-8502-E1D715EFFE03}C:\users\jason\desktop\xpy\64\paycoind.exe] => (Block) C:\users\jason\desktop\xpy\64\paycoind.exe No File

FirewallRules: [UDP Query User{AE6C6BA6-9E96-4DA0-9FB3-04BBFB47CEC7}C:\users\jason\desktop\xpy\64\paycoind.exe] => (Block) C:\users\jason\desktop\xpy\64\paycoind.exe No File

FirewallRules: [TCP Query User{459FC2BB-F507-426D-BE2D-F795C8824191}C:\users\jason\desktop\removable disk\litecoin\daemon\litecoind.exe] => (Allow) C:\users\jason\desktop\removable disk\litecoin\daemon\litecoind.exe () [File not signed]

FirewallRules: [UDP Query User{6C8C1B02-AABB-4FE1-8A35-C1D0A36DFF5D}C:\users\jason\desktop\removable Adobe Flash Player 32.0.0.192 License Key - Crack Key For U => (Allow) C:\users\jason\desktop\removable disk\litecoin\daemon\litecoind.exe () [File not signed]

FirewallRules: [{FB654852-DDED-47EB-A80B-1E1BADDAE22D}] => (Allow) C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe (TomTom International BV -> TomTom)

FirewallRules: [{92E0D9E3-8F7C-4A84-9147-234E875085D0}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [TCP Query User{2C188A93-C521-4784-AA58-434F90346E94}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [UDP Query User{666A4BA4-2559-4BAD-A822-74DE3DCCD872}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [TCP Query User{B85266A4-ADAA-451D-969C-26CE5A57AC28}C:\users\jason\appdata\local\ie tab\10.11.7.1\ietabhelper.exe] => (Allow) C:\users\jason\appdata\local\ie tab\10.11.7.1\ietabhelper.exe No File

FirewallRules: [UDP Query User{31B9B913-8487-49E6-9F92-86E7789CC74A}C:\users\jason\appdata\local\ie tab\10.11.7.1\ietabhelper.exe] => (Allow) C:\users\jason\appdata\local\ie tab\10.11.7.1\ietabhelper.exe No File

FirewallRules: [TCP Query User{1BFC7FA3-A1B8-407D-B454-1DD4218A6A0A}C:\program files\storj share\storj share.exe] => (Allow) C:\program files\storj share\storj share.exe (Storj Labs Inc. -> GitHub, Inc.)

FirewallRules: [UDP Query User{21C93E00-CD53-4EC9-B8CA-A4E38341A10F}C:\program files\storj share\storj share.exe] => (Allow) C:\program files\storj share\storj share.exe (Storj Labs Inc. -> GitHub, Inc.)

FirewallRules: [{600B9499-6C9D-4D4A-8D71-D0F4C9042505}] => (Block) C:\program files\storj share\storj share.exe (Storj Labs Inc. -> GitHub, Inc.)

FirewallRules: [{C8B654BB-532D-4989-A785-C5857836C8C4}] => (Block) C:\program files\storj share\storj share.exe (Storj Labs Inc. -> GitHub, Inc.)

FirewallRules: [TCP Query User{DC671D60-29A3-4D70-A9C5-0CBAD3CDF822}C:\qbundle\java\bin\java.exe] => (Allow) C:\qbundle\java\bin\java.exe No File

FirewallRules: [UDP Query User{AD9DE687-E0D9-42E5-996A-F5AA6B8BEABE}C:\qbundle\java\bin\java.exe] => (Allow) C:\qbundle\java\bin\java.exe No File

FirewallRules: [TCP Query User{40644CE0-084E-4765-8704-131331AB47DC}C:\users\jason\desktop\btcp\bitcoinprivatedesktopwallet_1.0.1_windows\btcpd.exe] => (Allow) C:\users\jason\desktop\btcp\bitcoinprivatedesktopwallet_1.0.1_windows\btcpd.exe () [File not signed]

FirewallRules: [UDP Query User{2E847663-4882-4597-BA86-E7D2A2B846B7}C:\users\jason\desktop\btcp\bitcoinprivatedesktopwallet_1.0.1_windows\btcpd.exe] => (Allow) C:\users\jason\desktop\btcp\bitcoinprivatedesktopwallet_1.0.1_windows\btcpd.exe () [File not signed]

FirewallRules: [TCP Query User{A6888FBF-8B62-411D-9BA8-0B786F4C8B46}K:\program files (x86)\darkcoin\darkcoin-qt.exe] => (Block) K:\program files (x86)\darkcoin\darkcoin-qt.exe No File

FirewallRules: [UDP Query User{06E13A3D-6C21-477B-B242-8A5D3AF233A6}K:\program files (x86)\darkcoin\darkcoin-qt.exe] => (Block) K:\program files (x86)\darkcoin\darkcoin-qt.exe No File

FirewallRules: [TCP Query User{67F1AEB3-4FD0-418A-B9F8-E579F9B5253D}C:\qbundle\mariadb\bin\mysqld.exe] => (Allow) C:\qbundle\mariadb\bin\mysqld.exe No File

FirewallRules: [UDP Query User{598F625F-E2AF-4C80-8DD9-4A511A599A78}C:\qbundle\mariadb\bin\mysqld.exe] => (Allow) C:\qbundle\mariadb\bin\mysqld.exe No File

FirewallRules: [{F3371E4D-26B1-45F0-B515-D7B1E8BA2A8A}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{409D6451-24AF-4028-B118-AC70A729DF3B}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\74.0.3729.56\remoting_host.exe (Google LLC -> Google Inc.)

FirewallRules: [{9A5E1776-8C88-4E2F-B678-C137EDA0B7AC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)

FirewallRules: [TCP Query User{0A61EF17-73B6-408A-923B-96BFBF45E449}C:\program files (x86)\common files\oracle\java\javapath_target_465647\java.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_465647\java.exe No File

FirewallRules: [UDP Query User{2EDD6F66-8F15-4FD0-861A-EDD570B4C79B}C:\program files (x86)\common files\oracle\java\javapath_target_465647\java.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_465647\java.exe No File

FirewallRules: [TCP Query User{90027B7D-ECAF-4FC4-B2F0-07E3EBE5F1EA}C:\program files (x86)\common files\oracle\java\javapath_target_558077\java.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_558077\java.exe

FirewallRules: [UDP Query User{87C87F6E-E764-416E-86D8-8FA4F6B57C82}C:\program files (x86)\common files\oracle\java\javapath_target_558077\java.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_558077\java.exe

FirewallRules: [TCP Query User{248D53B0-CEF0-41AD-88C4-052347E55F6B}C:\users\jason\downloads\qbundle2.5.0_final\mariadb\bin\mysqld.exe] => (Allow) C:\users\jason\downloads\qbundle2.5.0_final\mariadb\bin\mysqld.exe No File

FirewallRules: [UDP Query User{973DC6DF-963B-41E9-97D1-31ED232313B8}C:\users\jason\downloads\qbundle2.5.0_final\mariadb\bin\mysqld.exe] => (Allow) C:\users\jason\downloads\qbundle2.5.0_final\mariadb\bin\mysqld.exe No File

FirewallRules: [TCP Query User{DA8BA503-2FBA-47A7-ABD0-EA0404619258}C:\program files\bitcoinhd\btchd-qt.exe] => (Allow) C:\program files\bitcoinhd\btchd-qt.exe () [File not signed]

FirewallRules: [UDP Query User{733C8F4C-CCF1-418A-AEC9-95E6AEB63E5D}C:\program files\bitcoinhd\btchd-qt.exe] => (Allow) C:\program files\bitcoinhd\btchd-qt.exe () [File not signed]

FirewallRules: [TCP Query User{9DFCDBF3-ECE3-45FC-B391-1323E02072B3}C:\hdproxy\hdminer\hdproxy.exe] => (Allow) C:\hdproxy\hdminer\hdproxy.exe No File

FirewallRules: [UDP Query User{3D3B06AB-AF43-4989-B806-289804F82F6E}C:\hdproxy\hdminer\hdproxy.exe] => (Allow) C:\hdproxy\hdminer\hdproxy.exe No File

FirewallRules: [TCP Query User{A8E41674-A794-4EE7-AD65-E1B9D19E457F}C:\mining\hdproxy\hdminer\hdproxy.exe] => (Allow) C:\mining\hdproxy\hdminer\hdproxy.exe (深圳市丽影数码科技有限公司 -> )

FirewallRules: [UDP Query User{46812F09-84C4-4437-88EF-4DF6942999C1}C:\mining\hdproxy\hdminer\hdproxy.exe] => (Allow) C:\mining\hdproxy\hdminer\hdproxy.exe (深圳市丽影数码科技有限公司 -> )

FirewallRules: [TCP Query User{6894917B-5D6E-47A6-A45F-3CE11072D678}C:\mining\qbundle\mariadb\bin\mysqld.exe] => (Allow) C:\mining\qbundle\mariadb\bin\mysqld.exe (MariaDB Corporation Ab -> )

FirewallRules: [UDP Query User{EF3D623D-4FA0-4F84-B079-88436898731E}C:\mining\qbundle\mariadb\bin\mysqld.exe] => (Allow) C:\mining\qbundle\mariadb\bin\mysqld.exe (MariaDB Corporation Ab -> )

FirewallRules: [TCP Query User{58418DA7-BF79-4D49-ABAE-3273E0C2C75D}C:\mining\qbundle\java\bin\java.exe] => (Allow) C:\mining\qbundle\java\bin\java.exe

FirewallRules: [UDP Query User{43575A1C-5791-49DE-BABE-B78056657825}C:\mining\qbundle\java\bin\java.exe] => (Allow) C:\mining\qbundle\java\bin\java.exe

FirewallRules: [{02F9CA64-EF17-46A3-AE76-29C8ACE8916C}] => (Allow) LPort=8123

FirewallRules: [{E69A11B8-6563-4782-BB51-D129D5030D1A}] => (Allow) LPort=8125

StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access

StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service

StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater

StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service

 

==================== Restore Points =========================

 

Could not list restore points

Check "winmgmt" service or repair WMI.

 

 

==================== Faulty Device Manager Devices =============

 

Could not list Devices. Check "winmgmt" service or repair WMI.

 

 

==================== Event log errors: =========================

 

Application errors:

==================

Error: (05/29/2019 08:13:47 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: blagominer_AVX.exe, version: 0.0.0.0, time stamp: 0x5c798ba1

Faulting module name: advanced systemcare 11 - Activators Patch, version: 0.0.0.0, time stamp: 0x5c798ba1

Exception code: 0x40000015

Fault offset: 0x000000000007ac6f

Faulting process id: 0x19dc

Faulting application start time: 0x01d5164a3f05c2f3

Faulting application path: C:\Mining\Blago2\blagominer_AVX.exe

Faulting module path: C:\Mining\Blago2\blagominer_AVX.exe

Report Id: e215f12c-8245-11e9-a742-0026831752a4

 

Error: (05/29/2019 06:57:32 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

 

Error: (05/29/2019 06:36:49 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: blagominer_AVX.exe, version: 0.0.0.0, time stamp: 0x5c798ba1

Faulting module name: blagominer_AVX.exe, version: 0.0.0.0, time stamp: 0x5c798ba1

Exception code: 0x40000015

Fault offset: 0x000000000007ac6f

Faulting process id: 0x29c8

Faulting application start time: 0x01d51590bd5e4e1e

Faulting application path: C:\Mining\Blago2\blagominer_AVX.exe

Faulting module path: C:\Mining\Blago2\blagominer_AVX.exe

Report Id: 55ff755d-8238-11e9-baf0-0026831752a4

 

Error: (05/29/2019 06:06:58 PM) (Source: System Restore) (EventID: 8193) (User: )

Description: Failed to create restore point (Process = C:\Windows\system32\svchost.exe -k netsvcs; Description = Windows Update; Error = 0x80070422).

 

Error: (05/29/2019 12:00:00 AM) (Source: System Restore) (EventID: 8193) (User: )

Description: Failed to create restore point (Process = C:\Windows\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation; Description = Scheduled Checkpoint; Error = 0x80070422).

 

Error: (05/28/2019 09:35:19 PM) (Source: System Restore) (EventID: 8193) (User: )

Description: Failed to create restore point (Process = C:\Windows\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation; Description = Scheduled Checkpoint; Error = 0x80070422).

 

Error: (05/28/2019 08:25:09 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: blagominer_AVX.exe, version: 0.0.0.0, time stamp: 0x5c798ba1

Faulting module name: blagominer_AVX.exe, version: 0.0.0.0, time stamp: 0x5c798ba1

Exception code: 0x40000015

Fault offset: 0x000000000007ac6f

Faulting process id: 0x19fc

Faulting application start time: 0x01d5158af1a8c1df

Faulting application path: C:\Mining\Blago2\blagominer_AVX.exe

Faulting module path: C:\Mining\Blago2\blagominer_AVX.exe

Report Id: 4e1d4c3a-817e-11e9-baf0-0026831752a4

 

Error: (05/28/2019 08:23:52 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: blagominer_AVX.exe, version: 0.0.0.0, time stamp: 0x5c798ba1

Faulting module name: blagominer_AVX.exe, version: 0.0.0.0, time stamp: 0x5c798ba1

Exception code: 0x40000015

Fault offset: 0x000000000007ac6f

Faulting process id: 0x2500

Faulting application start time: 0x01d5158aa4321051

Faulting application path: C:\Mining\Blago2\blagominer_AVX.exe

Faulting module path: C:\Mining\Blago2\blagominer_AVX.exe

Report Id: 1ff325be-817e-11e9-baf0-0026831752a4

 

 

System errors:

=============

Error: (05/30/2019 06:20:48 PM) (Source: Service Control Manager) (EventID: 7001) (User: )

Description: The Security Center service depends on the Windows Management Instrumentation service which failed to start because of the following error: 

The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

 

Error: (05/30/2019 06:20:47 PM) (Source: Service Control Manager) (EventID: 7001) (User: )

Description: The Background Intelligent Transfer Service service depends on the COM+ Event System service which failed to start because of the following error: 

The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

 

Error: (05/30/2019 06:18:48 PM) (Source: Service Control Manager) (EventID: 7001) (User: )

Description: The Microsoft Network Inspection service depends on the Microsoft Network Inspection System service which failed to start because of the following error: 

The dependency service or group failed to start.

 

Error: (05/30/2019 06:18:48 PM) (Source: Service Control Manager) (EventID: 7001) (User: )

Description: The Microsoft Network Inspection System service depends on the Base Filtering Engine service which failed to start because of the following error: 

The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

 

Error: (05/30/2019 06:18:47 PM) (Source: Service Control Manager) (EventID: 7026) (User: )

Description: The following boot-start or system-start driver(s) failed to load: 

VBoxNetAdp

 

Error: (05/30/2019 06:18:47 PM) (Source: Service Control Manager) (EventID: 7001) (User: )

Description: The Task Scheduler service depends on the Windows Event Log service which failed to start because of the following error: 

The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

 

Error: (05/30/2019 06:17:18 PM) (Source: Service Control Manager) (EventID: 7001) (User: )

Description: The Security Center service depends on the Windows Management Instrumentation service which failed to start because of the following error: 

The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

 

Error: (05/30/2019 05:57:14 PM) (Source: Service Control Manager) (EventID: 7001) (User: )

Description: The Security Center service depends on the Windows Management Instrumentation service which failed to start because of the following error: 

The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

 

 

==================== Memory info =========================== 

 

BIOS: American Megatrends Inc. 0402 11/16/2011

Motherboard: ASUSTeK Computer INC. P8Z68-V PRO GEN3

Processor: Intel® Core™ i5-2500K CPU @ 3.30GHz

Percentage of memory in use: 16%

Total physical RAM: 16289.07 MB

Available physical RAM: 13542.53 MB

Total Virtual: 32576.29 MB

Available Virtual: 29943.76 MB

 

==================== Drives ================================

 

Drive c: () (Fixed) (Total:465.66 GB) (Free:232.22 GB) NTFS

Drive d: (IPDisk) (CDROM) (Total:0.19 GB) (Free:0 GB) CDFS

Drive e: (My Book 8TB) (Fixed) (Total:7452.03 GB) (Free:0.18 GB) NTFS

Drive f: (HDD) (Fixed) (Total:1862.89 GB) (Free:0 GB) NTFS

Drive j: () (Removable) (Total:1.88 GB) (Free:1.55 GB) FAT

 

\\?\Volume{15a1c648-9a68-11e8-a5bb-806e6f6e6963}\ () (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS

 

==================== MBR & Partition Table ==================

 

========================================================

Disk: 0 (Size: 7452 GB) (Disk ID: 16F2A91F)

 

Partition: GPT.

 

========================================================

Disk: 1 (Size: 1863 GB) (Disk ID: 1D210B0C)

 

Partition: GPT.

 

========================================================

Disk: 2 (Size: 465.8 GB) (Disk ID: 32ED1F0F)

Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)

Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)

 

========================================================

Disk: 3 (Size: 1.9 GB) (Disk ID: 6B736964)

No partition Table on disk 3.

 

==================== End of Addition.txt ============================


Источник: https://www.bleepingcomputer.com/forums/t/698505/virus-slow-internet-loss-of-connection-windows-basic-display-after-restart/

Manual Removal Guide for PU.RealTimeGaming

Hi, (again) I've recently picked up a redirect that I'd like some help with, hoping I haven't worn out your patience and I can get your opinion on these logs. I pulled this off the Wireshark, maybe useful, but this is probably a somewhat involved infection.
[ds-global3.17.search.ystg1.b.yahoo .com] [IP= 98.136.144.138]


Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-05.2019 01
Ran by oldman (administrator) on EUSTACE (Hewlett-Packard HP Pavilion g6 Notebook PC) (15-05-2019 23:13:34)
Running from C:\Users\oldman\Desktop
Loaded Profiles: oldman (Available Profiles: oldman)
Platform: Windows 10 Home Version 1809 17763.503 (X64) Language: English (United States)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic.ery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19041.481.0_x64__8wekyb3d8bbwe\YourPhone.exe
(A. & M. Neuber Software -> Neuber Software - www.neuber.com) C:\Program Files (x86)\Security Task Manager\SpyProtector.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(CyberLink -> CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Eastman Kodak Company -> Eastman Kodak Company) C:\Program Files (x86)\Kodak\AiO\Center\EKAiOHostService.exe
(Eastman Kodak Company -> Eastman Kodak Company) C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKPrinterSDK.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(HP Inc. -> HP Inc.) C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe
(HP Inc. -> HP) C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> Eastman Kodak Company) C:\Windows\System32\spool\drivers\x64\3\EKIJ5000MUI.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realsil Microelectronics Inc.) [File not signed] C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files (x86)\Norton Secure VPN\client\NSVService.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.17.1.50\NortonSecurity.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.17.1.50\NortonSecurity.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.17.1.50\nsWscSvc.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\.\Run: [EKIJ5000StatusMonitor] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\EKIJ5000MUI.exe [3182080 2012-10-08] (Microsoft Windows Hardware Compatibility Publisher -> Eastman Kodak Company)
HKLM\.\Run: [boinctray] => C:\Program Files\BOINC\boinctray.exe [69920 2017-10-03] (University of California, Berkeley -> Space Sciences Laboratory)
HKLM\.\Run: [boincmgr] => C:\Program Files\BOINC\boincmgr.exe [8765216 2017-10-03] (University of California, Berkeley -> Space Sciences Laboratory)
HKLM\.\Run: [KOBAAmon] => C:\Program Files (x86)\KODAK VERITE 50 MAGIX SpectraLayers Pro 5.0.140 Crack + Free Activation [85504 2015-08-25] (FUNAI ELECTRIC CO., LTD. -> )
HKLM\.\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)
HKLM\.\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3954352 2016-04-28] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\.\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-03-24] (Apple Inc. -> Apple Inc.)
HKLM-x32\.\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491320 2012-07-26] (CyberLink -> CyberLink Corp.)
HKLM-x32\.\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink -> CyberLink Corp.)
HKLM-x32\.\Run: [HP CoolSense] => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1342008 2011-08-26] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM-x32\.\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [581024 2012-09-07] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM-x32\.\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [76600 2019-03-09] (Apple Inc. -> Apple Inc.)
HKLM-x32\.\Run: [EKStatusMonitor] => C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKStatusMonitor.exe [2750840 2013-12-11] (Eastman Kodak Company -> Eastman Kodak Company)
HKLM-x32\.\Run: [KOBAAmon] => C:\Program Files (x86)\KODAK VERITE 50 Series\KOBAAmon.exe [85504 2015-08-25] (FUNAI ELECTRIC CO., LTD. -> )
HKLM-x32\.\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [6788032 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
HKLM-x32\.\Run: [EKIJ5000StatusMonitor] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\EKIJ5000MUI.exe [3182080 2012-10-08] (Microsoft Windows Hardware Compatibility Publisher -> Eastman Kodak Company)
HKLM-x32\.\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-901587214-2200967626-3004657440-1003\.\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.) [File not signed]
HKU\S-1-5-21-901587214-2200967626-3004657440-1003\.\Run: [KOab1err] => C:\Program Files (x86)\KODAK VERITE\ErrorApp\KOab1err.exe [1027752 2016-12-21] (Funai Electric Co., Ltd. -> )
HKU\S-1-5-21-901587214-2200967626-3004657440-1003\.\Run: [KOBAAmon] => C:\Program Files (x86)\KODAK VERITE 50 Series\KOBAAmon.exe [85504 2015-08-25] (FUNAI ELECTRIC CO., LTD. -> )
HKU\S-1-5-21-901587214-2200967626-3004657440-1003\.\Run: [EpicGamesLauncher] => "C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent
HKU\S-1-5-21-901587214-2200967626-3004657440-1003\.\Run: [Spy Protector] => C:\Program Files (x86)\Security Task Manager\SpyProtector.exe [145280 2018-07-12] (A. & M. Neuber Software -> Neuber Software - www.neuber.com)
HKU\S-1-5-18\.\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe /StartMinimized
HKLM\.\Drivers32: [VIDC.FPS1] => C:\WINDOWS\system32\frapsv64.dll [71680 2013-02-26] (Beepa P/L) [File not signed]
HKLM\.\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [65536 2013-02-26] (Beepa P/L) [File not signed]

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {03F769B5-CA2B-47FB-B8C6-3715E360F484} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [132445408 2019-05-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {2726B58A-B733-4E96-B674-56C356CFF017} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [652664 2019-04-17] (HP Inc. -> HP Inc.)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {37F9480B-8DEB-43D0-9E41-A625011C1442} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1488248 2018-12-10] (HP Inc. -> HP Inc.)
Task: {38F7AC40-C4F1-4823-B0D1-A8F0598D5BC4} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security\Upgrade.exe [2226856 2019-04-22] (Symantec Corporation -> Symantec Corporation)
Task: {3C1E18F9-257E-4364-8991-D751F7AAE0AF} - System32\Tasks\Synaptics TouchPad Enhancements => \Program Files\Synaptics\SynTP\SynTPEnh.exe [3954352 2016-04-28] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {3DD2649C-CA8A-4727-BA04-DE71F61448D5} - System32\Tasks\npcapwatchdog => C:\Program [Argument = Files\Npcap\CheckStatus.bat] <==== ATTENTION
Task: {3DD76305-B0D8-4F5D-97E7-9FEA995DB0EB} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-07] (CyberLink -> CyberLink)
Task: {3FB3FE7E-E4D6-4325-A192-9F9937626A48} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2118352 2014-03-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {406E8E03-EC34-4003-B34C-54181D91740B} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1487568 2014-03-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {449FBA74-592C-4FC3-B302-EFBBC5B5ADD5} - System32\Tasks\Norton Security\Norton Security Autofix => C:\Program Files\Norton Security\Engine\22.16.2.22\SymErr.exe
Task: {4563DDB4-F29D-41C5-BD80-916194542CD4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [237432 2019-04-29] (HP Inc. -> HP Inc.)
Task: {4A276F76-C51C-45FC-A2F4-1117E386AA2B} - System32\Tasks\S-1-5-21-901587214-2200967626-3004657440-1003\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [134144 2019-03-12] (Microsoft Windows -> Microsoft Corporation)
Task: {4DAE6865-85B2-4C42-B996-B4788C51FAA8} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [136056 2019-01-02] (HP Inc. -> HP Inc.)
Task: {5B316DC0-10D2-46AE-B209-4DD1ED06E7F3} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2211024 2014-03-19] (Microsoft Corporation -> Microsoft)
Task: {5CD794F9-93E4-47AE-ADF4-EA1CE940799B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1073528 2019-04-02] (HP Inc. -> HP Inc.)
Task: {625F82D9-2B09-4DF1-80B8-473B87149FDA} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [25128 2017-11-21] (HP Inc. -> )
Task: {6E39ED3E-6BA2-4DC8-8196-9C48C649D047} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1488248 2018-12-10] (HP Inc. -> HP Inc.)
Task: {712380AE-444E-42C6-B403-F18182DBE18C} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {738E86C6-EB1F-4D92-9DD0-BD4999046DD5} - System32\Tasks\{CA2AE62A-A74C-4B89-B292-C0CEAD185B3D} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\oldman\Downloads\FirmwareFlashLauncher.exe -d C:\Users\oldman\Downloads
Task: {7B9F5986-9672-431A-BB77-F26DB87891FE} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1487568 2014-03-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {906112A5-8DB6-4037-B3BB-A2558320F864} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2118352 2014-03-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {9614F9DD-C96B-4F3D-BA9C-E649C94288E0} - System32\Tasks\Norton Security with Backup\Norton Security Autofix => C:\Program Files\Norton Security\Engine\22.17.1.50\SymErr.exe [101392 2019-04-22] (Symantec Corporation -> Symantec Corporation)
Task: {A3CAE410-8F44-4EAE-9AC2-3321CDAE05F9} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.17.1.50\WSCStub.exe [2226856 2019-04-22] (Symantec Corporation -> Symantec Corporation)
Task: {A5E6FF83-1A31-44C2-974C-608D72C3429E} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
Task: {A68CF779-F57A-4803-B0BD-475F71877D10} - System32\Tasks\HPCeeScheduleForoldman => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [96568 2015-06-16] (Hewlett-Packard Company -> Hewlett-Packard)
Task: {AD73D9D2-71DE-4681-BB26-DC2BF988AB1B} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_192_Plugin.exe [1457208 2019-05-14] (Adobe Inc. -> Adobe)
Task: {AF2A4667-1035-4591-B9E4-F6A5E88F221E} - System32\Tasks\Norton Security with Backup\Norton Security Error Analyzer => C:\Program Files\Norton Security\Engine\22.17.1.50\SymErr.exe [101392 2019-04-22] (Symantec Corporation -> Symantec Corporation)
Task: {B89BC3A9-54C9-4204-8B03-A529BF74315F} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
Task: {BCF0AD8B-2630-48AE-B7B4-5D1683D33A9F} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-05-14] (Adobe Inc. -> Adobe)
Task: {BFEAAB89-A9BC-4AA9-9F1D-AAC4C9F75A31} - System32\Tasks\RogueKiller Anti-Malware => C:\Program Files\RogueKiller\RogueKiller64.exe [33965624 2019-05-14] (Adlice -> )
Task: {C0201CFA-6DE0-4EE2-89AC-D9D2295A8D3A} - System32\Tasks\Norton 360\Norton 360 Online Error Processor => C:\Program Files (x86)\Norton 360\Engine\22.11.0.41\SymErr.exe [102008 2017-10-03] (Symantec Corporation -> Symantec Corporation)
Task: Adobe Flash Player 32.0.0.192 License Key - Crack Key For U - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {C18EC821-F9CF-414E-BA3D-746F1B35386D} - System32\Tasks\Norton 360\Norton 360 Online Error Analyzer => C:\Program Files (x86)\Norton 360\Engine\22.11.0.41\SymErr.exe [102008 2017-10-03] (Symantec Corporation -> Symantec Corporation)
Task: {CDB556A4-5C9F-4AD2-8970-C18C764D957C} - System32\Tasks\Norton 360\Norton 360 Online Autofix => C:\Program Files (x86)\Norton 360\Engine\22.11.0.41\SymErr.exe [102008 2017-10-03] (Symantec Corporation -> Symantec Corporation)
Task: {D44969E2-EE54-4B65-8642-B0B9E74EFDBB} - System32\Tasks\Norton Security\Norton Security Error Analyzer => C:\Program Files\Norton Security\Engine\22.16.2.22\SymErr.exe
Task: {D7F94A5C-3056-4495-8235-CBE7E9F0B4F6} - System32\Tasks\Norton Security\Norton Security Error Processor => C:\Program Files\Norton Security\Engine\22.16.2.22\SymErr.exe
Task: {EDD003E6-D73B-4ECA-A7B0-D861534AEA91} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1073528 2019-04-02] (HP Inc. -> HP Inc.)
Task: {F54B23B4-27B4-4D82-B1E6-98428EA28144} - System32\Tasks\Norton Security with Backup\Norton Security Error Processor => C:\Program Files\Norton Security\Engine\22.17.1.50\SymErr.exe [101392 2019-04-22] (Symantec Corporation -> Symantec Corporation)
Task: {FC364449-3F8D-40B7-AFA2-34B96D70A3DA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [652664 2019-04-17] (HP Inc. -> HP Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\HPCeeScheduleForoldman.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 205.171.3.65
Tcpip\.\Interfaces\{092ddd55-79b1-44d1-9ce6-73e9a22b6de7}: [DhcpNameServer] 192.168.0.1 205.171.3.65
Tcpip\.\Interfaces\{5889e5ee-8f53-452a-bd13-e94a89883ece}: [DhcpNameServer] 192.168.0.1 205.171.3.65
Tcpip\.\Interfaces\{68620759-20aa-45aa-8e06-fa9a7c5c7e09}: [DhcpNameServer] 192.168.0.1 205.171.3.66
Tcpip\.\Interfaces\{a288676d-84d4-440a-bf60-55523387af7e}: [DhcpNameServer] 192.168.0.1 205.171.3.66
Tcpip\.\Interfaces\{c4242d06-1fdf-461b-ace5-caf4862e837d}: [DhcpNameServer] 192.168.0.1 205.171.3.66
Tcpip\.\Interfaces\{c9ebb1fc-1913-46ad-9c39-fe0f9392fa0a}: [DhcpNameServer] 192.168.0.1 205.171.3.66
Tcpip\.\Interfaces\{da633539-be76-4269-8034-bd1925400c3e}: [DhcpNameServer] 192.168.0.1 205.171.3.65

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.msn.com/HPNOT13/1
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.msn.com/HPNOT13/1
HKU\S-1-5-21-901587214-2200967626-3004657440-1003\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.msn.com/HPNOT13/1
HKU\S-1-5-21-901587214-2200967626-3004657440-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.norton.com/?prt=NGC&chn=1000&geo=US&ver=22.16.4.15&locale=en_US&guid=7F33257B-BE93-40EC-9D23-A091A86B98D4&doi=2019-02-13&o=APN11915&cmpgn=zeus
SearchScopes: HKU\S-1-5-21-901587214-2200967626-3004657440-1003 -> DefaultScope {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11913&l=dis&prt=NGC&chn=1000&geo=US&ver=22.17.1.50&locale=en_US&guid=7F33257B-BE93-40EC-9D23-A091A86B98D4&doi=2019-02-13&cmpgn=rapha&gct=kwd&qsrc=2869
SearchScopes: HKU\S-1-5-21-901587214-2200967626-3004657440-1003 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-901587214-2200967626-3004657440-1003 -> {53e2f62a-3083-46e6-8527-cf89e4acb4ae} URL =
SearchScopes: HKU\S-1-5-21-901587214-2200967626-3004657440-1003 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11913&l=dis&prt=NGC&chn=1000&geo=US&ver=22.17.1.50&locale=en_US&guid=7F33257B-BE93-40EC-9D23-A091A86B98D4&doi=2019-02-13&cmpgn=rapha&gct=kwd&qsrc=2869
BHO: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine\22.17.1.50\coIEPlg.dll [2019-04-22] (Symantec Corporation -> Symantec Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-07-21] (Hewlett-Packard Company -> HP Inc.)
BHO-x32: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine32\22.17.1.50\coIEPlg.dll [2019-04-22] (Symantec Corporation -> Symantec Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\ssv.dll [2019-04-21] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-04-21] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (Hewlett-Packard Company -> HP Inc.)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine\22.17.1.50\coIEPlg.dll [2019-04-22] (Symantec Corporation -> Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine32\22.17.1.50\coIEPlg.dll [2019-04-22] (Symantec Corporation -> Symantec Corporation)

Edge:
======
Edge Extension: (Norton Safe Web) -> EdgeExtension_SymantecCorporationNortonSafeWeb_v68kp9n051hdp => C:\Program Files\WindowsApps\SymantecCorporation.NortonSafeWeb_3.7.0.0_neutral__v68kp9n051hdp [2019-03-28]

FireFox:
========
FF DefaultProfile: gmcms6os.default-1466821123041-1557966796116
FF ProfilePath: C:\Users\oldman\AppData\Roaming\Mozilla\Firefox\Profiles\gmcms6os.default-1466821123041-1557966796116 [2019-05-15]
FF Homepage: Mozilla\Firefox\Profiles\gmcms6os.default-1466821123041-1557966796116 -> moz-extension://abd2b215-bc85-4cda-a6bf-c6e475034c5c/homePageRedirect.html
FF HomepageOverride: Mozilla\Firefox\Profiles\gmcms6os.default-1466821123041-1557966796116 -> Enabled: nortonhomepage_ven_y@symantec.com
FF NewTabOverride: Mozilla\Firefox\Profiles\gmcms6os.default-1466821123041-1557966796116 -> Enabled: nortonhomepage_ven_y@symantec.com
FF NewTabOverride: Mozilla\Firefox\Profiles\gmcms6os.default-1466821123041-1557966796116 -> Enabled: nortonsafesearch_ul_ven_y_2@symantec.com
FF Extension: (Norton Home Page) - C:\Users\oldman\AppData\Roaming\Mozilla\Firefox\Profiles\gmcms6os.default-1466821123041-1557966796116\Extensions\nortonhomepage_ven_y@symantec.com.xpi [2019-05-15] [UpdateUrl:hxxps://static.nortoncdn.com/idscp/firefox/nsss/hp/updates.json]
FF Extension: (Norton Safe Search) - C:\Users\oldman\AppData\Roaming\Mozilla\Firefox\Profiles\gmcms6os.default-1466821123041-1557966796116\Extensions\nortonsafesearch_ul_ven_y_2@symantec.com.xpi [2019-05-15] [UpdateUrl:hxxps://static.nortoncdn.com/idscp/firefox/nsss/ds_modified/updates.json]
FF Extension: (Norton Safe Web) - C:\Users\oldman\AppData\Roaming\Mozilla\Firefox\Profiles\gmcms6os.default-1466821123041-1557966796116\Extensions\nortonsafeweb@symantec.com.xpi [2019-05-15]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_192.dll [2019-05-14] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_192.dll [2019-05-14] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1218158.dll [2015-05-06] (Adobe Systems, Inc.) [File not signed]
FF Plugin-x32: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2019-04-21] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2019-04-21] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-05-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-901587214-2200967626-3004657440-1003: hp.com/HPDetect -> C:\Users\oldman\AppData\Roaming\HewlettPackard\HPDetect\1.0.0.0\npHPDetect.dll [2012-08-30] (HP) [File not signed]
FF Plugin HKU\S-1-5-21-901587214-2200967626-3004657440-1003: jpl.nasa.gov/NASAEyes -> C:\Users\oldman\AppData\Roaming\JPL-NASA-Caltech\NASA's Eyes\npNASAEyes.dll [2019-01-25] (NASA Jet Propulsion Laboratory -> Jet Propulsion Laboratory)

Chrome:
=======
CHR HKLM\.\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security\Engine\22.17.1.50\Exts\Chrome.crx <not found>
CHR HKLM\.\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\.\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security\Engine\22.17.1.50\Exts\Chrome.crx <not found>
CHR HKLM-x32\.\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [257032 2015-08-21] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-08-08] (Advanced Micro Devices, Inc.) [File not signed]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-03-08] (Apple Inc. -> Apple Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8348064 2018-12-26] (BattlEye Innovations e.K. -> )
R3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1077568 2017-04-10] (HP Inc. -> HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [347512 2018-12-06] (HP Inc. -> HP Inc.)
R2 HPTouchpointAnalyticsService; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [332216 2017-11-21] (HP Inc. -> HP Inc.)
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2451456 2012-07-13] (Realsil Microelectronics Inc.) [File not signed]
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
R2 NortonSecurity; C:\Program Files\Norton Security\Engine\22.17.1.50\NortonSecurity.exe [225608 2019-04-22] (Symantec Corporation -> Symantec Corporation)
R2 NortonWiFiPrivacy; C:\Program Files (x86)\Norton Secure VPN\client\NSVService.exe [6113296 2018-12-17] (Symantec Corporation -> Symantec Corporation)
R2 nsWscSvc; C:\Program Files\Norton Security\Engine\22.17.1.50\nsWscSvc.exe [935248 2019-04-22] (Symantec Corporation -> Symantec Corporation)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3892256 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [3943664 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [233712 2018-02-06] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [253960 2016-04-28] (Synaptics Incorporated -> Synaptics Incorporated)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\NisSrv.exe [3880120 2019-02-13] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MsMpEng.exe [114208 2019-02-13] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; "C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe" [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 Accelerometer; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [43840 2012-09-24] (Hewlett-Packard Company -> Hewlett-Packard Company)
R3 amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [21635072 2015-08-21] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [673816 2015-08-21] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
S2 APXACC; C:\WINDOWS\system32\DRIVERS\appexDrv.sys [199008 2012-06-23] (AppEx Networks Corporation -> AppEx Networks Corporation)
R3 athr; C:\WINDOWS\System32\drivers\athw8x.sys [4233728 2018-09-15] (Microsoft Windows -> Qualcomm Atheros Communications, Inc.)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [110104 2016-09-28] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.16.3.21\Definitions\BASHDefs\20190513.001\BHDrvx64.sys [1934048 2019-02-12] (Symantec Corporation -> Symantec Corporation)
R1 ccSet_NGC; C:\WINDOWS\System32\drivers\NGCx64\1611010.032\ccSetx64.sys [192704 2019-04-22] (Symantec Corporation -> Symantec Corporation)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink -> CyberLink)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [129152 2016-04-25] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [515792 2019-03-24] (Symantec Corporation -> Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [153296 2019-02-13] (Symantec Corporation -> Symantec Corporation)
R0 hpdskflt; C:\WINDOWS\System32\DRIVERS\hpdskflt.sys [31040 2012-09-24] (Hewlett-Packard Company -> Hewlett-Packard Company)
R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.16.3.21\Definitions\IPSDefs\20190515.061\IDSvia64.sys [1441800 2019-04-18] (Symantec Corporation -> Symantec Corporation)
R3 kmloop; C:\WINDOWS\System32\drivers\loop.sys [17408 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-02-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R1 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [82752 2019-01-12] (Insecure.Com LLC -> Insecure.Com LLC.)
U5 PROCMON24; C:\Windows\System32\Drivers\PROCMON24.sys [97176 2019-05-08] (Microsoft Windows Hardware Compatibility Publisher -> Sysinternals - www.sysinternals.com)
R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [310528 2015-06-29] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
S3 RzCommon; C:\WINDOWS\System32\drivers\RzCommon.sys [49032 2019-01-16] (Razer USA Ltd. -> Razer Inc)
S3 RzDev_0060; C:\WINDOWS\System32\drivers\RzDev_0060.sys [51688 2018-04-22] (Razer USA Ltd. -> Razer Inc)
S3 SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-08-24] (Synaptics Incorporated -> Synaptics Incorporated)
S3 SmbDrvI; C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [43832 2012-08-24] (Synaptics Incorporated -> Synaptics Incorporated)
R1 SRTSP; C:\WINDOWS\System32\drivers\NGCx64\1611010.032\SRTSP64.SYS [864480 2019-04-22] (Symantec Corporation -> Symantec Corporation)
R1 SRTSPX; C:\WINDOWS\System32\drivers\NGCx64\1611010.032\SRTSPX64.SYS [49888 2019-04-22] (Symantec Corporation -> Symantec Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [221824 2016-04-25] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R0 SymEFASI; C:\WINDOWS\System32\drivers\NGCx64\1611010.032\SYMEFASI64.SYS [1998552 2019-04-22] (Symantec Corporation -> Symantec Corporation)
S0 SymELAM; C:\WINDOWS\System32\drivers\NGCx64\1611010.032\SymELAM.sys [25744 2019-04-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Symantec Corporation)
R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS [100064 2019-03-30] (Symantec Corporation -> Symantec Corporation)
S4 SymEvnt; C:\Program Files\Norton Security\NortonData\22.16.3.21\SymPlatform\SymEvnt.sys [709128 2019-04-27] (Symantec Corporation -> Symantec Corporation)
R1 SymIRON; C:\WINDOWS\System32\drivers\NGCx64\1611010.032\Ironx64.SYS [315912 2019-04-22] (Symantec Corporation -> Symantec Corporation)
R1 SymNetS; C:\WINDOWS\System32\drivers\NGCx64\1611010.032\symnets.sys [573448 2019-04-22] (Symantec Corporation -> Symantec Corporation)
R3 SymTAP; C:\WINDOWS\System32\drivers\SymTAP.sys [52104 2018-10-16] (Symantec Corporation -> The OpenVPN Project)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2018-01-30] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 usbfilter; C:\WINDOWS\system32\DRIVERS\usbfilter.sys [57000 2012-06-19] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R3 USBPcap; C:\WINDOWS\system32\DRIVERS\USBPcap.sys [50224 2017-08-20] (Tomasz Moń -> USBPcap)
S3 VBoxNetAdp; C:\WINDOWS\System32\drivers\VBoxNetAdp6.sys [196040 2017-07-27] (Oracle Corporation -> Oracle Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46680 2019-02-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [330936 2019-02-13] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62136 2019-02-13] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [34944 2018-05-11] (HP Inc. -> HP)
S3 wpCtrlDrv_NGC; C:\WINDOWS\System32\drivers\NGCx64\1611010.032\wpCtrlDrv.sys [1012120 2019-04-22] (Symantec Corporation -> Symantec Corporation)
U4 npcap_wifi; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-05-15 23:13 - 2019-05-15 23:17 - 000036936 _____ C:\Users\oldman\Desktop\FRST.txt
2019-05-15 23:12 - 2019-05-15 23:12 - 000000000 ____D C:\RegBackup
2019-05-15 23:11 - 2019-05-15 23:11 - 002434560 _____ (Farbar) C:\Users\oldman\Desktop\FRST64.exe
2019-05-15 22:42 - 2019-05-15 22:42 - 000111688 _____ (Duckware) C:\Users\oldman\x.exe
2019-05-15 20:42 - 2019-05-15 20:42 - 076647212 _____ C:\Users\oldman\Desktop\W-S 5-15 F.F refresh.pcapng
2019-05-15 20:41 - 2019-05-15 20:41 - 000000196 _____ C:\Users\oldman\Desktop\W-S redirector. com etc.txt
2019-05-15 17:54 - 2019-05-15 17:54 - 000000495 _____ C:\Users\oldman\Desktop\IE cache 5-15.txt
2019-05-15 14:49 - 2019-05-15 14:49 - 000000000 ____D C:\WINDOWS\System32\Tasks\Remediation
2019-05-15 14:26 - 2019-05-15 14:26 - 000393168 _____ (Bleeping Computer, LLC) C:\Users\oldman\Desktop\show-hidden.exe
2019-05-15 13:21 - 2019-05-15 13:21 - 026807808 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 023438848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 020814848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 019022336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 006072320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 004883968 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 004660736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 003905536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 003743744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 001290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 001062400 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-05-15 13:21 - 2019-05-15 13:21 - 000427520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 000376320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-05-15 13:21 - 2019-05-15 13:21 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-05-15 13:21 - 2019-05-15 13:21 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-kernel-processor-power-events.dll
2019-05-15 13:21 - 2019-05-15 13:21 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-05-15 13:20 - 2019-05-15 13:21 - 007879680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 009682744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-05-15 13:20 - 2019-05-15 13:20 - 007883776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 007687576 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 007645384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 006542464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 006440960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 006309040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 005498880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 005040640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-05-15 13:20 - 2019-05-15 13:20 - 003637248 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-05-15 13:20 - 2019-05-15 13:20 - 003557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 003384832 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 003363856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-05-15 13:20 - 2019-05-15 13:20 - 002780000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 002708480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-05-15 13:20 - 2019-05-15 13:20 - 002422272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-05-15 13:20 - 2019-05-15 13:20 - 002278240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 002189312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 001860096 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 001760768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 001701888 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 001699496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-05-15 13:20 - 2019-05-15 13:20 - 001641616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 001605120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 001484800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 001470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
Vector Magic Crack 1.20 + Product Key Full Free Download 13:20 - 2019-05-15 13:20 - 001395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 001387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 001342608 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-05-15 13:20 - 2019-05-15 13:20 - 001253904 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-05-15 13:20 - 2019-05-15 13:20 - 001225728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-05-15 13:20 - 2019-05-15 13:20 - 001179680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-05-15 13:20 - 2019-05-15 13:20 - 001054712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-05-15 13:20 - 2019-05-15 13:20 - 001048376 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-05-15 13:20 - 2019-05-15 13:20 - 001026792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000895792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000807464 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-05-15 13:20 - 2019-05-15 13:20 - 000758896 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-05-15 13:20 - 2019-05-15 13:20 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000660992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000586280 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-05-15 13:20 - 2019-05-15 13:20 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000508432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-05-15 13:20 - 2019-05-15 13:20 - 000495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000449376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000444944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-05-15 13:20 - 2019-05-15 Adobe Flash Player 32.0.0.192 License Key - Crack Key For U - 000387832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000254952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2019-05-15 13:20 - 2019-05-15 13:20 - 000223544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2019-05-15 13:20 - 2019-05-15 13:20 - 000216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000212792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-05-15 13:20 - 2019-05-15 13:20 - 000203272 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000202768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2019-05-15 13:20 - 2019-05-15 13:20 - 000201016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2019-05-15 13:20 - 2019-05-15 13:20 - 000198456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2019-05-15 13:20 - 2019-05-15 13:20 - 000192824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-05-15 13:20 - 2019-05-15 13:20 - 000179728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2019-05-15 13:20 - 2019-05-15 13:20 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000177976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-05-15 13:20 - 2019-05-15 13:20 - 000163240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2019-05-15 13:20 - 2019-05-15 13:20 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000147736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2019-05-15 13:20 - 2019-05-15 13:20 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000121656 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2019-05-15 13:20 - 2019-05-15 13:20 - 000090640 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000080184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-05-15 13:20 - 2019-05-15 13:20 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-05-15 13:20 - 2019-05-15 13:20 - 000066688 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdll.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000055792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdll.dll
2019-05-15 13:20 - 2019-05-15 13:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-05-15 13:20 - 2019-05-15 13:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-05-15 13:20 - 2019-05-15 13:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-05-15 13:20 - 2019-05-15 13:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-05-15 13:20 - 2019-05-15 13:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-05-15 13:20 - 2019-05-15 13:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-05-15 13:20 - 2019-05-15 13:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-05-15 13:20 - 2019-05-15 13:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-05-14 21:07 - 2019-05-14 21:07 - 000000064 _____ C:\Users\oldman\Desktop\WFA address.txt
2019-05-14 16:47 - 2019-05-15 22:16 - 000000223 _____ C:\Users\oldman\Desktop\stuff to scan 2day.txt
2019-05-14 16:03 - 2019-05-14 16:03 - 000000899 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2019-05-14 16:03 - 2019-05-14 16:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2019-05-14 16:03 - 2019-05-14 16:03 - 000000000 ____D C:\Program Files\RogueKiller
2019-05-14 15:17 - 2019-05-14 15:20 - 422061832 _____ C:\Users\oldman\Desktop\5-14 fun.pcapng
2019-05-14 14:50 - 2019-05-15 13:50 - 000000606 _____ C:\Users\oldman\Desktop\Todays stuff.txt
2019-05-12 23:06 - 2019-04-04 13:11 - 000454145 ____R C:\WINDOWS\system32\Drivers\etc\hosts.20190512-230640.backup
2019-05-12 14:27 - 2019-05-12 14:27 - 002060772 _____ C:\Users\oldman\Desktop\code.jquery WS.pcapng
2019-05-10 21:15 - 2019-05-10 22:01 - 000000443 _____ C:\Users\oldman\Desktop\J.Swift quote.txt
2019-05-10 18:46 - 2019-05-10 18:47 - 000388608 _____ (Trend Micro Inc.) C:\Users\oldman\Desktop\HijackThis.exe
2019-05-10 09:13 - 2019-05-15 16:49 - 000000000 ____D C:\WINDOWS\System32\Tasks\Norton Security with Backup
2019-05-10 09:12 - 2019-05-10 22:22 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
2019-05-10 09:12 - 2019-05-10 09:12 - 000003376 _____ C:\WINDOWS\System32\Tasks\Norton WSC Integration
2019-05-08 18:13 - 2019-05-08 18:13 - 001054490 _____ C:\Users\oldman\Desktop\ProcessMonitor.zip
2019-05-08 14:26 - 2019-05-08 18:38 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2019-05-05 13:34 - 2019-05-05 13:34 - 000000260 _____ C:\Users\oldman\Desktop\Gaba Lyrica links.txt
2019-05-03 16:14 - 2019-05-03 16:14 - 003551112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-05-03 16:14 - 2019-05-03 16:14 - 000263576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-05-03 16:14 - 2019-05-03 16:14 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll
2019-05-03 16:14 - 2019-05-03 16:14 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncCsp.dll
2019-05-03 16:14 - 2019-05-03 16:14 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\EASPolicyManagerBrokerHost.exe
2019-05-03 16:13 - 2019-05-03 16:14 - 005436904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 012844032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 012140032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 005296640 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 005210904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 003982848 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 003426816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 003406848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2019-05-03 16:13 - 2019-05-03 16:13 Doxillion Document Converter Plus Registration key 002701512 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 002393088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 002205184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 002073960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 001994976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 001768960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 001674696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 001671352 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 001653760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 001467552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 001382912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 001315328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 001001472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000782848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000780632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcrt.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000725696 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000695296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2019-05-03 16:13 - 2019-05-03 16:13 - 000673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000649064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000638376 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcrt.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000610304 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2019-05-03 16:13 - 2019-05-03 16:13 - 000553656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000540720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000531968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000514632 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000454160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-05-03 16:13 - 2019-05-03 16:13 - 000451080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiag.exe
2019-05-03 16:13 - 2019-05-03 16:13 - 000359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-05-03 16:13 - 2019-05-03 16:13 - 000349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000320512 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2019-05-03 16:13 - 2019-05-03 16:13 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiag.exe
2019-05-03 16:13 - 2019-05-03 16:13 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2019-05-03 16:13 - 2019-05-03 16:13 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2019-05-03 16:13 - 2019-05-03 16:13 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2019-05-03 16:13 - 2019-05-03 16:13 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000122680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2019-05-03 16:13 - 2019-05-03 16:13 - 000086960 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2019-05-03 16:13 - 2019-05-03 16:13 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnosticsTool.exe
2019-05-03 16:12 - 2019-05-03 16:12 - 004997096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2019-05-03 16:12 - 2019-05-03 16:12 - 002995712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-05-03 16:12 - 2019-05-03 16:12 - 001219640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2019-05-03 16:12 - 2019-05-03 16:12 - 000999424 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-05-03 16:12 - 2019-05-03 16:12 - 000806600 _____ C:\WINDOWS\SysWOW64\locale.nls
2019-05-03 16:12 - 2019-05-03 16:12 - 000806600 _____ C:\WINDOWS\system32\locale.nls
2019-05-03 16:12 - 2019-05-03 16:12 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-05-03 16:12 - 2019-05-03 16:12 - 000679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2019-05-03 16:12 - 2019-05-03 16:12 - 000676256 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2019-05-03 16:12 - 2019-05-03 16:12 - 000651576 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-05-03 16:12 - 2019-05-03 16:12 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\DDDS.dll
2019-05-03 16:12 - 2019-05-03 16:12 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2019-05-03 16:12 - 2019-05-03 16:12 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\system32\SDDS.dll
2019-05-03 16:12 - 2019-05-03 16:12 - 000421392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-05-03 16:12 - 2019-05-03 16:12 - 000366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2019-05-03 16:12 - 2019-05-03 16:12 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2019-05-03 16:12 - 2019-05-03 16:12 - 000280592 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-05-03 16:12 - 2019-05-03 16:12 - 000244224 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpnServiceDS.dll
2019-05-03 16:12 - 2019-05-03 16:12 - 000197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2019-05-03 16:12 - 2019-05-03 16:12 - 000161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2019-05-03 16:12 - 2019-05-03 16:12 - 000157200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2019-04-25 13:13 - 2019-04-25 13:14 - 029937376 _____ (Adlice Software ) C:\Users\oldman\Desktop\setup(1).exe
2019-04-22 16:15 - 2019-04-22 16:16 - 000000000 ____D C:\Users\oldman\Desktop\Genesight Copy
2019-04-16 12:27 - 2019-04-16 12:27 - 000001827 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wireshark.lnk
2019-04-15 12:06 - 2019-04-15 12:06 - 000001816 _____ C:\Users\Public\Desktop\iTunes.lnk
2019-04-15 12:06 - 2019-04-15 12:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2019-04-15 12:06 - 2019-04-15 12:06 - 000000000 ____D C:\Program Files\iPod
2019-04-15 12:04 - 2019-04-15 12:06 - 000000000 ____D C:\Program Files\iTunes

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-05-15 23:13 - 2018-12-06 16:03 - 000000000 ____D C:\FRST
2019-05-15 23:12 - 2016-11-28 01:03 - 000000000 ____D C:\Users\oldman\AppData\LocalLow\Mozilla
2019-05-15 22:47 - 2019-04-10 12:18 - 000000000 ____D C:\Users\oldman\AppData\Local\Razer
2019-05-15 22:47 - 2019-04-10 12:07 - 000000000 ____D C:\ProgramData\Razer
2019-05-15 22:46 - 2019-04-10 12:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2019-05-15 22:46 - 2019-04-10 12:14 - 000000000 ____D C:\Program Files\Razer
2019-05-15 22:46 - 2019-04-10 12:06 - 000000000 ____D C:\Program Files (x86)\Razer
2019-05-15 22:46 - 2018-09-15 01:31 - 000000000 ____D C:\WINDOWS\INF
2019-05-15 22:42 - 2019-01-12 12:12 - 000000000 ____D C:\Users\oldman
2019-05-15 22:42 - 2016-08-11 14:50 - 000000000 ___HD C:\jexepackres
2019-05-15 22:42 - 2016-08-11 14:50 - 000000000 ____D C:\Users\oldman\applogs
2019-05-15 22:42 - 2016-08-11 14:50 - 000000000 ____D C:\Program Files (x86)\AstroViewer 3.1.6
2019-05-15 22:32 - 2018-09-15 01:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-05-15 22:02 - 2019-01-12 12:04 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-05-15 18:33 - 2019-02-10 15:06 - 000000000 ____D C:\Users\oldman\Desktop\Old Firefox Data
2019-05-15 17:55 - 2019-01-12 12:27 - 000004152 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{D6FF1BE5-40C3-4B52-A236-97274056599C}
2019-05-15 14:47 - 2019-03-02 17:10 - 000301208 _____ C:\Users\oldman\Desktop\Show-Hidden.txt
2019-05-15 14:17 - 2018-09-15 01:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-05-15 14:17 - 2018-09-15 01:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-05-15 14:15 - 2018-11-01 16:21 - 000000000 ____D C:\Users\oldman\Desktop\malware tools
2019-05-15 14:08 - 2019-01-12 12:30 - 000935120 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-05-15 14:02 - 2019-01-12 12:04 - 000284848 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-05-15 14:01 - 2016-08-20 10:31 - 000000000 ____D C:\ProgramData\Kodak
2019-05-15 14:01 - 2015-12-03 22:03 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2019-05-15 14:00 - 2019-01-12 12:27 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-05-15 13:59 - 2018-09-15 00:09 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2019-05-15 13:59 - 2015-07-29 03:19 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2019-05-15 13:57 - 2018-09-15 01:33 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-05-15 13:57 - 2018-09-15 01:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-05-15 13:26 - 2018-09-15 01:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-05-15 12:41 - 2018-06-12 18:34 - 000000000 ____D C:\ProgramData\SecTaskMan
2019-05-14 23:49 - 2019-01-12 12:27 - 000004574 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-05-14 23:48 - 2019-02-12 15:21 - 006194744 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2019-05-14 23:48 - 2018-09-15 01:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-05-14 23:48 - 2018-09-15 01:33 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-05-14 23:25 - 2015-05-03 12:07 - 000000000 ____D C:\Users\oldman\AppData\Local\Battle.net
2019-05-14 23:12 - 2015-05-03 screenshot recorder - 000000000 ____D C:\Program Files (x86)\Diablo III
2019-05-14 16:04 - 2019-03-31 16:21 - 000003138 _____ C:\WINDOWS\System32\Tasks\RogueKiller Anti-Malware
2019-05-14 15:57 - 2015-10-21 19:23 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-05-14 15:30 - 2017-05-02 14:10 - 000000352 _____ C:\WINDOWS\Tasks\HPCeeScheduleForoldman.job
2019-05-14 15:23 - 2015-05-03 19:25 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-05-14 15:13 - 2015-05-03 19:25 - 132445408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-05-14 11:16 - 2019-01-12 12:27 - 000003248 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForoldman
2019-05-13 15:23 - 2018-09-15 01:36 - 000835688 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-05-13 15:23 - 2018-09-15 01:36 - 000179816 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-05-12 23:32 - 2015-05-23 09:11 - 000000000 ____D C:\Users\oldman\AppData\Local\CrashDumps
2019-05-12 12:40 - 2018-06-23 20:30 - 000000000 ____D C:\Users\oldman\Desktop\scan logs and stuff
2019-05-11 23:14 - 2019-01-12 12:27 - 000003364 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-901587214-2200967626-3004657440-1003
2019-05-11 23:14 - 2019-01-12 12:12 - 000002403 _____ C:\Users\oldman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-05-11 23:14 - 2015-06-27 12:46 - 000000000 ___RD C:\Users\oldman\OneDrive
2019-05-11 19:27 - 2019-03-30 20:51 - 000153328 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2019-05-10 22:22 - 2019-02-13 11:45 - 000002408 _____ C:\Users\Public\Desktop\Norton Security.lnk
2019-05-10 14:50 - 2015-07-29 00:21 - 000000000 ____D C:\Users\oldman\AppData\Local\ElevatedDiagnostics
2019-05-10 09:41 - 2015-06-10 01:43 - 000000000 ____D C:\Program Files\Common Files\AV
2019-05-10 09:12 - 2018-02-26 15:03 - 000000000 ____D C:\WINDOWS\system32\Drivers\NGCx64
2019-05-09 23:33 - 2015-05-03 12:07 - 000000000 ____D C:\Program Files (x86)\Battle.net
2019-05-08 23:15 - 2018-06-27 01:41 - 000000000 ____D C:\ProgramData\Packages
2019-05-08 19:21 - 2019-03-04 16:43 - 000097176 ____H (Sysinternals - www.sysinternals.com) C:\WINDOWS\system32\Drivers\PROCMON24.SYS
2019-05-08 19:20 - 2019-03-04 16:43 - 000000000 ____D C:\Users\oldman\Desktop\ProcessMonitor
2019-05-08 18:40 - 2018-09-15 00:09 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2019-05-08 18:38 - 2015-05-03 11:47 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-05-08 17:40 - 2015-05-03 11:47 - 000001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-05-08 13:50 - 2018-01-03 21:16 - 000000000 ____D C:\Users\oldman\AppData\Local\PlaceholderTileLogoFolder
2019-05-04 23:54 - 2016-06-26 04:54 - 000000000 ____D C:\Users\oldman\AppData\Local\NPE
2019-05-03 17:22 - 2018-09-15 01:33 - 000000000 ____D C:\WINDOWS\TextInput
2019-05-03 17:22 - 2018-09-15 01:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-04-30 13:53 - 2017-12-09 01:36 - 000000000 ____D C:\Users\oldman\AppData\Local\Packages
2019-04-23 12:15 - 2015-05-03 12:07 - 000000000 ____D C:\Users\oldman\AppData\Local\Blizzard Entertainment
2019-04-21 18:53 - 2018-04-13 01:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-04-21 18:53 - 2015-06-13 14:02 - 000000000 ____D C:\Program Files (x86)\Java
2019-04-21 18:52 - 2018-04-13 01:24 - 000099192 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2019-04-17 15:07 - 2015-07-14 21:37 - 000000000 ____D C:\Users\oldman\Documents\Youcam
2019-04-17 14:34 - 2015-06-02 17:51 - 000000000 ____D C:\Users\oldman\AppData\Roaming\Skype
2019-04-16 12:27 - 2019-03-03 17:49 - 000000000 ____D C:\Program Files\Wireshark

==================== Files in the root of some directories =======

2019-05-15 22:42 - 2019-05-15 22:42 - 000111688 _____ (Duckware) C:\Users\oldman\x.exe
2015-08-15 18:31 - 2018-11-02 19:18 - 000011264 _____ () C:\Users\oldman\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-08-01 13:43 - 2019-05-06 13:17 - 000140696 _____ () C:\Users\oldman\AppData\Local\installer.log
2015-08-01 13:43 - 2015-08-01 13:43 - 000000236 _____ () C:\Users\oldman\AppData\Local\LaunchHomeCenter.log
2015-05-23 09:41 - 2018-02-14 00:28 - 000007674 _____ () C:\Users\oldman\AppData\Local\resmon.resmoncfg

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-05.2019 01
Ran by oldman (15-05-2019 23:18:20)
Running from C:\Users\oldman\Desktop
Windows 10 Home Version 1809 17763.503 (X64) (2019-01-12 18:50:39)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-901587214-2200967626-3004657440-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-901587214-2200967626-3004657440-503 - Limited - Disabled)
Guest (S-1-5-21-901587214-2200967626-3004657440-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-901587214-2200967626-3004657440-1009 - Limited - Enabled)
oldman (S-1-5-21-901587214-2200967626-3004657440-1003 - Administrator - Enabled) => C:\Users\oldman
WDAGUtilityAccount (S-1-5-21-901587214-2200967626-3004657440-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Norton Security (Enabled - Up to date) {A2708B76-6835-6565-CB96-694212954A75}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {4C1D9672-63FE-5C90-371E-8FDA591C5B75}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Norton Security (Enabled) {9A4B0A53-225A-643D-E0C9-C077EC460D0E}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC (HKLM-x32\.\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 19.012.20034 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\.\Adobe Flash Player NPAPI) (Version: 32.0.0.192 - Adobe)
Adobe Shockwave Player 12.1 (HKLM-x32\.\Adobe Shockwave Player) (Version: 12.1.8.158 - Adobe Systems, Inc.)
aioprnt (HKLM\.\{0645A454-AD44-4F0D-99CF-6B762735AD1F}) (Version: 5.3.1.0 - Eastman Kodak Company) Hidden
aioscnnr (HKLM-x32\.\{376348C2-E372-48BC-A138-E896757BD86A}) (Version: 5.8.10.0 - Your Company Name) Hidden
aioscnnr (HKLM-x32\.\{EF53BFAB-4C10-40DB-A82D-9B07111715C6}) (Version: 7.6.13.10 - Your Company Name) Hidden
AMD Catalyst Install Manager (HKLM\.\{D01E0B82-7D6E-F9AC-9A7D-C6076264F419}) (Version: 8.0.881.0 - Advanced Micro Devices, Inc.)
AMD Quick Stream (HKLM\.\{E9EED4AE-682B-4501-9574-D09A21717599}_is1) (Version: 3.3.26.0 - AppEx Networks)
Apple Application Support (32-bit) (HKLM-x32\.\{9F7041CB-8398-4691-B8CB-0D52273BB3D9}) (Version: 7.4 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\.\{6E7DF4EE-1976-4215-9D81-755AFC95687D}) (Version: 7.4 - Apple Inc.)
Apple Mobile Device Support (HKLM\.\{BA2A6DBB-B09A-43D8-84F3-21C1537B47D9}) (Version: 12.2.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\.\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Battle.net (HKLM-x32\.\Battle.net) (Version: - Blizzard Entertainment)
BOINC (HKLM\.\{F1361096-9418-489B-983B-5F8C3972E05E}) (Version: 7.8.3 - Space Sciences Laboratory, U.C. Berkeley)
Bonjour (HKLM\.\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
C4USelfUpdater (HKLM-x32\.\{48B41C3A-9A92-4B81-B653-C97FEB85C910}) (Version: 1.00.0000 - Your Company Name) Hidden
center (HKLM-x32\.\{56BA241F-580C-43D2-8403-947241AAE633}) (Version: 7.8.0.0 - Eastman Kodak Company) Hidden
CyberLink LabelPrint (HKLM-x32\.\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.1.5407 - CyberLink Corp.)
CyberLink Media Suite 10 (HKLM-x32\.\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.1.1916 - CyberLink Corp.)
CyberLink PhotoDirector (HKLM-x32\.\InstallShield_{4862344A-A39C-4897-ACD4-A1BED5163C5A}) (Version: 2.0.1.3119 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\.\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.1.1926 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\.\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.1.1925 - CyberLink Corp.)
CyberLink PowerDVD (HKLM-x32\.\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.6.4319 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\.\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.5.4.5527 - CyberLink Corp.)
D3DX10 (HKLM-x32\.\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Diablo III (HKLM-x32\.\Diablo III) (Version: - Blizzard Entertainment)
Energy Star (HKLM\.\{0FA995CC-C849-4755-B14B-5404CC75DC24}) (Version: 1.0.8 - Hewlett-Packard)
Epic Games Launcher Prerequisites (x64) (HKLM\.\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
essentials (HKLM-x32\.\{BE94C681-68E2-4561-8ABC-8D2E799168B4}) (Version: 7.8.0.0 - Eastman Kodak Company) Hidden
Google Adobe Flash Player 32.0.0.192 License Key - Crack Key For U Pro (HKLM\.\{F914BC59-918A-498F-B2E3-B274C9CB48A8}) (Version: 7.3.2.5491 - Google)
Hewlett-Packard ACLM.NET v1.2.2.3 (HKLM-x32\.\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM\.\{54CE68A8-4F2D-4328-B1F7-D6C720405F7F}) (Version: 4.2.9.1 - Hewlett-Packard Company)
HP Connected AVG Antivirus 19.2.3079 Crack - Crack Key For U (Meridian - installer) (HKLM-x32\.\StartHPConnectedMusic) (Version: v1.0 - Meridian Audio Ltd)
HP CoolSense (HKLM-x32\.\{16B7BDA1-B967-4D2D-8B27-E12727C28350}) (Version: 2.10.3 - Hewlett-Packard Company)
HP Documentation (HKLM-x32\.\{1AC082E0-049D-4C5C-9ECF-9473AD5A949D}) (Version: 1.1.0.0 - Hewlett-Packard)
HP Games (HKLM-x32\.\WildTangent hp Master Uninstall) (Version: 1.0.3.0 - WildTangent)
HP MyRoom (HKLM-x32\.\{32F06015-D852-4A57-A0DD-8D08D17633AC}) (Version: 10.4.0156 - Hewlett-Packard)
HP PC Hardware Diagnostics Windows (HKLM-x32\.\{7FF9E31F-FAC5-4C7B-970B-FE464B8C6A62}) (Version: 1.5.2.0 - HP Inc.)
HP Quick Launch (HKLM-x32\.\{E5823036-6F09-4D0A-B05C-E2BAA129288A}) (Version: 3.0.6 - Hewlett-Packard Company)
HP Registration Service (HKLM\.\{E4D6CCF2-0AAF-4B9C-9DE5-893EDC9B4BAA}) (Version: 1.0.5976.4186 - Hewlett-Packard)
HP Software Framework (HKLM-x32\.\{5094249B-9542-4536-AE76-B769EE085C99}) (Version: 7.1.6.1 - HP)
HP Software Framework (HKLM-x32\.\{835B275B-F29B-464B-BD4B-097FD55FAB0A}) (Version: 4.6.8.1 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\.\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.7.50.3 - Hewlett-Packard Company)
HP Support Solutions Framework (HKLM-x32\.\{55065080-504F-43BB-BE00-36B80D7D39A5}) (Version: 12.10.49.21 - Hewlett-Packard Company)
HP Touchpoint Analytics Client (HKLM\.\{E5FB98E0-0784-44F0-8CEC-95CD4690C43F}) (Version: 4.0.2.1439 - HP Inc.)
HP Utility Center (HKLM-x32\.\{0C57987A-A03A-4B95-A309-D23F78F406CA}) (Version: 1.0.7 - Hewlett-Packard)
HP Wireless Button Driver (HKLM-x32\.\{941DE69D-6CEE-4171-8F1F-3D7E352AA498}) (Version: 1.0.5.1 - Hewlett-Packard Company)
HPDetect (HKLM-x32\.\{CCCDD476-98F9-4B06-91DB-23F27CEC3BE1}) (Version: 1.0.0.0 - HP)
IDT Audio (HKLM-x32\.\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6417.0 - IDT)
IrfanView (remove only) (HKLM-x32\.\IrfanView) (Version: 4.40 - Irfan Skiljan)
iTunes (HKLM\.\{DF90B2B3-5832-4E85-934D-8048B33A1D67}) (Version: 12.9.4.102 - Apple Inc.)
Java 8 Update 211 (HKLM-x32\.\{26A24AE4-039D-4CA4-87B4-2F32180211F0}) (Version: 8.0.2110.12 - Oracle Corporation)
Kodak AIO Printer (HKLM\.\{27EF8E7F-88D1-4ec5-ADE2-7E447FDF114E}) (Version: 7.8.1.0 - Eastman Kodak Company) Hidden
KODAK AiO Software (HKLM-x32\.\{E0F274B7-592B-4669-8FB8-8D9825A09858}) (Version: 7.9.1.1 - Eastman Kodak Company)
KODAK VERITE 50 Series Uninstaller (HKLM\.\KODAK VERITE 50 Series) (Version: - FUNAI ELECTRIC CO., LTD.)
Launcher Prerequisites (x64) (HKLM-x32\.\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Malwarebytes version 3.7.1.2839 (HKLM\.\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
Microsoft Mouse and Keyboard Center (HKLM\.\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
Microsoft Office (HKLM-x32\.\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-901587214-2200967626-3004657440-1003\.\OneDriveSetup.exe) (Version: 19.062.0331.0006 - Microsoft Corporation)
Microsoft Silverlight (HKLM\.\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\.\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\.\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\.\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\.\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\.\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\.\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\.\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\.\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\.\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\.\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\.\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\.\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\.\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\.\{e2803110-78b3-4664-a479-3611a381656a}) (Version: Adobe Flash Player 32.0.0.192 License Key - Crack Key For U - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\.\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
Minecraft (HKLM-x32\.\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Mozilla Firefox 66.0.5 (x64 en-US) (HKLM\.\Mozilla Firefox 66.0.5 (x64 en-US)) (Version: 66.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM\.\MozillaMaintenanceService) (Version: 64.0 - Mozilla)
Norton Secure VPN (HKLM-x32\.\Norton Secure VPN) (Version: 1.7.0.325 - Symantec Corporation)
Norton Security (HKLM-x32\.\NGC) (Version: 22.17.1.50 - Symantec Corporation)
Norton WiFi Privacy (HKLM-x32\.\Norton WiFi Privacy) (Version: 1.4.9 - Symantec Corporation)
Npcap 0.992 (HKLM-x32\.\NpcapInst) (Version: 0.992 - Nmap Project)
NVIDIA PhysX (HKLM-x32\.\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
ocr (HKLM-x32\.\{BFBCF96F-7361-486A-965C-54B17AC35421}) (Version: 6.2.3.50 - Eastman Kodak Company) Hidden
PreReq (HKLM-x32\.\{DA5BDB2A-12F0-4343-8351-21AAEB293990}) (Version: 6.2.4.0 - Eastman Kodak Company) Hidden
Python 3.5.2 (32-bit) (HKU\S-1-5-21-901587214-2200967626-3004657440-1003\.\{cf72a2ab-2f1d-49fd-a0d7-1065e6357e1e}) (Version: 3.5.2150.0 - Python Software Foundation)
Python 3.5.2 Core Interpreter (32-bit) (HKLM-x32\.\{EB0611B2-7F10-4D97-BCF2-DCAAB1199498}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Development Libraries (32-bit) (HKLM-x32\.\{5DB2183B-62D3-407F-BBC1-EAD2F36283FA}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Documentation (32-bit) (HKLM-x32\.\{1FBA5182-78DD-4940-9F06-96E5042B7061}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Executables (32-bit) (HKLM-x32\.\{33B10015-A9B1-4210-B50A-26C6443979B0}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 pip Bootstrap (32-bit) (HKLM-x32\.\{9ADF9987-3327-48C6-91B3-B10900366491}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Standard Library (32-bit) (HKLM-x32\.\{FCBB04F4-D2CF-4F55-BE92-B3898696B318}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Tcl/Tk Support (32-bit) (HKLM-x32\.\{C1153533-FDC4-4922-892D-B71810F69566}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Test Suite (32-bit) (HKLM-x32\.\{9D50A6D7-410A-4469-87B7-35FA84CBD479}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Utility Scripts (32-bit) (HKLM-x32\.\{E6DEBF43-7ACF-4E88-9BBF-9B5945683281}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\.\{963ECCDD-F09F-4C24-9367-8B5D748AA7C8}) (Version: 3.5.2121.0 - Python Software Foundation)
Qualcomm Atheros Driver Installation Program (HKLM-x32\.\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 10.0 - Qualcomm Atheros)
Realtek Ethernet Controller Driver (HKLM-x32\.\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.3.730.2012 - Realtek)
Realtek PCIE Card Reader (HKLM-x32\.\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.2.8400.29029 - Realtek Semiconductor Corp.)
RogueKiller version 13.2.0.0 (HKLM\.\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 13.2.0.0 - Adlice Software)
Security Task Manager 2.3 (HKLM-x32\.\Security Task Manager) (Version: 2.3 - Neuber Software)
Skype™ 7.33 (HKLM-x32\.\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.105 - Skype Technologies S.A.)
Spybot - Search & Destroy (HKLM-x32\.\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.7.64.0 - Safer-Networking Ltd.)
swMSM (HKLM-x32\.\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\.\SynTPDeinstKey) (Version: 19.0.12.98 - Synaptics Incorporated)
TreeSize Free V4.3.1 (HKLM-x32\.\TreeSize Free_is1) (Version: 4.3.1 - JAM Software)
Tweaking.com - Registry Backup (HKLM-x32\.\Tweaking.com - Registry Backup) (Version: 3.5.3 - Tweaking.com)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\.\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation)
USBPcap 1.2.0.4 (HKLM\.\USBPcap) (Version: 1.2.0.4 - Tomasz Mon)
Windows 10 Upgrade Assistant (HKLM-x32\.\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17384 - Microsoft Corporation)
Windows Live Essentials (HKLM-x32\.\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Wireshark 3.0.1 64-bit (HKLM-x32\.\Wireshark) (Version: 3.0.1 - The Wireshark developer community, hxxps://www.wireshark.org)
WorldWide Telescope (HKLM-x32\.\{412B591F-3F86-4A1C-9DF6-854892DE27BB}) (Version: 5.5.03 - WorldWide Telescope)

Packages:
=========
All My LAN Adobe Flash Player 32.0.0.192 License Key - Crack Key For U C:\Program Files\WindowsApps\13258Thoroughsoft.AllMyLAN_1.1.7.0_x64__set6qczgvnq5g [2019-04-17] (Thoroughsoft)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.137.700.0_x86__kgqvnymyfvs32 [2019-04-17] (king.com)
Diagnostic Data Viewer -> C:\Program Files\WindowsApps\Microsoft.DiagnosticDataViewer_3.1904.1071.0_x64__8wekyb3d8bbwe [2019-04-18] (Microsoft Corporation)
Disney Magic Kingdoms -> C:\Program Files\WindowsApps\A278AB0D.DisneyMagicKingdoms_3.9.0.7_x86__h6adky7gbf63m [2019-04-17] (Gameloft.)
HP Registration -> C:\Program Files\WindowsApps\AD2F1837.HPRegistration_1.2.1.166_neutral__v10z8vjag6ke6 [2018-10-17] (Hewlett-Packard Company)
HP+ -> C:\Program Files\WindowsApps\AD2F1837.HP_1.2.0.93_neutral__v10z8vjag6ke6 [2018-10-17] (Hewlett-Packard Company)
Hulu -> C:\Program Files\WindowsApps\HuluLLC.HuluPlus_2.5.3.0_neutral__fphbd361v8tya [2019-03-08] (Hulu.)
Kindle -> C:\Program Files\WindowsApps\AMZNMobileLLC.KindleforWindows8_2.1.0.2_neutral__stfe6vwa9jnbp [2018-10-17] (AMZN Mobile LLC)
Microsoft Mahjong -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMahjong_3.9.4100.0_x64__8wekyb3d8bbwe [2019-04-19] (Microsoft Studios)
Microsoft Visual C++ 2013 Runtime Package -> C:\Program Files\WindowsApps\Microsoft.VCLibs.120.00.Universal_12.0.30501.0_x64__8wekyb3d8bbwe [2018-10-17] (Microsoft Platform Extensions)
Microsoft Visual C++ 2013 Runtime Package -> C:\Program Files\WindowsApps\Microsoft.VCLibs.120.00.Universal_12.0.30501.0_x86__8wekyb3d8bbwe [2018-10-17] (Microsoft Platform Extensions)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.93.375.0_x64__mcm4njqhnhss8 [2019-02-19] (Netflix, Inc.)
Network Inspector -> C:\Program Files\WindowsApps\48425ShipwreckSoftware.NetworkInspector_2.3.24.0_x64__jh2negtepkzpr [2019-04-17] (Shipwreck Software)
Norton Safe Web -> C:\Program Files\WindowsApps\SymantecCorporation.NortonSafeWeb_3.7.0.0_neutral__v68kp9n051hdp [2019-03-28] (Symantec Corporation)
Norton Studio -> C:\Program Files\WindowsApps\SymantecCorporation.NortonStudio_2.2.0.0_x86__v68kp9n051hdp [2018-10-17] (Symantec Corporation)
Spider Solitaire HD -> C:\Program Files\WindowsApps\32988BernardoZamora.SpiderSolitaireHD_1.18.0.27_x64__1fgex2kbsn6g8 [2018-10-17] (Bernardo Zamora)
TreeSize Free -> C:\Program Files\WindowsApps\JAMSoftware.TreeSizeFree_4.3.1.0_x86__37s2tpab2h9zg [2019-03-05] (JAM Software)
Xbox 360 SmartGlass -> C:\Program Files\WindowsApps\Microsoft.XboxCompanion_1.4.3.0_x64__8wekyb3d8bbwe [2018-10-17] (Microsoft Corporation)
Xbox One SmartGlass -> C:\Program Files\WindowsApps\Microsoft.XboxOneSmartGlass_2.2.1702.2004_x64__8wekyb3d8bbwe [2018-10-17] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-901587214-2200967626-3004657440-1003_Classes\CLSID\{D9AC5E73-BB10-467b-B884-AA1E475C51F5}\Shell\Open\Command -> C:\Program Files\Synaptics\SynTP\SynTPCpl.dll (Synaptics Incorporated -> Synaptics Incorporated)
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.17.1.50\buShell.dll [2019-04-22] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.17.1.50\buShell.dll [2019-04-22] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.17.1.50\buShell.dll [2019-04-22] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.17.1.50\buShell.dll [2019-04-22] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.17.1.50\buShell.dll [2019-04-22] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.17.1.50\buShell.dll [2019-04-22] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers1: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.17.1.50\buShell.dll [2019-04-22] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2012-07-27] (CyberLink -> Cyberlink)
ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Avast free antivirus android - Crack Key For U & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers1: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.17.1.50\NavShExt.dll [2019-04-22] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2012-07-27] (CyberLink -> Cyberlink)
ContextMenuHandlers2: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.17.1.50\NavShExt.dll [2019-04-22] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.17.1.50\buShell.dll [2019-04-22] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers6: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.17.1.50\NavShExt.dll [2019-04-22] (Symantec Corporation -> Symantec Corporation)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2012-08-08 11:36 - 2012-08-08 11:36 - 000073728 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2012-08-08 11:36 - 2012-08-08 11:36 - 000361984 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
2015-08-31 10:59 - 2015-08-31 10:59 - 000075264 _____ (Eastman Kodak Company) [File not signed] C:\Program Files (x86)\Kodak\AiO\Center\Logger.dll
2015-05-03 00:33 - 2012-07-13 19:02 - 002451456 _____ (Realsil Microelectronics Inc.) [File not signed] C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
2015-05-03 00:33 - 2012-02-07 16:59 - 000166912 _____ (Realtek Semiconductor Corp.) [File not signed] C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RsCRLib.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [472]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\.DEFAULT\.\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\.\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\.\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\.\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\.\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\.\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\.\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\.\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\.\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\.\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\.\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\.\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\.\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\.\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\.\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\.\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\.\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\.\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\.\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\.\123simsen.com -> www.123simsen.com

There are 7945 more sites.

IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\.\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\.\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\.\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\.\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\.\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\.\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\.\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\.\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\.\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\.\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\.\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\.\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\.\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\.\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\.\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\.\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\.\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\.\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\.\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-901587214-2200967626-3004657440-1003\.\123simsen.com -> www.123simsen.com

There are 7946 more sites.


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-05-21 21:01 - 2019-05-12 23:06 - 000454145 ____R C:\WINDOWS\system32\drivers\etc\hosts

127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123haustiereundmehr.com
127.0.0.1 123moviedownload.com

There are 15617 more lines.


2017-09-14 18:48 - 2017-09-14 18:53 - 000000435 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Razer\ChromaBroadcast\bin;C:\Program Files\Razer\ChromaBroadcast\bin;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\AMD APP\bin\x86_64;C:\Program Files (x86)\AMD APP\bin\x86;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files (x86)\Skype\Phone\;C:\WINDOWS\System32\OpenSSH\;C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\WindowsApps;
HKU\S-1-5-21-901587214-2200967626-3004657440-1003\Control Panel\Desktop\\Wallpaper -> C:\Users\oldman\Pictures\Spacey pictures\3772-84mcnaught_druckmuller720.jpg
DNS Servers: 192.168.0.1 - 205.171.3.65
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKLM\.\StartupApproved\Run: => "EKIJ5000StatusMonitor"
HKLM\.\StartupApproved\Run: => "iTunesHelper"
HKLM\.\StartupApproved\Run: => "boincmgr"
HKLM\.\StartupApproved\Run: => "boinctray"
HKLM\.\StartupApproved\Run: => "KOBAAmon"
HKLM\.\StartupApproved\Run32: => "CLVirtualDrive"
HKLM\.\StartupApproved\Run32: => "RemoteControl10"
HKLM\.\StartupApproved\Run32: => "EKStatusMonitor"
HKLM\.\StartupApproved\Run32: => "APSDaemon"
HKLM\.\StartupApproved\Run32: => "QuickTime Task"
HKLM\.\StartupApproved\Run32: => "KOBAAmon"
HKU\S-1-5-21-901587214-2200967626-3004657440-1003\.\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-901587214-2200967626-3004657440-1003\.\StartupApproved\Run: => "SpybotPostWindows10UpgradeReInstall"
HKU\S-1-5-21-901587214-2200967626-3004657440-1003\.\StartupApproved\Run: => "BingSvc"
HKU\S-1-5-21-901587214-2200967626-3004657440-1003\.\StartupApproved\Run: => "KOab1err"
HKU\S-1-5-21-901587214-2200967626-3004657440-1003\.\StartupApproved\Run: => "EpicGamesLauncher"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{02A0DC13-4512-4DA3-AB45-8912D3DF93D8}] => (Allow) LPort=9322
FirewallRules: [{66B8882C-58B1-4E9E-B9A0-31F300A5E704}] => (Allow) LPort=5353
FirewallRules: [{5C19FB7B-5B75-4C8B-AB2E-EAAFFD3DFE93}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{71246B5F-9658-4563-8FB3-C9AD629BB5AC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{3044EDD6-7A83-492B-B5BF-DDD5DDC4181C}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{36EB4030-7840-451A-8178-E1BF4B08C5A5}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service

==================== Restore Points =========================

28-04-2019 22:55:16 Scheduled Checkpoint
03-05-2019 15:59:03 Windows Update
13-05-2019 13:03:24 Scheduled Checkpoint

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (05/15/2019 02:01:18 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Security Center failed to validate caller with error %1.

Error: (05/15/2019 02:01:08 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 15 144.106.254.169.in-addr.arpa. PTR eustace.local.

Error: (05/15/2019 02:01:08 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 169.254.106.144:5353 17 144.106.254.169.in-addr.arpa. PTR eustace-2.local.

Error: (05/15/2019 02:01:08 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 15 181.13.254.169.in-addr.arpa. PTR eustace.local.

Error: (05/15/2019 02:01:08 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 169.254.13.181:5353 17 181.13.254.169.in-addr.arpa. PTR eustace-2.local.

Error: (05/15/2019 12:41:25 PM) (Source: ESENT) (EventID: 413) (User: )
Description: TaskMan (1292,R,98) {856C0929-8756-4B9D-9646-8E7FBAA2B3CE}: Unable to create a new logfile because Hotspot Shield Premium 10.15.3 Crack + License Key Free 2021 database cannot write to the log drive. The drive may be read-only, out of disk space, misconfigured, or corrupted. Error -528.

Error: (05/15/2019 12:41:25 PM) (Source: ESENT) (EventID: 454) (User: )
Description: TaskMan (1292,R,98) {27ECD5A8-FE52-4AB2-86CA-0E8C673383A3}: Database recovery/restore failed with unexpected error -1811.

Error: (05/15/2019 11:35:38 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 15 7.0.168.192.in-addr.arpa. PTR eustace.local.


System errors:
=============
Error: (05/15/2019 02:01:25 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Razer Synapse Service service depends on the Razer Game Manager Service service which failed to start because of the following error:
The service did not respond to the start or control request in a timely fashion.

Error: (05/15/2019 02:01:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The RzActionSvc service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.

Error: (05/15/2019 02:01:25 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the RzActionSvc service to connect.

Error: (05/15/2019 02:01:24 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Razer Game Manager Service service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.

Error: (05/15/2019 02:01:24 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Razer Game Manager Service service to connect.

Error: (05/15/2019 02:00:49 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The APXACC service failed to start due to the following error:
A device attached to the system is not functioning.

Error: (05/15/2019 02:00:49 PM) (Source: APXACC) (EventID: 1003) (User: )
Description: The NDIS6 LWF initialization has failed. (0xC0000001)

Error: (05/15/2019 01:59:11 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Razer Synapse Service service.


CodeIntegrity:
===================================

Date: 2019-05-15 14:01:03.837
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Norton Security\Engine\22.17.1.50\WSCStub.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-05-15 14:01:03.813
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Norton Security\Engine\22.17.1.50\WSCStub.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-05-15 14:01:03.369
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Norton Security\Engine\22.17.1.50\WSCStub.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-05-15 14:01:03.337
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Norton Security\Engine\22.17.1.50\WSCStub.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-05-14 15:40:04.377
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Norton Security\Engine\22.17.1.50\WSCStub.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-05-14 15:40:04.183
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Norton Security\Engine\22.17.1.50\WSCStub.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-05-14 15:40:03.785
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Norton Security\Engine\22.17.1.50\WSCStub.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-05-14 15:40:03.660
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Norton Security\Engine\22.17.1.50\WSCStub.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

BIOS: Insyde F.26 02/21/2013
Motherboard: Hewlett-Packard 1849
Processor: AMD A4-4300M APU with Radeon(tm) HD Graphics
Percentage of memory in use: 70%
Total physical RAM: 3554.26 MB
Available physical RAM: 1031.57 MB
Total Virtual: 6498.26 MB
Available Virtual: 3682.55 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:567.72 GB) (Free:330.25 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (RECOVERY) (Fixed) (Total:25.37 GB) (Free:2.96 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive f: () (Removable) (Total:1.83 GB) (Free:1.83 GB) FAT

\\?\Volume{4807027d-70e4-4ed9-b189-6eac7a96e0a4}\ (WINRE) (Fixed) (Total:0.39 GB) (Free:0.15 GB) NTFS
\\?\Volume{c4bc7cea-39ce-4f4a-ab14-7934f0e01657}\ () (Fixed) (Total:0.96 GB) (Free:0.34 GB) NTFS
\\?\Volume{de27d039-3a8b-420a-8f61-0de10dba9383}\ () (Fixed) (Total:0.92 GB) (Free:0.34 GB) NTFS
\\?\Volume{228ede67-33cc-42ee-9814-03e998f454e7}\ () (Fixed) (Total:0.44 GB) (Free:0.41 GB) NTFS
\\?\Volume{873941c3-cd87-496d-8c74-8b333ed59eac}\ () (Fixed) (Total:0.25 GB) (Free:0.16 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 596.2 GB) (Disk ID: 9E4D4388)

Partition: GPT.

========================================================
Disk: 1 (Size: 1.8 GB) (Disk ID: CC5963D4)
Partition 1: (Not Active) - (Size=1.8 GB) - (Type=0E)

==================== End of Addition.txt ============================

Источник: https://corby1.rssing.com/chan-1706569/all_p350.html

Adobe Flash Player 31.00.108 Free Download

Adobe Flash Player 31.00.108 Free Download New and latest Version for Windows. It is full offline installer standalone setup of Adobe Flash Player 31.00.108 Free Download for compatible version of windows. Program was checked and installed manually before uploading by our staff, it is fully working version without any problems.

Adobe Flash Player 31.00.108 Overview

Adobe Flash Player is a client runtime that delivers high-quality content to your computer and it works with virtually all browsers out there. Flash Player remains a key element of the Internet and has now evolved to conquer every operating system, every browser, and every portable device, including mobile phones and tablets. You can also download DirectX 11.

There’s no interface, but users still get some tiny windows through which they can customize a set of options, including hardware acceleration for better performance and privacy preferences. With the Adobe Flash Player runtime installed, you will be able to access streaming content of the highest quality and smoothly play HD videos right inside your browser’s window. You also may like to download Visual C++ Runtime Installer.

Features of Adobe Flash Player 31.00.108

Below are some amazing features you can experience after installation of Adobe Flash Player 31.00.108 Free Download please keep in mind features may vary and totally depends if your system support them.

Support for mobile devices:

  • Extend the reach of your content to users wherever they are. Flash Player delivers expressive content to personal computers, smartphones, tablets, smartbooks, and netbooks.

Mobile-ready features for unprecedented creative control:

  • Take advantage of native device capabilities, including support for multitouch, gestures, mobile input models, and accelerometer input.

Hardware acceleration:

  • Deliver smooth high-definition (HD) quality video with minimal overhead across mobile devices and personal computers using H.264 video decoding and Stage Video.

Expanded options for high-quality media delivery:

  • Discover new ways to deliver rich media experiences with the Adobe Flash Media Server Family of products using HTTP Dynamic streaming; content protection; and improved support for live events, buffer control, and peer-assisted networking.

System Requirements for Adobe Flash Player 31.00.108

Before you install Adobe Flash Player 31.00.108 Free Download you need to know if your pc meets recommended or minimum system requirements:

  • 33GHz or faster x86-compatible processor, or Intel Atom 1.6GHz or faster processor for netbooks.
  • 512MB of RAM (1GB of RAM recommended for netbooks).
  • 128MB of graphics memory.
  • Internet Explorer 7.0 and above.
  • Mozilla Firefox 4.0 and above.
  • Google Chrome.
  • Safari 5.0 and above.
  • Opera 11 and above.

Adobe Flash Player 31.00.108 Technical Setup Details

  • Software Full Name: Adobe Flash Player 31.00.108
  • Setup File Name:com_ Adobe Flash Player 31.00.108.rar
  • Size: 20 MB.
  • Setup Type: Offline Installer / Full Standalone Setup
  • Compatibility Architecture: 64Bit (x64) 32Bit (x86)
  • Developers:Adobe

How to Install Adobe Flash Player 31.00.108

  • Extract the zip file using WinRAR or WinZip or by default Windows command.
  • Open Installer and accept the terms and then install program.

Adobe Flash Player 31.00.108 Free Download

Click on below button to start Adobe Flash Player 31.00.108 Free Download. This is complete offline installer and standalone setup for Adobe Flash Player 31.00.108. This would be working perfectly fine with compatible version of windows.

For Firefox

For Internet Explorer

For Opera

Источник: https://igetintopc.com/adobe-flash-player-31-00-108-free-download/
Adobe Flash Player 32.0.0.192 License Key  - Crack Key For U

Notice: Undefined variable: z_bot in /sites/kadinca.us/adobe/adobe-flash-player-3200192-license-key-crack-key-for-u.php on line 107

Notice: Undefined variable: z_empty in /sites/kadinca.us/adobe/adobe-flash-player-3200192-license-key-crack-key-for-u.php on line 107

1 Replies to “Adobe Flash Player 32.0.0.192 License Key - Crack Key For U”

Leave a Reply

Your email address will not be published. Required fields are marked *