Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Utrack.pw redirecting chrome and steam to various pages


  • This topic is locked This topic is locked
3 replies to this topic

#1 Mikey42087

Mikey42087

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:11:59 PM

Posted 23 January 2016 - 02:16 PM

Hello. I have been dealing with this extremely annoying Malware or adware or whatever it is for quite some time and it has finally gotten to the point where it is unbearable and I have run out of ideas. I have viewed several different topics on this same matter and it seems to be a pretty lengthy removal process so here I am asking for help. 

 

If you are unfamiliar with utrack.pw, basically what it does is constantly redirect you while you are browsing to various nonsense security and ad sites. I have not been able to find anything close to a solution online or through antivirus/malware removal programs. Normally, it varies in how often it occurs (anywhere from once or twice an hour to pretty much constantly). Right now, it is doing it constantly. 

 

Any and all help is very much appreciated. I will be home the majority of the day so I should be able to respond fairly quickly.

 

I followed the guidelines and downloaded FRST. Here are my logs:

 

 Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:18-01-2016

Ran by Mikey Colombo (administrator) on MIKEY (23-01-2016 12:05:53)
Running from C:\Users\Mikey Colombo\Downloads
Loaded Profiles: Mikey Colombo (Available Profiles: Mikey Colombo)
Platform: Windows 10 Home Single Language (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\ExpressVPN\bootstrap\AMD64\nssm.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Ralink Technology, Corp.) C:\Program Files (x86)\Common\RaRegistry64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Program Files (x86)\ExpressVPN\xvpnd\xvpnd.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Simnet Ltd.                                                 ) C:\Program Files (x86)\Simnet\Simple Sticky Notes\ssn.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(ExpressVPN) C:\Program Files (x86)\ExpressVPN\xvpn-ui\ExpressVpn.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Sony Computer Entertainment Inc.) C:\Program Files (x86)\Sony\Content Manager Assistant\CMA.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Sony Computer Entertainment Inc.) C:\Program Files (x86)\Sony\Content Manager Assistant\CMAWatcher.exe
(Dropbox, Inc.) C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.15731.0_x64__8wekyb3d8bbwe\Video.UI.exe
(DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Farbar) C:\Users\Mikey Colombo\Downloads\FRST64 (1).exe
 
 
==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech Inc.)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [8292120 2013-11-14] (Logitech Inc.)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2757424 2015-11-12] (NVIDIA Corporation)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [478984 2012-12-15] (Adobe Systems Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-12-09] (Apple Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60688 2015-11-20] (Apple Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7021880 2015-12-26] (AVAST Software)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-06-17] (Apple Inc.)
HKU\S-1-5-21-3635204450-558081261-1734609496-1002\...\Run: [Spotify Web Helper] => C:\Users\Mikey Colombo\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1104384 2013-07-07] (Spotify Ltd)
HKU\S-1-5-21-3635204450-558081261-1734609496-1002\...\Run: [DAEMON Tools Pro Agent] => C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe [3108480 2012-10-23] (DT Soft Ltd)
HKU\S-1-5-21-3635204450-558081261-1734609496-1002\...\Run: [Simple Sticky Notes] => C:\Program Files (x86)\Simnet\Simple Sticky Notes\ssn.exe [680456 2015-11-26] (Simnet Ltd.                                                 )
HKU\S-1-5-21-3635204450-558081261-1734609496-1002\...\Run: [Google Update] => C:\Users\Mikey Colombo\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-09-01] (Google Inc.)
HKU\S-1-5-21-3635204450-558081261-1734609496-1002\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22790776 2015-11-04] (Google)
HKU\S-1-5-21-3635204450-558081261-1734609496-1002\...\Run: [Dropbox Update] => C:\Users\Mikey Colombo\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-20] (Dropbox, Inc.)
HKU\S-1-5-21-3635204450-558081261-1734609496-1002\...\Run: [ExpressVPN4] => C:\Program Files (x86)\ExpressVPN\xvpn-ui\ExpressVpn.exe [808360 2015-11-12] (ExpressVPN)
HKU\S-1-5-21-3635204450-558081261-1734609496-1002\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [60688 2015-10-21] (Apple Inc.)
HKU\S-1-5-21-3635204450-558081261-1734609496-1002\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [61200 2015-10-21] (Apple Inc.)
HKU\S-1-5-21-3635204450-558081261-1734609496-1002\...\RunOnce: [Uninstall C:\Users\Mikey Colombo\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Mikey Colombo\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
HKU\S-1-5-21-3635204450-558081261-1734609496-1002\...\RunOnce: [Uninstall C:\Users\Mikey Colombo\AppData\Local\Microsoft\OneDrive\17.3.5892.0626] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Mikey Colombo\AppData\Local\Microsoft\OneDrive\17.3.5892.0626"
HKU\S-1-5-21-3635204450-558081261-1734609496-1002\...\RunOnce: [Uninstall C:\Users\Mikey Colombo\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Mikey Colombo\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64"
HKU\S-1-5-21-3635204450-558081261-1734609496-1002\...\RunOnce: [Uninstall C:\Users\Mikey Colombo\AppData\Local\Microsoft\OneDrive\17.3.5907.0716] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Mikey Colombo\AppData\Local\Microsoft\OneDrive\17.3.5907.0716"
HKU\S-1-5-21-3635204450-558081261-1734609496-1002\...\RunOnce: [Uninstall C:\Users\Mikey Colombo\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Mikey Colombo\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64"
HKU\S-1-5-21-3635204450-558081261-1734609496-1002\...\RunOnce: [Uninstall C:\Users\Mikey Colombo\AppData\Local\Microsoft\OneDrive\17.3.5930.0814] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Mikey Colombo\AppData\Local\Microsoft\OneDrive\17.3.5930.0814"
HKU\S-1-5-21-3635204450-558081261-1734609496-1002\...\RunOnce: [Uninstall C:\Users\Mikey Colombo\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Mikey Colombo\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64"
HKU\S-1-5-21-3635204450-558081261-1734609496-1002\...\RunOnce: [Uninstall C:\Users\Mikey Colombo\AppData\Local\Microsoft\OneDrive\17.3.5951.0827] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Mikey Colombo\AppData\Local\Microsoft\OneDrive\17.3.5951.0827"
HKU\S-1-5-21-3635204450-558081261-1734609496-1002\...\RunOnce: [Uninstall C:\Users\Mikey Colombo\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Mikey Colombo\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64"
HKU\S-1-5-21-3635204450-558081261-1734609496-1002\...\RunOnce: [Uninstall C:\Users\Mikey Colombo\AppData\Local\Microsoft\OneDrive\17.3.6201.1019] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Mikey Colombo\AppData\Local\Microsoft\OneDrive\17.3.6201.1019"
HKU\S-1-5-21-3635204450-558081261-1734609496-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\AvastSS.scr [43112 2015-12-26] (AVAST Software)
AppInit_DLLs: C:\PROGRA~2\NVIDIA~1\3DVISI~1\NVSTIN~1.DLL => No File
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-12-26] (AVAST Software)
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} =>  No File
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Content Manager Assistant for PlayStation®.lnk [2013-10-29]
ShortcutTarget: Content Manager Assistant for PlayStation®.lnk -> C:\Program Files (x86)\Sony\Content Manager Assistant\CMA.exe (Sony Computer Entertainment Inc.)
Startup: C:\Users\Mikey Colombo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-12-11]
ShortcutTarget: Dropbox.lnk -> C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 68.105.28.11 68.105.29.11 68.105.28.12
Tcpip\..\Interfaces\{9244140e-4f43-4d49-87eb-6bd1a26d8e1a}: [NameServer] 10.13.0.1
Tcpip\..\Interfaces\{9244140e-4f43-4d49-87eb-6bd1a26d8e1a}: [DhcpNameServer] 68.105.28.11 68.105.29.11 68.105.28.12
Tcpip\..\Interfaces\{f7eda322-ca74-4771-ace1-a007be9e74f7}: [DhcpNameServer] 10.13.0.1
 
Internet Explorer:
==================
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-12-26] (AVAST Software)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-01-27] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-12-26] (AVAST Software)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-27] (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  No File
 
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_286.dll [2016-01-21] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2012-12-15] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll [2016-01-21] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-10-14] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-27] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-27] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-11-24] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-11-24] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-10] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-10] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> D:\Program Files\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> D:\Program Files\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> D:\Program Files\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> D:\Program Files\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> D:\Program Files\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2012-12-15] (Adobe Systems)
FF Plugin HKU\S-1-5-21-3635204450-558081261-1734609496-1002: @tools.google.com/Google Update;version=3 -> C:\Users\Mikey Colombo\AppData\Local\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-12] (Google Inc.)
FF Plugin HKU\S-1-5-21-3635204450-558081261-1734609496-1002: @tools.google.com/Google Update;version=9 -> C:\Users\Mikey Colombo\AppData\Local\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-12] (Google Inc.)
FF Plugin HKU\S-1-5-21-3635204450-558081261-1734609496-1002: DISH Anywhere.com/DISH Anywhere Video Player -> C:\Users\Mikey Colombo\AppData\Roaming\DISH Anywhere\DISH Anywhere Video Player\npNMPCBrowserPlugin.dll [2015-02-09] (Nagravision)
FF Plugin HKU\S-1-5-21-3635204450-558081261-1734609496-1002: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2014-04-28] ()
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-12-26]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2015-12-26]
 
Chrome: 
=======
CHR HomePage: Default -> hxxp://google.com/
CHR StartupUrls: Default -> "hxxp://search.babylon.com/?affID=110796&tt=090812_bab_3212_3&babsrc=HP_ss&mntrId=1879f1330000000000002225d3026f17","hxxp://search.conduit.com/?ctid=CT3220468&SearchSource=48","hxxp://www.trovi.com/?gd=&ctid=CT3324774&octid=EB_ORIGINAL_CTID&ISID=MA50FD6FB-E09B-442E-996F-5080C17F5555&SearchSource=55&CUI=&UM=5&UP=SPE18DDBF2-086B-4ABB-A02D-342BF6096155&SSPV="
CHR Session Restore: Default -> is enabled.
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.111\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.111\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.111\pdf.dll => No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll => No File
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Profile: C:\Users\Mikey Colombo\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Mikey Colombo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-14]
CHR Extension: (Google Drive) - C:\Users\Mikey Colombo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\Mikey Colombo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-22]
CHR Extension: (Google Cast) - C:\Users\Mikey Colombo\AppData\Local\Google\Chrome\User Data\Default\Extensions\boadgeojelhgndaghljhdicfkmllpafd [2015-12-26]
CHR Extension: (Google Search) - C:\Users\Mikey Colombo\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-11]
CHR Extension: (Google Docs Offline) - C:\Users\Mikey Colombo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-22]
CHR Extension: (AdBlock) - C:\Users\Mikey Colombo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-01-16]
CHR Extension: (Avast Online Security) - C:\Users\Mikey Colombo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-11-11]
CHR Extension: (Don't Starve) - C:\Users\Mikey Colombo\AppData\Local\Google\Chrome\User Data\Default\Extensions\hiledapehlkhdehbhppgmekfalnlfajc [2013-06-27]
CHR Extension: (Chrome to Mobile) - C:\Users\Mikey Colombo\AppData\Local\Google\Chrome\User Data\Default\Extensions\idknbmbdnapjicclomlijcgfpikmndhd [2015-01-15]
CHR Extension: (SlingPlayer for DISH Anywhere) - C:\Users\Mikey Colombo\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcnpmlegoehfgohpkmjhpohjchokamnn [2015-04-02]
CHR Extension: (Google Mail Checker) - C:\Users\Mikey Colombo\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2013-03-29]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Mikey Colombo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-01]
CHR Extension: (Hover Zoom) - C:\Users\Mikey Colombo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nonjdcjchghhkdoolnlbekcfllmednbl [2015-11-11]
CHR Extension: (XFINITY® TV Go Stream Live TV Online) - C:\Users\Mikey Colombo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbefpbidnpmpfbkledpohpejdcgfnfif [2014-10-09]
CHR Extension: (Gmail) - C:\Users\Mikey Colombo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-29]
CHR HKU\S-1-5-21-3635204450-558081261-1734609496-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswwebrepchrome-sp.crx [2014-08-04]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-12-26]
 
==================== Services (Whitelisted) ========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [226440 2015-12-26] (AVAST Software)
S3 DAUpdaterSvc; D:\Program Files\Steam\steamapps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe [25832 2013-12-12] (BioWare)
R2 ExpressVpnService; C:\Program Files (x86)\ExpressVPN\bootstrap\AMD64\nssm.exe [331264 2015-04-28] () [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1156400 2015-11-12] (NVIDIA Corporation)
S3 ICCS; C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872688 2015-11-12] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [8133424 2015-11-12] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5915440 2015-11-12] (NVIDIA Corporation)
S3 Origin Client Service; D:\Program Files\Origin\OriginClientService.exe [2078216 2015-10-08] (Electronic Arts)
R2 RalinkRegistryWriter64; C:\Program Files (x86)\Common\RaRegistry64.exe [447488 2012-07-04] (Ralink Technology, Corp.) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
 
===================== Drivers (Whitelisted) ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-12-26] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [97648 2015-12-26] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-12-26] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-12-26] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1065208 2016-01-21] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [464256 2016-01-21] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [155304 2015-12-26] (AVAST Software)
S3 aswTap; C:\Windows\System32\drivers\aswTap.sys [44640 2013-10-23] (The OpenVPN Project)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [273784 2015-12-26] (AVAST Software)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283200 2013-05-30] (DT Soft Ltd)
S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2013-07-06] ()
R3 LGSHidFilt; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)
S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2016-01-09] (Malwarebytes)
R2 NPF; C:\WINDOWS\system32\drivers\npf.sys [35344 2014-08-23] (CACE Technologies, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19760 2015-11-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-10] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek                                            )
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2016-01-23 12:05 - 2016-01-23 12:06 - 00028256 _____ C:\Users\Mikey Colombo\Downloads\FRST.txt
2016-01-23 12:05 - 2016-01-23 12:05 - 02370560 _____ (Farbar) C:\Users\Mikey Colombo\Downloads\FRST64 (1).exe
2016-01-23 12:04 - 2016-01-23 12:05 - 00000000 ____D C:\FRST
2016-01-23 12:04 - 2016-01-23 12:04 - 02370560 _____ (Farbar) C:\Users\Mikey Colombo\Downloads\FRST64.exe
2016-01-23 11:50 - 2016-01-23 11:50 - 00016148 _____ C:\WINDOWS\system32\MIKEY_Mikey Colombo_HistoryPrediction.bin
2016-01-23 11:19 - 2016-01-23 11:19 - 00000000 ___HD C:\OneDriveTemp
2016-01-21 19:54 - 2016-01-21 19:54 - 00114117 _____ C:\Users\Mikey Colombo\Downloads\[kat.cr]sisters.2015.hc.hdrip.xvid.ac3.etrg.torrent
2016-01-16 18:09 - 2016-01-16 18:09 - 00067501 _____ C:\Users\Mikey Colombo\Downloads\[kat.cr]moonwalkers.2015.1080p.web.dl.dd5.1.h264.fgt.torrent
2016-01-16 18:08 - 2016-01-16 18:08 - 00115562 _____ C:\Users\Mikey Colombo\Downloads\[kat.cr]moonwalkers.2015.hdrip.xvid.ac3.evo.torrent
2016-01-16 18:06 - 2016-01-16 18:06 - 00122575 _____ C:\Users\Mikey Colombo\Downloads\[kat.cr]joy.2015.dvdscr.xvid.ac3.hq.hive.cm8.torrent
2016-01-16 18:06 - 2016-01-16 18:06 - 00020290 _____ C:\Users\Mikey Colombo\Downloads\[kat.cr]trainwreck.2015.unrated.720p.brrip.x264.aac.etrg.torrent
2016-01-12 16:20 - 2016-01-04 20:07 - 02463704 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-01-12 16:20 - 2016-01-04 20:07 - 00377592 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL
2016-01-12 16:20 - 2016-01-04 20:06 - 08022368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-01-12 16:20 - 2016-01-04 20:06 - 01991120 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVENCOD.DLL
2016-01-12 16:20 - 2016-01-04 20:06 - 01270104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-01-12 16:20 - 2016-01-04 20:06 - 01063504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2016-01-12 16:20 - 2016-01-04 20:06 - 00119800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP3DMOD.DLL
2016-01-12 16:20 - 2016-01-04 20:04 - 02824248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2016-01-12 16:20 - 2016-01-04 20:04 - 02641928 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2016-01-12 16:20 - 2016-01-04 20:04 - 01591848 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-01-12 16:20 - 2016-01-04 20:04 - 01150816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-01-12 16:20 - 2016-01-04 20:04 - 00862056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-01-12 16:20 - 2016-01-04 20:04 - 00787720 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2016-01-12 16:20 - 2016-01-04 20:04 - 00784136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-01-12 16:20 - 2016-01-04 20:04 - 00779928 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2016-01-12 16:20 - 2016-01-04 20:04 - 00772448 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-01-12 16:20 - 2016-01-04 20:04 - 00751992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL
2016-01-12 16:20 - 2016-01-04 20:04 - 00667856 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2016-01-12 16:20 - 2016-01-04 20:04 - 00250520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPG4DECD.DLL
2016-01-12 16:20 - 2016-01-04 20:04 - 00249464 _____ (Microsoft Corporation) C:\WINDOWS\system32\RESAMPLEDMO.DLL
2016-01-12 16:20 - 2016-01-04 20:04 - 00243248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-01-12 16:20 - 2016-01-04 20:04 - 00233992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mftranscode.dll
2016-01-12 16:20 - 2016-01-04 20:04 - 00115704 _____ (Microsoft Corporation) C:\WINDOWS\system32\VIDRESZR.DLL
2016-01-12 16:20 - 2016-01-04 20:04 - 00090912 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll
2016-01-12 16:20 - 2016-01-04 20:04 - 00083704 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfvdsp.dll
2016-01-12 16:20 - 2016-01-04 19:59 - 00781976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-01-12 16:20 - 2016-01-04 19:52 - 00441696 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-01-12 16:20 - 2016-01-04 19:50 - 01817064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-01-12 16:20 - 2016-01-04 19:50 - 01083072 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-01-12 16:20 - 2016-01-04 19:50 - 00723648 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-01-12 16:20 - 2016-01-04 19:50 - 00345080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSDECD.DLL
2016-01-12 16:20 - 2016-01-04 19:50 - 00251544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP43DECD.DLL
2016-01-12 16:20 - 2016-01-04 19:50 - 00205072 _____ (Microsoft Corporation) C:\WINDOWS\system32\COLORCNV.DLL
2016-01-12 16:20 - 2016-01-04 19:31 - 01365576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-01-12 16:20 - 2016-01-04 19:30 - 02459096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2016-01-12 16:20 - 2016-01-04 19:30 - 02162064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVENCOD.DLL
2016-01-12 16:20 - 2016-01-04 19:30 - 02152744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-01-12 16:20 - 2016-01-04 19:30 - 01106872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-01-12 16:20 - 2016-01-04 19:30 - 00882208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2016-01-12 16:20 - 2016-01-04 19:30 - 00368776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL
2016-01-12 16:20 - 2016-01-04 19:30 - 00232896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RESAMPLEDMO.DLL
2016-01-12 16:20 - 2016-01-04 19:30 - 00100712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP3DMOD.DLL
2016-01-12 16:20 - 2016-01-04 19:29 - 00208688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mftranscode.dll
2016-01-12 16:20 - 2016-01-04 19:28 - 02445128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2016-01-12 16:20 - 2016-01-04 19:28 - 00714808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2016-01-12 16:20 - 2016-01-04 19:28 - 00696192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL
2016-01-12 16:20 - 2016-01-04 19:28 - 00695752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2016-01-12 16:20 - 2016-01-04 19:28 - 00645144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-01-12 16:20 - 2016-01-04 19:28 - 00635312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2016-01-12 16:20 - 2016-01-04 19:28 - 00497896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2016-01-12 16:20 - 2016-01-04 19:28 - 00277400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MPG4DECD.DLL
2016-01-12 16:20 - 2016-01-04 19:28 - 00116728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2016-01-12 16:20 - 2016-01-04 19:28 - 00107952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VIDRESZR.DLL
2016-01-12 16:20 - 2016-01-04 19:28 - 00082096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devenum.dll
2016-01-12 16:20 - 2016-01-04 19:28 - 00072808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfvdsp.dll
2016-01-12 16:20 - 2016-01-04 19:21 - 00658528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2016-01-12 16:20 - 2016-01-04 19:18 - 21873152 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-01-12 16:20 - 2016-01-04 19:15 - 24592896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-01-12 16:20 - 2016-01-04 19:15 - 00931328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2016-01-12 16:20 - 2016-01-04 19:15 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2016-01-12 16:20 - 2016-01-04 19:15 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgrcli.dll
2016-01-12 16:20 - 2016-01-04 19:10 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfh264enc.dll
2016-01-12 16:20 - 2016-01-04 19:10 - 00305776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSDECD.DLL
2016-01-12 16:20 - 2016-01-04 19:10 - 00278424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP43DECD.DLL
2016-01-12 16:20 - 2016-01-04 19:10 - 00188032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\COLORCNV.DLL
2016-01-12 16:20 - 2016-01-04 19:09 - 01234944 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2016-01-12 16:20 - 2016-01-04 19:09 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-01-12 16:20 - 2016-01-04 19:02 - 01672192 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2016-01-12 16:20 - 2016-01-04 19:02 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2016-01-12 16:20 - 2016-01-04 19:02 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-01-12 16:20 - 2016-01-04 19:01 - 00305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2016-01-12 16:20 - 2016-01-04 19:00 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-01-12 16:20 - 2016-01-04 19:00 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-01-12 16:20 - 2016-01-04 18:59 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-01-12 16:20 - 2016-01-04 18:57 - 00712704 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2016-01-12 16:20 - 2016-01-04 18:57 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-01-12 16:20 - 2016-01-04 18:57 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-01-12 16:20 - 2016-01-04 18:56 - 07523840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-01-12 16:20 - 2016-01-04 18:51 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2016-01-12 16:20 - 2016-01-04 18:51 - 01009664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOD.DLL
2016-01-12 16:20 - 2016-01-04 18:51 - 00634368 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVXENCD.DLL
2016-01-12 16:20 - 2016-01-04 18:51 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFWMAAEC.DLL
2016-01-12 16:20 - 2016-01-04 18:51 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSENCD.DLL
2016-01-12 16:20 - 2016-01-04 18:44 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2016-01-12 16:20 - 2016-01-04 18:44 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usermgrcli.dll
2016-01-12 16:20 - 2016-01-04 18:43 - 19324928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-01-12 16:20 - 2016-01-04 18:42 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2016-01-12 16:20 - 2016-01-04 18:38 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfh264enc.dll
2016-01-12 16:20 - 2016-01-04 18:32 - 01541632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2016-01-12 16:20 - 2016-01-04 18:32 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2016-01-12 16:20 - 2016-01-04 18:31 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-01-12 16:20 - 2016-01-04 18:31 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2016-01-12 16:20 - 2016-01-04 18:30 - 18802176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-01-12 16:20 - 2016-01-04 18:29 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-01-12 16:20 - 2016-01-04 18:29 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-01-12 16:20 - 2016-01-04 18:26 - 00373760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-01-12 16:20 - 2016-01-04 18:24 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-01-12 16:20 - 2016-01-04 18:20 - 00890880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOD.DLL
2016-01-12 16:20 - 2016-01-04 18:19 - 01070080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2016-01-12 16:20 - 2016-01-04 18:19 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVXENCD.DLL
2016-01-12 16:20 - 2016-01-04 18:19 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSENCD.DLL
2016-01-12 16:20 - 2016-01-04 18:19 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFWMAAEC.DLL
2016-01-11 17:38 - 2016-01-11 17:38 - 00014208 _____ C:\Users\Mikey Colombo\Downloads\fantastic-four-2015-1080p.torrent
2016-01-11 17:38 - 2016-01-11 17:38 - 00009480 _____ C:\Users\Mikey Colombo\Downloads\5DCD101A75D4EA015656CACE713054BF8063F362.torrent
2016-01-11 17:36 - 2016-01-11 17:36 - 00015979 _____ C:\Users\Mikey Colombo\Downloads\drive-2011.torrent
2016-01-09 21:06 - 2016-01-09 21:06 - 00013284 _____ C:\Users\Mikey Colombo\Downloads\attack-the-block-2011.torrent
2016-01-08 18:40 - 2016-01-08 18:40 - 00018687 _____ C:\Users\Mikey Colombo\Downloads\troy-2004.torrent
2016-01-06 18:46 - 2016-01-06 18:46 - 00065785 _____ C:\Users\Mikey Colombo\Downloads\[kat.cr]oceans.eleven.2001.bluray.720p.800mb.ganool.torrent
2016-01-03 15:49 - 2016-01-03 15:49 - 00018656 _____ C:\Users\Mikey Colombo\Downloads\iron-man-2008-1080p (1).torrent
2016-01-03 15:44 - 2016-01-21 19:54 - 00000000 ____D C:\Users\Mikey Colombo\AppData\LocalLow\uTorrent
2016-01-03 15:44 - 2016-01-03 15:44 - 00002757 _____ C:\Users\Mikey Colombo\Desktop\µTorrent.lnk
2016-01-03 15:44 - 2016-01-03 15:44 - 00002757 _____ C:\Users\Mikey Colombo\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2016-01-03 15:43 - 2016-01-03 15:44 - 02026520 _____ (BitTorrent Inc.) C:\Users\Mikey Colombo\Downloads\uTorrent.exe
2016-01-02 11:57 - 2016-01-02 11:57 - 00001926 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vuze.lnk
2016-01-02 11:56 - 2016-01-02 11:57 - 00000000 ____D C:\Program Files (x86)\Vuze
2016-01-02 11:56 - 2016-01-02 11:56 - 00072496 _____ (Azureus Software, Inc.) C:\Users\Mikey Colombo\Downloads\VuzeBittorrentClientInstaller (1).exe
2016-01-02 11:55 - 2016-01-02 11:55 - 00072496 _____ (Azureus Software, Inc.) C:\Users\Mikey Colombo\Downloads\VuzeBittorrentClientInstaller.exe
2016-01-02 11:50 - 2016-01-02 11:50 - 00017780 _____ C:\Users\Mikey Colombo\Downloads\iron-man-2008-1080p.torrent
2015-12-31 19:52 - 2015-12-31 19:52 - 00466728 _____ (Microsoft Corporation) C:\WINDOWS\system32\coin99itp.dll
2015-12-26 10:53 - 2015-12-26 10:53 - 00386096 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2015-12-26 10:53 - 2015-12-26 10:53 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2015-12-26 10:28 - 2015-12-26 10:28 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-12-26 10:28 - 2015-12-26 10:28 - 00000000 ____D C:\Program Files (x86)\Adobe
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2016-01-23 12:04 - 2015-07-10 02:05 - 00000000 ____D C:\Windows
2016-01-23 11:54 - 2013-10-05 14:24 - 00000952 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3635204450-558081261-1734609496-1002UA.job
2016-01-23 11:35 - 2015-06-20 22:25 - 00000962 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-3635204450-558081261-1734609496-1002UA.job
2016-01-23 11:31 - 2013-03-29 17:51 - 00000918 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-23 11:29 - 2015-07-10 03:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-01-23 11:25 - 2015-08-05 21:25 - 00875126 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-01-23 11:25 - 2015-07-10 04:02 - 00000000 ____D C:\WINDOWS\INF
2016-01-23 11:20 - 2014-11-18 18:32 - 00000000 ___RD C:\Users\Mikey Colombo\Dropbox
2016-01-23 11:20 - 2014-11-18 18:09 - 00000000 ____D C:\Users\Mikey Colombo\AppData\Roaming\Dropbox
2016-01-23 11:19 - 2015-07-10 05:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-01-23 11:19 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-01-23 11:19 - 2014-07-29 14:00 - 00000000 __RHD C:\Users\Mikey Colombo\Google Drive
2016-01-23 11:19 - 2013-12-05 20:34 - 00000000 __RDO C:\Users\Mikey Colombo\SkyDrive
2016-01-23 11:19 - 2013-12-05 20:22 - 00000000 ____D C:\ProgramData\NVIDIA
2016-01-23 11:19 - 2013-03-31 10:10 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-01-23 11:19 - 2013-03-29 17:51 - 00000914 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-21 20:09 - 2015-07-10 02:05 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-01-21 20:08 - 2013-05-14 15:30 - 00000000 ____D C:\Users\Mikey Colombo\AppData\Roaming\uTorrent
2016-01-21 19:54 - 2015-07-10 04:04 - 00000000 ___HD C:\Program Files\WindowsApps
2016-01-21 19:54 - 2013-06-27 21:47 - 01065208 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2016-01-21 19:54 - 2013-06-27 21:47 - 00464256 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2016-01-17 12:02 - 2013-07-13 02:08 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-01-17 12:02 - 2013-07-13 02:08 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-01-16 18:15 - 2014-12-24 01:34 - 00003972 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2016-01-16 18:13 - 2013-08-21 08:43 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-01-16 18:09 - 2013-07-13 02:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-01-16 18:09 - 2013-03-30 22:55 - 143671360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-01-16 18:02 - 2013-05-02 10:43 - 00000000 ____D C:\Users\Mikey Colombo\AppData\Roaming\vlc
2016-01-12 19:35 - 2015-06-20 22:25 - 00000910 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-3635204450-558081261-1734609496-1002Core.job
2016-01-12 07:54 - 2013-10-05 14:24 - 00000900 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3635204450-558081261-1734609496-1002Core.job
2016-01-09 21:04 - 2013-06-27 21:47 - 00004280 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2016-01-09 21:03 - 2014-11-22 10:14 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-01-03 15:40 - 2014-10-28 07:35 - 00000000 ____D C:\Users\Mikey Colombo\AppData\Roaming\Azureus
2016-01-02 18:40 - 2015-07-10 04:06 - 00826872 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-01-02 18:40 - 2015-07-10 04:06 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-12-26 11:40 - 2015-07-10 04:04 - 00000000 ____D C:\WINDOWS\rescache
2015-12-26 10:54 - 2013-06-27 21:47 - 00097648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswmonflt.sys
2015-12-26 10:53 - 2014-07-31 07:13 - 00155304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2015-12-26 10:53 - 2014-07-31 07:13 - 00028656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2015-12-26 10:53 - 2013-06-27 21:47 - 00273784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2015-12-26 10:53 - 2013-06-27 21:47 - 00093528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2015-12-26 10:53 - 2013-06-27 21:47 - 00065224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2015-12-26 10:36 - 2015-06-09 19:52 - 00000000 ____D C:\Program Files\InterActual
2015-12-26 10:36 - 2014-01-16 18:53 - 00000000 ____D C:\Users\Mikey Colombo\AppData\LocalLow\Daedalic Entertainment GmbH
2015-12-26 10:36 - 2013-04-15 16:45 - 00000000 ____D C:\Users\Mikey Colombo\AppData\Local\SKIDROW
2015-12-26 10:28 - 2013-03-31 10:10 - 00000000 ____D C:\ProgramData\Adobe
2015-12-26 10:14 - 2015-07-10 05:20 - 00258448 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-12-25 17:46 - 2015-08-05 22:08 - 00000000 ___DC C:\WINDOWS\Panther
2015-12-25 17:43 - 2015-10-30 02:25 - 00000000 ___HD C:\$WINDOWS.~BT
 
==================== Files in the root of some directories =======
 
2013-08-13 16:16 - 2014-10-25 02:14 - 0000000 _____ () C:\Users\Mikey Colombo\AppData\Roaming\bitlord_log.txt
2015-04-02 23:53 - 2015-04-02 23:53 - 0001167 _____ () C:\Users\Mikey Colombo\AppData\Roaming\trace_FilterInstaller.1.txt
2015-04-02 23:53 - 2015-07-07 20:14 - 0000905 _____ () C:\Users\Mikey Colombo\AppData\Roaming\trace_FilterInstaller.txt
2015-04-02 23:53 - 2015-07-07 20:14 - 0000000 _____ () C:\Users\Mikey Colombo\AppData\Roaming\trace_FilterInstaller.txt-CRT.txt
2013-06-05 21:33 - 2013-06-05 21:33 - 0000000 ___SH () C:\Users\Mikey Colombo\AppData\Local\LumaEmu
2015-06-30 15:50 - 2015-06-30 15:50 - 0000218 _____ () C:\Users\Mikey Colombo\AppData\Local\recently-used.xbel
2013-04-03 10:04 - 2013-04-03 10:06 - 0007597 _____ () C:\Users\Mikey Colombo\AppData\Local\resmon.resmoncfg
 
Some files in TEMP:
====================
C:\Users\Mikey Colombo\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpc05avn.dll
C:\Users\Mikey Colombo\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Mikey Colombo\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Mikey Colombo\AppData\Local\Temp\nvStInst.exe
 
 
==================== Bamital & volsnap =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2016-01-21 20:00
 
==================== End of FRST.txt ============================
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version:18-01-2016
Ran by Mikey Colombo (2016-01-23 12:06:20)
Running from C:\Users\Mikey Colombo\Downloads
Windows 10 Home Single Language (X64) (2015-08-06 19:28:19)
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-3635204450-558081261-1734609496-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3635204450-558081261-1734609496-503 - Limited - Disabled)
Guest (S-1-5-21-3635204450-558081261-1734609496-501 - Limited - Disabled)
Mikey Colombo (S-1-5-21-3635204450-558081261-1734609496-1002 - Administrator - Enabled) => C:\Users\Mikey Colombo
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Out of date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Out of date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
µTorrent (HKU\S-1-5-21-3635204450-558081261-1734609496-1002\...\uTorrent) (Version: 3.4.5.41372 - BitTorrent Inc.)
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.009.20069 - Adobe Systems Incorporated)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.286 - Adobe Systems Incorporated)
Age of Empires® III: Complete Collection (HKLM-x32\...\Steam App 105450) (Version:  - Ensemble Studios)
Age of Wonders III (HKLM-x32\...\Steam App 226840) (Version:  - Triumph Studios)
Apple Application Support (32-bit) (HKLM-x32\...\{C5815ACF-FD34-4553-8A22-C7411B7E662B}) (Version: 4.1.1 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{CBF12D2F-CF64-4CB7-858B-2C1F21068E5F}) (Version: 4.1.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
ArcGIS 10.3.1 for Desktop (HKLM-x32\...\ArcGIS 10.3.1 for Desktop) (Version: 10.3.4959 - Environmental Systems Research Institute, Inc.)
ArcGIS 10.3.1 for Desktop (x32 Version: 10.3.4959 - Environmental Systems Research Institute, Inc.) Hidden
Avast Free Antivirus (HKLM-x32\...\avast) (Version: 11.1.2245 - AVAST Software)
Avernum: Escape From the Pit (HKLM-x32\...\Steam App 208400) (Version:  - Spiderweb Software)
Baldur's Gate II: Enhanced Edition (HKLM-x32\...\Steam App 257350) (Version:  - Beamdog)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Belkin N750 Dual Band Wireless USB Adapter (HKLM-x32\...\{28DA7D8B-F9A4-4F18-8AA0-551B1E084D0D}) (Version: 1.5.11.0 - Belkin International, Inc.)
Blackguards (HKLM-x32\...\Steam App 249650) (Version:  - Daedalic Entertainment)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Castlevania: Lords of Shadow - Ultimate Edition (HKLM-x32\...\Steam App 234080) (Version:  - MercurySteam - Climax Studios)
ChromecastApp (HKU\S-1-5-21-3635204450-558081261-1734609496-1002\...\{079ede36-133d-44b0-8053-c7c1fa8d2e0d}_is1) (Version: 1.5.1693.0 - Google Inc.)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Content Manager Assistant for PlayStation® (HKLM-x32\...\{0DCD0704-E2AB-4e97-96A7-90F146BD8243}) (Version: 2.50.6733.38 - Sony Computer Entertainment Inc.)
DAEMON Tools Pro (HKLM-x32\...\DAEMON Tools Pro) (Version: 5.2.0.0348 - DT Soft Ltd)
Darksiders II (HKLM-x32\...\Steam App 50650) (Version:  - Vigil Games)
DefianceRuntimes (HKLM-x32\...\{79B1FF35-9EA8-48ED-98D6-19ABE004BE89}) (Version: 1.0.2 - Trion Worlds, Inc.)
Deus Ex: Human Revolution - Director's Cut (HKLM-x32\...\Steam App 238010) (Version:  - Eidos Montreal)
DISH Anywhere Video Player (HKLM-x32\...\{D180F2F3-9CD4-4867-A221-D81C725D8045}) (Version: 2.24.2 - DISH Anywhere)
DISH Anywhere Video Player Installer (x32 Version: 0.0.0.188 - Sling Media) Hidden
DishAnywhereDesktop (HKLM-x32\...\{46b8f45d-687e-4788-89e9-5000b7357db5}) (Version: 0.0.0.188 - Sling Media)
Divinity Original Sin (HKLM-x32\...\Steam App 230230) (Version:  - Larian Studios)
Dragon Age: Origins - Ultimate Edition (HKLM-x32\...\Steam App 47810) (Version:  - BioWare)
Dragon Age™: Inquisition (HKLM-x32\...\{DC4C36DC-4E5B-4262-B0C7-157DF534B969}) (Version: 1.0.0.12 - Electronic Arts)
Dropbox (HKU\S-1-5-21-3635204450-558081261-1734609496-1002\...\Dropbox) (Version: 3.12.5 - Dropbox, Inc.)
E.Y.E: Divine Cybermancy (HKLM-x32\...\Steam App 91700) (Version:  - Streum On Studio)
Easy Tune 6 B12.1018.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
Equalify v2.2.1 (Stable) (HKLM-x32\...\{FF890228-5396-4BB0-B500-6E2843D7DD63}) (Version: 2.2.1.0 - Equalify)
eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
ExpressVPN (HKLM-x32\...\{0cfd8bee-cc26-453b-a791-7db7697f30c8}) (Version: 4.1.1.380 - ExpressVPN)
ExpressVPN (x32 Version: 4.1.1.380 - ExpressVPN) Hidden
ExpressVPN Compatibility Checks (x32 Version: 1.0.0.0 - ExpressVPN) Hidden
Fable III (HKLM-x32\...\Steam App 105400) (Version:  - Lionhead Studios)
Fallen Enchantress: Legendary Heroes (HKLM-x32\...\Steam App 228260) (Version:  - Stardock Entertainment)
Fallout 3 - Game of the Year Edition (HKLM-x32\...\Steam App 22370) (Version:  - Bethesda Game Studios)
Fallout: New Vegas (HKLM-x32\...\Steam App 22380) (Version:  - Obsidian Entertainment)
FTL: Faster Than Light (HKLM-x32\...\Steam App 212680) (Version:  - Subset Games)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.111 - Google Inc.)
Google Drive (HKLM-x32\...\{1C3D2F92-D25E-4D98-B810-3F3B0857BF26}) (Version: 1.26.0707.2863 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
Half-Life 2 (HKLM-x32\...\Steam App 220) (Version:  - Valve)
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
iCloud (HKLM\...\{4B48E22A-2FB0-4EFA-B99E-954B1E50CD69}) (Version: 5.1.0.34 - Apple Inc.)
iTunes (HKLM\...\{0D44E3A4-6C3D-45D7-B443-079509E5BE5D}) (Version: 12.3.2.35 - Apple Inc.)
Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
Last Dream (HKLM-x32\...\Steam App 266230) (Version:  - White Giant RPG Studios)
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version:  - Valve)
Legend of Grimrock II (HKLM-x32\...\1207666193_is1) (Version: 2.0.0.1 - GOG.com)
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Logitech Gaming Software 8.51 (HKLM\...\Logitech Gaming Software) (Version: 8.51.5 - Logitech Inc.)
Lords Of The Fallen (HKLM-x32\...\Steam App 265300) (Version:  - CI Games)
Lords of Xulima (HKLM-x32\...\TG9yZHNvZlh1bGltYQ==_is1) (Version: 1 - )
Malwarebytes Anti-Malware version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
METAL GEAR RISING: REVENGEANCE (HKLM-x32\...\Steam App 235460) (Version:  - PlatinumGames)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D}) (Version: 3.5.95.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.5.166.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Might & Magic X Legacy (HKLM-x32\...\Uplay Install 401) (Version:  - Ubisoft)
NVIDIA 3D Vision Controller Driver 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 359.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 359.06 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.7.4.10 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.7.4.10 - NVIDIA Corporation)
NVIDIA Graphics Driver 359.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 359.06 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
NVIDIA Miracast Virtual Audio 353.62 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 353.62 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Octave 4.0.0 (HKLM-x32\...\Octave-4.0.0) (Version: 4.0.0 - GNU Octave)
Origin (HKLM-x32\...\Origin) (Version: 9.3.1.4482 - Electronic Arts, Inc.)
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2-r5350) (Version:  - )
Peggle (HKLM-x32\...\{715AD72D-887A-459E-988B-D4F3E87FA24B}) (Version: 1.04.0.0 - PopCap Games)
Pillars of Eternity (HKLM-x32\...\Steam App 291650) (Version:  - Obsidian Entertainment)
QuickTime 7 (HKLM-x32\...\{627FFC10-CE0A-497F-BA2B-208CAC638010}) (Version: 7.77.80.95 - Apple Inc.)
Razer Surround Driver Installer version 1.5 (HKLM-x32\...\{11B11FA5-41ED-43C1-AB4B-905DDEDC72A2}_is1) (Version: 1.5 - inXile Entertainment)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.2.612.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 4.1.0240 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.7.4.10 - NVIDIA Corporation) Hidden
Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version:  - 2K Games, Inc.)
Sid Meier's Civilization: Beyond Earth (HKLM-x32\...\Steam App 65980) (Version:  - Firaxis Games)
SimCity 2000 Special Edition (HKLM-x32\...\{59D2C751-F7BE-4E9F-9C8C-1F16013802C7}) (Version: 2.0.0.1 - Electronic Arts)
Simple Sticky Notes 3.2.2 (HKLM-x32\...\Simple Sticky Notes_is1) (Version:  - Simnet Ltd.)
SlimDX Runtime .NET 4.0 x86 (January 2012) (HKLM-x32\...\{7EBD0E43-6AC0-4CA8-9990-00E50069AD29}) (Version: 2.0.13.43 - SlimDX Group)
Spotify (HKU\S-1-5-21-3635204450-558081261-1734609496-1002\...\Spotify) (Version: 0.9.1.57.ge7405149 - Spotify AB)
StarCraft II (HKLM-x32\...\StarCraft II) (Version:  - Blizzard Entertainment)
State of Decay (HKLM-x32\...\Steam App 241540) (Version:  - Undead Labs)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
System Shock 2 (HKLM-x32\...\Steam App 238210) (Version:  - Irrational Games)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.11 - TeamSpeak Systems GmbH)
The Binding of Isaac (HKLM-x32\...\The Binding of Isaac) (Version:  - )
The Book of Legends (HKLM-x32\...\Steam App 277470) (Version:  - Aldorlea Games)
The Elder Scrolls Online (HKLM-x32\...\The Elder Scrolls Online) (Version: 1.0.0.0 - Zenimax Online Studios)
Titanfall™ (HKLM-x32\...\{347EE0C3-0690-48F6-A231-53853C2A80D6}) (Version: 1.0.10.1 - Electronic Arts)
Total War: SHOGUN 2 (HKLM-x32\...\Steam App 34330) (Version:  - The Creative Assembly)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Undertale (HKLM-x32\...\Steam App 391540) (Version:  - tobyfox)
Uplay (HKLM-x32\...\Uplay) (Version: 4.3 - Ubisoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Vuze (HKLM-x32\...\8461-7759-5462-8226) (Version: 5.7.0.0 - Azureus Software, Inc.)
Wasteland 2 (HKLM-x32\...\Steam App 240760) (Version:  - inXile Entertainment)
WinRAR 5.00 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)
Wizardry 8 (HKLM-x32\...\Steam App 245450) (Version:  - )
XCOM: Enemy Unknown (HKLM-x32\...\Steam App 200510) (Version:  - Firaxis Games)
 
==================== Custom CLSID (Whitelisted): ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
CustomCLSID: HKU\S-1-5-21-3635204450-558081261-1734609496-1002_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3635204450-558081261-1734609496-1002_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Mikey Colombo\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-3635204450-558081261-1734609496-1002_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Mikey Colombo\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-3635204450-558081261-1734609496-1002_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\Mikey Colombo\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-3635204450-558081261-1734609496-1002_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Mikey Colombo\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-3635204450-558081261-1734609496-1002_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Mikey Colombo\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3635204450-558081261-1734609496-1002_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\Mikey Colombo\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-3635204450-558081261-1734609496-1002_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Mikey Colombo\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-3635204450-558081261-1734609496-1002_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Mikey Colombo\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-3635204450-558081261-1734609496-1002_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\Mikey Colombo\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3635204450-558081261-1734609496-1002_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Mikey Colombo\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-3635204450-558081261-1734609496-1002_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\Mikey Colombo\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-3635204450-558081261-1734609496-1002_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Mikey Colombo\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3635204450-558081261-1734609496-1002_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3635204450-558081261-1734609496-1002_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3635204450-558081261-1734609496-1002_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3635204450-558081261-1734609496-1002_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3635204450-558081261-1734609496-1002_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3635204450-558081261-1734609496-1002_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3635204450-558081261-1734609496-1002_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3635204450-558081261-1734609496-1002_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3635204450-558081261-1734609496-1002_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3635204450-558081261-1734609496-1002_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3635204450-558081261-1734609496-1002_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\Mikey Colombo\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll => No File
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {11DDD0BE-3FE6-4C5D-AF1D-8A6875831932} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {12DA86ED-2A15-4C7C-B1A0-DC50FEB80DF5} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {1AC0777D-57CC-4063-89DB-EEAA7CC5F550} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
Task: {1ED7F45B-A96E-497B-8375-21F302F309E5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {2C844081-A4FD-468F-B19C-4EC8D8B4C987} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-27] (Apple Inc.)
Task: {2F40385E-FF96-4128-8D12-E5CA9A3D8BFD} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3635204450-558081261-1734609496-1002UA => C:\Users\Mikey Colombo\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {505EDF63-D27C-4A8A-B33A-3B3C0FBBDAEA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {511BA732-9053-4A27-9498-E4BE7BF92865} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-12-26] (AVAST Software)
Task: {5331F640-625B-46D3-905A-67BC881D5785} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2015-07-08] (Microsoft Corporation)
Task: {57F838E6-4D72-4A06-BB2F-69C6E37ABB75} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {6878B6B9-2F2F-487A-8E29-4B5A4BC8F25B} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2015-07-08] (Microsoft Corporation)
Task: {6D0D8A0C-2A87-4327-B4CD-D1AFAD605BFC} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {6F001D01-BFCE-48E3-811F-1B37F1324392} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {7A711984-4231-452C-842A-E8C0D44C8DA8} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2015-07-08] (Microsoft Corporation)
Task: {7D02C453-847F-41C0-A533-8FF500AF4B1A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-21] (Adobe Systems Incorporated)
Task: {87EF857E-9E22-4AB8-B862-7B89B8B8A21A} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-3635204450-558081261-1734609496-1002UA => C:\Users\Mikey Colombo\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-20] (Dropbox, Inc.)
Task: {98148078-8E95-4A67-AFAA-4DF4692CC924} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {9C3849C1-CB07-43DF-9172-0391C6A4932C} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2015-07-08] (Microsoft)
Task: {A20B2CAE-96B0-4388-B8C9-A8AC43E1FEAA} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {A3918221-2883-45FE-8225-9220411AA34A} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {B6437B55-2E25-45A0-90AC-E52A65110294} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3635204450-558081261-1734609496-1002Core => C:\Users\Mikey Colombo\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {C10CE689-95E1-4DC8-ADF7-43E90B4B8CE5} - System32\Tasks\{7F9FFD10-C2D3-49AA-97C2-B7C3A29BE416} => pcalua.exe -a "C:\Users\Mikey Colombo\AppData\Local\GreatArcadeHits\GAHUninstaller.exe"
Task: {CA724024-9744-40D3-97DE-FC1A0AEAFF4A} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-3635204450-558081261-1734609496-1002Core => C:\Users\Mikey Colombo\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-20] (Dropbox, Inc.)
Task: {CD6BBA28-A6ED-4740-BAD8-7E619E2443B4} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {E2B37E15-A2AF-48A0-87C4-5216CC34AEC7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated)
Task: {E316FBCF-C112-48BF-B1F7-A75648427C78} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {E41F1E29-0A2A-4A3F-BC11-AD93B89010E8} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2015-07-08] (Microsoft Corporation)
Task: {E8126909-3D0D-4F23-86C6-448FFB8C8B9A} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-01-16] (Microsoft Corporation)
Task: {F71D17EF-774E-4286-83E8-5FEFB4D49AB0} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {F8D67F2E-D4FC-463E-A5B8-670C54CCDFDF} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-3635204450-558081261-1734609496-1002Core.job => C:\Users\Mikey Colombo\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-3635204450-558081261-1734609496-1002UA.job => C:\Users\Mikey Colombo\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3635204450-558081261-1734609496-1002Core.job => C:\Users\Mikey Colombo\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3635204450-558081261-1734609496-1002UA.job => C:\Users\Mikey Colombo\AppData\Local\Google\Update\GoogleUpdate.exe
 
==================== Shortcuts =============================
 
(The entries could be listed to be restored or removed.)
 
==================== Loaded Modules (Whitelisted) ==============
 
2015-08-05 22:05 - 2015-08-05 22:05 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2013-12-05 20:22 - 2015-11-24 12:32 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-08-20 12:41 - 2015-08-11 02:14 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-01-20 22:35 - 2015-01-20 22:35 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-10-13 05:45 - 2015-10-13 05:45 - 01328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-04-28 19:18 - 2015-04-28 19:18 - 00331264 _____ () C:\Program Files (x86)\ExpressVPN\bootstrap\AMD64\nssm.exe
2015-11-12 00:39 - 2015-11-12 00:39 - 09118120 _____ () C:\Program Files (x86)\ExpressVPN\xvpnd\xvpnd.exe
2015-10-03 12:50 - 2015-09-16 23:48 - 02494712 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-03 12:50 - 2015-09-16 23:48 - 02494712 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-10-03 12:49 - 2015-09-16 22:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-07-10 03:59 - 2015-07-10 03:59 - 00143360 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\XamlTileRendering.dll
2015-12-10 21:02 - 2015-11-24 21:20 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-12-10 21:02 - 2015-11-24 21:17 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-12-10 21:02 - 2015-11-24 21:17 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-10-03 12:50 - 2015-09-16 22:43 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 04:00 - 2015-07-10 06:15 - 00210432 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
2015-12-26 10:53 - 2015-12-26 10:53 - 00103888 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-12-26 10:53 - 2015-12-26 10:53 - 00125512 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-01-21 19:49 - 2016-01-21 19:49 - 02818048 _____ () C:\Program Files\AVAST Software\Avast\defs\16012200\algo.dll
2015-12-26 10:53 - 2015-12-26 10:53 - 00469008 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-01-23 11:19 - 2016-01-23 11:19 - 02818048 _____ () C:\Program Files\AVAST Software\Avast\defs\16012300\algo.dll
2015-04-11 11:29 - 2015-11-12 11:39 - 00012080 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-01-23 11:19 - 2016-01-23 11:19 - 00098816 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\win32api.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00110080 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\pywintypes27.dll
2016-01-23 11:19 - 2016-01-23 11:19 - 00364544 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\pythoncom27.dll
2016-01-23 11:19 - 2016-01-23 11:19 - 00046080 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\_socket.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 01208320 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\_ssl.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00320512 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\win32com.shell.shell.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00776704 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\_hashlib.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 01176576 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\wx._core_.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00806400 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\wx._gdi_.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00816128 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\wx._windows_.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 01067008 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\wx._controls_.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00733184 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\wx._misc_.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00682496 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\pysqlite2._sqlite.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00088064 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\_ctypes.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00119808 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\win32file.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00108544 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\win32security.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00007168 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\hashobjs_ext.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00017920 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\thumbnails_ext.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00079360 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\usb_ext.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00167936 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\win32gui.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00018432 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\win32event.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00128512 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\_elementtree.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00127488 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\pyexpat.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00013824 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\common.time34.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00036864 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\_psutil_windows.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00038912 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\win32inet.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00525640 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\windows._lib_cacheinvalidation.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00011264 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\win32crypt.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00077312 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\wx._html2.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00027136 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\_multiprocessing.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00020480 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\_yappi.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00035840 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\win32process.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00686080 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\unicodedata.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00123392 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\wx._wizard.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00024064 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\win32pipe.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00010240 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\select.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00025600 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\win32pdh.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00017408 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\win32profile.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00022528 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\win32ts.pyd
2016-01-23 11:19 - 2016-01-23 11:19 - 00078848 _____ () C:\Users\Mikey Colombo\AppData\Local\Temp\_MEI43922\wx._animate.pyd
2014-01-20 11:17 - 2014-01-20 11:17 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2015-10-13 05:45 - 2015-10-13 05:45 - 00237328 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxslt.dll
2015-10-13 05:46 - 2015-10-13 05:46 - 01040144 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2015-12-26 10:53 - 2015-12-26 10:53 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-12-11 20:54 - 2015-10-30 17:59 - 00034768 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\_multiprocessing.pyd
2015-12-11 20:54 - 2015-10-30 18:00 - 00019408 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\faulthandler.pyd
2015-12-11 20:54 - 2015-12-08 14:36 - 00022848 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\Crypto.Random.OSRNG.winrandom.pyd
2015-12-11 20:54 - 2015-12-08 14:36 - 00023352 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\Crypto.Util._counter.pyd
2015-12-11 20:54 - 2015-12-08 14:36 - 00042296 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\Crypto.Cipher._AES.pyd
2015-12-11 20:54 - 2015-10-30 17:59 - 00116688 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\pywintypes27.dll
2015-12-11 20:54 - 2015-10-30 17:59 - 00093640 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\_ctypes.pyd
2015-12-11 20:54 - 2015-10-30 17:59 - 00018376 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\select.pyd
2015-12-11 20:54 - 2015-12-08 14:36 - 00019760 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\tornado.speedups.pyd
2015-12-11 20:54 - 2015-10-30 18:00 - 00105928 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\win32api.pyd
2015-12-11 20:54 - 2015-10-30 17:59 - 00392144 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\pythoncom27.dll
2015-12-11 20:54 - 2015-12-08 14:36 - 00381752 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\win32com.shell.shell.pyd
2015-12-11 20:54 - 2015-10-30 17:59 - 00692688 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\unicodedata.pyd
2015-12-11 20:54 - 2015-12-08 14:36 - 00020816 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._constant_time.pyd
2015-12-11 20:54 - 2015-10-30 18:00 - 00109520 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\_cffi_backend.pyd
2015-12-11 20:54 - 2015-12-08 14:36 - 01737032 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._openssl.pyd
2015-12-11 20:54 - 2015-12-08 14:36 - 00020808 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._padding.pyd
2015-12-11 20:54 - 2015-12-08 14:36 - 00020800 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\_cffi_python_x66cf7a7cx17a72769.pyd
2015-12-11 20:54 - 2015-12-08 14:36 - 00021840 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd
2015-12-11 20:54 - 2015-12-08 14:36 - 00038696 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\fastpath.pyd
2015-12-11 20:54 - 2015-10-30 18:00 - 00024528 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\win32event.pyd
2015-12-11 20:54 - 2015-10-30 18:00 - 00020936 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\mmapfile.pyd
2015-12-11 20:54 - 2015-10-30 18:00 - 00114640 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\win32security.pyd
2015-12-11 20:54 - 2015-12-08 14:36 - 00021320 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\_cffi_pywin_kernel32_xde9e4433x360333f0.pyd
2015-12-11 20:54 - 2015-10-30 18:00 - 00124880 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\win32file.pyd
2015-12-11 20:54 - 2015-10-30 18:00 - 00030160 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\win32pipe.pyd
2015-12-11 20:54 - 2015-10-30 18:00 - 00043472 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\win32process.pyd
2015-12-11 20:54 - 2015-10-30 18:00 - 00175560 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\win32gui.pyd
2015-12-11 20:54 - 2015-10-30 18:00 - 00028616 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\win32ts.pyd
2015-12-11 20:54 - 2015-10-30 18:00 - 00024016 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\win32clipboard.pyd
2015-12-11 20:54 - 2015-10-30 18:00 - 00048592 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\win32service.pyd
2015-12-11 20:54 - 2015-12-08 14:36 - 00024392 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\librsyncffi.compiled._librsyncffi.pyd
2015-12-11 20:54 - 2015-10-30 18:00 - 00036296 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\librsync.dll
2015-12-11 20:54 - 2015-10-30 18:00 - 00024016 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\win32profile.pyd
2015-12-11 20:54 - 2015-12-08 14:36 - 00117056 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\breakpad.client.windows.handler.pyd
2015-12-11 20:54 - 2015-12-08 14:36 - 00031568 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\enterprise_data.compiled._enterprise_data.pyd
2015-10-02 12:59 - 2015-11-04 17:04 - 00293392 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\EnterpriseDataAdapter.dll
2015-12-11 20:54 - 2015-12-08 14:36 - 00023376 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\winscreenshot.compiled._CaptureScreenshot.pyd
2015-12-11 20:54 - 2015-10-30 17:59 - 00134608 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\_elementtree.pyd
2015-12-11 20:54 - 2015-10-30 17:59 - 00134088 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\pyexpat.pyd
2015-12-11 20:54 - 2015-10-30 18:00 - 00240584 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\jpegtran.pyd
2015-12-11 20:54 - 2015-12-08 14:36 - 00020280 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\cpuid.compiled._cpuid.pyd
2015-12-11 20:54 - 2015-12-08 14:36 - 00052024 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\psutil._psutil_windows.pyd
2015-12-11 20:54 - 2015-12-08 14:36 - 00021304 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\Crypto.Util.strxor.pyd
2015-12-11 20:54 - 2015-10-30 18:00 - 00350152 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\winxpgui.pyd
2015-12-11 20:54 - 2015-12-08 14:36 - 00084792 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\dropbox_sqlite_ext.DLL
2015-12-11 20:54 - 2015-12-08 14:36 - 01826608 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\PyQt5.QtCore.pyd
2015-12-11 20:54 - 2015-10-30 18:00 - 00083912 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\sip.pyd
2015-12-11 20:54 - 2015-12-08 14:36 - 03891504 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\PyQt5.QtWidgets.pyd
2015-12-11 20:54 - 2015-12-08 14:36 - 01950000 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\PyQt5.QtGui.pyd
2015-12-11 20:54 - 2015-12-08 14:36 - 00519984 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\PyQt5.QtNetwork.pyd
2015-12-11 20:54 - 2015-12-08 14:36 - 00133936 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKit.pyd
2015-12-11 20:54 - 2015-12-08 14:36 - 00225080 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKitWidgets.pyd
2015-12-11 20:54 - 2015-12-08 14:36 - 00207672 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\PyQt5.QtPrintSupport.pyd
2015-12-11 20:54 - 2015-12-08 14:36 - 00024904 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd
2015-12-11 20:54 - 2015-12-08 14:36 - 00486704 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\PyQt5.QtQuick.pyd
2015-12-11 20:54 - 2015-12-08 14:36 - 00357680 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\PyQt5.QtQml.pyd
2015-03-04 14:45 - 2015-10-30 18:01 - 00019920 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\QtQuick.2\qtquick2plugin.dll
2015-03-04 14:45 - 2015-10-30 18:00 - 00786904 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-07-31 06:42 - 2015-10-30 18:00 - 00063448 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\QtQuick\Layouts\qquicklayoutsplugin.dll
2015-03-04 14:45 - 2015-10-30 18:00 - 00019408 _____ () C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\QtQuick\Window.2\windowplugin.dll
2013-05-30 15:30 - 2013-05-30 15:30 - 00107520 _____ () C:\Program Files (x86)\DAEMON Tools Pro\BRD.dll
2016-01-16 18:32 - 2016-01-12 09:35 - 01590088 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.111\libglesv2.dll
2016-01-16 18:32 - 2016-01-12 09:35 - 00087880 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.111\libegl.dll
2016-01-23 12:00 - 2016-01-19 14:06 - 16792256 _____ () C:\Users\Mikey Colombo\AppData\Local\Google\Chrome\User Data\PepperFlash\20.0.0.286\pepflashplayer.dll
 
==================== Alternate Data Streams (Whitelisted) =========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
 
==================== Safe Mode (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
 
==================== EXE Association (Whitelisted) ===============
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 
IE trusted site: HKU\S-1-5-21-3635204450-558081261-1734609496-1002\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-3635204450-558081261-1734609496-1002\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-3635204450-558081261-1734609496-1002\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-3635204450-558081261-1734609496-1002\...\sony.com -> sony.com
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2013-08-22 06:25 - 2015-07-14 18:43 - 00002291 ____A C:\WINDOWS\system32\Drivers\etc\hosts
 
127.0.0.1 0.0.0.0.0
127.0.0.1 0.0.0.0.0
127.0.0.1 0.0.0.0.0
127.0.0.1 0.0.0.0.0
127.0.0.1 0.0.0.0.0
127.0.0.1 0.0.0.0.0
127.0.0.1 0.0.0.0.0
127.0.0.1 0.0.0.0.0
127.0.0.1 0.0.0.0.0
127.0.0.1 m.fr.a2dfp.net
127.0.0.1 mfr.a2dfp.net
127.0.0.1 ad.a8.net
127.0.0.1 asy.a8ww.net
127.0.0.1 static.a-ads.com
127.0.0.1 atlas.aamedia.ro
127.0.0.1 abcstats.com
127.0.0.1 ad4.abradio.cz
127.0.0.1 a.abv.bg
127.0.0.1 adserver.abv.bg
127.0.0.1 adv.abv.bg
127.0.0.1 bimg.abv.bg
127.0.0.1 ca.abv.bg
127.0.0.1 www2.a-counter.kiev.ua
127.0.0.1 track.acclaimnetwork.com
127.0.0.1 accuserveadsystem.com
127.0.0.1 www.accuserveadsystem.com
127.0.0.1 achmedia.com
127.0.0.1 csh.actiondesk.com
127.0.0.1 ads.activepower.net
127.0.0.1 app.activetrail.com
 
There are 48 more lines.
 
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-3635204450-558081261-1734609496-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Mikey Colombo\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 10.13.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
(Currently there is no automatic fix for this section.)
 
HKLM\...\StartupApproved\StartupFolder: => "Bluetooth.lnk"
HKLM\...\StartupApproved\Run: => "Nvtmru"
HKLM\...\StartupApproved\Run32: => "APSDaemon"
HKLM\...\StartupApproved\Run32: => "iTunesHelper"
HKU\S-1-5-21-3635204450-558081261-1734609496-1002\...\StartupApproved\StartupFolder: => "Logitech . Product Registration.lnk"
HKU\S-1-5-21-3635204450-558081261-1734609496-1002\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-3635204450-558081261-1734609496-1002\...\StartupApproved\Run: => "Steam"
 
==================== FirewallRules (Whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{397354AD-12BC-429E-BF8D-4831865039B6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{40BBB36F-E2D4-404B-B411-87401C2EFDD8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{C0498F03-FD69-407A-B482-497CDBE9E731}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{1915C50E-08DD-4E89-8814-9958CC13A1BA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{4EF05167-943B-4D5B-BA4F-22583F1CA20C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{921B6B27-EFAB-4F33-8D44-FB9884F46FA6}] => (Allow) D:\Program Files\Steam\SteamApps\common\Fallout 3 goty\FalloutLauncher.exe
FirewallRules: [{509B350F-CF3B-4AD9-85FA-4FC6C1349B99}] => (Allow) D:\Program Files\Steam\SteamApps\common\Fallout 3 goty\FalloutLauncher.exe
FirewallRules: [{303FAFA4-6EEA-4A33-81A6-A510AA352010}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{9AF2BAAC-8A63-4392-BFA8-10E1F0D81DD0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{A940702A-8E34-4619-9835-E2CA32BD356E}] => (Allow) D:\Program Files\Steam\SteamApps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{7BC19A90-803A-4CB5-A593-2A7659E94991}] => (Allow) D:\Program Files\Steam\SteamApps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{97EC9EB3-3A0C-41B7-B885-641FC0B980BE}] => (Allow) D:\Program Files\Steam\SteamApps\common\AoW3\AoW3Launcher.exe
FirewallRules: [{6DAEC7D9-8E9F-402C-B931-0D77318FB149}] => (Allow) D:\Program Files\Steam\SteamApps\common\AoW3\AoW3Launcher.exe
FirewallRules: [{8D4D844B-8103-41B3-B0EB-481277C9BA4B}] => (Allow) D:\Program Files\Steam\SteamApps\common\Pillars of Eternity\PillarsOfEternity.exe
FirewallRules: [{707BA899-B58B-4B52-9BAC-8D336E6CF290}] => (Allow) D:\Program Files\Steam\SteamApps\common\Pillars of Eternity\PillarsOfEternity.exe
FirewallRules: [{0D0E71F7-9202-4B57-9806-03FC6095C9EF}] => (Allow) D:\Program Files\Steam\SteamApps\common\Divinity - Original Sin\Shipping\EoCApp.exe
FirewallRules: [{9F4B134E-93E5-4FC3-BCE7-07FBDCFCDDC2}] => (Allow) D:\Program Files\Steam\SteamApps\common\Divinity - Original Sin\Shipping\EoCApp.exe
FirewallRules: [{931845F1-1733-4839-8337-1FF4533B5237}] => (Allow) D:\Program Files (x86)\Origin Games\Titanfall\Titanfall.exe
FirewallRules: [{EA83DD6C-5C59-434B-BEB6-E4EE740555AF}] => (Allow) D:\Program Files (x86)\Origin Games\Titanfall\Titanfall.exe
FirewallRules: [{686A518C-3526-45CB-AC4A-2E2F1A46B372}] => (Allow) D:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [{AF0F5E2C-903E-449F-BE7C-6D96C5AE3442}] => (Allow) D:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [UDP Query User{C33DAC30-4392-4888-B422-3D9063C46787}C:\users\mikey colombo\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\mikey colombo\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{1E140707-D9FF-47E8-87A3-217EF43D4D34}C:\users\mikey colombo\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\mikey colombo\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{0B588CE3-C4CE-49A9-9680-1E4E50FFBD48}D:\program files\eso\launcher\bethesda.net_launcher.exe] => (Allow) D:\program files\eso\launcher\bethesda.net_launcher.exe
FirewallRules: [TCP Query User{3E5E1064-687F-4FB9-9F82-28A92AA21550}D:\program files\eso\launcher\bethesda.net_launcher.exe] => (Allow) D:\program files\eso\launcher\bethesda.net_launcher.exe
FirewallRules: [UDP Query User{2910E4F6-8B5C-4BF0-B7C2-0F4FB770823E}C:\program files (x86)\zenimax online\launcher\bethesda.net_launcher.exe] => (Allow) C:\program files (x86)\zenimax online\launcher\bethesda.net_launcher.exe
FirewallRules: [TCP Query User{7A65A082-B03A-4B05-988F-C6F89764B9FC}C:\program files (x86)\zenimax online\launcher\bethesda.net_launcher.exe] => (Allow) C:\program files (x86)\zenimax online\launcher\bethesda.net_launcher.exe
FirewallRules: [UDP Query User{977C7E9B-C172-444A-8FA5-24BC39C85CB2}D:\program files\dying light\dyinglightgame.exe] => (Block) D:\program files\dying light\dyinglightgame.exe
FirewallRules: [TCP Query User{4C92163A-61B8-47D7-825D-5328B6568464}D:\program files\dying light\dyinglightgame.exe] => (Block) D:\program files\dying light\dyinglightgame.exe
FirewallRules: [UDP Query User{9AC9939E-3E1A-4988-B48A-708B9BFFE018}D:\program files\dying light\dyinglightgame.exe] => (Block) D:\program files\dying light\dyinglightgame.exe
FirewallRules: [TCP Query User{B456BDB1-3EAD-4F3D-BC0B-EDDCDC1E994D}D:\program files\dying light\dyinglightgame.exe] => (Block) D:\program files\dying light\dyinglightgame.exe
FirewallRules: [{E2C22EF1-FFBC-479A-AFF4-DAF56E5046EF}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{1FF94F7C-25B7-419B-A54B-62F4ADD2A685}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{F4A9EA75-FEE0-4A4E-9F40-52F47A2BF002}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{309C87B3-1FEA-4327-81EF-2FA0E3EAF191}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{004514C7-26C9-4745-9A70-4181EC27BC2E}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{93922F82-97DD-4A39-8BA3-E90A71E03691}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{0BBAC71B-7D47-4B58-8EBA-4A6D9D6B617B}] => (Allow) D:\Program Files (x86)\Origin Games\SimCity 2000 SE\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{E04DFEFE-BC97-4826-B0D8-E8ACDF1B958F}] => (Allow) D:\Program Files (x86)\Origin Games\SimCity 2000 SE\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{E6BE0EAD-8B7C-47C6-ABC9-0E5BD48D0488}] => (Allow) D:\Program Files\Steam\SteamApps\common\Lords Of The Fallen\bin\LordsOfTheFallen.exe
FirewallRules: [{6DDDAAA2-34FF-453A-9ABD-2F5B3E505D76}] => (Allow) D:\Program Files\Steam\SteamApps\common\Lords Of The Fallen\bin\LordsOfTheFallen.exe
FirewallRules: [{2D696D19-A8B6-45CB-9149-F9C0CC5CDE00}] => (Allow) C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{4AB6BA34-1411-47E2-88D5-950C8C29E735}] => (Allow) C:\Users\Mikey Colombo\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [UDP Query User{B2648127-CF9A-49E2-A82A-142321A47E07}D:\program files\far cry 4\bin\farcry4.exe] => (Block) D:\program files\far cry 4\bin\farcry4.exe
FirewallRules: [TCP Query User{E6FBAE3F-4137-4D1C-8A0B-327044A44AD8}D:\program files\far cry 4\bin\farcry4.exe] => (Block) D:\program files\far cry 4\bin\farcry4.exe
FirewallRules: [{89B8E0ED-4120-40F2-A857-D37A5F03EF09}] => (Allow) D:\Program Files\Steam\SteamApps\common\Evolve\Bin64_SteamRetail\StaticLauncher64.exe
FirewallRules: [{5802EE06-AA94-4E22-9E50-1D5B5F1E73DD}] => (Allow) D:\Program Files\Steam\SteamApps\common\Evolve\Bin64_SteamRetail\StaticLauncher64.exe
FirewallRules: [{03B817C0-EF90-4E54-A026-D948F9D89850}] => (Allow) D:\Program Files\Steam\SteamApps\common\Sid Meier's Civilization Beyond Earth\CivilizationBE_Mantle.exe
FirewallRules: [{02AC5D30-B22E-4AB1-8A76-95C57680E27E}] => (Allow) D:\Program Files\Steam\SteamApps\common\Sid Meier's Civilization Beyond Earth\CivilizationBE_Mantle.exe
FirewallRules: [{6102847D-948B-4154-9A8F-CDE959D74BF7}] => (Allow) D:\Program Files\Steam\SteamApps\common\Sid Meier's Civilization Beyond Earth\CivilizationBE_DX11.exe
FirewallRules: [{765F7C72-0E96-4930-A2B9-280F9B947626}] => (Allow) D:\Program Files\Steam\SteamApps\common\Sid Meier's Civilization Beyond Earth\CivilizationBE_DX11.exe
FirewallRules: [UDP Query User{F3B486D4-2555-4E37-A1EE-768C977873B1}D:\program files\borderlands the pre-sequel\binaries\win32\borderlandspresequel.exe] => (Block) D:\program files\borderlands the pre-sequel\binaries\win32\borderlandspresequel.exe
FirewallRules: [TCP Query User{52DE89F2-24BF-4BA9-8B41-D953B8E30DF0}D:\program files\borderlands the pre-sequel\binaries\win32\borderlandspresequel.exe] => (Block) D:\program files\borderlands the pre-sequel\binaries\win32\borderlandspresequel.exe
FirewallRules: [UDP Query User{AFB78EB0-FCB2-445D-B02C-F3EB2F8333DD}D:\program files\alien isolation\ai.exe] => (Block) D:\program files\alien isolation\ai.exe
FirewallRules: [TCP Query User{2E437A87-B458-4B44-8FFF-B9574C7A81BC}D:\program files\alien isolation\ai.exe] => (Block) D:\program files\alien isolation\ai.exe
FirewallRules: [UDP Query User{1B90FC77-614F-4894-9033-A3061353A919}D:\program files\the vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe] => (Block) D:\program files\the vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe
FirewallRules: [TCP Query User{89A5CE16-FE14-4D94-9C2A-7559CA7A60CB}D:\program files\the vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe] => (Block) D:\program files\the vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe
FirewallRules: [{D432D194-BB6B-41DC-A3D2-D2A49955DF08}] => (Allow) D:\Program Files\Steam\SteamApps\common\Total War SHOGUN 2\Shogun2.exe
FirewallRules: [{20ABB78B-5C41-4E43-ABE3-9C1DC8A06C97}] => (Allow) D:\Program Files\Steam\SteamApps\common\Total War SHOGUN 2\Shogun2.exe
FirewallRules: [UDP Query User{151CF86B-A983-4B46-BEE5-A21581B5717C}D:\program files\lichdom battlemage\bin64\lichdombattlemage.exe] => (Block) D:\program files\lichdom battlemage\bin64\lichdombattlemage.exe
FirewallRules: [TCP Query User{BA507900-3A15-4B81-B8A8-308B56420DDA}D:\program files\lichdom battlemage\bin64\lichdombattlemage.exe] => (Block) D:\program files\lichdom battlemage\bin64\lichdombattlemage.exe
FirewallRules: [{A6096E93-9DF0-4D44-B977-F25BA6D22CD9}] => (Allow) D:\Program Files\Steam\SteamApps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{9A2047E5-805A-4FC6-91F4-444E4D28AFB3}] => (Allow) D:\Program Files\Steam\SteamApps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{B8B3A226-2A64-4899-85C2-2AE524A49EE8}] => (Allow) D:\Program Files\Steam\SteamApps\common\Divinity - Original Sin\Shipping\EoCApp.exe
FirewallRules: [{6B5EAA2E-12C5-4C45-939A-BF1BC1D0EAA4}] => (Allow) D:\Program Files\Steam\SteamApps\common\Divinity - Original Sin\Shipping\EoCApp.exe
FirewallRules: [UDP Query User{97C30138-4E4A-48D7-A2AA-EA6D76A70251}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe
FirewallRules: [TCP Query User{83F33822-6E71-4CE9-96C3-958A826C3BD1}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe
FirewallRules: [UDP Query User{95D0CF3C-64EF-45B0-B7CB-B958030FA90C}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe
FirewallRules: [TCP Query User{E2998B12-5D40-46D3-BB18-2149C52CAD18}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe
FirewallRules: [{B8738B13-8ACD-4966-A077-645C344D5A32}] => (Allow) D:\Program Files\Steam\SteamApps\common\The Bards Tale\Config\The Bard's Setup.exe
FirewallRules: [{4F3EFB07-E195-411F-A8ED-712E13DF3CB8}] => (Allow) D:\Program Files\Steam\SteamApps\common\The Bards Tale\Config\The Bard's Setup.exe
FirewallRules: [{06C93477-B794-4D7B-9493-3EFA90B28878}] => (Allow) D:\Program Files\Steam\bin\steamwebhelper.exe
FirewallRules: [{E39860CB-2CDE-4BF6-B91A-D6F15D6D2713}] => (Allow) D:\Program Files\Steam\bin\steamwebhelper.exe
FirewallRules: [UDP Query User{56FC9765-BCEE-4B75-99CD-90582ECFC079}D:\program files\sacred 2 gold edition\system\s2gs.exe] => (Allow) D:\program files\sacred 2 gold edition\system\s2gs.exe
FirewallRules: [TCP Query User{855A3841-1C49-4AC6-98A5-6F6AD21D5C9B}D:\program files\sacred 2 gold edition\system\s2gs.exe] => (Allow) D:\program files\sacred 2 gold edition\system\s2gs.exe
FirewallRules: [{73F2237F-7566-4519-8A51-A7A4CAE0F390}] => (Allow) D:\Program Files (x86)\Origin Games\Peggle Deluxe\Peggle.exe
FirewallRules: [{D42C80E8-FDF0-4237-B414-C709A68D30BA}] => (Allow) D:\Program Files (x86)\Origin Games\Peggle Deluxe\Peggle.exe
FirewallRules: [{9CEF40DE-2DFA-4CD3-9ED4-3E731116B8BE}] => (Allow) D:\Program Files\Steam\SteamApps\common\EYE\EYE.exe
FirewallRules: [{885D03A5-2E48-46CE-9425-29CBA18D7284}] => (Allow) D:\Program Files\Steam\SteamApps\common\EYE\EYE.exe
FirewallRules: [{C251F44D-52A4-4040-BE89-7CDD53464491}] => (Allow) D:\Program Files\Steam\SteamApps\common\rust\experimental\Rust.exe
FirewallRules: [{64D068E3-12BE-43CC-B331-781D64893EC8}] => (Allow) D:\Program Files\Steam\SteamApps\common\rust\experimental\Rust.exe
FirewallRules: [{7B679C07-B8DB-42EC-BF5D-F9CA77696410}] => (Allow) D:\Program Files\Steam\SteamApps\common\rust\legacy\rust.exe
FirewallRules: [{98F5994A-50E2-4038-AC08-5B834699DD02}] => (Allow) D:\Program Files\Steam\SteamApps\common\rust\legacy\rust.exe
FirewallRules: [{1A5AA26D-E7F0-4991-A1A7-523A525E9F25}] => (Allow) D:\Program Files\Steam\SteamApps\common\tbs\win32\The Banner Saga.exe
FirewallRules: [{3F847C01-9B23-4A8A-B918-FA1AA85D8060}] => (Allow) D:\Program Files\Steam\SteamApps\common\tbs\win32\The Banner Saga.exe
FirewallRules: [{92B3AC57-A8E5-4560-9C1F-974064060E95}] => (Allow) D:\Program Files\Steam\SteamApps\common\METAL GEAR RISING REVENGEANCE\METAL GEAR RISING REVENGEANCE.exe
FirewallRules: [{A2A9DDC6-1CE0-4901-818A-D89AE9719EAE}] => (Allow) D:\Program Files\Steam\SteamApps\common\METAL GEAR RISING REVENGEANCE\METAL GEAR RISING REVENGEANCE.exe
FirewallRules: [{C87209E9-3D9C-4739-88E0-D4EA2BBC60DB}] => (Allow) D:\Program Files\Steam\SteamApps\common\Age Of Empires 3\bin\age3y.exe
FirewallRules: [{7225C50F-E31A-40A6-9364-75FA403C3CE1}] => (Allow) D:\Program Files\Steam\SteamApps\common\Age Of Empires 3\bin\age3y.exe
FirewallRules: [{A0DE667D-441F-4024-A548-624D6A4F537D}] => (Allow) D:\Program Files\Steam\SteamApps\common\Age Of Empires 3\bin\age3x.exe
FirewallRules: [{E1594F94-79E4-4650-A401-9E8182343212}] => (Allow) D:\Program Files\Steam\SteamApps\common\Age Of Empires 3\bin\age3x.exe
FirewallRules: [{08CCC9FA-C34B-492D-B788-85B3F127417C}] => (Allow) D:\Program Files\Steam\SteamApps\common\Age Of Empires 3\bin\age3.exe
FirewallRules: [{0CB7A440-E745-45E1-8367-F9E39226737D}] => (Allow) D:\Program Files\Steam\SteamApps\common\Age Of Empires 3\bin\age3.exe
FirewallRules: [{166B8572-D418-49D4-B1A4-E369E0C59665}] => (Allow) D:\Program Files\Steam\SteamApps\common\Avernum Escape From the Pit\Avernum.exe
FirewallRules: [{3ADEDA97-E939-47C0-9E78-14B6D211A42A}] => (Allow) D:\Program Files\Steam\SteamApps\common\Avernum Escape From the Pit\Avernum.exe
FirewallRules: [{D6BBF469-452B-4160-B4F1-97D3D1509998}] => (Allow) D:\Program Files\Steam\SteamApps\common\FE Legendary Heroes\LegendaryHeroes.exe
FirewallRules: [{35FEC8B5-4E80-423C-A922-B114E5EF3E9E}] => (Allow) D:\Program Files\Steam\SteamApps\common\FE Legendary Heroes\LegendaryHeroes.exe
FirewallRules: [{E539CC26-5DCB-4332-B6D8-E179A01FA985}] => (Allow) D:\Program Files\Steam\SteamApps\common\Darksiders 2\Darksiders2.exe
FirewallRules: [{0BF5A2E7-D539-41C3-A79A-44DF26609043}] => (Allow) D:\Program Files\Steam\SteamApps\common\Darksiders 2\Darksiders2.exe
FirewallRules: [UDP Query User{3B15C131-6124-4A60-8762-8C2A4DDCD33C}D:\program files\steam\steamapps\common\planet explorers\pe_client.exe] => (Allow) D:\program files\steam\steamapps\common\planet explorers\pe_client.exe
FirewallRules: [TCP Query User{3BCC7B97-6D7D-4637-AC6E-B8C56AE120CD}D:\program files\steam\steamapps\common\planet explorers\pe_client.exe] => (Allow) D:\program files\steam\steamapps\common\planet explorers\pe_client.exe
FirewallRules: [{623DCF1A-9A11-4778-9F7A-BD952184C399}] => (Allow) D:\Program Files\Steam\SteamApps\common\FTL Faster Than Light\FTLGame.exe
FirewallRules: [{664720D0-0F60-4111-AC72-CF86946F357E}] => (Allow) D:\Program Files\Steam\SteamApps\common\FTL Faster Than Light\FTLGame.exe
FirewallRules: [{BF30201D-12AA-4CBE-87EE-AD7E93B909E2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [{15CCEA7B-75FF-4231-8F5B-6DBCEA655F30}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [UDP Query User{D54B99F7-A7DB-4A5C-99CA-267414B83A75}D:\program files\murdered soul suspect\binaries\win64\murdered.exe] => (Allow) D:\program files\murdered soul suspect\binaries\win64\murdered.exe
FirewallRules: [TCP Query User{20F0E669-53C0-424E-8F95-13698F891A64}D:\program files\murdered soul suspect\binaries\win64\murdered.exe] => (Allow) D:\program files\murdered soul suspect\binaries\win64\murdered.exe
FirewallRules: [UDP Query User{DAB5EAEB-ED26-4F46-BE2F-81C35B05DEF4}D:\program files\wolfenstein the new order\wolfneworder_x64.exe] => (Allow) D:\program files\wolfenstein the new order\wolfneworder_x64.exe
FirewallRules: [TCP Query User{A4137153-9BD0-45DB-BB84-4D4087906F32}D:\program files\wolfenstein the new order\wolfneworder_x64.exe] => (Allow) D:\program files\wolfenstein the new order\wolfneworder_x64.exe
FirewallRules: [{F822EA5C-08E4-4809-88C7-0E118375A6D1}] => (Allow) C:\Program Files (x86)\BitLord 2\Bitlord files\bitlord.exe
FirewallRules: [{4EDFE078-7EAD-4AEF-B9EE-E2F81AAA60AB}] => (Allow) C:\Program Files (x86)\BitLord 2\Bitlord files\bitlord.exe
FirewallRules: [{FFAEB4DC-85CA-4DD5-8023-786C3EFFE530}] => (Allow) D:\Program Files\Might and Magic\Might & Magic® X Legacy\Might and Magic X Legacy.exe
FirewallRules: [{0730FD75-E9CB-4621-866A-C60EC5FB8C23}] => (Allow) D:\Program Files\Steam\SteamApps\common\AoW3\AoW3_Debug.exe
FirewallRules: [{935C13FD-C7CE-4AE3-9ED3-B4A85E74BDF0}] => (Allow) D:\Program Files\Steam\SteamApps\common\AoW3\AoW3_Debug.exe
FirewallRules: [{30D15185-2DBB-4A01-B9F6-28738898B9EC}] => (Allow) D:\Program Files\Steam\SteamApps\common\AoW3\AoW3.exe
FirewallRules: [{3586AC78-C04A-4434-990F-EFD10143A449}] => (Allow) D:\Program Files\Steam\SteamApps\common\AoW3\AoW3.exe
FirewallRules: [{E1054325-52F8-4949-9A97-F6F1F2C08FCB}] => (Allow) D:\Program Files\Steam\SteamApps\common\The Book of Legends\TheBookOfLegends.exe
FirewallRules: [{FAB04696-1ECA-4BB7-9638-9A63771780EC}] => (Allow) D:\Program Files\Steam\SteamApps\common\The Book of Legends\TheBookOfLegends.exe
FirewallRules: [{C4ED25E8-4331-4505-919B-8A3C44D94280}] => (Allow) D:\Program Files\Steam\SteamApps\common\Last Dream\Game.exe
FirewallRules: [{9F0B3607-5DDA-4C75-A392-50EEE6F9C709}] => (Allow) D:\Program Files\Steam\SteamApps\common\Last Dream\Game.exe
FirewallRules: [{996C28BB-D97D-4E8E-B907-33497FCEAF43}] => (Allow) D:\Program Files (x86)\Origin Games\Dead Space 3\deadspace3.exe
FirewallRules: [{BC33A1EF-AD2C-43BD-B90A-2C87BB08485F}] => (Allow) D:\Program Files (x86)\Origin Games\Dead Space 3\deadspace3.exe
FirewallRules: [{527C76CA-1442-4C85-9468-0854B1A65F21}] => (Allow) D:\Program Files (x86)\Origin Games\Dragon Age II\bin_ship\DragonAge2.exe
FirewallRules: [{6F0B6DA3-87EA-4824-8BE6-57E3D4DA0EE8}] => (Allow) D:\Program Files (x86)\Origin Games\Dragon Age II\bin_ship\DragonAge2.exe
FirewallRules: [UDP Query User{BA77F5F6-4F26-4E4E-A418-288194093189}D:\program files\steam\steamapps\common\dark souls prepare to die edition\data\data.exe] => (Allow) D:\program files\steam\steamapps\common\dark souls prepare to die edition\data\data.exe
FirewallRules: [TCP Query User{1D7CA148-D11A-4CEF-B5D9-818F58EC246C}D:\program files\steam\steamapps\common\dark souls prepare to die edition\data\data.exe] => (Allow) D:\program files\steam\steamapps\common\dark souls prepare to die edition\data\data.exe
FirewallRules: [{2DAC9B14-5656-4902-AFB0-5BFB4A4E234F}] => (Allow) D:\Program Files\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{3DCA1ED0-DDAA-4886-A713-9CAEF9384C75}] => (Allow) D:\Program Files\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{AFF0F650-03B7-434A-A86E-2B87F2C468E4}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{88E71C96-43FC-4D1B-90DA-C2100F4F96E2}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{3D10A1D8-D502-4347-9470-AE44E130DDF4}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{01E2A946-9C54-4EB0-92B5-23C3C3045CC8}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{2A9E301D-52DF-402C-B0A1-290EA830B7A3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2581\Agent.exe
FirewallRules: [{C1366413-96B2-473D-B83A-B699156628CC}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2581\Agent.exe
FirewallRules: [{D4CD21FB-B159-4CFD-A097-09C7A5A26463}] => (Allow) D:\Program Files\Steam\SteamApps\common\rust\rustlauncher.exe
FirewallRules: [{387817B3-67A9-4D73-A1B0-0E96B105B3C2}] => (Allow) D:\Program Files\Steam\SteamApps\common\rust\rustlauncher.exe
FirewallRules: [{52F70283-DFD5-44AE-89D2-319DA992844E}] => (Allow) D:\Program Files\Steam\SteamApps\common\Wasteland 2\Build\WL2.exe
FirewallRules: [{1842FD65-B078-4617-8418-F449E6F61A4E}] => (Allow) D:\Program Files\Steam\SteamApps\common\Wasteland 2\Build\WL2.exe
FirewallRules: [{B5DAE078-2EDD-4F96-A3ED-72967BBCB417}] => (Allow) D:\Program Files\Steam\SteamApps\common\CastlevaniaLoS\bin\CastlevaniaLoSUE.exe
FirewallRules: [{95EB6EE2-8C4D-471C-83E4-C63594849EA8}] => (Allow) D:\Program Files\Steam\SteamApps\common\CastlevaniaLoS\bin\CastlevaniaLoSUE.exe
FirewallRules: [{254052A5-6AAD-4DE4-A062-B9885B725955}] => (Allow) D:\Program Files\Steam\SteamApps\common\STALKER Shadow of Chernobyl\bin\XR_3DA.exe
FirewallRules: [{59A5C953-9B1A-4EBB-8580-3E1D95D1B1CF}] => (Allow) D:\Program Files\Steam\SteamApps\common\STALKER Shadow of Chernobyl\bin\XR_3DA.exe
FirewallRules: [{A8D9F1DB-AEBF-4718-B43D-514BC167DA43}] => (Allow) D:\Program Files\Steam\SteamApps\common\Deus Ex Human Revolution Director's Cut\DXHRDC.exe
FirewallRules: [{18255C41-34E4-4EAC-99F7-10D32A7EDEE2}] => (Allow) D:\Program Files\Steam\SteamApps\common\Deus Ex Human Revolution Director's Cut\DXHRDC.exe
FirewallRules: [{219BD260-81BE-44EE-A4AD-17B403E40A67}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{BD0F4100-6E1D-4A02-89F3-3E29ADECCD60}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{298BA0F2-3284-4D9B-B0E7-C3A0696BCA30}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{F016D626-F797-4774-9655-BDDF9FC67940}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{A4A74F4D-D6C4-4B53-A0E0-70A45BC0E189}] => (Allow) D:\Program Files\Steam\SteamApps\common\Blackguards\Blackguards.exe
FirewallRules: [{286045B9-D69E-4F7B-808D-C7E16FD9C180}] => (Allow) D:\Program Files\Steam\SteamApps\common\Blackguards\Blackguards.exe
FirewallRules: [{737D4BB6-2553-479D-AA0B-64F60918F3FD}] => (Allow) D:\Program Files\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [{A09DDFE9-4709-4B4D-806B-0E47F154C710}] => (Allow) D:\Program Files\Steam\SteamApps\common\rust\rust.exe
FirewallRules: [UDP Query User{7E0C3B7A-5DD9-4354-B550-BA87BCF29B6B}D:\program files\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe] => (Allow) D:\program files\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe
FirewallRules: [TCP Query User{A57E02A2-B80C-4828-9C91-FF4035B14453}D:\program files\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe] => (Allow) D:\program files\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe
FirewallRules: [{9FB33899-2141-483E-84A9-7760EE2A5FF0}] => (Allow) D:\Program Files\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{4CF5722E-147B-4C4B-9502-A6E3B4110169}] => (Allow) D:\Program Files\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{05C480FE-EE54-4404-BE07-BC382F5F55D6}] => (Allow) D:\Program Files\Steam\SteamApps\common\Baldur's Gate II Enhanced Edition\Baldur.exe
FirewallRules: [{2CCD0F85-1E44-4F19-B92A-76DD294529CA}] => (Allow) D:\Program Files\Steam\SteamApps\common\Baldur's Gate II Enhanced Edition\Baldur.exe
FirewallRules: [{78617097-A0C5-4F29-9BCD-C5B6DE7F91A2}] => (Allow) D:\Program Files\Steam\SteamApps\common\Wizardry6\dosbox_windows\daum\dosbox.exe
FirewallRules: [{0F7692AF-D432-49CA-B498-C4735A6FB284}] => (Allow) D:\Program Files\Steam\SteamApps\common\Wizardry6\dosbox_windows\daum\dosbox.exe
FirewallRules: [{44C7AC15-A8E5-440F-8BC9-885E09AE3CA3}] => (Allow) D:\Program Files\Steam\SteamApps\common\Wizardry6\dosbox_windows\dosbox.exe
FirewallRules: [{5FF2107A-341D-4814-A634-34FB214483CC}] => (Allow) D:\Program Files\Steam\SteamApps\common\Wizardry6\dosbox_windows\dosbox.exe
FirewallRules: [{DC0281AD-BB0E-4924-A55F-0372E927A489}] => (Allow) D:\Program Files\Steam\SteamApps\common\Wizardry7\wizardry7gold\WIZARD.EXE
FirewallRules: [{79F1BBA0-61DF-4EDA-961A-F841AC6E30D1}] => (Allow) D:\Program Files\Steam\SteamApps\common\Wizardry7\wizardry7gold\WIZARD.EXE
FirewallRules: [{E260DD79-EF1A-4259-8AC5-05BF69BC8187}] => (Allow) D:\Program Files\Steam\SteamApps\common\Wizardry7\dosbox_windows\dosbox.exe
FirewallRules: [{FCBDFD98-60D5-46AA-9BC5-EA867FCBAE3B}] => (Allow) D:\Program Files\Steam\SteamApps\common\Wizardry7\dosbox_windows\dosbox.exe
FirewallRules: [{1EFABC35-F25B-40AE-BFEF-30479E341633}] => (Allow) D:\Program Files\Steam\SteamApps\common\Wizardry8\nglide_config.exe
FirewallRules: [{631C28C0-3E52-4B2F-A7C8-CB5FBD9045DB}] => (Allow) D:\Program Files\Steam\SteamApps\common\Wizardry8\nglide_config.exe
FirewallRules: [{922C4272-CC72-405F-A7D8-CD50ECC22BDA}] => (Allow) D:\Program Files\Steam\SteamApps\common\Wizardry8\3DSetup.exe
FirewallRules: [{0460F771-BC37-4279-9928-2905095A4A7A}] => (Allow) D:\Program Files\Steam\SteamApps\common\Wizardry8\3DSetup.exe
FirewallRules: [{A15C94BD-ED55-4BA5-9CFA-D26F5FD12F6E}] => (Allow) D:\Program Files\Steam\SteamApps\common\Wizardry8\Wiz8.exe
FirewallRules: [{4539252C-66DD-4637-B349-5F68573EE3FE}] => (Allow) D:\Program Files\Steam\SteamApps\common\Wizardry8\Wiz8.exe
FirewallRules: [UDP Query User{10841D5D-E5B4-4275-B2C1-F137B0A6FAD7}D:\program files\steam\steamapps\common\ageofconan_us\ageofconan.exe] => (Allow) D:\program files\steam\steamapps\common\ageofconan_us\ageofconan.exe
FirewallRules: [TCP Query User{D8D8C930-2145-4653-81F2-EA493DD16BF5}D:\program files\steam\steamapps\common\ageofconan_us\ageofconan.exe] => (Allow) D:\program files\steam\steamapps\common\ageofconan_us\ageofconan.exe
FirewallRules: [UDP Query User{30DAC8EA-FE11-4CA7-B587-A814F0F971F7}D:\program files\steam\steam.exe] => (Allow) D:\program files\steam\steam.exe
FirewallRules: [TCP Query User{5E3A5C80-40EB-4473-B8AE-7747A6ABB40D}D:\program files\steam\steam.exe] => (Allow) D:\program files\steam\steam.exe
FirewallRules: [{C6C07313-0F08-4878-A121-52C01AB071B1}] => (Allow) D:\Program Files\Steam\SteamApps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe
FirewallRules: [{943D7B1C-C377-4CB6-84B2-00FD4F3E4DA9}] => (Allow) D:\Program Files\Steam\SteamApps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe
FirewallRules: [{EC536A3E-5190-4902-A00C-A02144BC1DE6}] => (Allow) D:\Program Files\Steam\SteamApps\common\State of Decay\StateOfDecay.exe
FirewallRules: [{36614163-0D85-4C0E-B9DF-24FC1508CBB9}] => (Allow) D:\Program Files\Steam\SteamApps\common\State of Decay\StateOfDecay.exe
FirewallRules: [{B35B1041-4611-483B-80ED-5127CB3C0786}] => (Allow) D:\Program Files\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{1FA0BF87-DBEC-453D-9909-37D1DD4D7E60}] => (Allow) D:\Program Files\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{E24FD893-3ED8-43FA-B06E-70B326A546B9}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{5037CC41-3294-4CB6-A18B-299B50D1CE2E}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{86B8AD62-D5B8-4093-81D8-B000F8FCD9FB}] => (Allow) D:\Program Files\Steam\SteamApps\common\Dragon Age Ultimate Edition\DAOriginsLauncher.exe
FirewallRules: [{21521F7D-BAA0-41F8-BFA9-D9D972031C84}] => (Allow) D:\Program Files\Steam\SteamApps\common\Dragon Age Ultimate Edition\DAOriginsLauncher.exe
FirewallRules: [{FE6AB697-5CAB-4B15-A8DA-73FECDA0D37B}] => (Allow) D:\Program Files\Steam\SteamApps\common\Half-Life 2\hl2.exe
FirewallRules: [{E38B7C88-858C-4B76-9A13-E6434A487F5A}] => (Allow) D:\Program Files\Steam\SteamApps\common\Half-Life 2\hl2.exe
FirewallRules: [{12298714-4E9C-40E6-BE22-6DC49CB4A928}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{739A3180-E994-4014-832E-A9590C95B323}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{65E99BB4-97DD-439E-AF85-FD03566B6340}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
FirewallRules: [{124F1AF0-0687-4DF6-9DBC-FA94A840456C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
FirewallRules: [{2C38BC70-8EED-4827-A94E-7FF815E47255}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe
FirewallRules: [{A7C85183-81D3-476E-A758-A28797C8FA93}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe
FirewallRules: [{56EE0A11-2BC5-41B8-B726-20BC67DB9037}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe
FirewallRules: [{80C482DA-069C-4D7C-A720-C0C1173D3B9F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe
FirewallRules: [{0975DA35-2407-4A32-BD5E-2F2AF7DC5FC4}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\BioShock Infinite\Binaries\Win32\Benchmark.bat
FirewallRules: [{88C403F2-6210-41F8-8CE8-CF083AE8DA37}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\BioShock Infinite\Binaries\Win32\Benchmark.bat
FirewallRules: [TCP Query User{DF7C0A81-1635-4B24-946B-A5D2631CEC29}C:\users\mikey colombo\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\mikey colombo\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{79F527BC-6052-4F3D-9EA2-9E33A09E9EC7}C:\users\mikey colombo\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\mikey colombo\appdata\roaming\spotify\spotify.exe
FirewallRules: [{413B0536-0604-488F-AF03-1A1CC3DB25BC}] => (Allow) D:\Program Files\StarCraft II\StarCraft II.exe
FirewallRules: [{93BA0888-E010-40BC-8DC4-F216005FCB49}] => (Allow) D:\Program Files\StarCraft II\StarCraft II.exe
FirewallRules: [{81017372-5124-4C42-83C1-4A2726C8F31A}] => (Allow) D:\Program Files\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [{56996E59-F0C9-4E76-9EB3-44C205E59381}] => (Allow) D:\Program Files\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [{15757A0E-F3C1-46A5-8C8D-0D0401CD7D89}] => (Allow) D:\Program Files\Diablo III\Diablo III.exe
FirewallRules: [{F0B65075-8292-4190-A5B6-B7C97B97C018}] => (Allow) D:\Program Files\Diablo III\Diablo III.exe
FirewallRules: [TCP Query User{F3C51139-8FEC-406C-A836-D413B42FD636}C:\program files (x86)\participatory culture foundation\miro\miro_downloader.exe] => (Allow) C:\program files (x86)\participatory culture foundation\miro\miro_downloader.exe
FirewallRules: [UDP Query User{21721BAC-0822-416F-B143-488E3BCEEAB1}C:\program files (x86)\participatory culture foundation\miro\miro_downloader.exe] => (Allow) C:\program files (x86)\participatory culture foundation\miro\miro_downloader.exe
FirewallRules: [{0081AA39-CDE9-4B0E-8729-D1CD17247CF0}] => (Allow) D:\Program Files\Steam\SteamApps\common\Hitman Sniper Challenge\HMSC.exe
FirewallRules: [{4A4E1095-E0FB-428E-AB0C-4BF4435C029F}] => (Allow) D:\Program Files\Steam\SteamApps\common\Hitman Sniper Challenge\HMSC.exe
FirewallRules: [TCP Query User{6DD7850D-981D-40F3-871C-D88992287E92}D:\program files\starcraft ii\versions\base24944\sc2.exe] => (Allow) D:\program files\starcraft ii\versions\base24944\sc2.exe
FirewallRules: [UDP Query User{ADA0CFF2-DE12-47EE-B9C1-9057E4C9016F}D:\program files\starcraft ii\versions\base24944\sc2.exe] => (Allow) D:\program files\starcraft ii\versions\base24944\sc2.exe
FirewallRules: [{DAE8AB56-0AE9-4870-B516-448B1F855801}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [{107A5C5A-EF4E-4826-B63A-3D6E752B79FC}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [{ACB8CD89-7C32-4F2D-A5AF-0616D8726944}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [{26160308-527E-46E5-8DA6-44495FC8DE80}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [TCP Query User{72ED7713-D548-4BF1-8814-5461D022DE32}C:\users\mikey colombo\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\mikey colombo\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{772FABE8-9DC0-4E73-B482-9F22D021559E}C:\users\mikey colombo\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\mikey colombo\appdata\roaming\spotify\spotify.exe
FirewallRules: [{7E455526-6A7B-4FA8-B3A2-E3FE3A6340F7}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe
FirewallRules: [{9DD568B4-5FAB-4327-9DD8-97F406610CE6}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe
FirewallRules: [TCP Query User{C096572D-1755-436D-A3A6-3D942CF490A4}D:\program files\starcraft ii\versions\base24944\sc2.exe] => (Allow) D:\program files\starcraft ii\versions\base24944\sc2.exe
FirewallRules: [UDP Query User{D3884F46-67B1-4048-8C07-6D08AFFBB16D}D:\program files\starcraft ii\versions\base24944\sc2.exe] => (Allow) D:\program files\starcraft ii\versions\base24944\sc2.exe
FirewallRules: [TCP Query User{BEE7312B-816E-4B20-B5C5-BEFCFCF60F9E}C:\program files (x86)\gigabyte\@bios\gwflash.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\gwflash.exe
FirewallRules: [UDP Query User{89702AA4-54B2-4C83-96FA-F0D523886B45}C:\program files (x86)\gigabyte\@bios\gwflash.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\gwflash.exe
FirewallRules: [TCP Query User{734D27D8-EB65-4032-945C-FAE98FF319D8}C:\program files (x86)\gigabyte\@bios\updexe.exe] => (Block) C:\program files (x86)\gigabyte\@bios\updexe.exe
FirewallRules: [UDP Query User{D2C064BD-DCD1-4B79-8B81-43A53D5F0E52}C:\program files (x86)\gigabyte\@bios\updexe.exe] => (Block) C:\program files (x86)\gigabyte\@bios\updexe.exe
FirewallRules: [{A50A3F2F-61B0-496A-BB48-214C68E2C7CF}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{675F1B91-B4D0-4366-871C-4778B7AFFB03}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{38CE195E-12F9-458A-B702-729353B734DD}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1737\Agent.exe
FirewallRules: [{2D53D805-45C3-4EBA-BBB0-D9E846C6540D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1737\Agent.exe
FirewallRules: [TCP Query User{3A3CD23A-C3BA-42E2-B1F5-E8C072FFFBD2}C:\users\mikey colombo\appdata\local\temp\gw2.exe] => (Allow) C:\users\mikey colombo\appdata\local\temp\gw2.exe
FirewallRules: [UDP Query User{DF4EDDA4-75C7-4325-AEBF-E21847BA58F5}C:\users\mikey colombo\appdata\local\temp\gw2.exe] => (Allow) C:\users\mikey colombo\appdata\local\temp\gw2.exe
FirewallRules: [TCP Query User{011296EF-41D6-4AD3-933E-C27C6B922508}D:\program files\guild wars 2\gw2.exe] => (Allow) D:\program files\guild wars 2\gw2.exe
FirewallRules: [UDP Query User{B9D486AC-B79E-411D-9757-324614834F8D}D:\program files\guild wars 2\gw2.exe] => (Allow) D:\program files\guild wars 2\gw2.exe
FirewallRules: [{25E1AA62-ED4C-42F6-8188-B31751CD91A8}] => (Allow) D:\Program Files\Steam\SteamApps\common\BioShock Infinite\Binaries\Win32\Benchmark.bat
FirewallRules: [{523DF7D0-5D32-43F9-9605-E9C765E82498}] => (Allow) D:\Program Files\Steam\SteamApps\common\BioShock Infinite\Binaries\Win32\Benchmark.bat
FirewallRules: [TCP Query User{E878C97B-839C-4CF9-BE70-B574395841B2}D:\program files\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) D:\program files\steam\steamapps\common\the witcher 2\bin\witcher2.exe
FirewallRules: [UDP Query User{E24D90ED-CE5E-4F82-95E4-01962AF69D20}D:\program files\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) D:\program files\steam\steamapps\common\the witcher 2\bin\witcher2.exe
FirewallRules: [{D48668D5-0FDF-4017-AE9F-81B7F88AD433}] => (Allow) D:\Program Files\Steam\SteamApps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{B1E63CE5-8D79-415E-A206-A9B0C06728E4}] => (Allow) D:\Program Files\Steam\SteamApps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{57F7BEDB-BB0D-42DC-B840-DABB77B57014}] => (Allow) D:\Program Files\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{DA4C5A89-1E65-4F1F-B6B8-C78169ED0517}] => (Allow) D:\Program Files\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{830E4A02-F8CE-43CC-B470-FC115516EE98}] => (Allow) D:\Program Files\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{1D9008D1-FCC1-454A-A006-5F2C4C758F1A}] => (Allow) D:\Program Files\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{B8DD69AE-113D-41C7-9016-33DEAB562CD6}] => (Allow) D:\Program Files\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{0708F725-87FE-4053-ABF9-1DAFE3673E85}] => (Allow) D:\Program Files\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{E574FAA3-B56A-4BD5-B7E3-B640EFDA743C}] => (Allow) D:\Program Files\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [TCP Query User{0B7D289C-DEB8-4268-9A0A-56CAC898CDB1}C:\program files (x86)\participatory culture foundation\miro\miro_downloader.exe] => (Allow) C:\program files (x86)\participatory culture foundation\miro\miro_downloader.exe
FirewallRules: [UDP Query User{641A7D7C-2069-455D-A58F-37A77BB062EA}C:\program files (x86)\participatory culture foundation\miro\miro_downloader.exe] => (Allow) C:\program files (x86)\participatory culture foundation\miro\miro_downloader.exe
FirewallRules: [{87B877D5-41C0-4C62-A706-5AA154C39134}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{287295FA-270C-46D2-9302-2025B21B0A1B}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{966A857F-45B2-45B0-B70A-BB3B154F4FA5}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{FFBC4050-FDD1-4F2F-AEC2-9B36254CEE62}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{21352151-DC06-4C9A-A16C-CF1C723A5743}] => (Allow) D:\Program Files\bin\farcry3.exe
FirewallRules: [{6062FB77-2580-46E9-AA7C-D65DF496AF30}] => (Allow) D:\Program Files\bin\farcry3.exe
FirewallRules: [{685847A5-44D1-49A9-8730-CE2F0E413C1C}] => (Allow) D:\Program Files\bin\farcry3_d3d11.exe
FirewallRules: [{57E3D434-31EE-4885-BF3A-D30CAAA7B98C}] => (Allow) D:\Program Files\bin\farcry3_d3d11.exe
FirewallRules: [{65D3BE14-448D-43AC-ABFB-79582BE91893}] => (Allow) D:\Program Files\bin\FC3Updater.exe
FirewallRules: [{E3160ED6-1B53-4C07-BF21-270B294F7578}] => (Allow) D:\Program Files\bin\FC3Updater.exe
FirewallRules: [{1092BB36-686F-45E9-B319-AF7FDD14589B}] => (Allow) D:\Program Files\bin\FC3Editor.exe
FirewallRules: [{931B7085-0B09-4475-B7EF-F38CAE0C8940}] => (Allow) D:\Program Files\bin\FC3Editor.exe
FirewallRules: [TCP Query User{459B5215-2196-46BD-97E4-B3B21AF5F8E1}D:\program files\farcry 3\bin\farcry3.exe] => (Allow) D:\program files\farcry 3\bin\farcry3.exe
FirewallRules: [UDP Query User{16FA4713-0049-42E0-B516-23D9705B94F6}D:\program files\farcry 3\bin\farcry3.exe] => (Allow) D:\program files\farcry 3\bin\farcry3.exe
FirewallRules: [TCP Query User{8626D26D-FF0C-43C2-98BC-5C2DBE64590B}D:\program files\dmc\dmc devil may cry\binaries\win32\dmc-devilmaycry.exe] => (Allow) D:\program files\dmc\dmc devil may cry\binaries\win32\dmc-devilmaycry.exe
FirewallRules: [UDP Query User{31E4BD03-A1D7-4033-949A-32B7BD8EACFC}D:\program files\dmc\dmc devil may cry\binaries\win32\dmc-devilmaycry.exe] => (Allow) D:\program files\dmc\dmc devil may cry\binaries\win32\dmc-devilmaycry.exe
FirewallRules: [TCP Query User{1EDF29CD-4238-4B2B-8526-977EBBDF334B}D:\program files\mass effect 3\mass effect 3\binaries\win32\masseffect3.exe] => (Allow) D:\program files\mass effect 3\mass effect 3\binaries\win32\masseffect3.exe
FirewallRules: [UDP Query User{758E298B-CC84-4BE6-B5CD-36401BB9D615}D:\program files\mass effect 3\mass effect 3\binaries\win32\masseffect3.exe] => (Allow) D:\program files\mass effect 3\mass effect 3\binaries\win32\masseffect3.exe
FirewallRules: [TCP Query User{0F1C2C59-DB5B-4846-AF95-975888C36EE8}C:\users\mikey colombo\downloads\neverwinter_nw.1.20130416a.6.exe] => (Allow) C:\users\mikey colombo\downloads\neverwinter_nw.1.20130416a.6.exe
FirewallRules: [UDP Query User{102A17AD-E7EF-453F-B9F8-A205D2C629AA}C:\users\mikey colombo\downloads\neverwinter_nw.1.20130416a.6.exe] => (Allow) C:\users\mikey colombo\downloads\neverwinter_nw.1.20130416a.6.exe
FirewallRules: [TCP Query User{D0ED64FE-FA33-448F-91C1-79EF465301DC}D:\program files\neverwinter\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) D:\program files\neverwinter\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [UDP Query User{03C0A1C7-20C2-4D87-BC22-F21A90D97813}D:\program files\neverwinter\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) D:\program files\neverwinter\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [{4B08A219-8A43-433D-B35C-3888E3D91F00}] => (Allow) C:\Users\Mikey Colombo\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{334B5A24-DCB6-4EF6-9FB0-095E811FA323}] => (Allow) C:\Users\Mikey Colombo\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{FE6052E0-2E53-46DB-A1C4-A2A1C908E30B}D:\program files\metro last light\metro last light\metrollbenchmark.exe] => (Allow) D:\program files\metro last light\metro last light\metrollbenchmark.exe
FirewallRules: [UDP Query User{857BE866-8F84-4EBA-822E-271316ED37EB}D:\program files\metro last light\metro last light\metrollbenchmark.exe] => (Allow) D:\program files\metro last light\metro last light\metrollbenchmark.exe
FirewallRules: [TCP Query User{398EC295-1D63-4948-86E1-774DF5488DF2}D:\program files\assassin's creed 3\assassin's creed 3\ac3sp.exe] => (Allow) D:\program files\assassin's creed 3\assassin's creed 3\ac3sp.exe
FirewallRules: [UDP Query User{A305488E-0DF9-461C-8B1A-878A8FFAC81C}D:\program files\assassin's creed 3\assassin's creed 3\ac3sp.exe] => (Allow) D:\program files\assassin's creed 3\assassin's creed 3\ac3sp.exe
FirewallRules: [TCP Query User{0B7EB9BB-56C6-4F2A-875B-61C00ED30304}D:\program files\dragon age origins\dragon age origins\bin_ship\daorigins.exe] => (Allow) D:\program files\dragon age origins\dragon age origins\bin_ship\daorigins.exe
FirewallRules: [UDP Query User{0411ADDF-0E47-4B50-ACF3-F0F04AB68CD5}D:\program files\dragon age origins\dragon age origins\bin_ship\daorigins.exe] => (Allow) D:\program files\dragon age origins\dragon age origins\bin_ship\daorigins.exe
FirewallRules: [{6297D537-5521-4022-A2D7-876E39109325}] => (Allow) D:\Program Files\Steam\SteamApps\common\Alan Wake\AlanWake.exe
FirewallRules: [{E1EA36C3-C13D-4067-A405-4E3BD212FCA4}] => (Allow) D:\Program Files\Steam\SteamApps\common\Alan Wake\AlanWake.exe
FirewallRules: [TCP Query User{F7029029-8E2A-4F51-B18C-316C71D1BAA4}C:\users\mikey colombo\downloads\utorrent.exe] => (Allow) C:\users\mikey colombo\downloads\utorrent.exe
FirewallRules: [UDP Query User{F5BB2F28-D2C9-409B-8CBA-DE16AE437304}C:\users\mikey colombo\downloads\utorrent.exe] => (Allow) C:\users\mikey colombo\downloads\utorrent.exe
FirewallRules: [{48C3CD67-7FF9-4182-9AD3-695868F37CA4}] => (Allow) D:\Program Files\Steam\SteamApps\common\Total War SHOGUN 2\Shogun2.exe
FirewallRules: [{1182CB99-DC78-4088-9FFE-8CB6E23C8F5F}] => (Allow) D:\Program Files\Steam\SteamApps\common\Total War SHOGUN 2\Shogun2.exe
FirewallRules: [{C3AA8194-7AE2-425E-A115-A2D168495C43}] => (Allow) D:\Program Files\Steam\SteamApps\common\Total War SHOGUN 2\data\encyclopedia\how_to_play.html
FirewallRules: [{3C7072FD-797B-4E71-A44C-D64460850088}] => (Allow) D:\Program Files\Steam\SteamApps\common\Total War SHOGUN 2\data\encyclopedia\how_to_play.html
FirewallRules: [{D84D65F9-F857-49BD-8DCF-FB899A560F13}] => (Allow) D:\Program Files\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_current_settings.bat
FirewallRules: [{295B5D27-111F-4CB9-91BA-B74DC8E1B5D1}] => (Allow) D:\Program Files\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_current_settings.bat
FirewallRules: [{5C08EB3C-2F85-4959-8BBE-ED765849474E}] => (Allow) D:\Program Files\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [{918C7B4D-0BAC-4F3E-A16B-C1E397A05438}] => (Allow) D:\Program Files\Steam\SteamApps\common\Total War SHOGUN 2\benchmarks\benchmark_specify_properties.bat
FirewallRules: [TCP Query User{8B1675BF-7624-4801-B502-F9080ABF7E34}D:\program files\steam\steam.exe] => (Allow) D:\program files\steam\steam.exe
FirewallRules: [UDP Query User{C7264F86-F767-43DB-8EAC-848E5B5F0B32}D:\program files\steam\steam.exe] => (Allow) D:\program files\steam\steam.exe
FirewallRules: [{B255A6BB-9800-446B-A0D2-EBADFA62F463}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{F557EB5A-94A7-4E71-8E47-A06AD5242E87}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{F130DD5C-AF1C-4C83-89DF-F1DDF87A65D0}] => (Allow) C:\Program Files\BitComet\BitComet.exe
FirewallRules: [{7E61DB60-0075-445A-A65B-EA6700301A8D}] => (Allow) C:\Program Files\BitComet\BitComet.exe
FirewallRules: [{C76A5929-3793-4749-912F-7CA51CA7B458}] => (Allow) D:\Program Files\Steam\SteamApps\common\Fable 3\FableLauncher.exe
FirewallRules: [{DC1B09EB-9B83-4590-9BB4-45EF5623DEBB}] => (Allow) D:\Program Files\Steam\SteamApps\common\Fable 3\FableLauncher.exe
FirewallRules: [{E80B2702-BC33-41E4-8517-62C0FE7943B7}] => (Allow) D:\Program Files\Steam\SteamApps\common\Fallout New Vegas\FalloutNVLauncher.exe
FirewallRules: [{25DFB96F-71F1-4CB5-8834-20FE523C2B11}] => (Allow) D:\Program Files\Steam\SteamApps\common\Fallout New Vegas\FalloutNVLauncher.exe
FirewallRules: [TCP Query User{D3075EBC-1837-4BE4-AF32-2519775CFBDE}D:\program files\steam\steamapps\common\fable 3\fable3.exe] => (Allow) D:\program files\steam\steamapps\common\fable 3\fable3.exe
FirewallRules: [UDP Query User{CD4D11B4-EF91-44EE-AF63-AE6588751108}D:\program files\steam\steamapps\common\fable 3\fable3.exe] => (Allow) D:\program files\steam\steamapps\common\fable 3\fable3.exe
FirewallRules: [{287A2786-3DB9-4E60-B8CC-7D857C53D659}] => (Allow) D:\Program Files\Steam\SteamApps\common\Crysis 2 Game of the Year\bin32\Crysis2Launcher.exe
FirewallRules: [{9FAF9D21-34F1-4A3C-8A9A-11CDD10A7CF6}] => (Allow) D:\Program Files\Steam\SteamApps\common\Crysis 2 Game of the Year\bin32\Crysis2Launcher.exe
FirewallRules: [{5B9A9186-3584-4A96-8A68-DA389B682D74}] => (Allow) D:\Program Files\Steam\SteamApps\common\Medal of Honor\Binaries\moh.exe
FirewallRules: [{9862A2E0-1FF4-4EF2-8FFB-C2F06B1563F4}] => (Allow) D:\Program Files\Steam\SteamApps\common\Medal of Honor\Binaries\moh.exe
FirewallRules: [TCP Query User{D9374230-8847-4524-A5B1-13F2C605182D}D:\program files\steam\steamapps\common\crysis 2 game of the year\bin32\crysis2.exe] => (Allow) D:\program files\steam\steamapps\common\crysis 2 game of the year\bin32\crysis2.exe
FirewallRules: [UDP Query User{1DB10606-2268-4411-9FE2-EEC806C18D68}D:\program files\steam\steamapps\common\crysis 2 game of the year\bin32\crysis2.exe] => (Allow) D:\program files\steam\steamapps\common\crysis 2 game of the year\bin32\crysis2.exe
FirewallRules: [TCP Query User{93AD4346-80CB-4EB1-A6A4-965A247310BE}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [UDP Query User{E200C889-767A-4514-A3D4-F0DDC26C7B3B}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [TCP Query User{09357D4D-503F-4153-83EB-06918DC70B88}D:\program files\outlast\outlast\binaries\win64\olgame.exe] => (Allow) D:\program files\outlast\outlast\binaries\win64\olgame.exe
FirewallRules: [UDP Query User{A1CFAEDF-7CB8-4256-8298-FBC5A2198B73}D:\program files\outlast\outlast\binaries\win64\olgame.exe] => (Allow) D:\program files\outlast\outlast\binaries\win64\olgame.exe
FirewallRules: [{31C8931D-FCDF-48C1-8AD2-032D4A2AEF72}] => (Block) D:\program files\outlast\outlast\binaries\win64\olgame.exe
FirewallRules: [{49B4CDC0-91DD-485F-A7EE-4E57449904D0}] => (Block) D:\program files\outlast\outlast\binaries\win64\olgame.exe
FirewallRules: [TCP Query User{29202C5C-2E0A-4BD0-8E34-B434DE27537A}D:\program files\blacklist\splinter cell blacklist\src\system\blacklist_dx11_game.exe] => (Allow) D:\program files\blacklist\splinter cell blacklist\src\system\blacklist_dx11_game.exe
FirewallRules: [UDP Query User{61D7E8E9-3948-47E0-A0E8-FD13F4FB6995}D:\program files\blacklist\splinter cell blacklist\src\system\blacklist_dx11_game.exe] => (Allow) D:\program files\blacklist\splinter cell blacklist\src\system\blacklist_dx11_game.exe
FirewallRules: [{E3BE231F-A069-4D91-81C3-96E73C936BC9}] => (Block) D:\program files\blacklist\splinter cell blacklist\src\system\blacklist_dx11_game.exe
FirewallRules: [{FDBA41CD-B44F-42EE-8AC1-473EE890A019}] => (Block) D:\program files\blacklist\splinter cell blacklist\src\system\blacklist_dx11_game.exe
FirewallRules: [{4E86DD0B-B863-4D60-B48C-39C3C9BB6647}] => (Allow) D:\Program Files\Steam\SteamApps\common\SS2\Shock2.exe
FirewallRules: [{C4ACD698-5431-4253-B894-18772132275E}] => (Allow) D:\Program Files\Steam\SteamApps\common\SS2\Shock2.exe
FirewallRules: [TCP Query User{69684E50-AA9B-4CBD-B1C7-7D6800FF823E}D:\program files\flicks\3dmgame-the.stanley.parable.cracked-3dm\the stanley parable\stanley.exe] => (Allow) D:\program files\flicks\3dmgame-the.stanley.parable.cracked-3dm\the stanley parable\stanley.exe
FirewallRules: [UDP Query User{8E7A91E3-23F6-4BB6-9F26-9A90D59329BD}D:\program files\flicks\3dmgame-the.stanley.parable.cracked-3dm\the stanley parable\stanley.exe] => (Allow) D:\program files\flicks\3dmgame-the.stanley.parable.cracked-3dm\the stanley parable\stanley.exe
FirewallRules: [{9CF0BEDA-81FC-444A-A8BB-D918F2095BCF}] => (Block) D:\program files\flicks\3dmgame-the.stanley.parable.cracked-3dm\the stanley parable\stanley.exe
FirewallRules: [{5B4D3D9E-8143-4507-B362-E0CD236A3C24}] => (Block) D:\program files\flicks\3dmgame-the.stanley.parable.cracked-3dm\the stanley parable\stanley.exe
FirewallRules: [{3FFD6A1A-43C1-4C14-9F98-619DB829BD72}] => (Allow) D:\Program Files\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{D18339DB-7A8E-4FBE-B2A1-5B3A8FC681D5}] => (Allow) D:\Program Files\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{58084BFC-0D1E-4A4C-8EEA-240F8CCD9F93}] => (Allow) D:\Program Files\Steam\SteamApps\common\XCom-Enemy-Unknown\Binaries\Win32\XComGame.exe
FirewallRules: [{4DB98351-8D9B-4BF3-99AD-C63D7058C6CD}] => (Allow) D:\Program Files\Steam\SteamApps\common\XCom-Enemy-Unknown\Binaries\Win32\XComGame.exe
FirewallRules: [{B2619D5D-B28A-4292-BA0A-DB66A4400A9D}] => (Allow) D:\Program Files\Flicks\Vuze\Azureus.exe
FirewallRules: [{A6716E6E-96FC-4FF8-BA05-223AAA28697F}] => (Allow) D:\Program Files\Flicks\Vuze\Azureus.exe
FirewallRules: [{4C9263A4-76E7-4981-A80D-DE224119F8D4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{B2F5C668-B59C-4EA0-B68A-D75F236D1440}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{2D93FA33-6772-4FE3-99B2-E2F6B13ACA64}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{701A44F4-76E3-41E9-A5BE-41E3DBF909E0}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{4719A373-5085-4493-A100-F17423618333}] => (Allow) D:\Program Files\Steam\SteamApps\common\Undertale\UNDERTALE.exe
FirewallRules: [{AEE95A7C-D238-4E16-A6BB-542EF3634438}] => (Allow) D:\Program Files\Steam\SteamApps\common\Undertale\UNDERTALE.exe
FirewallRules: [{EF51AB8C-3D37-4F92-A044-9BDF7D610287}] => (Allow) D:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [{37837C91-8F23-4817-9CB2-C75799B117AE}] => (Allow) D:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [{E25E0A82-3F2B-4FAA-8BA4-1BC1FA1129CC}] => (Allow) D:\Program Files (x86)\Origin Games\Titanfall\Titanfall.exe
FirewallRules: [{3DD6AD49-84DE-4CB0-B8AE-125D75B757F2}] => (Allow) D:\Program Files (x86)\Origin Games\Titanfall\Titanfall.exe
FirewallRules: [{A4E56775-4713-4775-AA91-130711816D2E}] => (Allow) D:\Program Files\Flicks\Vuze\Azureus.exe
FirewallRules: [{2AA0F32C-E3C8-4408-B90B-1161F336773C}] => (Allow) D:\Program Files\Flicks\Vuze\Azureus.exe
FirewallRules: [{37CDE6F4-E272-4D00-ABF3-97AF94DC3869}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{7623F27E-79C9-4601-9F3F-49CDB5CDE520}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe
FirewallRules: [{3BB15888-0FDB-4BDE-BC09-CEB38B319AED}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe
FirewallRules: [TCP Query User{2439CE65-2AB6-489B-B64E-4620A29C774E}C:\program files (x86)\vuze\azureus.exe] => (Allow) C:\program files (x86)\vuze\azureus.exe
FirewallRules: [UDP Query User{CAB6E644-C6EE-4279-9C7F-982BDDA7F887}C:\program files (x86)\vuze\azureus.exe] => (Allow) C:\program files (x86)\vuze\azureus.exe
FirewallRules: [{E3DFA850-26CA-4808-82B2-323A915F8B18}] => (Allow) C:\Users\Mikey Colombo\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{8E40BC6E-B9BA-43B1-8678-40068F45470B}] => (Allow) C:\Users\Mikey Colombo\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{B90AD430-2969-4040-9844-F816B2A2DE76}] => (Allow) C:\Users\Mikey Colombo\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{1B93BF54-F25D-4FE6-A40A-63D7541C467C}] => (Allow) C:\Users\Mikey Colombo\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{BFCC7F4D-50B4-4411-9645-8C60CA8202AC}] => (Allow) C:\Users\Mikey Colombo\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E8774250-60EB-4DB5-92C4-3C22CAE8FCB1}] => (Allow) C:\Users\Mikey Colombo\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{57FE8101-5506-42FE-AA31-EA1940BE15AB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
==================== Restore Points =========================
 
ATTENTION: System Restore is disabled
 
==================== Faulty Device Manager Devices =============
 
Name: avast! SecureLine TAP Adapter v3
Description: avast! SecureLine TAP Adapter v3
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: aswTap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (01/23/2016 11:53:46 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.
 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
 
System Error:
Access is denied.
.
 
Error: (01/23/2016 11:19:04 AM) (Source: nssm) (EventID: 1018) (User: )
Description: Failed to read registry value AppDirectory:
The operation completed successfully.
 
Error: (01/21/2016 07:54:15 PM) (Source: nssm) (EventID: 1018) (User: )
Description: Failed to read registry value AppDirectory:
The operation completed successfully.
 
Error: (01/21/2016 07:49:23 PM) (Source: nssm) (EventID: 1018) (User: )
Description: Failed to read registry value AppDirectory:
The operation completed successfully.
 
Error: (01/17/2016 12:02:43 PM) (Source: nssm) (EventID: 1018) (User: )
Description: Failed to read registry value AppDirectory:
The operation completed successfully.
 
Error: (01/16/2016 06:02:31 PM) (Source: nssm) (EventID: 1018) (User: )
Description: Failed to read registry value AppDirectory:
The operation completed successfully.
 
Error: (01/16/2016 06:02:29 PM) (Source: nssm) (EventID: 1018) (User: )
Description: Failed to read registry value AppDirectory:
The operation completed successfully.
 
Error: (01/16/2016 06:01:43 PM) (Source: nssm) (EventID: 1018) (User: )
Description: Failed to read registry value AppDirectory:
The operation completed successfully.
 
Error: (01/16/2016 05:59:36 PM) (Source: nssm) (EventID: 1018) (User: )
Description: Failed to read registry value AppDirectory:
The operation completed successfully.
 
Error: (01/11/2016 05:30:43 PM) (Source: nssm) (EventID: 1018) (User: )
Description: Failed to read registry value AppDirectory:
The operation completed successfully.
 
 
System errors:
=============
Error: (01/23/2016 11:22:11 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}
 
Error: (01/23/2016 11:20:24 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable
 
Error: (01/23/2016 11:20:24 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable
 
Error: (01/23/2016 11:20:23 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable
 
Error: (01/23/2016 11:20:23 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable
 
Error: (01/23/2016 11:20:23 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable
 
Error: (01/23/2016 11:20:22 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable
 
Error: (01/23/2016 11:20:22 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable
 
Error: (01/23/2016 11:20:21 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable
 
Error: (01/23/2016 11:20:21 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable
 
 
==================== Memory info =========================== 
 
Processor: AMD FX™-8350 Eight-Core Processor 
Percentage of memory in use: 19%
Total physical RAM: 16381.52 MB
Available physical RAM: 13203.15 MB
Total Virtual: 18813.52 MB
Available Virtual: 15275.97 MB
 
==================== Drives ================================
 
Drive c: (SSD Drive) (Fixed) (Total:106.47 GB) (Free:34.85 GB) NTFS
Drive d: (Hard Drive) (Fixed) (Total:1863.01 GB) (Free:1185.64 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 0A6C66D1)
Partition 1: (Active) - (Size=450 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=106.5 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=4.9 GB) - (Type=27)
 
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: EEF663EC)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)
 
==================== End of Addition.txt ============================

 



BC AdBot (Login to Remove)

 


#2 olgun52

olgun52

  • Malware Response Team
  • 3,784 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:59 AM

Posted 23 January 2016 - 04:44 PM

Hello Mikey42087 and Welcome to the BleepingComputer. :welcome:  
 
My name is Yılmaz and I'll help you with the cleanup of malware from your computer.

Before we move on, please read the following points carefully.

  • Please complete all steps in the specified order.
  • Even if tools don't find malware, I want you to post the logfiles anyway.
  • Please copy and paste the logfiles directly into your posts. Please do not attach them unless you are instructed to do so.
  • Read the instructions carefully. If you have problems, stop what you  were doing and describe the problems you encountered as precisely as  you can.
  • Don't install or uninstall software during the cleanup unless you are told to do so.
  • Ensure your external and/or USB drives are inserted during always the scan.
  • If you can't answer for the next few days, please let me know. If  you haven't answered within 5 days, I am assuming that you don't need  help anymore and your topic will be closed.
  • I can not guarantee that we will find and be able to remove all  malware. The cleaning process is not instant. Please continue to review  my answers until I tell you that your computer is clean
  • Please reply to this thread. Do not start a new topic
  • As my first language is not English, please do not use slang or idioms. It could be hard for me to understand.
  • Please open as administrator  the computer. How is open as administrator  the computer?
  • Disable your AntiVirus and AntiSpyware applications, as they will  interfere with our tools and the removal. If you are unsure how to do  this, please refer to get help here

Thanks
   
I am currently reviewing your log.I will be back with a fix for your problem as soon as possible.Please be patient with me during this time.
---------------------------------------------
Are you here with me ?
 
Sincerely
:hello:


Best regards
 
paypal.gif
If you wish to show appreciation and support me personally fighting against malware, then you can consider a donation. Thank you. :thumbup2:
Malware fix forum
If I don't reply within 24 hours please PM me!

 


 


#3 olgun52

olgun52

  • Malware Response Team
  • 3,784 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:59 AM

Posted 27 January 2016 - 05:15 PM

Hello,

 

4 Day Inactivity

This is the third day since my last post. Are you still there?

If you need more time, just let me know.

If you do not post within 24 hours, this thread will be closed due to inactivity.


Best regards
 
paypal.gif
If you wish to show appreciation and support me personally fighting against malware, then you can consider a donation. Thank you. :thumbup2:
Malware fix forum
If I don't reply within 24 hours please PM me!

 


 


#4 olgun52

olgun52

  • Malware Response Team
  • 3,784 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:59 AM

Posted 05 February 2016 - 05:45 PM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.

Best regards
 
paypal.gif
If you wish to show appreciation and support me personally fighting against malware, then you can consider a donation. Thank you. :thumbup2:
Malware fix forum
If I don't reply within 24 hours please PM me!

 


 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users