Publicité
Publicité
Format du document : text/plain
Prévisualisation
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-09-2017
Ran by raf (30-09-2017 19:15:27)
Running from C:\Users\raf\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2015-12-25 00:46:07)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2888016549-2526535942-652807552-500 - Administrator - Disabled)
Guest (S-1-5-21-2888016549-2526535942-652807552-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2888016549-2526535942-652807552-1003 - Limited - Enabled)
raf (S-1-5-21-2888016549-2526535942-652807552-1000 - Administrator - Enabled) => C:\Users\raf
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Microsoft Security Essentials (Disabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189}
AS: Microsoft Security Essentials (Disabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Disabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.130 - Adobe Systems Incorporated)
Age of Wonders III (HKLM\...\Steam App 226840) (Version: - Triumph Studios)
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 376.33 - NVIDIA Corporation) Hidden
Avast Antivirus Gratuit (HKLM-x32\...\Avast Antivirus) (Version: 17.6.2310 - AVAST Software)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlerite (HKLM\...\Steam App 504370) (Version: - Stunlock Studios)
Blood Bowl 2 (HKLM\...\Steam App 236690) (Version: - Cyanide Studios)
Call of Duty 4: Modern Warfare (HKLM\...\Steam App 7940) (Version: - Infinity Ward)
CCleaner (HKLM\...\CCleaner) (Version: 5.23 - Piriform)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
CPUID HWMonitor 1.28 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.4.0.0190 - Disc Soft Ltd)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Disc Jam (HKLM\...\Steam App 415880) (Version: - High Horse Entertainment)
Divinity: Original Sin 2 (HKLM\...\Steam App 435150) (Version: - Larian Studios)
Dota 2 (HKLM\...\Steam App 570) (Version: - Valve)
DriversCloud.com (64 bits) (HKLM\...\{0FFDC804-21EE-4283-ADBA-6A1958EB9525}) (Version: 8.0.3.1 - Cybelsoft)
Duelyst (HKLM\...\Steam App 291410) (Version: - Counterplay Games Inc.)
f.lux (HKU\S-1-5-21-2888016549-2526535942-652807552-1000\...\Flux) (Version: - )
Garry's Mod (HKLM\...\Steam App 4000) (Version: - Facepunch Studios)
Google Chrome (HKLM-x32\...\{0B5D7DA7-9220-392F-89C6-4C75AB36E977}) (Version: 61.0.3163.100 - Google, Inc.)
Google Drive (HKLM-x32\...\{F9A2761E-C1E4-4384-92A3-5732C9738327}) (Version: 2.34.6717.9565 - Google, Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Grim Dawn (HKLM\...\Steam App 219990) (Version: - Crate Entertainment)
H1Z1: King of the Kill (HKLM\...\Steam App 433850) (Version: - Daybreak Game Company)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
HiSuite (HKLM-x32\...\Hi Suite) (Version: 1.0 - Huawei Technologies Co.,Ltd)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2867 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: - Tonec Inc.)
Java 8 Update 144 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
League of Legends (HKLM-x32\...\{3E75652D-99B1-417E-B163-BEF33CAD3F16}) (Version: 3.0.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
Logitech - Assistant pour jeux vidéo 8.84 (HKLM\...\Logitech Gaming Software) (Version: 8.84.15 - Logitech Inc.)
LogMeIn Hamachi (HKLM-x32\...\{BE82D2D7-6CA2-43B3-8C22-CCF6405806E7}) (Version: 2.2.0.579 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.579 - LogMeIn, Inc.)
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{45CD67FD-3218-4207-A0A2-BC41245189E3}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mises à jour NVIDIA 23.1.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 23.1.0.0 - NVIDIA Corporation) Hidden
Mozilla Firefox 56.0 (x86 fr) (HKLM-x32\...\Mozilla Firefox 56.0 (x86 fr)) (Version: 56.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 56.0.0.6478 - Mozilla)
Mumble 1.2.12 (HKLM-x32\...\{EF30BA16-8DAB-4EA5-AF2C-D4F0D9B0B0CB}) (Version: 1.2.12 - Thorvald Natvig)
MXMCLIENT (HKLM-x32\...\MXM) (Version: - NCSOFT)
NC Launcher (HKLM-x32\...\NCLauncherS_plaync) (Version: - NCSOFT)
Nidhogg 2 (HKLM\...\Steam App 535520) (Version: - Messhof)
NVIDIA GeForce Experience 3.2.0.96 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.2.0.96 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NVIDIA Pilote graphique 376.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.33 - NVIDIA Corporation)
NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.2.0.96 - NVIDIA Corporation) Hidden
NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 2.0.0.0 - NVIDIA Corporation) Hidden
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Panneau de configuration NVIDIA 376.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 376.33 - NVIDIA Corporation) Hidden
Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 1.12.0016 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7634 - Realtek Semiconductor Corp.)
SafeZone Stable 4.58.2552.909 (HKLM-x32\...\SafeZone 4.58.2552.909) (Version: 4.58.2552.909 - Avast Software) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0350 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 3.2.0.96 - NVIDIA Corporation) Hidden
SpeedRunners (HKLM\...\Steam App 207140) (Version: - DoubleDutch Games)
Split/Second (HKLM-x32\...\{28526951-55EF-4901-A0CA-B9AC966D1DD1}) (Version: 1.00.0000 - Disney Interactive Studios)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Styx: Shards of Darkness (HKLM\...\Steam App 355790) (Version: - Cyanide Studio)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
TowerFall Ascension (HKLM\...\Steam App 251470) (Version: - Matt Thorson)
Tunngle (HKLM-x32\...\Tunngle_is1) (Version: 5.8.9 - Tunngle.net GmbH)
Viber (HKLM-x32\...\{E6E2EDA6-2D95-43F9-90C8-D7F1F2ABF800}) (Version: 6.7.0.1095 - Viber Media Inc.) Hidden
Viber (HKU\S-1-5-21-2888016549-2526535942-652807552-1000\...\{a3cd6118-eaea-45ca-b39d-abf3db2499d7}) (Version: 6.7.0.1095 - Viber Media Inc.)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.6 - VideoLAN)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Warhammer 40,000: Dawn of War III (HKLM\...\Steam App 285190) (Version: - Relic Entertainment)
Windows Driver Package - Intel (NETwNs64) net (07/21/2014 17.1.0.19) (HKLM\...\019CE8430E6225A66BDAA6E8FA6945C1DCB3D213) (Version: 07/21/2014 17.1.0.19 - Intel)
Windows Driver Package - Intel (NETwNs64) net (07/22/2014 15.13.0.2) (HKLM\...\CFFA790B2E30D10D1C999BCAE43FE5F95339385D) (Version: 07/22/2014 15.13.0.2 - Intel)
Windows Driver Package - Intel net (07/21/2014 17.1.0.19) (HKLM\...\43AB7D309F2F48799D5CBC6CA661462828F509AB) (Version: 07/21/2014 17.1.0.19 - Intel)
Windows Driver Package - Intel net (07/22/2014 15.13.0.2) (HKLM\...\EDEC77655623290152D5785E99A3C58B8BD2AEAF) (Version: 07/22/2014 15.13.0.2 - Intel)
WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies)
WinRAR 5.30 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH)
Worms W.M.D (HKLM\...\Steam App 327030) (Version: - Team17 Digital Ltd)
Yu-Gi-Oh! Legacy of the Duelist (HKLM\...\Steam App 480650) (Version: - Other Ocean Interactive)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2015-08-14] (Tonec Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-08-31] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-08-31] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-08-31] (Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-09-11] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-09-11] (AVAST Software)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-09-11] (AVAST Software)
ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-08-31] (Google)
ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2014-06-24] (Safer-Networking Ltd.)
ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2014-06-24] (Safer-Networking Ltd.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-11-18] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-11-18] (Alexander Roshal)
ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-09-11] (AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes)
ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-08-31] (Google)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2012-09-28] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2016-12-11] (NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-09-11] (AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes)
ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2014-06-24] (Safer-Networking Ltd.)
ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2014-06-24] (Safer-Networking Ltd.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-11-18] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-11-18] (Alexander Roshal)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1B92E9CF-5394-4342-AB26-68147C28CF8B} - System32\Tasks\{E2B8CCAC-778D-45BF-BA5D-36AD15CE8516} => C:\Windows\system32\pcalua.exe [2015-12-28] (Microsoft Corporation)
Task: {2B6259A6-224E-4261-9D2A-327C1B025F91} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-09-28] (Piriform Ltd)
Task: {48AFC08D-EE81-4FCE-92B3-4995A2E8AF33} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.)
Task: {5AFAAB06-AFAF-4136-84FB-ED9D7017FAF2} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-12-13] (NVIDIA Corporation)
Task: {6C75D317-4239-45ED-A079-6EFCB490D224} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-12-13] (NVIDIA Corporation)
Task: {7514269A-49BE-4CEA-B230-9CA0264076B4} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-12-13] (NVIDIA Corporation)
Task: {772E3F66-A1D0-4966-81DE-D851C35C9479} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {773081DC-94BF-4C39-8A38-AAE6CB132796} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2016-12-13] (NVIDIA Corporation)
Task: {8241A3B4-1423-46FA-9108-59807EC943FD} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-12-13] (NVIDIA Corporation)
Task: {8858E239-7D18-44E8-A900-265862403CAF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-25] (Google Inc.)
Task: {8B28DEE6-6A0C-4C6D-B3C4-8E6047836B3B} - System32\Tasks\SafeZone scheduled Autoupdate 1478858166 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-08-04] (Avast Software)
Task: {A831EE09-8BC2-4595-8F81-6CEDD53DB10C} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-12-13] (NVIDIA Corporation)
Task: {B7DD8C1E-D080-406D-9352-9248AA76FC95} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\\MpCmdRun.exe [2016-11-14] (Microsoft Corporation)
Task: {BD9603E4-16B2-4453-92C6-928AB7CB2187} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {C1BC87A5-8D7F-4DEE-8C5D-16E3CDE3DB53} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {CC09B62A-E486-44EC-AA6B-007E563D7A94} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-09-12] (Adobe Systems Incorporated)
Task: {CF58F329-B0F7-4C6C-A0DB-90C462EB405D} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-09-11] (AVAST Software)
Task: {D3D48314-8123-4B06-A3C9-B40575E9B43E} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-12-13] (NVIDIA Corporation)
Task: {E70C0386-A753-4819-982B-60A3186027A0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-25] (Google Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\raf\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\360c22b137d62ce9\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData
==================== Loaded Modules (Whitelisted) ==============
2016-11-08 19:04 - 2016-12-12 04:37 - 000018880 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2013-09-05 00:17 - 2013-09-05 00:17 - 004300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2010-10-20 15:23 - 2010-10-20 15:23 - 008801632 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2017-07-26 09:58 - 2017-07-26 09:58 - 000192200 _____ () C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
2016-09-28 18:26 - 2016-09-28 18:26 - 000069632 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll
2017-09-11 21:05 - 2017-09-11 21:05 - 000067408 _____ () C:\Program Files\AVAST Software\Avast\x64\module_lifetime.dll
2017-09-11 21:04 - 2017-09-11 21:04 - 000169832 _____ () c:\Program Files\AVAST Software\Avast\x64\vaarclient.dll
2017-09-27 17:29 - 2017-09-27 17:28 - 000834224 _____ () C:\Program Files\AVAST Software\Avast\x64\ffl2.dll
2017-09-11 21:05 - 2017-09-11 21:05 - 000286712 _____ () c:\Program Files\AVAST Software\Avast\x64\StreamBack.dll
2016-11-08 19:07 - 2016-12-13 01:35 - 001147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-08 19:07 - 2016-12-13 01:36 - 004489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2015-12-25 21:08 - 2016-12-11 20:47 - 000134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2017-09-11 21:05 - 2017-09-11 21:05 - 000059040 _____ () C:\Program Files\AVAST Software\Avast\module_lifetime.dll
2017-09-11 21:05 - 2017-09-11 21:05 - 000167096 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2017-09-11 21:05 - 2017-09-11 21:05 - 000211904 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll
2017-09-11 21:05 - 2017-09-11 21:05 - 000241960 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
2017-09-11 21:05 - 2017-09-11 21:05 - 000149568 _____ () C:\Program Files\AVAST Software\Avast\network_notifications.dll
2017-09-29 22:37 - 2017-09-29 22:37 - 005890352 _____ () C:\Program Files\AVAST Software\Avast\defs\17092902\algo.dll
2017-09-27 17:29 - 2017-09-27 17:28 - 000692408 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2017-09-11 21:05 - 2017-09-11 21:05 - 000241448 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2017-07-11 17:38 - 2017-07-11 17:38 - 067109376 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2017-09-11 21:04 - 2017-09-11 21:04 - 000233768 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2016-11-08 19:04 - 2016-12-12 04:37 - 000020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
2016-11-08 19:07 - 2016-12-13 01:35 - 000900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-08 19:07 - 2016-12-13 01:35 - 003774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2015-12-20 20:41 - 2015-12-20 20:41 - 000143680 _____ () C:\Program Files (x86)\Mumble\mumble_ol.dll
2013-09-05 00:14 - 2013-09-05 00:14 - 004300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2010-10-20 15:45 - 2010-10-20 15:45 - 008801120 _____ () C:\Program Files (x86)\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2015-12-20 20:42 - 2015-12-20 20:42 - 000229184 _____ () C:\Program Files (x86)\Mumble\opus.dll
2015-12-20 20:49 - 2015-12-20 20:49 - 003367768 _____ () C:\Program Files (x86)\Mumble\libsndfile-1.dll
2015-12-20 20:46 - 2015-12-20 20:46 - 000083776 _____ () C:\Program Files (x86)\Mumble\zlib1.dll
2015-12-20 20:47 - 2015-12-20 20:47 - 004452160 _____ () C:\Program Files (x86)\Mumble\libmysql.dll
2015-12-20 20:42 - 2015-12-20 20:42 - 000177472 _____ () C:\Program Files (x86)\Mumble\speex.dll
2015-12-20 20:42 - 2015-12-20 20:42 - 000082752 _____ () C:\Program Files (x86)\Mumble\celt0.0.7.0.sse2.dll
2015-12-20 20:42 - 2015-12-20 20:42 - 000098624 _____ () C:\Program Files (x86)\Mumble\celt0.0.11.0.sse2.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000045456 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\aoc.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000029072 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\arma2.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000029072 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\bf1942.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000047504 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\bf2.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000030608 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\bf2142.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000047504 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\bf3.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000029072 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\bfbc2.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000029072 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\bfheroes.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000030608 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\blacklight.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000032144 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\borderlands.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000030608 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\borderlands2.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000029072 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\breach.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000029072 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\cod2.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000031120 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\cod4.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000029072 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\cod5.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000029072 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\codmw2.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000029072 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\codmw2so.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000030608 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\cs.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000045968 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\dys.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000031120 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\etqw.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000045968 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\gmod.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000029584 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\gtaiv.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000031120 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\gw.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000045968 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\insurgency.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000029072 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\jc2.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000031120 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\l4d.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000040336 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\l4d2.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000027536 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\link.dll
2016-03-11 19:26 - 2017-01-28 11:46 - 000031120 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\lol.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000031120 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\lotro.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000079760 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\manual.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000031632 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\sto.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000029072 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\ut2004.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000029072 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\ut3.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000040848 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\ut99.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000033168 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\wolfet.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000040336 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\wow.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData\TEMP:6B50FDB5 [119]
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2009-06-10 23:00 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2888016549-2526535942-652807552-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\raf\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{A2CF288A-E9E1-493A-B5C9-02CA152B77E2}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{53533D20-58D5-465E-A5F1-E5A2FAF042FC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [TCP Query User{08A01B91-FCDD-44E1-BDD3-4B272A4E559D}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{46DA387B-669E-4C84-8255-697B61E9EBF4}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [{BF08B978-BC51-434D-8C08-D8A041CBEA6F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B80D6693-177F-4BCD-AFB4-FDF26797940A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{38164639-2D76-4B16-997E-E0D858EB5D7D}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{4548926D-3B68-4A6A-B678-64D91FC0666B}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [{5A4081DB-125E-4DE3-A2C9-FC56619FEE54}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{CC6A0912-8C60-4D25-85DB-5DD1C547E87A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{B8091E30-A6AF-41D6-A3D9-FFCBD91C1E12}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{EF56B5F8-F93C-4B33-A758-CFF44C3BB54F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{266D01BE-AE7D-46BC-BA42-F997BFE41DAF}] => (Allow) C:\Program Files\DriversCloud.com\MCDetection.exe
FirewallRules: [{F7F99EA5-FDA2-4987-B0AE-286C5E230690}] => (Allow) C:\Program Files\DriversCloud.com\MCDetection.exe
FirewallRules: [{E6AFF20C-22F1-469C-BA21-7F2966C29C70}] => (Allow) C:\Users\raf\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{A831AFE8-E43D-4E59-A000-D4D4E1F4C6D5}] => (Allow) C:\Users\raf\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{DF74F6F9-4CC3-4613-A0B6-C4E01F884012}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{1F839C6C-EC14-47A7-8646-85C0400101CC}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [{F6F3F883-9319-4BE3-B1B9-7824F48C3270}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{AA5C393F-D308-42E2-B94C-6DC6412DEA34}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [TCP Query User{395575CD-69AC-49A0-AFED-E762F786C2BE}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [UDP Query User{AD2B813F-2E38-4331-B2F5-B0191BA9B136}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [TCP Query User{75358317-9CAF-43BE-B2A3-939251C66D83}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [UDP Query User{23FF77FD-A698-4DC0-9E54-07E02F8202EA}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [{91AE313E-8B90-41ED-8188-21345DCF1082}] => (Block) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [{5B1B26A6-EFED-4C22-8DC1-1D87C2C45FC1}] => (Block) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [{C3CA08B2-BD0B-41BA-A051-A83D88BEC03C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\WormsWMD\Worms W.M.D.exe
FirewallRules: [{3E3CEC4E-3389-41D3-8340-57458259677C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\WormsWMD\Worms W.M.D.exe
FirewallRules: [TCP Query User{328341B1-7CE4-4D30-B4E6-9339F29C826D}C:\program files (x86)\starcraft ii\versions\base47185\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base47185\sc2_x64.exe
FirewallRules: [UDP Query User{9783EF98-7459-47F2-BF60-AA9292EB8070}C:\program files (x86)\starcraft ii\versions\base47185\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base47185\sc2_x64.exe
FirewallRules: [{0D3E667E-32AC-4EEF-9CF4-DB09AE2D9E87}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Blood Bowl 2\BloodBowl2.exe
FirewallRules: [{6DA06DEC-4A65-45D2-9D54-396C9E003562}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Blood Bowl 2\BloodBowl2.exe
FirewallRules: [TCP Query User{6D7190AD-4E7E-4495-8852-96269D451DD6}C:\program files (x86)\steam\steamapps\common\blood bowl 2\bloodbowl2_dx_32.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\blood bowl 2\bloodbowl2_dx_32.exe
FirewallRules: [UDP Query User{C18DED20-2392-4BEE-AAA5-2FE557201469}C:\program files (x86)\steam\steamapps\common\blood bowl 2\bloodbowl2_dx_32.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\blood bowl 2\bloodbowl2_dx_32.exe
FirewallRules: [{1DAE6C80-407B-4A94-BF1D-AD301E070DE5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TowerFall\TowerFall.exe
FirewallRules: [{5124951A-C67B-4899-BA21-C6727DD1901A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TowerFall\TowerFall.exe
FirewallRules: [{BAC97140-D8E9-4E80-B283-0D290DA9DA91}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{11EB4AD9-21BE-4C74-8AD6-CFC8A2E86503}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{5437DDDC-2A5A-447D-A843-CD1F265DCBB4}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{D494FD3E-AF3E-4B0B-9AE9-8DA5F0BC4F16}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{DCF043B2-115B-44CC-B5D3-60F5221F5C64}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [TCP Query User{DF64A9AD-1927-4FBB-ADA4-3FB7EA4AD469}C:\program files\dying light\dyinglightgame.exe] => (Allow) C:\program files\dying light\dyinglightgame.exe
FirewallRules: [UDP Query User{5A6C9100-C70C-4A11-93D6-6E4DA419585C}C:\program files\dying light\dyinglightgame.exe] => (Allow) C:\program files\dying light\dyinglightgame.exe
FirewallRules: [TCP Query User{2E5F819B-F9C7-4EC6-AF8C-E317B9353F2B}C:\program files (x86)\java\jre1.8.0_111\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_111\bin\javaw.exe
FirewallRules: [UDP Query User{46B06826-7E15-4B6A-B171-68643F3F9A5A}C:\program files (x86)\java\jre1.8.0_111\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_111\bin\javaw.exe
FirewallRules: [TCP Query User{DFAD772D-B556-405F-A807-CAC8ACA0F06F}C:\program files (x86)\heroes of the storm\versions\base48027\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base48027\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{944B9FD8-1932-41C4-A829-568CF50C34AE}C:\program files (x86)\heroes of the storm\versions\base48027\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base48027\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{2D468571-CFFE-4AE3-B76D-A0CE62585EAC}C:\program files (x86)\battle.net\battle.net.8142\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8142\battle.net.exe
FirewallRules: [UDP Query User{948DC602-2991-4EDF-B1F6-32EF52F999F6}C:\program files (x86)\battle.net\battle.net.8142\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8142\battle.net.exe
FirewallRules: [TCP Query User{A53901FF-E7F7-44BA-BDA1-E286E9250E9A}C:\program files (x86)\heroes of the storm\versions\base48297\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base48297\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{D759C74D-CE57-48C5-A399-B320EA6A5B3A}C:\program files (x86)\heroes of the storm\versions\base48297\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base48297\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{216E6591-3C14-48CF-AB20-62A1C72612E5}C:\program files (x86)\starcraft ii\versions\base48258\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base48258\sc2_x64.exe
FirewallRules: [UDP Query User{90C8138F-3DE2-4437-A920-D1DECC41C617}C:\program files (x86)\starcraft ii\versions\base48258\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base48258\sc2_x64.exe
FirewallRules: [{EFBAA619-A4C3-40CB-9BF9-975F266F38A7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Battlerite\Battlerite.exe
FirewallRules: [{51E8BBBA-F5C0-4CC1-BF48-66859239398B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Battlerite\Battlerite.exe
FirewallRules: [{8E296F76-1942-4742-9169-D10364C41DD5}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{5FE9F0F0-86E7-4B05-A13B-9F49513C1985}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{16491DAA-FD2F-40E8-9AEF-CC5E3E0E9E43}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Yu-Gi-Oh! Legacy of the Duelist\YuGiOh.exe
FirewallRules: [{B4FA63E1-396F-49CC-B7ED-680224806FD1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Yu-Gi-Oh! Legacy of the Duelist\YuGiOh.exe
FirewallRules: [{282277CC-CF78-4570-8D3D-F1938FFF6054}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpeedRunners\SpeedRunners.exe
FirewallRules: [{713DDA49-77D7-4315-B582-4776B26102D8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpeedRunners\SpeedRunners.exe
FirewallRules: [{3E080ADC-6365-48D1-82AB-94AEE4AE31EF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Disc Jam\Icon.exe
FirewallRules: [{6985AE76-442F-4BB6-95B0-1C267AB95D87}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Disc Jam\Icon.exe
FirewallRules: [TCP Query User{2F4C8C4B-0BE2-436D-88CC-47EF96F77D6C}C:\program files (x86)\steam\steamapps\common\disc jam\discjam\binaries\win64\icon-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\disc jam\discjam\binaries\win64\icon-win64-shipping.exe
FirewallRules: [UDP Query User{702BC550-0D60-4D21-8643-D97DCD40F094}C:\program files (x86)\steam\steamapps\common\disc jam\discjam\binaries\win64\icon-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\disc jam\discjam\binaries\win64\icon-win64-shipping.exe
FirewallRules: [{A9FA38CB-C187-4960-A4AE-9BD281957B31}] => (Block) C:\program files (x86)\steam\steamapps\common\disc jam\discjam\binaries\win64\icon-win64-shipping.exe
FirewallRules: [{EFE84ED0-A1A7-4DF2-B1F0-E7399168BC6B}] => (Block) C:\program files (x86)\steam\steamapps\common\disc jam\discjam\binaries\win64\icon-win64-shipping.exe
FirewallRules: [{0EDA911D-45BE-44A6-9371-0034A40EA63C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{A7523657-13AD-4C42-8717-D991DD64BD25}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{34540B28-688A-4EED-8034-01733228B58C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3Launcher.exe
FirewallRules: [{B73A8EE9-92D5-4C96-90B5-D730662A3EBC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3Launcher.exe
FirewallRules: [{E6865E41-DF0A-4065-9DF6-81A92AC622AE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3.exe
FirewallRules: [{67580B53-28EF-458F-BF2B-46E7F162EDBF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3.exe
FirewallRules: [{75FF7566-4AD6-49B4-828C-453BCBEBE808}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3_Debug.exe
FirewallRules: [{6C7E05DD-3AC8-4884-A1E7-4A481A2599C5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3_Debug.exe
FirewallRules: [TCP Query User{E9ECC500-FFC0-4FB7-B4F5-68C91EEB81AF}C:\program files (x86)\java\jre1.8.0_121\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_121\bin\javaw.exe
FirewallRules: [UDP Query User{B83BEA43-CB7D-491A-A5BD-2C7C83BFB460}C:\program files (x86)\java\jre1.8.0_121\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_121\bin\javaw.exe
FirewallRules: [{C5348F7F-0F4B-4B75-B751-3022CEBA3ED8}] => (Allow) C:\program files (x86)\java\jre1.8.0_121\bin\javaw.exe
FirewallRules: [{FD42B9A1-5976-471F-B231-67DEFE71BDD7}] => (Allow) C:\program files (x86)\java\jre1.8.0_121\bin\javaw.exe
FirewallRules: [{2655F364-6EA3-41B6-A64E-A02A0624598E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe
FirewallRules: [{B2A36092-BCBE-4208-BD44-4294883AE3F0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe
FirewallRules: [TCP Query User{36644481-3BBC-48E3-9EBC-D79C58CB0515}C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe
FirewallRules: [UDP Query User{00DECAD1-8AA7-4F3D-BF45-8803ED2C459F}C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe
FirewallRules: [{07E86CCD-AB5E-4DE0-9A28-3ECD81E6F1A7}] => (Block) C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe
FirewallRules: [{38837919-B907-4814-8C91-A894901522EA}] => (Block) C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe
FirewallRules: [{45C34759-6E23-449E-8200-77816F028C4D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{7B20685A-C05C-4412-804E-DD8252AF2FD6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{62265518-79AB-408B-9E60-7A8D62C1F6C9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{41045D9E-8783-4ABE-947F-665C97706619}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{C5969539-8232-420D-9A31-9744B4454BDD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{B9149D63-A8C2-468D-87BB-F941045019A3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{A04ABB61-1E00-458C-B678-6A6AC2187734}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [{440E7F06-8A6D-4DBD-B788-993F86351C3F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [TCP Query User{33D5A773-E67B-4415-BCEE-67868C8331DF}C:\program files (x86)\steam\steamapps\common\blood bowl 2\bloodbowl2_dx_32.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\blood bowl 2\bloodbowl2_dx_32.exe
FirewallRules: [UDP Query User{CA32545C-D6B8-498D-A941-C0FBC422BFAC}C:\program files (x86)\steam\steamapps\common\blood bowl 2\bloodbowl2_dx_32.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\blood bowl 2\bloodbowl2_dx_32.exe
FirewallRules: [{B357CF6B-15E5-4CEA-A9BA-56EE202423F0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty 4\iw3sp.exe
FirewallRules: [{DB53D423-0E83-4FE2-942E-8B5A93879898}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty 4\iw3sp.exe
FirewallRules: [{49A571EE-EDC3-4F21-93C1-60F661DFDB36}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty 4\iw3mp.exe
FirewallRules: [{05F7F4C3-0894-424F-969A-117CAB0A6914}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty 4\iw3mp.exe
FirewallRules: [{206AA6F0-4D36-47BE-A131-D16AC812F3EE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dawn of War III\RelicDoW3.exe
FirewallRules: [{A28D0E09-C147-4A03-A86D-5CE20A138863}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dawn of War III\RelicDoW3.exe
FirewallRules: [TCP Query User{5F6DBA45-9C5E-4F8A-BD32-B0F4B290E49E}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe
FirewallRules: [UDP Query User{351D8685-9CF6-4D34-B3C4-16D9BA2C024F}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe
FirewallRules: [TCP Query User{6DE8FAB9-3F81-4067-8FE8-937CAF77BF19}C:\program files (x86)\starcraft ii\versions\base52910\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base52910\sc2_x64.exe
FirewallRules: [UDP Query User{565040D7-D8E2-4C0C-BA33-414701AC3AE8}C:\program files (x86)\starcraft ii\versions\base52910\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base52910\sc2_x64.exe
FirewallRules: [TCP Query User{CCC6477E-A03C-48A9-B1B6-23989C10B2D1}C:\program files (x86)\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{C292232E-10FF-42F0-BB47-18AB38838BE4}C:\program files (x86)\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{1C4C203C-FAB9-4F21-A222-E8BFA8710AB1}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [UDP Query User{49E8922C-1C23-4007-AC98-113D593629F1}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [TCP Query User{5C7D251F-91DC-4482-9C2B-CE19EA64AF33}C:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{98E12B16-FF85-4374-9C8D-2BAF95C797D1}C:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe
FirewallRules: [{B6C11C8D-DD27-4B7A-81A7-E5F2185EF949}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grim Dawn\Grim Dawn.exe
FirewallRules: [{F359A8E1-3818-4ADE-BC6E-59B6301724D2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grim Dawn\Grim Dawn.exe
FirewallRules: [TCP Query User{9BA586D1-2069-4711-AA41-FCFA78CF6496}C:\program files (x86)\heroes of the storm\versions\base53965\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53965\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{250F7C88-1AEE-426B-BDC8-5334040B89AE}C:\program files (x86)\heroes of the storm\versions\base53965\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53965\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{897699F5-A3DC-4B8F-BC3B-F9B16DDB0682}C:\program files (x86)\heroes of the storm\versions\base54339\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base54339\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{2210F477-E954-4B53-B039-EADCFBDEB2A5}C:\program files (x86)\heroes of the storm\versions\base54339\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base54339\heroesofthestorm_x64.exe
FirewallRules: [{C0FEAB3D-0CC5-44AC-ABB4-A58072CAFC40}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{2E9CFFCE-37A3-4AD6-BAC3-F4FE311C672C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{0ED7998B-5D7D-4BB5-BC43-C7F24F15707A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{C960B44F-9EB9-4E0E-A377-C47469BEC122}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{B19E2D66-2D2C-485D-A743-F1FD542B794D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{A55F5CD9-36DC-4291-8F01-9629BA5D78C9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{8ABEE90D-4145-4723-80B4-942B2A83D07A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [{32962532-E35C-4C0F-8490-290FC682F706}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [{A2036B68-6451-4BDC-B5F3-C4B6BE4E6F84}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{D3F41698-970A-4FD1-A558-D9AB5E985F77}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{8564608C-358B-4535-8418-ED7613E8C26A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Duelyst\Duelyst.exe
FirewallRules: [{66DF17F4-E4DA-4526-A5BC-6A46B7260F46}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Duelyst\Duelyst.exe
FirewallRules: [{4E9590A3-FBFB-41BD-BD0B-93749736E271}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Styx Shards of Darkness\Styx2.exe
FirewallRules: [{D762D8D0-F57F-42F8-B680-90E83E403EA8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Styx Shards of Darkness\Styx2.exe
FirewallRules: [TCP Query User{04523F95-6856-4173-937D-3B539424662C}C:\program files (x86)\steam\steamapps\common\styx shards of darkness\styx2\binaries\win64\styx2-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\styx shards of darkness\styx2\binaries\win64\styx2-win64-shipping.exe
FirewallRules: [UDP Query User{C70EAD3B-79F4-49E3-8426-7DD6FF8F8CBD}C:\program files (x86)\steam\steamapps\common\styx shards of darkness\styx2\binaries\win64\styx2-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\styx shards of darkness\styx2\binaries\win64\styx2-win64-shipping.exe
FirewallRules: [{907107C2-187C-45A6-AC61-E5D98F19486A}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909\SZBrowser.exe
FirewallRules: [{FF8AA6B4-66D5-4B52-8201-62CE7EB138DA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{10A5B1E9-2DCA-4D7C-B17F-2C219DDAB3EA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{97E7E415-6506-43EC-BE2C-A537C3D0CB80}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Nidhogg 2\Nidhogg_2.exe
FirewallRules: [{FEDA21C6-75DF-4314-9B9A-E4BF3FC7EB2F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Nidhogg 2\Nidhogg_2.exe
FirewallRules: [{E92F6A33-62C6-4B48-8EF1-39B898455223}] => (Allow) C:\Program Files (x86)\Disney Interactive Studios\Split Second\SplitSecond.exe
FirewallRules: [{A94297A3-D607-4652-B218-92F1962C4C02}] => (Allow) C:\Program Files (x86)\Disney Interactive Studios\Split Second\SplitSecond.exe
FirewallRules: [{9229FD18-8456-44C5-8028-88F7CA04D165}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{627DBE77-386E-432F-8F40-7D571D7A7C70}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{437C858D-8262-4566-B75F-BE3E04DAE5DC}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{4EEC4C28-CD16-4E40-BC5B-C36FF85DF383}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [TCP Query User{FE74A56D-7509-4BB3-90A6-AE7FE66C12CA}C:\program files\divinity original sin - enhanced edition\shipping\eocapp.exe] => (Allow) C:\program files\divinity original sin - enhanced edition\shipping\eocapp.exe
FirewallRules: [UDP Query User{9B911427-423D-4CD1-8A1D-BCEE70A58996}C:\program files\divinity original sin - enhanced edition\shipping\eocapp.exe] => (Allow) C:\program files\divinity original sin - enhanced edition\shipping\eocapp.exe
FirewallRules: [{475E86E8-C47A-4318-A762-F627FDD74D78}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909_0\SZBrowser.exe
FirewallRules: [{B1A69F6C-9B3F-4FFF-BFA9-749E3AFF3663}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Brawl of Ages\bin\Brawl of Ages.exe
FirewallRules: [{65147264-A0D8-454C-A952-9F2A12625275}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Brawl of Ages\bin\Brawl of Ages.exe
FirewallRules: [{052FABE2-7E86-4965-B57D-90288E73F29F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Divinity Original Sin 2\bin\SupportTool.exe
FirewallRules: [{F0F5639F-7533-46F7-B620-E7903D829FA0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Divinity Original Sin 2\bin\SupportTool.exe
FirewallRules: [TCP Query User{81C48BDE-B16B-4474-A731-4E2F4DB90D0A}C:\program files (x86)\steam\steamapps\common\divinity original sin 2\bin\eocapp.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\divinity original sin 2\bin\eocapp.exe
FirewallRules: [UDP Query User{04A24247-09CF-465B-9552-53B7B7B852A0}C:\program files (x86)\steam\steamapps\common\divinity original sin 2\bin\eocapp.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\divinity original sin 2\bin\eocapp.exe
FirewallRules: [{6879FBBA-D761-4BC3-AB14-A0BBEF7A6701}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service
==================== Restore Points =========================
28-09-2017 19:23:15 Windows Update
30-09-2017 16:11:53 JRT Pre-Junkware Removal
==================== Faulty Device Manager Devices =============
Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name: Contrôleur de bus USB
Description: Contrôleur de bus USB
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (09/30/2017 02:02:56 PM) (Source: ESENT) (EventID: 455) (User: )
Description: CCleaner64 (2408) testing: L'Erreur -1032 (0xfffffbf8) s'est produite lors de l'ouverture du fichier journal C:\Users\raf\AppData\Local\Microsoft\Windows\WebCache\V01.log.
Error: (09/30/2017 02:02:56 PM) (Source: ESENT) (EventID: 489) (User: )
Description: CCleaner64 (2408) testing: Une tentative d'ouverture du fichier "C:\Users\raf\AppData\Local\Microsoft\Windows\WebCache\V01.log" pour accès en lecture seule a échoué en indiquant l'erreur système 32 (0x00000020) : "Le processus ne peut pas accéder au fichier car ce fichier est utilisé par un autre processus. ". L'opération d'ouverture de fichier échouera en indiquant l'erreur -1032 (0xfffffbf8).
Error: (09/30/2017 02:02:46 PM) (Source: ESENT) (EventID: 455) (User: )
Description: CCleaner64 (2408) testing: L'Erreur -1032 (0xfffffbf8) s'est produite lors de l'ouverture du fichier journal C:\Users\raf\AppData\Local\Microsoft\Windows\WebCache\V01.log.
Error: (09/30/2017 02:02:46 PM) (Source: ESENT) (EventID: 489) (User: )
Description: CCleaner64 (2408) testing: Une tentative d'ouverture du fichier "C:\Users\raf\AppData\Local\Microsoft\Windows\WebCache\V01.log" pour accès en lecture seule a échoué en indiquant l'erreur système 32 (0x00000020) : "Le processus ne peut pas accéder au fichier car ce fichier est utilisé par un autre processus. ". L'opération d'ouverture de fichier échouera en indiquant l'erreur -1032 (0xfffffbf8).
Error: (09/30/2017 01:31:08 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: La création du contexte d’activation a échoué pour « c:\program files (x86)\steam\steamapps\common\grim dawn\crashreporter.exe ». Erreur dans le fichier de manifeste ou de stratégie « » à la ligne .
Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active.
Les composants en conflit sont :
Composant 1 : C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Composant 2 : C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Error: (09/29/2017 12:06:23 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: La création du contexte d’activation a échoué pour « c:\program files (x86)\steam\steamapps\common\grim dawn\crashreporter.exe ». Erreur dans le fichier de manifeste ou de stratégie « » à la ligne .
Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active.
Les composants en conflit sont :
Composant 1 : C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Composant 2 : C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Error: (09/28/2017 12:11:54 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: La création du contexte d’activation a échoué pour « c:\program files (x86)\steam\steamapps\common\grim dawn\crashreporter.exe ». Erreur dans le fichier de manifeste ou de stratégie « » à la ligne .
Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active.
Les composants en conflit sont :
Composant 1 : C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Composant 2 : C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Error: (09/27/2017 10:54:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante AUDIODG.EXE, version : 6.1.7601.23471, horodatage : 0x57601f74
Nom du module défaillant : ntdll.dll, version : 6.1.7601.23889, horodatage : 0x598d5074
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0000000000048f24
ID du processus défaillant : 0x520
Heure de début de l’application défaillante : 0x01d337cde17973ab
Chemin d’accès de l’application défaillante : C:\Windows\system32\AUDIODG.EXE
Chemin d’accès du module défaillant: C:\Windows\SYSTEM32\ntdll.dll
ID de rapport : fd23fcfc-a3c5-11e7-bf87-606c6675f3e6
Error: (09/27/2017 10:12:54 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante AUDIODG.EXE, version : 6.1.7601.23471, horodatage : 0x57601f74
Nom du module défaillant : ntdll.dll, version : 6.1.7601.23889, horodatage : 0x598d5074
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0000000000048f24
ID du processus défaillant : 0x43c
Heure de début de l’application défaillante : 0x01d337a3ed456195
Chemin d’accès de l’application défaillante : C:\Windows\system32\AUDIODG.EXE
Chemin d’accès du module défaillant: C:\Windows\SYSTEM32\ntdll.dll
ID de rapport : 3ea2ff32-a3c0-11e7-bf87-606c6675f3e6
Error: (09/27/2017 12:20:53 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: La création du contexte d’activation a échoué pour « c:\program files (x86)\steam\steamapps\common\grim dawn\crashreporter.exe ». Erreur dans le fichier de manifeste ou de stratégie « » à la ligne .
Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active.
Les composants en conflit sont :
Composant 1 : C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Composant 2 : C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
System errors:
=============
Error: (09/30/2017 04:14:47 PM) (Source: atapi) (EventID: 11) (User: )
Description: Le pilote a détecté une erreur du contrôleur sur \Device\Ide\IdePort0.
Error: (09/30/2017 04:14:47 PM) (Source: atapi) (EventID: 11) (User: )
Description: Le pilote a détecté une erreur du contrôleur sur \Device\Ide\IdePort0.
Error: (09/30/2017 04:14:47 PM) (Source: atapi) (EventID: 11) (User: )
Description: Le pilote a détecté une erreur du contrôleur sur \Device\Ide\IdePort0.
Error: (09/30/2017 04:14:47 PM) (Source: atapi) (EventID: 11) (User: )
Description: Le pilote a détecté une erreur du contrôleur sur \Device\Ide\IdePort0.
Error: (09/30/2017 04:13:23 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service NVIDIA LocalSystem Container s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 1000 millisecondes : Restart the service.
Error: (09/30/2017 04:09:19 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Le serveur {5DC4F9AD-3A2B-4DF4-AC39-3FF5A19FCF4C} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (09/30/2017 04:08:32 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Spybot-S&D 2 Security Center Service n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.
Error: (09/30/2017 04:08:32 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Spybot-S&D 2 Security Center Service.
Error: (09/30/2017 04:07:55 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Spybot-S&D 2 Updating Service n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.
Error: (09/30/2017 04:07:55 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Spybot-S&D 2 Updating Service.
CodeIntegrity:
===================================
Date: 2015-12-25 15:52:36.322
Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue.
Date: 2015-12-25 15:52:36.320
Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue.
Date: 2015-12-25 15:52:36.317
Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue.
Date: 2015-12-25 15:52:36.315
Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue.
Date: 2015-12-25 15:52:36.312
Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue.
Date: 2015-12-25 15:52:36.309
Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue.
Date: 2015-12-25 15:52:36.304
Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue.
Date: 2015-12-25 15:52:36.301
Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue.
Date: 2015-12-25 15:52:36.289
Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue.
Date: 2015-12-25 15:52:36.286
Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz
Percentage of memory in use: 36%
Total physical RAM: 8088.75 MB
Available physical RAM: 5098.98 MB
Total Virtual: 16175.68 MB
Available Virtual: 13222.38 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:465.66 GB) (Free:71.86 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 6738AABD)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
Ran by raf (30-09-2017 19:15:27)
Running from C:\Users\raf\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2015-12-25 00:46:07)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2888016549-2526535942-652807552-500 - Administrator - Disabled)
Guest (S-1-5-21-2888016549-2526535942-652807552-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2888016549-2526535942-652807552-1003 - Limited - Enabled)
raf (S-1-5-21-2888016549-2526535942-652807552-1000 - Administrator - Enabled) => C:\Users\raf
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Microsoft Security Essentials (Disabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189}
AS: Microsoft Security Essentials (Disabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Disabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.130 - Adobe Systems Incorporated)
Age of Wonders III (HKLM\...\Steam App 226840) (Version: - Triumph Studios)
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 376.33 - NVIDIA Corporation) Hidden
Avast Antivirus Gratuit (HKLM-x32\...\Avast Antivirus) (Version: 17.6.2310 - AVAST Software)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlerite (HKLM\...\Steam App 504370) (Version: - Stunlock Studios)
Blood Bowl 2 (HKLM\...\Steam App 236690) (Version: - Cyanide Studios)
Call of Duty 4: Modern Warfare (HKLM\...\Steam App 7940) (Version: - Infinity Ward)
CCleaner (HKLM\...\CCleaner) (Version: 5.23 - Piriform)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
CPUID HWMonitor 1.28 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.4.0.0190 - Disc Soft Ltd)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Disc Jam (HKLM\...\Steam App 415880) (Version: - High Horse Entertainment)
Divinity: Original Sin 2 (HKLM\...\Steam App 435150) (Version: - Larian Studios)
Dota 2 (HKLM\...\Steam App 570) (Version: - Valve)
DriversCloud.com (64 bits) (HKLM\...\{0FFDC804-21EE-4283-ADBA-6A1958EB9525}) (Version: 8.0.3.1 - Cybelsoft)
Duelyst (HKLM\...\Steam App 291410) (Version: - Counterplay Games Inc.)
f.lux (HKU\S-1-5-21-2888016549-2526535942-652807552-1000\...\Flux) (Version: - )
Garry's Mod (HKLM\...\Steam App 4000) (Version: - Facepunch Studios)
Google Chrome (HKLM-x32\...\{0B5D7DA7-9220-392F-89C6-4C75AB36E977}) (Version: 61.0.3163.100 - Google, Inc.)
Google Drive (HKLM-x32\...\{F9A2761E-C1E4-4384-92A3-5732C9738327}) (Version: 2.34.6717.9565 - Google, Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Grim Dawn (HKLM\...\Steam App 219990) (Version: - Crate Entertainment)
H1Z1: King of the Kill (HKLM\...\Steam App 433850) (Version: - Daybreak Game Company)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
HiSuite (HKLM-x32\...\Hi Suite) (Version: 1.0 - Huawei Technologies Co.,Ltd)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2867 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: - Tonec Inc.)
Java 8 Update 144 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
League of Legends (HKLM-x32\...\{3E75652D-99B1-417E-B163-BEF33CAD3F16}) (Version: 3.0.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
Logitech - Assistant pour jeux vidéo 8.84 (HKLM\...\Logitech Gaming Software) (Version: 8.84.15 - Logitech Inc.)
LogMeIn Hamachi (HKLM-x32\...\{BE82D2D7-6CA2-43B3-8C22-CCF6405806E7}) (Version: 2.2.0.579 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.579 - LogMeIn, Inc.)
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{45CD67FD-3218-4207-A0A2-BC41245189E3}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mises à jour NVIDIA 23.1.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 23.1.0.0 - NVIDIA Corporation) Hidden
Mozilla Firefox 56.0 (x86 fr) (HKLM-x32\...\Mozilla Firefox 56.0 (x86 fr)) (Version: 56.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 56.0.0.6478 - Mozilla)
Mumble 1.2.12 (HKLM-x32\...\{EF30BA16-8DAB-4EA5-AF2C-D4F0D9B0B0CB}) (Version: 1.2.12 - Thorvald Natvig)
MXMCLIENT (HKLM-x32\...\MXM) (Version: - NCSOFT)
NC Launcher (HKLM-x32\...\NCLauncherS_plaync) (Version: - NCSOFT)
Nidhogg 2 (HKLM\...\Steam App 535520) (Version: - Messhof)
NVIDIA GeForce Experience 3.2.0.96 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.2.0.96 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NVIDIA Pilote graphique 376.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.33 - NVIDIA Corporation)
NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.2.0.96 - NVIDIA Corporation) Hidden
NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 2.0.0.0 - NVIDIA Corporation) Hidden
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Panneau de configuration NVIDIA 376.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 376.33 - NVIDIA Corporation) Hidden
Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 1.12.0016 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7634 - Realtek Semiconductor Corp.)
SafeZone Stable 4.58.2552.909 (HKLM-x32\...\SafeZone 4.58.2552.909) (Version: 4.58.2552.909 - Avast Software) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0350 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 3.2.0.96 - NVIDIA Corporation) Hidden
SpeedRunners (HKLM\...\Steam App 207140) (Version: - DoubleDutch Games)
Split/Second (HKLM-x32\...\{28526951-55EF-4901-A0CA-B9AC966D1DD1}) (Version: 1.00.0000 - Disney Interactive Studios)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Styx: Shards of Darkness (HKLM\...\Steam App 355790) (Version: - Cyanide Studio)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
TowerFall Ascension (HKLM\...\Steam App 251470) (Version: - Matt Thorson)
Tunngle (HKLM-x32\...\Tunngle_is1) (Version: 5.8.9 - Tunngle.net GmbH)
Viber (HKLM-x32\...\{E6E2EDA6-2D95-43F9-90C8-D7F1F2ABF800}) (Version: 6.7.0.1095 - Viber Media Inc.) Hidden
Viber (HKU\S-1-5-21-2888016549-2526535942-652807552-1000\...\{a3cd6118-eaea-45ca-b39d-abf3db2499d7}) (Version: 6.7.0.1095 - Viber Media Inc.)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.6 - VideoLAN)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Warhammer 40,000: Dawn of War III (HKLM\...\Steam App 285190) (Version: - Relic Entertainment)
Windows Driver Package - Intel (NETwNs64) net (07/21/2014 17.1.0.19) (HKLM\...\019CE8430E6225A66BDAA6E8FA6945C1DCB3D213) (Version: 07/21/2014 17.1.0.19 - Intel)
Windows Driver Package - Intel (NETwNs64) net (07/22/2014 15.13.0.2) (HKLM\...\CFFA790B2E30D10D1C999BCAE43FE5F95339385D) (Version: 07/22/2014 15.13.0.2 - Intel)
Windows Driver Package - Intel net (07/21/2014 17.1.0.19) (HKLM\...\43AB7D309F2F48799D5CBC6CA661462828F509AB) (Version: 07/21/2014 17.1.0.19 - Intel)
Windows Driver Package - Intel net (07/22/2014 15.13.0.2) (HKLM\...\EDEC77655623290152D5785E99A3C58B8BD2AEAF) (Version: 07/22/2014 15.13.0.2 - Intel)
WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies)
WinRAR 5.30 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH)
Worms W.M.D (HKLM\...\Steam App 327030) (Version: - Team17 Digital Ltd)
Yu-Gi-Oh! Legacy of the Duelist (HKLM\...\Steam App 480650) (Version: - Other Ocean Interactive)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2015-08-14] (Tonec Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-08-31] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-08-31] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-08-31] (Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-09-11] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-09-11] (AVAST Software)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-09-11] (AVAST Software)
ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-08-31] (Google)
ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2014-06-24] (Safer-Networking Ltd.)
ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2014-06-24] (Safer-Networking Ltd.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-11-18] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-11-18] (Alexander Roshal)
ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-09-11] (AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes)
ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-08-31] (Google)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2012-09-28] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2016-12-11] (NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-09-11] (AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes)
ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2014-06-24] (Safer-Networking Ltd.)
ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2014-06-24] (Safer-Networking Ltd.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-11-18] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-11-18] (Alexander Roshal)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1B92E9CF-5394-4342-AB26-68147C28CF8B} - System32\Tasks\{E2B8CCAC-778D-45BF-BA5D-36AD15CE8516} => C:\Windows\system32\pcalua.exe [2015-12-28] (Microsoft Corporation)
Task: {2B6259A6-224E-4261-9D2A-327C1B025F91} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-09-28] (Piriform Ltd)
Task: {48AFC08D-EE81-4FCE-92B3-4995A2E8AF33} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.)
Task: {5AFAAB06-AFAF-4136-84FB-ED9D7017FAF2} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-12-13] (NVIDIA Corporation)
Task: {6C75D317-4239-45ED-A079-6EFCB490D224} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-12-13] (NVIDIA Corporation)
Task: {7514269A-49BE-4CEA-B230-9CA0264076B4} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-12-13] (NVIDIA Corporation)
Task: {772E3F66-A1D0-4966-81DE-D851C35C9479} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {773081DC-94BF-4C39-8A38-AAE6CB132796} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2016-12-13] (NVIDIA Corporation)
Task: {8241A3B4-1423-46FA-9108-59807EC943FD} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-12-13] (NVIDIA Corporation)
Task: {8858E239-7D18-44E8-A900-265862403CAF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-25] (Google Inc.)
Task: {8B28DEE6-6A0C-4C6D-B3C4-8E6047836B3B} - System32\Tasks\SafeZone scheduled Autoupdate 1478858166 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-08-04] (Avast Software)
Task: {A831EE09-8BC2-4595-8F81-6CEDD53DB10C} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-12-13] (NVIDIA Corporation)
Task: {B7DD8C1E-D080-406D-9352-9248AA76FC95} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\\MpCmdRun.exe [2016-11-14] (Microsoft Corporation)
Task: {BD9603E4-16B2-4453-92C6-928AB7CB2187} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {C1BC87A5-8D7F-4DEE-8C5D-16E3CDE3DB53} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {CC09B62A-E486-44EC-AA6B-007E563D7A94} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-09-12] (Adobe Systems Incorporated)
Task: {CF58F329-B0F7-4C6C-A0DB-90C462EB405D} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-09-11] (AVAST Software)
Task: {D3D48314-8123-4B06-A3C9-B40575E9B43E} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-12-13] (NVIDIA Corporation)
Task: {E70C0386-A753-4819-982B-60A3186027A0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-25] (Google Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\raf\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\360c22b137d62ce9\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData
==================== Loaded Modules (Whitelisted) ==============
2016-11-08 19:04 - 2016-12-12 04:37 - 000018880 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2013-09-05 00:17 - 2013-09-05 00:17 - 004300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2010-10-20 15:23 - 2010-10-20 15:23 - 008801632 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2017-07-26 09:58 - 2017-07-26 09:58 - 000192200 _____ () C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
2016-09-28 18:26 - 2016-09-28 18:26 - 000069632 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll
2017-09-11 21:05 - 2017-09-11 21:05 - 000067408 _____ () C:\Program Files\AVAST Software\Avast\x64\module_lifetime.dll
2017-09-11 21:04 - 2017-09-11 21:04 - 000169832 _____ () c:\Program Files\AVAST Software\Avast\x64\vaarclient.dll
2017-09-27 17:29 - 2017-09-27 17:28 - 000834224 _____ () C:\Program Files\AVAST Software\Avast\x64\ffl2.dll
2017-09-11 21:05 - 2017-09-11 21:05 - 000286712 _____ () c:\Program Files\AVAST Software\Avast\x64\StreamBack.dll
2016-11-08 19:07 - 2016-12-13 01:35 - 001147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-08 19:07 - 2016-12-13 01:36 - 004489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2015-12-25 21:08 - 2016-12-11 20:47 - 000134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2017-09-11 21:05 - 2017-09-11 21:05 - 000059040 _____ () C:\Program Files\AVAST Software\Avast\module_lifetime.dll
2017-09-11 21:05 - 2017-09-11 21:05 - 000167096 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2017-09-11 21:05 - 2017-09-11 21:05 - 000211904 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll
2017-09-11 21:05 - 2017-09-11 21:05 - 000241960 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
2017-09-11 21:05 - 2017-09-11 21:05 - 000149568 _____ () C:\Program Files\AVAST Software\Avast\network_notifications.dll
2017-09-29 22:37 - 2017-09-29 22:37 - 005890352 _____ () C:\Program Files\AVAST Software\Avast\defs\17092902\algo.dll
2017-09-27 17:29 - 2017-09-27 17:28 - 000692408 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2017-09-11 21:05 - 2017-09-11 21:05 - 000241448 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2017-07-11 17:38 - 2017-07-11 17:38 - 067109376 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2017-09-11 21:04 - 2017-09-11 21:04 - 000233768 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2016-11-08 19:04 - 2016-12-12 04:37 - 000020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
2016-11-08 19:07 - 2016-12-13 01:35 - 000900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-08 19:07 - 2016-12-13 01:35 - 003774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2015-12-20 20:41 - 2015-12-20 20:41 - 000143680 _____ () C:\Program Files (x86)\Mumble\mumble_ol.dll
2013-09-05 00:14 - 2013-09-05 00:14 - 004300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2010-10-20 15:45 - 2010-10-20 15:45 - 008801120 _____ () C:\Program Files (x86)\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2015-12-20 20:42 - 2015-12-20 20:42 - 000229184 _____ () C:\Program Files (x86)\Mumble\opus.dll
2015-12-20 20:49 - 2015-12-20 20:49 - 003367768 _____ () C:\Program Files (x86)\Mumble\libsndfile-1.dll
2015-12-20 20:46 - 2015-12-20 20:46 - 000083776 _____ () C:\Program Files (x86)\Mumble\zlib1.dll
2015-12-20 20:47 - 2015-12-20 20:47 - 004452160 _____ () C:\Program Files (x86)\Mumble\libmysql.dll
2015-12-20 20:42 - 2015-12-20 20:42 - 000177472 _____ () C:\Program Files (x86)\Mumble\speex.dll
2015-12-20 20:42 - 2015-12-20 20:42 - 000082752 _____ () C:\Program Files (x86)\Mumble\celt0.0.7.0.sse2.dll
2015-12-20 20:42 - 2015-12-20 20:42 - 000098624 _____ () C:\Program Files (x86)\Mumble\celt0.0.11.0.sse2.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000045456 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\aoc.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000029072 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\arma2.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000029072 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\bf1942.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000047504 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\bf2.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000030608 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\bf2142.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000047504 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\bf3.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000029072 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\bfbc2.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000029072 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\bfheroes.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000030608 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\blacklight.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000032144 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\borderlands.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000030608 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\borderlands2.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000029072 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\breach.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000029072 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\cod2.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000031120 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\cod4.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000029072 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\cod5.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000029072 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\codmw2.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000029072 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\codmw2so.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000030608 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\cs.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000045968 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\dys.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000031120 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\etqw.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000045968 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\gmod.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000029584 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\gtaiv.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000031120 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\gw.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000045968 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\insurgency.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000029072 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\jc2.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000031120 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\l4d.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000040336 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\l4d2.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000027536 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\link.dll
2016-03-11 19:26 - 2017-01-28 11:46 - 000031120 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\lol.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000031120 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\lotro.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000079760 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\manual.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000031632 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\sto.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000029072 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\ut2004.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000029072 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\ut3.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000040848 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\ut99.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000033168 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\wolfet.dll
2016-03-11 19:26 - 2017-01-27 18:30 - 000040336 _____ () C:\Users\raf\AppData\Roaming\Mumble\Plugins\wow.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData\TEMP:6B50FDB5 [119]
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2009-06-10 23:00 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2888016549-2526535942-652807552-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\raf\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{A2CF288A-E9E1-493A-B5C9-02CA152B77E2}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{53533D20-58D5-465E-A5F1-E5A2FAF042FC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [TCP Query User{08A01B91-FCDD-44E1-BDD3-4B272A4E559D}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{46DA387B-669E-4C84-8255-697B61E9EBF4}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [{BF08B978-BC51-434D-8C08-D8A041CBEA6F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B80D6693-177F-4BCD-AFB4-FDF26797940A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{38164639-2D76-4B16-997E-E0D858EB5D7D}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{4548926D-3B68-4A6A-B678-64D91FC0666B}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [{5A4081DB-125E-4DE3-A2C9-FC56619FEE54}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{CC6A0912-8C60-4D25-85DB-5DD1C547E87A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{B8091E30-A6AF-41D6-A3D9-FFCBD91C1E12}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{EF56B5F8-F93C-4B33-A758-CFF44C3BB54F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{266D01BE-AE7D-46BC-BA42-F997BFE41DAF}] => (Allow) C:\Program Files\DriversCloud.com\MCDetection.exe
FirewallRules: [{F7F99EA5-FDA2-4987-B0AE-286C5E230690}] => (Allow) C:\Program Files\DriversCloud.com\MCDetection.exe
FirewallRules: [{E6AFF20C-22F1-469C-BA21-7F2966C29C70}] => (Allow) C:\Users\raf\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{A831AFE8-E43D-4E59-A000-D4D4E1F4C6D5}] => (Allow) C:\Users\raf\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{DF74F6F9-4CC3-4613-A0B6-C4E01F884012}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{1F839C6C-EC14-47A7-8646-85C0400101CC}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [{F6F3F883-9319-4BE3-B1B9-7824F48C3270}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{AA5C393F-D308-42E2-B94C-6DC6412DEA34}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [TCP Query User{395575CD-69AC-49A0-AFED-E762F786C2BE}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [UDP Query User{AD2B813F-2E38-4331-B2F5-B0191BA9B136}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [TCP Query User{75358317-9CAF-43BE-B2A3-939251C66D83}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [UDP Query User{23FF77FD-A698-4DC0-9E54-07E02F8202EA}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [{91AE313E-8B90-41ED-8188-21345DCF1082}] => (Block) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [{5B1B26A6-EFED-4C22-8DC1-1D87C2C45FC1}] => (Block) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [{C3CA08B2-BD0B-41BA-A051-A83D88BEC03C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\WormsWMD\Worms W.M.D.exe
FirewallRules: [{3E3CEC4E-3389-41D3-8340-57458259677C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\WormsWMD\Worms W.M.D.exe
FirewallRules: [TCP Query User{328341B1-7CE4-4D30-B4E6-9339F29C826D}C:\program files (x86)\starcraft ii\versions\base47185\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base47185\sc2_x64.exe
FirewallRules: [UDP Query User{9783EF98-7459-47F2-BF60-AA9292EB8070}C:\program files (x86)\starcraft ii\versions\base47185\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base47185\sc2_x64.exe
FirewallRules: [{0D3E667E-32AC-4EEF-9CF4-DB09AE2D9E87}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Blood Bowl 2\BloodBowl2.exe
FirewallRules: [{6DA06DEC-4A65-45D2-9D54-396C9E003562}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Blood Bowl 2\BloodBowl2.exe
FirewallRules: [TCP Query User{6D7190AD-4E7E-4495-8852-96269D451DD6}C:\program files (x86)\steam\steamapps\common\blood bowl 2\bloodbowl2_dx_32.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\blood bowl 2\bloodbowl2_dx_32.exe
FirewallRules: [UDP Query User{C18DED20-2392-4BEE-AAA5-2FE557201469}C:\program files (x86)\steam\steamapps\common\blood bowl 2\bloodbowl2_dx_32.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\blood bowl 2\bloodbowl2_dx_32.exe
FirewallRules: [{1DAE6C80-407B-4A94-BF1D-AD301E070DE5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TowerFall\TowerFall.exe
FirewallRules: [{5124951A-C67B-4899-BA21-C6727DD1901A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TowerFall\TowerFall.exe
FirewallRules: [{BAC97140-D8E9-4E80-B283-0D290DA9DA91}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{11EB4AD9-21BE-4C74-8AD6-CFC8A2E86503}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{5437DDDC-2A5A-447D-A843-CD1F265DCBB4}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{D494FD3E-AF3E-4B0B-9AE9-8DA5F0BC4F16}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{DCF043B2-115B-44CC-B5D3-60F5221F5C64}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [TCP Query User{DF64A9AD-1927-4FBB-ADA4-3FB7EA4AD469}C:\program files\dying light\dyinglightgame.exe] => (Allow) C:\program files\dying light\dyinglightgame.exe
FirewallRules: [UDP Query User{5A6C9100-C70C-4A11-93D6-6E4DA419585C}C:\program files\dying light\dyinglightgame.exe] => (Allow) C:\program files\dying light\dyinglightgame.exe
FirewallRules: [TCP Query User{2E5F819B-F9C7-4EC6-AF8C-E317B9353F2B}C:\program files (x86)\java\jre1.8.0_111\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_111\bin\javaw.exe
FirewallRules: [UDP Query User{46B06826-7E15-4B6A-B171-68643F3F9A5A}C:\program files (x86)\java\jre1.8.0_111\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_111\bin\javaw.exe
FirewallRules: [TCP Query User{DFAD772D-B556-405F-A807-CAC8ACA0F06F}C:\program files (x86)\heroes of the storm\versions\base48027\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base48027\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{944B9FD8-1932-41C4-A829-568CF50C34AE}C:\program files (x86)\heroes of the storm\versions\base48027\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base48027\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{2D468571-CFFE-4AE3-B76D-A0CE62585EAC}C:\program files (x86)\battle.net\battle.net.8142\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8142\battle.net.exe
FirewallRules: [UDP Query User{948DC602-2991-4EDF-B1F6-32EF52F999F6}C:\program files (x86)\battle.net\battle.net.8142\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8142\battle.net.exe
FirewallRules: [TCP Query User{A53901FF-E7F7-44BA-BDA1-E286E9250E9A}C:\program files (x86)\heroes of the storm\versions\base48297\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base48297\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{D759C74D-CE57-48C5-A399-B320EA6A5B3A}C:\program files (x86)\heroes of the storm\versions\base48297\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base48297\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{216E6591-3C14-48CF-AB20-62A1C72612E5}C:\program files (x86)\starcraft ii\versions\base48258\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base48258\sc2_x64.exe
FirewallRules: [UDP Query User{90C8138F-3DE2-4437-A920-D1DECC41C617}C:\program files (x86)\starcraft ii\versions\base48258\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base48258\sc2_x64.exe
FirewallRules: [{EFBAA619-A4C3-40CB-9BF9-975F266F38A7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Battlerite\Battlerite.exe
FirewallRules: [{51E8BBBA-F5C0-4CC1-BF48-66859239398B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Battlerite\Battlerite.exe
FirewallRules: [{8E296F76-1942-4742-9169-D10364C41DD5}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{5FE9F0F0-86E7-4B05-A13B-9F49513C1985}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{16491DAA-FD2F-40E8-9AEF-CC5E3E0E9E43}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Yu-Gi-Oh! Legacy of the Duelist\YuGiOh.exe
FirewallRules: [{B4FA63E1-396F-49CC-B7ED-680224806FD1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Yu-Gi-Oh! Legacy of the Duelist\YuGiOh.exe
FirewallRules: [{282277CC-CF78-4570-8D3D-F1938FFF6054}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpeedRunners\SpeedRunners.exe
FirewallRules: [{713DDA49-77D7-4315-B582-4776B26102D8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpeedRunners\SpeedRunners.exe
FirewallRules: [{3E080ADC-6365-48D1-82AB-94AEE4AE31EF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Disc Jam\Icon.exe
FirewallRules: [{6985AE76-442F-4BB6-95B0-1C267AB95D87}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Disc Jam\Icon.exe
FirewallRules: [TCP Query User{2F4C8C4B-0BE2-436D-88CC-47EF96F77D6C}C:\program files (x86)\steam\steamapps\common\disc jam\discjam\binaries\win64\icon-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\disc jam\discjam\binaries\win64\icon-win64-shipping.exe
FirewallRules: [UDP Query User{702BC550-0D60-4D21-8643-D97DCD40F094}C:\program files (x86)\steam\steamapps\common\disc jam\discjam\binaries\win64\icon-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\disc jam\discjam\binaries\win64\icon-win64-shipping.exe
FirewallRules: [{A9FA38CB-C187-4960-A4AE-9BD281957B31}] => (Block) C:\program files (x86)\steam\steamapps\common\disc jam\discjam\binaries\win64\icon-win64-shipping.exe
FirewallRules: [{EFE84ED0-A1A7-4DF2-B1F0-E7399168BC6B}] => (Block) C:\program files (x86)\steam\steamapps\common\disc jam\discjam\binaries\win64\icon-win64-shipping.exe
FirewallRules: [{0EDA911D-45BE-44A6-9371-0034A40EA63C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{A7523657-13AD-4C42-8717-D991DD64BD25}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{34540B28-688A-4EED-8034-01733228B58C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3Launcher.exe
FirewallRules: [{B73A8EE9-92D5-4C96-90B5-D730662A3EBC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3Launcher.exe
FirewallRules: [{E6865E41-DF0A-4065-9DF6-81A92AC622AE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3.exe
FirewallRules: [{67580B53-28EF-458F-BF2B-46E7F162EDBF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3.exe
FirewallRules: [{75FF7566-4AD6-49B4-828C-453BCBEBE808}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3_Debug.exe
FirewallRules: [{6C7E05DD-3AC8-4884-A1E7-4A481A2599C5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoW3\AoW3_Debug.exe
FirewallRules: [TCP Query User{E9ECC500-FFC0-4FB7-B4F5-68C91EEB81AF}C:\program files (x86)\java\jre1.8.0_121\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_121\bin\javaw.exe
FirewallRules: [UDP Query User{B83BEA43-CB7D-491A-A5BD-2C7C83BFB460}C:\program files (x86)\java\jre1.8.0_121\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_121\bin\javaw.exe
FirewallRules: [{C5348F7F-0F4B-4B75-B751-3022CEBA3ED8}] => (Allow) C:\program files (x86)\java\jre1.8.0_121\bin\javaw.exe
FirewallRules: [{FD42B9A1-5976-471F-B231-67DEFE71BDD7}] => (Allow) C:\program files (x86)\java\jre1.8.0_121\bin\javaw.exe
FirewallRules: [{2655F364-6EA3-41B6-A64E-A02A0624598E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe
FirewallRules: [{B2A36092-BCBE-4208-BD44-4294883AE3F0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe
FirewallRules: [TCP Query User{36644481-3BBC-48E3-9EBC-D79C58CB0515}C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe
FirewallRules: [UDP Query User{00DECAD1-8AA7-4F3D-BF45-8803ED2C459F}C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe
FirewallRules: [{07E86CCD-AB5E-4DE0-9A28-3ECD81E6F1A7}] => (Block) C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe
FirewallRules: [{38837919-B907-4814-8C91-A894901522EA}] => (Block) C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe
FirewallRules: [{45C34759-6E23-449E-8200-77816F028C4D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{7B20685A-C05C-4412-804E-DD8252AF2FD6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{62265518-79AB-408B-9E60-7A8D62C1F6C9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{41045D9E-8783-4ABE-947F-665C97706619}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{C5969539-8232-420D-9A31-9744B4454BDD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{B9149D63-A8C2-468D-87BB-F941045019A3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{A04ABB61-1E00-458C-B678-6A6AC2187734}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [{440E7F06-8A6D-4DBD-B788-993F86351C3F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [TCP Query User{33D5A773-E67B-4415-BCEE-67868C8331DF}C:\program files (x86)\steam\steamapps\common\blood bowl 2\bloodbowl2_dx_32.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\blood bowl 2\bloodbowl2_dx_32.exe
FirewallRules: [UDP Query User{CA32545C-D6B8-498D-A941-C0FBC422BFAC}C:\program files (x86)\steam\steamapps\common\blood bowl 2\bloodbowl2_dx_32.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\blood bowl 2\bloodbowl2_dx_32.exe
FirewallRules: [{B357CF6B-15E5-4CEA-A9BA-56EE202423F0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty 4\iw3sp.exe
FirewallRules: [{DB53D423-0E83-4FE2-942E-8B5A93879898}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty 4\iw3sp.exe
FirewallRules: [{49A571EE-EDC3-4F21-93C1-60F661DFDB36}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty 4\iw3mp.exe
FirewallRules: [{05F7F4C3-0894-424F-969A-117CAB0A6914}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty 4\iw3mp.exe
FirewallRules: [{206AA6F0-4D36-47BE-A131-D16AC812F3EE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dawn of War III\RelicDoW3.exe
FirewallRules: [{A28D0E09-C147-4A03-A86D-5CE20A138863}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dawn of War III\RelicDoW3.exe
FirewallRules: [TCP Query User{5F6DBA45-9C5E-4F8A-BD32-B0F4B290E49E}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe
FirewallRules: [UDP Query User{351D8685-9CF6-4D34-B3C4-16D9BA2C024F}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe
FirewallRules: [TCP Query User{6DE8FAB9-3F81-4067-8FE8-937CAF77BF19}C:\program files (x86)\starcraft ii\versions\base52910\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base52910\sc2_x64.exe
FirewallRules: [UDP Query User{565040D7-D8E2-4C0C-BA33-414701AC3AE8}C:\program files (x86)\starcraft ii\versions\base52910\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base52910\sc2_x64.exe
FirewallRules: [TCP Query User{CCC6477E-A03C-48A9-B1B6-23989C10B2D1}C:\program files (x86)\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{C292232E-10FF-42F0-BB47-18AB38838BE4}C:\program files (x86)\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{1C4C203C-FAB9-4F21-A222-E8BFA8710AB1}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [UDP Query User{49E8922C-1C23-4007-AC98-113D593629F1}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [TCP Query User{5C7D251F-91DC-4482-9C2B-CE19EA64AF33}C:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{98E12B16-FF85-4374-9C8D-2BAF95C797D1}C:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe
FirewallRules: [{B6C11C8D-DD27-4B7A-81A7-E5F2185EF949}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grim Dawn\Grim Dawn.exe
FirewallRules: [{F359A8E1-3818-4ADE-BC6E-59B6301724D2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grim Dawn\Grim Dawn.exe
FirewallRules: [TCP Query User{9BA586D1-2069-4711-AA41-FCFA78CF6496}C:\program files (x86)\heroes of the storm\versions\base53965\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53965\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{250F7C88-1AEE-426B-BDC8-5334040B89AE}C:\program files (x86)\heroes of the storm\versions\base53965\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53965\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{897699F5-A3DC-4B8F-BC3B-F9B16DDB0682}C:\program files (x86)\heroes of the storm\versions\base54339\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base54339\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{2210F477-E954-4B53-B039-EADCFBDEB2A5}C:\program files (x86)\heroes of the storm\versions\base54339\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base54339\heroesofthestorm_x64.exe
FirewallRules: [{C0FEAB3D-0CC5-44AC-ABB4-A58072CAFC40}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{2E9CFFCE-37A3-4AD6-BAC3-F4FE311C672C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{0ED7998B-5D7D-4BB5-BC43-C7F24F15707A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{C960B44F-9EB9-4E0E-A377-C47469BEC122}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{B19E2D66-2D2C-485D-A743-F1FD542B794D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{A55F5CD9-36DC-4291-8F01-9629BA5D78C9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{8ABEE90D-4145-4723-80B4-942B2A83D07A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [{32962532-E35C-4C0F-8490-290FC682F706}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [{A2036B68-6451-4BDC-B5F3-C4B6BE4E6F84}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{D3F41698-970A-4FD1-A558-D9AB5E985F77}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{8564608C-358B-4535-8418-ED7613E8C26A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Duelyst\Duelyst.exe
FirewallRules: [{66DF17F4-E4DA-4526-A5BC-6A46B7260F46}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Duelyst\Duelyst.exe
FirewallRules: [{4E9590A3-FBFB-41BD-BD0B-93749736E271}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Styx Shards of Darkness\Styx2.exe
FirewallRules: [{D762D8D0-F57F-42F8-B680-90E83E403EA8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Styx Shards of Darkness\Styx2.exe
FirewallRules: [TCP Query User{04523F95-6856-4173-937D-3B539424662C}C:\program files (x86)\steam\steamapps\common\styx shards of darkness\styx2\binaries\win64\styx2-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\styx shards of darkness\styx2\binaries\win64\styx2-win64-shipping.exe
FirewallRules: [UDP Query User{C70EAD3B-79F4-49E3-8426-7DD6FF8F8CBD}C:\program files (x86)\steam\steamapps\common\styx shards of darkness\styx2\binaries\win64\styx2-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\styx shards of darkness\styx2\binaries\win64\styx2-win64-shipping.exe
FirewallRules: [{907107C2-187C-45A6-AC61-E5D98F19486A}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909\SZBrowser.exe
FirewallRules: [{FF8AA6B4-66D5-4B52-8201-62CE7EB138DA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{10A5B1E9-2DCA-4D7C-B17F-2C219DDAB3EA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{97E7E415-6506-43EC-BE2C-A537C3D0CB80}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Nidhogg 2\Nidhogg_2.exe
FirewallRules: [{FEDA21C6-75DF-4314-9B9A-E4BF3FC7EB2F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Nidhogg 2\Nidhogg_2.exe
FirewallRules: [{E92F6A33-62C6-4B48-8EF1-39B898455223}] => (Allow) C:\Program Files (x86)\Disney Interactive Studios\Split Second\SplitSecond.exe
FirewallRules: [{A94297A3-D607-4652-B218-92F1962C4C02}] => (Allow) C:\Program Files (x86)\Disney Interactive Studios\Split Second\SplitSecond.exe
FirewallRules: [{9229FD18-8456-44C5-8028-88F7CA04D165}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{627DBE77-386E-432F-8F40-7D571D7A7C70}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{437C858D-8262-4566-B75F-BE3E04DAE5DC}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{4EEC4C28-CD16-4E40-BC5B-C36FF85DF383}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [TCP Query User{FE74A56D-7509-4BB3-90A6-AE7FE66C12CA}C:\program files\divinity original sin - enhanced edition\shipping\eocapp.exe] => (Allow) C:\program files\divinity original sin - enhanced edition\shipping\eocapp.exe
FirewallRules: [UDP Query User{9B911427-423D-4CD1-8A1D-BCEE70A58996}C:\program files\divinity original sin - enhanced edition\shipping\eocapp.exe] => (Allow) C:\program files\divinity original sin - enhanced edition\shipping\eocapp.exe
FirewallRules: [{475E86E8-C47A-4318-A762-F627FDD74D78}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909_0\SZBrowser.exe
FirewallRules: [{B1A69F6C-9B3F-4FFF-BFA9-749E3AFF3663}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Brawl of Ages\bin\Brawl of Ages.exe
FirewallRules: [{65147264-A0D8-454C-A952-9F2A12625275}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Brawl of Ages\bin\Brawl of Ages.exe
FirewallRules: [{052FABE2-7E86-4965-B57D-90288E73F29F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Divinity Original Sin 2\bin\SupportTool.exe
FirewallRules: [{F0F5639F-7533-46F7-B620-E7903D829FA0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Divinity Original Sin 2\bin\SupportTool.exe
FirewallRules: [TCP Query User{81C48BDE-B16B-4474-A731-4E2F4DB90D0A}C:\program files (x86)\steam\steamapps\common\divinity original sin 2\bin\eocapp.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\divinity original sin 2\bin\eocapp.exe
FirewallRules: [UDP Query User{04A24247-09CF-465B-9552-53B7B7B852A0}C:\program files (x86)\steam\steamapps\common\divinity original sin 2\bin\eocapp.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\divinity original sin 2\bin\eocapp.exe
FirewallRules: [{6879FBBA-D761-4BC3-AB14-A0BBEF7A6701}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service
==================== Restore Points =========================
28-09-2017 19:23:15 Windows Update
30-09-2017 16:11:53 JRT Pre-Junkware Removal
==================== Faulty Device Manager Devices =============
Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name: Contrôleur de bus USB
Description: Contrôleur de bus USB
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (09/30/2017 02:02:56 PM) (Source: ESENT) (EventID: 455) (User: )
Description: CCleaner64 (2408) testing: L'Erreur -1032 (0xfffffbf8) s'est produite lors de l'ouverture du fichier journal C:\Users\raf\AppData\Local\Microsoft\Windows\WebCache\V01.log.
Error: (09/30/2017 02:02:56 PM) (Source: ESENT) (EventID: 489) (User: )
Description: CCleaner64 (2408) testing: Une tentative d'ouverture du fichier "C:\Users\raf\AppData\Local\Microsoft\Windows\WebCache\V01.log" pour accès en lecture seule a échoué en indiquant l'erreur système 32 (0x00000020) : "Le processus ne peut pas accéder au fichier car ce fichier est utilisé par un autre processus. ". L'opération d'ouverture de fichier échouera en indiquant l'erreur -1032 (0xfffffbf8).
Error: (09/30/2017 02:02:46 PM) (Source: ESENT) (EventID: 455) (User: )
Description: CCleaner64 (2408) testing: L'Erreur -1032 (0xfffffbf8) s'est produite lors de l'ouverture du fichier journal C:\Users\raf\AppData\Local\Microsoft\Windows\WebCache\V01.log.
Error: (09/30/2017 02:02:46 PM) (Source: ESENT) (EventID: 489) (User: )
Description: CCleaner64 (2408) testing: Une tentative d'ouverture du fichier "C:\Users\raf\AppData\Local\Microsoft\Windows\WebCache\V01.log" pour accès en lecture seule a échoué en indiquant l'erreur système 32 (0x00000020) : "Le processus ne peut pas accéder au fichier car ce fichier est utilisé par un autre processus. ". L'opération d'ouverture de fichier échouera en indiquant l'erreur -1032 (0xfffffbf8).
Error: (09/30/2017 01:31:08 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: La création du contexte d’activation a échoué pour « c:\program files (x86)\steam\steamapps\common\grim dawn\crashreporter.exe ». Erreur dans le fichier de manifeste ou de stratégie « » à la ligne .
Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active.
Les composants en conflit sont :
Composant 1 : C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Composant 2 : C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Error: (09/29/2017 12:06:23 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: La création du contexte d’activation a échoué pour « c:\program files (x86)\steam\steamapps\common\grim dawn\crashreporter.exe ». Erreur dans le fichier de manifeste ou de stratégie « » à la ligne .
Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active.
Les composants en conflit sont :
Composant 1 : C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Composant 2 : C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Error: (09/28/2017 12:11:54 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: La création du contexte d’activation a échoué pour « c:\program files (x86)\steam\steamapps\common\grim dawn\crashreporter.exe ». Erreur dans le fichier de manifeste ou de stratégie « » à la ligne .
Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active.
Les composants en conflit sont :
Composant 1 : C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Composant 2 : C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Error: (09/27/2017 10:54:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante AUDIODG.EXE, version : 6.1.7601.23471, horodatage : 0x57601f74
Nom du module défaillant : ntdll.dll, version : 6.1.7601.23889, horodatage : 0x598d5074
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0000000000048f24
ID du processus défaillant : 0x520
Heure de début de l’application défaillante : 0x01d337cde17973ab
Chemin d’accès de l’application défaillante : C:\Windows\system32\AUDIODG.EXE
Chemin d’accès du module défaillant: C:\Windows\SYSTEM32\ntdll.dll
ID de rapport : fd23fcfc-a3c5-11e7-bf87-606c6675f3e6
Error: (09/27/2017 10:12:54 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante AUDIODG.EXE, version : 6.1.7601.23471, horodatage : 0x57601f74
Nom du module défaillant : ntdll.dll, version : 6.1.7601.23889, horodatage : 0x598d5074
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0000000000048f24
ID du processus défaillant : 0x43c
Heure de début de l’application défaillante : 0x01d337a3ed456195
Chemin d’accès de l’application défaillante : C:\Windows\system32\AUDIODG.EXE
Chemin d’accès du module défaillant: C:\Windows\SYSTEM32\ntdll.dll
ID de rapport : 3ea2ff32-a3c0-11e7-bf87-606c6675f3e6
Error: (09/27/2017 12:20:53 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: La création du contexte d’activation a échoué pour « c:\program files (x86)\steam\steamapps\common\grim dawn\crashreporter.exe ». Erreur dans le fichier de manifeste ou de stratégie « » à la ligne .
Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active.
Les composants en conflit sont :
Composant 1 : C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Composant 2 : C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
System errors:
=============
Error: (09/30/2017 04:14:47 PM) (Source: atapi) (EventID: 11) (User: )
Description: Le pilote a détecté une erreur du contrôleur sur \Device\Ide\IdePort0.
Error: (09/30/2017 04:14:47 PM) (Source: atapi) (EventID: 11) (User: )
Description: Le pilote a détecté une erreur du contrôleur sur \Device\Ide\IdePort0.
Error: (09/30/2017 04:14:47 PM) (Source: atapi) (EventID: 11) (User: )
Description: Le pilote a détecté une erreur du contrôleur sur \Device\Ide\IdePort0.
Error: (09/30/2017 04:14:47 PM) (Source: atapi) (EventID: 11) (User: )
Description: Le pilote a détecté une erreur du contrôleur sur \Device\Ide\IdePort0.
Error: (09/30/2017 04:13:23 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service NVIDIA LocalSystem Container s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 1000 millisecondes : Restart the service.
Error: (09/30/2017 04:09:19 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Le serveur {5DC4F9AD-3A2B-4DF4-AC39-3FF5A19FCF4C} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (09/30/2017 04:08:32 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Spybot-S&D 2 Security Center Service n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.
Error: (09/30/2017 04:08:32 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Spybot-S&D 2 Security Center Service.
Error: (09/30/2017 04:07:55 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Spybot-S&D 2 Updating Service n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.
Error: (09/30/2017 04:07:55 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Spybot-S&D 2 Updating Service.
CodeIntegrity:
===================================
Date: 2015-12-25 15:52:36.322
Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue.
Date: 2015-12-25 15:52:36.320
Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue.
Date: 2015-12-25 15:52:36.317
Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue.
Date: 2015-12-25 15:52:36.315
Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue.
Date: 2015-12-25 15:52:36.312
Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue.
Date: 2015-12-25 15:52:36.309
Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue.
Date: 2015-12-25 15:52:36.304
Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue.
Date: 2015-12-25 15:52:36.301
Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue.
Date: 2015-12-25 15:52:36.289
Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue.
Date: 2015-12-25 15:52:36.286
Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Windows\SysWOW64\drivers\DrvAgent64.SYS, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz
Percentage of memory in use: 36%
Total physical RAM: 8088.75 MB
Available physical RAM: 5098.98 MB
Total Virtual: 16175.68 MB
Available Virtual: 13222.38 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:465.66 GB) (Free:71.86 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 6738AABD)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================