start::
CreateRestorePoint:
CloseProcesses:
C:\Users\kaena]\Desktop\Discord.lnk
DeleteValue: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|Discord
DeleteValue: HKEY_USERS\S-1-5-21-2311738851-1479075112-3940137963-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|Discord
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{5D68F515-E5AF-4FE1-9D3C-231C89FE3517}C:\program files (x86)\overwatch\_retail_\overwatch.exe"
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{EA70CD80-826E-475A-8EE8-902666A765A4}C:\program files (x86)\overwatch\_retail_\overwatch.exe"
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{28FA5813-44F4-4C51-9CC2-8815FC836C44}"
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{E0093A0C-7D34-4A38-A104-45E093A2C139}"
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{1450D44C-39D3-4085-80D4-53495E358596}C:\users\kaena\appdata\local\discord\app-1.0.9004\discord.exe"
C:\users\kaena\appdata\local\discord\app-1.0.9004\discord.exe
DeleteValue: HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{0B19BA9C-C726-441C-AA6E-48F3A71C983C}C:\users\kaena\appdata\local\discord\app-1.0.9004\discord.exe"
DeleteKey: HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64
DeleteKey: HKLM\Software\Wow6432Node\Classes\CLSID\{B298D29A-A6ED-11DE-BA8C-A68E55D89593}
DeleteKey: HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32
DeleteKey: HKLM\Software\Classes\CLSID\{B41DB860-8EE4-11D2-9906-E49FADC173CA}
DeleteKey: HKLM\Software\Classes\lnkfile\shellex\ContextMenuHandlers\WinRAR32
DeleteKey: HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files (x86)\Battle.net\Battle.net Launcher.exe.FriendlyAppName
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files (x86)\Battle.net\Battle.net Launcher.exe.ApplicationCompany
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files\QuickCPU\QuickCPU.exe.FriendlyAppName
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files\QuickCPU\QuickCPU.exe.ApplicationCompany
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files\CCleaner\CCleaner64.exe.FriendlyAppName
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files\CCleaner\CCleaner64.exe.ApplicationCompany
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files (x86)\Overwatch\Overwatch Launcher.exe.FriendlyAppName
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files (x86)\Overwatch\Overwatch Launcher.exe.ApplicationCompany
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files\obs-studio\bin\64bit\obs64.exe.FriendlyAppName
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files\obs-studio\bin\64bit\obs64.exe.ApplicationCompany
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files\Native Instruments\Kontakt\Kontakt.exe.FriendlyAppName
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files\Native Instruments\Kontakt\Kontakt.exe.ApplicationCompany
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files (x86)\Notepad++\notepad++.exe.FriendlyAppName
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files (x86)\Notepad++\notepad++.exe.ApplicationCompany
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\program files (x86)\overwatch\_retail_\overwatch.exe.FriendlyAppName
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\program files (x86)\overwatch\_retail_\overwatch.exe.ApplicationCompany
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\users\kaena\appdata\local\discord\app-1.0.9004\discord.exe.FriendlyAppName 
DeleteValue: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\users\kaena\appdata\local\discord\app-1.0.9004\discord.exe.ApplicationCompany 
DeleteValue: HKU\S-1-5-21-2311738851-1479075112-3940137963-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files (x86)\Battle.net\Battle.net Launcher.exe.FriendlyAppName
DeleteValue: HKU\S-1-5-21-2311738851-1479075112-3940137963-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files (x86)\Battle.net\Battle.net Launcher.exe.ApplicationCompany
DeleteValue: HKU\S-1-5-21-2311738851-1479075112-3940137963-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files\QuickCPU\QuickCPU.exe.FriendlyAppName
DeleteValue: HKU\S-1-5-21-2311738851-1479075112-3940137963-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files\QuickCPU\QuickCPU.exe.ApplicationCompany
DeleteValue: HKU\S-1-5-21-2311738851-1479075112-3940137963-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files\CCleaner\CCleaner64.exe.FriendlyAppName
DeleteValue: HKU\S-1-5-21-2311738851-1479075112-3940137963-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files\CCleaner\CCleaner64.exe.ApplicationCompany
DeleteValue: HKU\S-1-5-21-2311738851-1479075112-3940137963-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files (x86)\Overwatch\Overwatch Launcher.exe.FriendlyAppName
DeleteValue: HKU\S-1-5-21-2311738851-1479075112-3940137963-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files (x86)\Overwatch\Overwatch Launcher.exe.ApplicationCompany
DeleteValue: HKU\S-1-5-21-2311738851-1479075112-3940137963-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files\obs-studio\bin\64bit\obs64.exe.FriendlyAppName
DeleteValue: HKU\S-1-5-21-2311738851-1479075112-3940137963-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files\obs-studio\bin\64bit\obs64.exe.ApplicationCompany
DeleteValue: HKU\S-1-5-21-2311738851-1479075112-3940137963-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files\Native Instruments\Kontakt\Kontakt.exe.FriendlyAppName
DeleteValue: HKU\S-1-5-21-2311738851-1479075112-3940137963-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files\Native Instruments\Kontakt\Kontakt.exe.ApplicationCompany
DeleteValue: HKU\S-1-5-21-2311738851-1479075112-3940137963-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files (x86)\Notepad++\notepad++.exe.FriendlyAppName
DeleteValue: HKU\S-1-5-21-2311738851-1479075112-3940137963-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\Program Files (x86)\Notepad++\notepad++.exe.ApplicationCompany
DeleteValue: HKU\S-1-5-21-2311738851-1479075112-3940137963-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\program files (x86)\overwatch\_retail_\overwatch.exe.FriendlyAppName
DeleteValue: HKU\S-1-5-21-2311738851-1479075112-3940137963-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\program files (x86)\overwatch\_retail_\overwatch.exe.ApplicationCompany
DeleteValue: HKU\S-1-5-21-2311738851-1479075112-3940137963-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\users\kaena\appdata\local\discord\app-1.0.9004\discord.exe.FriendlyAppName 
DeleteValue: HKU\S-1-5-21-2311738851-1479075112-3940137963-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache|C:\users\kaena\appdata\local\discord\app-1.0.9004\discord.exe.ApplicationCompany 
DeleteKey: HKLM\SOFTWARE\WOW6432Node\AW Manager
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
EmptyTemp:
end::