Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-12-2017 Ran by Stijn (19-12-2017 09:50:22) Running from C:\Users\Stijn\Downloads Windows 10 Home Version 1703 15063.786 (X64) (2017-05-25 22:16:58) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-1556125091-3182902607-1253755898-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-1556125091-3182902607-1253755898-503 - Limited - Disabled) Guest (S-1-5-21-1556125091-3182902607-1253755898-501 - Limited - Disabled) Stijn (S-1-5-21-1556125091-3182902607-1253755898-1001 - Administrator - Enabled) => C:\Users\Stijn ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Bitdefender Antivirus (Enabled - Up to date) {3FB17364-4FCC-0FA7-6BBF-973897395371} AS: Bitdefender Antispyware (Enabled - Up to date) {84D09280-69F6-0029-510F-AC4AECBE19CC} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Bitdefender Firewall (Enabled) {078AF241-05A3-0EFF-40E0-3E0D69EA140A} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) . . (HKLM\...\{9C40698F-A953-4658-AFF2-F7BB385A3910}) (Version: 7.1 - Intel) Hidden . . . (HKLM-x32\...\{870E5275-5457-4BBC-98C9-BFF4B70AA5D3}) (Version: 3.1.0.12 - Intel) Hidden µTorrent (HKU\S-1-5-21-1556125091-3182902607-1253755898-1001\...\uTorrent) (Version: 3.5.0.44294 - BitTorrent Inc.) 7-Zip 15.14 (x64) (HKLM\...\7-Zip) (Version: 15.14 - Igor Pavlov) Adobe Creative Suite 6 Master Collection (HKLM-x32\...\{E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0}) (Version: 6 - Adobe Systems Incorporated) Adobe Flash Player 28 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 28.0.0.126 - Adobe Systems Incorporated) Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated) Adobe Widget Browser (HKLM-x32\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.) Android SDK Tools (HKLM-x32\...\Android SDK Tools) (Version: 1.16 - Google Inc.) Android Studio (HKLM\...\Android Studio) (Version: 1.0 - Google Inc.) Application Insights Tools for Visual Studio 2015 (HKLM-x32\...\{9F429DF7-F8DD-4980-9673-E6DACA012F6C}) (Version: 3.3 - Microsoft Corporation) Hidden Arduino (HKLM-x32\...\Arduino) (Version: 1.6.12 - Arduino LLC) ARMA 3 (HKLM-x32\...\QVJNQTM=_is1) (Version: 1 - ) Assassin's Creed IV Black Flag (HKLM-x32\...\Uplay Install 273) (Version: - Ubisoft) Autodesk 3ds Max 2017 (HKLM\...\{52B37EC7-D836-0410-0664-3C24BCED2010}) (Version: 19.0.1072.0 - Autodesk) Hidden Autodesk 3ds Max 2017 (HKLM\...\Autodesk 3ds Max 2017) (Version: 19.0.1072.0 - Autodesk) Autodesk 3ds Max 2017 Populate Data (HKLM\...\{2B07E17E-A072-43BD-9DCC-369B56C16698}) (Version: 19.0.0.0 - Autodesk) Autodesk Advanced Material Library Image Library 2017 (HKLM-x32\...\{8ED2ED41-4455-449D-993C-751C039089B9}) (Version: 15.11.3.0 - Autodesk) Autodesk Backburner 2017.0 (HKLM-x32\...\{0038F5AA-8482-4BB2-8A28-3FEA1D58D780}) (Version: 17.0.0.0 - Autodesk) Autodesk Civil View for 3ds Max 2017 64-bit (HKLM\...\{1C4FFAF0-7DBB-4F7A-A386-46747D060826}) (Version: 19.0.0.0 - Autodesk) Autodesk Inventor Server Engine for 3ds Max 2017 (HKLM\...\{9167CA34-4E68-49E3-8892-3C439739D2D3}) (Version: 19.0 - Autodesk) Autodesk License Service (x64) - 3.1 (HKLM\...\{EB6FE58F-8576-4272-BB9C-6B47D9EDFA4D}) (Version: 3.1.26.0 - Autodesk) Autodesk Material Library 2017 (HKLM-x32\...\{8FB9F735-D64C-4991-8D91-4CDDAB1ABDEE}) (Version: 15.11.3.0 - Autodesk) Autodesk Material Library Base Resolution Image Library 2017 (HKLM-x32\...\{3FBFBC43-9882-43FA-B979-2D53896747B3}) (Version: 15.11.3.0 - Autodesk) Autodesk Material Library Medium Resolution Image Library 2017 (HKLM-x32\...\{CB6E007E-701D-42CD-AF0E-4BE9C36C7F7C}) (Version: 15.11.3.0 - Autodesk) Autodesk Revit Interoperability for 3ds Max 2017 (HKLM\...\{0BB716E0-1700-0610-0000-097DC2F354DF}) (Version: 17.0.411.0 - Autodesk) Hidden Autodesk Revit Interoperability for 3ds Max 2017 (HKLM\...\Autodesk Revit Interoperability for 3ds Max 2017) (Version: 17.0.411.0 - Autodesk) Azure AD Authentication Connected Service (HKLM-x32\...\{3FEAC561-1CF6-41D6-B0F3-BECDD9C88A1B}) (Version: 14.0.23107 - Microsoft Corporation) Hidden AzureTools.Notifications (HKLM-x32\...\{1E5CA362-39B6-4BD0-B9C0-69CF15F0FEA2}) (Version: 2.7.30611.1601 - Microsoft Corporation) Hidden Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandisoft.com) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Behaviors SDK (Windows Phone) for Visual Studio 2013 (HKLM-x32\...\{C1609E6E-10B5-46F4-A48C-AC57045D0B88}) (Version: 12.0.51210.80 - Microsoft Corporation) Hidden Behaviors SDK (Windows) for Visual Studio 2013 (HKLM-x32\...\{B2429EA1-767E-4947-A458-F2204A2AA1BB}) (Version: 12.0.51210.80 - Microsoft Corporation) Hidden BFME2 All-In-One Patch Installer & Switcher version 1.6 (HKLM-x32\...\{B258BEC7-DFB5-4DDC-BA90-BF02B91CA0C6}_is1) (Version: 1.6 - dijkstra & forshire) Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 20.0.25.1378 - Bitdefender) Bitdefender Internet Security (HKLM\...\Bitdefender) (Version: 22.0.1.1 - Bitdefender) bl (HKLM-x32\...\{2A075BB4-E976-4278-BF3F-E5C6945D84C0}) (Version: 1.0.0 - Your Company Name) Hidden Blend for Visual Studio SDK for .NET 4.5 (HKLM-x32\...\{37E53780-3944-4A6A-842F-727128E8616E}) (Version: 3.0.40218.0 - Microsoft Corporation) Hidden Blend for Visual Studio SDK for Windows Phone 8.0 (HKLM-x32\...\{403759F5-1D77-49F4-812D-AF43196E8C74}) (Version: 3.0.30924.0 - Microsoft Corporation) Hidden Brackets (HKLM-x32\...\{0DA290D2-0583-4967-9EC0-93C1F603DD13}) (Version: 1.6 - brackets.io) BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.71.1081 - AB Team, d.o.o.) Build Tools - amd64 (HKLM\...\{03DE1AEE-D3FA-4BF3-9150-28F54815E888}) (Version: 12.0.31010 - Microsoft Corporation) Hidden Build Tools - x86 (HKLM-x32\...\{235CCCE6-3CB9-4E09-9D8E-0F212644C668}) (Version: 12.0.31010 - Microsoft Corporation) Hidden Build Tools Language Resources - amd64 (HKLM\...\{6618DB5E-8788-46E1-94F4-9F1C0FC075BD}) (Version: 12.0.31010 - Microsoft Corporation) Hidden Build Tools Language Resources - x86 (HKLM-x32\...\{772590BC-E61B-4080-B9D5-A71497612F36}) (Version: 12.0.31010 - Microsoft Corporation) Hidden CCleaner (HKLM\...\CCleaner) (Version: 5.37 - Piriform) Cheat Engine 6.5 (HKLM-x32\...\Cheat Engine 6.5_is1) (Version: - Cheat Engine) CodedUITest81 (HKLM-x32\...\{3AF80693-9047-3BAA-9554-22AB6C428AB4}) (Version: 14.0.23107 - Microsoft Corporation) Hidden Composer - Php Dependency Manager (HKLM-x32\...\{7315AF68-E777-496A-A6A2-4763A98ED35A}_is1) (Version: - getcomposer.org) Curse (HKLM-x32\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Curse) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment) Dotfuscator and Analytics Community Edition 5.19.0 (HKLM-x32\...\{4C5B1DD0-7E8E-4972-9247-818E6D030552}) (Version: 5.19.0.2930 - PreEmptive Solutions) Hidden ELAN Touchpad 11.5.22.2_X64_WHQL (HKLM\...\Elantech) (Version: 11.5.22.2 - ELAN Microelectronic Corp.) Entity Framework 6.1.3 Tools for Visual Studio 2015 Update 1 (HKLM-x32\...\{2A56910C-69C8-495D-8ED8-9080F0A14E58}) (Version: 14.0.41103.0 - Microsoft Corporation) f.lux (HKU\S-1-5-21-1556125091-3182902607-1253755898-1001\...\Flux) (Version: - f.lux Software LLC) GanttProject (HKLM-x32\...\GanttProject) (Version: - ) GDR 4213 for SQL Server 2014 (KB3070446) (64-bit) (HKLM\...\KB3070446) (Version: 12.1.4213.0 - Microsoft Corporation) GDR 4232 for SQL Server 2014 (KB3194720) (64-bit) (HKLM\...\KB3194720) (Version: 12.1.4232.0 - Microsoft Corporation) GDR 4237 for SQL Server 2014 (KB4019091) (64-bit) (HKLM\...\KB4019091) (Version: 12.1.4237.0 - Microsoft Corporation) Git version 2.10.1 (HKLM\...\Git_is1) (Version: 2.10.1 - The Git Development Community) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 63.0.3239.84 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden Gtk# for .Net 2.12.30 (HKLM-x32\...\{CA8017BD-8271-4C93-A409-186375C5A5CA}) (Version: 2.12.30 - Xamarin, Inc.) Hextech Repair Tool (HKLM-x32\...\{7F9A97E6-E666-11E5-B582-B88687E82322}) (Version: 1.1.15 - Riot Games, Inc.) Hitman (HKLM-x32\...\Hitman_is1) (Version: - ) IIS 10.0 Express (HKLM\...\{7A28A2B0-458B-4A58-84AC-C90D2D4B79FB}) (Version: 10.0.1735 - Microsoft Corporation) IIS Express Application Compatibility Database for x64 (HKLM\...\{08274920-8908-45c2-9258-8ad67ff77b09}.sdb) (Version: - ) IIS Express Application Compatibility Database for x86 (HKLM\...\{ad846bae-d44b-4722-abad-f7420e08bcd9}.sdb) (Version: - ) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4653 - Intel Corporation) Intel® Driver & Support Assistant (HKLM-x32\...\{2550a40e-aac6-4d21-9361-744d33bec573}) (Version: 3.1.0.12 - Intel) Intel® Hardware Accelerated Execution Manager (HKLM\...\{6230EE50-BD4E-4B39-904D-3E7600053E08}) (Version: 6.2.1 - Intel Corporation) IntelliJ IDEA 2016.2.4 (HKLM-x32\...\IntelliJ IDEA 2016.2.4) (Version: 162.2032.8 - JetBrains s.r.o.) IntelliJ IDEA 2017.3 (HKLM-x32\...\IntelliJ IDEA 2017.3) (Version: 173.3727.127 - JetBrains s.r.o.) Java 8 Update 141 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180141F0}) (Version: 8.0.1410.15 - Oracle Corporation) Java SE Development Kit 7 Update 71 (HKLM-x32\...\{32A3A4F4-B792-11D6-A78A-00B0D0170710}) (Version: 1.7.0.710 - Oracle) Java SE Development Kit 8 Update 102 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180102}) (Version: 8.0.1020.14 - Oracle Corporation) JetBrains PhpStorm 10.0.3 (HKLM-x32\...\PhpStorm 10.0.3) (Version: 143.1770 - JetBrains s.r.o.) League of Legends (HKLM-x32\...\{2F5D7825-7460-43B1-B467-7F9737557108}) (Version: 4.2.1 - Riot Games) Hidden League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc) League of Legends (HKLM-x32\...\League of Legends 4.2.1) (Version: 4.2.1 - Riot Games) LocalESPC (HKLM-x32\...\{62910715-63E3-0AB0-0B29-99140DE1C15E}) (Version: 8.59.29989 - Microsoft Corporation) Hidden LocalESPCui for en-us (HKLM-x32\...\{326A5052-061C-F656-31E3-3B73842ABD46}) (Version: 8.59.29989 - Microsoft) Hidden LOOT version 0.11.0 (HKLM-x32\...\{BF634210-A0D4-443F-A657-0DCE38040374}_is1) (Version: 0.11.0 - LOOT Team) Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes) Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (ENU) (HKLM-x32\...\{290FC320-2F5A-329E-8840-C4193BD7A9EE}) (Version: 4.5.51209 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{19E8AE59-4D4A-3534-B567-6CC08FA4102E}) (Version: 4.5.51651 - Microsoft Corporation) Microsoft .NET Framework 4.6 SDK (HKLM-x32\...\{B5915D37-0637-4A26-A3AA-C5DC9F856370}) (Version: 4.6.00081 - Microsoft Corporation) Microsoft .NET Framework 4.6 Targeting Pack (ENU) (HKLM-x32\...\{034547E9-D8FA-49E7-8B9C-4C9861FB9146}) (Version: 4.6.00127 - Microsoft Corporation) Microsoft .NET Framework 4.6 Targeting Pack (HKLM-x32\...\{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}) (Version: 4.6.00081 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 SDK (HKLM-x32\...\{2F0ECC80-B9E4-4485-8083-CD32F22ABD92}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 Targeting Pack (ENU) (HKLM-x32\...\{8EEB28EE-5141-411C-9CF0-9952264FE4AF}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 Targeting Pack (HKLM-x32\...\{8BC3EEC9-090F-4C53-A8DA-1BEC913040F9}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Version Manager (x64) 1.0.0-beta5 (HKLM\...\{c5a4aba3-1aba-3ef8-b2d5-c3fa37f59738}) (Version: 1.0.10609.0 - Microsoft Corporation) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.24720 - Microsoft Corporation) Microsoft ODBC Driver 11 for SQL Server (HKLM\...\{BE00C353-3529-4C31-AED2-AE3598D2CD2B}) (Version: 12.1.4237.0 - Microsoft Corporation) Microsoft Office 365 ProPlus - en-us (HKLM\...\O365ProPlusRetail - en-us) (Version: 16.0.8201.2209 - Microsoft Corporation) Microsoft Office 365 ProPlus - nl-nl (HKLM\...\O365ProPlusRetail - nl-nl) (Version: 16.0.8201.2209 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1556125091-3182902607-1253755898-1001\...\OneDriveSetup.exe) (Version: 17.3.7076.1026 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation) Microsoft Silverlight 5 SDK (HKLM-x32\...\{E1FBB3D4-ADB0-4949-B101-855DA061C735}) (Version: 5.0.61118.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft SQL Server 2008 Setup Support Files (HKLM\...\{6292D514-17A4-403F-98F9-E150F10C043D}) (Version: 10.3.5500.0 - Microsoft Corporation) Microsoft SQL Server 2012 Command Line Utilities (HKLM\...\{9D573E71-1077-4C7E-B4DB-4E22A5D2B48B}) (Version: 11.0.2100.60 - Microsoft Corporation) Microsoft SQL Server 2012 Native Client (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation) Microsoft SQL Server 2012 Setup (English) (HKLM\...\{977887EC-1C9B-47FA-8489-88E5E7F43D5E}) (Version: 11.2.5058.0 - Microsoft Corporation) Microsoft SQL Server 2014 (64-bit) (HKLM\...\Microsoft SQL Server SQLServer2014) (Version: - Microsoft Corporation) Microsoft SQL Server 2014 Express LocalDB (HKLM\...\{EFE11C1C-4262-48AB-B344-FD85BB048256}) (Version: 12.1.4237.0 - Microsoft Corporation) Microsoft SQL Server 2014 Management Objects (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server 2014 Management Objects (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server 2014 Setup (English) (HKLM\...\{EDB86AFA-B3AA-45F6-BEEB-DA14A47FC1FB}) (Version: 12.1.4237.0 - Microsoft Corporation) Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{FF7DDA05-6EA7-4C01-B44A-3E57F8B9B97B}) (Version: 12.1.4100.1 - Microsoft Corporation) Microsoft SQL Server 2014 T-SQL Language Service (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation) Microsoft SQL Server Data Tools - enu (14.0.50616.0) (HKLM-x32\...\{58246C80-3941-4B69-AE31-264644E2ADB8}) (Version: 14.0.50616.0 - Microsoft Corporation) Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{68BA34E8-9B9D-4A74-83F0-7D366B532D75}) (Version: 12.0.2402.11 - Microsoft Corporation) Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{718FFB65-F6E4-4D62-861F-ED10ED32C936}) (Version: 12.0.2402.11 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual Studio Enterprise 2015 (HKLM-x32\...\{a47f6f59-0768-45af-8aa6-10ad157a603e}) (Version: 14.0.23107.156 - Microsoft Corporation) Microsoft VSS Writer for SQL Server 2014 (HKLM\...\{366CD715-2FF4-40B4-A8B4-A05E5D21A945}) (Version: 12.1.4100.1 - Microsoft Corporation) Microsoft Web Deploy 3.6 (HKLM\...\{ED4CC1E5-043E-4157-8452-B5E533FE2BA1}) (Version: 3.1238.1955 - Microsoft Corporation) Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang) Motorola Mobile Drivers Installation 6.4.0 (HKLM\...\{27986EDD-C9EC-4B52-B92F-06D073F0AA52}) (Version: 6.4.0 - Motorola Mobility LLC) Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DC5E5027-65E8-41CB-815C-9AAB48BFB8E2}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Firefox 57.0.2 (x64 nl) (HKLM\...\Mozilla Firefox 57.0.2 (x64 nl)) (Version: 57.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 57.0.2.6549 - Mozilla) MSBuild/NuGet Integration 14.0 (x86) (HKLM-x32\...\{FA0599C5-C083-41BE-8AEA-E8EB9070D128}) (Version: 14.0.24720 - Microsoft Corporation) Hidden MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) Multi-Device Hybrid Apps using C# - Templates - ENU (HKLM-x32\...\{12D99739-FFD3-3761-8AA6-F929E0FE407E}) (Version: 14.0.23107 - Microsoft Corporation) Hidden Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.63.14 - Black Tree Gaming) Node.js (HKLM\...\{672B5547-D20B-4D19-9BFD-B93C32BC77DA}) (Version: 6.9.1 - Node.js Foundation) NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: - ) NVIDIA GeForce Experience 3.11.0.73 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.11.0.73 - NVIDIA Corporation) NVIDIA Graphics Driver 388.59 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.59 - NVIDIA Corporation) NVIDIA HD Audio Driver 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation) NVIDIA mental ray and IRay feature plugins for 3ds Max 2017 (HKLM\...\{6ABEC32F-B90F-4499-B3A3-FF8A00948178}) (Version: 19.0.0.0 - Autodesk) NVIDIA mental ray and IRay rendering plugins for 3ds Max 2017 (HKLM\...\{4B889650-52DC-49E0-AB9C-F501B91002E3}) (Version: 19.0.0.0 - Autodesk) NVIDIA nTune (HKLM-x32\...\InstallShield_{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}) (Version: 1.00.0000 - NVIDIA Corporation) NVIDIA PhysX System Software 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.8201.2209 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.8201.2209 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.8201.2209 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.8201.2075 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0413-0000-0000000FF1CE}) (Version: 16.0.8201.2075 - Microsoft Corporation) Hidden Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - ) PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden ph (HKLM-x32\...\{185F9795-9663-4F13-9EF9-307A282ADB5A}) (Version: 1.0.0 - Your Company Name) Hidden Planet Coaster (HKLM-x32\...\Planet Coaster_is1) (Version: - ) PreEmptive Analytics Visual Studio Components (HKLM-x32\...\{436A18DD-5F2C-4B3C-985E-AD3C13B0CC25}) (Version: 1.2.5134.1 - PreEmptive Solutions) Hidden Prerequisites for SSDT (HKLM-x32\...\{21373064-AD95-48DB-A32E-0D9E08EF7355}) (Version: 12.0.2000.8 - Microsoft Corporation) Prey Anti-Theft (HKLM-x32\...\{592D43DB-C3CD-41D2-A967-AB5B510C029C}) (Version: 1.5.0 - Prey, Inc.) Hidden Project and Item Templates for Visual Studio Community 2015 - ENU (HKLM-x32\...\{85619B33-76D7-4FF8-A04D-6E568B0CF29A}) (Version: 14.0.23107 - Microsoft Corporation) Hidden qBittorrent 3.3.7 (HKLM-x32\...\qBittorrent) (Version: 3.3.7 - The qBittorrent project) Random Mouse Clicker version 2.3 (HKLM-x32\...\{FE29B566-569E-4930-BC74-CB99038E172E}_is1) (Version: 2.3 - MurGee.com) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.15063.28162 - Realtek Semiconduct Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.7.107.2016 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8308 - Realtek Semiconductor Corp.) Revo Uninstaller 2.0.4 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.4 - VS Revo Group, Ltd.) Roslyn Language Services - x86 (HKLM-x32\...\{6A7F37C9-1E37-3A9A-93D4-09BBEB4BD343}) (Version: 14.0.24720 - Microsoft Corporation) Hidden Roslyn Language Services - x86 (HKLM-x32\...\{6C1985E7-E1C5-3A95-86EF-2C62465F15C3}) (Version: 14.0.23107 - Microsoft Corporation) Hidden Service Pack 1 for SQL Server 2014 (KB3058865) (64-bit) (HKLM\...\KB3058865) (Version: 12.1.4100.1 - Microsoft Corporation) Skype™ 7.32 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.32.103 - Skype Technologies S.A.) SoundWire Server version 1.9 (HKLM-x32\...\{E15658BC-7742-4397-999F-98B1BD11B784}_is1) (Version: 1.9 - GeorgieLabs) Speccy (HKLM\...\Speccy) (Version: 1.31 - Piriform) SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - ) SQL Server 2014 Common Files (HKLM\...\{BD1CD96B-FE4B-4EAE-83D4-6EF55AB5779C}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden SQL Server 2014 Common Files (HKLM\...\{F7012F84-80F5-4C25-852E-B1BA03276FE6}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden SQL Server 2014 Database Engine Services (HKLM\...\{17531BCD-C627-46A2-9F1E-7CC920E0E94A}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden SQL Server 2014 Database Engine Services (HKLM\...\{5082A9F3-AEE5-4639-9BA7-C19661BA7331}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden SQL Server 2014 Database Engine Shared (HKLM\...\{ACC530B8-B6B4-40D6-B59B-152468CF47D0}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden SQL Server 2014 Database Engine Shared (HKLM\...\{D1B847A9-B06B-4264-9EF0-78E6E1571E65}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden SQL Server Browser for SQL Server 2014 (HKLM-x32\...\{3204DE95-97D2-4261-A286-98A262E171D4}) (Version: 12.1.4100.1 - Microsoft Corporation) Sql Server Customer Experience Improvement Program (HKLM\...\{6476DB81-F263-4C04-8574-AAD31136C304}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden Team Explorer for Microsoft Visual Studio 2015 (HKLM-x32\...\{48992F68-BEE6-35D8-89AC-6A81406F1096}) (Version: 14.0.24712 - Microsoft Corporation) Hidden Team Foundation Server 2015 Update 3 (HKLM-x32\...\{bf12139b-9d89-491c-867b-82233892e7a7}) (Version: 14.102.25423.0 - Microsoft) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH) TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.72365 - TeamViewer) Test Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{9EABBFE1-7EED-47D9-8FB8-21D7E4808057}) (Version: 14.0.23107 - Microsoft Corporation) Hidden The Battle for Middle-earth II (HKLM-x32\...\{2A9F95AB-65A3-432c-8631-B8BC5BF7477A}) (Version: - ) TortoiseGit 2.1.0.0 (64 bit) (HKLM\...\{C84D9F56-A545-41CC-845E-A3AD7E9E9130}) (Version: 2.1.0.0 - TortoiseGit) TortoiseSVN 1.9.3.27038 (64 bit) (HKLM\...\{2114A96B-51D7-4C45-B2E1-003562464D99}) (Version: 1.9.27038 - TortoiseSVN) TypeScript Power Tool (HKLM-x32\...\{CF436B98-B0FE-447F-8E46-68E0B14FDDE0}) (Version: 1.7.6.0 - Microsoft Corporation) Hidden TypeScript Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{F66F9C2A-E14B-4D30-82C5-A4E32B569286}) (Version: 1.7.6.0 - Microsoft Corporation) Hidden TypeScript Tools for Microsoft Visual Studio 2015 1.7.6.0 (HKLM-x32\...\{5ee9a47a-3630-4016-b76d-dc752e9218dd}) (Version: 1.7.24809.0 - Microsoft Corporation) Unigine Valley Benchmark version 1.0 (HKLM-x32\...\Unigine Valley Benchmark_is1) (Version: 1.0 - Unigine Corp.) Universal CRT Extension SDK (HKLM-x32\...\{1FBCBC17-4527-2340-0832-B1D49C41FF67}) (Version: 10.0.26624 - Microsoft Corporation) Hidden Universal CRT Extension SDK (HKLM-x32\...\{284FA9A0-CEDD-81D3-5A19-5858E95FD0C4}) (Version: 10.0.10150 - Microsoft Corporation) Hidden Universal CRT Headers Libraries and Sources (HKLM-x32\...\{8BFBEC30-33CC-13B4-849F-3B036F27466A}) (Version: 10.0.26624 - Microsoft Corporation) Hidden Universal CRT Headers Libraries and Sources (HKLM-x32\...\{ABD37F71-FC3F-F525-C7B3-BDD95F684C51}) (Version: 10.0.10150 - Microsoft Corporation) Hidden Universal CRT Redistributable (HKLM-x32\...\{0460C87B-7F4C-3170-FAC9-B7A6AE5CE4E9}) (Version: 10.0.26624 - Microsoft Corporation) Hidden Universal CRT Tools x64 (HKLM\...\{33952D66-D503-10CA-DD8E-E365C15EB4E0}) (Version: 10.0.26624 - Microsoft Corporation) Hidden Universal CRT Tools x86 (HKLM-x32\...\{B048B812-32DE-3474-FA64-223B6A63AD47}) (Version: 10.0.26624 - Microsoft Corporation) Hidden Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation) Uplay (HKLM-x32\...\Uplay) (Version: 45.0 - Ubisoft) Visual Studio 2015 Update 1 (KB3022398) (HKLM-x32\...\{fcaa9dba-9438-48b6-ad91-4e9b4cc7084a}) (Version: 14.0.24720 - Microsoft Corporation) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN) VMware Workstation (HKLM\...\{0AD91785-F9BD-47FD-84F7-9E27B5A1853D}) (Version: 12.1.0 - VMware, Inc.) VS Update core components (HKLM-x32\...\{5F7870A1-0586-313E-A9FF-3249DCE9F63A}) (Version: 14.0.24720 - Microsoft Corporation) Hidden VTFEdit 1.2.5 (HKLM-x32\...\VTFEdit_is1) (Version: - Neil Jedrzejewski & Ryan Gregg) Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden WCF Data Services 5.6.4 Runtime (HKLM-x32\...\{DB85E7BD-B2DD-43D4-B3C0-23D7B527B597}) (Version: 5.6.62175.4 - Microsoft Corporation) Hidden WCF Data Services Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{0A3B508E-5638-4471-BCC9-954E1868CB86}) (Version: 5.6.62175.4 - Microsoft Corporation) Hidden Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) WinHTTrack Website Copier 3.48-22 (x64) (HKLM\...\WinHTTrack Website Copier_is1) (Version: 3.48.22 - HTTrack) WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - CACE Technologies) WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) XAMPP (HKLM-x32\...\xampp) (Version: 7.1.1-0 - Bitnami) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-1556125091-3182902607-1253755898-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation) ShellIconOverlayIdentifiers: [ Tortoise1Normal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers: [ Tortoise2Modified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers: [ Tortoise3Conflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers: [ Tortoise4Locked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers: [ Tortoise5ReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers: [ Tortoise6Deleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers: [ Tortoise7Added] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers: [ Tortoise8Ignored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers: [ Tortoise9Unversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File ShellIconOverlayIdentifiers-x32: [ Tortoise1Normal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers-x32: [ Tortoise2Modified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers-x32: [ Tortoise3Conflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers-x32: [ Tortoise4Locked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers-x32: [ Tortoise5ReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers-x32: [ Tortoise6Deleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers-x32: [ Tortoise7Added] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers-x32: [ Tortoise8Ignored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers-x32: [ Tortoise9Unversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => D:\PROGRAMS\7-Zip\7-zip.dll -> No File ContextMenuHandlers1: [TortoiseGit] -> {10A0FDD2-B0C0-4CD4-A7AE-E594CE3B91C8} => D:\PROGRAMS\TortoiseGit\bin\TortoiseGitStub.dll -> No File ContextMenuHandlers1: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => D:\PROGRAMS\TortoiseSVN\bin\TortoiseStub.dll -> No File ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-14] (Alexander Roshal) ContextMenuHandlers2-x32: [AlcoholShellEx] -> {32020A01-506E-484D-A2A8-BE3CF17601C3} => C:\Program Files (x86)\Alcohol Soft\Alcohol 52\AxShlex.dll [2014-09-06] (Alcohol Soft Development Team) ContextMenuHandlers2-x32: [AlcoholShellEx64] -> {AF67B665-D752-424E-9A03-C7C218F2844F} => C:\Program Files (x86)\Alcohol Soft\Alcohol 52\AxShlEx64.dll [2014-09-06] (Alcohol Soft Development Team) ContextMenuHandlers2-x32: [TortoiseGit] -> {10A0FDD2-B0C0-4CD4-A7AE-E594CE3B91C8} => D:\PROGRAMS\TortoiseGit\bin\TortoiseGitStub.dll -> No File ContextMenuHandlers2-x32: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => D:\PROGRAMS\TortoiseSVN\bin\TortoiseStub.dll -> No File ContextMenuHandlers2-x32-x32: [VMDiskMenuHandler] -> {271DC252-6FE1-4D59-9053-E4CF50AB99DE} => C:\Program Files (x86)\VMware\VMware Workstation\vmdkShellExt.dll [2015-11-25] (VMware, Inc.) ContextMenuHandlers2-x32-x32: [VMDiskMenuHandler64] -> {E4D28EDC-8C0B-43EE-9E7D-C8A8682334DC} => C:\Program Files (x86)\VMware\VMware Workstation\x64\vmdkShellExt64.dll [2015-11-25] (VMware, Inc.) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => D:\PROGRAMS\7-Zip\7-zip.dll -> No File ContextMenuHandlers4: [TortoiseGit] -> {10A0FDD2-B0C0-4CD4-A7AE-E594CE3B91C8} => D:\PROGRAMS\TortoiseGit\bin\TortoiseGitStub.dll -> No File ContextMenuHandlers4: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => D:\PROGRAMS\TortoiseSVN\bin\TortoiseStub.dll -> No File ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-05-18] (Intel Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-12-05] (NVIDIA Corporation) ContextMenuHandlers5: [TortoiseGit] -> {10A0FDD2-B0C0-4CD4-A7AE-E594CE3B91C8} => D:\PROGRAMS\TortoiseGit\bin\TortoiseGitStub.dll -> No File ContextMenuHandlers5: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => D:\PROGRAMS\TortoiseSVN\bin\TortoiseStub.dll -> No File ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => D:\PROGRAMS\7-Zip\7-zip.dll -> No File ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes) ContextMenuHandlers6: [TortoiseGit] -> {10A0FDD2-B0C0-4CD4-A7AE-E594CE3B91C8} => D:\PROGRAMS\TortoiseGit\bin\TortoiseGitStub.dll -> No File ContextMenuHandlers6: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => D:\PROGRAMS\TortoiseSVN\bin\TortoiseStub.dll -> No File ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-14] (Alexander Roshal) ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {072CFCC2-A345-4A1F-A3C3-9168078048AC} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-stijn258@hotmail.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04] (Adobe Systems Incorporated) Task: {22035CD9-99C6-499A-9C68-5F87FC55D178} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2017-11-08] (Piriform Ltd) Task: {26CC441B-BAE6-4F4C-B25C-928A55D5C2EC} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-12-08] (Microsoft Corporation) Task: {300A9ADE-1B9C-4716-9F3C-7A3EB524C3AC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-10] (Google Inc.) Task: {43691D8F-8D82-4186-97D2-56032BC37E5F} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-10-06] () Task: {5CEFC5D8-7EAD-4102-891A-C0D9C70553F7} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-12-05] (NVIDIA Corporation) Task: {66259946-1ABB-4463-8B57-9C9ABABEE915} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [2017-04-11] (Bitdefender) Task: {6E886393-7DA2-44AA-B268-4950A01501D4} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-12-08] (Microsoft Corporation) Task: {710EB3CF-0653-4DAA-9CE8-6C7DE498A937} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-11-23] (Microsoft Corporation) Task: {72F92E19-2E60-4F5C-BFA0-2EC4726C00CF} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-11-23] (Microsoft Corporation) Task: {792D5985-62B2-41D2-927F-9C9785434B36} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-11-08] (Piriform Ltd) Task: {7B083D21-B921-4D97-8B08-138E7361B4F3} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-12-05] (NVIDIA Corporation) Task: {8B28B8FD-E2D9-41D7-816C-3495665990A4} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\task.vbs" Task: {8CADCACF-63EB-44C8-BC9B-218528F30112} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-12-13] (Adobe Systems Incorporated) Task: {90BB4555-DB01-475F-9E95-F27A323C7387} - System32\Tasks\Bitdefender AgentTask_AD394AE64E874073B10A89FEEC305A3C => C:\Program Files\Bitdefender\Bitdefender 2017\bdagent.exe [2017-12-13] (Bitdefender) Task: {BFECDD5B-FA3A-4302-98C2-8C421A7D681F} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-12-05] (NVIDIA Corporation) Task: {C388EB0E-D3E4-4675-9948-2198E86DC486} - System32\Tasks\S-1-5-21-1556125091-3182902607-1253755898-1001\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [2017-11-02] (Microsoft Corporation) Task: {D8E516C3-CA2C-468D-84A4-6BB0E70D3E36} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2016-03-17] (Intel Corporation) Task: {DD401FA8-3C0D-48FC-AD6F-02C6DC02AB4C} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-12-05] (NVIDIA Corporation) Task: {E6400C0F-6440-4B87-B940-1E03E59D43BC} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2017-12-08] (Microsoft Corporation) Task: {E8C2A8F6-0C93-4AE7-89B0-C33A1EFC66C6} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-12-05] (NVIDIA Corporation) Task: {EBD869B4-B651-4D8A-87D4-0FF2CE39323D} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-10-06] () Task: {F8D21870-3CA1-4CC9-85E3-AAF9F3C98986} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-12-05] (NVIDIA Corporation) Task: {FB62E552-CCB9-4C7F-AD43-80A9A4ED140B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-10] (Google Inc.) Task: {FE7948B5-9CD4-44F0-A57B-9459EBEF010F} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-12-05] (NVIDIA Corporation) Task: {FF04301E-B8AA-4ACA-9200-3993C4710231} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-12-05] (NVIDIA Corporation) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) ==================== Shortcuts & WMI ======================== (The entries could be listed to be restored or removed.) Shortcut: C:\Users\Stijn\Favorites\NCH Software Download Site.lnk -> hxxp://www.nch.com.au/index.htm ShortcutWithArgument: C:\Users\Stijn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\App-opstartprogramma van Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --show-app-list ShortcutWithArgument: C:\Users\Stijn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-apps\Postman.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=fhbjgbiflinjbdggehcddcbncdddomop ==================== Loaded Modules (Whitelisted) ============== 2017-05-13 00:22 - 2017-02-07 11:34 - 001008448 _____ () C:\Program Files\Bitdefender\Bitdefender 2017\otengines_001_001\ashttpbr.mdl 2017-05-13 00:22 - 2017-02-07 11:34 - 000541952 _____ () C:\Program Files\Bitdefender\Bitdefender 2017\otengines_001_001\ashttpdsp.mdl 2017-05-13 00:22 - 2017-02-07 11:34 - 003243920 _____ () C:\Program Files\Bitdefender\Bitdefender 2017\otengines_001_001\ashttpph.mdl 2017-05-13 00:22 - 2017-02-07 11:34 - 001544568 _____ () C:\Program Files\Bitdefender\Bitdefender 2017\otengines_001_001\ashttprbl.mdl 2017-12-18 15:36 - 2017-03-07 19:15 - 000824592 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe 2017-12-18 15:36 - 2017-03-07 19:18 - 001981712 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_modeler.dll 2017-12-18 15:36 - 2017-03-07 19:10 - 000248080 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\acpi_battery_input.dll 2017-12-18 15:36 - 2017-03-07 19:09 - 000213776 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\wifi_input.dll 2017-12-18 15:36 - 2017-03-07 19:10 - 000175376 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\devices_use_input.dll 2017-12-18 15:36 - 2017-03-07 19:09 - 000204048 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_system_power_state_input.dll 2017-12-18 15:36 - 2017-03-07 19:08 - 000337680 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_process_input.dll 2017-12-18 15:36 - 2017-03-07 19:05 - 000148240 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_winstat_input.dll 2017-12-18 15:36 - 2017-03-07 19:05 - 000178448 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_acdc_setting_input.dll 2017-12-18 15:36 - 2017-03-07 19:10 - 000213776 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\sema_thermal_input.dll 2017-12-18 15:36 - 2017-03-07 19:06 - 000229648 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_quality_and_reliability_input.dll 2017-12-18 15:36 - 2017-03-07 19:07 - 000225040 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_sampler_input.dll 2017-12-18 15:36 - 2017-03-07 19:05 - 000212752 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_stress_odometer_input.dll 2017-12-18 15:36 - 2017-03-07 19:07 - 000220432 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_turbo_input.dll 2017-12-15 19:58 - 2017-12-05 22:17 - 001267136 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2017-03-07 19:04 - 2017-03-07 19:04 - 000157456 _____ () C:\Program Files\Intel Driver and Support Assistant\SUR\SurSvc.exe 2017-03-18 21:58 - 2017-03-18 21:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2017-03-18 21:59 - 2017-03-19 03:31 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-12-12 11:54 - 2017-12-12 11:55 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2017-12-12 11:54 - 2017-12-12 11:55 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2017-12-12 11:54 - 2017-12-12 11:55 - 024735744 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x64__kzf8qxf38zg5c\SkyWrap.dll 2017-12-12 11:54 - 2017-12-12 11:55 - 002551808 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x64__kzf8qxf38zg5c\skypert.dll 2017-12-12 11:54 - 2017-12-12 11:55 - 000671744 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll 2016-11-17 16:51 - 2017-10-06 08:51 - 008931008 _____ () C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\1033\GrooveIntlResource.dll 2017-12-12 17:25 - 2017-12-06 05:24 - 004063064 _____ () C:\Program Files (x86)\Google\Chrome\Application\63.0.3239.84\libglesv2.dll 2017-12-12 17:25 - 2017-12-06 05:24 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\63.0.3239.84\libegl.dll 2017-12-18 15:36 - 2017-03-07 19:13 - 000747792 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\esrv.exe 2017-12-18 15:36 - 2017-03-07 19:11 - 000238864 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\foreground_window_input.dll 2017-12-18 15:36 - 2017-03-07 19:08 - 000218384 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_user_waiting_input.dll 2016-06-29 19:01 - 2016-06-29 19:01 - 008166536 _____ () C:\Program Files (x86)\SpeedFan\speedfan.exe 2015-11-25 18:09 - 2015-11-25 18:09 - 001301696 _____ () C:\Program Files (x86)\VMware\VMware Workstation\libxml2.dll 2017-12-15 19:58 - 2017-12-05 22:17 - 001040320 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2017-12-19 09:44 - 2017-12-19 09:44 - 000158720 _____ () C:\Users\Stijn\AppData\Local\Temp\sfareca00001.dll 2017-12-19 09:44 - 2017-12-19 09:44 - 000192512 _____ () C:\Users\Stijn\AppData\Local\Temp\sfamcc00001.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\Users\Stijn\Downloads\382.05-notebook-win10-64bit-international-whql.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\382.33-notebook-win10-64bit-international-whql.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\airstream-pc.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\AutoClicker (1).exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\AutoClicker.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\Battle.net-Setup.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\bdcamsetup.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\birdie-msg2vcard.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\bsplayer271.setup.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\ccsetup521.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\ccsetup525.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\Composer-Setup (1).exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\Composer-Setup.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\DiscordSetup.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\dixmlsetup.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\DriverToolkitInstaller.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\DTLiteInstaller.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\eclipse-inst-win64.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\fiddlersetup.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\Firefox Setup Stub 51.0.1.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\flux-setup.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\ganttproject-2.8.1-r2024.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\Git-2.10.1-64-bit.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\Git-2.9.0-64-bit.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\hd-video-converter-pro.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\httrack_x64-3.48.22.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\ideaIU-2016.2.4.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\ideaIU-2017.2.2.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\ipscan-win32-3.5.1.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\ipscan-win64-3.5.1.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\JavaSetup8u121.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\jdk-8u112-windows-x64.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\LOOT.Installer (1).exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\LOOT.Installer.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\mobilego_setup_full818.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\MotorolaDeviceManager_2.5.4.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\Nexus Mod Manager-0.61.23.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\node.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\nsis-2.51-setup.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\OBS_0_657b_Installer.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\OSBuddy64 (2).exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\OverwolfInstaller-Nightblue3.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\prey-windows-1.5.0-x86.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\qbittorrent_3.3.7_setup.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\rater.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\ReflectDLFull.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\setup-cyowcopy-1.1.1.4.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\setup.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\setuplanguagepack.x64.nl-nl_.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\setuplanguagepack.x86.nl-nl_.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\SkypeSetup.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\TeamSpeak3-Client-win64-3.0.18.2.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\TeamViewer_Setup_nl-aism.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\tfsserver2015.3 (1).exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\tfsserver2015.3.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\torbrowser-install-6.0.3_en-US.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\tuxboot-0.6.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\TwitchSetup_[plugin-Minecraft].exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\uTorrent.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\vlc-2.2.6-win32.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\vtfedit125-11.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\Witcher3_patch_121-to-122.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\wlsetup-web.exe:BDU [0] AlternateDataStreams: C:\Users\Stijn\Downloads\xampp-win32-7.1.1-0-VC14-installer.exe:BDU [0] ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) IE trusted site: HKU\S-1-5-21-1556125091-3182902607-1253755898-1001\...\sharepoint.com -> hxxps://ehb-files.sharepoint.com ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2016-03-10 04:07 - 2017-12-19 09:50 - 000000206 _____ C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 activate.adobe.com 127.0.0.1 practivate.adobe.com 127.0.0.1 lmlicenses.wip4.adobe.com 127.0.0.1 lm.licenses.adobe.com ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-1556125091-3182902607-1253755898-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Stijn\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{9b121262-8a58-4d56-b77b-1b68dd91c9f0}.jpg DNS Servers: 195.130.131.1 - 195.130.130.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0" HKLM\...\StartupApproved\Run32: => "Adobe Acrobat Speed Launcher" HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager" HKLM\...\StartupApproved\Run32: => "SwitchBoard" HKLM\...\StartupApproved\Run32: => "vmware-tray.exe" HKU\S-1-5-21-1556125091-3182902607-1253755898-1001\...\StartupApproved\Run: => "AdobeBridge" HKU\S-1-5-21-1556125091-3182902607-1253755898-1001\...\StartupApproved\Run: => "RandomMouseClicker" ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{F46D0C90-95BC-4816-AEFF-8367904F918C}] => (Allow) D:\GAMES\Steam\steamapps\common\Clicker Heroes\Clicker Heroes.exe FirewallRules: [{14995E7B-C5CC-4109-AD18-CC85844B0D52}] => (Allow) D:\GAMES\Steam\steamapps\common\Clicker Heroes\Clicker Heroes.exe FirewallRules: [UDP Query User{FB1F38F0-4E0A-47C5-988F-B2E091FA056C}C:\program files\nodejs\node.exe] => (Allow) C:\program files\nodejs\node.exe FirewallRules: [TCP Query User{7F122821-0BC0-458A-A236-6891FE96CDBA}C:\program files\nodejs\node.exe] => (Allow) C:\program files\nodejs\node.exe FirewallRules: [UDP Query User{6CC67CBD-6E35-4CA4-A0E4-7DC458707F98}C:\php\php.exe] => (Allow) C:\php\php.exe FirewallRules: [TCP Query User{F0D6A1C5-B01E-4CE8-8FB4-0D4F41D6C48F}C:\php\php.exe] => (Allow) C:\php\php.exe FirewallRules: [{E23B3BCF-AF84-4C76-BD8D-0FF49ECB3073}] => (Allow) D:\GAMES\Steam\steamapps\common\Arma 3\arma3launcher.exe FirewallRules: [{5F769140-49BE-494D-8355-6DB587D1DAA9}] => (Allow) D:\GAMES\Steam\steamapps\common\Arma 3\arma3launcher.exe FirewallRules: [{6D51695F-8773-4666-94C0-3819A3C3FAE1}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{A39A3678-5093-46C1-B889-4AFA97EE90D3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{B8083753-7289-4B77-BCA5-11DE208869E6}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{1B0D9B44-2E5F-4B76-8A25-CD482677A098}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{F2C13B5C-C844-419B-AF19-8739B9B3CA43}] => (Allow) D:\GAMES\Steam\steamapps\common\ArtOfWar\gslaunchershell.exe FirewallRules: [{692EF370-F5DE-473D-8B88-6512159F3384}] => (Allow) D:\GAMES\Steam\steamapps\common\ArtOfWar\gslaunchershell.exe FirewallRules: [{60036860-CA68-433A-85A0-2422103DAF26}] => (Allow) D:\GAMES\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{E1663A5C-1885-44DE-AF91-1DAC3FD15FD0}] => (Allow) D:\GAMES\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{012ABE87-8141-45BB-8CCA-129F8F907FDB}] => (Allow) D:\GAMES\Steam\steamapps\common\Awkward Dimensions Redux\Awkward Dimensions Redux.exe FirewallRules: [{C127CD1C-E876-45DA-9AE4-83B5D297AFAD}] => (Allow) D:\GAMES\Steam\steamapps\common\Awkward Dimensions Redux\Awkward Dimensions Redux.exe FirewallRules: [{0B77F04F-DE87-451E-AA1D-8E29C1C6F8C5}] => (Allow) C:\Program Files\Microsoft Team Foundation Server 14.0\Application Tier\Web Services\bin\TeamFoundationSshService.exe FirewallRules: [{9FB47450-9C7F-45F5-9195-915E94EB94F1}] => (Allow) LPort=8080 FirewallRules: [{21F80340-8ED5-4F72-AA10-161F6B3F5FD3}] => (Allow) C:1\GAMES\Steam\steamapps\common\Sheltered\Sheltered.exe FirewallRules: [{A11FED25-8194-435B-9276-3F213BCB9486}] => (Allow) C:1\GAMES\Steam\steamapps\common\Sheltered\Sheltered.exe FirewallRules: [{49CD172B-329B-41C2-80A8-6133189FC8C5}] => (Allow) C:0\GAMES\Steam\steamapps\common\Counter-Strike Global Offensive\bin\SDKLauncher.exe FirewallRules: [{61D558A7-175C-4E14-982E-CAD270BBC832}] => (Allow) C:0\GAMES\Steam\steamapps\common\Counter-Strike Global Offensive\bin\SDKLauncher.exe FirewallRules: [{580C50A8-C264-4F7D-AD2C-F2592008B5F5}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe FirewallRules: [{4D3D5173-A479-485A-B1F2-808F8D9F7201}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe FirewallRules: [{9D0DEEDA-7467-4CE4-818F-248C59468718}] => (Allow) D:\GAMES\Steam\steamapps\common\Portal 2\portal2.exe FirewallRules: [{E8DBDC71-0DBE-4428-994A-35BD9A2DDDE0}] => (Allow) D:\GAMES\Steam\steamapps\common\Portal 2\portal2.exe FirewallRules: [{86D7840A-6F4C-4E3E-A487-5296F8A1ABA6}] => (Allow) C:\Windows\Prey\versions\1.6.2\bin\node.exe FirewallRules: [{0F57769C-A8CE-4DC1-BADD-A2A3AA6706E9}] => (Allow) D:\GAMES\downloaded\LOTR2\game.dat FirewallRules: [{F47A702F-672D-4DA3-9537-38DAC9C76349}] => (Allow) D:\GAMES\downloaded\LOTR2\game.dat FirewallRules: [{3DBDA6FD-FE0E-4FB4-9219-E397E68AF41C}] => (Allow) D:\GAMES\Steam\Steam.exe FirewallRules: [{A1FF8D74-5A41-4B67-83C2-065504CEAE06}] => (Allow) D:\GAMES\Steam\Steam.exe FirewallRules: [{84935B88-18B4-47B5-8DA4-8027B80E8422}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe FirewallRules: [{05CF1456-CCF4-41AA-B5B8-9C4CD029E480}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe FirewallRules: [{E145925D-BA6D-4E2A-83EA-6CEE4CB688D8}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe FirewallRules: [{789FB54D-A0BD-4E94-ADBA-E0E84DBA37CB}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe FirewallRules: [{9BAAEF95-3710-49F1-B049-4D0CA2F9AD26}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{BD14F195-C475-46DC-90D1-6EEA6EB494B7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{63FAC741-55B5-42C0-A544-D38CC495601A}] => (Allow) LPort=7935 FirewallRules: [{3550EFCC-195F-4E72-9D7B-F7D9562E1E6B}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe FirewallRules: [{D1A0D37A-4734-451E-9137-1686B438D57A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe FirewallRules: [TCP Query User{DA0399ED-C48D-48AA-B31F-E76900AD273E}D:\games\steam\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) D:\games\steam\steamapps\common\counter-strike global offensive\csgo.exe FirewallRules: [UDP Query User{078D1EC9-03F0-4D43-9081-7C849BF5011F}D:\games\steam\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) D:\games\steam\steamapps\common\counter-strike global offensive\csgo.exe FirewallRules: [{8EDD8EEC-0AB7-4AF8-8F7F-F68BB6578260}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe FirewallRules: [{32BC142F-80A0-46C7-A35B-AB934B5318D4}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe FirewallRules: [{2812AAD0-36A3-4047-BBF9-C0C58CE055D3}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe FirewallRules: [{7DBB8BA7-7786-4626-9F0C-8CAC6935434E}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe FirewallRules: [{6314053F-71E0-430F-B75F-A2F6F833BB24}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe FirewallRules: [{C5FE8E0C-26D5-4D08-8076-0D8599CF97A1}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe FirewallRules: [{CE15DC7F-EF49-49FB-9C5A-E4328C35A2B0}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe FirewallRules: [{6FFFB943-3DBC-4912-B8D6-4B2DBEFA780A}] => (Allow) C:\Users\Stijn\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{9A00C66F-5A83-4B6F-96CC-15D86F3DD8FA}] => (Allow) C:\Users\Stijn\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{2619AE55-FCEC-4F3B-BA23-E685EE6F11D3}] => (Allow) C:\Users\Stijn\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{15D2C6D9-312D-4F53-A65D-238474EFDC2E}] => (Allow) C:\Users\Stijn\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{B597F77E-BA7E-48E0-80E8-D67C513612B7}] => (Allow) C:\Users\Stijn\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{D3D6297C-4085-4821-911C-F1B4CE9FAE16}] => (Allow) C:\Users\Stijn\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{9ECD6A94-AEB0-498A-AB24-0BDC4691176F}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{26852D14-62F3-448B-AE97-49672F715A94}] => (Allow) D:\GAMES\Steam\steamapps\common\Half-Life 2\hl2.exe FirewallRules: [{ED855AAF-B783-47E6-98EA-32CAFFE35DF2}] => (Allow) D:\GAMES\Steam\steamapps\common\Half-Life 2\hl2.exe FirewallRules: [{4F607E6C-7776-4C42-A544-7B01782D2EA5}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{30507C42-07A2-47D5-89C3-9E84982EFA40}] => (Allow) LPort=2869 FirewallRules: [{327B628E-5EAE-4C7C-83BF-F85443C8B654}] => (Allow) LPort=1900 FirewallRules: [{6A96D82A-A376-4100-AAC6-4F2FE6D2823A}] => (Allow) C:6\GAMES\Steam\steamapps\common\Counter-Strike Global Offensive\bin\SDKLauncher.exe FirewallRules: [{9AB214B3-ABF5-4955-BF02-9069F95532D8}] => (Allow) C:6\GAMES\Steam\steamapps\common\Counter-Strike Global Offensive\bin\SDKLauncher.exe FirewallRules: [TCP Query User{E0E5470C-3C66-442B-B1C3-4626E3774D17}C:2\programs\xampp\apache\bin\httpd.exe] => (Allow) C:2\programs\xampp\apache\bin\httpd.exe FirewallRules: [UDP Query User{8DD1800B-DBCB-4B12-8DE7-F26B87669E06}C:2\programs\xampp\apache\bin\httpd.exe] => (Allow) C:2\programs\xampp\apache\bin\httpd.exe FirewallRules: [TCP Query User{7D48C159-BB98-457B-A97C-F850179FAE40}C:3\programs\xampp\apache\bin\httpd.exe] => (Allow) C:3\programs\xampp\apache\bin\httpd.exe FirewallRules: [UDP Query User{6AA5BC43-257B-4C12-B4CF-020520F895F1}C:3\programs\xampp\apache\bin\httpd.exe] => (Allow) C:3\programs\xampp\apache\bin\httpd.exe FirewallRules: [TCP Query User{F4FCB0C4-073A-4FF0-AA7F-C09ABF5365F3}D:\programs\brackets\node.exe] => (Block) D:\programs\brackets\node.exe FirewallRules: [UDP Query User{450D97BE-E643-4DC7-A4A7-38E00E96BE85}D:\programs\brackets\node.exe] => (Block) D:\programs\brackets\node.exe FirewallRules: [{7275B136-D4C2-4988-9C1A-63FD9AF75B3B}] => (Allow) C:0\GAMES\Steam\steamapps\common\Sheltered\Sheltered.exe FirewallRules: [{FBB0654C-5C42-4DF8-BFC4-B315DCA7AF8A}] => (Allow) C:0\GAMES\Steam\steamapps\common\Sheltered\Sheltered.exe FirewallRules: [{395534DB-830F-42EC-B459-CA915F34CAB9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{62E112E3-3CE7-49DB-AE7D-CF6BC133B78E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{B76B414C-A551-4B13-BAC0-4570F8357F52}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{6647D062-4B99-4B7E-B152-390927F3F14E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{294EC940-1786-4A96-A291-011A603680E3}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe FirewallRules: [{3755B077-F5AB-4005-BDB1-E97332EC5DC7}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe FirewallRules: [{8241E450-ED01-47C7-BF93-820923F77166}] => (Allow) D:\GAMES\Steam\steamapps\common\ArtOfWar\game\u1game.exe FirewallRules: [{40FC2304-6AED-41BE-AF39-5EBD7D829124}] => (Allow) D:\GAMES\Steam\steamapps\common\ArtOfWar\game\u1game.exe FirewallRules: [{E68DDC2E-5722-4665-BA3D-256CA7CDAF19}] => (Allow) D:\GAMES\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe FirewallRules: [{1E5E1008-78DF-4D48-8880-848E083B379D}] => (Allow) D:\GAMES\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe FirewallRules: [{C27F1707-D95E-42D7-B440-320191F79829}] => (Allow) D:\GAMES\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe FirewallRules: [{1C5894D8-A70C-4A66-9AA9-4D891259B02B}] => (Allow) D:\GAMES\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe FirewallRules: [{037C0C29-C0EE-424F-AF97-542F06B2F7C8}] => (Allow) D:\GAMES\Steam\steamapps\common\BRINK\brink.exe FirewallRules: [{F2CC4FAA-4E90-4D31-B299-5458A8977E43}] => (Allow) D:\GAMES\Steam\steamapps\common\BRINK\brink.exe FirewallRules: [{F349C98F-3267-49FE-9F8F-30E5064AB3C4}] => (Allow) D:\GAMES\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe FirewallRules: [{24BA6D2B-E007-40C4-B555-8FDAFB1FE9BA}] => (Allow) D:\GAMES\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe FirewallRules: [{E113922E-45AD-44E1-BEE2-E1DDECAC9B10}] => (Allow) D:\GAMES\Steam\steamapps\common\Skyrim\skse_steam_boot.exe FirewallRules: [{750BD6D8-978B-462A-A6D4-026E2115F955}] => (Allow) D:\GAMES\Steam\steamapps\common\Skyrim\skse_steam_boot.exe FirewallRules: [{6835FDD3-B804-4ECE-B8D8-88E982929E92}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe FirewallRules: [{F114698B-A98D-449C-A4B2-E5598F933CE1}] => (Allow) D:\GAMES\Steam\steamapps\common\Cities_Skylines\Cities.exe FirewallRules: [{8C2E231D-D7CF-4E23-A622-CFFCCC5739F0}] => (Allow) D:\GAMES\Steam\steamapps\common\Cities_Skylines\Cities.exe FirewallRules: [{4CAF8016-1B64-4BAD-AEEB-405F156490F2}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{14C57119-3654-448E-A631-04937C680F20}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{B70989AE-D50E-4268-B606-9728FBEEF965}] => (Allow) D:\GAMES\Steam\steamapps\common\Sanctum2\Binaries\Win32\SanctumGame-Win32-Shipping.exe FirewallRules: [{13582129-A582-4350-A2FC-1AAACACFF843}] => (Allow) D:\GAMES\Steam\steamapps\common\Sanctum2\Binaries\Win32\SanctumGame-Win32-Shipping.exe FirewallRules: [{3ACECE5A-E2D3-4911-8995-58ABFBCA4B7D}] => (Allow) D:\GAMES\Steam\steamapps\common\Counter-Strike Global Offensive\bin\SDKLauncher.exe FirewallRules: [{131AF973-EC56-4048-BD0B-9A1518BA688D}] => (Allow) D:\GAMES\Steam\steamapps\common\Counter-Strike Global Offensive\bin\SDKLauncher.exe FirewallRules: [TCP Query User{B0ED061E-040C-483A-AF6E-78AFF440991E}C:\program files\android\android studio\jre\bin\java.exe] => (Allow) C:\program files\android\android studio\jre\bin\java.exe FirewallRules: [UDP Query User{34DD785F-9451-4649-8E26-1A2296875326}C:\program files\android\android studio\jre\bin\java.exe] => (Allow) C:\program files\android\android studio\jre\bin\java.exe FirewallRules: [TCP Query User{BC38033C-E0E8-40CA-A69E-EDE19039E3E2}D:\programs\jetbrains\intellij idea 2016.2.4\jre\jre\bin\java.exe] => (Allow) D:\programs\jetbrains\intellij idea 2016.2.4\jre\jre\bin\java.exe FirewallRules: [UDP Query User{9EB19F07-A9B6-4961-A5DA-BB82D5B7E223}D:\programs\jetbrains\intellij idea 2016.2.4\jre\jre\bin\java.exe] => (Allow) D:\programs\jetbrains\intellij idea 2016.2.4\jre\jre\bin\java.exe FirewallRules: [{C2F86489-1B21-4486-92E1-2E8DE6ACF30F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{F2CCBB4E-72CD-4C58-A5EE-641EB1C90F27}] => (Allow) D:\GAMES\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe FirewallRules: [{77BF7D7A-943D-40B0-859C-5CFB28A4A324}] => (Allow) D:\GAMES\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe FirewallRules: [{C408F6E5-DF0E-453D-8118-5A20B5446168}] => (Allow) D:\GAMES\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe FirewallRules: [{F81F94F8-D33F-4684-8F17-9ADA78B5F7D8}] => (Allow) D:\GAMES\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe FirewallRules: [{64A03349-2D6B-4EBD-A13E-5F6EACB710C8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{2EBCE00F-48C3-4C46-9E21-B637ECAEF23A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{3AA741EF-DDA2-462B-86E9-D031E2723337}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{EC9A3193-F7A6-477A-819E-808B849D9856}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{C6453CFE-7A9B-47EE-8D0D-A60EAFB4EDEA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{9D56733D-0474-4759-B096-24DE5DA5B076}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFSP.exe FirewallRules: [{1F164E4C-9502-49FC-ADA6-195656B3F381}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFSP.exe FirewallRules: [{CE3ED95B-6BCC-4DA5-B1CB-7AFA1DF9603C}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFMP.exe FirewallRules: [{523345E5-582A-4952-8160-B060899959DB}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFMP.exe ==================== Restore Points ========================= 17-12-2017 23:26:00 Scheduled Checkpoint 18-12-2017 13:46:51 BeforePatchingDrivers ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (12/19/2017 09:20:40 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-4CAGIF8) Description: Activation of app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: -2147023174 See the Microsoft-Windows-TWinUI/Operational log for additional information. Error: (12/19/2017 09:01:29 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: wpxsvc.exe, version: 1.0.0.0, time stamp: 0x00000000 Faulting module name: ntdll.dll, version: 10.0.15063.608, time stamp: 0x802f667e Exception code: 0xc00000fd Fault offset: 0x0008555e Faulting process id: 0xf20 Faulting application start time: 0x01d378579dfb4465 Faulting application path: C:\Windows\Prey\wpxsvc.exe Faulting module path: C:\WINDOWS\SYSTEM32\ntdll.dll Report Id: ad3cc32a-6baa-41b7-b8c9-adbbc3c9a675 Faulting package full name: Faulting package-relative application ID: Error: (12/19/2017 08:51:43 AM) (Source: TFS Services) (EventID: 9002) (User: ) Description: The job agent process is terminating for an unknown reason. Error: (12/19/2017 12:26:26 AM) (Source: SQLAgent$SQLEXPRESS) (EventID: 103) (User: ) Description: SQLServerAgent could not be started (reason: This installation of SQL Server Agent is disabled. The edition of SQL Server that installed this service does not support SQL Server Agent.). Error: (12/19/2017 12:21:49 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: wpxsvc.exe, version: 1.0.0.0, time stamp: 0x00000000 Faulting module name: ntdll.dll, version: 10.0.15063.608, time stamp: 0x802f667e Exception code: 0xc00000fd Fault offset: 0x0008555e Faulting process id: 0xe94 Faulting application start time: 0x01d3784bbb34fcdd Faulting application path: C:\Windows\Prey\wpxsvc.exe Faulting module path: C:\WINDOWS\SYSTEM32\ntdll.dll Report Id: 808b8097-e9a9-4299-be79-57728e046c40 Faulting package full name: Faulting package-relative application ID: Error: (12/18/2017 11:01:22 PM) (Source: SQLAgent$SQLEXPRESS) (EventID: 103) (User: ) Description: SQLServerAgent could not be started (reason: This installation of SQL Server Agent is disabled. The edition of SQL Server that installed this service does not support SQL Server Agent.). System errors: ============= Error: (12/19/2017 09:01:39 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Cron Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service. Error: (12/19/2017 08:51:43 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Visual Studio Team Foundation Background Job Agent service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 300000 milliseconds: Restart the service. Error: (12/19/2017 08:50:45 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} and APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool. Error: (12/19/2017 02:03:46 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} and APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool. Error: (12/19/2017 12:28:44 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} and APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool. Error: (12/19/2017 12:26:23 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: The USER_ESRV_SVC_QUEENCREEK service terminated with the following error: %%497 Error: (12/19/2017 12:26:22 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The CldFlt service failed to start due to the following error: The request is not supported. Error: (12/19/2017 12:26:22 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: The previous system shutdown at 12:21:17 AM on ‎12/‎19/‎2017 was unexpected. Error: (12/19/2017 12:21:56 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Cron Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service. Error: (12/18/2017 11:01:18 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: The USER_ESRV_SVC_QUEENCREEK service terminated with the following error: %%497 CodeIntegrity: =================================== Date: 2017-12-19 00:26:23.478 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-12-18 23:01:18.632 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-12-18 17:11:57.376 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-12-18 16:43:44.781 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-12-18 15:06:16.432 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-12-18 14:56:25.816 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-12-18 13:57:33.008 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-12-17 23:14:51.999 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-12-17 23:06:21.898 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-12-17 22:57:50.727 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i7-3610QM CPU @ 2.30GHz Percentage of memory in use: 41% Total physical RAM: 16280.75 MB Available physical RAM: 9526.68 MB Total Virtual: 26008.75 MB Available Virtual: 19106.49 MB ==================== Drives ================================ Drive c: (Boot) (Fixed) (Total:464.87 GB) (Free:176.19 GB) NTFS Drive i: () (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[system with boot components (obtained from drive)] ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 465.8 GB) (Disk ID: D7E2B2CE) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=464.9 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=806 MB) - (Type=27) ==================== End of Addition.txt ============================