Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08.11.2018
Ran by guillaume (08-11-2018 20:27:06)
Running from D:\DownloadSSD
Windows 8.1 (Update) (X64) (2018-06-30 02:08:53)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3805808772-3452688692-1920293510-500 - Administrator - Disabled)
Guest (S-1-5-21-3805808772-3452688692-1920293510-501 - Limited - Disabled)
guillaume (S-1-5-21-3805808772-3452688692-1920293510-1001 - Administrator - Enabled) => C:\Users\guillaume
HomeGroupUser$ (S-1-5-21-3805808772-3452688692-1920293510-1003 - Limited - Enabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
3DMark (HKLM-x32\...\{F1A6C690-C12C-4E7A-B4BD-958678215418}) (Version: 1.0 - Futuremark)
4K Stogram 2.6 (HKLM\...\{CBD24523-4E64-4DFB-8311-05019EFD0D6B}) (Version: 2.6.14.1590 - Open Media LLC)
4K Video Downloader 4.4 (HKLM-x32\...\{AA5C80E7-8876-4026-A0D0-582D8EFBA2E1}) (Version: 4.4.7.2307 - Open Media LLC)
4K YouTube to MP3 3.3 (HKLM-x32\...\{7DD40CC0-533F-4EF3-9DDC-1B6B91C8567D}) (Version: 3.3.6.1809 - Open Media LLC)
7-Zip 18.05 (x64) (HKLM\...\7-Zip) (Version: 18.05 - Igor Pavlov)
Acapela Synthèse de la Parole pour le WordQ 4 (français) (HKLM-x32\...\{F0ADA798-6CB1-49FB-A2D3-060FFA25D60E}) (Version: 9.1.1 - Quillsoft Ltd.)
Acapela Text to Speech for WordQ 4 (Core) (HKLM-x32\...\{EE2AA629-F3EC-412E-8A14-5DD9BAD490D2}) (Version: 9.1.1 - Quillsoft)
Acapela Text to Speech for WordQ 4(North America) (HKLM-x32\...\{1D08C682-F619-4E89-8291-1C13A346DAD9}) (Version: 9.1.1 - Quillsoft Ltd.)
Acapela Text-to-Speech for WordQ 4(Canadian French) (HKLM-x32\...\{98B997C5-8A5C-4EB2-B8DE-7CBAAAFAF2A0}) (Version: 9.1.1 - Quillsoft Ltd.)
Adobe Premiere Pro CC 2015 (HKLM-x32\...\{38C72D42-0672-43B1-9E05-E7631684F9A1}) (Version: 9.0.0 - Adobe Systems Incorporated)
AMD Ryzen Master (HKLM\...\{5A1CE077-7111-4C7D-A5C5-E210D4B68AD8}) (Version: 1.4.0.0728 - Advanced Micro Devices, Inc.)
Antidote 9 (HKLM-x32\...\{D98F9F54-E310-4F57-93F5-0F42EFAA3847}) (Version: 9.5.3407 - Druide informatique inc.)
Any Video Converter Ultimate 6.2.4 (HKLM-x32\...\Any Video Converter Ultimate_is1) (Version: - Any-Video-Converter.com)
Apowersoft Screen Recorder Pro V2.1.9 (HKLM-x32\...\{dc9006db-6b05-4f0f-833b-79ef3f284c24}_is1) (Version: 2.1.9 - APOWERSOFT LIMITED)
Article Spinner 3.0.2.0 (HKLM-x32\...\{60103DBD-B2E6-4C64-A409-36C856029364}_is1) (Version: 3.0.2.0 - Fastlink2)
Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 10.0 - Atheros)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Captcha Sniper (HKLM-x32\...\Captcha Sniper_is1) (Version: - )
Classic Start 8 (HKLM-x32\...\{913D024D-5EB4-4AC3-A412-C87588574A74}_is1) (Version: 1.0.0.16 - Crawler Group)
Clustertruck (HKLM-x32\...\{BB09E395-9405-44CA-A17C-98DF998CF216}) (Version: - TinyBuild LLC)
CodeTwo QR Code Desktop Reader (HKLM-x32\...\{E4979203-1431-49C1-9512-B24EC63EFF77}) (Version: 1.1.0.67 - CodeTwo)
CoinCollector (HKLM-x32\...\{DE24DA5E-6884-4465-A07E-81E040AD0DE1}) (Version: 5.1.0 - AutoClickBots) Hidden
CoinCollector V5 (HKLM-x32\...\CoinCollector 5.1.0) (Version: 5.1.0 - AutoClickBots)
Corsair Gaming Headset Software (HKLM-x32\...\{88ADDCAA-6591-4D41-A7F1-2F38B7B049BB}) (Version: 2.0.37 - Corsair)
Discord (HKU\S-1-5-21-3805808772-3452688692-1920293510-1001\...\Discord) (Version: 0.0.301 - Discord Inc.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 61.4.95 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.141.1 - Dropbox, Inc.) Hidden
Dxtory version 2.0.142 (HKLM-x32\...\Dxtory2.0_is1) (Version: 2.0.142 - ExKode Co. Ltd.)
Easy Auto Spinner version 1.0 (HKLM-x32\...\{3D9BC2FA-3876-4916-B865-86BA4D5844EC}_is1) (Version: 1.0 - Spinner Pro Software)
EVGA OC Scanner X 3.6.1.2 (64-bit) (HKLM\...\{CC520CF6-B02E-49AA-8192-C1DDC159E0AA}}_is1) (Version: - EVGA)
EVGA Precision X1 (HKLM\...\EVGA Precision X1) (Version: 0.2.9.0 - EVGA Corporation)
FileZilla Client 3.38.1 (HKLM-x32\...\FileZilla Client) (Version: 3.38.1 - Tim Kosse)
Futuremark SystemInfo (HKLM-x32\...\{403D9E9C-2564-44C2-96F3-97DC7F1BED31}) (Version: 5.13.690.0 - Futuremark)
GIMP 2.8.22 (HKLM\...\GIMP-2_is1) (Version: 2.8.22 - The GIMP Team)
GNU Privacy Guard (HKLM-x32\...\GnuPG) (Version: 2.2.10 - The GnuPG Project)
GoNNER (HKLM-x32\...\{516FEAE8-F1E6-4F68-A964-E5D55F92CF8F}) (Version: - Raw Fury)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 70.0.3538.77 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Gpg4win (3.1.4) (HKLM-x32\...\Gpg4win) (Version: 3.1.4 - The Gpg4win Project)
Greenshot 1.2.10.6 (HKLM\...\Greenshot_is1) (Version: 1.2.10.6 - Greenshot)
HCS VoicePacks Ships Parrot version Singularity and Event Horizon (HKLM-x32\...\{234C8401-2EA7-47A4-8169-50194F3859BD}_is1) (Version: Singularity and Event Horizon - HCS VoicePacks Ltd)
Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
I, Hope (HKLM-x32\...\{556A4404-A3F6-4AC4-8E0A-C1B4E9787255}) (Version: - Double Plus Good Games)
ICQ (version 10.0.12341) (HKU\S-1-5-21-3805808772-3452688692-1920293510-1001\...\icq.desktop) (Version: 10.0.12341 - ICQ)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3412 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.9.0.1001 - Intel Corporation)
Java 8 Update 191 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180191F0}) (Version: 8.0.1910.12 - Oracle Corporation)
Jaxx 1.3.18 (only current user) (HKU\S-1-5-21-3805808772-3452688692-1920293510-1001\...\c8bd836d-41d7-5f55-90da-0bae2db13a07) (Version: 1.3.18 - decentral.ca)
Lagarith Lossless Codec (1.3.27) (HKLM-x32\...\{F59AC46C-10C3-4023-882C-4212A92283B3}_is1) (Version: - )
League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
LED Sync (HKLM-x32\...\{3EF99290-BC31-4E90-89E2-B0E44D85C11C}) (Version: 1.0.9 - EVGA)
MAGIX Content and Soundpools (HKLM-x32\...\MAGIX_GlobalContent) (Version: 1.0.0.0 - MAGIX Software GmbH)
MAGIX Soundpool Music Maker - Feel good (HKLM\...\{87BD5AFD-F79F-470C-9E13-E62724CEC175}) (Version: 1.0.0.0 - MAGIX Software GmbH) Hidden
MediaInfo 18.03 (HKLM\...\MediaInfo) (Version: 18.03 - MediaArea.net)
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
METAL SLUG 3 (HKLM-x32\...\{661F739F-90E4-49EB-A79D-8B50D8FEF1E0}) (Version: - SNK)
Microsoft Office Professionnel Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.14.26429 (HKLM-x32\...\{80586c77-db42-44bb-bfc8-7aebbb220c00}) (Version: 14.14.26429.4 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.14.26429 (HKLM-x32\...\{2019b6a0-8533-4a04-ac0e-b2c10bdb9841}) (Version: 14.14.26429.4 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{756E195A-CB58-4B99-917F-0DDA0D881204}) (Version: 1.0.4.0 - Mojang)
Mozilla Firefox 63.0.1 (x64 en-US) (HKLM\...\Mozilla Firefox 63.0.1 (x64 en-US)) (Version: 63.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 61.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 63.0.1.6877 - Mozilla)
Mozilla Thunderbird 52.8.0 (x86 en-US) (HKLM-x32\...\Mozilla Thunderbird 52.8.0 (x86 en-US)) (Version: 52.8.0 - Mozilla)
Mozilla Thunderbird 52.9.1 (x86 en-US) (HKU\S-1-5-21-3805808772-3452688692-1920293510-1001\...\Mozilla Thunderbird 52.9.1 (x86 en-US)) (Version: 52.9.1 - Mozilla)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
Music Maker (HKLM\...\{A03DDADD-6280-46A7-B101-93EF16E78DE4}) (Version: 27.0.0.16 - MAGIX Software GmbH) Hidden
Music Maker (HKLM-x32\...\MX.{A03DDADD-6280-46A7-B101-93EF16E78DE4}) (Version: 27.0.1.23 - MAGIX Software GmbH)
Music Maker Update (HKLM\...\{AD877700-0364-4133-B795-55EEFA14000D}) (Version: 27.0.1.23 - MAGIX Software GmbH) Hidden
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.5.9 - Notepad++ Team)
Nox APP Player (HKLM-x32\...\Nox) (Version: 6.2.3.1 - Duodian Technology Co. Ltd.)
NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
OtohitsApp (HKLM-x32\...\{9B85C70F-D649-4290-8C1D-5356A5262066}_is1) (Version: 3.1.1.0 - Otohits Network)
Outils de vérification linguistique 2016 de Microsoft Office - Français (HKLM\...\{90160000-001F-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
PDF Annotator 6.1.0.605 (HKLM-x32\...\PDFAnnotator_is1) (Version: 6.1.0.605 - GRAHL software design)
PerformanceTest v9.0 (HKLM\...\PerformanceTest 9_is1) (Version: 9.0.1025.0 - Passmark Software)
Pidgin (HKLM-x32\...\Pidgin) (Version: 2.13.0 - )
PotPlayer-64 bit (HKLM\...\PotPlayer64) (Version: 1.7.14804 - Kakao Corp.)
Proxifier version 3.21 (HKLM-x32\...\Proxifier_is1) (Version: 3.21 - Initex)
Pumped BMX (HKLM-x32\...\{F8FF5767-BBB1-4AB8-9B34-D617EC534339}) (Version: - Curve Digital)
Pushbullet version 338 (HKLM-x32\...\{7578F204-49E7-4830-B051-14C23F408BFE}_is1) (Version: 338 - Pushbullet Inc)
PuTTY release 0.70 (64-bit) (HKLM\...\{45B3032F-22CC-40CD-9E97-4DA7095FA5A2}) (Version: 0.70.0.0 - Simon Tatham)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.318 - Qualcomm Atheros)
RA Email Extractor version 1.1 (HKLM-x32\...\{22BAED95-7CD4-49F0-B688-E496480B3052}_is1) (Version: 1.1 - Wayvind Software Solutions)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.29073 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.24.1218.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7195 - Realtek Semiconductor Corp.)
Remote Desktop assistant (HKU\S-1-5-21-3805808772-3452688692-1920293510-1001\...\4ffdbc81071cec8e) (Version: 1.0.0.103 - Remote Desktop assistant)
Remote Desktop Connection Manager (HKLM-x32\...\{0240359E-6A4C-4884-9E94-B397A02D893C}) (Version: 2.7.14060 - Microsoft Corporation)
Roblox Player for guillaume (HKU\S-1-5-21-3805808772-3452688692-1920293510-1001\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - Roblox Corporation)
SdediBox (HKLM\...\{B1E78DBF-DAFF-4DA8-B4C3-4428EE018FA8}) (Version: 1.0 - SARL SHPS)
SpeakQ 4 (HKLM-x32\...\{FBD8FBC5-EC77-4CA9-9B77-6AE6C36FE997}) (Version: 4.1.16 - Quillsoft Ltd.)
Spinner Pro Writer version 1.0 (HKLM-x32\...\{F3C2B3CB-27A0-4175-AEEC-57C0A4E317F7}_is1) (Version: 1.0 - Spinner Pro Software)
Spotify (HKU\S-1-5-21-3805808772-3452688692-1920293510-1001\...\Spotify) (Version: 1.0.92.390.g2ce5ec7d - Spotify AB)
Spun By Google 0.1 (HKLM-x32\...\{6222037e-683d-444d-8f77-w129p3446w67e}}_is1) (Version: 0.1 - SupaGrowth.com)
StarCraft (HKLM-x32\...\StarCraft) (Version: - Blizzard Entertainment)
SteelSeries Engine 3.13.0 (HKLM\...\SteelSeries Engine 3) (Version: 3.13.0 - SteelSeries ApS)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 18.1.3.0 - Synaptics Incorporated)
Taalprogramma's voor Microsoft Office 2016 - Nederlands (HKLM\...\{90160000-001F-0413-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Tales from the Borderlands (HKLM-x32\...\{B24F49F9-D7FE-40B6-8F4D-65B0C6BF6A6B}) (Version: - Telltale Games)
TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.2.14327 - TeamViewer)
Tesseract-OCR - open source OCR engine (HKLM-x32\...\Tesseract-OCR) (Version: 3.02.02 - Tesseract-OCR community)
TheBestSpinner3 (HKLM-x32\...\TheBestSpinner3) (Version: - )
TOSHIBA Audio Enhancement (HKLM\...\{1515F5E3-29EA-4CD1-A981-032D88880F09}) (Version: 2.0.17.3 - Toshiba Corporation)
TOSHIBA Desktop Assist (HKLM\...\{C4CDCEF0-0A7A-4425-887C-33E39533D758}) (Version: 1.03.02.6402 - Toshiba Corporation)
TOSHIBA Display Utility (HKLM\...\{484A4296-6F3D-4182-8CFA-D664F7DA34AA}) (Version: 1.1.17.0 - Toshiba Corporation)
TOSHIBA eco Utility (HKLM\...\{94D2A899-0C34-4420-880E-AE337E635AB0}) (Version: 2.4.2.6403 - Toshiba Corporation)
TOSHIBA Flash Cards Support Utility (HKLM-x32\...\InstallShield_{620BBA5E-F848-4D56-8BDA-584E44584C5E}) (Version: 1.51.81.2C - TOSHIBA CORPORATION)
TOSHIBA Function Key (HKLM\...\{1844CFE2-EBA3-490A-8A5E-9BFC646342FD}) (Version: 1.1.5.6402 - Toshiba Corporation)
TOSHIBA Password Utility (HKLM-x32\...\InstallShield_{59358FD4-252B-4B38-AB81-955C491A494F}) (Version: 2.0.0.15C - Toshiba Corporation)
TOSHIBA PC Health Monitor (HKLM\...\{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}) (Version: 3.01.02.6400 - Toshiba Corporation)
TOSHIBA Recovery Media Creator (HKLM-x32\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 3.2.00.56006005 - Toshiba Corporation)
TOSHIBA Service Station (HKLM\...\{BFE4C813-4DD4-4B1C-97F4-76A459055C8D}) (Version: 2.6.13 - Toshiba Corporation)
TOSHIBA System Driver (HKLM-x32\...\{1E6A96A1-2BAB-43EF-8087-30437593C66C}) (Version: 1.00.0033 - Toshiba Corporation)
TOSHIBA System Settings (HKLM-x32\...\{4D57ED72-6B01-40BD-9CA9-012B8FC09CEB}) (Version: 2.0.1.32003 - Toshiba Corporation)
Transmission 2.94 (d8e60ee44f) (x64) (HKLM\...\{F822870C-AD55-47D1-A705-21661A02386B}) (Version: 2.94.0 - Transmission Project)
Turbo.net Sandbox Manager 18.10 (HKU\S-1-5-21-3805808772-3452688692-1920293510-1001\...\{8248212A-01F7-4BF1-A4FD-BA0A965198B4}) (Version: 18.10.1788.0 - Code Systems Corporation)
TurboLauncher (HKU\S-1-5-21-3805808772-3452688692-1920293510-1001\...\TurboLauncher) (Version: 18.10.1788.0 - Code Systems Corporation)
Twitch (HKU\S-1-5-21-3805808772-3452688692-1920293510-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 7.0.0.0 - Twitch Interactive, Inc.)
Twitch Leecher 1.5.3 (HKLM\...\{AF26C896-686F-438A-92AD-D396A5357864}) (Version: 1.5.3.0 - Franiac) Hidden
Twitch Leecher 1.5.3 (HKLM-x32\...\{c484fed0-cbd3-4229-9cd3-10127598015b}) (Version: 1.5.3.0 - Franiac)
Update for Skype for Business 2016 (KB4022155) 64-Bit Edition (HKLM\...\{90160000-0011-0000-1000-0000000FF1CE}_Office16.PROPLUS_{FEE6D778-E4F9-412C-B2E4-EFF82BB67809}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB4022155) 64-Bit Edition (HKLM\...\{90160000-00C1-0000-1000-0000000FF1CE}_Office16.PROPLUS_{FEE6D778-E4F9-412C-B2E4-EFF82BB67809}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB4022155) 64-Bit Edition (HKLM\...\{90160000-012B-040C-1000-0000000FF1CE}_Office16.PROPLUS_{FEE6D778-E4F9-412C-B2E4-EFF82BB67809}) (Version: - Microsoft)
Uplay (HKLM-x32\...\Uplay) (Version: 27.0 - Ubisoft)
Utility Common Driver (HKLM-x32\...\{12688FD7-CB92-4A5B-BEE4-5C8E0574434F}) (Version: 1.0.53.3 - Compal) Hidden
Utility Common Driver (HKLM-x32\...\InstallShield_{12688FD7-CB92-4A5B-BEE4-5C8E0574434F}) (Version: 1.0.53.3 - Compal) Hidden
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.5.0.0 - Elaborate Bytes)
VirusTotal Uploader 2.2 (HKLM-x32\...\VTUploader) (Version: - )
Visuel intégré (HKLM-x32\...\{91257374-4FAA-4FF3-B3BC-C17521EBA169}) (Version: 1.0 - Druide informatique inc.)
Vita Concert Grand LE (HKLM\...\{1A6D2E33-E888-4E94-AD25-4049E51ACA57}) (Version: 2.4.0.96 - MAGIX Software GmbH) Hidden
WordQ 4 (HKLM-x32\...\{40042175-CB48-4D51-8BAF-D66BAE867676}) (Version: 4.1.16 - Quillsoft Ltd.)
WordQ Pro CF Templates (HKLM-x32\...\{9E88CEC9-9160-417C-8647-C98D261E803B}) (Version: 4.1.1 - Quillsoft Ltd.)
WordQ4 Pro CF Dictionary (HKLM-x32\...\{AFEF30D7-DA5D-4D57-A72C-B64E5F9CD26E}) (Version: 4.1.1 - Quillsoft Ltd.)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3805808772-3452688692-1920293510-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3805808772-3452688692-1920293510-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3805808772-3452688692-1920293510-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3805808772-3452688692-1920293510-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3805808772-3452688692-1920293510-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3805808772-3452688692-1920293510-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3805808772-3452688692-1920293510-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-3805808772-3452688692-1920293510-1001_Classes\CLSID\{A12A9CAB-1C75-4AA3-A980-74F25AB94C8E}\localserver32 -> D:\DownloadSSD\antidote\Application\Bin64\AgentAntidote.exe (Druide informatique inc.)
CustomCLSID: HKU\S-1-5-21-3805808772-3452688692-1920293510-1001_Classes\CLSID\{A12A9CAB-1C75-4AA3-A980-74F25AB94C8F}\localserver32 -> D:\DownloadSSD\antidote\Application\Bin64\Antidote.exe (Druide informatique inc.)
CustomCLSID: HKU\S-1-5-21-3805808772-3452688692-1920293510-1001_Classes\CLSID\{AD630E0F-BF29-4791-AD3B-A289E884E37C}\localserver32 -> D:\DownloadSSD\antidote\Application\Bin64\Antidote.exe (Druide informatique inc.)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\guillaume\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\guillaume\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\guillaume\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\guillaume\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\guillaume\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\guillaume\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2018-07-22] ()
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ContextMenuHandlers1: [GpgEX] -> {CCD955E4-5C16-4A33-AFDA-A8947A94946B} => C:\Program Files (x86)\Gpg4win\bin_64\gpgex.dll [2018-10-17] (g10 Code GmbH)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\guillaume\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ContextMenuHandlers1: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => D:\program ssd\iso\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\guillaume\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ContextMenuHandlers2: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => D:\program ssd\iso\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\guillaume\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ContextMenuHandlers4: [GpgEX] -> {CCD955E4-5C16-4A33-AFDA-A8947A94946B} => C:\Program Files (x86)\Gpg4win\bin_64\gpgex.dll [2018-10-17] (g10 Code GmbH)
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\guillaume\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2018-04-20] (Intel Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {01EAA64B-9B88-44ED-8CD9-F512BC143CA1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-07-03] (Google Inc.)
Task: {3AB298C6-2D50-4430-A5E7-9EF994C9C10F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {438B5CCD-7268-428F-BB8A-1C71DC6EF263} - System32\Tasks\Dxstory\dxstory => C:\Program Files (x86)\ExKode\Dxtory2.0\Dxtory.exe [2017-04-08] (ExKode Co. Ltd.)
Task: {444638D2-C82C-4211-89E8-CC50CD7E49C4} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2018-06-30] (Dropbox, Inc.)
Task: {475C22CC-DE04-482C-906C-1BC7E252524E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {4E212843-C53B-46B0-86D1-C1BECAE19225} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe
Task: {5FBBC72E-3098-4834-B559-E8C8EDA01946} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-07-03] (Google Inc.)
Task: {7CBD3D0B-9C7A-4A63-B899-DD0AD03C486F} - System32\Tasks\TOSHIBA\Service Station => C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe [2013-09-24] (TOSHIBA Corporation)
Task: {8CEBE579-9C0A-4B6F-9B3F-F28F02487B0E} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2015-07-31] (Microsoft Corporation)
Task: {BACA1DF0-2EE4-43E5-95C7-02412DB94D13} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2018-06-30] (Dropbox, Inc.)
Task: {C3A59663-EC90-4267-A605-635819B3208C} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2014-02-21] (Synaptics Incorporated)
Task: {DE992973-C9E1-4989-9A10-A2182F95D1CE} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-3805808772-3452688692-1920293510-1001 => C:\Users\guillaume\AppData\Local\MEGAsync\MEGAupdater.exe [2018-01-15] (Mega Limited)
Task: {DF06CF26-D24A-42BA-BFA3-C3F1FC0459CF} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-02-24] (Realtek Semiconductor)
Task: {F6C1D236-B5AD-4604-BCC9-E3A144864675} - System32\Tasks\Resolution+ Setting Task => C:\Program Files\Toshiba\TOSHIBA Smart View Utility\Plugins\ResolutionPlus\TosRegPermissionChg.exe [2014-03-12] (TOSHIBA Corporation)
Task: {FFE463B0-8EF2-4BC5-9A50-0B1E387876F6} - System32\Tasks\AMDAutoUpdate => C:\Program Files\AMD\AutoUpdate\AMDAutoUpdate.exe [2018-08-02] ()
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\guillaume\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 1"
==================== Loaded Modules (Whitelisted) ==============
2018-07-09 11:18 - 2012-11-22 17:57 - 000057448 _____ () C:\Windows\system32\PrxerNsp.dll
2018-08-12 11:25 - 2018-08-11 10:52 - 000356840 _____ () C:\SteamLibrary\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe
2018-08-11 10:56 - 2018-10-31 13:13 - 001686520 _____ () C:\SteamLibrary\steamapps\common\wallpaper_engine\wallpaper32.exe
2014-01-01 08:23 - 2018-04-20 03:56 - 000400800 _____ () C:\Windows\system32\igfxTray.exe
2015-10-21 20:49 - 2015-10-21 20:49 - 000087368 _____ () D:\DownloadSSD\antidote\Application\Bin64\libQtDispatchDruide9.dll
2017-04-25 15:45 - 2017-04-25 15:45 - 000108136 _____ () D:\DownloadSSD\antidote\Application\Bin64\libwebsocketsDruide9.dll
2015-10-21 20:49 - 2015-10-21 20:49 - 000467784 _____ () D:\DownloadSSD\antidote\Application\Bin64\boost_locale-vc120-mt-1_58-Druide9.dll
2015-10-21 20:49 - 2015-10-21 20:49 - 000088392 _____ () D:\DownloadSSD\antidote\Application\Bin64\libxdispatchDruide9.dll
2015-10-21 20:49 - 2015-10-21 20:49 - 000063816 _____ () D:\DownloadSSD\antidote\Application\Bin64\libdispatchDruide9.dll
2015-10-21 20:49 - 2015-10-21 20:49 - 000025928 _____ () D:\DownloadSSD\antidote\Application\Bin64\boost_system-vc120-mt-1_58-Druide9.dll
2015-10-21 20:49 - 2015-10-21 20:49 - 000036168 _____ () D:\DownloadSSD\antidote\Application\Bin64\boost_chrono-vc120-mt-1_58-Druide9.dll
2015-10-21 20:49 - 2015-10-21 20:49 - 000108360 _____ () D:\DownloadSSD\antidote\Application\Bin64\boost_thread-vc120-mt-1_58-Druide9.dll
2017-04-30 06:02 - 2017-04-30 06:02 - 000022120 _____ () D:\DownloadSSD\antidote\Application\Bin64\LibrairiesQt\libEGL.dll
2017-04-30 06:02 - 2017-04-30 06:02 - 002022504 _____ () D:\DownloadSSD\antidote\Application\Bin64\LibrairiesQt\libGLESv2.dll
2017-09-12 15:33 - 2017-09-12 15:33 - 000118376 _____ () D:\DownloadSSD\antidote\LingEN\Bin64\libYamChaDruide9.dll
2012-07-18 20:38 - 2012-07-18 20:38 - 000020904 _____ () C:\Program Files\TOSHIBA\Hotkey\SmoothView.dll
2018-10-24 18:08 - 2018-10-23 16:24 - 005020504 _____ () C:\Program Files (x86)\Google\Chrome\Application\70.0.3538.77\libglesv2.dll
2018-10-24 18:08 - 2018-10-23 16:24 - 000116056 _____ () C:\Program Files (x86)\Google\Chrome\Application\70.0.3538.77\libegl.dll
2014-06-17 07:09 - 2013-12-10 09:27 - 001242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2018-08-11 10:56 - 2018-10-31 13:13 - 001058296 _____ () C:\SteamLibrary\steamapps\common\wallpaper_engine\bin\resourceutil32.dll
2018-08-11 10:56 - 2018-10-31 13:13 - 002647032 _____ () C:\SteamLibrary\steamapps\common\wallpaper_engine\bin\mediaextensions32.dll
2015-10-21 20:49 - 2015-10-21 20:49 - 000076616 _____ () D:\DownloadSSD\antidote\Application\Bin32\libQtDispatchDruide9.dll
2017-04-25 15:45 - 2017-04-25 15:45 - 000093288 _____ () D:\DownloadSSD\antidote\Application\Bin32\libwebsocketsDruide9.dll
2015-10-21 20:49 - 2015-10-21 20:49 - 000373576 _____ () D:\DownloadSSD\antidote\Application\Bin32\boost_locale-vc120-mt-1_58-Druide9.dll
2015-10-21 20:49 - 2015-10-21 20:49 - 000077128 _____ () D:\DownloadSSD\antidote\Application\Bin32\libxdispatchDruide9.dll
2015-10-21 20:49 - 2015-10-21 20:49 - 000054600 _____ () D:\DownloadSSD\antidote\Application\Bin32\libdispatchDruide9.dll
2015-10-21 20:49 - 2015-10-21 20:49 - 000022856 _____ () D:\DownloadSSD\antidote\Application\Bin32\boost_system-vc120-mt-1_58-Druide9.dll
2015-10-21 20:49 - 2015-10-21 20:49 - 000033096 _____ () D:\DownloadSSD\antidote\Application\Bin32\boost_chrono-vc120-mt-1_58-Druide9.dll
2015-10-21 20:49 - 2015-10-21 20:49 - 000089928 _____ () D:\DownloadSSD\antidote\Application\Bin32\boost_thread-vc120-mt-1_58-Druide9.dll
2017-04-30 06:02 - 2017-04-30 06:02 - 000021096 _____ () D:\DownloadSSD\antidote\Application\Bin32\LibrairiesQt\libEGL.dll
2017-04-30 06:02 - 2017-04-30 06:02 - 001654888 _____ () D:\DownloadSSD\antidote\Application\Bin32\LibrairiesQt\libGLESv2.dll
2018-11-05 13:22 - 2018-11-05 13:22 - 000081408 ____T () C:\Users\guillaume\AppData\Local\Microsoft\bass_vst.dll
2018-11-05 13:22 - 2018-11-08 20:16 - 001758720 ____T () C:\Users\guillaume\AppData\Local\Microsoft\engine_vx.dll
2018-06-30 10:24 - 2018-04-30 22:01 - 001891672 _____ () C:\Users\guillaume\AppData\Local\Discord\app-0.0.301\ffmpeg.dll
2018-06-30 09:49 - 2018-10-22 13:23 - 086734056 _____ () C:\Users\guillaume\AppData\Roaming\Spotify\libcef.dll
2018-06-30 10:24 - 2018-04-30 22:01 - 001937752 _____ () C:\Users\guillaume\AppData\Local\Discord\app-0.0.301\libglesv2.dll
2018-06-30 10:24 - 2018-04-30 22:01 - 000095576 _____ () C:\Users\guillaume\AppData\Local\Discord\app-0.0.301\libegl.dll
2018-06-30 09:49 - 2018-10-22 13:23 - 004318952 _____ () C:\Users\guillaume\AppData\Roaming\Spotify\libglesv2.dll
2018-06-30 09:49 - 2018-10-22 13:23 - 000098024 _____ () C:\Users\guillaume\AppData\Roaming\Spotify\libegl.dll
2018-11-07 18:12 - 2018-11-06 08:06 - 001141064 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_watchdog.dll
2018-11-07 18:12 - 2018-11-06 08:06 - 002103112 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_crashpad.dll
2018-06-30 10:01 - 2018-11-06 08:09 - 000023376 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.cp35-win32.pyd
2018-11-07 18:12 - 2018-11-06 08:08 - 000025456 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.cp35-win32.pyd
2018-11-07 18:13 - 2018-11-06 08:06 - 000142312 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.cp35-win32.pyd
2018-11-07 18:12 - 2018-11-06 08:08 - 001953640 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.cp35-win32.pyd
2018-11-07 18:12 - 2018-11-06 08:08 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.cp35-win32.pyd
2018-11-07 18:12 - 2018-11-06 08:06 - 000118232 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes35.dll
2018-06-30 10:01 - 2018-11-06 08:06 - 000109024 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.cp35-win32.pyd
2018-11-07 18:12 - 2018-11-06 08:08 - 000083784 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.cp35-win32.pyd
2018-11-07 18:12 - 2018-11-06 08:06 - 000418776 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom35.dll
2018-11-07 18:12 - 2018-11-06 08:08 - 000074072 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.cp35-win32.pyd
2018-06-30 10:01 - 2018-11-06 08:06 - 000027616 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.cp35-win32.pyd
2018-11-07 18:13 - 2018-11-06 08:06 - 000049128 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.cp35-win32.pyd
2018-06-30 10:01 - 2018-11-06 08:06 - 000026600 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.cp35-win32.pyd
2018-11-07 18:13 - 2018-11-06 08:06 - 000131552 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.cp35-win32.pyd
2018-11-07 18:13 - 2018-11-06 08:06 - 000182752 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.cp35-win32.pyd
2018-11-07 18:13 - 2018-11-06 08:06 - 000027616 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.cp35-win32.pyd
2018-11-07 18:13 - 2018-11-06 08:06 - 000119272 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.cp35-win32.pyd
2018-06-30 10:01 - 2018-11-06 08:09 - 000401752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.cp35-win32.pyd
2018-11-07 18:13 - 2018-11-06 08:06 - 000028640 _____ () C:\Program Files (x86)\Dropbox\Client\win32job.cp35-win32.pyd
2018-11-07 18:13 - 2018-11-06 08:09 - 000034664 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.cp35-win32.pyd
2018-11-07 18:13 - 2018-11-06 08:09 - 000061792 _____ () C:\Program Files (x86)\Dropbox\Client\winshell.compiled._winshell.cp35-win32.pyd
2018-11-07 18:12 - 2018-11-06 08:06 - 000023520 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.cp35-win32.pyd
2018-11-07 18:13 - 2018-11-06 08:06 - 000053736 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.cp35-win32.pyd
2018-06-30 10:01 - 2018-11-06 08:06 - 000065504 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.cp35-win32.pyd
2018-11-07 18:12 - 2018-11-06 08:08 - 000025944 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.cp35-win32.pyd
2018-11-07 18:13 - 2018-11-06 08:09 - 000068968 _____ () C:\Program Files (x86)\Dropbox\Client\winenumhandles.compiled._WinEnumHandles.cp35-win32.pyd
2018-11-07 18:13 - 2018-11-06 08:09 - 000028520 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.cp35-win32.pyd
2018-11-07 18:12 - 2018-11-06 08:08 - 000027488 _____ () C:\Program Files (x86)\Dropbox\Client\crashpad.compiled._Crashpad.cp35-win32.pyd
2018-11-07 18:13 - 2018-11-06 08:06 - 000032224 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.cp35-win32.pyd
2018-11-07 18:12 - 2018-11-06 08:08 - 000156504 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.cp35-win32.pyd
2018-06-30 10:01 - 2018-11-06 08:09 - 000092488 _____ () C:\Program Files (x86)\Dropbox\Client\sip.cp35-win32.pyd
2018-11-07 18:12 - 2018-11-06 08:08 - 001778000 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.cp35-win32.pyd
2018-11-07 18:12 - 2018-11-06 08:08 - 000518992 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.cp35-win32.pyd
2018-11-07 18:12 - 2018-11-06 08:08 - 000052056 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineCore.cp35-win32.pyd
2018-11-07 18:12 - 2018-11-06 08:08 - 001929552 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.cp35-win32.pyd
2018-11-07 18:12 - 2018-11-06 08:08 - 003821392 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.cp35-win32.pyd
2018-11-07 18:12 - 2018-11-06 08:08 - 000044888 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.cp35-win32.pyd
2018-11-07 18:12 - 2018-11-06 08:08 - 000132944 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.cp35-win32.pyd
2018-11-07 18:12 - 2018-11-06 08:08 - 000218456 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.cp35-win32.pyd
2018-11-07 18:12 - 2018-11-06 08:08 - 000205656 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.cp35-win32.pyd
2018-11-07 18:13 - 2018-11-06 08:06 - 000061408 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.cp35-win32.pyd
2018-11-07 18:13 - 2018-11-06 08:09 - 000051552 _____ () C:\Program Files (x86)\Dropbox\Client\winrpcserver.compiled._RPCServer.cp35-win32.pyd
2018-11-07 18:13 - 2018-11-06 08:06 - 000027624 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.cp35-win32.pyd
2018-11-07 18:13 - 2018-11-06 08:09 - 000033632 _____ () C:\Program Files (x86)\Dropbox\Client\winreindex.compiled._winreindex.cp35-win32.pyd
2018-11-07 18:13 - 2018-11-06 08:09 - 000028008 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32.compiled._winffi_user32.cp35-win32.pyd
2018-11-07 18:13 - 2018-11-06 08:09 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi.compiled._winffi_iphlpapi.cp35-win32.pyd
2018-11-07 18:13 - 2018-11-06 08:09 - 000025448 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror.compiled._winffi_winerror.cp35-win32.pyd
2018-11-07 18:13 - 2018-11-06 08:09 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet.compiled._winffi_wininet.cp35-win32.pyd
2018-11-07 18:12 - 2018-11-06 08:08 - 000031600 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.cp35-win32.pyd
2018-11-07 18:13 - 2018-11-06 08:06 - 000486880 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.cp35-win32.pyd
2018-11-07 18:12 - 2018-11-06 08:08 - 000102736 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWinExtras.cp35-win32.pyd
2018-11-07 18:13 - 2018-11-06 08:09 - 000029040 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.cp35-win32.pyd
2018-11-07 18:12 - 2018-11-06 08:08 - 011144016 _____ () C:\Program Files (x86)\Dropbox\Client\nucleus_python.cp35-win32.pyd
2018-11-07 18:12 - 2018-11-06 08:08 - 000029024 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.cp35-win32.pyd
2018-11-07 18:12 - 2018-11-06 08:06 - 000036312 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2018-11-07 18:13 - 2018-11-06 08:09 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.advapi32.compiled._winffi_advapi32.cp35-win32.pyd
2018-11-07 18:12 - 2018-11-06 08:08 - 000433992 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2018-11-07 18:13 - 2018-11-06 08:09 - 000035680 _____ () C:\Program Files (x86)\Dropbox\Client\wind3d11.compiled._wind3d11.cp35-win32.pyd
2018-11-07 18:12 - 2018-11-06 08:08 - 000025920 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.DLL
2018-11-07 18:12 - 2018-11-06 08:08 - 001592128 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
2018-11-07 18:13 - 2018-11-06 08:09 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.shcore.compiled._winffi_shcore.cp35-win32.pyd
2018-11-07 18:13 - 2018-11-06 08:09 - 000025448 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.gdi32.compiled._winffi_gdi32.cp35-win32.pyd
2018-11-07 18:13 - 2018-11-06 08:09 - 000028520 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.shell32.compiled._winffi_shell32.cp35-win32.pyd
2018-11-07 18:13 - 2018-11-06 08:09 - 000029544 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.cp35-win32.pyd
2018-11-07 18:12 - 2018-11-06 08:08 - 000530768 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.cp35-win32.pyd
2018-11-07 18:12 - 2018-11-06 08:08 - 000348496 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.cp35-win32.pyd
2018-11-07 18:12 - 2018-11-06 08:08 - 000037200 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngine.cp35-win32.pyd
2017-09-10 15:51 - 2017-09-10 15:51 - 000798208 _____ () C:\Users\guillaume\AppData\Local\MEGAsync\libsodium.dll
2018-06-30 10:24 - 2018-11-05 16:05 - 011283288 _____ () \\?\C:\Users\guillaume\AppData\Roaming\discord\0.0.301\modules\discord_voice\discord_voice.node
2018-06-30 10:24 - 2018-11-08 20:16 - 001639256 _____ () \\?\C:\Users\guillaume\AppData\Roaming\discord\0.0.301\modules\discord_utils\discord_utils.node
2018-06-30 10:24 - 2018-06-30 10:24 - 001910104 _____ () \\?\C:\Users\guillaume\AppData\Roaming\discord\0.0.301\modules\discord_spellcheck\node_modules\cld\build\Release\cld.node
2018-06-30 10:24 - 2018-06-30 10:24 - 000422744 _____ () \\?\C:\Users\guillaume\AppData\Roaming\discord\0.0.301\modules\discord_spellcheck\node_modules\spellchecker\build\Release\spellchecker.node
2018-06-30 10:24 - 2018-06-30 10:24 - 000145240 _____ () \\?\C:\Users\guillaume\AppData\Roaming\discord\0.0.301\modules\discord_spellcheck\node_modules\keyboard-layout\build\Release\keyboard-layout-manager.node
2018-06-30 10:24 - 2018-06-30 10:24 - 000512856 _____ () \\?\C:\Users\guillaume\AppData\Roaming\discord\0.0.301\modules\discord_erlpack\discord_erlpack.node
2018-06-30 10:24 - 2018-11-07 15:55 - 001630040 _____ () \\?\C:\Users\guillaume\AppData\Roaming\discord\0.0.301\modules\discord_game_utils\discord_game_utils.node
2018-10-01 14:07 - 2018-10-10 07:53 - 009621848 _____ () \\?\C:\Users\guillaume\AppData\Roaming\discord\0.0.301\modules\discord_cloudsync\discord_cloudsync.node
2018-06-30 10:24 - 2018-06-30 10:24 - 002722648 _____ () \\?\C:\Users\guillaume\AppData\Roaming\discord\0.0.301\modules\discord_rpc\discord_rpc.node
2018-08-11 10:49 - 2018-10-30 19:27 - 001248088 _____ () \\?\C:\Users\guillaume\AppData\Roaming\discord\0.0.301\modules\discord_modules\discord_modules.node
2018-08-11 10:48 - 2018-11-05 16:05 - 024896856 _____ () \\?\C:\Users\guillaume\AppData\Roaming\discord\0.0.301\modules\discord_dispatch\discord_dispatch.node
2018-06-30 10:27 - 2018-06-30 10:27 - 002760536 _____ () \\?\C:\Users\guillaume\AppData\Roaming\discord\0.0.301\modules\discord_contact_import\discord_contact_import.node
2018-06-30 10:26 - 2018-06-30 10:26 - 001249112 _____ () \\?\C:\Users\guillaume\AppData\Roaming\discord\0.0.301\modules\discord_vigilante\discord_vigilante.node
2018-11-08 20:22 - 2018-10-30 13:06 - 000879904 _____ () D:\program ssd\steam\SDL2.dll
2018-07-24 15:42 - 2016-08-31 20:02 - 004969248 _____ () D:\program ssd\steam\v8.dll
2018-11-08 20:22 - 2018-11-08 14:02 - 002649376 _____ () D:\program ssd\steam\video.dll
2018-07-24 15:42 - 2016-08-31 20:02 - 001563936 _____ () D:\program ssd\steam\icui18n.dll
2018-07-24 15:42 - 2016-08-31 20:02 - 001195296 _____ () D:\program ssd\steam\icuuc.dll
2018-07-24 15:42 - 2017-12-19 20:43 - 005137696 _____ () D:\program ssd\steam\libavcodec-57.dll
2018-07-24 15:42 - 2017-12-19 20:43 - 000695584 _____ () D:\program ssd\steam\libavformat-57.dll
2018-07-24 15:42 - 2017-12-19 20:43 - 000351520 _____ () D:\program ssd\steam\libavresample-3.dll
2018-07-24 15:42 - 2017-12-19 20:43 - 000847136 _____ () D:\program ssd\steam\libavutil-55.dll
2018-07-24 15:42 - 2017-12-19 20:43 - 000783648 _____ () D:\program ssd\steam\libswscale-4.dll
2018-11-08 20:22 - 2018-11-08 14:02 - 001028384 _____ () D:\program ssd\steam\bin\chromehtml.DLL
2018-07-24 15:42 - 2016-07-04 17:17 - 000266560 _____ () D:\program ssd\steam\openvr_api.dll
2018-11-08 20:22 - 2018-10-30 13:06 - 000879904 _____ () D:\program ssd\steam\bin\cef\cef.win7\SDL2.dll
2018-10-11 17:46 - 2018-09-22 19:00 - 088009504 _____ () D:\program ssd\steam\bin\cef\cef.win7\libcef.dll
2018-10-11 17:46 - 2018-09-22 19:00 - 004083488 _____ () D:\program ssd\steam\bin\cef\cef.win7\libglesv2.dll
2018-10-11 17:46 - 2018-09-22 19:00 - 000097056 _____ () D:\program ssd\steam\bin\cef\cef.win7\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\str => ""="service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 08:25 - 2013-08-22 08:25 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3805808772-3452688692-1920293510-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\guillaume\Pictures\sans_copyright_.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
If an entry is included in the fixlist, it will be removed.
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{B3C5FC64-B289-44BD-BC2D-5EE04D5EDD2F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{2C2BC456-DD14-42B6-A5FC-373C41132F3F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{4C31393A-7CBD-4C71-9A2B-4165849B4643}C:\users\guillaume\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\guillaume\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{BD85F14D-401E-4FD7-A32B-4A95E86DD6AF}C:\users\guillaume\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\guillaume\appdata\roaming\spotify\spotify.exe
FirewallRules: [{2CAFF4D8-F6F3-4912-8131-B0ECC6277EC7}] => (Allow) D:\program ssd\steam\Steam.exe
FirewallRules: [{0F14B499-C558-438E-B454-557A7CE09CDE}] => (Allow) D:\program ssd\steam\Steam.exe
FirewallRules: [{451B5EB8-AF2E-4C5F-97B4-7FCE032433EB}] => (Allow) D:\program ssd\steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{5D380EF5-842C-4329-AC6D-53AD5585AC5A}] => (Allow) D:\program ssd\steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{8510B7D8-D29B-4A73-A660-8B19384D052F}] => (Allow) E:\SteamLibrary\steamapps\common\Robocraft\Robocraft.exe
FirewallRules: [{5B579DDD-C647-4155-B905-290D762E3A4E}] => (Allow) E:\SteamLibrary\steamapps\common\Robocraft\Robocraft.exe
FirewallRules: [{25EC507E-17B8-4D18-B07F-A83A8F8D6BE9}] => (Allow) D:\program ssd\steam\steamapps\common\Unturned\Unturned_BE.exe
FirewallRules: [{2E3CC163-A98E-4E62-8A2C-5AF0F7C88F5A}] => (Allow) D:\program ssd\steam\steamapps\common\Unturned\Unturned_BE.exe
FirewallRules: [{84FE1488-43E9-4899-9AC1-5CE136D88942}] => (Allow) E:\SteamLibrary\steamapps\common\SUPERHOT\SUPERHOT.exe
FirewallRules: [{1D107486-1B9E-483B-84D1-02DB7CCB46EE}] => (Allow) E:\SteamLibrary\steamapps\common\SUPERHOT\SUPERHOT.exe
FirewallRules: [{9AD11363-0839-47DC-BFE3-BE7B5AB31473}] => (Allow) E:\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe
FirewallRules: [{8B209C58-3140-4F10-AA16-148C6EA258A3}] => (Allow) E:\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe
FirewallRules: [TCP Query User{7057898F-15F7-4F00-947F-693BD9645A96}D:\program ssd\transmi\transmission-qt.exe] => (Allow) D:\program ssd\transmi\transmission-qt.exe
FirewallRules: [UDP Query User{4F8E08E4-BF42-46DA-B5E4-F85A5DD0008F}D:\program ssd\transmi\transmission-qt.exe] => (Allow) D:\program ssd\transmi\transmission-qt.exe
FirewallRules: [{5BAEA11A-D3F9-49F5-9696-87EC29F2B80E}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe
FirewallRules: [{FF03C7ED-EEE4-47EA-9171-B1966F2DEFBC}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe
FirewallRules: [{D1637D76-C223-4230-90B9-EA6EF5934BDB}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe
FirewallRules: [{E16D8828-E46E-4D54-A82E-AF63DF88E859}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe
FirewallRules: [{E7AE011A-F195-4C58-899A-AF449B45E52B}] => (Allow) D:\program ssd\steam\steamapps\common\Stranded Deep\Stranded_Deep_x64.exe
FirewallRules: [{D9F1411D-1AA2-48C0-B960-0AB25F462F2E}] => (Allow) D:\program ssd\steam\steamapps\common\Stranded Deep\Stranded_Deep_x64.exe
FirewallRules: [TCP Query User{17176DF7-26F1-47CA-A167-949EB955DA75}D:\program ssd\potplayer\potplayermini64.exe] => (Allow) D:\program ssd\potplayer\potplayermini64.exe
FirewallRules: [UDP Query User{3DDCEF51-3FFB-45DC-A484-F9514D830043}D:\program ssd\potplayer\potplayermini64.exe] => (Allow) D:\program ssd\potplayer\potplayermini64.exe
FirewallRules: [{55FE1D21-C67E-4043-9E56-D4E7B33556C4}] => (Allow) E:\SteamLibrary\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{04DF4755-E196-4B58-98F5-85BF465B8BA7}] => (Allow) E:\SteamLibrary\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [TCP Query User{095B0A5A-6E22-4AF9-8DFC-02996B5F4485}E:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) E:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe
FirewallRules: [UDP Query User{4B3E7B90-E3E7-48FE-BA58-2C2285FFAEBE}E:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) E:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe
FirewallRules: [TCP Query User{411CA12A-590C-4D5B-B9D0-13360AE1EC1B}E:\program file\lol\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe] => (Allow) E:\program file\lol\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe
FirewallRules: [UDP Query User{94C49CA8-5EF6-4200-A999-6B185DEFA2D8}E:\program file\lol\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe] => (Allow) E:\program file\lol\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe
FirewallRules: [{ADF52A53-A997-4C8A-8014-B7D98B1C3D43}] => (Allow) E:\SteamLibrary\steamapps\common\Hurtworld\Hurtworld.exe
FirewallRules: [{F41E8C14-3DB7-4DAD-99DE-09E593FEE217}] => (Allow) E:\SteamLibrary\steamapps\common\Hurtworld\Hurtworld.exe
FirewallRules: [{1C9BAD96-D23A-473B-AAC2-C9EDCD0C75FD}] => (Allow) E:\SteamLibrary\steamapps\common\Hurtworld\HurtworldClient.exe
FirewallRules: [{902081CA-1437-4405-AB92-28CA5FB1F2B0}] => (Allow) E:\SteamLibrary\steamapps\common\Hurtworld\HurtworldClient.exe
FirewallRules: [{89CCF411-D5F9-4B9C-AF24-24DB116A52B3}] => (Allow) E:\SteamLibrary\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe
FirewallRules: [{F63515FE-B75D-44C8-88EB-78BDA138333E}] => (Allow) E:\SteamLibrary\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe
FirewallRules: [TCP Query User{67A61F0F-B30E-40B6-96F9-504C0BC7D81E}E:\program file\battle net\overwatch\overwatch.exe] => (Allow) E:\program file\battle net\overwatch\overwatch.exe
FirewallRules: [UDP Query User{1998DE3E-D26D-4993-A760-4A004780B96C}E:\program file\battle net\overwatch\overwatch.exe] => (Allow) E:\program file\battle net\overwatch\overwatch.exe
FirewallRules: [TCP Query User{13D05E8B-1896-4459-9A40-ADFB7622CB79}E:\steamlibrary\steamapps\common\war thunder\launcher.exe] => (Allow) E:\steamlibrary\steamapps\common\war thunder\launcher.exe
FirewallRules: [UDP Query User{EF214F3D-8125-466D-B6D5-F42AF317C8B8}E:\steamlibrary\steamapps\common\war thunder\launcher.exe] => (Allow) E:\steamlibrary\steamapps\common\war thunder\launcher.exe
FirewallRules: [TCP Query User{2AC2CB19-7BDB-4DBB-AB33-4C075ECB42C3}E:\steamlibrary\steamapps\common\war thunder\win64\aces.exe] => (Allow) E:\steamlibrary\steamapps\common\war thunder\win64\aces.exe
FirewallRules: [UDP Query User{61913B00-AAC8-4897-8247-2EE1E6A978C3}E:\steamlibrary\steamapps\common\war thunder\win64\aces.exe] => (Allow) E:\steamlibrary\steamapps\common\war thunder\win64\aces.exe
FirewallRules: [{6697988C-1A1E-49A0-BAA0-B49CC6DFD328}] => (Allow) H:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{1AA1FA47-FCA1-4FB6-A2B8-0194DB0587AC}] => (Allow) H:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [TCP Query User{1CC6623F-DA32-4D09-BE19-E4970D75AC1B}H:\program file\battle net\overwatch\overwatch.exe] => (Allow) H:\program file\battle net\overwatch\overwatch.exe
FirewallRules: [UDP Query User{44CBB49E-07A4-4E0E-BC05-DB5688080DB8}H:\program file\battle net\overwatch\overwatch.exe] => (Allow) H:\program file\battle net\overwatch\overwatch.exe
FirewallRules: [{70C63C38-1459-458A-A872-9753082D0881}] => (Allow) H:\SteamLibrary\steamapps\common\Hurtworld\Hurtworld.exe
FirewallRules: [{B84E35BF-5178-47D7-AD9E-C190511DE9E3}] => (Allow) H:\SteamLibrary\steamapps\common\Hurtworld\Hurtworld.exe
FirewallRules: [{B2D17A34-AD77-4651-9FD0-3D9E9D017CD0}] => (Allow) H:\SteamLibrary\steamapps\common\Hurtworld\HurtworldClient.exe
FirewallRules: [{39AFA38C-BBA0-4BFA-983A-240C223A8DE1}] => (Allow) H:\SteamLibrary\steamapps\common\Hurtworld\HurtworldClient.exe
FirewallRules: [TCP Query User{087488C4-B92F-4B9A-B09A-DC0BF67701EA}H:\steamlibrary\steamapps\common\war thunder\launcher.exe] => (Allow) H:\steamlibrary\steamapps\common\war thunder\launcher.exe
FirewallRules: [UDP Query User{BC783002-4ACD-455F-A6B9-6938DC6F45C9}H:\steamlibrary\steamapps\common\war thunder\launcher.exe] => (Allow) H:\steamlibrary\steamapps\common\war thunder\launcher.exe
FirewallRules: [TCP Query User{20FF488C-F8E3-4F33-95DD-BB6BCB8F9219}H:\steamlibrary\steamapps\common\war thunder\win64\aces.exe] => (Allow) H:\steamlibrary\steamapps\common\war thunder\win64\aces.exe
FirewallRules: [UDP Query User{57A11900-1A40-43AA-A9FB-4C4BC880001E}H:\steamlibrary\steamapps\common\war thunder\win64\aces.exe] => (Allow) H:\steamlibrary\steamapps\common\war thunder\win64\aces.exe
FirewallRules: [TCP Query User{56EC2671-F926-4799-91EC-C08889860616}H:\steamlibrary\steamapps\common\robocraft\robocraftclient.exe] => (Allow) H:\steamlibrary\steamapps\common\robocraft\robocraftclient.exe
FirewallRules: [UDP Query User{661FA77C-A76D-422B-9BAD-734ABE0F8520}H:\steamlibrary\steamapps\common\robocraft\robocraftclient.exe] => (Allow) H:\steamlibrary\steamapps\common\robocraft\robocraftclient.exe
FirewallRules: [{1AC8374A-0BC7-4446-B000-2B091109BC42}] => (Allow) C:\Program Files (x86)\BlueStacks\HD-Player.exe
FirewallRules: [{198ABD83-C0DD-440A-B241-1CED2012FFBF}] => (Allow) D:\program ssd\dsadsa\Apowersoft Screen Recorder Pro 2\Apowersoft Screen Recorder Pro 2.exe
FirewallRules: [{A38FB4E2-743D-4636-8C5F-BBDED7ED0279}] => (Allow) D:\program ssd\dsadsa\Apowersoft Screen Recorder Pro 2\Apowersoft Screen Recorder Pro 2.exe
FirewallRules: [{451EE46E-00F0-43F3-B21B-E08BF3D8D661}] => (Allow) H:\SteamLibrary\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe
FirewallRules: [{F42FE14A-A343-472E-909E-6D1D14308F1F}] => (Allow) H:\SteamLibrary\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe
FirewallRules: [{F3371852-1E69-4D40-AE16-8311BD9D5E7D}] => (Allow) D:\program ssd\steam\steamapps\common\Rivals of Aether\RivalsofAether.exe
FirewallRules: [{FA4F35F2-24C7-42B9-A228-879B701772E4}] => (Allow) D:\program ssd\steam\steamapps\common\Rivals of Aether\RivalsofAether.exe
FirewallRules: [{569186BF-788D-4EB7-AFD8-A11CA4034179}] => (Allow) H:\SteamLibrary\steamapps\common\PlagueInc\PlagueIncEvolved.exe
FirewallRules: [{CA94A25F-38CD-4AC0-AF02-2249D37EE442}] => (Allow) H:\SteamLibrary\steamapps\common\PlagueInc\PlagueIncEvolved.exe
FirewallRules: [{A287DDE1-68AC-40B4-86E1-82071AAC198E}] => (Allow) H:\SteamLibrary\steamapps\common\Robocraft\Robocraft.exe
FirewallRules: [{18177D2A-DBFD-46F2-BF56-B4B0DBD6C321}] => (Allow) H:\SteamLibrary\steamapps\common\Robocraft\Robocraft.exe
FirewallRules: [UDP Query User{9B90EE77-680C-4142-9100-F0E839C2078F}C:\users\guillaume\appdata\roaming\icq\bin\icq.exe] => (Allow) C:\users\guillaume\appdata\roaming\icq\bin\icq.exe
FirewallRules: [{FB7343D9-4892-4C0D-AE73-41DA74A3270B}] => (Allow) C:\Users\guillaume\Pictures\LiquidSky.exe
FirewallRules: [{97569978-A0E8-47CA-82BF-F7EFB9ECED90}] => (Allow) C:\Users\guillaume\Pictures\LiquidSky.exe
FirewallRules: [{39028344-C2D7-4E96-AF4E-99777BB3BD61}] => (Allow) C:\Users\guillaume\AppData\Roaming\LiquidSky\LiquidSkyClient.exe
FirewallRules: [{C5F7DE47-9D3D-4221-BF37-3709ED3053AE}] => (Allow) C:\Users\guillaume\AppData\Roaming\LiquidSky\LiquidSkyClient.exe
FirewallRules: [{13513134-8296-4F10-B420-CC5B6260C5FC}] => (Allow) C:\Users\guillaume\AppData\Roaming\LiquidSky\lib\LiquidSky.exe
FirewallRules: [{D946626A-9FA3-47E1-9AB6-02C45053CBDC}] => (Allow) C:\Users\guillaume\AppData\Roaming\LiquidSky\lib\LiquidSky.exe
FirewallRules: [{2CB2E0BB-376F-4FFB-AE19-515FEB355C13}] => (Allow) H:\SteamLibrary\steamapps\common\Eastside Hockey Manager\ehm.exe
FirewallRules: [{C9C207E4-20BD-43FF-AB9F-A46B029142D5}] => (Allow) H:\SteamLibrary\steamapps\common\Eastside Hockey Manager\ehm.exe
FirewallRules: [{781D41F4-58C1-4AD6-8063-E79B4A727E7B}] => (Allow) H:\SteamLibrary\steamapps\common\SEGA Bass Fishing\AppLauncher.exe
FirewallRules: [{A2915D17-E915-458F-9400-74410270EB04}] => (Allow) H:\SteamLibrary\steamapps\common\SEGA Bass Fishing\AppLauncher.exe
FirewallRules: [TCP Query User{A1AA0C11-86AB-4299-A7DC-A663C4BEE134}H:\program file\lol\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe] => (Allow) H:\program file\lol\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe
FirewallRules: [UDP Query User{E2650BFA-0192-4FDF-B6C7-C2FA2D619374}H:\program file\lol\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe] => (Allow) H:\program file\lol\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe
FirewallRules: [TCP Query User{37C0A995-7984-414A-8A74-D643061F6C75}H:\program file\lol\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe] => (Allow) H:\program file\lol\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe
FirewallRules: [UDP Query User{C4EE46FE-3CAD-4D8C-90D0-921E31A2355C}H:\program file\lol\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe] => (Allow) H:\program file\lol\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe
FirewallRules: [TCP Query User{0D181CA0-E909-46F8-A00F-CB853D29FD72}H:\steamlibrary\steamapps\common\paladins\binaries\win64\paladins.exe] => (Allow) H:\steamlibrary\steamapps\common\paladins\binaries\win64\paladins.exe
FirewallRules: [UDP Query User{3A2ADB60-AF40-4E3D-89FA-ECF394EE9793}H:\steamlibrary\steamapps\common\paladins\binaries\win64\paladins.exe] => (Allow) H:\steamlibrary\steamapps\common\paladins\binaries\win64\paladins.exe
FirewallRules: [{1B9B63D5-8401-4DA6-A173-C28E771D9629}] => (Allow) H:\SteamLibrary\steamapps\common\Unturned\Unturned_BE.exe
FirewallRules: [{99F8F4AD-CAA1-4E31-8A7E-50C565C46B3F}] => (Allow) H:\SteamLibrary\steamapps\common\Unturned\Unturned_BE.exe
FirewallRules: [{37880FEC-DF61-41E5-B626-EDA8908FDF82}] => (Allow) H:\SteamLibrary\steamapps\common\Unturned\Unturned.exe
FirewallRules: [{44F3663D-2604-4FEA-A342-DC33A701B305}] => (Allow) H:\SteamLibrary\steamapps\common\Unturned\Unturned.exe
FirewallRules: [{04F68570-DD80-4DEE-8905-B51942F0B89B}] => (Allow) C:\SteamLibrary\steamapps\common\wallpaper_engine\launcher.exe
FirewallRules: [{35DAADC9-843F-4A15-AB5D-EBE89EC264B1}] => (Allow) C:\SteamLibrary\steamapps\common\wallpaper_engine\launcher.exe
FirewallRules: [{7F03A7EA-6B16-411F-A3DD-0DF3108B712B}] => (Allow) H:\SteamLibrary\steamapps\common\StickFightTheGame\StickFight.exe
FirewallRules: [{56A77E94-C1E7-4008-8923-F480F2352C3F}] => (Allow) H:\SteamLibrary\steamapps\common\StickFightTheGame\StickFight.exe
FirewallRules: [{22F4C789-9AF1-457C-9494-3A5487EF22DD}] => (Allow) D:6\SteamLibrary\steamapps\common\Screencheat\screencheat.exe
FirewallRules: [{BF17DB48-DBDE-4CFB-8188-62B44998AE6A}] => (Allow) D:6\SteamLibrary\steamapps\common\Screencheat\screencheat.exe
FirewallRules: [{4FE6DAB4-AE5C-456D-A200-165D5056120E}] => (Allow) D:6\SteamLibrary\steamapps\common\SUPERHOT\SUPERHOT.exe
FirewallRules: [{5463040C-C9FE-4C99-B1EE-E1949B19A5AF}] => (Allow) D:6\SteamLibrary\steamapps\common\SUPERHOT\SUPERHOT.exe
FirewallRules: [{12AEFBA1-61B4-4CCA-9FA2-3C995102DCD0}] => (Allow) C:\SteamLibrary\steamapps\common\Kingdom New Lands\Kingdom.exe
FirewallRules: [{ED515400-A969-4F71-B18E-297A2F533148}] => (Allow) C:\SteamLibrary\steamapps\common\Kingdom New Lands\Kingdom.exe
FirewallRules: [{A6346536-6D8F-42AA-BA7E-C37D26805BD9}] => (Allow) C:\SteamLibrary\steamapps\common\Broforce\Broforce_beta.exe
FirewallRules: [{0091CAE2-21B7-44C2-918D-3AF12C3B3C32}] => (Allow) C:\SteamLibrary\steamapps\common\Broforce\Broforce_beta.exe
FirewallRules: [{513CE9C3-7F28-4F47-A735-F8CA524301DE}] => (Allow) H:\SteamLibrary\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{6249FB0F-B669-45B7-92D5-D48C489D3981}] => (Allow) H:\SteamLibrary\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{6C02D617-B580-49C3-B43A-3EBB8DE4BFB9}] => (Allow) H:\SteamLibrary\steamapps\common\MXGP\MXGP.exe
FirewallRules: [{795F443B-B0FF-4DF0-807E-A3806C77E1BF}] => (Allow) H:\SteamLibrary\steamapps\common\MXGP\MXGP.exe
FirewallRules: [{B64D8658-E305-40ED-B1EC-CEF0D721D73F}] => (Allow) H:\SteamLibrary\steamapps\common\RaceTheSun\RaceTheSun.exe
FirewallRules: [{03FE31EE-0F61-4F9E-BACA-7AC681907052}] => (Allow) H:\SteamLibrary\steamapps\common\RaceTheSun\RaceTheSun.exe
FirewallRules: [{85F81177-EB98-4FA5-B1BE-245AAC472C19}] => (Allow) H:\SteamLibrary\steamapps\common\Sonic Adventure 2\Launcher.exe
FirewallRules: [{06FA88BF-C270-45AE-88E7-96B752358106}] => (Allow) H:\SteamLibrary\steamapps\common\Sonic Adventure 2\Launcher.exe
FirewallRules: [{D070E99E-BCB8-49A8-AF2F-24C6F8223BEE}] => (Allow) H:\SteamLibrary\steamapps\common\Saints Row the Third\game_launcher.exe
FirewallRules: [{184D1914-86DB-422D-84B0-4C3FC0BBED72}] => (Allow) H:\SteamLibrary\steamapps\common\Saints Row the Third\game_launcher.exe
FirewallRules: [{E6AA2B88-2A6D-4AE0-A2E8-9275A7527556}] => (Allow) H:\SteamLibrary\steamapps\common\MortalKombat_KompleteEdition\DiscContentPC\MKKE.exe
FirewallRules: [{07480F4D-9F46-43E7-BBE5-66D987733FE7}] => (Allow) H:\SteamLibrary\steamapps\common\MortalKombat_KompleteEdition\DiscContentPC\MKKE.exe
FirewallRules: [{ADB39DA7-AFFD-4514-A259-67AF8B6B36DE}] => (Allow) H:\SteamLibrary\steamapps\common\MortalKombat_KompleteEdition\DiscContentPC\MKLauncher.exe
FirewallRules: [{B89B03B8-140D-49E3-B575-2073DE2692A4}] => (Allow) H:\SteamLibrary\steamapps\common\MortalKombat_KompleteEdition\DiscContentPC\MKLauncher.exe
FirewallRules: [TCP Query User{075EC1B8-06E8-422D-AEB7-B2EC152B2A4D}H:\program game\battlenet\overwatch\overwatch.exe] => (Allow) H:\program game\battlenet\overwatch\overwatch.exe
FirewallRules: [UDP Query User{9F01D575-0F62-4459-BFF4-54C6696BFAB2}H:\program game\battlenet\overwatch\overwatch.exe] => (Allow) H:\program game\battlenet\overwatch\overwatch.exe
FirewallRules: [{46933911-DD77-449D-BE05-9AAC2C58A753}] => (Allow) H:\SteamLibrary\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{7E3D446A-8ED0-44FB-81A4-9B21444B2063}] => (Allow) H:\SteamLibrary\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{D4BAB693-BF42-45FA-8E76-C18C5482FF53}] => (Allow) H:\SteamLibrary\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{3FF0E5D1-7BC1-4926-A1DE-7EA58217E0ED}] => (Allow) H:\SteamLibrary\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{1B8A2BE8-6A0E-4C8A-8B22-6934A023ED79}] => (Allow) H:\SteamLibrary\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{84A2588A-4FCB-4C26-986C-9878980C7069}] => (Allow) H:\SteamLibrary\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{C1D3C873-CF3B-4ACF-BCE6-8014D13642AA}] => (Allow) H:\SteamLibrary\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{7D7EC331-05D6-497A-B75F-ED8D74F92A0A}] => (Allow) H:\SteamLibrary\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{1F44E43D-A130-4CD3-84F1-04BADA7D9C9F}] => (Allow) H:\SteamLibrary\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{3E3D5804-0D92-4AC9-8801-6999E965BA2C}] => (Allow) H:\SteamLibrary\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{57664DE1-2470-45BE-96C8-CC18D9CAEB88}] => (Allow) H:\SteamLibrary\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{A5449A2F-46F1-4FD6-B43D-11378C6641F8}] => (Allow) H:\SteamLibrary\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{109F37F6-F658-4C96-835D-C4B1E78936EB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{1301C80C-4EAF-4025-AEA4-0594DBB6C5BC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{9C3DC2D2-D42C-42F1-9309-B3415DC22314}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{87228D89-0488-4480-9E5C-7D5EA4B89C74}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [TCP Query User{4A92C0BC-83CE-465B-9EFB-B1D5208F4D2E}D:\program ssd\magic\25\musicmaker.exe] => (Allow) D:\program ssd\magic\25\musicmaker.exe
FirewallRules: [UDP Query User{EE46579B-6AAE-4A98-BE9C-80B3424F19A1}D:\program ssd\magic\25\musicmaker.exe] => (Allow) D:\program ssd\magic\25\musicmaker.exe
FirewallRules: [TCP Query User{9373B077-DF51-4B95-9110-A72D7AC1D007}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{08C80490-4B84-48D9-B54C-CAE1D37FCF6C}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe
FirewallRules: [TCP Query User{D93FCA67-B4BC-4FEB-A78C-181B99E8D695}H:\downl\king of the hat - august backer build\king of the hat - august backer build\pc\pc.exe] => (Allow) H:\downl\king of the hat - august backer build\king of the hat - august backer build\pc\pc.exe
FirewallRules: [UDP Query User{9C456ECE-2C58-471A-872C-689BB5CF1D5D}H:\downl\king of the hat - august backer build\king of the hat - august backer build\pc\pc.exe] => (Allow) H:\downl\king of the hat - august backer build\king of the hat - august backer build\pc\pc.exe
FirewallRules: [TCP Query User{E38D88AF-D227-485B-94F3-20BCE27C7AC3}D:\downloadssd\monero-gui-win-x64-v0.12.3.0\monero-gui-v0.12.3.0\monero-wallet-gui.exe] => (Allow) D:\downloadssd\monero-gui-win-x64-v0.12.3.0\monero-gui-v0.12.3.0\monero-wallet-gui.exe
FirewallRules: [UDP Query User{E886E5C3-7950-4C50-8605-F6D2EC0C5BD7}D:\downloadssd\monero-gui-win-x64-v0.12.3.0\monero-gui-v0.12.3.0\monero-wallet-gui.exe] => (Allow) D:\downloadssd\monero-gui-win-x64-v0.12.3.0\monero-gui-v0.12.3.0\monero-wallet-gui.exe
FirewallRules: [TCP Query User{73594363-0E00-4411-9046-1163DD2F954B}D:\downloadssd\monero-gui-win-x64-v0.12.3.0\monero-gui-v0.12.3.0\monerod.exe] => (Allow) D:\downloadssd\monero-gui-win-x64-v0.12.3.0\monero-gui-v0.12.3.0\monerod.exe
FirewallRules: [UDP Query User{8E6FDAB8-C655-46AF-BFF7-4B859D448512}D:\downloadssd\monero-gui-win-x64-v0.12.3.0\monero-gui-v0.12.3.0\monerod.exe] => (Allow) D:\downloadssd\monero-gui-win-x64-v0.12.3.0\monero-gui-v0.12.3.0\monerod.exe
FirewallRules: [{0295E4C1-2DAF-44CD-A768-3D16F4A9BCFA}] => (Allow) C:\Program Files (x86)\MAGIX\Music Maker\27\MusicMaker.exe
FirewallRules: [{56A9A2AE-29A4-4131-8AA3-6A0A684BC2A0}] => (Allow) H:\SteamLibrary\steamapps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{513557A1-2383-4246-9427-3736556420C6}] => (Allow) H:\SteamLibrary\steamapps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{CA3EB277-B869-447A-AD52-7DF154C8A25C}] => (Allow) LPort=1688
FirewallRules: [TCP Query User{292C4D05-412C-41C5-A239-1A1CAFE0EDA3}C:\program files\sdedibox\sdedibox.exe] => (Allow) C:\program files\sdedibox\sdedibox.exe
FirewallRules: [UDP Query User{292F5EC9-9409-400C-9487-E53EDB8C6892}C:\program files\sdedibox\sdedibox.exe] => (Allow) C:\program files\sdedibox\sdedibox.exe
FirewallRules: [{11D786C8-E358-4CF1-B968-6DF9C9C9A413}] => (Allow) D:\program ssd\steam\steamapps\common\3DMark\3DMarkLauncher.exe
FirewallRules: [{94429A31-AF3A-4428-8C85-EA42A6F8FAE0}] => (Allow) D:\program ssd\steam\steamapps\common\3DMark\3DMarkLauncher.exe
FirewallRules: [{DC8EF15A-E3D0-4B57-B8BC-58D16D0A06F2}] => (Allow) D:\program ssd\steam\steamapps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{99D190DD-E08B-4308-A531-ACF4DA1DF0F2}] => (Allow) D:\program ssd\steam\steamapps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{A83D05F8-9E23-4A67-B381-6CE9B79CCF09}] => (Allow) D:\program ssd\steam\steamapps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{75EFF640-53BE-44F1-9F14-AE9AD97FEC3D}] => (Allow) D:\program ssd\steam\steamapps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{ADC77D6A-D001-476E-B842-879775BC0BA7}] => (Allow) C:\Users\guillaume\Documents\nox\Nox\bin\Nox.exe
FirewallRules: [{2309D857-30F7-4767-BEC3-6748116EC113}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe
FirewallRules: [{62D2CA81-32A9-4CAB-99B2-0E1BF3253B04}] => (Allow) H:\SteamLibrary\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{3AB99BD0-736C-414A-ADB5-05DF0B1501E9}] => (Allow) H:\SteamLibrary\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{96853E6C-BA52-4F71-AE8C-31823C16E55A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{F6D5EA2B-99CF-4418-BC33-5D6273CA12D5}] => (Allow) H:\downl\KMS Tools Portable 01.03.2018 by Ratiborus\Programs\AAct Network v1.0.3 Portable\AAct_Network_x64.exe
FirewallRules: [{F9B59FCD-9183-446F-9E1E-B59CDB0B4B47}] => (Allow) H:\downl\KMS Tools Portable 01.03.2018 by Ratiborus\Programs\AAct Network v1.0.3 Portable\AAct_Network_x64.exe
FirewallRules: [{E6A41932-3170-491A-BB03-9D1771B28FD9}] => (Allow) D:\program ssd\steam\steamapps\common\DeathRoadToCanada\prog.exe
FirewallRules: [{BF76BA50-FBEB-4D9A-83B9-F1570E3D5E4F}] => (Allow) D:\program ssd\steam\steamapps\common\DeathRoadToCanada\prog.exe
FirewallRules: [{610105D0-D2FE-4189-8227-D546B55AE0F0}] => (Allow) D:\program ssd\steam\steamapps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{B4B6100B-3FAE-4B93-8222-E69A02C0870D}] => (Allow) D:\program ssd\steam\steamapps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{B9ACD608-8CF5-4D01-BBF0-D5112C4AC89D}] => (Allow) D:\program ssd\steam\steamapps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{264C0DDB-73A7-40E5-BBCC-0A9F1A5C3321}] => (Allow) D:\program ssd\steam\steamapps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{0646984C-B1A3-448E-9327-47335CF0276E}] => (Allow) D:\program ssd\steam\steamapps\common\VoiceAttack\VoiceAttack.exe
FirewallRules: [{F7EA334F-57BC-4380-A4E7-238C8F4CF1FB}] => (Allow) D:\program ssd\steam\steamapps\common\VoiceAttack\VoiceAttack.exe
FirewallRules: [{D2725FA7-0852-4BD0-A863-0C5DFFF53A89}] => (Allow) C:\SteamLibrary\steamapps\common\VoiceAttack\VoiceAttack.exe
FirewallRules: [{C81BB244-7AD5-4DC7-B0DB-0E067CF29E70}] => (Allow) C:\SteamLibrary\steamapps\common\VoiceAttack\VoiceAttack.exe
FirewallRules: [{819DA689-3FE2-4CD0-AFA6-DCA25CF65519}] => (Allow) H:\SteamLibrary\steamapps\common\Everything\Everything.exe
FirewallRules: [{764E4D97-5C4A-4A46-B18A-AD96DB63A46D}] => (Allow) H:\SteamLibrary\steamapps\common\Everything\Everything.exe
FirewallRules: [{40C0507E-2F21-4C3F-907F-20C299E4A54C}] => (Allow) C:\SteamLibrary\steamapps\common\Hotline Miami 2\HotlineMiami2.exe
FirewallRules: [{1BFAE37B-226A-4D89-8DDD-735CDDCA0573}] => (Allow) C:\SteamLibrary\steamapps\common\Hotline Miami 2\HotlineMiami2.exe
FirewallRules: [{DE50F62A-943E-41C5-A669-7F482DD1330C}] => (Allow) H:\SteamLibrary\steamapps\common\RiME\SirenGame\Binaries\Win64\RiME.exe
FirewallRules: [{451AE1EE-1E1F-4E10-80BB-ADCB98730B4E}] => (Allow) H:\SteamLibrary\steamapps\common\RiME\SirenGame\Binaries\Win64\RiME.exe
FirewallRules: [{37501BB2-CC45-41EE-B70B-3A8F209DEEEE}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{822E55CC-16F7-4CEE-9C2C-771DE7F013C0}] => (Allow) C:\SteamLibrary\steamapps\common\wallpaper_engine\bin\diagnostics32.exe
FirewallRules: [{B2C16611-2F6C-48F3-BB23-009A9A7067C6}] => (Allow) C:\SteamLibrary\steamapps\common\wallpaper_engine\bin\diagnostics32.exe
==================== Restore Points =========================
ATTENTION: System Restore is disabled
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (11/08/2018 09:37:18 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program transmission-qt.exe version 2.94.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: 1cf0
Start Time: 01d4777087f7219f
Termination Time: 5
Application Path: D:\program ssd\transmi\transmission-qt.exe
Report Id: c96d602c-e363-11e8-82c0-645a045cd845
Faulting package full name:
Faulting package-relative application ID:
Error: (11/07/2018 11:49:28 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.
Error: (11/07/2018 07:15:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: webwallpaper32.exe, version: 0.0.0.0, time stamp: 0x5bd9ea63
Faulting module name: libcef.dll, version: 3.3396.1779.0, time stamp: 0x5b2ae142
Exception code: 0x80000003
Fault offset: 0x02a3036a
Faulting process ID: 0x2bc0
Faulting application start time: 0x01d476f80ab0d04b
Faulting application path: C:\SteamLibrary\steamapps\common\wallpaper_engine\bin\webwallpaper32.exe
Faulting module path: C:\SteamLibrary\steamapps\common\wallpaper_engine\bin\libcef.dll
Report ID: 55e33b2b-e2eb-11e8-82bf-645a045cd845
Faulting package full name:
Faulting package-relative application ID:
Error: (11/07/2018 05:50:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: webwallpaper32.exe, version: 0.0.0.0, time stamp: 0x5bd9ea63
Faulting module name: libcef.dll, version: 3.3396.1779.0, time stamp: 0x5b2ae142
Exception code: 0x80000003
Fault offset: 0x02a3036a
Faulting process ID: 0x1110
Faulting application start time: 0x01d476ebb3029dd8
Faulting application path: C:\SteamLibrary\steamapps\common\wallpaper_engine\bin\webwallpaper32.exe
Faulting module path: C:\SteamLibrary\steamapps\common\wallpaper_engine\bin\libcef.dll
Report ID: 76784928-e2df-11e8-82bf-645a045cd845
Faulting package full name:
Faulting package-relative application ID:
Error: (11/07/2018 03:55:33 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program thunderbird.exe version 52.9.1.6764 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: 1c60
Start Time: 01d476dc1bde2444
Termination Time: 4294967295
Application Path: D:\program ssd\thunderbird\thunderbird.exe
Report Id: 7678235d-e2cf-11e8-82bf-645a045cd845
Faulting package full name:
Faulting package-relative application ID:
Error: (11/06/2018 09:37:17 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.
Error: (11/06/2018 10:41:26 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.
Error: (11/06/2018 10:25:58 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.
System errors:
=============
Error: (11/08/2018 08:22:33 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Steam Client Service service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.
Error: (11/08/2018 08:22:33 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.
Error: (11/08/2018 08:16:35 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is 40.
Error: (11/08/2018 08:16:25 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is 40.
Error: (11/08/2018 06:04:40 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (11/08/2018 02:14:46 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is 40.
Error: (11/08/2018 11:10:53 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (11/08/2018 07:59:38 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is 40.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i3-4005U CPU @ 1.70GHz
Percentage of memory in use: 62%
Total physical RAM: 8102.89 MB
Available physical RAM: 3076.74 MB
Total Virtual: 10963.61 MB
Available Virtual: 5445.84 MB
==================== Drives ================================
Drive c: (TI31284600C) (Fixed) (Total:99.66 GB) (Free:1.85 GB) NTFS
Drive d: (a7SSD) (Fixed) (Total:111.66 GB) (Free:2.85 GB) NTFS
Drive h: (a7) (Fixed) (Total:698.51 GB) (Free:398.11 GB) NTFS
\\?\Volume{44817c29-a279-46ba-b34d-40445c5037f7}\ (System) (Fixed) (Total:1 GB) (Free:0.09 GB) NTFS
\\?\Volume{c0e2b534-2a26-4430-bfb3-445047472744}\ (Recovery) (Fixed) (Total:10.9 GB) (Free:1.02 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 111.8 GB) (Disk ID: 999E2AE8)
Partition: GPT.
========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: 0E1E0C3B)
Partition: GPT.
========================================================
Disk: 2 (Protective MBR) (Size: 698.6 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt ============================