Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-06-2020
Ran by TM (18-06-2020 15:18:47)
Running from C:\Users\TM\Desktop
Windows 10 Pro Version 1903 18362.900 (X64) (2019-10-20 07:55:56)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-620132082-3391121035-1361035170-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-620132082-3391121035-1361035170-503 - Limited - Disabled)
Guest (S-1-5-21-620132082-3391121035-1361035170-501 - Limited - Disabled)
TM (S-1-5-21-620132082-3391121035-1361035170-1001 - Administrator - Enabled) => C:\Users\TM
WDAGUtilityAccount (S-1-5-21-620132082-3391121035-1361035170-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

3DMark06 (HKLM-x32\...\{7F3AD00A-1819-4B15-BB7D-08B3586336D7}) (Version: 1.2.1 - Futuremark Corporation)
7-Zip 18.05 (HKLM-x32\...\7-Zip) (Version: 18.05 - Igor Pavlov)
Adobe Bridge CC 2017 (HKLM-x32\...\KBRG_7_0) (Version: 7.0 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.9.1.335 - Adobe Systems Incorporated)
Adobe Lightroom (HKLM-x32\...\{8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D}) (Version: 6.0 - Adobe Systems Incorporated)
Adobe Photoshop CC 2017 (HKLM-x32\...\PHSP_18_0) (Version: 18.0.0 - Adobe Systems Incorporated)
Adobe Premiere (HKLM\...\{C1CB876C-A08E-4692-B525-42848BD154D7}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden
Adobe Premiere Pro CC 2017 (HKLM-x32\...\PPRO_11_0_1) (Version: 11.0.1 - Adobe Systems Incorporated)
Age.of.Empires.Definitive.Edition.Build.35199.REPACK-KaOs Uninstaller v3.0 (HKLM-x32\...\Age.of.Empires.Definitive.Edition.Build.35199.REPACK-KaOs_is1) (Version: 3.0 - KaOsKrew)
AirDroid 3.6.6.2 (HKLM-x32\...\AirDroid) (Version: 3.6.6.2 - Sand Studio)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 20.2.1 - Advanced Micro Devices, Inc.)
Badboy (HKLM-x32\...\Badboy) (Version: "2.2.5" - )
Baldur's Gate - Enhanced Edition (HKLM-x32\...\Baldur's Gate - Enhanced Edition_is1) (Version:  - )
Batman: Arkham Asylum (HKLM-x32\...\{4E79A60F-15D2-4BEC-91AD-E41EC42E61B0}) (Version: 1.0.0.0 - Eidos Interactive Limited)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.0.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
Besiege (HKLM-x32\...\Besiege_is1) (Version:  - )
Blizzard App (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Branding64 (HKLM\...\{133E6274-9FD4-4ABD-80A8-2A954E89EAD6}) (Version: 1.00.0002 - Advanced Micro Devices, Inc.) Hidden
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.69.1079 - AB Team, d.o.o.)
Capture One 10 (HKLM\...\Capture One 10 10.2.0.74) (Version: 10.2.0.74 - Phase One)
Capture One 11 (HKLM\...\Capture One 11 11.0.0.266) (Version: 11.0.0.266 - Phase One)
Capture One 11 (HKLM-x32\...\Capture One 11 11.0.1.30) (Version: 11.0.1.30 - Phase One)
Capture One 11.0 (HKLM\...\CaptureOne11_is1) (Version: 11.0.1.30 - Phase One A/S)
Capture One 20 (HKLM\...\CaptureOne13_is1) (Version: 13.0.0.155 - Phase One A/S)
CDisplayEx 1.10.33 (HKLM\...\CDisplayEx_is1) (Version:  - Progdigy Software S.A.R.L.)
CPUID CPU-Z 1.92 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.92 - CPUID, Inc.)
CPUID HWMonitor 1.41 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.41 - CPUID, Inc.)
DeepSkyStacker 4.1.0  (64 bit - remove only) (HKLM-x32\...\DeepSkyStacker64) (Version: 4.1.0 - Luc Coiffier)
Disco Elysium (HKLM-x32\...\1771589310_is1) (Version: 59c2fcb3 - GOG.com)
Discord (HKU\S-1-5-21-620132082-3391121035-1361035170-1001\...\Discord) (Version: 0.0.305 - Discord Inc.)
Display Pilot (HKLM-x32\...\{6DD25D67-4339-47A1-950E-EEFC321CBB24}) (Version: 2.52.005 - Portrait Displays, Inc.)
EDEngineer (HKU\S-1-5-21-620132082-3391121035-1361035170-1001\...\ced7325f031a438b) (Version: 1.1.4.9 - Max)
EDPathFinder 1.7.1 (HKLM-x32\...\EDPathFinder) (Version: 1.7.1 - David Hedbor)
Epic Games Launcher (HKLM-x32\...\{0E63B233-DC24-442C-BD38-0B91D90FEC5B}) (Version: 1.1.167.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
FOTOLAB CEWE fotosvet (HKLM-x32\...\FOTOLAB CEWE fotosvet) (Version: 6.4.7 - CEWE Stiftung u Co. KGaA)
Foxit Reader (HKLM-x32\...\Foxit Reader) (Version:  - )
Fraps (HKLM-x32\...\Fraps) (Version:  - )
GameInput Redistributable (HKLM-x32\...\{93B91052-9882-92F9-45E4-2EA38BC07D9E}) (Version: 10.1.19041.3357 - Microsoft Corporation)
GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version:  - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 83.0.4103.106 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Heavy Metal - FAKK2 (HKLM-x32\...\Heavy Metal - FAKK2_is1) (Version:  - )
Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Hugin (HKLM\...\{C64F9956-580A-4D11-AFA0-C567B2A17B7B}) (Version: 16.2.0.0 - Hugin developer team)
Chrome Remote Desktop Host (HKLM-x32\...\{654C49EB-D47E-4319-B719-DEEC73787B51}) (Version: 83.0.4103.2 - Google Inc.)
Intel(R) IPP Run-Time Installer 5.3 Update 4 for Windows* on IA-32 (HKLM-x32\...\{754854DC-2E0A-49D8-A1A1-426C1F9B1459}) (Version: 5.3.4.087 - Intel Corporation)
IrfanView 64 (remove only) (HKLM\...\IrfanView64) (Version: 4.41 - Irfan Skiljan)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logitech Gaming Software 9.02 (HKLM\...\Logitech Gaming Software) (Version: 9.02.65 - Logitech Inc.)
LOOT version 0.13.4 (HKLM-x32\...\{BF634210-A0D4-443F-A657-0DCE38040374}_is1) (Version: 0.13.4 - LOOT Team)
Microsoft Flight Simulator SimConnect Client v10.0.61259.0 (HKLM-x32\...\{D61CA184-3F6D-4A50-B2CC-7A18447D6A8D}) (Version: 10.0.61259.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE (HKLM-x32\...\{F112F66E-25CA-42DD-983C-6118EB38F606}) (Version: 3.0.89.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{2E660A2A-A55F-43CD-9F73-CAD7382EEB78}) (Version: 3.0.19.0 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.8.106.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-620132082-3391121035-1361035170-1001\...\OneDriveSetup.exe) (Version: 20.064.0329.0008 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Mozilla Firefox 51.0.1 (x86 cs) (HKLM-x32\...\Mozilla Firefox 51.0.1 (x86 cs)) (Version: 51.0.1 - Mozilla)
Mozilla Firefox 77.0.1 (x64 cs) (HKLM\...\Mozilla Firefox 77.0.1 (x64 cs)) (Version: 77.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 57.0.3 - Mozilla)
MPC-HC 1.7.11 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.11 - MPC-HC Team)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.70.8 - Black Tree Gaming)
Nik Collection (HKLM-x32\...\Nik Collection) (Version: 1.2.11 - Google)
NVIDIA PhysX (HKLM-x32\...\{80407BA7-7763-4395-AB98-5233F1B34E65}) (Version: 9.13.1220 - NVIDIA Corporation)
One Unit Whole Blood (HKLM-x32\...\GOGPACKONEUNITWHOLEBLOOD_is1) (Version: 2.0.0.21 - GOG.com)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
opentrack version opentrack-2.3.10 (HKLM-x32\...\{63F53541-A29E-4B53-825A-9B6F876A2BD6}_is1) (Version: opentrack-2.3.10 - opentrack)
Opera Stable 68.0.3618.165 (HKU\S-1-5-21-620132082-3391121035-1361035170-1001\...\Opera 68.0.3618.165) (Version: 68.0.3618.165 - Opera Software)
Oracle VM VirtualBox 5.1.26 (HKLM\...\{11A88BD5-F059-4743-81D9-1432AC9C3D4E}) (Version: 5.1.26 - Oracle Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.47.29954 - Electronic Arts, Inc.)
Outils de vérification linguistique 2016 de Microsoft Office - Français (HKLM\...\{90160000-001F-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
PCMark 10 (HKLM\...\{DDB8CE71-6871-476C-87A7-9FEF0E67D13F}) (Version: 2.1.2177.0 - UL) Hidden
PCMark 10 (HKLM-x32\...\{b64a0ce3-78d7-43ee-a398-54957e317fb4}) (Version: 2.1.2177.0 - UL)
Pivot Pro Plugin (HKLM-x32\...\{0217E1D1-BCEF-4A61-AF6D-F7740F65A066}) (Version: 9.61.004 - Portrait Displays, Inc.) Hidden
PTGui Pro Trial 11.8 (HKLM-x32\...\PTGui) (Version:  - New House Internet Services B.V.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.370.102 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7811 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Remote Desktop assistant (HKU\S-1-5-21-620132082-3391121035-1361035170-1001\...\b948d155e8353e01) (Version: 1.0.0.102 - Remote Desktop assistant)
RescueTime 2.14.5.3 (HKLM-x32\...\{2505571C-03B3-4F9F-AC35-33F1CB4B5E9E}_is1) (Version:  - RescueTime.com)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.24.258 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\{08B3869E-D282-424C-9AFC-870E04A4BA14}) (Version: 1.00.0000 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.5.6 - Rockstar Games)
SDK (HKLM-x32\...\{0DEA342C-15CB-4F52-97B6-06A9C4B9C06F}) (Version: 3.02.002 - Portrait Displays, Inc.) Hidden
Star Wars Galactic Battlegrounds: Expanding Fronts (HKLM-x32\...\Expanding Fronts) (Version: 1.2 - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TP-LINK TL-WN721N_TL-WN722N Driver (HKLM-x32\...\{86A7EED0-02D0-4D91-8183-8D2F23F5E6AE}) (Version: 1.3.1 - TP-LINK)
TriDef 3D 7.4 (HKLM-x32\...\essentials-bundle) (Version: 7.4 - Dynamic Digital Depth Australia Pty Ltd)
TrinusVR version 2.1.3 (HKLM-x32\...\{A66AD08F-FC5B-4583-9A7D-4636F5637B2C}_is1) (Version: 2.1.3 - Odd Sheep SL)
UiPath Studio (HKU\S-1-5-21-620132082-3391121035-1361035170-1001\...\UiPath) (Version: 19.12.0-beta0061 - UiPath)
Universal Adb Driver (HKLM-x32\...\{C0E08D8D-6076-4117-B644-2AF34F35B757}) (Version: 1.0.4 - ClockworkMod)
Update for Skype for Business 2016 (KB3115268) 64-Bit Edition (HKLM\...\{90160000-0011-0000-1000-0000000FF1CE}_Office16.PROPLUS_{5D633E34-0FA8-4C3F-8A16-D1A6C33C7015}) (Version:  - Microsoft)
Update for Skype for Business 2016 (KB3115268) 64-Bit Edition (HKLM\...\{90160000-00C1-0000-1000-0000000FF1CE}_Office16.PROPLUS_{5D633E34-0FA8-4C3F-8A16-D1A6C33C7015}) (Version:  - Microsoft)
Update for Skype for Business 2016 (KB3115268) 64-Bit Edition (HKLM\...\{90160000-012B-0409-1000-0000000FF1CE}_Office16.PROPLUS_{5D633E34-0FA8-4C3F-8A16-D1A6C33C7015}) (Version:  - Microsoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 97.0 - Ubisoft)
VJoy Virtual Joystick Driver 1.2 (HKLM-x32\...\VJoy Virtual Joystick Driver_is1) (Version:  - Headsoft)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.5 - VideoLAN)
Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.3.19-3 - Wacom Technology Corp.)
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666  - Nullsoft, Inc)
Windows 10 Update Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22899 - Microsoft Corporation)
Windows Driver Package - Google, Inc. (WinUSB) AndroidUsbDeviceClass  (08/28/2014 11.0.0000.00000) (HKLM\...\092555911492C6959D2596D612F52DCA71881CA2) (Version: 08/28/2014 11.0.0000.00000 - Google, Inc.)
Windows Driver Package - Leaf Imaging Ltd. Image  (12/03/2014 1.2.0.0) (HKLM\...\B758007C752D28F7C3542875CEEBDADCAE5941AE) (Version: 12/03/2014 1.2.0.0 - Leaf Imaging Ltd.)
Windows Driver Package - Phase One / Mamiya V-Grip USB Driver (12/03/2014 1.2.0.0) (HKLM\...\3F504CC0B024052107934E093CC26DA720256A7A) (Version: 12/03/2014 1.2.0.0 - Phase One / Mamiya)
Windows Driver Package - Phase One A/S (WinUSB) USBDevice  (09/18/2017 1.14.0.0) (HKLM\...\5D536C8BAC29754ACD7E2AFB52D1C2B1EA169BE6) (Version: 09/18/2017 1.14.0.0 - Phase One A/S)
Windows Driver Package - Phase One A/S (WinUSB) USBDevice  (12/03/2014 1.13.0.0) (HKLM\...\7C6570ABBEB2F08EFBC23ED7925AE72DA6167BD8) (Version: 12/03/2014 1.13.0.0 - Phase One A/S)
WinHTTrack Website Copier 3.49-2 (HKLM-x32\...\WinHTTrack Website Copier_is1) (Version: 3.49.2 - HTTrack)
WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
Witcher 3 Mod Tools version 1.1 (HKLM-x32\...\{668E890B-660E-475F-BCE6-4730E88BEE00}_is1) (Version: 1.1 - CD Projekt RED)
Zoner Photo Studio X (HKLM\...\ZonerPhotoStudioX_EN_is1) (Version: 19.1610.2.5 - ZONER software)

Packages:
=========
AdBlock -> C:\Program Files\WindowsApps\BetaFish.AdBlock_2.13.0.0_neutral__c1wakc4j0nefm [2020-01-11] (BetaFish)
Age of Empires II: Definitive Edition -> C:\Program Files\WindowsApps\Microsoft.MSPhoenix_101.101.37906.0_x64__8wekyb3d8bbwe [2020-06-03] (Microsoft Studios)
DirectX -> C:\Program Files\WindowsApps\Microsoft.DirectXRuntime_9.29.952.0_x64__8wekyb3d8bbwe [2019-10-26] (Microsoft Corporation)
DirectX -> C:\Program Files\WindowsApps\Microsoft.DirectXRuntime_9.29.952.0_x86__8wekyb3d8bbwe [2019-10-26] (Microsoft Corporation)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-01-21] (Microsoft Corporation)
Halo: The Master Chief Collection -> C:\Program Files\WindowsApps\Mutable\Microsoft.Chelan_1.1570.0.0_x64__8wekyb3d8bbwe [2020-05-22] (Microsoft Studios)
Herní služby -> C:\Program Files\WindowsApps\Microsoft.GamingServices_2.42.5001.0_x64__8wekyb3d8bbwe [2020-06-11] (Microsoft Corporation)
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.2.0_neutral__8xx8rvfyw5nnt [2020-03-04] (Instagram)
Metro: Last Light Redux -> C:\Program Files\WindowsApps\DeepSilver.MetroLastLightRedux_1.0.8.0_x64__hmv7qcest37me [2020-06-15] (Koch Media GmbH)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Remote Desktop Preview -> C:\Program Files\WindowsApps\Microsoft.MicrosoftRemoteDesktopPreview_10.1.1215.0_x86__8wekyb3d8bbwe [2020-04-21] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-04] (Microsoft Studios) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
Ovládací centrum grafiky Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.2731.0_x64__8j3eq9eme6ctt [2020-06-11] (INTEL CORP) [Startup Task]
Pathologic 2 -> C:\Program Files\WindowsApps\tinyBuildGames.1058222EB8C68_1.0.2.0_x64__3sz1pp2ynv2xe [2020-05-19] (tinyBuild Games)
The Master Chief Collection: Halo 2 -> C:\Program Files\WindowsApps\Microsoft.MCCHalo2_1.1448.0.0_x64__8wekyb3d8bbwe [2020-05-15] (Microsoft Studios)
The Master Chief Collection: Halo CE -> C:\Program Files\WindowsApps\Microsoft.HaloCombatEvolved_1.1367.0.0_x64__8wekyb3d8bbwe [2020-05-16] (Microsoft Studios)
The Master Chief Collection: REACH -> C:\Program Files\WindowsApps\Microsoft.TheMasterChiefCollectionREACH_1.1.0.0_x64__8wekyb3d8bbwe [2020-05-16] (Microsoft Studios)
Xbox -> C:\Program Files\WindowsApps\Microsoft.GamingApp_2006.2001.18.0_x64__8wekyb3d8bbwe [2020-06-17] (Microsoft Corporation) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-620132082-3391121035-1361035170-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-A3AD8789AEEA} -> [Creative Cloud Files] => C:\Users\TM\Creative Cloud Files [2016-12-07 21:56]
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] (Adobe Systems Incorporated -> )
ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\_utility\WinRAR\rarext.dll [2016-02-04] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\_utility\WinRAR\rarext32.dll [2016-02-04] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2020-01-30] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [PortraitDisplaysContextMenu] -> {8602BDD8-9780-4717-B89A-7F89AF75B2AB} => C:\Program Files (x86)\Common Files\Portrait Displays\Shared\shellmenu64.dll [2013-06-18] (Portrait Displays, Inc. -> Portrait Displays, Inc.)
ContextMenuHandlers6-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\_utility\WinRAR\rarext.dll [2016-02-04] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\_utility\WinRAR\rarext32.dll [2016-02-04] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.FPS1] => C:\WINDOWS\system32\frapsv64.dll [105984 2015-09-05] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [94208 2015-09-05] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [vidc.iv50] => C:\Windows\SysWOW64\ir50_32.dll [9216 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32-x32: [vidc.XVID] => xvidvfw.dll
HKLM\...\Drivers32-x32: [VIDC.VP80] => vp8vfw.dll

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\TM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Google Keep – poznámky a seznamy.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=hmjkmjkepdijhoojdojkdfohbdgmmhki

==================== Loaded Modules (Whitelisted) =============

2016-10-12 02:08 - 2016-10-12 02:08 - 000124928 _____ () [File not signed] \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
2016-10-12 02:08 - 2016-10-12 02:08 - 000118272 _____ () [File not signed] \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
2016-10-12 02:08 - 2016-10-12 02:08 - 000166400 _____ () [File not signed] \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
2016-10-12 02:08 - 2016-10-12 02:08 - 000223232 _____ () [File not signed] \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2016-10-12 02:08 - 2016-10-12 02:08 - 000117248 _____ () [File not signed] \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
2019-07-18 11:51 - 2019-07-18 11:51 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 003567616 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2018-10-05 10:13 - 2018-10-05 10:13 - 000144896 _____ () [File not signed] C:\Program Files\Logitech Gaming Software\LAClient\libssh2.dll
2018-10-05 10:13 - 2018-10-05 10:13 - 000077824 _____ () [File not signed] C:\Program Files\Logitech Gaming Software\LAClient\zlib.dll
2018-03-12 05:59 - 2013-06-18 13:24 - 000372736 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\ijl15.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000251392 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\System32\IPPMon.dll
2019-10-20 19:12 - 2019-10-20 19:12 - 001101824 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80.DLL
2019-10-20 19:11 - 2019-10-20 19:11 - 000057344 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\MFC80ENU.DLL
2018-10-05 10:13 - 2018-10-05 10:13 - 000355840 _____ (The cURL library, hxxp://curl.haxx.se/) [File not signed] C:\Program Files\Logitech Gaming Software\LAClient\LIBCURL.dll
2018-10-05 10:13 - 2018-10-05 10:13 - 002286747 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\LAClient\LIBEAY32.dll
2018-10-05 10:13 - 2018-10-05 10:13 - 000416627 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\LAClient\SSLEAY32.dll
2018-04-06 20:29 - 2018-04-06 20:29 - 002286747 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\LIBEAY32.dll
2018-04-06 20:29 - 2018-04-06 20:29 - 000416627 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\ssleay32.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 000039424 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 000413696 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 000519168 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 001431040 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 001180672 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 000135680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll
2020-01-30 12:28 - 2020-01-30 12:28 - 006010880 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 006345216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 001078272 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 000313856 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 004000256 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 003802624 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 000171008 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 001083904 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 000205312 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 000329728 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 000376320 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 092323328 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 000113152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 005560832 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 000463360 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 000188416 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 002888704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 000053760 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 000017408 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 000287232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 000329216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 000136192 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 000089088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 000312320 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2019-07-18 11:51 - 2019-07-18 11:51 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2020-01-30 12:28 - 2020-01-30 12:28 - 000085504 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-07-10 13:04 - 2020-01-16 05:40 - 000000855 _____ C:\WINDOWS\system32\drivers\etc\hosts
0.0.0.0 activation.phaseone.com

2017-12-30 04:00 - 2020-06-18 15:10 - 000000448 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
192.168.6.241 DESKTOP-Q3V9AV9.mshome.net # 2025 6 2 17 13 10 17 429

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Users\TM\AppData\Local\Microsoft\WindowsApps;C:\adb;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-620132082-3391121035-1361035170-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\TM\Desktop\wallpaper d1aehdnbq0h21.jpg
DNS Servers: 213.46.172.36 - 213.46.172.37
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.

Network Binding:
=============
Ethernet: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) 
vEthernet (Default Switch): VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) 

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "DT BEN"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKU\S-1-5-21-620132082-3391121035-1361035170-1001\...\StartupApproved\Run: => "Opera Browser Assistant"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{272E3BE9-FC06-4DD9-A1F6-4FCFDFCABC27}E:\_hry\dead space 2\deadspace2.exe] => (Block) E:\_hry\dead space 2\deadspace2.exe => No File
FirewallRules: [TCP Query User{C0C1DC84-DBD6-4B14-93BE-DD3386459ACB}E:\_hry\dead space 2\deadspace2.exe] => (Block) E:\_hry\dead space 2\deadspace2.exe => No File
FirewallRules: [UDP Query User{89F2AB32-7D01-4584-A793-3642F042148F}E:\_hry\call of duty modern warfare remastered\h1_sp64_ship.exe] => (Block) E:\_hry\call of duty modern warfare remastered\h1_sp64_ship.exe => No File
FirewallRules: [TCP Query User{19159A0A-5AE7-4D0E-A2F7-E91C16D340BB}E:\_hry\call of duty modern warfare remastered\h1_sp64_ship.exe] => (Block) E:\_hry\call of duty modern warfare remastered\h1_sp64_ship.exe => No File
FirewallRules: [UDP Query User{FD815C0A-1063-434D-8267-A0FAD6D3F366}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [TCP Query User{75A15E06-EEAE-496A-8369-6303E56C595E}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [UDP Query User{7DB81D38-9902-4183-B4DD-57B9C0893CCB}C:\_hry\minecraft\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\_hry\minecraft\runtime\jre-x64\bin\javaw.exe
FirewallRules: [TCP Query User{3C2712AE-5E08-46FB-8AD5-32DB9764AD1B}C:\_hry\minecraft\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\_hry\minecraft\runtime\jre-x64\bin\javaw.exe
FirewallRules: [UDP Query User{1C0666D4-24A3-434B-AE86-FBAC42F504F6}E:\_hry\assassins creed iii remastered\aciii.exe] => (Allow) E:\_hry\assassins creed iii remastered\aciii.exe => No File
FirewallRules: [TCP Query User{17FA3B4D-E117-4FA6-B22F-048B8684B1AE}E:\_hry\assassins creed iii remastered\aciii.exe] => (Allow) E:\_hry\assassins creed iii remastered\aciii.exe => No File
FirewallRules: [UDP Query User{339E9B20-3163-4B13-8EA0-312338B0FFF8}E:\_hry\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe] => (Allow) E:\_hry\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe => No File
FirewallRules: [TCP Query User{4D584A87-95D6-4997-8FF8-1BA046DB4FDA}E:\_hry\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe] => (Allow) E:\_hry\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe => No File
FirewallRules: [{C52AC0B8-8328-46F5-A25C-45248A596ACD}] => (Allow) E:\_hry\Steam\steamapps\common\STAR WARS - Galactic Battlegrounds Saga\Game\player.exe => No File
FirewallRules: [{F6D35473-2F81-4F11-911E-669016595970}] => (Allow) E:\_hry\Steam\steamapps\common\STAR WARS - Galactic Battlegrounds Saga\Game\player.exe => No File
FirewallRules: [UDP Query User{99E8BD5E-C435-4CF0-BD28-E6EC3AE00243}E:\_hry\steam\steamapps\common\crysis 2 game of the year\bin32\crysis2.exe] => (Allow) E:\_hry\steam\steamapps\common\crysis 2 game of the year\bin32\crysis2.exe => No File
FirewallRules: [TCP Query User{6D006123-2D67-4A9E-8135-9053BF5148C6}E:\_hry\steam\steamapps\common\crysis 2 game of the year\bin32\crysis2.exe] => (Allow) E:\_hry\steam\steamapps\common\crysis 2 game of the year\bin32\crysis2.exe => No File
FirewallRules: [UDP Query User{B10367A7-059A-43E9-A9D6-2C535926AA0F}E:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) E:\program files (x86)\origin games\apex\r5apex.exe => No File
FirewallRules: [TCP Query User{7799AFE3-0C95-4519-BF5F-F9AAFED51068}E:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) E:\program files (x86)\origin games\apex\r5apex.exe => No File
FirewallRules: [UDP Query User{98F2EEC7-EDA5-4BF7-BC00-EFC2BF951ACF}E:\_hry\steam\steamapps\common\star wars - galactic battlegrounds saga\game\battlegrounds_x2.exe] => (Allow) E:\_hry\steam\steamapps\common\star wars - galactic battlegrounds saga\game\battlegrounds_x2.exe (LucasArts Entertainment Company LLC) [File not signed]
FirewallRules: [TCP Query User{01DA56A9-10E5-44BC-B46A-9ED7D71DBA95}E:\_hry\steam\steamapps\common\star wars - galactic battlegrounds saga\game\battlegrounds_x2.exe] => (Allow) E:\_hry\steam\steamapps\common\star wars - galactic battlegrounds saga\game\battlegrounds_x2.exe (LucasArts Entertainment Company LLC) [File not signed]
FirewallRules: [UDP Query User{B4CD6B46-A61B-4DF6-9F20-C862F37A1CE5}E:\_hry\star wars - galactic battlegrounds\game\battlegrounds.exe] => (Block) E:\_hry\star wars - galactic battlegrounds\game\battlegrounds.exe => No File
FirewallRules: [TCP Query User{0003C530-BD4E-4E38-B2D2-9FAC97539788}E:\_hry\star wars - galactic battlegrounds\game\battlegrounds.exe] => (Block) E:\_hry\star wars - galactic battlegrounds\game\battlegrounds.exe => No File
FirewallRules: [UDP Query User{3753E00C-034A-49FD-A772-F7BF67518140}E:\_hry\star wars - galactic battlegrounds\game\battlegrounds_x2.exe] => (Allow) E:\_hry\star wars - galactic battlegrounds\game\battlegrounds_x2.exe => No File
FirewallRules: [TCP Query User{EA60D402-4752-4244-B34F-AE5494F2094D}E:\_hry\star wars - galactic battlegrounds\game\battlegrounds_x2.exe] => (Allow) E:\_hry\star wars - galactic battlegrounds\game\battlegrounds_x2.exe => No File
FirewallRules: [UDP Query User{B27876C8-9D94-40F5-8406-288A8258BA6C}E:\_hry\star wars - galactic battlegrounds\game\battlegrounds_x1.exe] => (Allow) E:\_hry\star wars - galactic battlegrounds\game\battlegrounds_x1.exe => No File
FirewallRules: [TCP Query User{B1D2F34F-5A41-47F9-AE01-8A6463B0A20C}E:\_hry\star wars - galactic battlegrounds\game\battlegrounds_x1.exe] => (Allow) E:\_hry\star wars - galactic battlegrounds\game\battlegrounds_x1.exe => No File
FirewallRules: [UDP Query User{A735AD68-CA5C-4E40-B28A-F72BA23F2B3F}E:\_hry\subnautica2\subnautica.exe] => (Block) E:\_hry\subnautica2\subnautica.exe => No File
FirewallRules: [TCP Query User{617A4091-0248-4063-A7C7-BDD14D53F514}E:\_hry\subnautica2\subnautica.exe] => (Block) E:\_hry\subnautica2\subnautica.exe => No File
FirewallRules: [UDP Query User{D09DB2BB-912E-4F0A-BFB4-1BACB3E24512}E:\_hry\titanfall 2\titanfall2.exe] => (Block) E:\_hry\titanfall 2\titanfall2.exe => No File
FirewallRules: [TCP Query User{A62E7877-4A41-4DDD-B8D9-EEF573E93939}E:\_hry\titanfall 2\titanfall2.exe] => (Block) E:\_hry\titanfall 2\titanfall2.exe => No File
FirewallRules: [UDP Query User{3A04B4A1-2A19-4FDA-8A51-1CAAC7D39100}C:\_hry\subnautica\subnautica.exe] => (Allow) C:\_hry\subnautica\subnautica.exe => No File
FirewallRules: [TCP Query User{41589F00-CB17-4B3A-AE02-BE972D5EA0E4}C:\_hry\subnautica\subnautica.exe] => (Allow) C:\_hry\subnautica\subnautica.exe => No File
FirewallRules: [UDP Query User{E5A4DE53-56D1-4DA4-8C03-AB771AEEB250}E:\_hry\subnautica\subnautica.exe] => (Allow) E:\_hry\subnautica\subnautica.exe => No File
FirewallRules: [TCP Query User{9E12169A-B00B-4BDC-A4FA-1D3BA3D404F6}E:\_hry\subnautica\subnautica.exe] => (Allow) E:\_hry\subnautica\subnautica.exe => No File
FirewallRules: [UDP Query User{1103C0D6-1AB3-46E0-A72C-8C16D7A4DE99}E:\_hry\epic games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) E:\_hry\epic games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{A16F7147-CED6-4ED2-B89F-AC7965F14514}E:\_hry\epic games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) E:\_hry\epic games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{3F541C10-EC41-46C6-A598-42E0FE03CBDB}] => (Allow) E:\_hry\Steam\steamapps\common\Crysis 2 Game of the Year\bin32\Crysis2Launcher.exe => No File
FirewallRules: [{60411046-F29C-4AEE-8172-12D45B64EDF1}] => (Allow) E:\_hry\Steam\steamapps\common\Crysis 2 Game of the Year\bin32\Crysis2Launcher.exe => No File
FirewallRules: [{664B415B-3EB8-42A7-A1C4-01C5275B3E52}] => (Allow) E:\_hry\BFBC2\BFBC2Updater.exe => No File
FirewallRules: [{F7C380ED-F9A4-409F-805F-BB79BF32B26C}] => (Allow) E:\_hry\BFBC2\BFBC2Updater.exe => No File
FirewallRules: [UDP Query User{9277DB47-6A58-4EB7-BB64-A8ED50705CD3}C:\program files (x86)\abbequerque inc\facetracknoir\facetracknoir.exe] => (Allow) C:\program files (x86)\abbequerque inc\facetracknoir\facetracknoir.exe => No File
FirewallRules: [TCP Query User{4F9C8153-B11A-4D1A-BDBB-ECADC2B35B74}C:\program files (x86)\abbequerque inc\facetracknoir\facetracknoir.exe] => (Allow) C:\program files (x86)\abbequerque inc\facetracknoir\facetracknoir.exe => No File
FirewallRules: [{4A4E4299-2F82-4614-839D-6D8DD2D3E141}] => (Allow) C:\Program Files (x86)\DroidCam\DroidCamApp.exe (DEV47 APPS -> )
FirewallRules: [{DA305825-5E9F-4FA0-8559-DA08240CBCA1}] => (Allow) C:\Program Files (x86)\DroidCam\DroidCamApp.exe (DEV47 APPS -> )
FirewallRules: [{4D9DB2B7-742D-4146-8E33-7EA628E70D56}] => (Allow) E:\_hry\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{A786F159-4835-4D89-8F2E-C46E51F8C86E}] => (Allow) E:\_hry\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{ABD51C11-EB66-45BB-AC19-36AB9D42BE94}E:\_hry\starcitizen\live\bin64\starcitizen.exe] => (Allow) E:\_hry\starcitizen\live\bin64\starcitizen.exe => No File
FirewallRules: [TCP Query User{68F36B16-17BB-4CD6-82B2-9DC4B286CC46}E:\_hry\starcitizen\live\bin64\starcitizen.exe] => (Allow) E:\_hry\starcitizen\live\bin64\starcitizen.exe => No File
FirewallRules: [UDP Query User{CBB266CA-1E06-4D54-91E9-D66CD5BD7E63}E:\_hry\mothergunship\towerofguns2\binaries\win64\towerofguns2-win64-shipping.exe] => (Block) E:\_hry\mothergunship\towerofguns2\binaries\win64\towerofguns2-win64-shipping.exe => No File
FirewallRules: [TCP Query User{D736932F-F5A9-4078-A188-2F1425B67C77}E:\_hry\mothergunship\towerofguns2\binaries\win64\towerofguns2-win64-shipping.exe] => (Block) E:\_hry\mothergunship\towerofguns2\binaries\win64\towerofguns2-win64-shipping.exe => No File
FirewallRules: [DNS Server Forward Rule - UDP - b65ef96f-36ee-4e23-b347-8684f9272b6e - 0] => (Allow) LPort=53
FirewallRules: [DNS Server Forward Rule - TCP - b65ef96f-36ee-4e23-b347-8684f9272b6e - 0] => (Allow) LPort=53
FirewallRules: [{2B31AEC9-7345-48C3-9557-973061FECAF2}] => (Allow) E:\_hry\Steam\steamapps\common\Half-Life\hl.exe (Valve -> Valve)
FirewallRules: [{B9C6F4C7-DE82-40AB-9F70-4DE33EEDE3AE}] => (Allow) E:\_hry\Steam\steamapps\common\Half-Life\hl.exe (Valve -> Valve)
FirewallRules: [UDP Query User{7D548C33-0021-4B5A-A0CD-95EC707CA2CC}E:\_hry\steam\steamapps\common\elite dangerous\products\elite-dangerous-64\elitedangerous64.exe] => (Allow) E:\_hry\steam\steamapps\common\elite dangerous\products\elite-dangerous-64\elitedangerous64.exe (Frontier Developments plc) [File not signed]
FirewallRules: [TCP Query User{C1FDBDD2-8105-446A-9170-5BF802DAF147}E:\_hry\steam\steamapps\common\elite dangerous\products\elite-dangerous-64\elitedangerous64.exe] => (Allow) E:\_hry\steam\steamapps\common\elite dangerous\products\elite-dangerous-64\elitedangerous64.exe (Frontier Developments plc) [File not signed]
FirewallRules: [UDP Query User{8AEC7914-9AC5-4412-A9A1-7665869D003E}E:\_hry\starcraft ii\versions\base59587\sc2_x64.exe] => (Allow) E:\_hry\starcraft ii\versions\base59587\sc2_x64.exe => No File
FirewallRules: [TCP Query User{B8CC583B-074D-4A9B-A563-4CC48B7D1ED6}E:\_hry\starcraft ii\versions\base59587\sc2_x64.exe] => (Allow) E:\_hry\starcraft ii\versions\base59587\sc2_x64.exe => No File
FirewallRules: [{F0E6B8DD-9B63-4174-8A55-38045E2B210A}] => (Allow) C:\Windows\KMS-R@1n.exe => No File
FirewallRules: [{FAEB7F27-21A1-4285-9B48-DC2769372C98}] => (Allow) C:\Windows\KMS-R@1n.exe => No File
FirewallRules: [{A0C8F12A-5818-464A-AFB8-3685624F204F}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6446D925-B07D-468B-87C6-AE9901343217}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{164E3C1F-0B3F-4653-BA18-342A6C9F22F6}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0157CEF4-2AF4-4970-8647-11FAD75B2F5D}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{1049488E-CD70-4F87-8D9F-4D9B1E36ECA2}E:\_hry\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) E:\_hry\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => No File
FirewallRules: [TCP Query User{5FA7D113-2021-4126-B771-55BBC49AB760}E:\_hry\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) E:\_hry\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => No File
FirewallRules: [UDP Query User{8958A02B-1874-42B0-866C-12966A989FDE}E:\_hry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) E:\_hry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe => No File
FirewallRules: [TCP Query User{9DDE7763-939A-4233-83FD-AC5142EC0104}E:\_hry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) E:\_hry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe => No File
FirewallRules: [UDP Query User{8683D25A-E687-4107-AAFC-09FEEF2E80C0}E:\_hry\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) E:\_hry\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe => No File
FirewallRules: [TCP Query User{F6D06263-4F4F-45CB-8CE4-DD8595B32FFB}E:\_hry\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) E:\_hry\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe => No File
FirewallRules: [UDP Query User{8A8FDC20-1EB3-47AD-A6A7-8F29709063A3}E:\_hry\might and magic x legacy\might and magic x legacy.exe] => (Block) E:\_hry\might and magic x legacy\might and magic x legacy.exe => No File
FirewallRules: [TCP Query User{0A78D287-220A-46AC-B75A-263305B47141}E:\_hry\might and magic x legacy\might and magic x legacy.exe] => (Block) E:\_hry\might and magic x legacy\might and magic x legacy.exe => No File
FirewallRules: [UDP Query User{EA540F13-9BBB-4B36-A1FF-98BE49310495}E:\_hry\borderlands(direct play with all 4 dlc's)\borderlands(direct play with all 4 dlc's)\binaries\borderlands.exe] => (Block) E:\_hry\borderlands(direct play with all 4 dlc's)\borderlands(direct play with all 4 dlc's)\binaries\borderlands.exe => No File
FirewallRules: [TCP Query User{5D4C1324-5016-4E8C-92C3-50E7984B00EA}E:\_hry\borderlands(direct play with all 4 dlc's)\borderlands(direct play with all 4 dlc's)\binaries\borderlands.exe] => (Block) E:\_hry\borderlands(direct play with all 4 dlc's)\borderlands(direct play with all 4 dlc's)\binaries\borderlands.exe => No File
FirewallRules: [UDP Query User{258B9789-512A-4675-A5F6-90460D2D2E54}E:\_hry\unreal tournament 3 black edition\binaries\ut3.exe] => (Block) E:\_hry\unreal tournament 3 black edition\binaries\ut3.exe => No File
FirewallRules: [TCP Query User{CEC52F3D-48F8-4ABD-8733-811D21496BC4}E:\_hry\unreal tournament 3 black edition\binaries\ut3.exe] => (Block) E:\_hry\unreal tournament 3 black edition\binaries\ut3.exe => No File
FirewallRules: [UDP Query User{69BCCBA0-569A-4890-900D-027F1ECE832A}C:\_hry\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\_hry\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe => No File
FirewallRules: [TCP Query User{3F0F42F7-6255-4D8C-AB00-F0C1D7240A40}C:\_hry\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\_hry\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe => No File
FirewallRules: [{105568A9-8A3E-4FAC-8ACE-746327FA6E35}] => (Allow) E:\_hry\Steam\steamapps\common\EarthVR\Earth.exe => No File
FirewallRules: [{6317F573-8011-4DC8-AFF8-202FCB030D13}] => (Allow) E:\_hry\Steam\steamapps\common\EarthVR\Earth.exe => No File
FirewallRules: [UDP Query User{FE63350D-D121-4460-B38D-C355EFE4F3F3}C:\_utility\trinusvr\tgserver.exe] => (Allow) C:\_utility\trinusvr\tgserver.exe (Odd Sheep Sociedad Limitada -> Odd Sheep SL)
FirewallRules: [TCP Query User{964675BA-F06E-4863-B439-C97F778ECD78}C:\_utility\trinusvr\tgserver.exe] => (Allow) C:\_utility\trinusvr\tgserver.exe (Odd Sheep Sociedad Limitada -> Odd Sheep SL)
FirewallRules: [{32391304-7803-4E2C-8622-6C9C5085E51F}] => (Allow) E:\_hry\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{1592347D-94B2-4BCB-8D6B-328B56E398A4}] => (Allow) E:\_hry\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{82417509-17FB-4D86-A1EB-ACC7214DEE62}] => (Allow) E:\_hry\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{37954D50-0DF0-4F44-BB7C-3412FA9DA71B}] => (Allow) E:\_hry\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{3EA49173-B6AA-401A-B41E-220F2A5D978B}D:\_hry\starcraft\starcraft.exe] => (Allow) D:\_hry\starcraft\starcraft.exe => No File
FirewallRules: [TCP Query User{334BD315-C83C-46F2-8DE3-D9BE7B388388}D:\_hry\starcraft\starcraft.exe] => (Allow) D:\_hry\starcraft\starcraft.exe => No File
FirewallRules: [UDP Query User{C524DB5C-5D81-4B5A-80DB-68614CE3553D}E:\_hry\prey\prey\binaries\danielle\x64\release\prey.exe] => (Block) E:\_hry\prey\prey\binaries\danielle\x64\release\prey.exe => No File
FirewallRules: [TCP Query User{98895A6B-0940-4C16-A87F-9AEEFD6B652D}E:\_hry\prey\prey\binaries\danielle\x64\release\prey.exe] => (Block) E:\_hry\prey\prey\binaries\danielle\x64\release\prey.exe => No File
FirewallRules: [UDP Query User{CDC7392E-F63F-4220-BB4F-C21326784F58}E:\_hry\the witcher 3 - wild hunt\mods\tools\wcc_lite\bin\x64\wcc_lite.exe] => (Allow) E:\_hry\the witcher 3 - wild hunt\mods\tools\wcc_lite\bin\x64\wcc_lite.exe => No File
FirewallRules: [TCP Query User{54FC640D-024B-411E-8485-AD58DE10B8C2}E:\_hry\the witcher 3 - wild hunt\mods\tools\wcc_lite\bin\x64\wcc_lite.exe] => (Allow) E:\_hry\the witcher 3 - wild hunt\mods\tools\wcc_lite\bin\x64\wcc_lite.exe => No File
FirewallRules: [UDP Query User{2150E66B-73CC-4469-B470-9DEF10198FD6}E:\_hry\the witcher 2 enhanced edition\bin\witcher2.exe] => (Allow) E:\_hry\the witcher 2 enhanced edition\bin\witcher2.exe => No File
FirewallRules: [TCP Query User{BA788728-4BB7-4C2C-932C-89C941055CF8}E:\_hry\the witcher 2 enhanced edition\bin\witcher2.exe] => (Allow) E:\_hry\the witcher 2 enhanced edition\bin\witcher2.exe => No File
FirewallRules: [{A4745F14-ADC0-441F-AA15-6A03C890D199}] => (Allow) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [{54CDCE2D-D1C5-4EC2-9292-F643D6AB9D28}] => (Allow) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [{058AAF9C-8D20-478D-8FD4-78D8A2502C0B}] => (Allow) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [{8D0F98FA-28C2-483B-AB3B-1E1E3A24C89F}] => (Allow) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [{C4517C2A-0DCF-48BB-AE0A-75B8003004AA}] => (Allow) C:\Program Files\Adobe\Adobe Bridge CC 2017\Bridge.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [{DCE684F8-B36C-4A29-BECF-25F358CA05CC}] => (Allow) C:\Program Files\Adobe\Adobe Bridge CC 2017\Bridge.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [{C96B9DA0-837C-4C60-BD60-189A5CDA93FF}] => (Allow) C:\Program Files\Adobe\Adobe Bridge CC 2017\Bridge.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [{8212CE1B-A631-449E-8932-093589D7D120}] => (Allow) C:\Program Files\Adobe\Adobe Bridge CC 2017\Bridge.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [{2D13E693-A34C-424E-BAB4-146F6093EAF8}] => (Allow) C:\Program Files\Adobe\Adobe Lightroom\lightroom.exe (Adobe Systems Incorporated -> Adobe Systems)
FirewallRules: [{772BE3B1-02C8-4F69-8CF2-F8ABDBFB91A8}] => (Allow) C:\Program Files\Adobe\Adobe Lightroom\lightroom.exe (Adobe Systems Incorporated -> Adobe Systems)
FirewallRules: [{791862E5-396E-421D-995F-3F9B6FE41B18}] => (Allow) C:\Program Files\Adobe\Adobe Lightroom\lightroom.exe (Adobe Systems Incorporated -> Adobe Systems)
FirewallRules: [{5704CEBE-F3BF-4EF2-B731-7B7276220CDC}] => (Allow) C:\Program Files\Adobe\Adobe Lightroom\lightroom.exe (Adobe Systems Incorporated -> Adobe Systems)
FirewallRules: [{DC497800-83E9-42D1-B2C4-60A57739B5D9}] => (Allow) C:\_utility\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{0D2F6EEE-47C7-40C5-B707-39CD87C07ED6}] => (Allow) C:\_utility\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{5D2C3088-00A4-4F9B-BB05-7A932672C269}] => (Allow) C:\Program Files\Adobe\Adobe Premiere Pro CC 2017\Adobe Premiere Pro.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [{3D76DC0F-1790-4A1D-BD55-CBABB167FAE2}] => (Allow) C:\Program Files\Adobe\Adobe Premiere Pro CC 2017\Adobe Premiere Pro.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [{D86876EF-5697-4CF6-9746-CE4BE36C5150}] => (Allow) C:\Program Files\Adobe\Adobe Premiere Pro CC 2017\Adobe Premiere Pro.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [{F821E032-2EED-4C12-8686-155CCAF258A4}] => (Allow) C:\Program Files\Adobe\Adobe Premiere Pro CC 2017\Adobe Premiere Pro.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [{8E76CED5-8FB7-4CC7-BD0B-4B915AB98108}] => (Allow) C:\Program Files\Adobe\Adobe Photoshop CC 2017\Photoshop.exe (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
FirewallRules: [{BAA55696-CE26-443C-AA79-174E864AC05A}] => (Allow) C:\Program Files\Adobe\Adobe Photoshop CC 2017\Photoshop.exe (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
FirewallRules: [{15EF0CC7-8E84-4EAB-907E-C0EB37737695}] => (Allow) C:\Program Files\Adobe\Adobe Photoshop CC 2017\Photoshop.exe (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
FirewallRules: [{CA86D26C-82CB-4844-A392-7EFE03971F1E}] => (Allow) C:\Program Files\Adobe\Adobe Photoshop CC 2017\Photoshop.exe (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
FirewallRules: [UDP Query User{AB60AA5F-8F61-456C-9AF9-7BEDCB3A179F}C:\_utility\utorrent\utorrent.exe] => (Allow) C:\_utility\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{31D666A3-9C9C-489C-A908-4A641752A96F}C:\_utility\utorrent\utorrent.exe] => (Allow) C:\_utility\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{85BFA4E3-BB97-4B7F-99EB-E48C89318434}C:\_hry\ef2\ef2.exe] => (Allow) C:\_hry\ef2\ef2.exe => No File
FirewallRules: [UDP Query User{06815BB1-5002-4E20-BBB7-AD1510FD5E7C}C:\_hry\ef2\ef2.exe] => (Allow) C:\_hry\ef2\ef2.exe => No File
FirewallRules: [{30423A96-6211-4AF8-B5E0-86003222FBF0}] => (Allow) C:\_hry\BAA\Binaries\ShippingPC-BmGame.exe => No File
FirewallRules: [{C6A719F5-614C-445C-BFD1-00EBD277D790}] => (Allow) C:\_hry\BAA\Binaries\ShippingPC-BmGame.exe => No File
FirewallRules: [{70B6A626-8BB7-41B4-AC92-6A8ED830D7FA}] => (Allow) C:\_hry\Mr DJ\Batman Arkham Asylum GOTY\Binaries\BmLauncher.exe => No File
FirewallRules: [{8724A24C-F915-4285-87DA-DC70D502F252}] => (Allow) C:\_hry\Mr DJ\Batman Arkham Asylum GOTY\Binaries\BmLauncher.exe => No File
FirewallRules: [TCP Query User{3A4D1463-B0A1-4670-9AC9-ABC68E1AC125}C:\_hry\mr dj\batman arkham asylum goty\binaries\shippingpc-bmgame.exe] => (Block) C:\_hry\mr dj\batman arkham asylum goty\binaries\shippingpc-bmgame.exe => No File
FirewallRules: [UDP Query User{5C9DDE86-A2D0-43C2-A792-472E5D43013E}C:\_hry\mr dj\batman arkham asylum goty\binaries\shippingpc-bmgame.exe] => (Block) C:\_hry\mr dj\batman arkham asylum goty\binaries\shippingpc-bmgame.exe => No File
FirewallRules: [TCP Query User{01608452-DB09-44EC-B40C-24145EAFC8D2}C:\_utility\utorrent\utorrent.exe] => (Allow) C:\_utility\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{4D75EF55-E21F-4B4E-B1BF-403AA0B56B4A}C:\_utility\utorrent\utorrent.exe] => (Allow) C:\_utility\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{6D852ABB-97BE-47BF-915D-043E37CF4355}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{6C5720D7-980A-4317-9925-2741ACC3C751}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{9F30B0F2-243B-41EE-A124-6B0F9235675E}C:\_hry\ef2\ef2.exe] => (Block) C:\_hry\ef2\ef2.exe => No File
FirewallRules: [UDP Query User{315D5785-2496-4177-ADFE-2FA91A953C84}C:\_hry\ef2\ef2.exe] => (Block) C:\_hry\ef2\ef2.exe => No File
FirewallRules: [TCP Query User{D6D06E67-5114-482B-8B33-860C34BA4D68}C:\_hry\mr dj\batman arkham asylum goty\binaries\shippingpc-bmgame.exe] => (Block) C:\_hry\mr dj\batman arkham asylum goty\binaries\shippingpc-bmgame.exe => No File
FirewallRules: [UDP Query User{A6E31230-816D-4668-86F0-1A834C7B4AE5}C:\_hry\mr dj\batman arkham asylum goty\binaries\shippingpc-bmgame.exe] => (Block) C:\_hry\mr dj\batman arkham asylum goty\binaries\shippingpc-bmgame.exe => No File
FirewallRules: [{C3CDF98E-D272-4CA6-BA58-95FF138210C1}] => (Allow) E:\_hry\Grand Theft Auto V\GTA5.exe => No File
FirewallRules: [{27697980-3783-4267-A965-1002A5C3025E}] => (Allow) E:\_hry\Grand Theft Auto V\GTA5.exe => No File
FirewallRules: [TCP Query User{77F3E017-CB3D-4C54-9DC5-BAF5A1D5604D}E:\_hry\alien isolation\ai.exe] => (Block) E:\_hry\alien isolation\ai.exe => No File
FirewallRules: [UDP Query User{DDFA7BA7-6353-42BC-93A2-91B730968872}E:\_hry\alien isolation\ai.exe] => (Block) E:\_hry\alien isolation\ai.exe => No File
FirewallRules: [TCP Query User{D010E912-D177-448A-ACC8-ADE43E5C721E}E:\_hry\doom\doomx64.exe] => (Block) E:\_hry\doom\doomx64.exe => No File
FirewallRules: [UDP Query User{A56513A5-D990-48CA-9FE1-F5F7B40D91E1}E:\_hry\doom\doomx64.exe] => (Block) E:\_hry\doom\doomx64.exe => No File
FirewallRules: [TCP Query User{073A2524-1966-4D8B-AC5F-AFD18361BB9D}D:\_hry\overwatch\overwatch.exe] => (Allow) D:\_hry\overwatch\overwatch.exe => No File
FirewallRules: [UDP Query User{3F29398D-7855-411B-AEF6-6934A514ADEB}D:\_hry\overwatch\overwatch.exe] => (Allow) D:\_hry\overwatch\overwatch.exe => No File
FirewallRules: [TCP Query User{2205F193-E06C-49CC-BE20-958BE3D1ADAC}E:\_hry\battlefield 1\bf1.exe] => (Block) E:\_hry\battlefield 1\bf1.exe => No File
FirewallRules: [UDP Query User{4B8A8403-1ADB-4205-AE6C-9ACEC9CBED74}E:\_hry\battlefield 1\bf1.exe] => (Block) E:\_hry\battlefield 1\bf1.exe => No File
FirewallRules: [TCP Query User{3C572563-A535-4107-8F68-293F252ADC9F}C:\users\tm\desktop\combat_tutorial_demo\elitedangerous32.exe] => (Allow) C:\users\tm\desktop\combat_tutorial_demo\elitedangerous32.exe => No File
FirewallRules: [UDP Query User{981B0ED0-7B2B-4775-985F-03C89FC443CA}C:\users\tm\desktop\combat_tutorial_demo\elitedangerous32.exe] => (Allow) C:\users\tm\desktop\combat_tutorial_demo\elitedangerous32.exe => No File
FirewallRules: [TCP Query User{B2DA660E-6EBC-44BE-B946-48273E2E3F21}E:\_hry\destiny 2\destiny2.exe] => (Allow) E:\_hry\destiny 2\destiny2.exe => No File
FirewallRules: [UDP Query User{5DEABEAB-D71D-4877-B7DC-0A71A9082B75}E:\_hry\destiny 2\destiny2.exe] => (Allow) E:\_hry\destiny 2\destiny2.exe => No File
FirewallRules: [{0690E86C-FF02-4E45-AD88-AA712D598BE6}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{8AE9A577-9367-40AF-8529-14175CE79BBB}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{5656E015-BEC4-4FD8-B2C0-E3BEFCA205B1}] => (Allow) E:\_hry\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe => No File
FirewallRules: [{DB94E0CE-8A18-43AD-A116-BC99CF80688D}] => (Allow) E:\_hry\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe => No File
FirewallRules: [TCP Query User{7A54E65A-C98F-4363-8367-6A4771247480}E:\_hry\shadowrun dragonfall\dragonfall.exe] => (Allow) E:\_hry\shadowrun dragonfall\dragonfall.exe => No File
FirewallRules: [UDP Query User{65466199-696C-4479-90FD-80668649D2F8}E:\_hry\shadowrun dragonfall\dragonfall.exe] => (Allow) E:\_hry\shadowrun dragonfall\dragonfall.exe => No File
FirewallRules: [TCP Query User{261AB0F7-EF1E-4FE5-A707-E954E37769C8}E:\_hry\starcraft ii\versions\base60321\sc2_x64.exe] => (Allow) E:\_hry\starcraft ii\versions\base60321\sc2_x64.exe => No File
FirewallRules: [UDP Query User{8F71A922-8D9A-41EF-8DC0-D4C40C5009E0}E:\_hry\starcraft ii\versions\base60321\sc2_x64.exe] => (Allow) E:\_hry\starcraft ii\versions\base60321\sc2_x64.exe => No File
FirewallRules: [TCP Query User{D50F6561-8D09-4E71-86B6-535A1101A579}E:\_hry\ark survival evolved\shootergame\binaries\win64\shootergame.exe] => (Block) E:\_hry\ark survival evolved\shootergame\binaries\win64\shootergame.exe => No File
FirewallRules: [UDP Query User{04C8A9CA-6C0A-44BE-B0B3-F3665B92AF97}E:\_hry\ark survival evolved\shootergame\binaries\win64\shootergame.exe] => (Block) E:\_hry\ark survival evolved\shootergame\binaries\win64\shootergame.exe => No File
FirewallRules: [{58354279-3F1D-47DC-8BE3-0357352ADD22}] => (Allow) E:\_download\Black.Mesa.v0..4.1.HF\bms.exe => No File
FirewallRules: [{A4FB5007-4A89-4E6A-AFBB-16413F8FCC55}] => (Allow) E:\_download\Black.Mesa.v0..4.1.HF\bms.exe => No File
FirewallRules: [{5E0C1625-74E9-4511-8115-34E2E889932E}] => (Allow) E:\_download\Black.Mesa.v0..4.1.HF\bms.exe => No File
FirewallRules: [{7C91190C-AE5F-44DB-B680-05D419F95380}] => (Allow) E:\_download\Black.Mesa.v0..4.1.HF\bms.exe => No File
FirewallRules: [{E4C288DB-2128-4EFA-B640-7A06C667B17B}] => (Allow) E:\_download\Black.Mesa.v0..4.1.HF\bms.exe => No File
FirewallRules: [{7F94487A-7FDD-4506-B87D-8C96EBB3B71F}] => (Allow) E:\_download\Black.Mesa.v0..4.1.HF\bms.exe => No File
FirewallRules: [{CF67BBFB-C55B-44E5-8362-703BF08AB1B2}] => (Allow) E:\_download\Black.Mesa.v0..4.1.HF\bms.exe => No File
FirewallRules: [{2181327B-5550-4240-87B4-559E1D359DAE}] => (Allow) E:\_download\Black.Mesa.v0..4.1.HF\bms.exe => No File
FirewallRules: [{FBFD2EEE-87A8-48DD-8D8D-9C75718BB6DD}] => (Allow) D:\_hry\SteamLibrary\steamapps\common\Pillars of Eternity II\PillarsOfEternityII.exe (Obsidian Entertainment, Inc. -> )
FirewallRules: [{ADBA0495-971D-42B6-A883-19F349B06023}] => (Allow) D:\_hry\SteamLibrary\steamapps\common\Pillars of Eternity II\PillarsOfEternityII.exe (Obsidian Entertainment, Inc. -> )
FirewallRules: [{A2CD014D-3DD3-4355-8E82-F9B59B7A8339}] => (Allow) E:\_hry\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe () [File not signed]
FirewallRules: [{D463A640-E4F2-4309-A80E-2BFB5C615904}] => (Allow) E:\_hry\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe () [File not signed]
FirewallRules: [TCP Query User{98DE8AD5-4050-4FCB-8990-E3D6DFE239F9}E:\_hry\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe] => (Block) E:\_hry\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe => No File
FirewallRules: [UDP Query User{E619552A-B7A2-42B2-949F-E3225115CFEB}E:\_hry\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe] => (Block) E:\_hry\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe => No File
FirewallRules: [TCP Query User{FA304F58-6E2D-4FC9-BB2F-27230E632B54}E:\_hry\overwatch\_retail_\overwatch.exe] => (Allow) E:\_hry\overwatch\_retail_\overwatch.exe => No File
FirewallRules: [UDP Query User{D04E66FD-ACB4-4B8E-BA4D-0C7254FB2B07}E:\_hry\overwatch\_retail_\overwatch.exe] => (Allow) E:\_hry\overwatch\_retail_\overwatch.exe => No File
FirewallRules: [TCP Query User{EB419C8D-5F40-4066-8527-90C02812423A}E:\_hry\rage 2\rage2.exe] => (Block) E:\_hry\rage 2\rage2.exe => No File
FirewallRules: [UDP Query User{CFBB8F1B-1844-485B-B252-A254F71C4FB4}E:\_hry\rage 2\rage2.exe] => (Block) E:\_hry\rage 2\rage2.exe => No File
FirewallRules: [{66371FAB-1731-456F-8403-8F2B32B08B9A}] => (Allow) C:\_utility\RescueTime\RescueTime.exe (RescueTime, Inc.) [File not signed]
FirewallRules: [{BF56397F-DBD0-482C-82CB-A42A70356F7E}] => (Allow) C:\_utility\RescueTime\RescueTime.exe (RescueTime, Inc.) [File not signed]
FirewallRules: [{2B8F8FA6-194E-46DE-8CF7-03DEA1979F66}] => (Allow) C:\Program Files\Phase One\Capture One 20\CaptureOne.exe (Phase One A/S -> Phase One)
FirewallRules: [{CC585FA1-D7E6-4109-B2AE-115CE8C1B417}] => (Allow) C:\Program Files\Phase One\Capture One 20\CaptureOne.exe (Phase One A/S -> Phase One)
FirewallRules: [{A50889E9-715C-4DAC-972C-24709A63ED01}] => (Allow) C:\Program Files\Phase One\Capture One 20\CaptureOne.exe (Phase One A/S -> Phase One)
FirewallRules: [{CAC75935-A79A-47BF-913B-F483ADC6944F}] => (Allow) C:\Program Files\Phase One\Capture One 20\CaptureOne.exe (Phase One A/S -> Phase One)
FirewallRules: [{8FDC62A3-3A07-45C7-A89C-873C09E45096}] => (Block) C:\Program Files\Phase One\Capture One 20\CaptureOne.exe (Phase One A/S -> Phase One)
FirewallRules: [{A394A4B4-63B5-40D1-AEFB-254DA8B3114B}] => (Block) C:\Program Files\Phase One\Capture One 20\CaptureOne.exe (Phase One A/S -> Phase One)
FirewallRules: [TCP Query User{103183D2-5AB8-4B4A-AB11-6B200E490984}D:\games\besiege\besiege.exe] => (Block) D:\games\besiege\besiege.exe () [File not signed]
FirewallRules: [UDP Query User{CAAA6AD1-EF07-4179-A8B3-F51EC4F2DA69}D:\games\besiege\besiege.exe] => (Block) D:\games\besiege\besiege.exe () [File not signed]
FirewallRules: [TCP Query User{B10AE2CD-7174-48D1-9B4E-CA460FEFD529}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{5EB5E22D-0A91-4F2E-9FAB-48CD64CB7D43}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{F19DC9CF-611A-45FC-9B5B-35793E0408C5}E:\_hry\age.of.empires.definitive.edition.build.35199.repack-kaos\aoede_s.exe] => (Block) E:\_hry\age.of.empires.definitive.edition.build.35199.repack-kaos\aoede_s.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{5091FBF9-B9B1-4E7F-96F0-EB468DCA7645}E:\_hry\age.of.empires.definitive.edition.build.35199.repack-kaos\aoede_s.exe] => (Block) E:\_hry\age.of.empires.definitive.edition.build.35199.repack-kaos\aoede_s.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{DAA52058-9AD1-423F-9C62-7EB7B0957E06}E:\_hry\age.of.empires.definitive.edition.build.35199.repack-kaos\battleserver.exe] => (Block) E:\_hry\age.of.empires.definitive.edition.build.35199.repack-kaos\battleserver.exe () [File not signed]
FirewallRules: [UDP Query User{9B8B0AC7-789A-4224-AFA5-3BDD7FC62019}E:\_hry\age.of.empires.definitive.edition.build.35199.repack-kaos\battleserver.exe] => (Block) E:\_hry\age.of.empires.definitive.edition.build.35199.repack-kaos\battleserver.exe () [File not signed]
FirewallRules: [{E2213F59-3071-4B26-9655-7CB80ACD1777}] => (Allow) E:\_hry\Steam\steamapps\common\3DMark\bin\x86\3DMark.exe => No File
FirewallRules: [{681BCB2D-8E16-438E-9399-748B7CF50481}] => (Allow) E:\_hry\Steam\steamapps\common\3DMark\bin\x86\3DMark.exe => No File
FirewallRules: [{4D0E02F0-CBD4-45AE-907A-5989A8173489}] => (Allow) E:\_hry\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe => No File
FirewallRules: [{82CB3DD1-EC01-4D7C-972A-2C98C130E0A3}] => (Allow) E:\_hry\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe => No File
FirewallRules: [TCP Query User{A56CBA9F-D21A-498A-807A-2B993DEE267A}C:\_utility\airdroid\airdroid.exe] => (Allow) C:\_utility\airdroid\airdroid.exe (SAND STUDIO CORPORATION LIMITED -> Sand Studio)
FirewallRules: [UDP Query User{D4910E03-C4B3-4708-80EB-4301E4C57BB1}C:\_utility\airdroid\airdroid.exe] => (Allow) C:\_utility\airdroid\airdroid.exe (SAND STUDIO CORPORATION LIMITED -> Sand Studio)
FirewallRules: [TCP Query User{901A1812-744A-4334-B041-FA9ADA0B2FC2}E:0\game\aoe2de.exe] => (Allow) E:0\game\aoe2de.exe => No File
FirewallRules: [UDP Query User{0A366310-750A-4F8D-B25F-8D0A6FD57601}E:0\game\aoe2de.exe] => (Allow) E:0\game\aoe2de.exe => No File
FirewallRules: [TCP Query User{9B9A169B-6BC3-45F8-931E-2F4D7BDE7923}E:0\game\battleserver\battleserver.exe] => (Allow) E:0\game\battleserver\battleserver.exe => No File
FirewallRules: [UDP Query User{1876C4DC-43CF-49EB-AB62-1EA32B23B2AB}E:0\game\battleserver\battleserver.exe] => (Allow) E:0\game\battleserver\battleserver.exe => No File
FirewallRules: [TCP Query User{6EAEE5B4-1899-4C46-B80F-D68F7F4B1490}E:\_hry\heavy metal - fakk2\fakk2.exe] => (Allow) E:\_hry\heavy metal - fakk2\fakk2.exe (Ritual Entertainment) [File not signed]
FirewallRules: [UDP Query User{E63D94B1-3FA7-4047-AB31-A78BA35E8EE9}E:\_hry\heavy metal - fakk2\fakk2.exe] => (Allow) E:\_hry\heavy metal - fakk2\fakk2.exe (Ritual Entertainment) [File not signed]
FirewallRules: [{890E4E9D-92F1-479A-80E7-84D9CDC25433}] => (Allow) E:\_hry\GTAIV\Rockstar Games Social Club\RGSCLauncher.exe => No File
FirewallRules: [{D6A036C8-052F-49B5-9A57-182F06319A61}] => (Allow) E:\_hry\GTAIV\Rockstar Games Social Club\RGSCLauncher.exe => No File
FirewallRules: [TCP Query User{1A85C69E-34F3-4993-A5C1-3A19555FD1E6}E:\_hry\gta-iv\gtaiv.exe] => (Block) E:\_hry\gta-iv\gtaiv.exe (Rockstar Games, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [UDP Query User{586A7603-8C30-4164-A759-7790D4BBA22F}E:\_hry\gta-iv\gtaiv.exe] => (Block) E:\_hry\gta-iv\gtaiv.exe (Rockstar Games, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [{68C74B14-F418-4807-A114-98EA6F2A62E3}] => (Block) E:\_hry\GTA-IV\GTAIV.exe (Rockstar Games, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [{3C0F1BF6-3D38-4F24-A3A7-C573E6C32F29}] => (Block) E:\_hry\GTA-IV\GTA-IV.exe => No File
FirewallRules: [{178CCCE4-629A-4569-AD0B-3B6C4072B5E7}] => (Block) E:\_hry\GTA-IV\LaunchGTAIV.exe (Sony DADC Austria AG) [File not signed]
FirewallRules: [{196F50AC-13F9-403B-BD55-618993F2B946}] => (Block) E:\_hry\GTA-IV\LaunchGTAIV.exe (Sony DADC Austria AG) [File not signed]
FirewallRules: [{39D9F589-EED8-4364-B0FA-D4987583EA85}] => (Block) E:\_hry\GTA-IV\GTA-IV.exe => No File
FirewallRules: [{234DDB67-A684-43BA-B11F-EF36D64BD379}] => (Block) E:\_hry\GTA-IV\GTAIV.exe (Rockstar Games, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [{FFCCEF5F-337F-46C6-A814-03102F41ECE8}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\83.0.4103.2\remoting_host.exe (Google LLC -> Google Inc.)
FirewallRules: [TCP Query User{1533748B-92B3-44FD-8461-1801C7649FC2}E:\_hry\red faction guerrilla remarstered\rfg.exe] => (Block) E:\_hry\red faction guerrilla remarstered\rfg.exe => No File
FirewallRules: [UDP Query User{37255DE7-0CF5-4E3C-A571-CA9A5D1FF439}E:\_hry\red faction guerrilla remarstered\rfg.exe] => (Block) E:\_hry\red faction guerrilla remarstered\rfg.exe => No File
FirewallRules: [TCP Query User{8469C087-AF38-4E8C-9F6C-B1A835A89113}E:\_hry\gtav\gta5.exe] => (Allow) E:\_hry\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{898C2A78-CC5B-4DCC-BDEB-B2C24D26D36E}E:\_hry\gtav\gta5.exe] => (Allow) E:\_hry\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{71FE53B2-0BA6-421E-8014-60CBB5AECD48}] => (Allow) E:\_hry\AssassinsCreedSyndicate\ACS.exe => No File
FirewallRules: [TCP Query User{45B58512-5D93-4DE6-B171-742EC00ECC05}E:\program files\modifiablewindowsapps\halomcc\mcc\binaries\win64\mcc-win64-shipping-winstore.exe] => (Allow) E:\program files\modifiablewindowsapps\halomcc\mcc\binaries\win64\mcc-win64-shipping-winstore.exe (343 Industries (Microsoft Corporation) -> Microsoft Corporation)
FirewallRules: [UDP Query User{F5D266B6-EE7B-4F23-823D-A879CE58CFB0}E:\program files\modifiablewindowsapps\halomcc\mcc\binaries\win64\mcc-win64-shipping-winstore.exe] => (Allow) E:\program files\modifiablewindowsapps\halomcc\mcc\binaries\win64\mcc-win64-shipping-winstore.exe (343 Industries (Microsoft Corporation) -> Microsoft Corporation)
FirewallRules: [TCP Query User{A50111BD-2405-4B5D-A524-3EA33768EB97}F:5\pathologic.exe] => (Allow) F:5\pathologic.exe => No File
FirewallRules: [UDP Query User{A658CCFA-CBBB-4FBF-B914-4F16365DFEBC}F:5\pathologic.exe] => (Allow) F:5\pathologic.exe => No File
FirewallRules: [TCP Query User{91CB23BA-B89A-4D04-BF1F-9E6A4744C8AB}E:2\pathologic.exe] => (Allow) E:2\pathologic.exe => No File
FirewallRules: [UDP Query User{F5B6FA57-6623-4A25-BF03-A5B3553EA51D}E:2\pathologic.exe] => (Allow) E:2\pathologic.exe => No File
FirewallRules: [{A2BB370D-EE2C-4699-B9D8-BDBF2C80A636}] => (Allow) C:\Users\TM\AppData\Local\Programs\Opera\68.0.3618.125\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{6D38EB44-82B2-4D6A-989A-3375EECBACA6}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{A8326F95-1108-4648-89D5-C898FA25291C}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{DB7A8EE6-D098-4A40-9185-ECDDCC1D294F}] => (Allow) E:\_hry\Battlefield 4\bf4_x86.exe (EA Digital Illusions CE AB) [File not signed]
FirewallRules: [{407069B0-D920-4A87-9ADD-7701D9DBDB58}] => (Allow) E:\_hry\Battlefield 4\bf4_x86.exe (EA Digital Illusions CE AB) [File not signed]
FirewallRules: [{494E5B6C-473C-4168-AA35-FDCEC901C8DA}] => (Allow) E:\_hry\Battlefield 4\bf4.exe (EA Digital Illusions CE AB) [File not signed]
FirewallRules: [{0FDE0F91-CE64-4E9F-9AE7-A3AFAC4801F0}] => (Allow) E:\_hry\Battlefield 4\bf4.exe (EA Digital Illusions CE AB) [File not signed]
FirewallRules: [TCP Query User{B7FD44E7-F340-4103-B4E6-4C3631F5BBA6}E:\_hry\arksurvivalevolved\shootergame\binaries\win64\shootergame.exe] => (Allow) E:\_hry\arksurvivalevolved\shootergame\binaries\win64\shootergame.exe => No File
FirewallRules: [UDP Query User{38C1CD7F-FA77-4935-BCED-4105AD4E867A}E:\_hry\arksurvivalevolved\shootergame\binaries\win64\shootergame.exe] => (Allow) E:\_hry\arksurvivalevolved\shootergame\binaries\win64\shootergame.exe => No File
FirewallRules: [{25C3032D-5074-454E-BD53-007398342ECC}] => (Allow) C:\Users\TM\AppData\Local\Programs\Opera\68.0.3618.165\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{8065154A-BD03-4F01-AABE-F4B7EB891748}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{1FEB93F1-2937-4D37-97DD-ADCE82405572}] => (Allow) E:\_hry\Steam\steamapps\common\Elite Dangerous\EDLaunch.exe (Frontier Developments Plc -> Frontier Developments)
FirewallRules: [{E11D2B54-505D-4529-894A-BCCE22C98AAB}] => (Allow) E:\_hry\Steam\steamapps\common\Elite Dangerous\EDLaunch.exe (Frontier Developments Plc -> Frontier Developments)
StandardProfile\AuthorizedApplications: [C:\_utility\Tridef3D\TriDef\TriDefMediaPlayer\TriDefMediaPlayer.exe] => Enabled:TriDef 3D Media Player

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:111.24 GB) (Free:14.17 GB) (13%)

==================== Faulty Device Manager Devices ============

Name: Radeon (TM) RX 480 Graphics
Description: Radeon (TM) RX 480 Graphics
Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318}
Manufacturer: Advanced Micro Devices, Inc.
Service: amdkmdap
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation. 

Name: Standard PS/2 Keyboard
Description: Standard PS/2 Keyboard
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard keyboards)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Microsoft PS/2 Mouse
Description: Microsoft PS/2 Mouse
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: ========================

Application errors:
==================
Error: (06/18/2020 03:17:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: utorrent.exe, version: 2.2.1.25534, time stamp: 0x4e4594ce
Faulting module name: GDI32.dll, version: 10.0.18362.1, time stamp: 0x527faf7f
Exception code: 0xc000041d
Fault offset: 0x00004647
Faulting process id: 0x16d0
Faulting application start time: 0x01d64571f3eaa8b3
Faulting application path: C:\_utility\uTorrent\utorrent.exe
Faulting module path: C:\WINDOWS\System32\GDI32.dll
Report Id: e47eea06-9adc-4f4f-b3d3-726962961898
Faulting package full name: 
Faulting package-relative application ID:

Error: (06/18/2020 03:10:32 PM) (Source: WTabletServicePro) (EventID: 1) (User: )
Description: Event-ID 1

Error: (06/18/2020 02:12:39 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: GTA5.exe, version: 1.0.1868.4, time stamp: 0x5eaae0f1
Faulting module name: GTA5.exe, version: 1.0.1868.4, time stamp: 0x5eaae0f1
Exception code: 0xc0000005
Fault offset: 0x000000000129900c
Faulting process id: 0x4278
Faulting application start time: 0x01d6456992223359
Faulting application path: E:\_hry\GTAV\GTA5.exe
Faulting module path: E:\_hry\GTAV\GTA5.exe
Report Id: da49a323-62b7-4364-af07-1113f1be3095
Faulting package full name: 
Faulting package-relative application ID:

Error: (06/18/2020 01:29:07 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (15984,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (06/18/2020 12:57:14 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (19972,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (06/18/2020 12:51:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: EDlaunch.exe, version: 0.4.6600.0, time stamp: 0x5ec3fa32
Faulting module name: KERNELBASE.dll, version: 10.0.18362.815, time stamp: 0xb89efff3
Exception code: 0xe0434f4d
Fault offset: 0x000000000003a799
Faulting process id: 0x1ba4
Faulting application start time: 0x01d6455e508d64c4
Faulting application path: E:\_hry\Steam\steamapps\common\Elite Dangerous\EDlaunch.exe
Faulting module path: C:\WINDOWS\System32\KERNELBASE.dll
Report Id: 16eda670-d329-433f-9010-1e1a0fda7122
Faulting package full name: 
Faulting package-relative application ID:

Error: (06/18/2020 12:30:17 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (6480,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (06/18/2020 11:30:11 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program EliteDangerous64.exe version 234.854.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 2560

Start Time: 01d6454939560774

Termination Time: 4294967295

Application Path: E:\_hry\Steam\steamapps\common\Elite Dangerous\Products\elite-dangerous-64\EliteDangerous64.exe

Report Id: 6f3a1463-ff69-43fb-8bff-2c429c6171f9

Faulting package full name: 

Faulting package-relative application ID: 

Hang type: Top level window is idle


System errors:
=============
Error: (06/18/2020 02:19:42 PM) (Source: MEIx64) (EventID: 3) (User: )
Description: Intel(R) Trusted Execution Engine Interface driver has failed to perform handshake with the Firmware (FWSTS0: 0x9030405E, FWSTS1: 0x340D0006).

Error: (06/18/2020 02:18:36 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-Q3V9AV9)
Description: The server Microsoft.Windows.ContentDeliveryManager_10.0.18362.449_neutral_neutral_cw5n1h2txyewy!App.AppX447jn8wbjb1qsw3jxkndb19cwgsrtrkk.mca did not register with DCOM within the required timeout.

Error: (06/18/2020 02:18:23 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-Q3V9AV9)
Description: The server microsoft.windowscommunicationsapps_16005.12827.20290.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca did not register with DCOM within the required timeout.

Error: (06/18/2020 07:33:51 AM) (Source: MEIx64) (EventID: 3) (User: )
Description: Intel(R) Trusted Execution Engine Interface driver has failed to perform handshake with the Firmware (FWSTS0: 0x9030405E, FWSTS1: 0x340D0006).

Error: (06/18/2020 01:39:40 AM) (Source: DCOM) (EventID: 10001) (User: DESKTOP-Q3V9AV9)
Description: Unable to start a DCOM Server: Microsoft.Windows.Cortana_1.13.0.18362_neutral_neutral_cw5n1h2txyewy!CortanaUI as Unavailable/Unavailable. The error:
"2147943855"
Happened while starting this command:
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca

Error: (06/18/2020 01:39:38 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-Q3V9AV9)
Description: The server Microsoft.Windows.Cortana_1.13.0.18362_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppXd4tad4d57t4wtdbnnmb8v2xtzym8c1n8.mca did not register with DCOM within the required timeout.

Error: (06/18/2020 01:39:35 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Služba kontroly sítě antivirového programu Windows Defender service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restartovat službu.

Error: (06/18/2020 01:39:26 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Služba Zasílání zpráv o chybách systému Windows service terminated with the following error: 
The paging file is too small for this operation to complete.


Windows Defender:
===================================
Date: 2020-06-15 13:07:00.186
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {50606E0D-3070-44BF-B926-7603FE1BD0B8}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-06-10 15:09:38.786
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {3EDF4037-8C72-4DB5-A3C1-D194AAD75339}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-06-10 12:20:21.952
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {F89FC917-E4E9-4DA7-9F20-1FD5F8517B0B}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-06-10 12:08:10.185
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {4C2BFE84-E8C5-492F-B748-F7D5702082FA}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-06-05 12:06:35.525
Description: 
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Zpevdo.A&threatid=2147727143&enterprise=0
Název: Trojan:Win32/Zpevdo.A
ID: 2147727143
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GTA-IV\GTA-IV.lnk; file:_E:\_hry\GTA-IV\GTA-IV.exe; regkey:_HKLM\SOFTWARE\Wow6432Node\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{DB343D61-BC4B-428C-8E58-D80101A6218F}_is1; startup:_C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GTA-IV\GTA-IV.lnk; uninstall:_HKLM\SOFTWARE\Wow6432Node\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{DB343D61-BC4B-428C-8E58-D80101A6218F}_is1
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-Q3V9AV9\TM
Název procesu: C:\Windows\System32\RuntimeBroker.exe
Verze bezpečnostních informací: AV: 1.317.617.0, AS: 1.317.617.0, NIS: 1.317.617.0
Verze modulu: AM: 1.1.17100.2, NIS: 1.1.17100.2

CodeIntegrity:
===================================

Date: 2020-04-28 22:07:10.667
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\System32\vdsldr.exe) attempted to load \Device\HarddiskVolume7\Program Files (x86)\Common Files\Portrait Displays\Plugins\DP\MsgHook64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-04-28 22:06:49.109
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\System32\vdsldr.exe) attempted to load \Device\HarddiskVolume7\Program Files (x86)\Common Files\Portrait Displays\Plugins\DP\MsgHook64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-04-16 19:35:34.885
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume7\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-04-16 19:35:34.871
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume7\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-04-16 19:35:34.759
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume7\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-04-16 19:35:34.743
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume7\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-04-16 19:35:34.723
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume7\Windows\System32\dsreg.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-04-16 19:35:34.704
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume7\Windows\System32\dsreg.dll because the set of per-page image hashes could not be found on the system.

==================== Memory info =========================== 

BIOS: American Megatrends Inc. C.C0 04/21/2017
Motherboard: MSI B150 PC MATE (MS-7971)
Processor: Intel(R) Core(TM) i5-6500 CPU @ 3.20GHz
Percentage of memory in use: 23%
Total physical RAM: 32732.12 MB
Available physical RAM: 24934.58 MB
Total Virtual: 35943.27 MB
Available Virtual: 27195.32 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:111.24 GB) (Free:14.17 GB) NTFS
Drive d: (SSD Ops) (Fixed) (Total:223.57 GB) (Free:24.92 GB) NTFS
Drive e: (Data) (Fixed) (Total:1863.02 GB) (Free:95.76 GB) NTFS
Drive f: (Backup) (Fixed) (Total:931.51 GB) (Free:97.45 GB) NTFS
Drive h: () (Removable) (Total:59.08 GB) (Free:59.08 GB) exFAT
Drive j: (HAL extDisk) (Fixed) (Total:1630.14 GB) (Free:537.16 GB) NTFS

\\?\Volume{c66778bc-5e2e-4ae8-bc3d-39df31e6ec29}\ (Recovery) (Fixed) (Total:0.44 GB) (Free:0.43 GB) NTFS
\\?\Volume{1db58f93-28b0-bec2-e5e0-ff9867532280}\ () (Fixed) (Total:69.98 GB) (Free:0 GB) NTFS
\\?\Volume{e08453ab-d3c1-d6a8-9031-cc4c18dc0905}\ () (Fixed) (Total:19.04 GB) (Free:0 GB) NTFS
\\?\Volume{bad8cc7d-f1b0-c100-9e02-882dd062cdcd}\ () (Fixed) (Total:9.24 GB) (Free:0 GB) NTFS
\\?\Volume{14a987bc-1f95-6af9-38fa-65ba1f599789}\ () (Fixed) (Total:19.41 GB) (Free:0 GB) NTFS
\\?\Volume{fef99fd2-93ea-80ca-9155-61e105c116a9}\ () (Fixed) (Total:0 GB) (Free:0 GB) NTFS
\\?\Volume{6c13b06c-a0dc-e5f8-ab8a-7be7b50dd034}\ () (Fixed) (Total:0 GB) (Free:0 GB) NTFS
\\?\Volume{a7537661-921f-ed59-a758-f2ff8a6db369}\ () (Fixed) (Total:0 GB) (Free:0 GB) NTFS
\\?\Volume{9fb6926c-a8ca-44df-87ea-d0fa3509482d}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 88FC7762)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=0F Extended)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 43673281)
Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 3EF2CE70)
Partition 1: (Not Active) - (Size=223.6 GB) - (Type=07 NTFS)

==========================================================
Disk: 3 (Size: 111.8 GB) (Disk ID: AC1B21A2)

Partition: GPT.

==========================================================
Disk: 4 (Size: 1630.1 GB) (Disk ID: 228AF127)
Partition 1: (Not Active) - (Size=1630.1 GB) - (Type=07 NTFS)

==========================================================
Disk: 5 (Size: 59.1 GB) (Disk ID: 7AB959FB)
Partition 1: (Not Active) - (Size=59.1 GB) - (Type=07 NTFS)
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 7.
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 8.
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 9.
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 10.
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 11.
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 12.
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 13.

==================== End of Addition.txt =======================