Avast llena mi ram


#1

Buenas tardes, una disculpa por esto. La cosa es que estaba intentando sacar mi RFC en el sitio de SAT. Genera un acuse y todo eso. Al momento de generar el acuse para imprimirlo mi computadora se queda congelada. Pensaría que es por las pestañas que tengo abiertas (son como más de 40) pero tengo una extensión hace tiempo (The great suspender) que las suspende para así no almacene tanta memoria RAM, ya tengo tiempo que lo uso asi y nunca me pasó. Al momento de que se congeló apagué la laptop y volví a intentar hacer el tramite, pero esta vez se congeló de nuevo. Al final pensaba que era mi navegador (Chrome) asi que intenté usar otro (Vivaldi) y pude imprimir el RFC. Sin embargo al momento de cerrarlo, usé discord (era el único programa abierto) y dejé la laptop por unos minutos, al momento que vuelvo noto la computadora algo lenta, sólo podía mover el mouse pero no podía tocar nada por así decirlo. Ni siquiera abrir el administrador de tareas. Vuelvo a apagar la PC (volvió a quedarse congelado). Entro a modo seguro, uso el Malwarebytes y no me detecta nada. Reinicio de nuevo, uso chrome y a los minutos se vuelve a congelar la PC. Vuelvo a entrar a modo seguro pero con red y analizo la PC. Sigue sin detectarme nada. Reinicio. Enciendo mi PC, espero los minutos (10 aproximadamente), no abro nada. Sólo miro el administrador de tareas los procesos que llevo. Se queda congelado y veo que de la nada la memoria RAM se llena a 99%. Mi computadora tiene 4 GB de RAM y nunca me había pasado eso. Actualmente al momento que escribo esto, lo estoy escribiendo entre estos “10 minutos” que tengo de garantía por así decirlo que no se vaya a congelar. ¿Qué podría hacer? Muchas gracias y una disculpa. Edit. Note que AvastSvc.exe es el que me esta consumiendo toda la ram. Como deberia proceder? Lo deberia desinstalar avast? Por ahora reparare la aplicacion y en unos minutos les cuento


#2

Siguió todo igual, se me sigue congelando y es por ese proceso. Deberia desinstalar avast?


#3

Hola

Desinstala Avast y después, me pegas estos logs:

  • Desactiva Temporalmente tu antivirus y cualquier programa de seguridad.

  • Descarga a Tu Escritorio >> Esto es muy importante<<.,Fabar Recovery Scan Tool, considerando la versión adecuada para tu equipo. (32 o 64 bits) :arrow_forward: ¿Cómo saber si mi Windows es de 32 o 64 bits?

  • Doble clic para ejecutar Frst.exe. En la ventana del Disclaimer, presiona Yes.

  • En la nueva ventana que se abre, presiona el botón Scan y espera a que concluya el análisis.

  • Se abrirán dos (2) archivos (Logs), Frst.txt y Addition.txt, que estarán grabados en Tu escritorio.

En Tu próxima respuesta, copias y pegas los dos reportes Frst.txt y Addition.txt de FRST

Nota: Si el/los reportes solicitados no entraran en una sola respuesta porque superan la cantidad de caracteres permitidos, puedes utilizar dos o mas respuestas para pegarlos completamente.


#5

Una disculpa, recién me entero que como estaba usando el texto preformateado estaba mal. Mil disculpas. Este es FRST:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 30.01.2019
Ran by Seniorbrayan (administrator) on SEÑORBRAYAN (31-01-2019 00:27:13)
Running from C:\Users\Seniorbrayan\Desktop
Loaded Profiles: Seniorbrayan (Available Profiles: Seniorbrayan & DefaultAppPool)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Español (España, internacional)
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Atheros Commnucations) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AdminService.exe
(DEVGURU Co., LTD.) C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Atheros) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Ath_CoexAgent.exe
(Atheros) C:\Program Files (x86)\Dell Wireless\Ath_WlanAgent.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Atheros Communications) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AthBtTray.exe
(Discord Inc.) C:\Users\Seniorbrayan\AppData\Local\Discord\app-0.0.304\Discord.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Pro\DTAgent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Pro\DiscSoftBusServicePro.exe
(Discord Inc.) C:\Users\Seniorbrayan\AppData\Local\Discord\app-0.0.304\Discord.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Discord Inc.) C:\Users\Seniorbrayan\AppData\Local\Discord\app-0.0.304\Discord.exe
(Discord Inc.) C:\Users\Seniorbrayan\AppData\Local\Discord\app-0.0.304\Discord.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Discord Inc.) C:\Users\Seniorbrayan\AppData\Local\Discord\app-0.0.304\Discord.exe
(Discord Inc.) C:\Users\Seniorbrayan\AppData\Local\Discord\app-0.0.304\Discord.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe [1021056 2012-03-08] (Atheros Communications)
HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AthBtTray.exe [800896 2012-03-08] (Atheros Commnucations)
HKLM\...\Run: [CanonMyPrinter] => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2782096 2010-07-25] (CANON INC.)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2675176 2018-12-13] (Adobe Systems, Incorporated)
HKLM-x32\...\Run: [CanonSolutionMenuEx] => C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1213848 2010-09-14] (CANON INC.)
HKLM-x32\...\Run: [Nero BackItUp] => "C:\Program Files (x86)\Nero\Nero 2018\Nero BackItup\BackItUp.exe" /WinStart
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [413696 2009-01-05] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
HKU\S-1-5-21-1615820223-3353691301-1937506479-1000\...\Run: [Discord] => C:\Users\Seniorbrayan\AppData\Local\Discord\app-0.0.304\Discord.exe [81747288 2019-01-15] (Discord Inc.)
HKU\S-1-5-21-1615820223-3353691301-1937506479-1000\...\Run: [Unified Remote V3] => "C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe"
HKU\S-1-5-21-1615820223-3353691301-1937506479-1000\...\Run: [DAEMON Tools Pro Agent] => C:\Program Files\DAEMON Tools Pro\DTAgent.exe [4506304 2017-05-17] (Disc Soft Ltd)
HKU\S-1-5-21-1615820223-3353691301-1937506479-1000\...\MountPoints2: H - H:\AurLaunch\LaunchScreen.exe
HKU\S-1-5-21-1615820223-3353691301-1937506479-1000\...\MountPoints2: {c9c3d2f8-1ea5-11e9-9020-24b6fd084903} - H:\AurLaunch\LaunchScreen.exe
HKU\S-1-5-21-1615820223-3353691301-1937506479-1000\...\MountPoints2: {e1aa7670-af7a-11e7-a658-24b6fd084903} - H:\setup.exe
HKLM\...\Drivers32: [VIDC.FICV] => C:\Windows\system32\ficvdec_x64.dll [652288 2013-05-28] ()
HKLM\...\Drivers32-x32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-18] (Fox Magic Software)
HKLM\...\Drivers32-x32: [VIDC.FICV] => C:\Windows\SysWOW64\ficvdec_x86.dll [641024 2013-05-28] ()
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\Installer\chrmstp.exe [2018-12-18] (Google Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\Windows\system32\AthCredentialProvider.dll [2012-03-08] (Atheros Commnucations)
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2009-08-18] (Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\Windows\system32\AthCredentialProvider.dll [2012-03-08] (Atheros Commnucations)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 192.168.1.254
Tcpip\..\Interfaces\{69F1005F-92B7-4752-9182-FD487B3B1B0F}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{7CB69C02-A2DB-4A06-939C-817EAF08DD0B}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{EF0DF3B4-1A0D-4F4F-A14F-55FB667E230A}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{EF0DF3B4-1A0D-4F4F-A14F-55FB667E230A}: [DhcpNameServer] 192.168.1.254 192.168.1.254

Internet Explorer:
==================
HKU\S-1-5-21-1615820223-3353691301-1937506479-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1615820223-3353691301-1937506479-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/es-mx/?ocid=iehp
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_181\bin\ssv.dll [2018-08-17] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> c:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-08-17] (Oracle Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation)
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\IEPlugIn.dll [2012-03-08] (Atheros Commnucations)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> c:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Corporation)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_23_0_0_205.dll [2017-07-24] ()
FF Plugin: @java.com/DTPlugin,version=11.181.2 -> C:\Program Files\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll [2018-08-17] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.181.2 -> C:\Program Files\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2018-08-17] (Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_205.dll [2017-07-24] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [2010-04-14] (CANON INC.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)

Chrome: 
=======
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\Seniorbrayan\AppData\Local\Google\Chrome\User Data\Default [2019-01-31]
CHR Extension: (Presentaciones) - C:\Users\Seniorbrayan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Documentos) - C:\Users\Seniorbrayan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Google Drive) - C:\Users\Seniorbrayan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-17]
CHR Extension: (YouTube) - C:\Users\Seniorbrayan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-06-04]
CHR Extension: (uBlock Origin) - C:\Users\Seniorbrayan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2018-12-06]
CHR Extension: (Tampermonkey) - C:\Users\Seniorbrayan\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2018-12-21]
CHR Extension: (Hojas de cálculo) - C:\Users\Seniorbrayan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Seniorbrayan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-18]
CHR Extension: (The Great Suspender) - C:\Users\Seniorbrayan\AppData\Local\Google\Chrome\User Data\Default\Extensions\klbibkeccnjlkjkiokjodocebajanakg [2018-12-02]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Seniorbrayan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Enhanced Steam) - C:\Users\Seniorbrayan\AppData\Local\Google\Chrome\User Data\Default\Extensions\okadibdjfemgnhjiembecghcbfknbfhg [2018-07-31]
CHR Extension: (Gmail) - C:\Users\Seniorbrayan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-06-04]
CHR Extension: (Chrome Media Router) - C:\Users\Seniorbrayan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-19]
CHR Profile: C:\Users\Seniorbrayan\AppData\Local\Google\Chrome\User Data\Guest Profile [2018-12-20]
CHR Profile: C:\Users\Seniorbrayan\AppData\Local\Google\Chrome\User Data\System Profile [2018-12-20]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2917864 2018-12-13] (Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2709480 2018-12-13] (Adobe Systems, Incorporated)
R2 AtherosSvc; C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe [107648 2012-03-08] (Atheros Commnucations) [File not signed]
R3 Disc Soft Pro Bus Service; C:\Program Files\DAEMON Tools Pro\DiscSoftBusServicePro.exe [1841344 2017-05-17] (Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2018-12-18] (EasyAntiCheat Ltd)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [532552 2018-01-10] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [8345672 2017-12-20] (GOG.com)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-12-02] (DEVGURU Co., LTD.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)
R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Ath_CoexAgent.exe [159360 2012-03-08] (Atheros) [File not signed]
R2 ZAtheros Wlan Agent; C:\Program Files (x86)\Dell Wireless\Ath_WlanAgent.exe [77824 2012-03-28] (Atheros) [File not signed]
S2 avast; "C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /svc [X]
S3 avastm; "C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /medsvc [X]
S2 hshld; "C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe" [X]
===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 dtproscsibus; C:\Windows\System32\DRIVERS\dtproscsibus.sys [30264 2019-01-22] (Disc Soft Ltd)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [253880 2019-01-30] (Malwarebytes)
R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc.)
R3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42064 2017-08-22] (Anchorfree Inc.)
S3 uvhid; C:\Windows\System32\DRIVERS\uvhid.sys [28128 2017-12-13] (Windows (R) Win 7 DDK provider)
R3 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [213080 2018-08-14] (Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\System32\DRIVERS\VBoxNetLwf.sys [222864 2018-08-14] (Oracle Corporation)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [156432 2018-08-14] (Oracle Corporation)
U5 vsock; C:\Windows\System32\Drivers\vsock.sys [93576 2018-06-22] (VMware, Inc.)
S3 AFTrafMgr1.3; \??\C:\Program Files (x86)\Hotspot Shield\bin\TrafMgr_1_3_64.sys [X]
S3 DxkgFilter; \??\C:\Program Files (x86)\iDisplay\idisplay.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-01-31 00:27 - 2019-01-31 00:28 - 000018429 _____ C:\Users\Seniorbrayan\Desktop\FRST.txt
2019-01-31 00:27 - 2019-01-31 00:27 - 000000000 ____D C:\FRST
2019-01-31 00:26 - 2019-01-31 00:26 - 000000000 ____D C:\Users\Seniorbrayan\Desktop\etcetera
2019-01-31 00:25 - 2019-01-31 00:26 - 002428928 _____ (Farbar) C:\Users\Seniorbrayan\Desktop\FRST64.exe
2019-01-30 23:50 - 2019-01-30 23:50 - 001828569 _____ C:\Users\Seniorbrayan\Downloads\ProcessExplorer.zip
2019-01-30 21:53 - 2019-01-30 21:53 - 000253880 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2019-01-30 20:07 - 2019-01-30 21:36 - 000353588 _____ C:\Windows\ntbtlog.txt
2019-01-26 22:41 - 2019-01-26 22:41 - 003673703 _____ C:\Users\Seniorbrayan\Downloads\Grabacion_12.m4a
2019-01-23 13:18 - 2019-01-23 13:18 - 000000000 ____D C:\Users\Seniorbrayan\Desktop\Nueva carpeta (2)
2019-01-23 13:16 - 2019-01-23 13:16 - 000000000 ____D C:\Users\Seniorbrayan\Desktop\Nueva carpeta
2019-01-22 18:18 - 2019-01-22 18:18 - 003673480 _____ C:\Users\Seniorbrayan\Downloads\Tansparent_1.67.zip
2019-01-22 18:04 - 2019-01-22 18:04 - 000002346 _____ C:\Users\Public\Desktop\TELL ME MORE Performance.lnk
2019-01-22 18:04 - 2019-01-22 18:04 - 000000011 _____ C:\trace.ini
2019-01-22 18:04 - 2019-01-22 18:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TELL ME MORE Performance
2019-01-22 18:04 - 2019-01-22 18:04 - 000000000 ____D C:\Program Files (x86)\Auralog
2019-01-22 18:03 - 2019-01-22 18:04 - 000000363 _____ C:\Windows\err.txt
2019-01-22 17:20 - 2019-01-22 17:20 - 000030264 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtproscsibus.sys
2019-01-22 17:19 - 2019-01-22 17:37 - 000000000 ____D C:\Program Files\DAEMON Tools Pro
2019-01-22 17:19 - 2019-01-22 17:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Pro
2019-01-22 17:19 - 2019-01-22 17:19 - 000001725 _____ C:\Users\Public\Desktop\DAEMON Tools Pro.lnk
2019-01-22 17:18 - 2019-01-22 17:18 - 000000000 ____D C:\Users\Seniorbrayan\Desktop\topols
2019-01-19 17:02 - 2019-01-19 17:02 - 006918081 _____ C:\Users\Seniorbrayan\Downloads\Hamachi- Instalación.rar
2019-01-19 17:01 - 2019-01-19 17:01 - 000013889 _____ C:\Users\Seniorbrayan\Downloads\alterna2.m3u
2019-01-19 16:45 - 2019-01-19 16:45 - 009134080 _____ C:\Users\Seniorbrayan\Downloads\hamachi (1).msi
2019-01-19 16:08 - 2019-01-19 16:09 - 009134080 _____ C:\Users\Seniorbrayan\Downloads\hamachi.msi
2019-01-18 20:34 - 2019-01-22 15:51 - 000000000 ____D C:\Users\Seniorbrayan\AppData\Local\Warframe
2019-01-16 00:02 - 2019-01-30 19:20 - 000004018 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{8FF46F0F-93A4-4A14-B3F6-325AB2876C0B}
2019-01-06 15:38 - 2019-01-06 15:38 - 000000000 ____D C:\Users\Seniorbrayan\AppData\LocalLow\Square Enix
2019-01-05 18:24 - 2019-01-05 18:25 - 000000000 ____D C:\Users\Seniorbrayan\Desktop\txt
2019-01-05 18:21 - 2019-01-28 03:55 - 000000000 ____D C:\Users\Seniorbrayan\Desktop\Imgs y etcs
2019-01-05 17:01 - 2019-01-05 17:01 - 000054616 _____ C:\Users\Seniorbrayan\Downloads\f2af319a-d30c-4b07-ab3e-e9b36d2bd2a4.tmp
2019-01-02 20:40 - 2019-01-02 20:40 - 004570646 _____ C:\Users\Seniorbrayan\Downloads\Grabacion_10.m4a
2019-01-01 17:30 - 2019-01-15 02:50 - 000000000 ____D C:\Users\Seniorbrayan\Desktop\komi san

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-01-31 00:22 - 2018-11-12 15:43 - 000000437 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2019-01-31 00:22 - 2017-06-17 19:12 - 000000000 ____D C:\ProgramData\AVAST Software
2019-01-31 00:22 - 2009-07-13 22:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-01-31 00:21 - 2009-07-13 21:45 - 000021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-01-31 00:21 - 2009-07-13 21:45 - 000021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-01-30 21:11 - 2017-06-08 19:45 - 000000000 ____D C:\Users\Seniorbrayan\AppData\Local\CrashDumps
2019-01-30 20:37 - 2009-07-13 22:08 - 000032538 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2019-01-30 19:17 - 2017-06-04 12:55 - 000000000 ____D C:\Users\Seniorbrayan\AppData\Roaming\discord
2019-01-30 18:59 - 2017-06-20 00:03 - 000000000 ____D C:\Users\Seniorbrayan\AppData\Roaming\vlc
2019-01-27 17:37 - 2018-11-27 20:43 - 000000000 ____D C:\Users\Seniorbrayan\AppData\Local\Spotify
2019-01-27 16:07 - 2018-11-27 20:40 - 000000000 ____D C:\Users\Seniorbrayan\AppData\Roaming\Spotify
2019-01-26 18:49 - 2017-06-24 16:51 - 000000000 ____D C:\Users\Seniorbrayan\AppData\Local\osu!
2019-01-25 23:42 - 2018-05-12 16:56 - 000003570 _____ C:\Windows\System32\Tasks\AdobeGCInvoker-1.0-Señorbrayan-Seniorbrayan
2019-01-23 20:31 - 2018-04-03 17:04 - 000000000 ____D C:\Users\Seniorbrayan\AppData\Roaming\.minecraft
2019-01-22 17:58 - 2017-10-12 22:27 - 000000000 ____D C:\Users\Seniorbrayan\AppData\Roaming\DAEMON Tools Pro
2019-01-22 17:36 - 2017-10-12 22:26 - 000000000 ____D C:\ProgramData\DAEMON Tools Pro
2019-01-22 17:22 - 2009-07-13 20:20 - 000000000 ____D C:\Windows\inf
2019-01-22 15:51 - 2017-06-08 13:59 - 000000000 ____D C:\Program Files (x86)\Steam
2019-01-20 00:11 - 2018-06-17 16:16 - 000000000 ____D C:\Users\Default\AppData\Local\LogMeIn Hamachi
2019-01-20 00:11 - 2018-06-17 16:16 - 000000000 ____D C:\Users\Default User\AppData\Local\LogMeIn Hamachi
2019-01-18 20:10 - 2017-06-10 16:05 - 000000000 ____D C:\Program Files (x86)\Minecraft
2019-01-16 18:21 - 2018-08-09 22:06 - 000000000 ____D C:\Program Files\Streamlabs OBS
2019-01-16 18:19 - 2018-08-09 22:15 - 000000000 ____D C:\Users\Seniorbrayan\AppData\Roaming\slobs-client
2019-01-16 01:35 - 2017-06-04 12:54 - 000000000 ____D C:\Users\Seniorbrayan\AppData\Local\Discord
2019-01-16 00:06 - 2017-12-05 19:25 - 000000000 ___SD C:\Users\Seniorbrayan\AppData\LocalLow\Temp
2019-01-08 15:37 - 2017-07-04 10:33 - 000000000 ____D C:\Users\Seniorbrayan\AppData\Local\Mirillis
2019-01-05 18:21 - 2018-11-30 13:38 - 000000000 ____D C:\Users\Seniorbrayan\Desktop\usb
2019-01-05 18:21 - 2018-11-27 21:18 - 000000000 ____D C:\Users\Seniorbrayan\Desktop\INGLES SCAN
2019-01-05 14:00 - 2017-06-04 11:43 - 000000000 ____D C:\Users\Seniorbrayan
2019-01-03 20:12 - 2017-06-04 21:15 - 000000132 _____ C:\Users\Seniorbrayan\AppData\Roaming\Prefs. de formato PNG de Adobe CS6
2019-01-03 15:44 - 2018-09-27 21:38 - 000000000 ____D C:\Users\Seniorbrayan\Desktop\= PROYECTO = Amigos 4x4
2019-01-02 01:46 - 2018-12-12 02:21 - 000000000 ____D C:\Users\Seniorbrayan\Desktop\celestina
2019-01-01 21:01 - 2017-08-03 16:45 - 000000000 ____D C:\Users\Seniorbrayan\AppData\Roaming\obs-studio

==================== Files in the root of some directories =======

2018-11-24 00:22 - 2018-11-24 00:23 - 000002338 _____ () C:\Users\Seniorbrayan\AppData\Roaming\ASSDraw3.cfg
2017-06-04 21:15 - 2019-01-03 20:12 - 000000132 _____ () C:\Users\Seniorbrayan\AppData\Roaming\Prefs. de formato PNG de Adobe CS6
2018-09-28 19:40 - 2018-09-28 19:40 - 000000000 _____ () C:\Users\Seniorbrayan\AppData\Local\oobelibMkey.log
2018-08-28 13:07 - 2018-11-24 22:00 - 000000600 _____ () C:\Users\Seniorbrayan\AppData\Local\PUTTY.RND
2018-11-12 23:31 - 2018-11-12 23:31 - 000000780 _____ () C:\Users\Seniorbrayan\AppData\Local\recently-used.xbel

Some files in TEMP:
====================
2017-12-17 13:51 - 2017-12-30 20:13 - 000000000 _____ () C:\Users\Seniorbrayan\AppData\Local\Temp\2e7adecd915fad7ede6cff9c6c6e4e6e.dll
2017-12-17 13:51 - 2017-12-30 20:14 - 000000093 _____ () C:\Users\Seniorbrayan\AppData\Local\Temp\509055e8b8dc0d9f8193b1aee946c17e.dll
2018-10-15 02:09 - 2018-10-09 02:57 - 001205768 _____ (BlueStack Systems, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\BlueStacksUninstaller.exe
2018-06-17 15:35 - 2018-06-17 15:35 - 000010256 _____ () C:\Users\Seniorbrayan\AppData\Local\Temp\BullseyeCoverage-2-x64.dll
2018-06-17 15:33 - 2018-06-17 15:33 - 000008720 _____ () C:\Users\Seniorbrayan\AppData\Local\Temp\BullseyeCoverage-2-x86.dll
2018-01-10 18:38 - 2018-01-10 18:42 - 017936808 _____ (Ellora Assets Corporation                                   ) C:\Users\Seniorbrayan\AppData\Local\Temp\FreemakeVideoDownloaderFull.exe
2018-10-15 02:09 - 2018-10-09 02:57 - 000999432 _____ (BlueStack Systems, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\HD-Common.dll
2018-09-08 15:59 - 2018-09-08 15:59 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-105171041085255376.dll
2018-04-03 16:49 - 2018-04-03 16:49 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-1103573053942864148.dll
2018-08-24 15:59 - 2018-08-24 15:59 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-1380850690840896310.dll
2018-07-24 15:53 - 2018-07-24 15:53 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-1766624620712202694.dll
2019-01-18 20:23 - 2019-01-18 20:23 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-179181501575082865.dll
2018-09-07 22:24 - 2018-09-07 22:24 - 000019968 _____ (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-1811573497735853371.dll
2018-04-03 17:26 - 2018-04-03 17:26 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-3166823144456414641.dll
2018-04-03 17:34 - 2018-04-03 17:34 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-3376248009030167847.dll
2018-07-08 21:11 - 2018-07-08 21:11 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-364270393055140055.dll
2018-04-03 16:54 - 2018-04-03 16:54 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-401164620343196908.dll
2018-04-03 16:50 - 2018-04-03 16:50 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-5049381704877134387.dll
2019-01-18 22:13 - 2019-01-18 22:13 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-5505109369765097115.dll
2018-04-03 16:54 - 2018-04-03 16:54 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-6402674476939187733.dll
2019-01-18 20:12 - 2019-01-18 20:12 - 000019968 _____ (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-6559232936513318233.dll
2018-06-17 16:47 - 2018-06-17 16:47 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-6882261829697735249.dll
2018-06-26 21:10 - 2018-06-26 21:10 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-7301403518998462380.dll
2018-04-04 14:46 - 2018-04-04 14:46 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-7382030158145992771.dll
2018-07-02 14:23 - 2018-07-02 14:23 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-7740933017855144662.dll
2018-09-07 23:03 - 2018-09-07 23:03 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-7769667029337219271.dll
2018-06-17 17:02 - 2018-06-17 17:02 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-8114322276334771118.dll
2018-07-24 15:40 - 2018-07-24 15:40 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-8701117442762486038.dll
2018-05-05 18:10 - 2018-05-05 18:10 - 001884616 _____ (Oracle Corporation) C:\Users\Seniorbrayan\AppData\Local\Temp\jre-8u171-windows-au.exe
2018-08-17 17:46 - 2018-08-17 17:46 - 001906040 _____ (Oracle Corporation) C:\Users\Seniorbrayan\AppData\Local\Temp\jre-8u181-windows-au.exe
2018-10-15 02:09 - 2018-10-09 02:57 - 000421472 _____ (CodeTitans) C:\Users\Seniorbrayan\AppData\Local\Temp\JSon.dll
2017-11-23 19:33 - 2010-11-20 20:24 - 000837632 _____ (Microsoft Corporation) C:\Users\Seniorbrayan\AppData\Local\Temp\kernel32.dll
2018-02-22 16:57 - 2018-02-22 16:57 - 000737280 _____ () C:\Users\Seniorbrayan\AppData\Local\Temp\sqlite-3.8.11.2-43961f6f-c8bb-4823-981b-a3e81e5eab7a-sqlitejdbc.dll
2018-02-26 15:51 - 2018-02-26 15:51 - 000737280 ____N () C:\Users\Seniorbrayan\AppData\Local\Temp\sqlite-3.8.11.2-b8ca9eef-3321-46e4-9bb1-0088f3223e4e-sqlitejdbc.dll
2018-04-19 16:54 - 2018-04-19 16:54 - 000737280 ____N () C:\Users\Seniorbrayan\AppData\Local\Temp\sqlite-3.8.11.2-eea9d09f-15c0-46bb-a0ef-6637fdc11d07-sqlitejdbc.dll

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\dllhost.exe => File is digitally signed
C:\Windows\SysWOW64\dllhost.exe => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2019-01-23 17:20

==================== End of FRST.txt ============================

#6

Y el addition:

Additional     scan result of Farbar Recovery Scan Tool (x64) Version: 30.01.2019
Ran by Seniorbrayan (31-01-2019 00:29:40)
Running from C:\Users\Seniorbrayan\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2017-06-04 18:43:51)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-1615820223-3353691301-1937506479-500 - Administrator - Disabled)
Invitado (S-1-5-21-1615820223-3353691301-1937506479-501 - Limited - Disabled)
Seniorbrayan (S-1-5-21-1615820223-3353691301-1937506479-1000 - Administrator - Enabled) => C:\Users\Seniorbrayan

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Malwarebytes (Disabled - Out of date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-1615820223-3353691301-1937506479-1000\...\uTorrent) (Version: 3.5.0.44294 - BitTorrent Inc.)
3DP Chip Lite v17.05 (HKLM-x32\...\3DP Chip Lite) (Version: v17.05 - 3DP)
4K Video Downloader 4.4 (HKLM-x32\...\{AA5C80E7-8876-4026-A0D0-582D8EFBA2E1}) (Version: 4.4.7.2307 - Open Media LLC)
Action! (HKLM-x32\...\Mirillis Action!) (Version: 1.18.0 - Mirillis)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.205 - Adobe Systems Incorporated)
Adobe Flash Player 30 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 30.0.0.154 - Adobe Systems Incorporated)
Adobe Flash Player ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 9.0.45.0 - Adobe Systems Incorporated)
Android SDK Tools (HKLM-x32\...\Android SDK Tools) (Version: 1.16 - Google Inc.)
Android Studio (HKLM\...\Android Studio) (Version: 1.0 - Google Inc.)
Atheros Bluetooth Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.4.0.126 - Atheros)
aTube Catcher versión 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Audacity 2.1.3 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.3 - Audacity Team)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.4.136.333 - AVAST Software) Hidden
Brackets (HKLM-x32\...\{0AE22FBF-578D-45D9-9E2D-9678512154AC}) (Version: 1.13.17699 - brackets.io)
Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version:  - )
Canon MP Navigator EX 4.1 (HKLM-x32\...\MP Navigator EX 4.1) (Version:  - )
Canon MX360 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX360_series) (Version:  - )
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version:  - )
Canon Solution Menu EX (HKLM-x32\...\CanonSolutionMenuEX) (Version:  - )
Canon Utilidad de marcación rápida (HKLM-x32\...\Speed Dial Utility) (Version:  - )
CCleaner (HKLM\...\CCleaner) (Version: 5.46 - Piriform)
Championify (HKU\S-1-5-21-1615820223-3353691301-1937506479-1000\...\Championify) (Version: 2.1.5 - Dustin Blackman)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
CodeBlocks (HKU\S-1-5-21-1615820223-3353691301-1937506479-1000\...\CodeBlocks) (Version: 16.01 - The Code::Blocks Team)
Cuphead (HKLM-x32\...\Cuphead_is1) (Version:  - )
DAEMON Tools Pro (HKLM\...\DAEMON Tools Pro) (Version: 8.2.0.0708 - Disc Soft Ltd)
Dell System Detect (HKU\S-1-5-21-1615820223-3353691301-1937506479-1000\...\d24084d039586cae) (Version: 8.5.0.4 - Dell)
Dell WLAN and Bluetooth Client Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 9.0 - Dell Inc.)
Discord (HKU\S-1-5-21-1615820223-3353691301-1937506479-1000\...\Discord) (Version: 0.0.304 - Discord Inc.)
Eines de correcció del Microsoft Office 2013: català (HKLM\...\{90150000-001F-0403-1000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Epic Games Launcher (HKLM-x32\...\{9B504F12-DA3B-4CEC-A6FD-B07D6C1FEA26}) (Version: 1.1.167.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Ferramentas de verificación de Microsoft Office 2013 - Galego (HKLM\...\{90150000-001F-0456-1000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
FileZilla Client 3.38.1 (HKLM-x32\...\FileZilla Client) (Version: 3.38.1 - Tim Kosse)
FormatFactory 4.1.0.0 (HKLM-x32\...\FormatFactory) (Version: 4.1.0.0 - Free Time)
GameRanger (HKU\S-1-5-21-1615820223-3353691301-1937506479-1000\...\GameRanger) (Version:  - GameRanger Technologies)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version:  - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
Herramienta de descarga USB/DVD de Windows 7 (HKLM-x32\...\{266F443F-A296-406F-9EE8-DF4A1061C6CE}) (Version: 1.0.30 - Microsoft Corporation)
Hextech Repair Tool (HKLM-x32\...\{7F9A97E6-E666-11E5-B582-B88687E82322}) (Version: 1.1.91 - Riot Games, Inc.)
Horizon (HKLM-x32\...\{6b384f34-10c8-4c10-ba08-345168bda7e8}) (Version: 2.9.0 - Daring Development Inc.)
Horizon (HKLM-x32\...\{6BCA2AC7-7BC2-4011-BE10-143BDFD43D6C}) (Version: 2.9.0 - Daring Development Inc.) Hidden
Hotspot Shield 7.0.6 (HKLM-x32\...\{AF599C42-A2E5-4251-B7EE-4925C1270CD2}) (Version: 7.0.6.10671 - AnchorFree Inc.) Hidden
Hotspot Shield 7.0.6 (HKLM-x32\...\HotspotShield) (Version: 7.0.6 - AnchorFree Inc.) Hidden
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Java 7 Update 75 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417075FF}) (Version: 7.0.750 - Oracle)
Java 8 Update 181 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180181F0}) (Version: 8.0.1810.13 - Oracle Corporation)
Java SE Development Kit 8 Update 111 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180111}) (Version: 8.0.1110.14 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\{525E2F2D-F698-4567-825F-8177C2702494}) (Version: 4.1.2 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 4.1.2) (Version: 4.1.2 - Riot Games)
Malwarebytes versión 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes)
MEmu (HKLM-x32\...\MEmu) (Version: 3.6.2.0 - Microvirt Software Technology Co. Ltd.)
Microsoft .NET Framework 4.6 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
MiPony 2.5.3 (HKLM-x32\...\MiPony) (Version: 2.5.3 - )
NetBeans IDE 8.2 (HKLM\...\nbi-nb-base-8.2.0.0.201609300101) (Version: 8.2 - NetBeans.org)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.3.3 - Notepad++ Team)
NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 19.0.3 - OBS Project)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OpenOffice 4.1.3 (HKLM-x32\...\{EF451311-C2EC-4245-911F-4847C2294A82}) (Version: 4.13.9783 - Apache Software Foundation)
Oracle VM VirtualBox 5.2.18 (HKLM\...\{F96A4E32-02CB-40E9-91C1-EE679237E107}) (Version: 5.2.18 - Oracle Corporation)
osu! (HKLM-x32\...\{8025673c-f68a-4f95-b460-f7bd058b17e7}) (Version: latest - ppy Pty Ltd)
Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Paquete de controladores de Windows - Realtek (RTL8167) Net  (12/23/2016 7.104.1223.2016) (HKLM\...\8FE7583BA3BE7DC67C5AE21C06F30A7E65FB3C21) (Version: 12/23/2016 7.104.1223.2016 - Realtek)
PokeMMO (HKLM\...\PokeMMO_is1) (Version:  - PokeMMO)
PuTTY release 0.70 (64-bit) (HKLM\...\{45B3032F-22CC-40CD-9E97-4DA7095FA5A2}) (Version: 0.70.0.0 - Simon Tatham)
QuickTime (HKLM-x32\...\{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}) (Version: 7.60.92.0 - Apple Inc.)
Registro de usuario de Canon MX360 series (HKLM-x32\...\Registro de usuario de Canon MX360 series) (Version:  - )
Revisores de Texto do Microsoft Office 2013 – Português do Brasil (HKLM\...\{90150000-001F-0416-1000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
RiftGG (HKLM-x32\...\{e891ae9a-c01f-49fc-990a-40ea5dd0cf18}) (Version: 2.0.0.50 - Fluendo S.A.)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.51.0 - SAMSUNG Electronics Co., Ltd.)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version:  - )
Splash PRO EX (HKLM-x32\...\Mirillis Splash PRO EX) (Version: 1.13.2 - Mirillis)
Spotify (HKU\S-1-5-21-1615820223-3353691301-1937506479-1000\...\Spotify) (Version: 1.0.98.78.gb45d2a6b - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Streamlabs OBS 0.11.11 (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.11.11 - General Workings, Inc.)
SURVEY_PROGRAM (HKU\S-1-5-21-1615820223-3353691301-1937506479-1000\...\SURVEY_PROGRAM) (Version:  - )
TELL ME MORE (HKLM-x32\...\TMM90) (Version:  - )
Terraria v1.3.5.3 Rus (HKLM-x32\...\vsetop.com Terraria v1.3.5.3 Rus_is1) (Version: 1.3.5.3 Rus - VseTop.Com)
Unreal Development Kit: 2012-10 (HKLM\...\UDK-edf1ed4a-ddbd-470f-b771-b748ff727735) (Version:  - Epic Games, Inc.)
Uplay (HKLM-x32\...\Uplay) (Version: 46.0 - Ubisoft)
Vegas Pro 12.0 (64-bit) (HKLM\...\{A278E021-9C9F-11E2-A232-F04DA23A5C58}) (Version: 12.0.563 - Sony)
Vivaldi (HKU\S-1-5-21-1615820223-3353691301-1937506479-1000\...\Vivaldi) (Version: 1.10.867.42 - Vivaldi)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
VTFEdit 1.2.5 (HKLM-x32\...\VTFEdit_is1) (Version:  - Neil Jedrzejewski & Ryan Gregg)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
XAMPP (HKLM-x32\...\xampp) (Version: 7.1.7-0 - Bitnami)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1615820223-3353691301-1937506479-1000_Classes\CLSID\{087B3AE3-E237-4467-B8DB-5A38AB959AC9}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-1615820223-3353691301-1937506479-1000_Classes\CLSID\{3B092F0C-7696-40E3-A80F-68D74DA84210}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-1615820223-3353691301-1937506479-1000_Classes\CLSID\{63542C48-9552-494A-84F7-73AA6A7C99C1}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-1615820223-3353691301-1937506479-1000_Classes\CLSID\{7BC0E710-5703-45BE-A29D-5D46D8B39262}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\ooofilt_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-1615820223-3353691301-1937506479-1000_Classes\CLSID\{AE424E85-F6DF-4910-A6A9-438797986431}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\propertyhdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-1615820223-3353691301-1937506479-1000_Classes\CLSID\{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2017-03-07] ()
ContextMenuHandlers1: [Atheros] -> {B8952421-0E55-400B-94A6-FA858FC0A39F} => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvAppExt.dll [2012-03-08] (Atheros Commnucations)
ContextMenuHandlers1: [FormatFactoryShell] -> {A3777921-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_103.dll [2013-06-17] (Free Time)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDrive] -> {A5415364-784A-41A5-B47A-D452909CA8FF} => C:\Program Files\DAEMON Tools Pro\DTShl64.dll [2017-05-17] (Disc Soft Ltd)
ContextMenuHandlers3: [DaemonShellExtImage] -> {40966797-8FFE-46C8-9EF8-7003F33CCF0F} => C:\Program Files\DAEMON Tools Pro\DTShl64.dll [2017-05-17] (Disc Soft Ltd)
ContextMenuHandlers3: [FTShellContext] -> {AFF81F7B-6942-40c4-AADA-7214EF7B6DD1} => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\ShellContextExt.dll [2012-03-08] (Atheros Commnucations)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
ContextMenuHandlers4: [FormatFactoryShell] -> {A3777921-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_103.dll [2013-06-17] (Free Time)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2015-05-26] (Intel Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {01C76D9B-83B2-44FC-BD1B-FF9421DFD62C} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe
Task: {15FE9BFE-F278-49F1-B87A-A9CD9AA5D047} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_154_pepper.exe [2018-08-18] (Adobe Systems Incorporated)
Task: {17EA8C76-B39E-4FC7-9D93-759482C047CE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-06-04] (Google Inc.)
Task: {1BE5D560-F99C-401A-96B0-1BEF747B5FD7} - System32\Tasks\{03B9A3D5-365D-4FCD-9819-C2B3A7AE8A45} => C:\Windows\system32\pcalua.exe -a "C:\Users\Seniorbrayan\Desktop\instalar\dotnetfx35setup (2).exe" -d C:\Users\Seniorbrayan\Desktop\instalar
Task: {27F80AD2-3CAC-41CD-AC5B-1EC908880F45} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-06-04] (Google Inc.)
Task: {6555D339-109E-4BA2-B827-EC7EF3715D9C} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-09-06] (Piriform Ltd)
Task: {7F640924-1A0C-4548-8BCD-E046615DCE9D} - System32\Tasks\{17CDE09B-78F4-4E63-801D-519B599EF64C} => C:\Windows\system32\pcalua.exe -a "C:\Users\Seniorbrayan\Downloads\dotnetfx35setup (1).exe" -d C:\Users\Seniorbrayan\Downloads
Task: {824CEC83-4476-4CE5-ADCF-DB0B2F6D978F} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2019-01-17] (AVAST Software)
Task: {88E6EFC0-DA2D-4952-8998-41801BBA68C0} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-09-06] (Piriform Ltd)
Task: {A26E5BF2-76EC-470A-B9F8-FF73D9DBD313} - System32\Tasks\AdobeGCInvoker-1.0-Señorbrayan-Seniorbrayan => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-12-13] (Adobe Systems, Incorporated)
Task: {A85DDB67-A5C8-427B-BEC2-330E25D6025A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {C4CE272E-0127-4958-818B-D024A8629687} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {CC4E7107-594D-4EC9-9B9C-4141EBBC2750} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
Task: {D09C11EE-F6E1-42C9-A7F1-2DA61B610277} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
Task: {D905CB8F-9CBC-46D2-90DB-7C3278B8DA64} - System32\Tasks\AdobeAAMUpdater-1.0-Señorbrayan-Seniorbrayan => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
Task: {F57EDDE8-9E49-4B26-BAAA-3E41E6B1F737} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

ShortcutWithArgument: C:\Users\Seniorbrayan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> -process-per-site

==================== Loaded Modules (Whitelisted) ==============

2018-10-27 10:48 - 2018-10-27 10:48 - 000054440 _____ () C:\Program Files\FileZilla FTP Client\fzshellext_64.dll
2017-03-07 19:42 - 2017-03-07 19:42 - 000230064 _____ () C:\Program Files\Notepad++\NppShell_06.dll
2015-05-26 20:50 - 2015-05-26 20:50 - 000094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2018-12-18 00:36 - 2018-12-11 22:11 - 005237216 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\libglesv2.dll
2018-12-18 00:36 - 2018-12-11 22:11 - 000117216 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Windows:CM_19eafbed2e5c22a84b131f38305ac75313a8de243df0836e0998844693ddf628 [74]
AlternateDataStreams: C:\Windows:CM_4386cde8041021fcce7b68f16f65ad5e6b497148db8fa4b297dc7a4ec19852ba [74]
AlternateDataStreams: C:\Windows:CM_599e40e338059b7c8201d84b6a6f021a4177c11e44d72cdd6d7af9f4fe138d3a [74]
AlternateDataStreams: C:\Windows:CM_aff357f688ff5f5fb57d8ec59ea9300afda1490d4f8cebb9bb96f3edff5eb67d [74]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [474]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-1615820223-3353691301-1937506479-1000\...\dell.com -> dell.com

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 19:34 - 2019-01-04 02:13 - 000000826 _____ C:\Windows\system32\drivers\etc\hosts


2018-11-12 15:43 - 2019-01-31 00:22 - 000000437 _____ C:\Windows\system32\drivers\etc\hosts.ics

192.168.0.1 Se�orbrayan.mshome.net # 2023 11 3 29 4 36 55 212

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: %INTEL_DEV_REDIST%redist\intel64\compiler;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%CommonProgramFiles%\Microsoft Shared\Windows Live;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\QuickTime\QTSystem\;C:\Program Files\PuTTY\;C:\Program Files (x86)\Brackets\command
HKCU\Environment\\Path: %INTEL_DEV_REDIST%redist\intel64\compiler;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%CommonProgramFiles%\Microsoft Shared\Windows Live;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\QuickTime\QTSystem\;C:\Program Files\PuTTY\;C:\Program Files (x86)\Brackets\command
HKU\S-1-5-21-1615820223-3353691301-1937506479-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Seniorbrayan\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{326D49DD-B5B0-498C-A438-F14AE1CD6EB5}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation)
FirewallRules: [{E680A498-449F-463A-930B-0B65C029755E}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation)
FirewallRules: [{5AD4147D-D39E-4EDB-8BF5-BC0B7B5A6721}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation)
FirewallRules: [{04030DB4-437B-486B-9A92-35251F3E11CF}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation)
FirewallRules: [{7F9E147D-63AB-4629-A5C0-545F17A15D9D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
FirewallRules: [{134A38D9-40A8-4AE2-A8F6-1CD50A12E687}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
FirewallRules: [{15860ACD-70F0-4B77-B0BE-0DF875164466}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{260DCDC1-0202-452F-8696-AAED63A43939}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [TCP Query User{D5E6B4F6-4544-4469-9199-09A736612D0B}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe No File
FirewallRules: [UDP Query User{5E61F522-CEAE-4F60-B1A0-D5A9C4E14562}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe No File
FirewallRules: [{3D3794F5-A2D0-4AE5-BC8B-D2366E867A00}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ambre - a heartbreaking kinetic novel\Ambre_-_Steam_Edition.exe ()
FirewallRules: [{CBAA7649-23C3-427F-AA38-641800EFB2C7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ambre - a heartbreaking kinetic novel\Ambre_-_Steam_Edition.exe ()
FirewallRules: [{E7B177D6-EB24-4876-9316-2700EE53EDF2}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd.)
FirewallRules: [{A09BDEA3-4916-4D09-8A07-A15B8F6C377A}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd.)
FirewallRules: [{F06460F3-A71B-455B-B89F-513702ADB094}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd.)
FirewallRules: [{ECDE4E68-621E-4CAF-A835-36E12A4327E9}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd.)
FirewallRules: [{1C727DCD-158F-4AAA-B95A-B48F05E61C90}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Package\PTInstOnline.exe (Free Time)
FirewallRules: [TCP Query User{76F7A54B-6103-471B-8ACE-93E15282294D}C:\programdata\oracle\java\javapath_target_16915235\javaw.exe] => (Allow) C:\programdata\oracle\java\javapath_target_16915235\javaw.exe No File
FirewallRules: [UDP Query User{D863352B-8D2C-4C9A-A9D8-6B785CC23CDE}C:\programdata\oracle\java\javapath_target_16915235\javaw.exe] => (Allow) C:\programdata\oracle\java\javapath_target_16915235\javaw.exe No File
FirewallRules: [TCP Query User{534FADE6-181C-4348-96BC-7F55304E2073}C:\program files\java\jre1.8.0_131\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_131\bin\javaw.exe No File
FirewallRules: [UDP Query User{F6E0839D-EDD7-4C26-BDED-8D6A97E4BFA2}C:\program files\java\jre1.8.0_131\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_131\bin\javaw.exe No File
FirewallRules: [{AD693E3E-91E3-44F9-8674-289253D1C858}] => (Allow) C:\Users\Seniorbrayan\Desktop\emulador\KOPLAYER\download\MiniThunderPlatform.exe No File
FirewallRules: [{998EEBB1-FEC7-4B0E-888E-BAA228FE12A3}] => (Allow) C:\Users\Seniorbrayan\Desktop\emulador\KOPLAYER\download\MiniThunderPlatform.exe No File
FirewallRules: [{8EA3ABDD-D0D5-43CD-9D46-94EFA0E458CE}] => (Allow) C:\Users\Seniorbrayan\Desktop\emulador\KOPLAYER\vbox\VBoxManage.exe No File
FirewallRules: [{EB94FC18-C42D-468F-8F64-A6487FB7B41A}] => (Allow) C:\Users\Seniorbrayan\Desktop\emulador\KOPLAYER\vbox\VBoxManage.exe No File
FirewallRules: [{9C673D9C-0D22-4573-8876-01F213943846}] => (Allow) C:\Users\Seniorbrayan\Desktop\emulador\KOPLAYER\vbox\VBoxManage.exe No File
FirewallRules: [{BF3DF8C4-69BC-41B1-AECB-60D85191B2AC}] => (Allow) C:\Users\Seniorbrayan\Desktop\emulador\KOPLAYER\vbox\VBoxManage.exe No File
FirewallRules: [{E2E02BFB-129B-4690-AC5D-686C87712077}] => (Allow) C:\Users\Seniorbrayan\Desktop\emulador\KOPLAYER\vbox\VBoxHeadless.exe No File
FirewallRules: [{705EA038-946D-4EAD-8747-6606D17D5E20}] => (Allow) C:\Users\Seniorbrayan\Desktop\emulador\KOPLAYER\vbox\VBoxHeadless.exe No File
FirewallRules: [{9402BEEF-D18C-4114-94A6-70D5AF0987E9}] => (Allow) C:\Users\Seniorbrayan\Desktop\emulador\KOPLAYER\vbox\VBoxHeadless.exe No File
FirewallRules: [{DA2732B8-A9BA-4E74-9058-D711D9E919FB}] => (Allow) C:\Users\Seniorbrayan\Desktop\emulador\KOPLAYER\vbox\VBoxHeadless.exe No File
FirewallRules: [TCP Query User{CF1E367F-8204-4E46-9517-D74216D58CC7}C:\program files (x86)\idisplay\idisplay.exe] => (Allow) C:\program files (x86)\idisplay\idisplay.exe No File
FirewallRules: [UDP Query User{E98D1A09-D9D8-4DBF-A8B2-B35085EEE412}C:\program files (x86)\idisplay\idisplay.exe] => (Allow) C:\program files (x86)\idisplay\idisplay.exe No File
FirewallRules: [TCP Query User{762938BC-5B45-44D2-8189-98689829338A}C:\users\seniorbrayan\appdata\local\championify\app-2.0.4\championify.exe] => (Allow) C:\users\seniorbrayan\appdata\local\championify\app-2.0.4\championify.exe No File
FirewallRules: [UDP Query User{3978AF52-4AE1-468C-86D5-4D0D0F74ECA6}C:\users\seniorbrayan\appdata\local\championify\app-2.0.4\championify.exe] => (Allow) C:\users\seniorbrayan\appdata\local\championify\app-2.0.4\championify.exe No File
FirewallRules: [TCP Query User{7214184D-2F4A-4FD7-85D6-5BE02F6F479B}C:\users\seniorbrayan\appdata\roaming\gameranger\gameranger\gameranger.exe] => (Allow) C:\users\seniorbrayan\appdata\roaming\gameranger\gameranger\gameranger.exe (GameRanger Technologies)
FirewallRules: [UDP Query User{A452439F-5C25-4CB7-9D0C-03AF6CE34D30}C:\users\seniorbrayan\appdata\roaming\gameranger\gameranger\gameranger.exe] => (Allow) C:\users\seniorbrayan\appdata\roaming\gameranger\gameranger\gameranger.exe (GameRanger Technologies)
FirewallRules: [TCP Query User{35BDC9B6-E015-4299-A4FB-2227D075D7B2}C:\users\seniorbrayan\desktop\army men rts español\army men rts español por cristian619hbk1\amrts.exe] => (Allow) C:\users\seniorbrayan\desktop\army men rts español\army men rts español por cristian619hbk1\amrts.exe No File
FirewallRules: [UDP Query User{7F482F50-0B15-41B1-8472-9E0C1D91DAE2}C:\users\seniorbrayan\desktop\army men rts español\army men rts español por cristian619hbk1\amrts.exe] => (Allow) C:\users\seniorbrayan\desktop\army men rts español\army men rts español por cristian619hbk1\amrts.exe No File
FirewallRules: [TCP Query User{4F175821-A079-41F0-9DE0-C4304D902754}C:\users\seniorbrayan\desktop\impero\age of empires\age2_x1.exe] => (Block) C:\users\seniorbrayan\desktop\impero\age of empires\age2_x1.exe No File
FirewallRules: [UDP Query User{A158D320-0A02-4585-AD9A-624261493140}C:\users\seniorbrayan\desktop\impero\age of empires\age2_x1.exe] => (Block) C:\users\seniorbrayan\desktop\impero\age of empires\age2_x1.exe No File
FirewallRules: [TCP Query User{612DFF77-5C8C-43ED-A4F6-EE5724A2AE03}C:\users\seniorbrayan\desktop\impero\age of empires\empires2.exe] => (Block) C:\users\seniorbrayan\desktop\impero\age of empires\empires2.exe No File
FirewallRules: [UDP Query User{DE314051-8E6D-4BB4-AF06-6A41FBCD8799}C:\users\seniorbrayan\desktop\impero\age of empires\empires2.exe] => (Block) C:\users\seniorbrayan\desktop\impero\age of empires\empires2.exe No File
FirewallRules: [TCP Query User{FF5C4A43-3F17-451F-9466-0ABC57DEB39A}C:\windows\syswow64\dplaysvr.exe] => (Block) C:\windows\syswow64\dplaysvr.exe (Microsoft Corporation)
FirewallRules: [UDP Query User{5014AD2C-E2A9-4D28-9F16-3D447A1D1187}C:\windows\syswow64\dplaysvr.exe] => (Block) C:\windows\syswow64\dplaysvr.exe (Microsoft Corporation)
FirewallRules: [TCP Query User{11FC5884-23A4-43A2-B78A-47468F6E4DD2}C:\users\seniorbrayan\documents\impero\age of empires\age2_x1.exe] => (Allow) C:\users\seniorbrayan\documents\impero\age of empires\age2_x1.exe (Microsoft Corporation)
FirewallRules: [UDP Query User{15DCC91A-296D-43AF-95A5-6B6CCDFC01B3}C:\users\seniorbrayan\documents\impero\age of empires\age2_x1.exe] => (Allow) C:\users\seniorbrayan\documents\impero\age of empires\age2_x1.exe (Microsoft Corporation)
FirewallRules: [TCP Query User{CD34CA02-E688-4B04-A974-C057B945B2F1}C:\users\seniorbrayan\appdata\local\championify\app-2.0.5\championify.exe] => (Allow) C:\users\seniorbrayan\appdata\local\championify\app-2.0.5\championify.exe No File
FirewallRules: [UDP Query User{27C8DA74-59EB-4C99-8896-CAE181693E0D}C:\users\seniorbrayan\appdata\local\championify\app-2.0.5\championify.exe] => (Allow) C:\users\seniorbrayan\appdata\local\championify\app-2.0.5\championify.exe No File
FirewallRules: [{E0B92A69-E829-45CD-8E34-3002192D5358}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\If My Heart Had Wings\AdvHD.exe (MoeNovel)
FirewallRules: [{00EEE7AA-F446-4212-A42F-B543614CD2D0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\If My Heart Had Wings\AdvHD.exe (MoeNovel)
FirewallRules: [TCP Query User{381D153F-2241-4109-B993-935434776845}C:\users\seniorbrayan\appdata\local\vivaldi\application\vivaldi.exe] => (Allow) C:\users\seniorbrayan\appdata\local\vivaldi\application\vivaldi.exe (Vivaldi Technologies AS)
FirewallRules: [UDP Query User{26BA89D5-94B5-4181-AFC6-8D9C5C7BDA7B}C:\users\seniorbrayan\appdata\local\vivaldi\application\vivaldi.exe] => (Allow) C:\users\seniorbrayan\appdata\local\vivaldi\application\vivaldi.exe (Vivaldi Technologies AS)
FirewallRules: [TCP Query User{3D93A5FF-79CD-4A95-A64F-B45ED73B7BA1}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe ()
FirewallRules: [UDP Query User{519E1993-6805-4940-B292-4F42716B1F54}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe ()
FirewallRules: [TCP Query User{4AD92B5A-9CD6-4931-8F3F-0382D88D541A}C:\users\seniorbrayan\appdata\local\vivaldi\application\vivaldi.exe] => (Allow) C:\users\seniorbrayan\appdata\local\vivaldi\application\vivaldi.exe (Vivaldi Technologies AS)
FirewallRules: [UDP Query User{4902D2BF-67EF-4986-B574-D71D8A2B9108}C:\users\seniorbrayan\appdata\local\vivaldi\application\vivaldi.exe] => (Allow) C:\users\seniorbrayan\appdata\local\vivaldi\application\vivaldi.exe (Vivaldi Technologies AS)
FirewallRules: [TCP Query User{3037EEC7-1AEB-4A28-8247-D2506F5A6CC4}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation)
FirewallRules: [UDP Query User{1A31360A-E296-485A-A088-1389D3B8F8B9}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation)
FirewallRules: [{1D0C7727-3A26-44E5-AAD4-579D8195646A}] => (Block) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation)
FirewallRules: [{E2CEBDC0-C78A-4897-8CC6-281D85911606}] => (Block) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation)
FirewallRules: [TCP Query User{854C2B62-7B30-4402-95A6-8012EA0EB036}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe ()
FirewallRules: [UDP Query User{01948E52-22CF-4695-A6C4-263DBC6DAFE8}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe ()
FirewallRules: [TCP Query User{E0B8A836-AEF4-422D-BE90-2C36F8FBB4C5}C:\users\seniorbrayan\appdata\local\championify\app-2.0.8\championify.exe] => (Allow) C:\users\seniorbrayan\appdata\local\championify\app-2.0.8\championify.exe No File
FirewallRules: [UDP Query User{813D30BD-5418-40DE-B9A3-712655E5E13E}C:\users\seniorbrayan\appdata\local\championify\app-2.0.8\championify.exe] => (Allow) C:\users\seniorbrayan\appdata\local\championify\app-2.0.8\championify.exe No File
FirewallRules: [{8E7BE1E2-C620-4AD2-B110-96F5AE6E943A}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero BackItup\BackItUp.exe No File
FirewallRules: [{A7A91F3C-695E-4F67-B4CE-B1056C6750B8}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero BackItup\NBService.exe No File
FirewallRules: [{65D8ACBE-4EF8-4BF8-AF48-F6E8627610B1}] => (Allow) C:\Users\Seniorbrayan\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
FirewallRules: [{D39D9878-B63D-4384-B9E2-2C78DFB1808A}] => (Allow) C:\Users\Seniorbrayan\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
FirewallRules: [{F9AA4796-813D-4C40-AD62-DDF2A51A2F68}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe (DONTNOD Entertainment)
FirewallRules: [{52D00331-75E5-4769-BE22-500AAF066A7B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe (DONTNOD Entertainment)
FirewallRules: [{E23380F4-9DB6-47D9-947A-E38043C56028}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Surgeon Simulator\ss2013.exe ()
FirewallRules: [{8099675C-4D30-4862-8600-FAC271295E73}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Surgeon Simulator\ss2013.exe ()
FirewallRules: [TCP Query User{E06107CE-524F-42E6-93E3-264916C342E1}C:\users\seniorbrayan\appdata\local\championify\app-2.1.1\championify.exe] => (Allow) C:\users\seniorbrayan\appdata\local\championify\app-2.1.1\championify.exe No File
FirewallRules: [UDP Query User{35A9D817-98EA-4DB0-94E8-1E6CBC8D5AC6}C:\users\seniorbrayan\appdata\local\championify\app-2.1.1\championify.exe] => (Allow) C:\users\seniorbrayan\appdata\local\championify\app-2.1.1\championify.exe No File
FirewallRules: [TCP Query User{CB8BDA04-9633-4258-B729-86AB33BB4527}C:\program files (x86)\steam\steamapps\common\outlast\binaries\win64\olgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\outlast\binaries\win64\olgame.exe No File
FirewallRules: [UDP Query User{DA0EC244-6136-41B6-87E3-A046B1892711}C:\program files (x86)\steam\steamapps\common\outlast\binaries\win64\olgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\outlast\binaries\win64\olgame.exe No File
FirewallRules: [{D18A7095-072C-4E72-9768-E83CB3DB6FD5}] => (Allow) C:\Program Files (x86)\VoidElsword\VoidElsword\voidels.exe No File
FirewallRules: [{D975C2DA-DA11-4E40-9BF1-A911269899E4}] => (Allow) C:\Program Files (x86)\VoidElsword\VoidElsword\data\x2.exe No File
FirewallRules: [{093BB7F6-4BF1-4ABC-B4DD-4E8060DF0A21}] => (Allow) C:\Program Files (x86)\VoidElsword\VoidElsword\data\x2.exe No File
FirewallRules: [{B65248B3-A45B-4266-B82E-A7F1FED03A1A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Stanley Parable\stanley.exe ()
FirewallRules: [{DFBC40AD-C861-4DB2-A85E-B32EC320C9D4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Stanley Parable\stanley.exe ()
FirewallRules: [{6EF479F3-232D-4ADE-9AC4-52C60A6DF38A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Limbo\limbo.exe (Playdead)
FirewallRules: [{B3B6170B-B920-44B2-9311-5770ED711044}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Limbo\limbo.exe (Playdead)
FirewallRules: [{726F0A48-D23F-4089-9B7A-97067C502673}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\QUBE\Binaries\Win32\QUBE.exe (Epic Games, Inc.)
FirewallRules: [{7C91BAAB-0A40-4BC7-8038-36627231867F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\QUBE\Binaries\Win32\QUBE.exe (Epic Games, Inc.)
FirewallRules: [{FB9D7A1F-C50B-414E-B278-58786922C720}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\VRChat\VRChat.exe No File
FirewallRules: [{ABBEDF03-724D-48E6-AF15-95DE109E751F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\VRChat\VRChat.exe No File
FirewallRules: [{ED5CEBCA-4236-4EF1-8342-E001650EFA17}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skullgirls\SkullGirls.exe ()
FirewallRules: [{2B02760C-C990-4573-A5BE-1C3D7D2B438F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skullgirls\SkullGirls.exe ()
FirewallRules: [TCP Query User{06ABEBFF-27BD-42D0-8E72-6A8E06A8D29A}C:\program files\android\android studio\jre\bin\java.exe] => (Allow) C:\program files\android\android studio\jre\bin\java.exe (N/A)
FirewallRules: [UDP Query User{1F8B3E52-991E-4792-ACDC-9D60A2899CE0}C:\program files\android\android studio\jre\bin\java.exe] => (Allow) C:\program files\android\android studio\jre\bin\java.exe (N/A)
FirewallRules: [TCP Query User{49C0FC77-317B-4DB2-A890-39407CA2FA61}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe (Node.js)
FirewallRules: [UDP Query User{763302F3-C164-4C13-9A69-60C5D08544B7}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe (Node.js)
FirewallRules: [TCP Query User{CE42B427-0156-4CB1-B515-33C93ADF55F1}C:\program files\android\android studio\jre\bin\java.exe] => (Allow) C:\program files\android\android studio\jre\bin\java.exe (N/A)
FirewallRules: [UDP Query User{663D9A15-CC30-4E49-A39D-DA54C9BEFC2E}C:\program files\android\android studio\jre\bin\java.exe] => (Allow) C:\program files\android\android studio\jre\bin\java.exe (N/A)
FirewallRules: [TCP Query User{E20843CA-92A8-4305-AA1B-4B98AB1DE278}C:\program files\android\android studio\bin\studio64.exe] => (Allow) C:\program files\android\android studio\bin\studio64.exe (JetBrains s.r.o.)
FirewallRules: [UDP Query User{AEE87EE6-3154-4CCA-A2CC-8DEEF091AFFD}C:\program files\android\android studio\bin\studio64.exe] => (Allow) C:\program files\android\android studio\bin\studio64.exe (JetBrains s.r.o.)
FirewallRules: [TCP Query User{AE97F63E-A174-4F8F-8874-30D1254B6FB4}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe (Node.js)
FirewallRules: [UDP Query User{58A1430E-A35D-45E9-92A2-FEE976BD8F1A}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe (Node.js)
FirewallRules: [TCP Query User{BD786E36-D2EE-4E24-91C5-9E7DB6863698}C:\users\seniorbrayan\appdata\local\championify\app-2.1.3\championify.exe] => (Allow) C:\users\seniorbrayan\appdata\local\championify\app-2.1.3\championify.exe (Dustin Blackman)
FirewallRules: [UDP Query User{E95BC794-9C53-4032-A815-85E4F60389D0}C:\users\seniorbrayan\appdata\local\championify\app-2.1.3\championify.exe] => (Allow) C:\users\seniorbrayan\appdata\local\championify\app-2.1.3\championify.exe (Dustin Blackman)
FirewallRules: [TCP Query User{6A7D9692-80BC-4311-B6C6-9D5D501E01E6}C:\program files\android\android studio\bin\studio64.exe] => (Allow) C:\program files\android\android studio\bin\studio64.exe (JetBrains s.r.o.)
FirewallRules: [UDP Query User{06B0CFAE-6EA0-4992-A0CD-3CB3DCC4C504}C:\program files\android\android studio\bin\studio64.exe] => (Allow)

#7

Esta es la segunda parte por que en la anterior no me alcanzó, disculpe.

FirewallRules: [TCP Query User{E3C53F2F-C04F-4534-A581-F8DBDC8D0C8B}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{F25463A5-04C3-4FD4-8261-4659DD824EAA}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{33CF25B0-C717-4003-B992-0391A9B88666}C:\users\seniorbrayan\desktop\rosadintv_standalone (1)\archivos\python\python.exe] => (Allow) C:\users\seniorbrayan\desktop\rosadintv_standalone (1)\archivos\python\python.exe No File
FirewallRules: [UDP Query User{3FC82B15-03B0-4205-AC3B-CF9E012BB46D}C:\users\seniorbrayan\desktop\rosadintv_standalone (1)\archivos\python\python.exe] => (Allow) C:\users\seniorbrayan\desktop\rosadintv_standalone (1)\archivos\python\python.exe No File
FirewallRules: [TCP Query User{011B0191-CC4F-4EBF-88D4-6011332DCA7D}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.134\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.134\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{CDB9BA4B-FE82-4680-93EB-CF81C54746D9}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.134\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.134\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{2FDE0CAE-C8DC-409B-91FC-9B8C528A59AF}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{D64841CD-06C8-4F9B-B9E7-14AC4D31AC71}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe No File
FirewallRules: [{BFE71787-EC96-458F-8E17-D5CC0B0C00D6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe (BattlEye Innovations)
FirewallRules: [{D1D15E37-B8B0-4B02-A1CF-8275A0BC5274}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe (BattlEye Innovations)
FirewallRules: [{60535664-3860-40F7-BB7A-1A6186B33112}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe ()
FirewallRules: [{0528A385-7AEA-4855-9501-5526509CDD70}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe ()
FirewallRules: [{5EBFE8BF-1BF9-4A91-B0C8-CDFF42291443}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Super Meat Boy\SuperMeatBoy.exe ()
FirewallRules: [{3604F42A-7729-4554-8216-14AB721CD1C7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Super Meat Boy\SuperMeatBoy.exe ()
FirewallRules: [{36B048A1-4FF4-4B48-BD74-A9D8FAA1B431}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Binding Of Isaac\Isaac.exe (Edmund Mcmillen & Florian Himsl )
FirewallRules: [{AEDCC30A-31BD-4205-B62C-3E7DE51938A7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Binding Of Isaac\Isaac.exe (Edmund Mcmillen & Florian Himsl )
FirewallRules: [{971111CE-E4B4-48C7-A3AD-050D660AB199}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\You Have to Win the Game\TheGame.exe ()
FirewallRules: [{2855B0D6-37E0-4141-9E2F-5208C91070AC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\You Have to Win the Game\TheGame.exe ()
FirewallRules: [TCP Query User{748118C8-EC6B-4594-9124-B87C5E6D90CF}C:\program files\java\jre1.8.0_144\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_144\bin\javaw.exe No File
FirewallRules: [UDP Query User{31E5F973-EA3A-4F34-A47F-AB9A063A0268}C:\program files\java\jre1.8.0_144\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_144\bin\javaw.exe No File
FirewallRules: [{556BA39F-1334-4763-8F84-71964214C290}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Yume Nikki\yumenikki\RPG_RT.exe (KADOKAWA GAMES)
FirewallRules: [{9AEB34C6-D896-4BF3-9AF9-AA14C3C2F342}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Yume Nikki\yumenikki\RPG_RT.exe (KADOKAWA GAMES)
FirewallRules: [TCP Query User{5080FB9B-33FA-4A30-B935-0997A07C4109}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{B911D2C0-C665-48DA-A071-3278FB051520}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{47E71B96-A8E0-407E-A992-0184C8ECDA91}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{C1238100-8394-464F-9318-17BD0501A14C}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{A1A0FDC7-A8DE-4D6C-B5C8-90E58A8AFE90}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{2C174A62-492F-4787-BF56-CD670B8E5BA9}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{884AE402-C835-4170-9476-D537CB429169}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{836C4A5B-ED60-46BC-A335-643B35A34E10}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{8EFF09C7-5890-44CD-893C-017B829C4066}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{7728F498-457D-4573-B9EE-A162B1FAEA63}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{ABC18BF1-157A-431C-8C76-6655DE02C32B}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.146\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.146\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{B1494C33-22DD-4648-908B-C3F7FF9F8A35}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.146\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.146\deploy\leagueclient.exe No File
FirewallRules: [{51A5C886-4C22-46A8-8E4D-5C4BB51A346C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe No File
FirewallRules: [{476A2A7D-44FC-4B64-ABF3-796E31E8DA10}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe No File
FirewallRules: [TCP Query User{480F8630-417B-43C9-B62F-2FC6ABDC60BC}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{037D4C32-D80A-4FB8-99CE-0B3BEF021778}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{C9E09B79-52FE-4C98-8363-5D050DE72CF9}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{292C3364-67B5-4864-99C3-2AB2763A3831}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{311432C5-352D-4370-A06F-DE0055BDA68C}C:\program files (x86)\steam\steamapps\common\robocraft\robocraftclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\robocraft\robocraftclient.exe No File
FirewallRules: [UDP Query User{24FC162E-98BF-4CC3-9D8B-D1455B1624BB}C:\program files (x86)\steam\steamapps\common\robocraft\robocraftclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\robocraft\robocraftclient.exe No File
FirewallRules: [TCP Query User{DD366A3A-C255-4D94-8EBD-9032F169D897}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{1ED0EED1-9D24-4500-8D7C-F1F22FCABC2A}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe No File
FirewallRules: [{8A7DCD1D-C363-4415-9390-DF391ABB3545}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CastleCrashers\castle.exe ()
FirewallRules: [{AC0F23E7-0C1D-4B4E-9079-22D2AB59CED4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CastleCrashers\castle.exe ()
FirewallRules: [{7869CE9B-1A16-4925-A11A-4F45FCD4A7F0}] => (Allow) C:\Users\Seniorbrayan\Desktop\kek\KOPLAYER\KOPLAYER.exe No File
FirewallRules: [{A8E87968-0756-46D9-8E88-BE39B27D989D}] => (Allow) C:\Users\Seniorbrayan\Desktop\kek\KOPLAYER\vbox\VBoxHeadless.exe No File
FirewallRules: [{654790D0-46BA-4290-981D-6CD024B396AE}] => (Allow) C:\Users\Seniorbrayan\Desktop\kek\KOPLAYER\vbox\VBoxManage.exe No File
FirewallRules: [{5B868550-4BF0-4CFF-9D05-4A734EFD3553}] => (Allow) C:\Users\Seniorbrayan\Desktop\kek\KOPLAYER\KOPLAYER.exe No File
FirewallRules: [{3FFEDCD6-5A02-4DE6-BC74-6395224DC79C}] => (Allow) C:\Users\Seniorbrayan\Desktop\kek\KOPLAYER\vbox\VBoxHeadless.exe No File
FirewallRules: [{8C4C6B05-47BE-4901-B852-DBE735CDAF24}] => (Allow) C:\Users\Seniorbrayan\Desktop\kek\KOPLAYER\vbox\VBoxManage.exe No File
FirewallRules: [{CFFB7BDC-C5DE-4C5E-AEF5-C5952AAC532E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CastleMiner Z\CastleMinerZ.exe (DigitalDNA Games)
FirewallRules: [{FE784140-A13B-4EB1-80DE-C1AA5B460254}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CastleMiner Z\CastleMinerZ.exe (DigitalDNA Games)
FirewallRules: [{E6BDA5C6-2D39-4ABD-9BB9-C53306951143}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Ltd)
FirewallRules: [{1A83E00D-DE9C-4F9F-82DF-94A4D42030F5}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Ltd)
FirewallRules: [{7F20AA3D-E589-4F78-B918-57E94CE2A324}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe ()
FirewallRules: [{D4E09602-3970-4BDD-8397-1A4F344A3034}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe ()
FirewallRules: [TCP Query User{20D1FDF2-7831-480A-B67F-FD05D0C9CB6B}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{99593A95-D911-4F1F-AD6D-F93A1CC3528B}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{19A4CD8D-D03E-4F0C-8F49-FC5714E42969}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.167\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.167\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{1883A7C5-6172-4290-8B68-1D92C511E2F7}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.167\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.167\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{060B98BE-B8B3-4A91-87D8-19E94933427E}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{E6DB9D16-62DC-4C53-9F1E-D92DFF4BCA1A}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe No File
FirewallRules: [{AF8C68F7-E635-4055-923C-0EBC3B9D0907}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe No File
FirewallRules: [TCP Query User{B2062703-9532-498E-B362-3F56E4D982E9}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.170\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.170\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{F679E2A5-25C7-4478-A408-26DDB0A15BBF}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.170\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.170\deploy\leagueclient.exe No File
FirewallRules: [{23F589F9-A345-4B03-B676-55EFE4440C74}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corporation)
FirewallRules: [{E127CA19-E8F3-4B0E-B803-FA8287B13D73}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corporation)
FirewallRules: [TCP Query User{E719CED5-E801-4524-9973-FC76CF434F79}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.171\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.171\deploy\leagueclient.exe ()
FirewallRules: [UDP Query User{9E9B0E7F-0BA5-4AFF-93F4-04C1845DB73C}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.171\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.171\deploy\leagueclient.exe ()
FirewallRules: [TCP Query User{4148C142-C04A-4A9D-90BF-E8EF2C4F90B3}C:\program files (x86)\videolan\vlc\vlc.exe] => (Block) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN)
FirewallRules: [UDP Query User{8443A61E-EFE7-45FC-83BB-43EEFB4B15C2}C:\program files (x86)\videolan\vlc\vlc.exe] => (Block) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN)
FirewallRules: [TCP Query User{4E7AE98E-BA09-409A-9885-8C1CB9244AC9}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.172\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.172\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{0072D085-5B78-4B1D-9586-ABEAE662E4F4}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.172\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.172\deploy\leagueclient.exe No File
FirewallRules: [{66186331-9CF6-40DD-BDCC-1C08D0D3CCDB}] => (Allow) C:\Riot Games\League of Legends\LeagueClient.exe ()
FirewallRules: [{27744330-967A-4EEE-8739-759E40FBD10D}] => (Allow) C:\Riot Games\League of Legends\LeagueClient.exe ()
FirewallRules: [{0F996861-65CF-4BA5-ACF4-67C013E02DCE}] => (Allow) C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe ()
FirewallRules: [{AA8E7760-78EF-4347-94D2-859F7F86B47A}] => (Allow) C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe ()
FirewallRules: [TCP Query User{9A2EA792-1A87-4A61-8043-FC08EBAB0A27}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.174\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.174\deploy\leagueclient.exe ()
FirewallRules: [UDP Query User{25F52FFE-1746-43FA-98D6-5F5F776681BB}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.174\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.174\deploy\leagueclient.exe ()
FirewallRules: [{38689DB0-0F28-41D1-9651-84C6BC2087BA}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe No File
FirewallRules: [{C8E78F9F-8D6F-4235-B910-820D7EC273F4}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe No File
FirewallRules: [TCP Query User{618BC595-62BA-4F05-8DBA-320C18DA3F89}C:\users\seniorbrayan\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\seniorbrayan\appdata\roaming\spotify\spotify.exe (Spotify Ltd)
FirewallRules: [UDP Query User{9944A689-B40C-4146-B455-DE1A83068083}C:\users\seniorbrayan\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\seniorbrayan\appdata\roaming\spotify\spotify.exe (Spotify Ltd)
FirewallRules: [TCP Query User{8F03F991-DF56-4A74-B463-C35F575F6A70}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.175\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.175\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{25B9A16C-88A1-4C41-BCA7-7876B5384E86}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.175\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.175\deploy\leagueclient.exe No File
FirewallRules: [{4DD1549E-1541-451A-B69A-42C72020EEB0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cryptic Studios\Neverwinter.exe ()
FirewallRules: [{5AA666F9-DB13-4A3D-8514-A12B6F27528F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cryptic Studios\Neverwinter.exe ()
FirewallRules: [TCP Query User{7CAA360C-95FD-4D28-A7CB-199FDAEFFCF9}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.176\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.176\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{995843D1-313C-4DD7-BBDC-A09C9F36BC8C}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.176\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.176\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{2545DAC6-1EFE-4F8B-8B63-26A217354699}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.177\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.177\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{9C6F09A4-ECA9-46E5-8812-07C6F6BE9AEF}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.177\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.177\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{DDA12DA7-4DC0-441D-AD8B-71595F0EF84B}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{36666A87-B656-4799-8862-D3A0C713B47E}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe No File
FirewallRules: [{E51C3AEB-0760-4856-8713-87ABC73C5197}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
FirewallRules: [TCP Query User{A1F127E6-67D0-4CD2-8205-D52568252219}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
FirewallRules: [UDP Query User{F80F2840-332D-40C9-8A42-F61B9BA975FF}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
FirewallRules: [TCP Query User{77A59DC3-E722-450F-BA37-C226C60FA4A5}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe No File
FirewallRules: [UDP Query User{00B7212E-E241-4C39-97B1-C08D52BE5221}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe No File
FirewallRules: [{A8DB4D47-86F6-45EA-8FCB-FEA05A118DB3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe (Valve)
FirewallRules: [{8FEC917F-7AB9-4CD6-8A89-BA035A4967A2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe (Valve)
FirewallRules: [TCP Query User{C1BC16BE-12C3-4464-B2AE-820898958361}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{02020429-2AEE-424D-A53D-03A306658E36}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{96B9BAD4-0D27-442B-A5C5-B68D95C456D4}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{7FD8141D-E3BE-4439-BE59-D52C8CCA1CAE}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{5AEDB5DC-5E4B-4338-8319-146BA251354F}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe (Oracle Corporation)
FirewallRules: [UDP Query User{3592CE6A-4AB6-452F-962D-9223A1C83C16}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe (Oracle Corporation)
FirewallRules: [{3416EF8B-7C41-4386-95A4-BCCFB8E26E22}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe (Digital Extremes)
FirewallRules: [{CD603C43-12A2-4AA3-A321-03AFD6BBC959}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe (Digital Extremes)
FirewallRules: [{D57B0706-F94E-43BB-BBAC-AD9719CFF78F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe (Digital Extremes)
FirewallRules: [{412602D3-A993-48CD-83F5-45C48A29BDAC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe (Digital Extremes)
FirewallRules: [{73C106E4-700D-4311-8D89-6FADE903097F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe (Digital Extremes)
FirewallRules: [{C785E3D1-8ECA-4D30-8A23-2E6F94E17B90}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe ()
FirewallRules: [{D4DE8CB9-6D12-4EF9-A5ED-4032F9D827D0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe (Digital Extremes)
FirewallRules: [{A85308AF-3879-4619-B0E8-914B6567CAD9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe (Digital Extremes)
FirewallRules: [{465A7FA9-1BB6-4F22-97BE-1C9EF561A188}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe (Digital Extremes)
FirewallRules: [{78B20597-1A3A-493E-B3AA-2BF510C8BCCF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe (Digital Extremes)
FirewallRules: [{BDC9F2F6-9E79-4702-94C8-463733ECD407}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe (Digital Extremes)
FirewallRules: [{F51F8122-97C4-41E9-9253-380AE801035D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe ()
FirewallRules: [TCP Query User{8A07504B-B8F9-4EC0-A5FE-7AF59DF49CD3}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{8EDC6698-6A2B-4437-A8A2-1C9115E7E30F}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe No File

==================== Restore Points =========================


==================== Faulty Device Manager Devices =============

Name: Adaptador de minipuerto WiFi virtual de Microsoft
Description: Adaptador de minipuerto WiFi virtual de Microsoft
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: memudrv
Description: memudrv
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: memudrv
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Controladora de bus SM
Description: Controladora de bus SM
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (01/31/2019 12:24:15 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (01/31/2019 12:19:02 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (01/31/2019 12:12:45 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (01/31/2019 12:03:36 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (01/30/2019 11:48:24 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (01/30/2019 11:20:22 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (01/30/2019 10:14:37 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (01/30/2019 09:52:32 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Error al generar el contexto de activación para "C:\Program Files (x86)\Audacity\audacity.exe". Error en el archivo de manifiesto o directiva "" en la línea .
Una versión de componente requerida por la aplicación está en conflicto con la versión de otro componente activo.
Los componentes en conflicto son:.
Componente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Componente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.


System errors:
=============
Error: (01/31/2019 12:24:54 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio %1!s! Update Servicio (avast) no pudo iniciarse debido al siguiente error: 
El sistema no puede encontrar el archivo especificado.

Error: (01/31/2019 12:22:47 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio MEmusvc no pudo iniciarse debido al siguiente error: 
El sistema no puede encontrar el archivo especificado.

Error: (01/31/2019 12:22:47 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio memudrv no pudo iniciarse debido al siguiente error: 
El sistema no puede encontrar la ruta especificada.

Error: (01/31/2019 12:22:47 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Hotspot Shield Service no pudo iniciarse debido al siguiente error: 
El sistema no puede encontrar el archivo especificado.

Error: (01/31/2019 12:22:21 AM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: El controlador detectó un error interno del controlador en \Device\VBoxNetLwf.

Error: (01/31/2019 12:22:19 AM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: El controlador detectó un error interno del controlador en \Device\VBoxNetLwf.

Error: (01/31/2019 12:20:01 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio %1!s! Update Servicio (avast) no pudo iniciarse debido al siguiente error: 
El sistema no puede encontrar el archivo especificado.

Error: (01/31/2019 12:19:44 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la respuesta de transacción del servicio avast! Antivirus.


CodeIntegrity:
===================================

Date: 2019-01-19 16:57:09.605
Description: 
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys porque el hash del archivo no se encuentra en el sistema. Puede que un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.

Date: 2019-01-19 16:57:09.584
Description: 
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys porque el hash del archivo no se encuentra en el sistema. Puede que un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.

Date: 2019-01-19 16:47:42.350
Description: 
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys porque el hash del archivo no se encuentra en el sistema. Puede que un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.

Date: 2019-01-19 16:47:42.349
Description: 
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys porque el hash del archivo no se encuentra en el sistema. Puede que un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.

Date: 2019-01-19 16:47:42.346
Description: 
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys porque el hash del archivo no se encuentra en el sistema. Puede que un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.

Date: 2019-01-19 16:47:42.335
Description: 
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys porque el hash del archivo no se encuentra en el sistema. Puede que un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.

Date: 2019-01-19 16:47:09.385
Description: 
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys porque el hash del archivo no se encuentra en el sistema. Puede que un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.

Date: 2019-01-19 16:47:09.383
Description: 
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys porque el hash del archivo no se encuentra en el sistema. Puede que un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.

==================== Memory info =========================== 

Processor: Intel(R) Pentium(R) CPU B950 @ 2.10GHz
Percentage of memory in use: 58%
Total physical RAM: 4004.27 MB
Available physical RAM: 1658.91 MB
Total Virtual: 8006.74 MB
Available Virtual: 5846.38 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:379.53 GB) (Free:61.79 GB) NTFS
Drive d: (Datos) (Fixed) (Total:20.2 GB) (Free:5.01 GB) NTFS
Drive e: (cosas) (Fixed) (Total:65.93 GB) (Free:12.26 GB) NTFS
Drive h: (DV_L900EN20) (CDROM) (Total:5.31 GB) (Free:0 GB) CDFS

\\?\Volume{6bf410f3-4909-11e7-8490-806e6f6e6963}\ (Reservado para el sistema) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 8A87D900)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=379.5 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=20.2 GB) - (Type=0F Extended)
Partition 4: (Not Active) - (Size=65.9 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

#8

Primeramente comentar.

Tienes la mayoria de programas desactualizados y eso no es bueno para nada.

Ademas, tu sistema Windows, tiene todas las actualizaciones de Windows update??

Y , tu Malwarebytes, es free o de pago con proteccion residente??


Responde a estas cuestiones en tu proxima respuesta, junto a esto otro:

Bien… y ahora sigue estos pasos, MUY Importante ~ Realiza una copia de seguridad del registro :

  • Para hacerlo descarga Delfix en tu escritorio.

  • Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona "Ejecutar como Administrador.")

  • Atención, ahora marca/selecciona únicamente la casilla "Create registry backup", las demás NO

  • Pulsar en Run.

Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.


En el equipo con los demas programas cerrados:

Inicio >>> Ejecutar >>>Escribes notepad.exe.

Ahora copia y pega estos archivos dentro del Notepad:


Start
CreateRestorePoint:
CloseProcesses:

HKU\S-1-5-21-1615820223-3353691301-1937506479-1000\...\MountPoints2: H - H:\AurLaunch\LaunchScreen.exe
HKU\S-1-5-21-1615820223-3353691301-1937506479-1000\...\MountPoints2: {c9c3d2f8-1ea5-11e9-9020-24b6fd084903} - H:\AurLaunch\LaunchScreen.exe
HKU\S-1-5-21-1615820223-3353691301-1937506479-1000\...\MountPoints2: {e1aa7670-af7a-11e7-a658-24b6fd084903} - H:\setup.exe
HKU\S-1-5-21-1615820223-3353691301-1937506479-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
S2 avast; "C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /svc [X]
S3 avastm; "C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /medsvc [X]
S2 hshld; "C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe" [X]
C:\Program Files (x86)\AVAST Software
S3 AFTrafMgr1.3; \??\C:\Program Files (x86)\Hotspot Shield\bin\TrafMgr_1_3_64.sys [X]
S3 DxkgFilter; \??\C:\Program Files (x86)\iDisplay\idisplay.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
2019-01-31 00:22 - 2017-06-17 19:12 - 000000000 ____D C:\ProgramData\AVAST Software
2017-12-17 13:51 - 2017-12-30 20:13 - 000000000 _____ () C:\Users\Seniorbrayan\AppData\Local\Temp\2e7adecd915fad7ede6cff9c6c6e4e6e.dll
2017-12-17 13:51 - 2017-12-30 20:14 - 000000093 _____ () C:\Users\Seniorbrayan\AppData\Local\Temp\509055e8b8dc0d9f8193b1aee946c17e.dll
2018-10-15 02:09 - 2018-10-09 02:57 - 001205768 _____ (BlueStack Systems, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\BlueStacksUninstaller.exe
2018-06-17 15:35 - 2018-06-17 15:35 - 000010256 _____ () C:\Users\Seniorbrayan\AppData\Local\Temp\BullseyeCoverage-2-x64.dll
2018-06-17 15:33 - 2018-06-17 15:33 - 000008720 _____ () C:\Users\Seniorbrayan\AppData\Local\Temp\BullseyeCoverage-2-x86.dll
2018-01-10 18:38 - 2018-01-10 18:42 - 017936808 _____ (Ellora Assets Corporation                                   ) C:\Users\Seniorbrayan\AppData\Local\Temp\FreemakeVideoDownloaderFull.exe
2018-10-15 02:09 - 2018-10-09 02:57 - 000999432 _____ (BlueStack Systems, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\HD-Common.dll
2018-09-08 15:59 - 2018-09-08 15:59 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-105171041085255376.dll
2018-04-03 16:49 - 2018-04-03 16:49 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-1103573053942864148.dll
2018-08-24 15:59 - 2018-08-24 15:59 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-1380850690840896310.dll
2018-07-24 15:53 - 2018-07-24 15:53 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-1766624620712202694.dll
2019-01-18 20:23 - 2019-01-18 20:23 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-179181501575082865.dll
2018-09-07 22:24 - 2018-09-07 22:24 - 000019968 _____ (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-1811573497735853371.dll
2018-04-03 17:26 - 2018-04-03 17:26 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-3166823144456414641.dll
2018-04-03 17:34 - 2018-04-03 17:34 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-3376248009030167847.dll
2018-07-08 21:11 - 2018-07-08 21:11 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-364270393055140055.dll
2018-04-03 16:54 - 2018-04-03 16:54 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-401164620343196908.dll
2018-04-03 16:50 - 2018-04-03 16:50 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-5049381704877134387.dll
2019-01-18 22:13 - 2019-01-18 22:13 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-5505109369765097115.dll
2018-04-03 16:54 - 2018-04-03 16:54 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-6402674476939187733.dll
2019-01-18 20:12 - 2019-01-18 20:12 - 000019968 _____ (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-6559232936513318233.dll
2018-06-17 16:47 - 2018-06-17 16:47 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-6882261829697735249.dll
2018-06-26 21:10 - 2018-06-26 21:10 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-7301403518998462380.dll
2018-04-04 14:46 - 2018-04-04 14:46 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-7382030158145992771.dll
2018-07-02 14:23 - 2018-07-02 14:23 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-7740933017855144662.dll
2018-09-07 23:03 - 2018-09-07 23:03 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-7769667029337219271.dll
2018-06-17 17:02 - 2018-06-17 17:02 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-8114322276334771118.dll
2018-07-24 15:40 - 2018-07-24 15:40 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Seniorbrayan\AppData\Local\Temp\jansi-64-8701117442762486038.dll
2018-05-05 18:10 - 2018-05-05 18:10 - 001884616 _____ (Oracle Corporation) C:\Users\Seniorbrayan\AppData\Local\Temp\jre-8u171-windows-au.exe
2018-08-17 17:46 - 2018-08-17 17:46 - 001906040 _____ (Oracle Corporation) C:\Users\Seniorbrayan\AppData\Local\Temp\jre-8u181-windows-au.exe
2018-10-15 02:09 - 2018-10-09 02:57 - 000421472 _____ (CodeTitans) C:\Users\Seniorbrayan\AppData\Local\Temp\JSon.dll
2017-11-23 19:33 - 2010-11-20 20:24 - 000837632 _____ (Microsoft Corporation) C:\Users\Seniorbrayan\AppData\Local\Temp\kernel32.dll
2018-02-22 16:57 - 2018-02-22 16:57 - 000737280 _____ () C:\Users\Seniorbrayan\AppData\Local\Temp\sqlite-3.8.11.2-43961f6f-c8bb-4823-981b-a3e81e5eab7a-sqlitejdbc.dll
2018-02-26 15:51 - 2018-02-26 15:51 - 000737280 ____N () C:\Users\Seniorbrayan\AppData\Local\Temp\sqlite-3.8.11.2-b8ca9eef-3321-46e4-9bb1-0088f3223e4e-sqlitejdbc.dll
2018-04-19 16:54 - 2018-04-19 16:54 - 000737280 ____N () C:\Users\Seniorbrayan\AppData\Local\Temp\sqlite-3.8.11.2-eea9d09f-15c0-46bb-a0ef-6637fdc11d07-sqlitejdbc.dll
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.4.136.333 - AVAST Software) Hidden
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
Task: {CC4E7107-594D-4EC9-9B9C-4141EBBC2750} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
Task: {D09C11EE-F6E1-42C9-A7F1-2DA61B610277} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
Task: {7F640924-1A0C-4548-8BCD-E046615DCE9D} - System32\Tasks\{17CDE09B-78F4-4E63-801D-519B599EF64C} => C:\Windows\system32\pcalua.exe -a "C:\Users\Seniorbrayan\Downloads\dotnetfx35setup (1).exe" -d C:\Users\Seniorbrayan\Downloads
Task: {824CEC83-4476-4CE5-ADCF-DB0B2F6D978F} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2019-01-17] (AVAST Software)
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
ShortcutWithArgument: C:\Users\Seniorbrayan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> -process-per-site
AlternateDataStreams: C:\Windows:CM_19eafbed2e5c22a84b131f38305ac75313a8de243df0836e0998844693ddf628 [74]
AlternateDataStreams: C:\Windows:CM_4386cde8041021fcce7b68f16f65ad5e6b497148db8fa4b297dc7a4ec19852ba [74]
AlternateDataStreams: C:\Windows:CM_599e40e338059b7c8201d84b6a6f021a4177c11e44d72cdd6d7af9f4fe138d3a [74]
AlternateDataStreams: C:\Windows:CM_aff357f688ff5f5fb57d8ec59ea9300afda1490d4f8cebb9bb96f3edff5eb67d [74]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [474]


HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END

Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.<<

Nota: Es importante que la Hta Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no no trabajara.

  • Y ahora usa esta Faq de Windows ¿Cómo iniciar Windows en Modo Seguro?, para trabajar desde ese modo de windows.

  • Ejecutas Frst.exe.

  • Presionas el botón Fix y aguardas a que termine.

  • La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).

Lo pegas en tu próxima respuesta,