Como quitar un Pup Optional Legacy

Buenas, escribo porque tengo el mismo problema que cristobal y he seguido todos los pasos. Dejo los informes a continuación.

Malwarebytes
www.malwarebytes.com

-Detalles del registro-
Fecha del análisis: 11/7/19
Hora del análisis: 3:17
Archivo de registro: b22e6f8e-a379-11e9-8cb9-e0d55e2cab0f.json

-Información del software-
Versión: 3.6.1.2711
Versión de los componentes: 1.0.463
Versión del paquete de actualización: 1.0.6913
Licencia: Prueba

-Información del sistema-
SO: Windows 10 (Build 18362.239)
CPU: x64
Sistema de archivos: NTFS
Usuario: DESKTOP-0ER469Q\Usuario

-Resumen del análisis-
Tipo de análisis: Análisis de amenazas
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 316319
Amenazas detectadas: 150
Amenazas en cuarentena: 150
Tiempo transcurrido: 1 min, 2 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)

Módulo: 0
(No hay elementos maliciosos detectados)

Clave del registro: 3
Adware.Neoreklami.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\mrAArNosEtAJT2, En cuarentena, [10847], [526590],1.0.6913
Adware.Neoreklami.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{FFAF4EAE-20EB-4AD3-8DEB-CC75B674C16A}, En cuarentena, [10847], [526590],1.0.6913
Adware.Neoreklami.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{FFAF4EAE-20EB-4AD3-8DEB-CC75B674C16A}, En cuarentena, [10847], [526590],1.0.6913

Valor del registro: 2
PUP.Optional.ExtensionNSUU.Generic, HKLM\SOFTWARE\POLICIES\GOOGLE\CHROME\ExtensionInstallWhitelist|1, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, HKLM\SOFTWARE\WOW6432NODE\POLICIES\GOOGLE\CHROME\ExtensionInstallWhitelist|1, En cuarentena, [14321], [553092],1.0.6913

Datos del registro: 0
(No hay elementos maliciosos detectados)

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 66
PUP.Optional.MailRu, C:\Program Files (x86)\Mail.Ru\Update Service, En cuarentena, [239], [384138],1.0.6913
PUP.Optional.MailRu, C:\Program Files (x86)\Mail.Ru\MailRuUpdater, En cuarentena, [239], [384138],1.0.6913
PUP.Optional.MailRu, C:\PROGRAM FILES (X86)\MAIL.RU, En cuarentena, [239], [384138],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\es_419, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\en_GB, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\en_BS, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\pt_BR, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\en_US, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\pt_PT, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\zh_CN, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\zh_TW, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\fil, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\be, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\bg, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\bn, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\ca, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\cs, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\da, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\de, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\el, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\en, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\es, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\et, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\fa, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\fi, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\fr, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\gu, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\hi, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\hr, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\hu, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\id, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\it, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\ja, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\kn, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\ko, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\lt, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\lv, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\mk, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\ml, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\mr, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\ms, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\nl, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\no, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\pl, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\pt, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\he, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\ro, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\ru, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\sk, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\sl, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\sq, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\sr, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\sv, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\sw, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\ta, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\te, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\th, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\tr, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\uk, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\vi, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\am, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\ar, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\icons, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\USERS\USUARIO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\FFPFIAECFOBEADHIKDDAKKMAAPLIOKIB, En cuarentena, [14321], [553092],1.0.6913

Archivo: 79
PUP.Optional.MailRu, C:\Program Files (x86)\Mail.Ru\MailRuUpdater\MailRuUpdater.exe, En cuarentena, [239], [384138],1.0.6913
PUP.Optional.MailRu, C:\Program Files (x86)\Mail.Ru\Update Service\mrupdsrv.exe, En cuarentena, [239], [384138],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\WINDOWS\SYSTEM32\GROUPPOLICY\MACHINE\REGISTRY.POL, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\USERS\USUARIO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Sustituido, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\USERS\USUARIO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Preferences, Sustituido, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\USERS\USUARIO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\FFPFIAECFOBEADHIKDDAKKMAAPLIOKIB\1.3.0_0\MANIFEST.JSON, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\icons\ficon128.png, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\icons\icon128.png, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\icons\icon16.png, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\icons\icon48.png, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\he\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\am\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\ar\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\be\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\bg\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\bn\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\ca\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\cs\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\da\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\de\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\el\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\en\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\en_BS\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\en_GB\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\en_US\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\es\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\es_419\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\et\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\fa\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\fi\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\fil\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\fr\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\gu\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\hi\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\hr\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\hu\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\id\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\it\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\ja\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\kn\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\ko\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\lt\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\lv\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\mk\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\ml\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\mr\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\ms\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\nl\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\no\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\pl\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\pt\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\pt_BR\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\pt_PT\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\ro\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\ru\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\sk\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\sl\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\sq\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\sr\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\sv\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\sw\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\ta\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\te\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\th\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\tr\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\uk\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\vi\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\zh_CN\messages.json, En cuarentena, [14321], [553092],1.0.6913
PUP.Optional.ExtensionNSUU.Generic, C:\Users\Usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffpfiaecfobeadhikddakkmaapliokib\1.3.0_0\_locales\zh_TW\messages.json, En cuarentena, [14321], [553092],1.0.6913
Adware.Neoreklami.Generic, C:\WINDOWS\SYSTEM32\TASKS\mrAArNosEtAJT2, En cuarentena, [10847], [526590],1.0.6913
Trojan.KeyLogger, C:\USERS\USUARIO\APPDATA\LOCAL\TEMP\FMSYOEJEBZ53LTCM\SEESCENICELFQ.EXE, En cuarentena, [1668], [541002],1.0.6913
PUP.Optional.InstallCore, C:\USERS\USUARIO\DOWNLOADS\CHEAT-ENGINE-6-5-1.EXE, En cuarentena, [401], [500846],1.0.6913
Adware.Neoreklami.TskLnk, C:\PROGRAM FILES (X86)\VONNFJHTKIE\XRFA5D.DLL, En cuarentena, [1202], [521622],1.0.6913
PUP.Optional.ASK, C:\USERS\USUARIO\DOWNLOADS\ATUBE-CATCHER-3-8-8007-MULTI-WIN.EXE, En cuarentena, [2], [398182],1.0.6913
PUP.Optional.ASK, C:\USERS\USUARIO\DOWNLOADS\79750-698982-ATUBE-CATCHER.EXE, En cuarentena, [2], [398182],1.0.6913
Adware.Agent, C:\USERS\USUARIO\DOWNLOADS\MULTIHACK2 V1.RAR, En cuarentena, [103], [339806],1.0.6913
Adware.Agent.Python, C:\USERS\USUARIO\APPDATA\LOCAL\TEMP\FABIJRFMMRAKRJIA\1CC430381F7BA686A089D22EFDF617D5.EXE, En cuarentena, [1629], [497057],1.0.6913
PUP.Optional.InstallCore.Generic, C:\USERS\USUARIO\DOWNLOADS\INSTALLER_ATUBE_CATCHER.EXE, En cuarentena, [6152], [511843],1.0.6913
Adware.MailRu.BatBitRst, C:\USERS\USUARIO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Sustituido, [306], [481467],1.0.6913

Sector físico: 0
(No hay elementos maliciosos detectados)

WMI: 0
(No hay elementos maliciosos detectados)


(end)
# -------------------------------
# Malwarebytes AdwCleaner 7.3.0.0
# -------------------------------
# Build:    04-04-2019
# Database: 2019-04-03.1 (Local)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start:    07-11-2019
# Duration: 00:00:09
# OS:       Windows 10 Home
# Scanned:  27198
# Detected: 4


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

PUP.Optional.Mail.Ru            ???????? ???????? ? ????? ?? Mail.Ru
PUP.Optional.Mail.Ru            ?????

***** [ Chromium URLs ] *****

PUP.Optional.Legacy             http://start.mysearchdial.com/?f=1&a=vit_14_13_ch&cd=2XzuyEtN2Y1L1Qzu0FtD0B0FzyyBtDtB0Ezz0B0F0A0EyCtDtN0D0Tzu0SzztCyCtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCyEtDtAtDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StCtB0EyBzzyEyBzytGyD0DyEtDtG0DyCzzyEtG0Dzy0FtCtGyC0CyEyE0DtD0E0EtAzytC0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2StC0B0D0FzyyDyCyCtGyCyBtAyDtG0F0FyEtAtGzyyEzy0CtGtC0AzytA0BtAzz0CyD0B0ByD2Q&cr=217824680&ir=
PUP.Optional.MySearch           http://start.mysearchdial.com/?f=1&a=vit_14_13_ch&cd=2XzuyEtN2Y1L1Qzu0FtD0B0FzyyBtDtB0Ezz0B0F0A0EyCtDtN0D0Tzu0SzztCyCtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCyEtDtAtDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StCtB0EyBzzyEyBzytGyD0DyEtDtG0DyCzzyEtG0Dzy0FtCtGyC0CyEyE0DtD0E0EtAzytC0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2StC0B0D0FzyyDyCyCtGyCyBtAyDtG0F0FyEtAtGzyyEzy0CtGtC0AzytA0BtAzz0CyD0B0ByD2Q&cr=217824680&ir=

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.


AdwCleaner[S00].txt - [6584 octets] - [11/07/2019 02:35:24]
AdwCleaner[C00].txt - [5802 octets] - [11/07/2019 02:36:39]
AdwCleaner[S01].txt - [1443 octets] - [11/07/2019 02:40:13]
AdwCleaner[C01].txt - [1591 octets] - [11/07/2019 02:40:21]
AdwCleaner[S02].txt - [1494 octets] - [11/07/2019 02:41:39]
AdwCleaner[C02].txt - [1680 octets] - [11/07/2019 02:43:27]
AdwCleaner[S03].txt - [1687 octets] - [11/07/2019 02:44:42]
AdwCleaner[C03].txt - [1835 octets] - [11/07/2019 02:44:53]
AdwCleaner[S04].txt - [2594 octets] - [11/07/2019 02:48:09]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S05].txt ##########
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 10 Home x64 
Ran by Usuario (Administrator) on 11/07/2019 at  3:28:07,85
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 4 

Successfully deleted: C:\ProgramData\mntemp (File) 
Successfully deleted: C:\ProgramData\productdata (Folder) 
Successfully deleted: C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\k89ypoce.default\user.js (File) 
Successfully deleted: C:\WINDOWS\system32\Tasks\Driver Booster SkipUAC (Usuario) (Task)

Deleted the following from C:\Users\Usuario\AppData\Roaming\Mozilla\Firefox\Profiles\k89ypoce.default\prefs.js
user_pref(browser.startup.homepage, hxxps://inline.go.mail.ru/homepage?inline_comp=ffhp15.1.11.102&inline_hp_cnt=11956636);



Registry: 2 

Successfully deleted: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F5C0C11-7E68-4D65-868E-AE2BE9EEB44E} (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F5C0C11-7E68-4D65-868E-AE2BE9EEB44E} (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 11/07/2019 at  3:30:08,48
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 10-07-2019
Ran by Usuario (11-07-2019 03:32:02)
Running from C:\Users\Usuario\Desktop
Windows 10 Home Version 1903 18362.239 (X64) (2019-06-28 16:40:08)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-946916984-388769844-3380657554-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-946916984-388769844-3380657554-503 - Limited - Disabled)
Invitado (S-1-5-21-946916984-388769844-3380657554-501 - Limited - Disabled)
Usuario (S-1-5-21-946916984-388769844-3380657554-1002 - Administrator - Enabled) => C:\Users\Usuario
WDAGUtilityAccount (S-1-5-21-946916984-388769844-3380657554-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Out of date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

@BIOS B15.0630.1 (HKLM-x32\...\{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 3.00.0000 - GIGABYTE) Hidden
@BIOS B15.0630.1 (HKLM-x32\...\InstallShield_{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 3.00.0000 - GIGABYTE)
Actualización de NVIDIA 36.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 36.0.0.0 - NVIDIA Corporation) Hidden
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.223 - Adobe)
AMD Ryzen Master (HKLM\...\AMD Ryzen Master) (Version: 1.5.3.0902 - Advanced Micro Devices, Inc.)
Android Studio (HKLM\...\Android Studio) (Version: 1.0 - Google Inc.)
Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.0.4 - Electronic Arts, Inc.)
APP Center (HKLM-x32\...\{F3D47276-0E35-42CF-A677-B45118470E21}) (Version: 1.14.0110 - Gigabyte) Hidden
App Center (HKLM-x32\...\InstallShield_{F3D47276-0E35-42CF-A677-B45118470E21}) (Version: 1.14.0110 - Gigabyte)
aTube Catcher versión 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield™ V (HKLM-x32\...\{e26b382f-e945-4f70-9318-121b683f1d61}) (Version: 1.0.59.63793 - Electronic Arts)
Bethesda.net Launcher (HKLM-x32\...\{3448917E-E4FE-4E30-9502-9FD52EABB6F5}_is1) (Version: 1.45.14 - Bethesda Softworks)
Blitz (HKU\S-1-5-21-946916984-388769844-3380657554-1002\...\Blitz) (Version: 1.0.8 - Blitz Inc.)
BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.60.3.1001 - BlueStack Systems, Inc.)
BrLauncher (HKLM-x32\...\{42D26B47-887C-45FC-BCAE-0BE485C5C0BB}) (Version: 2.0.11.0 - Brother Industries Ltd.) Hidden
BrLogRx (HKLM-x32\...\{190861E7-09C5-42D8-BB4B-0AFB234BCFC1}) (Version: 1.0.3.1 - Brother Industries Ltd.) Hidden
Brother iPrint&Scan (HKLM-x32\...\{ED5378E9-6589-4A4B-8A27-27421DA1249F}) (Version: 4.2.1.0 - Brother Industries, Ltd.) Hidden
Brother iPrint&Scan (HKLM-x32\...\{fe307697-ad44-486e-8c41-391ba10d0522}) (Version: 4.2.1.0 - Brother Industries, Ltd.)
Brother Port Driver (HKLM-x32\...\{EEA8DF77-9D7E-421A-A9A8-A6E9894A18A3}) (Version: 1.0.3.3 - Brother Industries Ltd.) Hidden
Brother Printer Driver (HKLM-x32\...\{272543B6-B337-4C8F-B9F1-19E884C2C7AC}) (Version: 1.4.0.0 - Brother Industries Ltd.) Hidden
Brother Scanner Driver (HKLM-x32\...\{1162495D-7CE7-4EF9-A0F8-151196F3A660}) (Version: 1.0.17.1 - Brother Industries Ltd.) Hidden
BrSupportTools (HKLM-x32\...\{32F47565-84B1-42CC-B09A-4CDDD9A32F94}) (Version: 1.0.20.0 - Brother Industries Ltd.) Hidden
CAM (HKLM-x32\...\{F30BAF76-C7D2-4F0D-9823-703BBDA0931B}) (Version: 3.7.7 - NZXT)
CCleaner (HKLM\...\CCleaner) (Version: 5.58 - Piriform)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
ControlCenter4 (HKLM-x32\...\{9091B952-8719-49C3-9CC7-6E20EC61081F}) (Version: 4.6.6.1 - Brother Industries, Ltd.) Hidden
ControlCenter4 CSDK (HKLM-x32\...\{FD8A9511-BFC9-43B5-BB75-9CEC0EA03CF0}) (Version: 4.6.1.1 - Brother Industries, Ltd.) Hidden
CPUID CPU-Z Aorus 1.88 (HKLM\...\CPUID CPU-Z Aorus_is1) (Version: 1.88 - CPUID, Inc.)
CrystalDiskMark 6.0.1 (HKLM\...\CrystalDiskMark6_is1) (Version: 6.0.1 - Crystal Dew World)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.11.0.0939 - Disc Soft Ltd)
Discord (HKU\S-1-5-21-946916984-388769844-3380657554-1002\...\Discord) (Version: 0.0.305 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 417.35 - NVIDIA Corporation) Hidden
Doom 2016 MULTi10 - ElAmigos versión 6.66 (HKLM-x32\...\{6C967A93-A95F-4F65-A33A-EC8BC8750C2D}_is1) (Version: 6.66 - Bethesda Softworks)
EasyTune (HKLM-x32\...\{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.15.0626 - GIGABYTE) Hidden
EasyTune (HKLM-x32\...\InstallShield_{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.15.0626 - GIGABYTE)
Epic Games Launcher (HKLM-x32\...\{702995E8-B427-468C-8BC0-C944E421CEE3}) (Version: 1.1.163.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
EPSON SX235 Series Printer Uninstall (HKLM\...\EPSON SX235 Series) (Version:  - SEIKO EPSON Corporation)
Far Cry New Dawn Deluxe Edition MULTi15 - ElAmigos versión 1.0 (HKLM-x32\...\{A87B63D7-C2AD-4767-AD67-56FB8F16F7AA}_is1) (Version: 1.0 - Ubisoft)
FIFA 19 (HKLM-x32\...\{3391E07D-8484-4124-817E-FCBDA859FD62}) (Version: 1.0.59.41332 - Electronic Arts)
GameCtrl B15.0803.1 (HKLM-x32\...\{6BBE6CF2-84B2-4ECA-9ECA-C56925C1CCE2}) (Version: 1.00.0000 - GIGABYTE) Hidden
GameCtrl B15.0803.1 (HKLM-x32\...\InstallShield_{6BBE6CF2-84B2-4ECA-9ECA-C56925C1CCE2}) (Version: 1.00.0000 - GIGABYTE)
Glorious Model O Software (HKLM-x32\...\{0969D386-B5B4-41BD-98E3-4A1A7D32CB97}_is1) (Version: 1.0.6 - Glorious PC Gaming Race LLC.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 75.0.3770.100 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
Grand Theft Auto V (HKLM-x32\...\{5EFC6C07-6B87-43FC-9524-F9E967241741}) (Version: "1.0.0.10" - Rockstar Games)
Gyazo 3.6.2.0 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version:  - Nota Inc.)
HiSuite (HKLM-x32\...\Hi Suite) (Version: 9.0.3.300 - Huawei Technologies Co.,Ltd)
House Flipper MULTi19 - ElAmigos versión 16.05.2019 (HKLM-x32\...\{C7ECCCC1-721F-4AD3-B667-7F60646AD0E4}_is1) (Version: 16.05.2019 - PlayWay)
HowToGuide (HKLM-x32\...\{36580EEB-4EDF-4880-BBD4-097E2C645ECD}) (Version: 1.0.1.0 - Brother Industries Ltd.) Hidden
Inlog Optimizer 3.1 (HKLM-x32\...\Inlog Optimizer 3.1) (Version: 3.1 - Inlog Software)
Java 8 Update 191 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180191F0}) (Version: 8.0.1910.12 - Oracle Corporation)
Killer Performance Driver Suite UWD (HKLM\...\{92124E95-56C0-41D0-8292-A9D2F2AFF04C}) (Version: 2.1.1281 - Rivet Networks)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
LibreOffice 6.1.4.2 (HKLM\...\{080C0C39-B1B5-48BB-85AB-4F9A8768CD10}) (Version: 6.1.4.2 - The Document Foundation)
LogMeIn Hamachi (HKLM-x32\...\{ECC0FA07-863E-44BC-8B1D-DA22F96E5FB7}) (Version: 2.2.0.633 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.633 - LogMeIn, Inc.)
Malwarebytes versión 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes)
MEmu (HKLM-x32\...\MEmu) (Version: 5.3.2.0 - Microvirt Software Technology Co. Ltd)
Metro Exodus Gold Edition MULTi9 - ElAmigos versión 1.0 (HKLM-x32\...\{5EC2380F-53BB-460A-B7A2-89547F62C5A7}_is1) (Version: 1.0 - Deep Silver)
Microsoft OneDrive (HKU\S-1-5-21-946916984-388769844-3380657554-1002\...\OneDriveSetup.exe) (Version: 19.103.0527.0003 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4048 (HKLM\...\{91415F19-4C22-3609-A105-92ED3522D83C}) (Version: 9.0.30729.4048 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{CA8A885F-E95B-3FC6-BB91-F4D9377C7686}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4048 (HKLM-x32\...\{5B1F2843-B379-3FF2-B0D3-64DD143ED53A}) (Version: 9.0.30729.4048 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.15.26706 (HKLM-x32\...\{95ac1cfa-f4fb-4d1b-8912-7f9d5fbb140d}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{2D1ED4EA-B59D-4665-ACB3-9325872A300D}) (Version: 1.0.4.0 - Mojang)
Mozilla Firefox 65.0.1 (x64 es-ES) (HKLM\...\Mozilla Firefox 65.0.1 (x64 es-ES)) (Version: 65.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 64.0 - Mozilla)
MSI Afterburner 4.5.0 (HKLM-x32\...\Afterburner) (Version: 4.5.0 - MSI Co., LTD)
NetworkRepairTool (HKLM-x32\...\{86E68F57-FAFE-4052-BDD4-3B90C38236AE}) (Version: 1.2.16.0 - Brother Industries, Ltd.) Hidden
NewTek NDI 3.5 Redist (HKLM\...\{71AFF296-ED43-4166-8301-4649285EE712}_is1) (Version:  - NewTek, inc.)
NewTek NDI 3.6 Tools (HKLM\...\{35D49334-910D-4519-B971-C7B604214855}_is1) (Version:  - NewTek, inc.)
Nuance PaperPort 14 (HKLM-x32\...\{6CC9391F-D441-4D2E-9ECC-1F7084C733ED}) (Version: 14.5.0006 - Nuance Communications, Inc.)
Nuance PDF Viewer SE (HKLM-x32\...\{7BAC9170-359D-4EAD-B6E4-238A14940C11}) (Version: 7.20.3230 - Nuance Communications, Inc.)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.15 - NVIDIA Corporation) Hidden
NVIDIA Controlador de audio HD 1.3.38.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.16 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.18.0.102 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.18.0.102 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 22.0.2 - OBS Project)
obs-ndi version 4.5.2 (HKLM-x32\...\{69FA0C71-8BEB-4E0D-B5D2-53BFF9192EE2}_is1) (Version: 4.5.2 - Stephane Lepin)
Origin (HKLM-x32\...\Origin) (Version: 10.5.41.27263 - Electronic Arts, Inc.)
Panel de control de NVIDIA 430.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 430.86 - NVIDIA Corporation) Hidden
PaperPort Image Printer 64-bit (HKLM\...\{715CAACC-579B-4831-A5F4-A83A8DE3EFE2}) (Version: 14.00.0002 - Nuance Communications, Inc.)
PlanetSide 2 (HKU\S-1-5-21-946916984-388769844-3380657554-1002\...\DG0-PlanetSide 2) (Version:  - Sony Online Entertainment)
Plays (HKU\S-1-5-21-946916984-388769844-3380657554-1002\...\Plays) (Version: 2.1.7 - Plays.tv, Inc)
Pro Evolution Soccer 2019 (HKLM-x32\...\{879B9B7F-6AAF-4686-A7FC-E937EE6BE37B}_is1) (Version:  - KONAMI)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
RAGE 2 (HKLM-x32\...\RAGE 2) (Version:  - Bethesda Softworks)
RAGE7HX Gaming Surround 7.1 (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392006300}) (Version: ¡°2.0.0.0¡± - OZONE)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8581 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver and Utility (HKLM-x32\...\{9C049509-055C-4CFF-A116-1D12312225EB}) (Version: 1.00.0281 - REALTEK Semiconductor Corp.)
Roblox Player for Usuario (HKU\S-1-5-21-946916984-388769844-3380657554-1002\...\roblox-player) (Version:  - Roblox Corporation)
Roblox Studio for Usuario (HKU\S-1-5-21-946916984-388769844-3380657554-1002\...\{2922D6F1-2865-4EFA-97A9-94EEAB3AFA14}) (Version:  - Roblox Corporation)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.4.1 - Rockstar Games)
ScannerUtilityInstaller (HKLM-x32\...\{5B645FE2-19E9-4B15-B5B2-3D8766F6FA27}) (Version: 1.0.0.0 - Brother) Hidden
Scansoft PDF Professional (HKLM-x32\...\{068724F8-D8BE-4B43-8DDD-B9FE9E49FD76}) (Version:  - ) Hidden
SIW TRIAL (HKLM-x32\...\{3B9704C8-1286-4a17-9EA8-F63004FC74A1}_is1) (Version: 2018.07.10 - Topala Software Solutions)
Sizer 4.0 (HKLM-x32\...\{D210D721-6559-48E2-A36A-9280F6CB798D}) (Version: 4.0.0.570 - Brian Apps)
SlimDX Runtime .NET 4.0 x64 (January 2012) (HKLM\...\{A2199A06-89C4-4187-AA4A-3A9676FB799D}) (Version: 2.0.13.43 - SlimDX Group)
SoftwareUpdateNotification (HKLM-x32\...\{34F12379-C924-41E6-921D-51C71217F58C}) (Version: 1.0.9.0 - Brother Industries, Ltd.) Hidden
Spotify (HKU\S-1-5-21-946916984-388769844-3380657554-1002\...\Spotify) (Version: 1.1.10.540.gfcf0430f - Spotify AB)
StatusMonitor (HKLM-x32\...\{40578A7A-6E36-457F-A4F0-45BC37EB61FD}) (Version: 1.20.1.0 - Brother Insutries Ltd.) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Streamlabs OBS 0.12.3 (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.12.3 - General Workings, Inc.)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.10 - TeamSpeak Systems GmbH)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)
Twitch (HKU\S-1-5-21-946916984-388769844-3380657554-1002\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Unigine Superposition Benchmark 1.0 (HKLM\...\Superposition_is1) (Version: 1.0 - Unigine Corp.)
Uninstall Megadede (HKLM\...\428792f5-75f6-56a9-bc54-ed4a7f639ad5) (Version: 1.0.7 - FjRamírez)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F14FB68A-9188-4036-AD0D-D054BC9C9291}) (Version: 2.59.0.0 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 27.0 - Ubisoft)
UsbRepairTool (HKLM-x32\...\{F8762A81-32B5-4144-9F3C-9274F515A651}) (Version: 1.4.0.0 - Brother Industries, Ltd.) Hidden
uTorrent Web (HKU\S-1-5-21-946916984-388769844-3380657554-1002\...\utweb) (Version: 0.22.0 - BitTorrent, Inc.)
WhatsApp (HKU\S-1-5-21-946916984-388769844-3380657554-1002\...\WhatsApp) (Version: 0.3.3793 - WhatsApp)
WinDirStat 1.1.2 (HKU\S-1-5-21-946916984-388769844-3380657554-1002\...\WinDirStat) (Version:  - )

Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.0.2.0_x64__tf1gferkr813w [2019-05-28] (Autodesk Inc.)
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_5.6.3.0_x86__kgqvnymyfvs32 [2019-06-12] (king.com)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.143.500.0_x86__kgqvnymyfvs32 [2019-07-10] (king.com)
Cinebench -> C:\Program Files\WindowsApps\MAXONComputerGmbH.Cinebench_20.0.6.0_x64__rsne5bsk8s7tj [2019-06-11] (MAXON Computer GmbH)
Complemento de Fotos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2018-11-11] (Microsoft Corporation)
Correo y Calendario -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe [2019-07-10] (Microsoft Corporation) [MS Ad]
Disney Magic Kingdoms -> C:\Program Files\WindowsApps\A278AB0D.DisneyMagicKingdoms_4.1.0.8_x86__h6adky7gbf63m [2019-07-03] (Gameloft.)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.0.2002.0_x64__rz1tebttyb220 [2019-06-28] (Dolby Laboratories)
Killer Control Center -> C:\Program Files\WindowsApps\RivetNetworks.KillerControlCenter_2.1.2907.0_x64__rh07ty8m5nkag [2019-05-14] (Rivet Networks LLC)
March of Empires: War of Lords -> C:\Program Files\WindowsApps\A278AB0D.MarchofEmpires_4.1.0.6_x86__h6adky7gbf63m [2019-06-18] (Gameloft.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft News: Noticias destacadas en español -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.31.11723.0_x64__8wekyb3d8bbwe [2019-06-27] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.6132.0_x64__8wekyb3d8bbwe [2019-06-17] (Microsoft Studios) [MS Ad]
MSN El Tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.28.10351.0_x64__8wekyb3d8bbwe [2019-02-13] (Microsoft Corporation) [MS Ad]
RAR Opener -> C:\Program Files\WindowsApps\DeviceDoctor.RAROpener_1.3.48.0_x64__mkdtfchztkfbm [2018-07-18] (Tiny Opener)
unzip-open RAR,ZIP,7Z,Gzip,BZ for free -> C:\Program Files\WindowsApps\38184CDCTech.unzip-openRARZIP7ZGzipBZforfree_1.2.42.0_x64__vwv5vk6p12k08 [2018-08-24] (Trend Micro Inc.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-07-09] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-07-09] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-05-23] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes Corporation -> Malwarebytes)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


ShortcutWithArgument: C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Vysor.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=gidgenkbbabolejbgbpnhbimgjbffefm

==================== Loaded Modules (Whitelisted) ==============

2016-11-25 11:18 - 2016-11-25 11:18 - 000139264 _____ () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2017-03-22 18:21 - 2018-01-18 16:39 - 000519168 _____ () [File not signed] C:\Program Files (x86)\Browny02\BrMonitor.dll
2018-11-11 21:35 - 2005-04-22 14:36 - 000143360 _____ () [File not signed] C:\WINDOWS\system32\BrSNMP64.dll
2012-12-05 13:29 - 2012-12-05 13:29 - 004883456 _____ (BCGSoft Ltd) [File not signed] C:\Program Files (x86)\Nuance\PaperPort\BCGCBPRO1100u100.dll
2017-04-05 14:35 - 2017-04-05 14:35 - 003581952 _____ (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe
2017-03-22 18:21 - 2018-01-18 16:39 - 000314368 _____ (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrYNSvc.exe
2018-11-11 21:35 - 2016-11-01 12:27 - 000090112 _____ (Brother Industries, Ltd.) [File not signed] C:\WINDOWS\system32\BrNetSti.dll
2018-12-12 12:32 - 2018-12-12 12:32 - 000190784 _____ (Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
2018-12-20 14:35 - 2018-12-20 14:35 - 000012288 _____ (Microsoft) [File not signed] C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe
2018-12-20 14:35 - 2018-12-20 14:35 - 000020480 _____ (Microsoft) [File not signed] C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe
2018-08-17 11:34 - 2019-06-11 08:21 - 001277440 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2018-08-17 11:34 - 2019-06-11 08:22 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll
2018-08-17 11:34 - 2019-05-25 09:55 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2018-08-17 11:34 - 2019-05-25 09:56 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2018-08-17 11:34 - 2019-05-25 09:56 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2018-08-17 11:34 - 2019-05-25 09:56 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2018-08-17 11:34 - 2019-05-25 09:56 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2018-08-17 11:34 - 2019-05-25 09:56 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll
2019-07-11 03:13 - 2018-09-14 08:11 - 000026624 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qico.dll
2019-07-11 03:13 - 2018-09-14 08:11 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qsvg.dll
2019-07-11 03:13 - 2018-09-14 08:11 - 001187840 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\platforms\qwindows.dll
2019-07-11 03:13 - 2018-09-14 08:11 - 005108224 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
2019-07-11 03:13 - 2018-09-14 08:11 - 005231616 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Gui.dll
2019-07-11 03:13 - 2018-09-14 08:11 - 002277376 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Network.dll
2019-07-11 03:13 - 2018-09-14 08:11 - 003043328 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Qml.dll
2019-07-11 03:13 - 2018-09-14 08:11 - 003127808 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Quick.dll
2019-07-11 03:13 - 2018-09-14 08:11 - 000262656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Svg.dll
2019-07-11 03:13 - 2018-09-14 08:11 - 004719104 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Widgets.dll
2019-07-11 03:13 - 2018-09-14 08:11 - 000445440 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5WinExtras.dll
2019-07-11 03:13 - 2018-09-14 08:11 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQml\Models.2\modelsplugin.dll
2019-07-11 03:13 - 2018-09-14 08:11 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick.2\qtquick2plugin.dll
2019-07-11 03:13 - 2018-09-14 08:11 - 000730624 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\qtquickcontrolsplugin.dll
2019-07-11 03:13 - 2018-09-14 08:11 - 000179712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\dialogplugin.dll
2019-07-11 03:13 - 2018-09-14 08:11 - 000073216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Layouts\qquicklayoutsplugin.dll
2019-07-11 03:13 - 2018-09-14 08:11 - 000102400 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\PrivateWidgets\widgetsplugin.dll
2019-07-11 03:13 - 2018-09-14 08:11 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Window.2\windowplugin.dll
2019-07-11 03:13 - 2018-09-14 08:11 - 000124928 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\styles\qwindowsvistastyle.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [470]
AlternateDataStreams: C:\Users\Usuario\Datos de programa:6699d3ee8dd9cf775caae782c8f44f03 [394]
AlternateDataStreams: C:\Users\Usuario\AppData\Roaming:6699d3ee8dd9cf775caae782c8f44f03 [394]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-07-18 01:38 - 2018-07-18 01:37 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-946916984-388769844-3380657554-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Usuario\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\tienda windows.jpg
DNS Servers: Media is not connected to internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKLM\...\StartupApproved\Run32: => "PaperPort PTD"
HKLM\...\StartupApproved\Run32: => "PDFProHook"
HKLM\...\StartupApproved\Run32: => "M17A"
HKU\S-1-5-21-946916984-388769844-3380657554-1002\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-946916984-388769844-3380657554-1002\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-946916984-388769844-3380657554-1002\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-946916984-388769844-3380657554-1002\...\StartupApproved\Run: => "EPLTarget\P0000000000000000"
HKU\S-1-5-21-946916984-388769844-3380657554-1002\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-946916984-388769844-3380657554-1002\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-946916984-388769844-3380657554-1002\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-946916984-388769844-3380657554-1002\...\StartupApproved\Run: => "com.squirrel.WhatsApp.WhatsApp"
HKU\S-1-5-21-946916984-388769844-3380657554-1002\...\StartupApproved\Run: => "Plays"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{66169CF8-980C-45DF-8082-654C8BBBC76B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{8326C321-FDAC-462F-AEDF-108EF3732A21}] => (Allow) D:\SteamLibrary\steamapps\common\Aim Lab\AimLab_tb.exe () [File not signed]
FirewallRules: [{2FD4CD3D-CF44-402D-ABFA-DCD82EFB984A}] => (Allow) D:\SteamLibrary\steamapps\common\Aim Lab\AimLab_tb.exe () [File not signed]
FirewallRules: [{84C2135F-AD35-4624-AEF0-63A99A36E202}] => (Allow) C:\Riot Games\League of Legends\LeagueClient.exe (Riot Games, Inc. -> )
FirewallRules: [{BC308A39-7504-4CB6-9DB1-71935C51B3C5}] => (Allow) C:\Riot Games\League of Legends\LeagueClient.exe (Riot Games, Inc. -> )
FirewallRules: [{51E75C29-FDA9-4037-A87F-75AE81476737}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rust\Rust.exe (Facepunch Studios Ltd -> EasyAntiCheat Ltd)
FirewallRules: [{87AD14FE-B8BF-43C2-816F-1FC89984DA44}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rust\Rust.exe (Facepunch Studios Ltd -> EasyAntiCheat Ltd)
FirewallRules: [UDP Query User{E088C727-5964-449F-99B8-40B8560470DB}D:\rage2.exe] => (Allow) D:\rage2.exe () [File not signed]
FirewallRules: [TCP Query User{7C1402DC-F594-484D-ADD9-E2CC2DADEA7E}D:\rage2.exe] => (Allow) D:\rage2.exe () [File not signed]
FirewallRules: [UDP Query User{36ADF705-64B1-4299-AE7D-8CEC5ABF01B0}C:\program files (x86)\gigabyte\@bios\flashbios.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\flashbios.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [TCP Query User{A2429D72-D941-4B1C-9EC0-4330E8B12A49}C:\program files (x86)\gigabyte\@bios\flashbios.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\flashbios.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [UDP Query User{5280CBC9-1413-4DF9-B017-F2D0917D5CC0}C:\program files (x86)\gigabyte\appcenter\gbupdate.exe] => (Allow) C:\program files (x86)\gigabyte\appcenter\gbupdate.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [TCP Query User{7DA03825-4099-4FB4-BF54-26A82F6D7676}C:\program files (x86)\gigabyte\appcenter\gbupdate.exe] => (Allow) C:\program files (x86)\gigabyte\appcenter\gbupdate.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{55874D59-700E-48F0-956A-FABDBF762159}] => (Allow) LPort=9142
FirewallRules: [{FC47A91C-2668-487D-A801-FA6B659A311D}] => (Allow) LPort=38518
FirewallRules: [{328CD7C2-C5D5-43B3-A415-93AA4BF05328}] => (Allow) C:\program files (x86)\nzxt\cam\cam.desktop.exe (NZXT -> )
FirewallRules: [{2AC02F31-7A61-4130-A531-871713B779BD}] => (Allow) C:\program files (x86)\nzxt\cam\cam.desktop.exe (NZXT -> )
FirewallRules: [{05768CA0-D0DA-4597-9474-1020D5612832}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{32634714-6DD0-455A-99F7-9997982A3133}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C8D7BD40-5AED-48B4-8B74-1DC98F7AB4DD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F308C8B3-98F4-4C01-BC5A-5D84FCC4A78C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E66AA194-0838-4FA9-8C59-6DC3181821AA}] => (Allow) D:\SteamLibrary\steamapps\common\Rust\Rust.exe (Facepunch Studios Ltd -> EasyAntiCheat Ltd)
FirewallRules: [{B661860D-3ADB-43DC-B960-08386E370F72}] => (Allow) D:\SteamLibrary\steamapps\common\Rust\Rust.exe (Facepunch Studios Ltd -> EasyAntiCheat Ltd)
FirewallRules: [{EB312A81-11C0-47DB-B808-FEEB33EFBF28}] => (Block) C:\users\usuario\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe (cfx-collective) [File not signed]
FirewallRules: [{1A931247-90D5-464E-B885-981013B31428}] => (Block) C:\users\usuario\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe (cfx-collective) [File not signed]
FirewallRules: [UDP Query User{E7AFF572-865A-4B55-BBDB-0B49E3ACC52A}C:\users\usuario\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\usuario\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe (cfx-collective) [File not signed]
FirewallRules: [TCP Query User{124F9E7E-6FA8-4D65-B57E-423A1D6FB714}C:\users\usuario\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\usuario\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe (cfx-collective) [File not signed]
FirewallRules: [{91A8AE2B-5747-46F0-8F23-0D547C5E4F39}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
FirewallRules: [{A4CA976D-8869-41A6-B6BF-6A99E591990F}] => (Block) D:\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{572C0239-6B04-4B79-A7C5-8F35B259404D}] => (Block) D:\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{52D62908-5BB8-4EA0-AFE4-C5B95BB2EB91}D:\gta5.exe] => (Allow) D:\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{BAD2F49B-1E62-419B-85E1-6CD27874A32F}D:\gta5.exe] => (Allow) D:\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{9D77280F-A0E5-4106-A1EB-7C5D2B7CBC21}] => (Allow) D:\SteamLibrary\steamapps\common\Black Desert Online\Black Desert Online Steam Launcher.exe (Kakao Games Europe B.V. -> KakaoGames USA Inc.)
FirewallRules: [{0262F64D-F54A-4825-961A-8C994CCA4ED7}] => (Allow) D:\SteamLibrary\steamapps\common\Black Desert Online\Black Desert Online Steam Launcher.exe (Kakao Games Europe B.V. -> KakaoGames USA Inc.)
FirewallRules: [{217EEBDD-4DA5-46C0-BC39-0C2E0A44F232}] => (Allow) C:\Users\Usuario\AppData\Roaming\uTorrent Web\utweb.exe (Jenkins Win Client Build SPC -> BitTorrent Inc.) [File not signed]
FirewallRules: [{8190405C-05AC-46B0-A639-C08F5C7A5180}] => (Allow) C:\Users\Usuario\AppData\Roaming\uTorrent Web\utweb.exe (Jenkins Win Client Build SPC -> BitTorrent Inc.) [File not signed]
FirewallRules: [{2A1B85CF-871B-40F5-8475-42AE2D497C43}] => (Allow) LPort=54955
FirewallRules: [{D4F71BE5-CC28-48B8-AF63-62E6F9883F3F}] => (Allow) LPort=54950
FirewallRules: [{C7C511B3-F2F9-4875-BD69-E28D0EB1CAF3}] => (Block) D:\megadede\megadede.exe (FjRamírez) [File not signed]
FirewallRules: [{80EF3E14-30E8-4BB4-AF59-37C39E4FA85E}] => (Block) D:\megadede\megadede.exe (FjRamírez) [File not signed]
FirewallRules: [UDP Query User{003D8E1C-77A1-4079-8DED-9C20CE6BA4B7}D:\megadede\megadede.exe] => (Allow) D:\megadede\megadede.exe (FjRamírez) [File not signed]
FirewallRules: [TCP Query User{3E6E4E0B-C348-458C-94EB-75439B077D36}D:\megadede\megadede.exe] => (Allow) D:\megadede\megadede.exe (FjRamírez) [File not signed]
FirewallRules: [{417E3030-2F5A-4115-8DE3-51CB6F3F26E5}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{994FCE5C-D0E8-4233-BE22-4B2BE82F5B3A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{16AA7334-1C1F-49FA-92E5-7F7600C5B459}] => (Block) C:\users\usuario\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_51\bin\javaw.exe
FirewallRules: [{AA984214-BDEA-4FEF-A07B-D2FFDF50094F}] => (Block) C:\users\usuario\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{8D737750-39A8-4E5F-B870-9BA6E2AD082B}C:\users\usuario\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) C:\users\usuario\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_51\bin\javaw.exe
FirewallRules: [TCP Query User{36C30466-06CB-4678-940F-ACD77E0712EB}C:\users\usuario\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) C:\users\usuario\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_51\bin\javaw.exe
FirewallRules: [{5A1053F3-72E3-4182-9E5C-A7A3FA7B03A9}] => (Allow) D:\SteamLibrary\steamapps\common\Fallout New Vegas\FalloutNVLauncher.exe (Bethesda Softworks -> Bethesda Softworks, Obsidian Entertainment)
FirewallRules: [{E6590664-5FBA-4B95-BCC8-48612B51FB0D}] => (Allow) D:\SteamLibrary\steamapps\common\Fallout New Vegas\FalloutNVLauncher.exe (Bethesda Softworks -> Bethesda Softworks, Obsidian Entertainment)
FirewallRules: [UDP Query User{1E28286B-867F-4243-A5FA-25CCF4358500}C:\program files\java\jre1.8.0_191\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_191\bin\javaw.exe
FirewallRules: [TCP Query User{40B848C4-0AD4-4B2A-BF34-A444DBEDE444}C:\program files\java\jre1.8.0_191\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_191\bin\javaw.exe
FirewallRules: [UDP Query User{F592B6C2-0A47-4020-B38D-BEF0BFC8DFDF}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe
FirewallRules: [TCP Query User{79A238D2-28D1-47DB-884E-CC31B5160ADA}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe
FirewallRules: [{328DB2BB-47B3-4659-BD91-74688C1B3364}] => (Allow) C:\Program Files\Unigine\Superposition Benchmark\bin\superposition.exe (UNIGINE -> UNIGINE Corp.)
FirewallRules: [{A8A411CC-BCDC-4B28-BADE-7AE0ABD1A5B9}] => (Allow) C:\Program Files\Unigine\Superposition Benchmark\bin\superposition.exe (UNIGINE -> UNIGINE Corp.)
FirewallRules: [{459AFB96-B345-491D-AB73-EAF066F62582}] => (Allow) C:\Program Files\Unigine\Superposition Benchmark\bin\launcher.exe (UNIGINE -> UNIGINE Corp.)
FirewallRules: [{5E2FF4E8-CA90-48C4-9FE9-605D863EBDD8}] => (Allow) C:\Program Files\Unigine\Superposition Benchmark\bin\launcher.exe (UNIGINE -> UNIGINE Corp.)
FirewallRules: [{547CAE19-A5B1-4F3E-9F83-4FCFF3AC7895}] => (Allow) D:\SteamLibrary\steamapps\common\Ring of Elysium\SLauncher.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{6AA4BE4E-8891-4C09-8E9D-E1C883D43F4E}] => (Allow) D:\SteamLibrary\steamapps\common\Ring of Elysium\SLauncher.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{670C3A65-C2B4-416D-AE08-ECF5EBBA6641}] => (Allow) LPort=54925
FirewallRules: [UDP Query User{73225D30-D1F8-467F-8E51-1B27D41E553E}C:\program files\streamlabs obs\resources\app.asar.unpacked\node_modules\obs-studio-node\obs64.exe] => (Allow) C:\program files\streamlabs obs\resources\app.asar.unpacked\node_modules\obs-studio-node\obs64.exe (Streamlabs (General Workings, Inc.) -> Streamlabs)
FirewallRules: [TCP Query User{4211A605-C458-4F09-B86B-AD4E88538A73}C:\program files\streamlabs obs\resources\app.asar.unpacked\node_modules\obs-studio-node\obs64.exe] => (Allow) C:\program files\streamlabs obs\resources\app.asar.unpacked\node_modules\obs-studio-node\obs64.exe (Streamlabs (General Workings, Inc.) -> Streamlabs)
FirewallRules: [{6308B1FD-BDAD-4048-9708-4A4B72DC3425}] => (Allow) C:\Program Files\NewTek\NewTek NDI 3.6 Tools\Studio Monitor\Application.Network.StudioMonitor.x64.exe (Newtek Inc -> )
FirewallRules: [{CE51FDB4-50B8-43F7-AB30-4F45542A0A09}] => (Allow) C:\Program Files\NewTek\NewTek NDI 3.6 Tools\Test Patterns\Application.Network.TestPatterns.exe (Newtek Inc -> )
FirewallRules: [{EAC05426-FF7C-4852-AEC5-6F123BD6A8A9}] => (Allow) C:\Program Files\NewTek\NewTek NDI 3.6 Tools\Scan Converter\Application.Network.ScanConverter2.x64.exe (Newtek Inc -> )
FirewallRules: [{A22F245C-1932-4CEF-831A-023F352E688C}] => (Allow) C:\Program Files\NewTek\NewTek NDI 3.6 Tools\Virtual Input\NewTek NDI Virtual Input.exe (Newtek Inc -> )
FirewallRules: [{14693927-04B0-434C-BFC4-A9789171B4AA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{12808E1A-CF39-4802-B7B3-46944DF6C2A8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C55B4EB4-3EEF-4F69-B17C-19A417EE1238}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{5F6F4589-803D-48EF-A5D5-33B552B74E46}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{2659F594-CFF7-484B-A709-99DFEC70F7BC}] => (Allow) D:\SteamLibrary\steamapps\common\Stellaris\stellaris.exe (Paradox Interactive) [File not signed]
FirewallRules: [{DF45A865-625F-4BE8-89C2-FDF1D55A2184}] => (Allow) D:\SteamLibrary\steamapps\common\Stellaris\stellaris.exe (Paradox Interactive) [File not signed]
FirewallRules: [{9941BC79-A436-4316-B83E-0DB44E64ED12}] => (Allow) C:\Program Files (x86)\REALTEK\USB Wireless LAN Utility\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{7D2A9631-0102-424C-B816-76213AEE432C}] => (Allow) C:\Program Files (x86)\REALTEK\USB Wireless LAN Utility\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{D1056A25-11AA-4601-A98B-897002ECF44B}] => (Allow) C:\Program Files (x86)\REALTEK\USB Wireless LAN Utility\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{2B0CB123-BEAF-43B6-BAA1-0BB3541F0F04}] => (Allow) C:\Program Files (x86)\REALTEK\USB Wireless LAN Utility\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{10381C16-3B1D-402B-B87A-F805D68721B7}] => (Allow) LPort=53
FirewallRules: [{7058A2E6-EE96-4985-8D4E-1EF82D6A098B}] => (Allow) C:\Program Files (x86)\REALTEK\USB Wireless LAN Utility\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{D8CF4380-FE4F-4572-BA45-0933F9AE79BF}] => (Allow) C:\Program Files (x86)\REALTEK\USB Wireless LAN Utility\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{9E2871C7-CDB7-4C86-A6A3-B763FC5C5F45}] => (Allow) C:\PROGRA~2\REALTEK\USBWIR~1\Rtldhcp.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{979AAA95-4439-49A6-A584-7B34FC48795B}] => (Allow) LPort=53
FirewallRules: [{8759D57F-F0C8-45DF-A8BB-7D600F881BD2}] => (Allow) LPort=1542
FirewallRules: [{3F56BDA2-A978-4B41-8DE9-F6C03331F0AF}] => (Allow) LPort=1542
FirewallRules: [{3F3AC9CB-14A6-4F72-9F7E-8CB5ABEB2276}] => (Allow) C:\PROGRA~2\REALTEK\USBWIR~1\RtWlan.exe (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
FirewallRules: [{1B92715F-B894-4BCC-BEEB-4ED086D4289F}] => (Allow) D:\Oirign\Battlefield 3\bf3.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{252F2D8E-6792-434C-9448-8D5F3AFA5593}] => (Allow) D:\Oirign\Battlefield 3\bf3.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{937C4B10-EB4D-4B6C-87F8-31A71088264F}] => (Allow) C:\WINDOWS\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{E2A64915-0417-445E-8C2B-EAB38A11BDF4}] => (Allow) C:\WINDOWS\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{05A81F32-993A-4B0C-91EE-2BC951D72B3E}] => (Allow) C:\WINDOWS\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{FC3F22C2-18D9-4525-ADB9-1F7D624500EF}] => (Allow) C:\WINDOWS\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [UDP Query User{5C36DF1F-3BBE-4464-B072-B4F133D886B1}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{6197FB4B-EB14-43E7-B8A1-56429759CD96}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{C36D8E0E-1ED7-4398-88AF-72691ED5AFB2}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{3940A183-9661-4607-9A08-334B4D23548B}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{5017FA92-3EF3-4F40-8BD5-7C3B83935385}] => (Allow) D:\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{1A33E983-0855-4AC2-9E62-0D7A3530327C}] => (Allow) D:\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [UDP Query User{E23AC7BE-A652-4AE6-B236-25939D353172}D:\steamlibrary\steamapps\common\ark\shootergame\binaries\win64\shootergameserver.exe] => (Allow) D:\steamlibrary\steamapps\common\ark\shootergame\binaries\win64\shootergameserver.exe (Wildcard Properties LLC -> Epic Games, Inc.)
FirewallRules: [TCP Query User{FC981E3A-B8CD-45C4-90B2-8343AD8765FA}D:\steamlibrary\steamapps\common\ark\shootergame\binaries\win64\shootergameserver.exe] => (Allow) D:\steamlibrary\steamapps\common\ark\shootergame\binaries\win64\shootergameserver.exe (Wildcard Properties LLC -> Epic Games, Inc.)
FirewallRules: [UDP Query User{F034280A-48EC-4856-8510-475396C1A9FE}C:\users\usuario\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\usuario\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{900138BF-B213-4831-9B27-09694586B771}C:\users\usuario\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\usuario\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{C5602D21-D56F-409A-A1ED-3AFFD9D8F868}C:\users\usuario\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\usuario\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{9E9B5D69-B195-408F-8DCE-F6EC0A88D835}C:\users\usuario\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\usuario\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{CE326153-58C2-4FA9-81A4-BB322C351A89}] => (Allow) D:\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{6175502F-7DD1-4D43-8AE0-35593E976B59}] => (Allow) D:\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{6E97EB27-53A5-4010-B765-9F563D5EE622}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{D8D14C15-FA5F-4281-99B7-23AC1C216F92}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{86340F99-85BD-4655-BA85-3028A9A816BB}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{F1C71350-CB28-4F31-BE50-7B593189EABD}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{00BE8E48-9440-46A3-9597-828EF80BFFD4}] => (Allow) D:\SteamLibrary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{ACCE3C03-5422-49F2-B5E9-99B4619061B9}] => (Allow) D:\SteamLibrary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{B1C6349B-B512-4185-B0A7-165D2FBEB480}] => (Allow) D:\SteamLibrary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe (Wildcard Properties LLC -> Epic Games, Inc.)
FirewallRules: [{33D796C5-A60D-4BBA-A0DC-3F292A003A13}] => (Allow) D:\SteamLibrary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe (Wildcard Properties LLC -> Epic Games, Inc.)
FirewallRules: [TCP Query User{0272789F-4E96-48B4-B377-737C9631DAED}D:\doom 2016\doomx64.exe] => (Allow) D:\doom 2016\doomx64.exe (id Software) [File not signed]
FirewallRules: [UDP Query User{18AC9CE0-3F9A-4AFD-9C47-F216BA7D75E4}D:\doom 2016\doomx64.exe] => (Allow) D:\doom 2016\doomx64.exe (id Software) [File not signed]
FirewallRules: [TCP Query User{EA5F8FB1-239E-4BAD-AFBE-399011CFA78B}C:\users\usuario\appdata\local\blitz\app-1.0.7\blitz.exe] => (Allow) C:\users\usuario\appdata\local\blitz\app-1.0.7\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.)
FirewallRules: [UDP Query User{DA80CC71-3AFA-4197-A25E-053FCD8C1720}C:\users\usuario\appdata\local\blitz\app-1.0.7\blitz.exe] => (Allow) C:\users\usuario\appdata\local\blitz\app-1.0.7\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.)
FirewallRules: [TCP Query User{F5D47160-AB7C-489F-8958-1F90E9846864}C:\users\usuario\appdata\local\blitz\app-1.0.8\blitz.exe] => (Allow) C:\users\usuario\appdata\local\blitz\app-1.0.8\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.)
FirewallRules: [UDP Query User{38E65AC2-0C15-4155-8A6B-583AA9B592D0}C:\users\usuario\appdata\local\blitz\app-1.0.8\blitz.exe] => (Allow) C:\users\usuario\appdata\local\blitz\app-1.0.8\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.)
FirewallRules: [{89A4EC90-0B3E-46F2-8036-F59CF04B40CA}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{32727CC0-B691-43E3-8052-D3CDCE193F22}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)

==================== Restore Points =========================

28-06-2019 21:42:05 Windows Update
28-06-2019 21:42:16 Windows Update
10-07-2019 01:40:52 Windows Update
11-07-2019 03:28:10 JRT Pre-Junkware Removal

==================== Faulty Device Manager Devices =============

Name: LogMeIn Hamachi Virtual Ethernet Adapter
Description: LogMeIn Hamachi Virtual Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: LogMeIn Inc.
Service: Hamachi
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (07/11/2019 03:32:26 AM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: MTDLL BrtMTDLL: [2019/07/11 03:32:26.251]: [00013004]: Error GetInkSupplyType Send ( ErrCode == 5 )

Error: (07/11/2019 03:32:26 AM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: MTDLL BrtMTDLL: [2019/07/11 03:32:26.251]: [00013004]: Error GetInkSupplyType Send ( ErrCode == 5 )

Error: (07/11/2019 03:32:26 AM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: MTDLL BrtMTDLL: [2019/07/11 03:32:26.251]: [00013004]: Error GetInkSupplyType Send ( ErrCode == 5 )

Error: (07/11/2019 03:31:56 AM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: MTDLL BrtMTDLL: [2019/07/11 03:31:56.248]: [00013004]: Error GetInkSupplyType Send ( ErrCode == 5 )

Error: (07/11/2019 03:31:56 AM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: MTDLL BrtMTDLL: [2019/07/11 03:31:56.248]: [00013004]: Error GetInkSupplyType Send ( ErrCode == 5 )

Error: (07/11/2019 03:31:56 AM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: MTDLL BrtMTDLL: [2019/07/11 03:31:56.248]: [00013004]: Error GetInkSupplyType Send ( ErrCode == 5 )

Error: (07/11/2019 03:31:26 AM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: MTDLL BrtMTDLL: [2019/07/11 03:31:26.243]: [00013004]: Error GetInkSupplyType Send ( ErrCode == 5 )

Error: (07/11/2019 03:31:26 AM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: MTDLL BrtMTDLL: [2019/07/11 03:31:26.243]: [00013004]: Error GetInkSupplyType Send ( ErrCode == 5 )


System errors:
=============
Error: (07/11/2019 03:28:26 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio NVIDIA LocalSystem Container terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 6000 milisegundos: Reiniciar el servicio.

Error: (07/11/2019 03:28:25 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio NVIDIA Display Container LS terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 6000 milisegundos: Reiniciar el servicio.

Error: (07/11/2019 03:27:16 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Realtek DHCP Service se terminó de manera inesperada. Esto ha sucedido 1 veces.

Error: (07/11/2019 03:26:40 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: El módulo de extensibilidad de WLAN se detuvo inesperadamente.

Ruta de acceso del módulo: C:\WINDOWS\system32\Rtlihvs.dll

Error: (07/11/2019 03:26:40 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: El módulo de extensibilidad de WLAN se detuvo inesperadamente.

Ruta de acceso del módulo: C:\WINDOWS\system32\Rtlihvs.dll

Error: (07/11/2019 03:26:38 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: El módulo de extensibilidad de WLAN se detuvo inesperadamente.

Ruta de acceso del módulo: C:\WINDOWS\system32\Rtlihvs.dll

Error: (07/11/2019 03:26:37 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Killer Network Service se terminó de manera inesperada. Esto ha sucedido 1 veces.

Error: (07/11/2019 03:26:37 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio BrYNSvc se terminó de manera inesperada. Esto ha sucedido 1 veces.


Windows Defender:
===================================
Date: 2019-07-11 00:54:01.471
Description: 
Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.
Para más información, consulta lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.B!ml&threatid=2147735505&enterprise=0
Nombre: Trojan:Win32/Wacatac.B!ml
Id.: 2147735505
Gravedad: Grave
Categoría: Caballo de Troya
Ruta de acceso: file:_C:\Users\Usuario\AppData\Local\Temp\ogRKzePdN1X7juq0\ca4572a7918b5ae1de5c6cce7cb04f40.exe
Origen de detección: Equipo local
Tipo de detección: FastPath
Origen de detección: Protección en tiempo real
Usuario: DESKTOP-0ER469Q\Usuario
Nombre de proceso: C:\Users\Usuario\AppData\Local\Temp\is-FJD6R.tmp\ESfjMHeB.exe
Versión de inteligencia de seguridad: AV: 1.297.823.0, AS: 1.297.823.0, NIS: 1.297.823.0
Versión de motor: AM: 1.1.16100.4, NIS: 1.1.16100.4

Date: 2019-07-11 00:54:01.336
Description: 
Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.
Para más información, consulta lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=SoftwareBundler:Win32/ICLoader.BM!MTB&threatid=257372&enterprise=0
Nombre: SoftwareBundler:Win32/ICLoader.BM!MTB
Id.: 257372
Gravedad: Alta
Categoría: Software que instala varios programas
Ruta de acceso: file:_C:\Users\Usuario\AppData\Local\Temp\GuJajfZFbDKTDoDv\73a4d1d18cf861dc9d9d287447f59843.exe
Origen de detección: Equipo local
Tipo de detección: Concreto
Origen de detección: Protección en tiempo real
Usuario: DESKTOP-0ER469Q\Usuario
Nombre de proceso: C:\Users\Usuario\AppData\Local\Temp\is-FJD6R.tmp\ESfjMHeB.exe
Versión de inteligencia de seguridad: AV: 1.297.823.0, AS: 1.297.823.0, NIS: 1.297.823.0
Versión de motor: AM: 1.1.16100.4, NIS: 1.1.16100.4

Date: 2019-07-10 02:09:37.538
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {DB999EB2-AF56-4406-83FD-3CF09B19E6A5}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-06-30 03:06:26.423
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {9185C4CC-1CC9-4E78-B396-9034658364FB}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-07-11 03:03:46.901
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 1.297.823.0
Origen de actualización: Servidor de Microsoft Update
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor: 
Versión anterior del motor: 1.1.16100.4
Código de error: 0x80240438
Descripción del error: Se produjo un problema inesperado mientras se buscaban actualizaciones. Para obtener más información sobre cómo instalar o solucionar problemas en las actualizaciones, consulte Ayuda y soporte técnico. 

CodeIntegrity:
===================================

Date: 2019-07-11 03:27:54.052
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-07-11 03:27:54.047
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-07-11 03:22:27.483
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-07-11 03:22:27.478
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info =========================== 

BIOS: American Megatrends Inc. F31 05/06/2019
Motherboard: Gigabyte Technology Co., Ltd. AX370-Gaming K7
Processor: AMD Ryzen 7 1800X Eight-Core Processor 
Percentage of memory in use: 22%
Total physical RAM: 16332.11 MB
Available physical RAM: 12705.42 MB
Total Virtual: 17356.11 MB
Available Virtual: 12264.74 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:222.16 GB) (Free:40.36 GB) NTFS
Drive d: () (Fixed) (Total:931.5 GB) (Free:44.34 GB) NTFS

\\?\Volume{df8c0123-5977-44de-bddf-e8da83af26f5}\ (Recuperación) (Fixed) (Total:0.44 GB) (Free:0.43 GB) NTFS
\\?\Volume{854ba402-f84c-4109-ad4d-a19823cf35ca}\ () (Fixed) (Total:0.85 GB) (Free:0.43 GB) NTFS
\\?\Volume{75055107-0ad7-423c-a4a5-ee2ad5fd3515}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Protective MBR) (Size: 223.6 GB) (Disk ID: 00000000)

Partition: GPT.

========================================================
Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt ============================

El informe FRST no sé como pasarlo porque ocupa 150.000 caracteres y no me deja enviarlo.

Hola @Vasili16

Bienvenido a esta nueva etapa de InfoSpyware!!!

Aquí los temas son de un usuario por post.

Punto 1.- Vuelve a Ejecutar el análisis de AdwCleaner y elimina todo lo que te detecte siguiendo los pasos de su Manual. no olvidando presionar en Limpiar y Reparar

Punto 2.- Vuelve a ejecutar Malwarebytes pero en un análisis personalizado.

Malwarebytes

  • No olvides actualizarlo.
  • Lee detenidamente su Manual
  • Realiza un Análisis Personalizado. Seleccionas "Todas las Unidades"
  • Pulsa en “Eliminar Seleccionados” para enviar lo encontrado a la cuarentena.
  • Reinicias el Sistema.
  • En el apartado del manual “Historial” >> Registros de Aplicación >> Scan Log/Registro de Análisis encontrarás el informe del MBAM, que debes copiar y pegar en tu próxima respuesta.

Punto 3.- Luego de terminar los análisis nuevamente, luego de reiniciar, ejecutaras nuevamente FRST y para pegar sus nuevos reportes intenta utilizar el Método 4 del siguiente enlace:

Guía : ¿Como Pegar reportes en el Foro?

Si aun no puedes deberás dividirlo en dos o tres partes e ir subiendo uno por post.

Esperamos esos reporte.

Salu2.