Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09.12.2018 Ran by admin (12-12-2018 01:25:15) Running from C:\Users\admin\Desktop Windows 10 Pro Version 1803 17134.407 (X64) (2018-05-19 05:17:25) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= admin (S-1-5-21-2724099115-3414142137-1855297140-1001 - Administrator - Enabled) => C:\Users\admin Administrador (S-1-5-21-2724099115-3414142137-1855297140-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-2724099115-3414142137-1855297140-503 - Limited - Disabled) Invitado (S-1-5-21-2724099115-3414142137-1855297140-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-2724099115-3414142137-1855297140-504 - Limited - Disabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) ACA & MEP 2017 Object Enabler (HKLM\...\{28B89EEF-0004-0000-5102-CF3F3A09B77D}) (Version: 7.9.45.0 - Autodesk) Hidden ACAD Private (HKLM\...\{28B89EEF-0001-0000-3102-CF3F3A09B77D}) (Version: 21.0.52.0 - Autodesk) Hidden Age of Mythology (HKLM-x32\...\Age of Mythology 1.0) (Version: - ) Anno 1404 - Gold Edition (HKLM-x32\...\1440426004_is1) (Version: 2.0.0.2 - GOG.com) Aplicación Blizzard (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Aplicación de escritorio de Autodesk (HKLM-x32\...\Autodesk Desktop App) (Version: 7.0.5.154 - Autodesk) Aplicaciones destacadas de Autodesk 2016-2017 (HKLM-x32\...\{27C15055-713B-4D0E-881F-19598A2DFD59}) (Version: 2.2.0 - Autodesk) Arduino (HKLM-x32\...\Arduino) (Version: 1.8.7 - Arduino LLC) ARK Survival Evolved (HKLM-x32\...\ARK Survival Evolved_is1) (Version: - ) Assassins Creed Origins Gold Edition MULTi15 - ElAmigos versión 1.21 (HKLM-x32\...\{5DBEFC11-6A76-404A-AA09-88B65FEEB2D4}_is1) (Version: 1.21 - Ubisoft) ASUS GPU TweakII (HKLM-x32\...\{0075AAC2-EA9F-490E-83F7-5D5F81EB2A43}) (Version: 1.1.7.2 - ASUSTek COMPUTER INC.) Hidden ASUS GPU TweakII (HKLM-x32\...\InstallShield_{0075AAC2-EA9F-490E-83F7-5D5F81EB2A43}) (Version: 1.1.7.2 - ASUSTek COMPUTER INC.) ASUS Product Register Program (HKLM-x32\...\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}) (Version: 1.0.031 - ASUSTek Computer Inc.) AutoCAD 2017 - English (HKLM\...\{28B89EEF-0001-0409-2102-CF3F3A09B77D}) (Version: 21.0.52.0 - Autodesk) Hidden AutoCAD 2017 - Español (Spanish) (HKLM\...\{28B89EEF-0001-040A-2102-CF3F3A09B77D}) (Version: 21.0.52.0 - Autodesk) Hidden AutoCAD 2017 Language Pack - Español (Spanish) (HKLM\...\{28B89EEF-0001-040A-1102-CF3F3A09B77D}) (Version: 21.0.52.0 - Autodesk) Hidden AutoCAD 2017 (HKLM\...\{28B89EEF-0001-0000-0102-CF3F3A09B77D}) (Version: 21.0.52.0 - Autodesk) Hidden AutoCAD 2017 Language Pack - English (HKLM\...\{28B89EEF-0001-0409-1102-CF3F3A09B77D}) (Version: 21.0.52.0 - Autodesk) Hidden Autodesk Advanced Material Library Image Library 2017 (HKLM-x32\...\{8ED2ED41-4455-449D-993C-751C039089B9}) (Version: 15.11.3.0 - Autodesk) Autodesk App Manager 2016-2017 (HKLM-x32\...\{C0954809-F5DC-426C-847E-8409DE14E4C0}) (Version: 2.2.0 - Autodesk) Autodesk AutoCAD 2017 - Español (Spanish) (HKLM\...\AutoCAD 2017 - Español (Spanish)) (Version: 21.0.52.0 - Autodesk) Autodesk AutoCAD 2017 Language Pack - English (HKLM\...\AutoCAD 2017 - English) (Version: 21.0.52.0 - Autodesk) Autodesk AutoCAD Performance Feedback Tool 1.2.5 (HKLM-x32\...\{8600F844-9AA5-412E-B6F2-F9C6CBCFD268}) (Version: 1.2.5.0 - Autodesk) Autodesk BIM 360 Glue AutoCAD 2017 Add-in 64 bit (HKLM\...\{276A67E0-71EB-4827-B5F7-2ACF02BC1A5B}) (Version: 4.37.6853 - Autodesk) Autodesk License Service (x64) - 3.1 (HKLM\...\{EB6FE58F-8576-4272-BB9C-6B47D9EDFA4D}) (Version: 3.1.26.0 - Autodesk) Autodesk Material Library 2017 (HKLM-x32\...\{8FB9F735-D64C-4991-8D91-4CDDAB1ABDEE}) (Version: 15.11.3.0 - Autodesk) Autodesk Material Library Base Resolution Image Library 2017 (HKLM-x32\...\{3FBFBC43-9882-43FA-B979-2D53896747B3}) (Version: 15.11.3.0 - Autodesk) Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 18.8.2356 - AVAST Software) Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 70.0.917.102 - AVAST Software) Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.4.136.333 - AVAST Software) Hidden CCleaner (HKLM\...\CCleaner) (Version: 5.50 - Piriform) Conan Exiles (HKLM-x32\...\Conan Exiles_is1) (Version: - ) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.4.0.0190 - Disc Soft Ltd) Dark Souls III (HKLM-x32\...\Dark Souls III_is1) (Version: - ) Desinstalar (HKLM-x32\...\{ECD2A2CB-B775-4CED-854E-B66A60B9F5CD}_is1) (Version: 10.0.0.18 - AmericaOnlineGames) Discord (HKU\S-1-5-21-2724099115-3414142137-1855297140-1001\...\Discord) (Version: 0.0.301 - Discord Inc.) DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 398.82 - NVIDIA Corporation) Hidden dr.fone (Version 9.2.0) (HKLM-x32\...\{E8F86DA8-B8E4-42C7-AFD4-EBB692AC43FD}_is1) (Version: 9.2.0.11 - Wondershare Technology Co.,Ltd.) Empire Earth II (HKLM-x32\...\{DF315348-721C-40B8-BAE2-58C6C7D935A2}) (Version: - ) Empire Earth II Gold Edition (HKLM-x32\...\Empire Earth II Gold Edition_is1) (Version: - GOG.com) Epic Games Launcher (HKLM-x32\...\{BF267CB6-EC73-4AA9-991E-7BEA0B87419B}) (Version: 1.1.144.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Epic Privacy Browser (HKU\S-1-5-21-2724099115-3414142137-1855297140-1001\...\Epic) (Version: 62.0.3202.94 - Epic) GlassFish Server Open Source Edition 4.1.1 (HKLM\...\nbi-glassfish-mod-4.1.1.0.1) (Version: - ) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 71.0.3578.80 - Google Inc.) Google Drive (HKLM-x32\...\{A8DC81F2-D365-4248-892A-FA3B5951F731}) (Version: 2.34.9392.7803 - Google, Inc.) Google Earth Pro (HKLM-x32\...\{DE706580-82C7-4B1A-ABA4-EA48AC15B045}) (Version: 7.1.8.3036 - Google) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden Hextech Repair Tool (HKLM-x32\...\{7F9A97E6-E666-11E5-B582-B88687E82322}) (Version: 1.1.77 - Riot Games, Inc.) House Flipper (HKLM-x32\...\House Flipper_is1) (Version: - ) Importación de SketchUp 2016-2017 (HKLM-x32\...\{063925DB-9D8C-48E2-8F04-1B7038B6C783}) (Version: 2.2.0 - Autodesk) Intel(R) Chipset Device Software (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden Java 8 Update 181 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180181F0}) (Version: 8.0.1810.13 - Oracle Corporation) Java 8 Update 181 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180181F0}) (Version: 8.0.1810.13 - Oracle Corporation) Java SE Development Kit 8 Update 172 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180172}) (Version: 8.0.1720.11 - Oracle Corporation) Java SE Development Kit 8 Update 181 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180181}) (Version: 8.0.1810.13 - Oracle Corporation) KingRoot °æ±¾ 3.2.0 (HKLM-x32\...\{FA3B7324-9EB4-4ADC-84D0-5461BE113832}_is1) (Version: 3.2.0 - KingRoot) KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version: - ) La Batalla por la Tierra Media(tm) (HKLM-x32\...\{3F290582-3F4E-4B96-009C-E0BABAA40C42}) (Version: - ) Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc) Logitech Gaming Software 8.96 (HKLM\...\Logitech Gaming Software) (Version: 8.96.88 - Logitech Inc.) Malwarebytes versión 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes) Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2724099115-3414142137-1855297140-1001\...\OneDriveSetup.exe) (Version: 18.212.1021.0008 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{db012557-340e-4a46-adae-81a6b0f6a1e9}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{449EFED6-5F86-4428-8EB2-3DA1F6E67CE4}) (Version: 1.20.146.0 - Microsoft) Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang) MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.3.0.04 - MSI) MSIRegister (HKLM-x32\...\{80B995A4-3A86-4690-98A6-563F1A788835}_is1) (Version: 1.0.0.07 - MSI) MSXML4 Parser (HKLM-x32\...\{01501EBA-EC35-4F9F-8889-3BE346E5DA13}) (Version: 1.0.0 - Microsoft Game Studios) Mu Online LA - Season 6 EP3 (HKU\S-1-5-21-2724099115-3414142137-1855297140-1001\...\Mu Online LA - Season 6 EP3) (Version: - ) NetBeans IDE 8.2 (HKLM\...\nbi-nb-base-8.2.0.0.201609300101) (Version: 8.2 - NetBeans.org) NVIDIA Controlador de 3D Vision 398.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 398.82 - NVIDIA Corporation) NVIDIA Controlador de audio HD 1.3.37.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.4 - NVIDIA Corporation) NVIDIA Controlador de gráficos 398.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 398.82 - NVIDIA Corporation) NVIDIA Controlador de la controladora 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation) NVIDIA Software del sistema PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation) OVERKILLs The Walking Dead (HKLM-x32\...\OVERKILLs The Walking Dead_is1) (Version: - ) Panel de control de NVIDIA 398.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 398.82 - NVIDIA Corporation) Hidden Patch for BFME 1 version 1.05 (HKLM-x32\...\PATCH105_is1) (Version: 1.05 - ) Pokémon Uranium (HKLM-x32\...\{6E976865-25E7-4FAA-A594-AE58B98FADD9}) (Version: 1.1 - TTGJailbreak) PSeInt (HKLM-x32\...\PSeInt) (Version: - ) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.8.311.2016 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7806 - Realtek Semiconductor Corp.) Roblox Player for admin (HKU\S-1-5-21-2724099115-3414142137-1855297140-1001\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - Roblox Corporation) SketchUp 2017 (HKLM\...\{E59BD84C-169B-4F3F-AC5D-85127CF67051}) (Version: 17.2.2555 - Trimble, Inc.) Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.) STAR WARS® - Battlefront® II (HKLM-x32\...\1421404701_is1) (Version: 2.0.0.5 - GOG.com) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Stronghold 2 Deluxe (HKLM-x32\...\{16D2C649-CBA8-44EE-B730-12584667D487}) (Version: 1.40.000 - Firefly Studios) Sublime Text Build 3143 (HKLM\...\Sublime Text 3_is1) (Version: - Sublime HQ Pty Ltd) T3A Patch for BFME 1 (all-in-one) versión 1.06 (HKLM-x32\...\T3APATCH106AIO_is1) (Version: 1.06 - ) T3A Patch for BFME 1 version 1.06 (HKLM-x32\...\T3APATCH106_is1) (Version: 1.06 - ) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.7 - TeamSpeak Systems GmbH) TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.2.26558 - TeamViewer) The Elder Scrolls V Skyrim - Legendary Edition (HKLM-x32\...\The Elder Scrolls V Skyrim - Legendary Edition_is1) (Version: - ) The Forest (HKLM-x32\...\The Forest_is1) (Version: - ) The Sims 3 Complete Collection version 1.67.2 (HKLM-x32\...\The Sims 3 Complete Collection_is1) (Version: 1.67.2 - Mr DJ) The Witcher 3 - Wild Hunt (HKLM-x32\...\1495134320_is1) (Version: 2.0.0.51 - GOG.com) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN) WinDS PRO 2016.01.28 (HKLM\...\{4237FF56-4BD0-481E-BD44-C1A8DDA9C753}_is1) (Version: 2016.01.28 - WinDS PRO Central) WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment) Worms W.M.D (HKLM-x32\...\Worms W.M.D_is1) (Version: - ) XSplit Gamecaster (HKLM-x32\...\{8915913F-E4AF-46C5-B4EF-3535D83BFFDE}) (Version: 2.5.1507.3018 - SplitmediaLabs) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-2724099115-3414142137-1855297140-1001_Classes\CLSID\{0D327DA6-B4DF-4842-B833-2CFF84F0948F}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2017\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-2724099115-3414142137-1855297140-1001_Classes\CLSID\{720DB9AF-D62C-4ED0-A377-429C22312852}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2017\acad.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-2724099115-3414142137-1855297140-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2017\es-ES\acadficn.dll (Autodesk, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-11-18] (AVAST Software) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-11-18] (AVAST Software) ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2016-02-07] (Autodesk, Inc.) ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2016-02-07] (Autodesk) ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-11-18] (AVAST Software) ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal) ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-11-18] (AVAST Software) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes) ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-07-30] (NVIDIA Corporation) ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-11-18] (AVAST Software) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal) ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {00297DA4-507E-4104-90BF-3447DBCB2C22} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-30] (NVIDIA Corporation) Task: {02C113DE-3E99-4F35-BFDE-5613474D0F95} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: {0F19C0D7-707E-4893-AEA6-3C0C67414FE9} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-03-28] (AVAST Software) Task: {2660F04B-4AB6-446E-AA80-999B1E45B89F} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-30] (NVIDIA Corporation) Task: {2F6B234A-EE30-44B0-BEA5-13DC5192311C} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2018-11-18] (AVAST Software) Task: {3047A948-EFF2-463B-A4D1-4A9FCC28A9F0} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe Task: {33F79A29-322B-4E15-B397-E389B180EFB6} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-07-30] (NVIDIA Corporation) Task: {3AF433BB-51A8-4714-B3BD-E2DF2A7BF874} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION Task: {41ED39AF-DB0E-43A6-9C9F-B7C15DB021D3} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION Task: {56AF6D0A-155A-44FA-B9FD-534EDEBF1B69} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_28_0_0_126_pepper.exe [2017-12-12] (Adobe Systems Incorporated) Task: {572FC3DD-0830-4609-BD58-5BDA8E74E2DC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-17] (Google Inc.) Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-11] () Task: {6B9ADF79-209D-4D3E-BB87-501CDD4CB80B} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-30] (NVIDIA Corporation) Task: {7BB90A09-DA32-4838-8453-C784B54846F4} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe Task: {94C23403-EF20-4FEE-9B64-8C1609491C0C} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2015-05-18] () Task: {9C398FB2-0102-453B-B7EA-D1DC126B42AA} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-12-12] (Adobe Systems Incorporated) Task: {9EB15C71-A5E7-4397-A756-149B33EE4392} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-30] (NVIDIA Corporation) Task: {B160E822-EAA4-4184-92BA-0C0A0C47F5E2} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-11-18] (AVAST Software) Task: {CAD0B155-A2D5-4D16-A7F3-EE81DED227AC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-17] (Google Inc.) Task: {D098909E-5615-47C5-92D6-1284CADC3429} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-07-30] (NVIDIA Corporation) Task: {F07691F5-6E61-4C32-A022-6582C6CE61F3} - System32\Tasks\update-S-1-5-21-2724099115-3414142137-1855297140-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: {FDA2C124-0459-412A-93B3-D6FB8205BE4B} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-03-28] (AVAST Software) Task: {FFC0FC94-ECE8-48BF-9324-C64B74AA9414} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-07-30] (NVIDIA Corporation) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\WINDOWS\Tasks\CCleaner Update.job => C:\Program Files\CCleaner\CCUpdate.exe Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe Task: C:\WINDOWS\Tasks\update-S-1-5-21-2724099115-3414142137-1855297140-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe ==================== Shortcuts & WMI ======================== (The entries could be listed to be restored or removed.) ==================== Loaded Modules (Whitelisted) ============== 2018-04-11 20:34 - 2018-04-11 20:34 - 000491744 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2010-01-30 05:40 - 2010-01-30 05:40 - 004254560 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2018-04-11 20:34 - 2018-04-11 20:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll 2018-04-11 20:34 - 2018-04-11 20:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll 2018-01-21 07:44 - 2018-01-21 07:44 - 000948736 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_3.1.46.0_x64__8wekyb3d8bbwe\e_sqlite3.dll 2018-10-09 16:43 - 2018-10-09 16:43 - 002974888 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_3.1.46.0_x64__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll 2018-10-09 16:43 - 2018-10-09 16:43 - 000355840 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_3.1.46.0_x64__8wekyb3d8bbwe\Microsoft.Notes.Upgrade.dll 2018-03-13 09:49 - 2018-03-13 09:49 - 000631296 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_3.1.46.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll 2018-11-12 15:52 - 2018-11-12 15:52 - 000777728 _____ () C:\Program Files\WindowsApps\Microsoft.Services.Store.Engagement_10.0.18101.0_x64__8wekyb3d8bbwe\Microsoft.Services.Store.Engagement.dll 2018-11-18 17:31 - 2018-11-01 03:55 - 002185216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2015-03-06 21:07 - 2015-03-06 21:07 - 000908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll 2017-10-20 00:29 - 2017-10-20 00:29 - 001096824 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll 2015-03-06 21:07 - 2015-03-06 21:07 - 000060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll 2017-10-20 00:29 - 2017-10-20 00:29 - 000241784 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll 2018-10-09 16:43 - 2018-10-09 16:43 - 000165888 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_3.1.46.0_x64__8wekyb3d8bbwe\Microsoft.Notes.DesktopBridge.exe 2018-11-06 13:03 - 2018-11-06 13:03 - 000194048 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\WinStore.Preview.dll 2018-11-06 13:03 - 2018-11-06 13:03 - 002538056 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2018-12-09 19:00 - 2018-12-09 19:00 - 004220928 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1811.3241.0_x64__8wekyb3d8bbwe\Calculator.exe 2018-12-09 18:56 - 2018-12-09 18:56 - 004380232 _____ () C:\Program Files\WindowsApps\Microsoft.UI.Xaml.2.0_2.1810.18003.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2018-10-04 17:42 - 2018-10-04 17:42 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.76.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll 2018-12-09 18:56 - 2018-12-09 18:56 - 000060416 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.76.0_x64__kzf8qxf38zg5c\ChakraBridge.dll 2018-12-09 18:56 - 2018-12-09 18:56 - 000019456 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.76.0_x64__kzf8qxf38zg5c\SkypeProxiesAndStubs.dll 2018-12-09 18:56 - 2018-12-09 18:56 - 010885632 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.76.0_x64__kzf8qxf38zg5c\LibWrapper.dll 2018-12-09 18:56 - 2018-12-09 18:56 - 002850816 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.76.0_x64__kzf8qxf38zg5c\skypert.dll 2018-12-09 18:56 - 2018-12-09 18:56 - 000688128 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.76.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll 2018-12-09 18:56 - 2018-12-09 18:56 - 000182272 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.76.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe 2018-12-04 19:05 - 2018-11-30 19:34 - 005237216 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.80\libglesv2.dll 2018-12-04 19:05 - 2018-11-30 19:34 - 000117216 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.80\libegl.dll 2018-03-01 18:56 - 2018-03-01 18:56 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2018-11-18 16:12 - 2018-11-18 16:12 - 000596696 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll 2017-06-06 10:06 - 2013-09-23 14:52 - 000043912 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\QtSolutions_MFCMigrationFramework_Ad_2.dll 2017-06-06 10:06 - 2015-11-05 09:07 - 000052224 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qoauth_Ad_1.dll 2017-06-06 10:06 - 2015-11-05 09:07 - 000195584 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qjson_Ad_0.dll 2017-06-06 10:06 - 2015-11-05 09:07 - 000742400 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qca_Ad_2.dll 2017-06-06 10:06 - 2017-03-10 07:21 - 000280488 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\es-ES\AdWingManRes.dll 2017-06-06 10:06 - 2015-09-08 03:31 - 040640808 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\libcef.dll 2017-06-06 10:06 - 2014-09-02 21:29 - 000912384 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\libglesv2.dll 2017-06-06 10:06 - 2014-09-02 21:29 - 000134144 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\libegl.dll 2017-06-06 10:06 - 2014-09-02 21:29 - 000950272 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\ffmpegsumo.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0] AlternateDataStreams: C:\Users\Public\AppData:CSM [486] AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [478] ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) HKU\S-1-5-21-2724099115-3414142137-1855297140-1001\Software\Classes\.scr: AutoCADScriptFile => ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2015-10-30 04:24 - 2018-11-15 16:08 - 000000827 _____ C:\WINDOWS\system32\Drivers\etc\hosts ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-2724099115-3414142137-1855297140-1001\Control Panel\Desktop\\Wallpaper -> DNS Servers: 8.8.8.8 - 8.8.4.4 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == If an entry is included in the fixlist, it will be removed. MSCONFIG\Services: AdAppMgrSvc => 2 MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3 MSCONFIG\Services: ASGT => 2 MSCONFIG\Services: Disc Soft Lite Bus Service => 3 MSCONFIG\Services: EasyAntiCheat => 3 MSCONFIG\Services: FlexNet Licensing Service 64 => 3 MSCONFIG\Services: GfExperienceService => 2 MSCONFIG\Services: gupdate => 2 MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: LogiRegistryService => 2 MSCONFIG\Services: MSIREGISTER_MR => 2 MSCONFIG\Services: MSI_SuperCharger => 2 MSCONFIG\Services: NvNetworkService => 2 MSCONFIG\Services: NvStreamNetworkSvc => 3 MSCONFIG\Services: NvStreamSvc => 2 MSCONFIG\Services: nvsvc => 2 MSCONFIG\Services: Service KMSELDI => 2 MSCONFIG\Services: SkypeUpdate => 2 MSCONFIG\Services: Steam Client Service => 3 MSCONFIG\Services: Stereo Service => 2 ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [UDP Query User{A5F1EA34-F92C-46FD-B4D4-6E7795CAD930}C:\program files\java\jre1.8.0_172\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_172\bin\javaw.exe FirewallRules: [TCP Query User{F563891F-676C-4089-ABB8-633307FCDD5A}C:\program files\java\jre1.8.0_172\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_172\bin\javaw.exe FirewallRules: [UDP Query User{7DE35A7F-3159-42F7-AEEF-6C502375C855}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe FirewallRules: [TCP Query User{5627C15E-8589-4A3B-A28F-B195B699D1FD}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe FirewallRules: [{E594EF9C-6BFC-40D5-AB19-E40338877BEE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe FirewallRules: [{D70B6966-0D89-4E0A-967E-20ED8310D3B5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe FirewallRules: [UDP Query User{9528027A-ADDD-47E0-92CD-676BB8E1E8AA}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe FirewallRules: [TCP Query User{110B4AED-75A8-41B0-B4A1-B78F9FB50620}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe FirewallRules: [UDP Query User{FD80CE68-7845-4546-B5EA-C668DFB7EAF7}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe FirewallRules: [TCP Query User{00869B9B-6689-4430-BB6C-B7E8AF0ED8A7}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe FirewallRules: [UDP Query User{B8FB544E-9B29-436D-8F02-EB9A24B378C9}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe FirewallRules: [TCP Query User{E4E4EDCB-69CD-400D-82F0-173336E33026}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe FirewallRules: [UDP Query User{16BC5E0C-87C1-49A9-BD1A-4BD388D75E78}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [TCP Query User{358DA0E3-2F52-4383-879D-0E61F1F24001}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [UDP Query User{D0138794-77C3-4042-A431-F1605A6AA084}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe FirewallRules: [TCP Query User{B007F6FE-2BAA-46F1-9FA7-95F17F91BFBB}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe FirewallRules: [UDP Query User{80BA3EC9-9F74-4ABC-956C-4FE67DDF02C1}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe FirewallRules: [TCP Query User{2E25FE2A-716E-429E-82AF-BBE4D352CC35}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe FirewallRules: [{8A28D6E6-84C1-4973-8151-26E66A36A1F9}] => (Allow) C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe FirewallRules: [{71B60D98-8B1D-4CC7-BADA-B7414BC3C84E}] => (Allow) C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe FirewallRules: [{1A5D41C2-A802-4F1E-BD5C-F8E28EFE7007}] => (Allow) C:\Riot Games\League of Legends\LeagueClient.exe FirewallRules: [{9331A4F7-9359-4A2C-A5BB-313417C60292}] => (Allow) C:\Riot Games\League of Legends\LeagueClient.exe FirewallRules: [UDP Query User{4D8D6F3E-F63F-47D1-AAD1-7869BD354B51}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe FirewallRules: [TCP Query User{E45C6BAB-5000-4989-8A6C-154468C7D541}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe FirewallRules: [UDP Query User{E6F90A7F-086D-46B0-A8ED-CD6FFF01044C}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe FirewallRules: [TCP Query User{9C179F0F-2556-4C90-8CA5-51D9B136A3AA}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe FirewallRules: [{D7BAAD24-63BE-4B1A-83AC-D80F60344E5B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{586434C6-4979-4D3A-87EA-75A554113F7F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{0D1CD728-045C-453A-AF04-16E491315DB7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{204CF094-7307-4AD7-8DFC-DBD87664727E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{BB367A75-CA1A-45DB-A696-39F7EC83DF37}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{A606848B-9573-495C-B1A0-0B9067D03FE4}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{4BB89282-9494-4C06-B0E2-25FA45C3A2EF}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{A4A7803E-3E64-4948-BDB5-EF47C0D7C874}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{95EA986F-70C8-41C8-B5DC-9EA455C2A8FE}C:\program files\java\jre1.8.0_121\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_121\bin\javaw.exe FirewallRules: [UDP Query User{D2067119-51DC-42A1-A5D8-2580A92B8179}C:\program files\java\jre1.8.0_121\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_121\bin\javaw.exe FirewallRules: [TCP Query User{8DBA9E88-429B-4FCC-9B46-91A7537253F9}C:\program files (x86)\stronghold 2\stronghold2.exe] => (Allow) C:\program files (x86)\stronghold 2\stronghold2.exe FirewallRules: [UDP Query User{78F535B7-F49F-414A-A4D5-49E02C903013}C:\program files (x86)\stronghold 2\stronghold2.exe] => (Allow) C:\program files (x86)\stronghold 2\stronghold2.exe FirewallRules: [{668770AE-5A5D-4CCB-B6E4-B24F241702C1}] => (Allow) C:\Users\admin\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{5E6D0E07-0DA7-4807-BBB8-456267054D76}] => (Allow) C:\Users\admin\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{C57999DB-3585-49D8-A16B-439F69DB4F5E}] => (Allow) C:\Users\admin\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{53FBEFC7-95D3-4469-B252-25C407377927}] => (Allow) C:\Users\admin\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{1249840C-0B15-4BA6-A58F-E8BBF9AC15BC}] => (Allow) C:\Users\admin\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{859F13F0-7987-4DCF-A181-E0D0F294DAAF}] => (Allow) C:\Users\admin\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{42FFF9C1-0F50-4048-B3C1-92477BD3B363}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{2BCA29A2-805F-4B9F-875F-341C30839977}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{7A130B61-0E70-477F-9069-6E685231F950}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{D11C93DF-D1D7-4698-9D30-5345A255B196}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{7E416AC0-8C71-458B-BE39-77A1599DEBD1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{9BC73910-9FFF-4693-9F8F-92BF5424DD47}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{ACFFA92D-65EF-4D8E-8F4F-8C46AF04C004}] => (Allow) LPort=1688 FirewallRules: [{028210EF-73A0-43AC-9F69-19D954260661}] => (Allow) LPort=61323 FirewallRules: [{D1508150-7124-47FD-80CA-F729DAC4CD8A}] => (Allow) LPort=5000 FirewallRules: [TCP Query User{3792581F-C726-40C0-8CAE-A6EA58255269}C:\users\admin\desktop\conan.exiles.23580-9921.x64-kortal.7z\conan.exiles.23580-9921.x64-kortal.7z\conansandbox\binaries\win64\conansandbox.exe] => (Allow) C:\users\admin\desktop\conan.exiles.23580-9921.x64-kortal.7z\conan.exiles.23580-9921.x64-kortal.7z\conansandbox\binaries\win64\conansandbox.exe FirewallRules: [UDP Query User{7DB0378E-8E67-4153-8DF6-10FE321FFE76}C:\users\admin\desktop\conan.exiles.23580-9921.x64-kortal.7z\conan.exiles.23580-9921.x64-kortal.7z\conansandbox\binaries\win64\conansandbox.exe] => (Allow) C:\users\admin\desktop\conan.exiles.23580-9921.x64-kortal.7z\conan.exiles.23580-9921.x64-kortal.7z\conansandbox\binaries\win64\conansandbox.exe FirewallRules: [TCP Query User{C52D1A95-3A53-4D34-AA82-EF036915E168}C:\users\admin\desktop\juegos\conan.exiles.23580-9921.x64-kortal.7z\conan.exiles.23580-9921.x64-kortal.7z\conansandbox\binaries\win64\conansandbox.exe] => (Allow) C:\users\admin\desktop\juegos\conan.exiles.23580-9921.x64-kortal.7z\conan.exiles.23580-9921.x64-kortal.7z\conansandbox\binaries\win64\conansandbox.exe FirewallRules: [UDP Query User{DFB28023-7751-4A40-89F8-DE414008AA22}C:\users\admin\desktop\juegos\conan.exiles.23580-9921.x64-kortal.7z\conan.exiles.23580-9921.x64-kortal.7z\conansandbox\binaries\win64\conansandbox.exe] => (Allow) C:\users\admin\desktop\juegos\conan.exiles.23580-9921.x64-kortal.7z\conan.exiles.23580-9921.x64-kortal.7z\conansandbox\binaries\win64\conansandbox.exe FirewallRules: [{80ABBB26-AD4C-4B2D-A6AA-F6EBBD7282C0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stronghold Kingdoms\StrongholdKingdoms.exe FirewallRules: [{00A5DFB7-7964-4841-8947-2F20F6A29E96}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stronghold Kingdoms\StrongholdKingdoms.exe FirewallRules: [{2D46D0E1-148C-4342-A2A2-CCCAA2A77D48}] => (Allow) C:\Program Files (x86)\Firefly Studios\Stronghold 2\Stronghold2.exe FirewallRules: [{D91441DD-E272-4998-9096-9DE10E357226}] => (Allow) C:\Program Files (x86)\Firefly Studios\Stronghold 2\Stronghold2.exe FirewallRules: [TCP Query User{D4EB5C71-421E-473C-9172-532E47F9BADF}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{0795DCFC-79FE-4301-B433-858FBFB47F83}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [{09357532-B8C9-4A0B-9E9A-B27CBCF2E227}] => (Allow) C:\Program Files (x86)\EA GAMES\La Batalla por la Tierra Media(tm)\game.dat FirewallRules: [{AD83E8DC-F982-4FC6-9B14-485E69BE0084}] => (Allow) C:\Program Files (x86)\EA GAMES\La Batalla por la Tierra Media(tm)\game.dat FirewallRules: [{33B94E8F-DE1A-4066-ADEA-7EA9D4807CD8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Robocraft\Robocraft.exe FirewallRules: [{B9368D82-BD70-4FA1-81B2-DFE64A4E9FF4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Robocraft\Robocraft.exe FirewallRules: [{D000F41C-5296-430D-BD73-D7B594235323}] => (Allow) %USERPROFILE%\AppData\Local\Roblox\Versions\version-d23ad9d74cce450d\RobloxPlayerLauncher.exe FirewallRules: [TCP Query User{E3D982F6-C193-46A6-8C8A-097A731C4912}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe FirewallRules: [UDP Query User{5B59F6EF-9A69-46B5-BEDB-32BDA8DD88CD}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe FirewallRules: [TCP Query User{A3B71521-4302-43FB-B372-00AC36B882C3}C:\program files (x86)\java\jre1.8.0_151\bin\jp2launcher.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_151\bin\jp2launcher.exe FirewallRules: [UDP Query User{090F7D85-AA67-496A-A531-AAD4CC2D72DF}C:\program files (x86)\java\jre1.8.0_151\bin\jp2launcher.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_151\bin\jp2launcher.exe FirewallRules: [TCP Query User{ECEDFDB8-338F-4220-AB16-D151783FCDB7}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe FirewallRules: [UDP Query User{AEE38A0D-548B-4134-AC4A-5C0176326F45}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe FirewallRules: [TCP Query User{D788E221-9F72-4E04-935A-60DD28A6A8E9}C:\gog games\stronghold crusader 2\bin\win32_galaxy_release\crusader2.exe] => (Allow) C:\gog games\stronghold crusader 2\bin\win32_galaxy_release\crusader2.exe FirewallRules: [UDP Query User{831FED04-6EEE-4D36-BA07-58FE106CF1F2}C:\gog games\stronghold crusader 2\bin\win32_galaxy_release\crusader2.exe] => (Allow) C:\gog games\stronghold crusader 2\bin\win32_galaxy_release\crusader2.exe FirewallRules: [TCP Query User{15492D6E-A43A-4123-8E30-7EC788AF0342}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.146\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.146\deploy\leagueclient.exe FirewallRules: [UDP Query User{13C3E355-98A3-436E-8B6B-3BEC8C8AD65D}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.146\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.146\deploy\leagueclient.exe FirewallRules: [TCP Query User{6AECA2F3-7416-443A-B19F-7D07AAFCC34E}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe FirewallRules: [UDP Query User{697817CE-75EA-4D29-A201-43EC641C43E2}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe FirewallRules: [TCP Query User{39F806E1-C761-4D05-BA46-0BD9FC4F80E9}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe FirewallRules: [UDP Query User{9DDF20BE-81DE-4431-85AF-93C0DF6AAFD1}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe FirewallRules: [TCP Query User{14375F56-7CF7-4BFC-9DF5-80D0639A73EB}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe FirewallRules: [UDP Query User{3074DDE4-15A9-4926-B9CA-6D4876A1F87C}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe FirewallRules: [TCP Query User{8AE586D4-CE88-4954-AD71-BA2D0784B40A}C:\gog games\anno 1404 gold edition\tools\anno4web.exe] => (Allow) C:\gog games\anno 1404 gold edition\tools\anno4web.exe FirewallRules: [UDP Query User{36FD1346-0A6B-4018-AD0B-CFD31F701BB0}C:\gog games\anno 1404 gold edition\tools\anno4web.exe] => (Allow) C:\gog games\anno 1404 gold edition\tools\anno4web.exe FirewallRules: [TCP Query User{E9E0DD19-EEEE-45A9-82F0-D1AEA3D2FC6C}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.153\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.153\deploy\leagueclient.exe FirewallRules: [UDP Query User{0F2BA463-3927-4541-8B68-38CFC33D0476}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.153\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.153\deploy\leagueclient.exe FirewallRules: [TCP Query User{6E4E716C-BA94-4CA8-99EB-215696453E57}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe FirewallRules: [UDP Query User{4C255010-5B70-47C7-A241-B941CB456175}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe FirewallRules: [TCP Query User{B7D98E16-A7B5-40FF-B323-75D974DD4230}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe FirewallRules: [UDP Query User{19D9A1CB-C16F-4D41-996A-B16CBC03BE8D}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe FirewallRules: [{1510CAB7-7286-459E-A0C4-5F77D5B688C2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe FirewallRules: [{0ABC620D-D427-4685-BA7C-2055F0A45049}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe FirewallRules: [TCP Query User{B0C1C241-2AE8-4700-AE14-365906BF4297}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.155\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.155\deploy\leagueclient.exe FirewallRules: [UDP Query User{D0215DAD-6143-4EE8-B5C1-D4795B32FB1F}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.155\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.155\deploy\leagueclient.exe FirewallRules: [TCP Query User{2D2FD90D-8D9D-4681-86BC-27EA513BF62F}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.156\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.156\deploy\leagueclient.exe FirewallRules: [UDP Query User{02E34BF3-477D-4F53-BCD1-1E5998385D55}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.156\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.156\deploy\leagueclient.exe FirewallRules: [TCP Query User{DBC9B254-534F-40DE-BA09-F073EEB55C0E}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe FirewallRules: [UDP Query User{17091536-95C4-48CA-AD53-5353BE01DB4D}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe FirewallRules: [TCP Query User{8C7DF932-AF2F-48A7-A272-3A65BA1C451E}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe FirewallRules: [UDP Query User{BA449FCE-158F-4B64-A311-65EE27B6845A}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe FirewallRules: [TCP Query User{FC574F54-A563-46C2-8E16-EBAC55D34282}C:\gog games\anno 1404 gold edition\tools\addonweb.exe] => (Block) C:\gog games\anno 1404 gold edition\tools\addonweb.exe FirewallRules: [UDP Query User{AEE30696-DFDB-42C8-BB56-9C355054A8A2}C:\gog games\anno 1404 gold edition\tools\addonweb.exe] => (Block) C:\gog games\anno 1404 gold edition\tools\addonweb.exe FirewallRules: [{31FFA75C-D446-4B47-A65F-D9BF0B213950}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe FirewallRules: [{5DAB5698-6FB1-466D-9477-D093D6ECA127}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe FirewallRules: [TCP Query User{FD3AE2C1-F5A9-4EA2-A0C3-A37F43B3E1AB}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe FirewallRules: [UDP Query User{62B758CB-3511-4853-91BC-FDA7FCAF476B}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe FirewallRules: [TCP Query User{29AD8C8C-2EEA-43A8-A6CC-A14400457739}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe FirewallRules: [UDP Query User{26A1F242-BDF7-48BE-B6F1-3F3CE28C23C0}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe FirewallRules: [{B72E1F0B-44CF-4DF6-B580-DC6E74872B3C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{456BB6ED-DB64-43A5-A020-35874B71D769}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{FB3C79D9-53B1-47ED-9D68-1505891E1029}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{8D1557E2-ED25-4B9F-90EC-580E4D2ABA25}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{F8A3555D-3526-4F81-9D7A-8FDD74E87903}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe FirewallRules: [{1D517D86-2990-4714-99FD-4D207112DC6A}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe FirewallRules: [TCP Query User{C9354F4B-5303-4C3B-A001-4AA996AD34A3}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Allow) C:\program files (x86)\arduino\java\bin\javaw.exe FirewallRules: [UDP Query User{BAB7CA6A-D83F-4C73-A8BD-8346FB36D700}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Allow) C:\program files (x86)\arduino\java\bin\javaw.exe FirewallRules: [{E66F4082-1CDA-4FE5-92FB-B6F90ECBE6BA}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe FirewallRules: [TCP Query User{3BF36922-490E-4BE5-AB0E-EADC64E691B3}C:\program files (x86)\conan exiles\conansandbox\binaries\win64\conansandbox.exe] => (Allow) C:\program files (x86)\conan exiles\conansandbox\binaries\win64\conansandbox.exe FirewallRules: [UDP Query User{6B58E388-F2CE-48E6-9257-A0F4CA6ECB77}C:\program files (x86)\conan exiles\conansandbox\binaries\win64\conansandbox.exe] => (Allow) C:\program files (x86)\conan exiles\conansandbox\binaries\win64\conansandbox.exe FirewallRules: [TCP Query User{876E5CE4-64C5-48C2-A03D-F4D8DE0C8178}C:\program files (x86)\conan exiles\conansandbox\binaries\win64\conansandbox.exe] => (Allow) C:\program files (x86)\conan exiles\conansandbox\binaries\win64\conansandbox.exe FirewallRules: [UDP Query User{63B08034-9158-4A73-8277-3B4D6D16EA96}C:\program files (x86)\conan exiles\conansandbox\binaries\win64\conansandbox.exe] => (Allow) C:\program files (x86)\conan exiles\conansandbox\binaries\win64\conansandbox.exe FirewallRules: [TCP Query User{47397816-7C1B-44C3-B871-FFD879F836DB}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Allow) C:\program files (x86)\arduino\java\bin\javaw.exe FirewallRules: [UDP Query User{804C13E6-2FDF-4C9B-90E0-722D693AC46F}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Allow) C:\program files (x86)\arduino\java\bin\javaw.exe FirewallRules: [TCP Query User{468A1CE1-BCC5-45EC-BC52-C8E952DD6676}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe] => (Block) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe FirewallRules: [UDP Query User{3E673A2E-E19D-4F70-88EB-4D103DD26B04}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe] => (Block) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe FirewallRules: [{34816F5E-3945-48D5-BF81-5B7BFF95DBA1}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{6DC05E58-6782-4633-829B-017CA2517E58}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe FirewallRules: [{B605C05C-CF55-44F3-AD7E-4D8CFF4B1DE9}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe FirewallRules: [TCP Query User{C0A78521-4957-4B3D-9AA6-F5B8D8E59250}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe FirewallRules: [UDP Query User{179503BD-D804-44DF-83E1-18F0DD9A629A}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe FirewallRules: [{BE25F3D6-4CC2-453C-903F-181BEAA13945}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe FirewallRules: [{CCD5F9F9-E732-4D4D-B4FA-D47CA4655D18}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe ==================== Restore Points ========================= 28-11-2018 16:05:58 Punto de control programado 06-12-2018 15:29:22 Windows Update 09-12-2018 09:37:39 Quitado MSXML4 Parser 09-12-2018 09:49:00 Operación de restauración ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (12/12/2018 01:25:35 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nombre de la aplicación con errores: svchost.exe_WpnUserService, versión: 10.0.17134.1, marca de tiempo: 0xa38b9ab2 Nombre del módulo con errores: NotificationController.dll, versión: 10.0.17134.165, marca de tiempo: 0xe0385185 Código de excepción: 0xc0000005 Desplazamiento de errores: 0x000000000007c686 Identificador del proceso con errores: 0x1f70 Hora de inicio de la aplicación con errores: 0x01d491cf289ec228 Ruta de acceso de la aplicación con errores: C:\WINDOWS\system32\svchost.exe Ruta de acceso del módulo con errores: C:\Windows\System32\NotificationController.dll Identificador del informe: 8d4c5171-96e2-43a5-aef8-11fe7959ab93 Nombre completo del paquete con errores: Identificador de aplicación relativa del paquete con errores: Error: (12/12/2018 12:53:53 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nombre de la aplicación con errores: svchost.exe_WpnUserService, versión: 10.0.17134.1, marca de tiempo: 0xa38b9ab2 Nombre del módulo con errores: NotificationController.dll, versión: 10.0.17134.165, marca de tiempo: 0xe0385185 Código de excepción: 0xc0000005 Desplazamiento de errores: 0x000000000007c686 Identificador del proceso con errores: 0x938 Hora de inicio de la aplicación con errores: 0x01d491c58618b31a Ruta de acceso de la aplicación con errores: C:\WINDOWS\system32\svchost.exe Ruta de acceso del módulo con errores: C:\Windows\System32\NotificationController.dll Identificador del informe: d81b924e-1e59-4942-b319-3942086ea0c2 Nombre completo del paquete con errores: Identificador de aplicación relativa del paquete con errores: Error: (12/11/2018 06:31:39 PM) (Source: MsiInstaller) (EventID: 11310) (User: DESKTOP-E9AT1EB) Description: Producto: Akamai NetSession Interface -- Error 1310. Error al escribir en el archivo C:\Users\admin\AppData\Local\Akamai\admintool.exe. Error del sistema 0. Compruebe que dispone de acceso a ese directorio. Error: (12/11/2018 06:31:09 PM) (Source: MsiInstaller) (EventID: 11310) (User: DESKTOP-E9AT1EB) Description: Producto: Akamai NetSession Interface -- Error 1310. Error al escribir en el archivo C:\Users\admin\AppData\Local\Akamai\admintool.exe. Error del sistema 0. Compruebe que dispone de acceso a ese directorio. Error: (12/11/2018 02:26:13 AM) (Source: MsiInstaller) (EventID: 11310) (User: DESKTOP-E9AT1EB) Description: Producto: Akamai NetSession Interface -- Error 1310. Error al escribir en el archivo C:\Users\admin\AppData\Local\Akamai\admintool.exe. Error del sistema 0. Compruebe que dispone de acceso a ese directorio. Error: (12/11/2018 02:24:54 AM) (Source: MsiInstaller) (EventID: 11310) (User: DESKTOP-E9AT1EB) Description: Producto: Akamai NetSession Interface -- Error 1310. Error al escribir en el archivo C:\Users\admin\AppData\Local\Akamai\admintool.exe. Error del sistema 0. Compruebe que dispone de acceso a ese directorio. Error: (12/10/2018 09:49:32 PM) (Source: MsiInstaller) (EventID: 11310) (User: DESKTOP-E9AT1EB) Description: Producto: Akamai NetSession Interface -- Error 1310. Error al escribir en el archivo C:\Users\admin\AppData\Local\Akamai\admintool.exe. Error del sistema 0. Compruebe que dispone de acceso a ese directorio. Error: (12/10/2018 09:49:13 PM) (Source: MsiInstaller) (EventID: 11310) (User: DESKTOP-E9AT1EB) Description: Producto: Akamai NetSession Interface -- Error 1310. Error al escribir en el archivo C:\Users\admin\AppData\Local\Akamai\admintool.exe. Error del sistema 0. Compruebe que dispone de acceso a ese directorio. System errors: ============= Error: (12/12/2018 01:25:37 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: El servicio Servicio de usuario de notificaciones de inserción de Windows_62903 terminó inesperadamente. Esto se ha repetido 2 veces. Se realizará la siguiente acción correctora en 10000 milisegundos: Reiniciar el servicio. Error: (12/12/2018 12:53:57 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: El servicio Servicio de usuario de notificaciones de inserción de Windows_62903 terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 10000 milisegundos: Reiniciar el servicio. Error: (12/12/2018 12:32:09 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-E9AT1EB) Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID {8BC3F05E-D86B-11D0-A075-00C04FB68820} y APPID {8BC3F05E-D86B-11D0-A075-00C04FB68820} al usuario DESKTOP-E9AT1EB\admin con SID (S-1-5-21-2724099115-3414142137-1855297140-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes. Error: (12/11/2018 11:52:54 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-E9AT1EB) Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} y APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} al usuario DESKTOP-E9AT1EB\admin con SID (S-1-5-21-2724099115-3414142137-1855297140-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes. Error: (12/11/2018 11:12:31 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-E9AT1EB) Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} y APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} al usuario DESKTOP-E9AT1EB\admin con SID (S-1-5-21-2724099115-3414142137-1855297140-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes. Error: (12/11/2018 09:58:58 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-E9AT1EB) Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} y APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} al usuario DESKTOP-E9AT1EB\admin con SID (S-1-5-21-2724099115-3414142137-1855297140-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes. Error: (12/11/2018 09:58:26 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-E9AT1EB) Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} y APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} al usuario DESKTOP-E9AT1EB\admin con SID (S-1-5-21-2724099115-3414142137-1855297140-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes. Error: (12/11/2018 09:56:21 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-E9AT1EB) Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} y APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} al usuario DESKTOP-E9AT1EB\admin con SID (S-1-5-21-2724099115-3414142137-1855297140-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes. CodeIntegrity: =================================== Date: 2018-12-11 21:52:16.598 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\AVAST Software\Avast\wsc_proxy.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2018-12-11 21:52:12.325 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\AVAST Software\Avast\wsc_proxy.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2018-12-11 21:50:52.080 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\AVAST Software\Avast\wsc_proxy.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2018-12-11 21:40:24.314 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\AVAST Software\Avast\wsc_proxy.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2018-12-11 21:40:24.127 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\AVAST Software\Avast\wsc_proxy.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2018-12-11 21:40:23.301 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\AVAST Software\Avast\wsc_proxy.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2018-12-11 20:40:23.799 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\AVAST Software\Avast\wsc_proxy.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2018-12-11 20:40:23.641 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\AVAST Software\Avast\wsc_proxy.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i5-6400 CPU @ 2.70GHz Percentage of memory in use: 41% Total physical RAM: 8158.1 MB Available physical RAM: 4804.38 MB Total Virtual: 9438.1 MB Available Virtual: 5670.45 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:930.96 GB) (Free:178.91 GB) NTFS Drive e: (G71-MID1065) (CDROM) (Total:4.09 GB) (Free:0 GB) CDFS \\?\Volume{196aa0e5-2765-4c4a-99f6-f324decac9cc}\ (Recuperación) (Fixed) (Total:0.44 GB) (Free:0.05 GB) NTFS \\?\Volume{684605f4-18e2-4846-989b-2339eb756183}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000) Partition: GPT. ==================== End of Addition.txt ============================