Fix result of Farbar Recovery Scan Tool (x86) Version: 18-09-2019 01
Ran by DANYSOHO (19-09-2019 02:01:15) Run:2
Running from C:\Users\DANYSOHO\Desktop
Loaded Profiles: DANYSOHO (Available Profiles: DANYSOHO & danys & elisa)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:
HKU\S-1-5-21-2758037267-3932966379-2764919300-1000\...\Winlogon: [Shell] C:\Windows\Explorer.exe [2972672 2016-08-29] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION
Task: {F5ADDC82-1EF4-45BD-A9C4-AB2C67058584} - System32\Tasks\DivXUpdate => C:\Program Files\Common Files\DivX Shared\DivX Update\DivXUpdate.exe [68568 2017-08-02] (DivX, LLC -> DivX, LLC)
Task: {C05519EE-1123-44C6-B3C8-9FBC6EA4C36B} - System32\Tasks\{47EB7374-266E-4F3C-871D-D1D87E14F96B} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\VS Revo Group\Revo Uninstaller\RevoUnin.exe" -d "C:\Program Files\VS Revo Group\Revo Uninstaller
Task: C:\Windows\Tasks\{537C7AE7-D823-4C35-4FF3-649BA5EDB819}.job => C:\Users\danys\AppData\Local\UPDATE~1\LASILE~1.EXE <==== ATTENTION
C:\Users\danys\AppData\Local\UPDATE~1\LASILE~1.EXE
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll [No File]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S3 EsgScanner; system32\DRIVERS\EsgScanner.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
2019-08-28 14:21 - 2019-08-28 14:21 - 000000000 ____D C:\d55b0a5917fb36cb4c2825cb12a0
2019-08-28 14:01 - 2019-08-28 14:03 - 000000000 ____D C:\969f54a689408716ba4dbfced35400
2019-08-28 13:58 - 2019-08-28 14:01 - 000000000 ____D C:\72c87985d347b05af71dac
2019-08-28 13:50 - 2019-08-28 13:52 - 000000000 ____D C:\8deb83110aa8dfef27f5e43548c8
2019-08-28 13:48 - 2019-08-28 13:49 - 000000000 ____D C:\2353a417d2376ffacb727932
2019-08-28 13:46 - 2019-08-28 13:47 - 000000000 ____D C:\590e0566bd5b582c79b8
2019-08-28 13:44 - 2019-08-28 13:46 - 000000000 ____D C:\5eab2071a8fea799dc000155e1f774
2019-08-28 13:42 - 2019-08-28 13:43 - 000000000 ____D C:\a5b7dd43e3f985f001e14029b307
2019-08-28 13:39 - 2019-08-28 13:42 - 000000000 ____D C:\7357a364016bad71913bf6ed
2019-08-28 13:37 - 2019-08-28 13:39 - 000000000 ____D C:\05e2b9984352412e05ae6db9cee4
2019-08-28 13:34 - 2019-08-28 13:37 - 000000000 ____D C:\6207d2d1fab3ca8a406b20
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
HKLM\...\scrfile\shell\open\command: "%1" <==== ATTENTION
FirewallRules: [TCP Query User{CABBCE0D-DB22-4F5A-911B-78FC74A7CA3E}C:\users\danys\appdata\local\programs\opera\62.0.3331.116\opera.exe] => (Allow) C:\users\danys\appdata\local\programs\opera\62.0.3331.116\opera.exe No File
FirewallRules: [UDP Query User{2BC9FD5C-AED7-4E0E-B504-31E2A8FFD18A}C:\users\danys\appdata\local\programs\opera\62.0.3331.116\opera.exe] => (Allow) C:\users\danys\appdata\local\programs\opera\62.0.3331.116\opera.exe No File
FirewallRules: [TCP Query User{FDA71082-A3D4-4448-87B4-4C85869EE91E}C:\users\danys\appdata\local\programs\opera\62.0.3331.116\opera.exe] => (Allow) C:\users\danys\appdata\local\programs\opera\62.0.3331.116\opera.exe No File
FirewallRules: [UDP Query User{B2D47297-55CA-4389-AF29-37A26B5168DE}C:\users\danys\appdata\local\programs\opera\62.0.3331.116\opera.exe] => (Allow) C:\users\danys\appdata\local\programs\opera\62.0.3331.116\opera.exe No File

CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
END
*****************

Processes closed successfully.
Restore point was successfully created.
"HKU\S-1-5-21-2758037267-3932966379-2764919300-1000\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F5ADDC82-1EF4-45BD-A9C4-AB2C67058584}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F5ADDC82-1EF4-45BD-A9C4-AB2C67058584}" => removed successfully.
C:\Windows\System32\Tasks\DivXUpdate => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DivXUpdate" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C05519EE-1123-44C6-B3C8-9FBC6EA4C36B}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C05519EE-1123-44C6-B3C8-9FBC6EA4C36B}" => removed successfully.
C:\Windows\System32\Tasks\{47EB7374-266E-4F3C-871D-D1D87E14F96B} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{47EB7374-266E-4F3C-871D-D1D87E14F96B}" => removed successfully.
C:\Windows\Tasks\{537C7AE7-D823-4C35-4FF3-649BA5EDB819}.job => moved successfully
"C:\Users\danys\AppData\Local\UPDATE~1\LASILE~1.EXE" => not found
HKLM\Software\MozillaPlugins\@divx.com/DivX Web Player Plug-In,version=1.0.0 => removed successfully.
HKLM\System\CurrentControlSet\Services\esgiguard => removed successfully.
esgiguard => service removed successfully.
HKLM\System\CurrentControlSet\Services\EsgScanner => removed successfully.
EsgScanner => service removed successfully.
HKLM\System\CurrentControlSet\Services\VGPU => removed successfully.
VGPU => service removed successfully.
C:\d55b0a5917fb36cb4c2825cb12a0 => moved successfully
C:\969f54a689408716ba4dbfced35400 => moved successfully
C:\72c87985d347b05af71dac => moved successfully
C:\8deb83110aa8dfef27f5e43548c8 => moved successfully
C:\2353a417d2376ffacb727932 => moved successfully
C:\590e0566bd5b582c79b8 => moved successfully
C:\5eab2071a8fea799dc000155e1f774 => moved successfully
C:\a5b7dd43e3f985f001e14029b307 => moved successfully
C:\7357a364016bad71913bf6ed => moved successfully
C:\05e2b9984352412e05ae6db9cee4 => moved successfully
C:\6207d2d1fab3ca8a406b20 => moved successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avg => removed successfully.
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => not found
"CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"" => removed successfully.
"BVTFilter" => removed successfully.
"BVTConsumer" => removed successfully.
HKLM\Software\Classes\scrfile\shell\open\command\\Default => value restored successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{CABBCE0D-DB22-4F5A-911B-78FC74A7CA3E}C:\users\danys\appdata\local\programs\opera\62.0.3331.116\opera.exe" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{2BC9FD5C-AED7-4E0E-B504-31E2A8FFD18A}C:\users\danys\appdata\local\programs\opera\62.0.3331.116\opera.exe" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{FDA71082-A3D4-4448-87B4-4C85869EE91E}C:\users\danys\appdata\local\programs\opera\62.0.3331.116\opera.exe" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{B2D47297-55CA-4389-AF29-37A26B5168DE}C:\users\danys\appdata\local\programs\opera\62.0.3331.116\opera.exe" => removed successfully.

========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

========= End of CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows


Adaptador de Ethernet Conexi¢n de  rea local:

   Sufijo DNS espec¡fico para la conexi¢n. . : 
   V¡nculo: direcci¢n IPv6 local. . . : fe80::cd97:3973:8299:336d%11
   Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.100.2
   M scara de subred . . . . . . . . . . . . : 255.255.255.0
   Puerta de enlace predeterminada . . . . . : fe80::1%11
                                       192.168.100.1

Adaptador de t£nel isatap.{8C772692-F163-47FB-8671-57DACF4162AD}:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de t£nel 6TO4 Adapter:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

========= End of CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0 [ 7.5.7601 ]
BITS administration utility.
(C) Copyright 2000-2006 Microsoft Corp.

BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.

Unable to cancel {6AE85E4A-290A-458D-9FAE-6FE1B09AA499}.
Unable to cancel {54C68998-CEA9-437E-95F1-96E25387ECE4}.
Unable to cancel {CD9DB5C5-6D06-4D98-B9E1-CA9A013A59B5}.
Unable to cancel {E26C8BEC-9C09-418E-84DB-3424AC0DB132}.
Unable to cancel {C13C2548-D83E-41CB-A7E2-DC38EFF42332}.
Unable to cancel {C434229E-D29C-4E58-AA99-D1E10DD022CA}.
Unable to cancel {3D7213BE-09C7-4B7E-89A4-2063978D07CD}.
Unable to cancel {4E9C0741-64F0-47CC-A3AB-592B614DDC3E}.
Unable to cancel {89F0090D-92A6-4EA1-A28A-226F994C1F7D}.
Unable to cancel {535A862C-DDBF-4599-9F8C-73095BBF807B}.
Unable to cancel {233760CB-8F4F-423C-900D-DABCB4EFEE5F}.
Unable to cancel {6FE1CD7A-6359-4C1C-A01D-FAD066EFF2E8}.
Unable to cancel {3BAF5221-DAAE-41B5-9610-CEC594C69473}.
Unable to cancel {65C0B510-22F8-468B-B820-6C034DDE687A}.
Unable to cancel {B8EA4461-363D-4DF1-BAC9-E7F0D9DF0464}.
Unable to cancel {406D8F76-CB3C-46E0-A4F6-CC19BDC16B83}.
Unable to cancel {67425A44-8980-4D40-9952-E8513B30979F}.
Unable to cancel {3EA928A3-055A-44D5-B9AC-7CF6E9C82980}.
Unable to cancel {E04F9437-5557-4042-A724-6626A5F970B8}.
Unable to cancel {62A7FF6E-F6B1-4832-9979-743BCE6C1BE4}.
Unable to cancel {C2ABB1F7-B8A8-406E-B0FC-6D644A01D999}.
Unable to cancel {CC86D2DF-4459-42D5-89CD-6738DEF94427}.
Unable to cancel {5E97B7F5-C7D1-4592-9661-02A79A900D19}.
0 out of 23 jobs canceled.

========= End of CMD: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= End of CMD: =========


========= netsh advfirewall reset =========

Aceptar


========= End of CMD: =========


========= netsh advfirewall set allprofiles state ON =========

Aceptar


========= End of CMD: =========


========= netsh int ipv4 reset =========

Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= End of CMD: =========


========= netsh int ipv6 reset =========

No hay valores configurados por el usuario para restablecer.


========= End of CMD: =========


========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully.
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully.
"HKU\S-1-5-21-2758037267-3932966379-2764919300-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully.
"HKU\S-1-5-21-2758037267-3932966379-2764919300-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully.


========= End of RemoveProxy: =========

C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 6581065 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 352300 B
Edge => 0 B
Chrome => 56415773 B
Firefox => 43727681 B
Opera => 51407920 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 66228 B
LocalService => 2279176 B
NetworkService => 177624 B
DANYSOHO => 21348033 B
danys => 160870268 B
elisa => 88032357 B

RecycleBin => 0 B
EmptyTemp: => 419.3 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 02:08:38 ====