Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-11-2019 Ran by Lucas (08-11-2019 00:27:27) Running from C:\Users\Lucas\Downloads Windows 7 Ultimate Service Pack 1 (X64) (2019-06-28 04:04:16) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrador (S-1-5-21-462057610-624535720-574908975-500 - Administrator - Disabled) Invitado (S-1-5-21-462057610-624535720-574908975-501 - Limited - Disabled) Lucas (S-1-5-21-462057610-624535720-574908975-1000 - Administrator - Enabled) => C:\Users\Lucas ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: ESET Security (Disabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440} AS: ESET Security (Disabled - Up to date) {333C65BB-8923-0EAA-C47E-C486E687BEFD} AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) Active Directory Authentication Library for SQL Server (HKLM\...\{31D1C054-08DC-4509-B621-2024938AABB1}) (Version: 15.0.1300.359 - Microsoft Corporation) Hidden Actualización de NVIDIA 38.0.1.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.1.0 - NVIDIA Corporation) Hidden Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.270 - Adobe) Age of Mythology + The Titans (HKLM-x32\...\Age of Mythology + The Titans Expansion_is1) (Version: - ) Application Verifier x64 External Package (HKLM\...\{B27BC1FC-8474-9E32-73C2-6F7CD58AD1E3}) (Version: 10.1.17763.132 - Microsoft) Hidden Autodesk 3ds Max 2020 (HKLM\...\{BD028CEF-A20D-42fe-BC8A-31EF3A60F194}) (Version: 22.0.0.757 - Autodesk) Hidden Autodesk 3ds Max 2020 (HKLM\...\Autodesk 3ds Max 2020) (Version: 22.0.0.757 - Autodesk) Autodesk Civil View for 3ds Max 2020 64-bit (HKLM\...\{36D39F27-7B90-4F5C-82D7-924D7128760C}) (Version: 22.0.0.0 - Autodesk) Autodesk Desktop App (HKLM-x32\...\Autodesk Desktop App) (Version: 7.0.16.29 - Autodesk) Autodesk Genuine Service (HKLM-x32\...\{317D67F2-9027-4E85-9ED1-ADF4D765AE02}) (Version: 3.0.11 - Autodesk) Autodesk Inventor Server Engine for 3ds Max 2020 (HKLM\...\{6705B770-D46A-46BC-831F-2F63DA2936B1}) (Version: 21.0 - Autodesk) Autodesk Material Library 2020 (HKLM-x32\...\{B9312A51-41B5-479D-9F72-E7448A2D89AF}) (Version: 18.11.1.0 - Autodesk) Autodesk Material Library Base Resolution Image Library 2020 (HKLM-x32\...\{0E976988-E753-4C81-BD96-434CE305B176}) (Version: 18.11.1.0 - Autodesk) Autodesk Material Library Medium Resolution Image Library 2020 (HKLM-x32\...\{B52B3C0C-F56D-44CB-AC81-F86BCBB7550F}) (Version: 18.11.1.0 - Autodesk) Autodesk Revit Interoperability for 3ds Max 2020 (HKLM\...\{0BB716E0-2000-0610-0000-097DC2F354DF}) (Version: 20.0.0.364 - Autodesk) Hidden Autodesk Revit Interoperability for 3ds Max 2020 (HKLM\...\Autodesk Revit Interoperability for 3ds Max 2020) (Version: 20.0.0.364 - Autodesk) Autodesk Single Sign On Component (HKLM\...\{E3807FC8-DD0A-4D6D-89E9-EAADE00C845C}) (Version: 10.22.00.1800 - Autodesk) Black Mesa Non-Steam (HKLM\...\Black Mesa_is1) (Version: 1.00.001.1 - Crowbar Collective) Blender (HKLM\...\{F343C69A-4ABA-434C-9C73-12A519D269CD}) (Version: 2.80.0 - Blender Foundation) Blitz (HKU\S-1-5-21-462057610-624535720-574908975-1000\...\Blitz) (Version: 1.3.5 - Blitz Inc.) Brackets (HKLM-x32\...\{B35274F4-8BDD-4128-8329-A40D76D51DCC}) (Version: 1.14.17740 - brackets.io) BUFF (HKU\S-1-5-21-462057610-624535720-574908975-1000\...\Overwolf_caboggillkkpgkiokbjmgldfkedbfnpkgadakcdl) (Version: 0.3.32 - Overwolf app) CCleaner (HKLM\...\CCleaner) (Version: 5.62 - Piriform) Cheat Engine 7.0 (HKLM\...\Cheat Engine 7.0_is1) (Version: - Cheat Engine) ClickOnce Bootstrapper Package for Microsoft .NET Framework (HKLM-x32\...\{5FD1DF50-FBB1-4888-8F8F-4ECDC78909C4}) (Version: 4.8.03928 - Microsoft Corporation) Hidden Core Temp 1.15 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.15 - ALCPU) Counter-Strike 1.6 (HKLM-x32\...\Counter-Strike 1.6_is1) (Version: Counter-Strike 1.6 No Steam - KingSOFT DVD) CursorXP (HKLM-x32\...\CursorXP) (Version: - ) DiagnosticsHub_CollectionService (HKLM\...\{1F3C3AAC-9F7A-47DA-A082-0ACE770041BE}) (Version: 16.1.28901 - Microsoft Corporation) Hidden Discord (HKU\S-1-5-21-462057610-624535720-574908975-1000\...\Discord) (Version: 0.0.305 - Discord Inc.) Dreamweaver versión Cs6 (HKLM-x32\...\{4A7172AD-6E68-4951-8ECF-4721589AF4A5}_is1) (Version: Cs6 - Nws) Entity Framework 6.2.0 Tools for Visual Studio 2019 (HKLM-x32\...\{C4105EB5-5C16-40C4-93DF-66DE6584D26E}) (Version: 6.2.0.0 - Microsoft Corporation) Hidden Epic Games Launcher (HKLM-x32\...\{D19DBA3B-7451-49DB-98C4-E22F824663D9}) (Version: 1.1.220.0 - Epic Games, Inc.) ESET Security (HKLM\...\{6D46484B-0BE2-4060-9CD3-FA87ED960ED9}) (Version: 13.0.22.0 - ESET, spol. s r.o.) FileZilla Client 3.45.1 (HKU\S-1-5-21-462057610-624535720-574908975-1000\...\FileZilla Client) (Version: 3.45.1 - Tim Kosse) Folder Size (HKLM-x32\...\{FC8D21C8-7B29-4104-ADB0-FEE9CA1C7922}) (Version: 2.6 - Brio) Gameloop (HKLM-x32\...\MobileGamePC) (Version: 1.0.0.1 - Tencent Technology Company) Geeks3D FurMark 1.20.8.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: - Geeks3D) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 78.0.3904.97 - Google LLC) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.341 - Google LLC) Hidden Grand Theft Auto: San Andreas (HKLM-x32\...\Grand Theft Auto: San Andreas) (Version: 1.0.0.22 - Rockstar Games) Half-Life (HKLM-x32\...\Half-Life_is1) (Version: Half-Life - No Steam - KingSOFT DVD) icecap_collection_neutral (HKLM-x32\...\{7BB0BF1D-3021-45DC-912E-9DAB74F486C0}) (Version: 16.3.29110 - Microsoft Corporation) Hidden icecap_collection_x64 (HKLM\...\{0B880F5C-ECD4-4FC6-81A7-46C40ECA0B8C}) (Version: 16.3.29110 - Microsoft Corporation) Hidden icecap_collectionresources (HKLM-x32\...\{6076F627-6B63-451D-A6A9-3593F9E71404}) (Version: 16.3.29110 - Microsoft Corporation) Hidden icecap_collectionresourcesx64 (HKLM-x32\...\{AA3C3B45-BEE2-4F12-B053-A5EF7BF0C360}) (Version: 16.1.28829 - Microsoft Corporation) Hidden IIS 10.0 Express (HKLM\...\{643F2A3F-960C-4914-BD67-9490B4484108}) (Version: 10.0.03203 - Microsoft Corporation) IIS Express Application Compatibility Database for x64 (HKLM\...\{08274920-8908-45c2-9258-8ad67ff77b09}.sdb) (Version: - ) Hidden IIS Express Application Compatibility Database for x86 (HKLM\...\{ad846bae-d44b-4722-abad-f7420e08bcd9}.sdb) (Version: - ) Hidden IntelliTraceProfilerProxy (HKLM-x32\...\{7D94CF67-6666-4111-B027-D7AB7F189F70}) (Version: 15.0.18198.01 - Microsoft Corporation) Hidden IPweb Surf (HKLM-x32\...\{12F8CF7A-1E47-44BE-A605-C9B182332610}) (Version: 3.3.3 - IPweb.ru) Java 8 Update 221 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180221F0}) (Version: 8.0.2210.11 - Oracle Corporation) Kits Configuration Installer (HKLM-x32\...\{29B915AE-013F-151F-3E61-67F7363C3A09}) (Version: 10.1.17763.132 - Microsoft) Hidden Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc) Malwarebytes version 4.0.4.49 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.0.4.49 - Malwarebytes) MAXtoA for 3ds Max 2020 (HKLM\...\{78DCBB3E-D0F1-4471-985A-6695707E93A7}) (Version: 2.4.43.0 - Solid Angle) Microsoft .NET Core SDK 2.1.700 (x64) (HKLM-x32\...\{2335da6c-07b8-4479-b89c-f52986f760f6}) (Version: 2.1.700 - Microsoft Corporation) Microsoft .NET Core SDK 3.0.100 (x64) from Visual Studio (HKLM\...\{C52DB3F0-440B-4A83-B795-B1180D70BBFF}) (Version: 3.0.100.014277 - Microsoft Corporation) Microsoft .NET Framework 4.7.2 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.7.03062 - Microsoft Corporation) Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation) Microsoft Age of Empires II (HKLM-x32\...\Age of Empires 2.0) (Version: - ) Microsoft Azure Authoring Tools - v2.9.6 (HKLM\...\{EDADFA19-7F96-4075-A4AB-2209910626C5}) (Version: 2.9.8899.26 - Microsoft Corporation) Microsoft Azure Compute Emulator - v2.9.6 (HKLM\...\Microsoft Azure Compute Emulator - v2.9.6) (Version: 2.9.8899.26 - Microsoft Corporation) Microsoft Azure Libraries for .NET – v2.9 (HKLM\...\{C5C91AA6-3E83-430E-8B7A-6B790083F28D}) (Version: 3.0.0127.060 - Microsoft Corporation) Microsoft Azure Storage Emulator - v5.10 (HKLM-x32\...\Microsoft Azure Storage Emulator - v5.10) (Version: 5.10.19227.2113 - Microsoft Corporation) Microsoft ODBC Driver 17 for SQL Server (HKLM\...\{2106BECC-3376-41AF-964F-C1A7E7BD2719}) (Version: 17.2.0.1 - Microsoft Corporation) Microsoft SQL Server 2014 Express LocalDB (HKLM\...\{52EBC484-44A1-4DC5-824A-0A503735ABD8}) (Version: 12.1.4100.1 - Microsoft Corporation) Microsoft SQL Server 2016 LocalDB (HKLM\...\{0CA7D28F-F81A-42A2-B14B-CABE07F04282}) (Version: 13.1.4001.0 - Microsoft Corporation) Microsoft System CLR Types para SQL Server 2019 CTP2.2 (HKLM\...\{7FAD4DD7-7874-48A9-8E1C-1EAE6267A5A5}) (Version: 15.0.1200.24 - Microsoft Corporation) Microsoft System CLR Types para SQL Server 2019 CTP2.2 (HKLM-x32\...\{C42B6F9F-4C9E-45E0-BAD3-4C1F933410A3}) (Version: 15.0.1200.24 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.23.27820 (HKLM-x32\...\{852adda4-4c78-4a38-b583-c0b360a329d6}) (Version: 14.23.27820.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation) Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 2.3.2217.1010 - Microsoft Corporation) Microsoft Web Deploy 4.0 (HKLM\...\{BBCDB523-F5B7-4E53-A911-C85191E3BDF0}) (Version: 10.0.2606 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation) Minecraft Launcher (HKLM-x32\...\{810F1419-7760-402E-8772-B4054FAA2B72}) (Version: 1.0.0.0 - Mojang) MSI Afterburner 4.6.1 (HKLM-x32\...\Afterburner) (Version: 4.6.1 - MSI Co., LTD) MSI Development Tools (HKLM-x32\...\{6C961B30-A670-8A05-3BFE-3947E84DD4E4}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden MSXML4 Parser (HKLM-x32\...\{01501EBA-EC35-4F9F-8889-3BE346E5DA13}) (Version: 1.0.0 - Microsoft Game Studios) Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.7.1 - Notepad++ Team) NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden NVIDIA Controlador de gráficos 436.15 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 436.15 - NVIDIA Corporation) NVIDIA GeForce Experience 3.20.0.118 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.0.118 - NVIDIA Corporation) NVIDIA mental ray and IRay feature plugins for 3ds Max 2020 (HKLM\...\{56B041A5-F592-4B9A-AD5D-68915B926AE9}) (Version: 22.0.0.0 - Autodesk) NVIDIA Software del sistema PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation) Overwolf (HKLM-x32\...\Overwolf) (Version: 0.137.0.14 - Overwolf Ltd.) Panel de control de NVIDIA 436.15 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 436.15 - NVIDIA Corporation) Hidden Paquete acumulativo de Intellisense de Microsoft .NET Framework para Visual Studio (español) (HKLM-x32\...\{F1648370-5D04-42C6-9DBA-98F0408FC7EB}) (Version: 4.8.03761 - Microsoft Corporation) Hidden Paquete de compatibilidad de Microsoft .NET Framework 4.7.2 (español) (HKLM-x32\...\{DE9EAC0A-7859-4294-B05F-4A056D83024C}) (Version: 4.7.03062 - Microsoft Corporation) Hidden PBE (HKLM-x32\...\PBE 1.0) (Version: 1.0 - Riot Games, Inc) Photoshop CS5 Extended 12.0 (HKLM-x32\...\Photoshop CS5 Extended 12.0) (Version: - ) Porofessor.gg (HKU\S-1-5-21-462057610-624535720-574908975-1000\...\Overwolf_pibhbkkgefgheeglaeemkkfjlhidhcedalapdggh) (Version: 2.1.3 - Overwolf app) PuTTY release 0.72 (64-bit) (HKLM\...\{8EFBA1C7-A8B8-4FB9-BEC0-6CEC6C7145DE}) (Version: 0.72.0.0 - Simon Tatham) Remote Mouse version 3.012 (HKLM-x32\...\{01E4BC6D-3ACC-45E1-8928-C2FF626F63F3}_is1) (Version: 3.012 - Remote Mouse) RivaTuner Statistics Server 7.2.2 (HKLM-x32\...\RTSS) (Version: 7.2.2 - Unwinder) Roblox Player for Lucas (HKU\S-1-5-21-462057610-624535720-574908975-1000\...\roblox-player) (Version: - Roblox Corporation) Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.4.116 - Rockstar Games) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.2.5 - Rockstar Games) SDK ARM Additions (HKLM-x32\...\{0B5D6FB7-05A5-271B-5B99-82384219A471}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden SDK ARM Redistributables (HKLM-x32\...\{4A5F6E94-7967-A333-8231-CA9AF35E03BD}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden SDK de Microsoft .NET Framework 4.7.2 (español) (HKLM-x32\...\{9BEBCD18-E34F-4FB0-B960-064C5EEDAEE0}) (Version: 4.7.03062 - Microsoft Corporation) Hidden Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Sublime Text 3 (HKLM\...\Sublime Text 3_is1) (Version: - Sublime HQ Pty Ltd) TeamSpeak 3 Client (HKU\S-1-5-21-462057610-624535720-574908975-1000\...\TeamSpeak 3 Client) (Version: 3.3.0 - TeamSpeak Systems GmbH) TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp) TypeScript SDK (HKLM-x32\...\{7C8CE25B-A2FA-4BE3-8543-D8124349C074}) (Version: 3.6.2.0 - Microsoft Corporation) Hidden UE4 Prerequisites (x64) (HKLM\...\{F9EC45F9-074A-48BF-92E9-A8CADD56F693}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden UE4 Prerequisites (x64) (HKLM-x32\...\{4e242cc8-5e3c-4b08-9d55-dbc62ddd1208}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden Universal CRT Extension SDK (HKLM-x32\...\{7D225043-6CC5-7B56-11DD-AFF90E4C1C0C}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Universal CRT Headers Libraries and Sources (HKLM-x32\...\{CB19DBA2-C210-5646-9522-695A1317CD34}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Universal CRT Redistributable (HKLM-x32\...\{0460C87B-7F4C-3170-FAC9-B7A6AE5CE4E9}) (Version: 10.0.26624 - Microsoft Corporation) Hidden Universal CRT Redistributable (HKLM-x32\...\{5F577A45-3C65-352B-061D-D6A57F05402C}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Universal CRT Tools x64 (HKLM\...\{3B588BBE-EB02-D1B2-5CD5-7DB85AD8A3E7}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Universal CRT Tools x86 (HKLM-x32\...\{D2DC1EDF-EE04-9B5F-BDD7-06645D859EC3}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Universal General MIDI DLS Extension SDK (HKLM-x32\...\{CE83D0BD-418A-F3D1-D6CE-687E96D1EBD0}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation) vcpp_crt.redist.clickonce (HKLM-x32\...\{7A8A3ACD-E29E-4C3C-8AC8-A76BEB294DC0}) (Version: 14.23.27820 - Microsoft Corporation) Hidden Visual Studio Community 2019 (HKLM-x32\...\f5b20908) (Version: 16.3.29418.71 - Microsoft Corporation) Voobly Game Data (HKLM-x32\...\Voobly_is1) (Version: Voobly Game Datas - Voobly) VS Immersive Activate Helper (HKLM-x32\...\{78500789-0EBE-4490-BE43-F9EF8250BF42}) (Version: 16.0.98.0 - Microsoft Corporation) Hidden VS JIT Debugger (HKLM\...\{4137D3AB-5B44-4AC9-83A4-5273F2E2547E}) (Version: 16.0.98.0 - Microsoft Corporation) Hidden VS Script Debugging Common (HKLM\...\{D8B26CBD-15D2-440B-BCBD-5616D74EFC7D}) (Version: 16.0.98.0 - Microsoft Corporation) Hidden vs_BlendMsi (HKLM-x32\...\{B5E3A3E1-1529-4D5A-9E95-34971FA07825}) (Version: 16.0.28329 - Microsoft Corporation) Hidden vs_clickoncebootstrappermsi (HKLM-x32\...\{BAF91847-0A64-405E-98EC-A0BA6FB4BC4E}) (Version: 16.0.28329 - Microsoft Corporation) Hidden vs_clickoncebootstrappermsires (HKLM-x32\...\{271F1F42-B547-4498-825F-590DBB1774F7}) (Version: 16.0.28329 - Microsoft Corporation) Hidden vs_clickoncesigntoolmsi (HKLM-x32\...\{30D97A69-3C0F-4552-9A72-60E591B210C7}) (Version: 16.0.28329 - Microsoft Corporation) Hidden vs_communitymsi (HKLM-x32\...\{D19BAD98-BFDD-4C70-B66C-EE75F851B9BC}) (Version: 16.3.29311 - Microsoft Corporation) Hidden vs_communitymsires (HKLM-x32\...\{79DDA8FF-26D4-498A-B8D7-5DFA86EAD686}) (Version: 16.0.28329 - Microsoft Corporation) Hidden vs_devenvmsi (HKLM-x32\...\{AD0C92A4-1514-4BC1-A723-A272A8343924}) (Version: 16.0.28329 - Microsoft Corporation) Hidden vs_filehandler_amd64 (HKLM-x32\...\{DBA97C17-13F0-407B-8BC4-0C2E01A298A5}) (Version: 16.3.29209 - Microsoft Corporation) Hidden vs_filehandler_x86 (HKLM-x32\...\{AD3B73B9-D5C8-4FF9-AB73-7A1DC39F3E02}) (Version: 16.3.29209 - Microsoft Corporation) Hidden vs_FileTracker_Singleton (HKLM-x32\...\{692A0FB3-E6A2-4D41-AC03-4136B4312DC0}) (Version: 16.3.29209 - Microsoft Corporation) Hidden vs_Graphics_Singletonx64 (HKLM\...\{414FA594-3AD9-4093-BFE3-91ABF25410BF}) (Version: 16.0.28329 - Microsoft Corporation) Hidden vs_Graphics_Singletonx86 (HKLM-x32\...\{814ABD58-E503-4A7F-8C53-0F1A2E4686EE}) (Version: 16.0.28329 - Microsoft Corporation) Hidden vs_minshellinteropmsi (HKLM-x32\...\{27B16914-BC5D-4018-8074-071262A27F6D}) (Version: 16.2.28917 - Microsoft Corporation) Hidden vs_minshellmsi (HKLM-x32\...\{6B065DCD-E730-4FCE-905D-2B3F30A91110}) (Version: 16.3.29230 - Microsoft Corporation) Hidden vs_minshellmsires (HKLM-x32\...\{A0FCE4F1-71FB-4910-872E-FCBF5E323491}) (Version: 16.0.28329 - Microsoft Corporation) Hidden vs_SQLClickOnceBootstrappermsi (HKLM-x32\...\{92B3118C-3214-4BFA-89A0-5FF5EDFA2AEA}) (Version: 16.0.28329 - Microsoft Corporation) Hidden vs_tipsmsi (HKLM-x32\...\{E208E682-50EE-4F2F-9860-C91B906B8A03}) (Version: 16.0.28329 - Microsoft Corporation) Hidden WinAppDeploy (HKLM-x32\...\{716AE8F2-1BE3-7657-DF6B-F23DEEC75AF9}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows SDK AddOn (HKLM-x32\...\{1E76DFA7-96F3-4281-8E41-8A226C3E42EE}) (Version: 10.1.0.0 - Microsoft Corporation) Windows Software Development Kit - Windows 10.0.17763.132 (HKLM-x32\...\{5fe95b9d-9219-4d8b-a031-71323ae48a81}) (Version: 10.1.17763.132 - Microsoft Corporation) WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH) WinRT Intellisense Desktop - en-us (HKLM-x32\...\{00B12DF9-5428-9406-DE2C-8E8A1A062B05}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense Desktop - Other Languages (HKLM-x32\...\{E82A4A6C-C21C-35FE-B805-3E44318F6D63}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense IoT - en-us (HKLM-x32\...\{7E898893-9C42-A572-7F57-FDE55CE812F7}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense IoT - Other Languages (HKLM-x32\...\{E8B1CB29-5C24-D882-3CEF-F8A7263BC63D}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense Mobile - en-us (HKLM-x32\...\{F6F11150-93DE-0507-FCA0-F746E0207017}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense PPI - en-us (HKLM-x32\...\{8329C3A0-8582-D1C2-67FF-800654BFDF45}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense PPI - Other Languages (HKLM-x32\...\{771C9DEF-7C0B-85DA-6426-7A20F06BEC94}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense UAP - en-us (HKLM-x32\...\{B047C746-63E8-41C7-A5C0-7ABD390CF3E6}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense UAP - Other Languages (HKLM-x32\...\{0063AF94-397B-9C64-1C71-D404B27C5D96}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden XAMPP (HKLM\...\xampp) (Version: 7.3.10-0 - Bitnami) ==================== Custom CLSID (Whitelisted): ============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-462057610-624535720-574908975-1000_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2020\Inventor Server\Bin\TestServer.dll => No File CustomCLSID: HKU\S-1-5-21-462057610-624535720-574908975-1000_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2020\Inventor Server\Bin\TestServer.dll => No File CustomCLSID: HKU\S-1-5-21-462057610-624535720-574908975-1000_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2020\Inventor Server\Bin\TestServer.dll => No File ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2019-06-16] (Notepad++ -> ) ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-10-03] (ESET, spol. s r.o. -> ESET) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-10-03] (ESET, spol. s r.o. -> ESET) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-11-06] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-08-25] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-10-03] (ESET, spol. s r.o. -> ESET) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-11-06] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Whitelisted) ==================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed] HKLM\...\Drivers32: [vidc.iv50] => C:\Windows\SysWOW64\ir50_32.dll [746496 2009-07-13] (Microsoft Windows -> Intel Corporation) HKLM\...\Drivers32: [msacm.iac2] => C:\Windows\SysWOW64\iac25_32.ax [197632 2009-07-13] (Microsoft Windows -> Intel Corporation) HKLM\...\Drivers32: [VIDC.IV41] => C:\Windows\SysWOW64\IR41_32.AX [839680 2009-07-13] (Microsoft Windows -> Intel Corporation) HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed] ==================== Shortcuts & WMI ======================== (The entries could be listed to be restored or removed.) WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\":: WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99] WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate] ==================== Loaded Modules (Whitelisted) ============= 2019-10-13 00:39 - 2019-09-24 10:01 - 000225792 _____ () [File not signed] C:\xampp\apache\bin\libssh2.dll 2019-10-13 00:39 - 2019-02-28 08:36 - 000391168 _____ () [File not signed] C:\xampp\apache\bin\pcre.dll 2019-10-13 00:40 - 2019-09-24 10:01 - 000190464 _____ () [File not signed] C:\xampp\php\libpq.dll 2019-09-22 03:44 - 2019-09-22 03:44 - 000153088 _____ () [File not signed] D:\Riot Games\Riot Client\libuv.dll 2019-09-22 03:44 - 2019-09-22 03:44 - 000092160 _____ () [File not signed] D:\Riot Games\Riot Client\yaml.dll 2019-09-22 03:44 - 2019-09-22 03:44 - 000106496 _____ () [File not signed] D:\Riot Games\Riot Client\zlib.dll 2019-10-13 00:39 - 2019-08-11 09:19 - 000208384 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\bin\libapr-1.dll 2019-10-13 00:39 - 2019-08-11 09:19 - 000036352 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\bin\libapriconv-1.dll 2019-10-13 00:39 - 2019-08-11 09:19 - 000276992 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\bin\libaprutil-1.dll 2019-10-13 00:39 - 2019-08-11 09:20 - 000437248 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\bin\libhttpd.dll 2019-10-13 00:39 - 2019-08-11 09:21 - 000016896 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_access_compat.so 2019-10-13 00:39 - 2019-08-11 09:21 - 000014848 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_actions.so 2019-10-13 00:39 - 2019-08-11 09:21 - 000020992 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_alias.so 2019-10-13 00:39 - 2019-08-11 09:21 - 000012800 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_allowmethods.so 2019-10-13 00:39 - 2019-08-11 09:21 - 000013312 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_asis.so 2019-10-13 00:39 - 2019-08-11 09:20 - 000017920 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_auth_basic.so 2019-10-13 00:39 - 2019-08-11 09:21 - 000015872 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_authn_core.so 2019-10-13 00:39 - 2019-08-11 09:21 - 000014336 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_authn_file.so 2019-10-13 00:39 - 2019-08-11 09:21 - 000023552 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_authz_core.so 2019-10-13 00:39 - 2019-08-11 09:21 - 000016896 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_authz_groupfile.so 2019-10-13 00:39 - 2019-08-11 09:21 - 000016896 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_authz_host.so 2019-10-13 00:39 - 2019-08-11 09:21 - 000012800 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_authz_user.so 2019-10-13 00:39 - 2019-08-11 09:21 - 000037888 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_autoindex.so 2019-10-13 00:39 - 2019-08-11 09:20 - 000058368 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_cache.so 2019-10-13 00:39 - 2019-08-11 09:21 - 000031744 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_cache_disk.so 2019-10-13 00:39 - 2019-08-11 09:21 - 000025600 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_cgi.so 2019-10-13 00:39 - 2019-08-11 09:20 - 000092160 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_dav.so 2019-10-13 00:39 - 2019-08-11 09:21 - 000023040 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_dav_lock.so 2019-10-13 00:39 - 2019-08-11 09:21 - 000015872 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_dir.so 2019-10-13 00:39 - 2019-08-11 09:21 - 000013312 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_env.so 2019-10-13 00:39 - 2019-08-11 09:22 - 000022528 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_headers.so 2019-10-13 00:39 - 2019-08-11 09:22 - 000048128 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_include.so 2019-10-13 00:39 - 2019-08-11 09:22 - 000028672 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_info.so 2019-10-13 00:39 - 2019-08-11 09:22 - 000029696 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_isapi.so 2019-10-13 00:39 - 2019-08-11 09:22 - 000031744 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_log_config.so 2019-10-13 00:39 - 2019-08-11 09:22 - 000022528 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_mime.so 2019-10-13 00:39 - 2019-08-11 09:22 - 000035840 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_negotiation.so 2019-10-13 00:39 - 2019-08-11 09:20 - 000106496 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_proxy.so 2019-10-13 00:39 - 2019-08-11 09:22 - 000041984 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_proxy_ajp.so 2019-10-13 00:39 - 2019-08-11 09:22 - 000063488 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_rewrite.so 2019-10-13 00:39 - 2019-08-11 09:22 - 000018432 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_setenvif.so 2019-10-13 00:39 - 2019-08-11 09:22 - 000024576 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_socache_shmcb.so 2019-10-13 00:39 - 2019-08-11 09:23 - 000181248 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_ssl.so 2019-10-13 00:39 - 2019-08-11 09:23 - 000026624 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_status.so 2019-10-13 00:39 - 2019-08-11 09:21 - 000014848 _____ (Apache Software Foundation) [File not signed] C:\xampp\apache\modules\mod_version.so 2019-10-13 00:39 - 2019-08-04 10:26 - 000136704 _____ (hxxps://nghttp2.org/) [File not signed] C:\xampp\apache\bin\nghttp2.dll 2019-09-22 03:44 - 2019-09-22 03:44 - 000122880 _____ (hxxps://nghttp2.org/) [File not signed] D:\Riot Games\Riot Client\libnghttp2.dll 2019-09-22 03:44 - 2019-09-22 03:44 - 000334336 _____ (The curl library, hxxps://curl.haxx.se/) [File not signed] D:\Riot Games\Riot Client\libcurl.dll 2019-10-13 00:39 - 2019-05-29 08:15 - 003407360 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\xampp\apache\bin\libcrypto-1_1-x64.dll 2019-10-13 00:39 - 2019-05-29 08:16 - 000681472 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\xampp\apache\bin\libssl-1_1-x64.dll 2019-09-22 03:44 - 2019-09-22 03:44 - 002551296 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] D:\Riot Games\Riot Client\libcrypto-1_1.dll 2019-09-22 03:44 - 2019-09-22 03:44 - 000530432 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] D:\Riot Games\Riot Client\libssl-1_1.dll 2019-10-13 00:40 - 2019-09-24 10:01 - 000086016 _____ (The PHP Group) [File not signed] C:\xampp\php\ext\php_bz2.dll 2019-10-13 00:40 - 2019-09-24 10:01 - 000542208 _____ (The PHP Group) [File not signed] C:\xampp\php\ext\php_curl.dll 2019-10-13 00:40 - 2019-09-24 10:01 - 000070656 _____ (The PHP Group) [File not signed] C:\xampp\php\ext\php_exif.dll 2019-10-13 00:40 - 2019-09-24 10:01 - 005395456 _____ (The PHP Group) [File not signed] C:\xampp\php\ext\php_fileinfo.dll 2019-10-13 00:40 - 2019-09-24 10:01 - 000054272 _____ (The PHP Group) [File not signed] C:\xampp\php\ext\php_ftp.dll 2019-10-13 00:40 - 2019-09-24 10:01 - 001683968 _____ (The PHP Group) [File not signed] C:\xampp\php\ext\php_gd2.dll 2019-10-13 00:40 - 2019-09-24 10:01 - 000054272 _____ (The PHP Group) [File not signed] C:\xampp\php\ext\php_gettext.dll 2019-10-13 00:40 - 2019-09-24 10:01 - 001417728 _____ (The PHP Group) [File not signed] C:\xampp\php\ext\php_mbstring.dll 2019-10-13 00:40 - 2019-09-24 10:01 - 000110592 _____ (The PHP Group) [File not signed] C:\xampp\php\ext\php_mysqli.dll 2019-10-13 00:40 - 2019-09-24 10:01 - 000122880 _____ (The PHP Group) [File not signed] C:\xampp\php\ext\php_openssl.dll 2019-10-13 00:40 - 2019-09-24 10:01 - 000030720 _____ (The PHP Group) [File not signed] C:\xampp\php\ext\php_pdo_mysql.dll 2019-10-13 00:40 - 2019-09-24 10:01 - 000901120 _____ (The PHP Group) [File not signed] C:\xampp\php\ext\php_pdo_sqlite.dll 2019-10-13 00:40 - 2019-09-24 10:01 - 000035840 _____ (The PHP Group) [File not signed] C:\xampp\php\php7apache2_4.dll 2019-10-13 00:40 - 2019-09-24 10:01 - 009350656 _____ (The PHP Group) [File not signed] C:\xampp\php\php7ts.dll 2019-09-22 03:44 - 2019-09-22 03:44 - 000386560 _____ (Yann Collet, Facebook, Inc.) [File not signed] D:\Riot Games\Riot Client\libzstd.dll ==================== Alternate Data Streams (Whitelisted) ======== (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\Windows\System32:tdsrset.gfc [5846] ==================== Safe Mode (Whitelisted) ================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Whitelisted) ================= ==================== Internet Explorer trusted/restricted ========== ==================== Hosts content: ========================= (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-13 23:34 - 2019-11-06 20:42 - 000000901 _____ C:\Windows\system32\drivers\etc\hosts ==================== Other Areas =========================== (Currently there is no automatic fix for this section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files\dotnet\;C:\Program Files\Microsoft SQL Server\130\Tools\Binn\;C:\Program Files\Microsoft SQL Server\Client SDK\ODBC\170\Tools\Binn\;C:\Program Files\PuTTY\;C:\Program Files (x86)\Brackets\command;C:\xampp\php\windowsXamppPhp;C:\Program Files\Common Files\Autodesk Shared\;C:\Program Files\Microsoft SQL Server\120\Tools\Binn\ HKU\S-1-5-21-462057610-624535720-574908975-1000\Control Panel\Desktop\\Wallpaper -> DNS Servers: 8.8.8.8 - 8.8.4.4 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == (If an entry is included in the fixlist, it will be removed.) MSCONFIG\Services: FlexNet Licensing Service => 2 MSCONFIG\Services: FolderSize => 2 MSCONFIG\Services: GoogleChromeElevationService => 3 MSCONFIG\Services: gupdate => 2 MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: MBAMService => 3 MSCONFIG\Services: OverwolfUpdater => 3 MSCONFIG\Services: QMEmulatorService => 2 MSCONFIG\Services: RemoteMouseService => 2 MSCONFIG\startupfolder: C:^Users^Lucas^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^GenuineService.lnk => C:\Windows\pss\GenuineService.lnk.Startup MSCONFIG\startupreg: Autodesk Desktop App => "C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray MSCONFIG\startupreg: CCleaner Smart Cleaning => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR MSCONFIG\startupreg: com.blitz.app => C:\Users\Lucas\AppData\Local\Blitz\Update.exe --processStart "Blitz.exe" --process-start-args "--hidden" MSCONFIG\startupreg: CursorXP => C:\Program Files (x86)\CursorXP\CursorXP.exe MSCONFIG\startupreg: Discord => C:\Users\Lucas\AppData\Local\Discord\app-0.0.305\Discord.exe MSCONFIG\startupreg: EpicGamesLauncher => "C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent MSCONFIG\startupreg: Overwolf => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe -overwolfsilent MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" MSCONFIG\startupreg: uTorrent => "C:\Users\Lucas\AppData\Roaming\uTorrent\uTorrent.exe" MSCONFIG\startupreg: Voobly => "C:\Program Files (x86)\Voobly\voobly.exe" --startup ==================== FirewallRules (Whitelisted) ================ (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{C3FBC336-4525-4676-9D53-6BF785A4E929}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{9975499A-1E0B-4896-B581-98676F4DD5BD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{B11C3549-F0BD-40AA-AD33-EEE66F79FD85}] => (Allow) D:\Riot Games\League of Legends\LeagueClient.exe (Riot Games, Inc. -> ) FirewallRules: [{B92F38E8-391F-42E0-A1A8-9859268A1115}] => (Allow) D:\Riot Games\League of Legends\LeagueClient.exe (Riot Games, Inc. -> ) FirewallRules: [{13D79A84-6A84-466B-B060-0D6B27E8764A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{626D8D14-4A95-4C1D-859F-8763D355BCEF}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{47B674AF-EF91-4AB0-BE29-1C0E521C288E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File FirewallRules: [{0DF43F6B-ADF9-4F66-8D01-64D0448F2CB6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File FirewallRules: [{EA72168D-A198-4BBC-AFE7-95BC236FF4A8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations) FirewallRules: [{ABCE044B-4476-4C46-B68D-BC586AEFF7BB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations) FirewallRules: [{6EC0279F-D04F-48C5-8169-28B783F47A16}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe (Smartly Dressed Games Ltd. -> ) [File not signed] FirewallRules: [{0C9EDFBF-FD98-4F82-8809-9BE7AB304C8D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe (Smartly Dressed Games Ltd. -> ) [File not signed] FirewallRules: [{6CAA1FE0-0BE6-4FA7-AC0F-546D72FB669E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> ) FirewallRules: [{02A6DFE9-6F65-4119-B8C4-2A1844472DFB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> ) FirewallRules: [TCP Query User{1D561E8C-0013-49D4-9F20-3E66BE1DFBFB}C:\users\lucas\desktop\steamcmd\steamcmd.exe] => (Allow) C:\users\lucas\desktop\steamcmd\steamcmd.exe (Valve -> Valve Corporation) FirewallRules: [UDP Query User{BA131C6D-CE05-486B-A195-ECBFF6212F2D}C:\users\lucas\desktop\steamcmd\steamcmd.exe] => (Allow) C:\users\lucas\desktop\steamcmd\steamcmd.exe (Valve -> Valve Corporation) FirewallRules: [{BA39FE89-D517-4104-9282-14BAC067FDF9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Realm Royale\Binaries\Win64\RealmEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [{4D886E2F-DC88-49C0-A11C-1B26B256C06F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Realm Royale\Binaries\Win64\RealmEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [TCP Query User{F3DD582D-BEC0-481A-ABBF-FF9242E6B5AF}C:\program files (x86)\steam\steamapps\common\realm royale\binaries\win64\realm.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\realm royale\binaries\win64\realm.exe (Hirez Studios, Inc.) [File not signed] FirewallRules: [UDP Query User{21455345-A3F1-405B-BB54-334474E4427C}C:\program files (x86)\steam\steamapps\common\realm royale\binaries\win64\realm.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\realm royale\binaries\win64\realm.exe (Hirez Studios, Inc.) [File not signed] FirewallRules: [TCP Query User{8E956F5D-095D-4FBB-9014-2388B80AFFB0}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) C:\program files (x86)\counter-strike 1.6\hl.exe (Valve) [File not signed] FirewallRules: [UDP Query User{29AF900F-C9AC-4C20-AD6F-1F5983E79090}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) C:\program files (x86)\counter-strike 1.6\hl.exe (Valve) [File not signed] FirewallRules: [TCP Query User{4C864805-3D5A-4A85-8669-1B2722A5A25B}C:\program files\java\jre1.8.0_211\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_211\bin\javaw.exe No File FirewallRules: [UDP Query User{41360E6A-DC7F-4D17-BC97-C8FD97494AFC}C:\program files\java\jre1.8.0_211\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_211\bin\javaw.exe No File FirewallRules: [TCP Query User{92F78679-A21A-4707-A68C-245634A76663}C:\program files\java\jre1.8.0_221\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_221\bin\javaw.exe FirewallRules: [UDP Query User{E1EA10D9-8678-4CCF-A02C-0C081B460958}C:\program files\java\jre1.8.0_221\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_221\bin\javaw.exe FirewallRules: [{91873777-5832-44EE-8428-112E5401B75D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{3D478104-C84D-404F-BA78-874D19D58EC6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{4299F7CA-1882-4768-BB4C-EA7517D555CE}] => (Allow) C:\Riot Games\PBE\LeagueClient.exe (Riot Games, Inc. -> ) FirewallRules: [{615F98FB-3BF8-4EF9-A3F2-F535D073E3D0}] => (Allow) C:\Riot Games\PBE\LeagueClient.exe (Riot Games, Inc. -> ) FirewallRules: [TCP Query User{9C5A975C-82C1-4A24-AFDA-570571CB013D}C:\program files (x86)\steam\steamapps\common\kurtzpel\thechase\binaries\win64\thechase-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\kurtzpel\thechase\binaries\win64\thechase-win64-shipping.exe No File FirewallRules: [UDP Query User{C92B90A0-EC3D-4272-84F4-5BBDB315711A}C:\program files (x86)\steam\steamapps\common\kurtzpel\thechase\binaries\win64\thechase-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\kurtzpel\thechase\binaries\win64\thechase-win64-shipping.exe No File FirewallRules: [{FDE00251-607C-4CA8-A533-1DC50A4504BE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Kristjan Skutta -> ) FirewallRules: [{17B4A94B-A33A-4BFC-A978-35D9BC87F042}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Kristjan Skutta -> ) FirewallRules: [TCP Query User{7A4B7E19-E315-46DB-843A-58B2B7819672}C:\riot games\pbe\game\league of legends.exe] => (Allow) C:\riot games\pbe\game\league of legends.exe (Riot Games, Inc. -> ) FirewallRules: [UDP Query User{69385ED3-6DA5-4AA7-899A-BB49E06C6B30}C:\riot games\pbe\game\league of legends.exe] => (Allow) C:\riot games\pbe\game\league of legends.exe (Riot Games, Inc. -> ) FirewallRules: [TCP Query User{1C75F841-D525-400C-A4DB-CC07DBE918B7}C:\program files\filezilla ftp client\filezilla.exe] => (Allow) C:\program files\filezilla ftp client\filezilla.exe (Tim Kosse -> FileZilla Project) FirewallRules: [UDP Query User{084568D3-8FDC-4D32-9820-684309B2CBD5}C:\program files\filezilla ftp client\filezilla.exe] => (Allow) C:\program files\filezilla ftp client\filezilla.exe (Tim Kosse -> FileZilla Project) FirewallRules: [TCP Query User{7564CD39-CA91-4BFC-8AA1-54C38012A7A5}D:\riot games\league of legends\game\league of legends.exe] => (Allow) D:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> ) FirewallRules: [UDP Query User{92A08079-1E59-4173-A1F6-91905B8B8B1A}D:\riot games\league of legends\game\league of legends.exe] => (Allow) D:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> ) FirewallRules: [TCP Query User{632D7097-DF16-455C-A0AD-D6D37C4F4245}C:\program files (x86)\voobly\voobly.exe] => (Allow) C:\program files (x86)\voobly\voobly.exe (Voobly) [File not signed] FirewallRules: [UDP Query User{89D5F1A0-0D19-4E7F-A566-19D2F0B84FD8}C:\program files (x86)\voobly\voobly.exe] => (Allow) C:\program files (x86)\voobly\voobly.exe (Voobly) [File not signed] FirewallRules: [TCP Query User{82D7307E-6FD2-4329-BA80-256A84E8F8B7}C:\program files (x86)\microsoft games\age of empires ii\empires2.exe] => (Allow) C:\program files (x86)\microsoft games\age of empires ii\empires2.exe (Microsoft Corporation) [File not signed] FirewallRules: [UDP Query User{C73A711C-6C5B-4E04-95BC-EAA0ABDDF79D}C:\program files (x86)\microsoft games\age of empires ii\empires2.exe] => (Allow) C:\program files (x86)\microsoft games\age of empires ii\empires2.exe (Microsoft Corporation) [File not signed] FirewallRules: [TCP Query User{84BC06E4-DF90-42F8-BDDB-C72607B462D6}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [UDP Query User{109EB87D-E1B7-4BBF-8F7A-C92E2E3C1952}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [TCP Query User{D05AFC44-6E6D-4EA0-AC59-99F7254A3BF9}C:\program files (x86)\microsoft games\age of empires ii\age2_x1\age2_x1.exe] => (Allow) C:\program files (x86)\microsoft games\age of empires ii\age2_x1\age2_x1.exe No File FirewallRules: [UDP Query User{FC363BD6-1B91-4A5C-A6DB-BF7B338A3647}C:\program files (x86)\microsoft games\age of empires ii\age2_x1\age2_x1.exe] => (Allow) C:\program files (x86)\microsoft games\age of empires ii\age2_x1\age2_x1.exe No File FirewallRules: [TCP Query User{F3CC19DD-8E73-4402-AD79-152EA9782821}C:\users\lucas\appdata\local\blitz\current\blitz.exe] => (Allow) C:\users\lucas\appdata\local\blitz\current\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.) FirewallRules: [UDP Query User{52279865-6806-440A-9AFB-0CE5C3E0FD9A}C:\users\lucas\appdata\local\blitz\current\blitz.exe] => (Allow) C:\users\lucas\appdata\local\blitz\current\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.) FirewallRules: [TCP Query User{6CFC9A45-5314-4964-ADB0-C709408B1E81}C:\users\lucas\appdata\local\blitz\current\blitz.exe] => (Allow) C:\users\lucas\appdata\local\blitz\current\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.) FirewallRules: [UDP Query User{6A02C319-F543-48FA-8212-6EE472E36A37}C:\users\lucas\appdata\local\blitz\current\blitz.exe] => (Allow) C:\users\lucas\appdata\local\blitz\current\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.) FirewallRules: [{9DE9DAD3-83AE-499F-B0F3-B2DC8A2BBA7E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Terraria\Terraria.exe No File FirewallRules: [{FDCC1559-0916-4705-BE45-57D7FC62FB65}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Terraria\Terraria.exe No File FirewallRules: [{0135793D-28AE-4E36-B07C-32C0DC717CC7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sven Co-op\svencoop.exe (Sven Co-op Team) [File not signed] FirewallRules: [{425D3DCF-086E-4B3A-BF2F-142B47D9EA13}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sven Co-op\svencoop.exe (Sven Co-op Team) [File not signed] FirewallRules: [{0D9580BE-9F03-47D5-A5F5-79F4812466EF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sven Co-op\svends.exe (Sven Co-op Team) [File not signed] FirewallRules: [{2ACDB472-2328-4A2A-A10D-D254543390E8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sven Co-op\svends.exe (Sven Co-op Team) [File not signed] FirewallRules: [{5CAE1682-A4ED-4676-93C5-F15D49E40CA5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{2F2450B8-FA98-4AFA-ABE3-2CC83BED388B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{FE4A4F6B-7114-4A28-BD6A-7259E0C43C58}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{4609F0D6-BA92-457D-8037-847AC42866F8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{0FC542BB-62FD-4B2E-B4E9-08C1E36BA76F}] => (Allow) C:\Users\Lucas\AppData\Roaming\uTorrent\uTorrent.exe No File FirewallRules: [{041553D0-8BA8-4A4B-9771-57FFDA9F4350}] => (Allow) C:\Users\Lucas\AppData\Roaming\uTorrent\uTorrent.exe No File FirewallRules: [{D2ED29A0-0DEE-400A-BCB0-A2D8B5A4EAFB}] => (Allow) C:\Program Files\Black Mesa\7launcher\tools\aria2\aria2c.exe (Rainsky Evgeny Valeryevich -> ) FirewallRules: [{C2DA3173-AB22-4EB2-A8B3-140BC1D9FDE2}] => (Allow) C:\Program Files\Black Mesa\7launcher\tools\aria2\aria2c.exe (Rainsky Evgeny Valeryevich -> ) FirewallRules: [{9FCADE54-C6B2-4501-81AF-9F8926D6C8D2}] => (Allow) C:\Program Files\Black Mesa\bms.exe () [File not signed] FirewallRules: [{7078D0D0-5BF1-4DCC-9AB8-AD3A1D1F593C}] => (Allow) C:\Program Files\Black Mesa\bms.exe () [File not signed] FirewallRules: [{06F6F681-A053-470C-91F4-9E6A8EAE6D40}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\A Story About My Uncle\Binaries\Win32\ASAMU-Win32-Shipping.exe (Epic Games, Inc.) [File not signed] FirewallRules: [{DB4CA5F4-EB1E-4D20-BF43-40897BC61FAC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\A Story About My Uncle\Binaries\Win32\ASAMU-Win32-Shipping.exe (Epic Games, Inc.) [File not signed] FirewallRules: [{A2511A5E-F6F8-4F00-BFDE-24D4B9C50FE8}] => (Allow) c:\program files\txgameassistant\appmarket\AppMarket.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent) FirewallRules: [{19D4A994-8650-49C3-87A1-BD3818CD8759}] => (Allow) c:\program files\txgameassistant\appmarket\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> ) FirewallRules: [{B6ACFBE9-BF59-494A-977D-55BD5A0143E5}] => (Allow) c:\program files\txgameassistant\appmarket\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> 腾讯公司) FirewallRules: [{7D605A57-2BF6-40DB-A6B9-81709DBC5E9F}] => (Allow) c:\program files\txgameassistant\appmarket\QQExternal.exe (Tencent Technology(Shenzhen) Company Limited -> ) FirewallRules: [{4A0E2ED7-62A8-4947-9F63-2C3C4703446E}] => (Allow) c:\program files\txgameassistant\appmarket\GameDownload.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent) FirewallRules: [{AE5DE6AA-A2DB-4696-A0A9-420BEBA82765}] => (Allow) c:\program files\txgameassistant\appmarket\GF186\TUpdate.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent) FirewallRules: [{8D579E22-03BD-4304-82B4-D13440FC3FEA}] => (Allow) c:\program files\txgameassistant\ui\AndroidEmulator.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent) FirewallRules: [{EB74A56A-CB61-405C-A863-FBF804958552}] => (Allow) c:\program files\txgameassistant\ui\adb.exe () [File not signed] FirewallRules: [{62B2083F-D432-482F-AD15-EEA74973AC3E}] => (Allow) c:\program files\txgameassistant\ui\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> ) FirewallRules: [{BAF929DC-F300-466B-BE9B-8DEBB5ECF1EF}] => (Allow) c:\program files\txgameassistant\ui\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent) FirewallRules: [{4824033C-1D06-4CD0-A7A8-7A59E8288ABB}] => (Allow) c:\program files\txgameassistant\ui\TxGaDcc.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent) FirewallRules: [{5CE41CD1-64CE-4CDE-82C0-B00B0109CA12}] => (Allow) c:\program files\txgameassistant\ui\AndroidEmulator.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent) FirewallRules: [{3ECD0BAE-E901-4D4D-8220-9E8514A1AC4C}] => (Allow) c:\program files\txgameassistant\ui\adb.exe () [File not signed] FirewallRules: [{24C9458B-BCC2-4B48-9874-18EDCEC4285F}] => (Allow) c:\program files\txgameassistant\ui\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> ) FirewallRules: [{098F0589-C1E5-4264-859F-59F329510098}] => (Allow) c:\program files\txgameassistant\ui\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent) FirewallRules: [{444E64FB-6FCD-4885-9F86-ABC359E518F1}] => (Allow) c:\program files\txgameassistant\ui\TxGaDcc.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent) FirewallRules: [{B4E4FD72-5108-4F5D-9BF1-6664F0F43B12}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe No File FirewallRules: [{2343AE35-44A2-4989-A915-54825D4C9568}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe No File FirewallRules: [{921DD579-53E7-4275-8F4A-B190D3ECDD4E}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouseCore.exe No File FirewallRules: [{FE16953D-1041-4CDE-871F-6AE7AC77617C}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouseCore.exe No File FirewallRules: [{B697A263-46C3-42EA-B5FD-BF296DA5E945}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Walking Zombie 2\The Walking Zombie 2.exe () [File not signed] FirewallRules: [{54B8DAD8-758D-4BC7-9A30-8C816CF6803C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Walking Zombie 2\The Walking Zombie 2.exe () [File not signed] FirewallRules: [{E9DFD2B7-6F28-4CE5-B03E-06A55157BAC0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Kristjan Skutta -> ) FirewallRules: [{F9339039-19C6-4328-BE4E-708CCCE3CB9D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Kristjan Skutta -> ) FirewallRules: [{948E5C28-A0B5-45F6-B8B9-E08AD78D26C1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [File not signed] FirewallRules: [{0DB60546-9216-495A-AEE6-8D727ED601F8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [File not signed] FirewallRules: [{B4450C6D-E092-41DB-B8D6-A0BECD166AA6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DyingLightGame.exe (Techland Sp. z o.o. -> Techland) FirewallRules: [{86ACC1EA-72C7-4AFB-9F5A-DBBE406E0CAC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DyingLightGame.exe (Techland Sp. z o.o. -> Techland) FirewallRules: [{6DF45C12-24E5-4DD4-B58F-822FADAD61C4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe (Techland) [File not signed] FirewallRules: [{937E5EB0-B7ED-47F3-A885-6EC92E8FA1FB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe (Techland) [File not signed] FirewallRules: [{1FBCF408-8812-4016-B6C9-B9100B8BF855}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [File not signed] FirewallRules: [{4EAAA281-3A6D-4A26-8E34-9B2ADEA673F7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [File not signed] FirewallRules: [TCP Query User{DBF4AB02-1C4E-4858-B3C4-8EE6132011F2}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe (Adobe Inc. -> Node.js) FirewallRules: [UDP Query User{4804A094-7E52-41C9-9543-786DE16204FA}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe (Adobe Inc. -> Node.js) FirewallRules: [{EB8EB07E-4E5D-4EB2-9649-CF574CABB2DC}] => (Allow) LPort=80 FirewallRules: [{57791A2B-D970-4033-B762-DB71DED5053E}] => (Allow) LPort=80 FirewallRules: [TCP Query User{1E9D73D3-938B-43F7-8474-3D4CB94B2507}D:\riot games\league of legends\game\league of legends.exe] => (Allow) D:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> ) FirewallRules: [UDP Query User{03DA1494-1AB1-4CAF-891E-A0A92A480F42}D:\riot games\league of legends\game\league of legends.exe] => (Allow) D:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> ) FirewallRules: [TCP Query User{68C846E4-CC70-4298-B2F4-65256185084D}C:\program files\java\jre1.8.0_221\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_221\bin\javaw.exe FirewallRules: [UDP Query User{8562977B-C52A-4A38-B309-06E6B1641915}C:\program files\java\jre1.8.0_221\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_221\bin\javaw.exe FirewallRules: [TCP Query User{DB4FD128-4019-4A79-9BF3-9DA3AEB3C2F9}C:\riot games\pbe\game\league of legends.exe] => (Allow) C:\riot games\pbe\game\league of legends.exe (Riot Games, Inc. -> ) FirewallRules: [UDP Query User{B503A6D6-E1D4-4BC3-9296-979EA3D4D1D8}C:\riot games\pbe\game\league of legends.exe] => (Allow) C:\riot games\pbe\game\league of legends.exe (Riot Games, Inc. -> ) FirewallRules: [{CC2F1876-C2D4-4E78-B019-EA0C2A0A4E52}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [TCP Query User{6214792E-C697-4C36-9174-023BFAC2FBBC}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe FirewallRules: [UDP Query User{F7ABAE95-73C4-4693-9E7E-54F547CC5865}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe FirewallRules: [{5007D82E-FD4C-4B12-80D3-2EDE37FFE380}] => (Allow) C:\Program Files\Black Mesa\7launcher\tools\aria2\aria2c.exe (Rainsky Evgeny Valeryevich -> ) FirewallRules: [{629005CD-DF20-4140-AF81-4F7B346B2AAF}] => (Allow) C:\Program Files\Black Mesa\7launcher\tools\aria2\aria2c.exe (Rainsky Evgeny Valeryevich -> ) FirewallRules: [{15497D50-18FD-4513-A8B3-BFE6449D37B1}] => (Allow) C:\Program Files\Black Mesa\Run_BMS.exe (IP Rainskiy Dmitriy Valeryevich -> SE7EN Solutions) FirewallRules: [{D65657F9-8A3F-4361-B677-2EF007F5B2DF}] => (Allow) C:\Program Files\Black Mesa\Run_BMS.exe (IP Rainskiy Dmitriy Valeryevich -> SE7EN Solutions) FirewallRules: [{436B011A-7841-494C-A234-0BE248EF5FA9}] => (Allow) C:\Program Files\Black Mesa\revLoader.exe () [File not signed] FirewallRules: [{12E2B7F0-D45D-48EE-B6E4-07B3889A4E26}] => (Allow) C:\Program Files\Black Mesa\revLoader.exe () [File not signed] FirewallRules: [{88255D27-DDDE-41F6-ACD2-9C93A88689F2}] => (Allow) C:\Program Files\Black Mesa\bms.exe () [File not signed] FirewallRules: [{434FFEF7-34F6-4868-A714-F936F7C30F0C}] => (Allow) C:\Program Files\Black Mesa\bms.exe () [File not signed] ==================== Restore Points ========================= 07-11-2019 05:01:19 Punto de control programado ==================== Faulty Device Manager Devices ============ ==================== Event log errors: ======================== Application errors: ================== Error: (11/07/2019 06:04:44 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema. Error: (11/06/2019 08:17:10 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema. Error: (11/06/2019 06:44:07 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema. Error: (11/06/2019 01:43:39 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema. Error: (11/06/2019 08:24:23 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema. Error: (11/05/2019 09:14:48 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: El programa LeagueClient.exe, versión 9.21.294.813, dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible acerca del problema, compruebe el historial de problemas en el panel de control Centro de actividades. Identificador de proceso: 1e34 Hora de inicio: 01d59435ba146b09 Hora de finalización: 3 Ruta de acceso de la aplicación: D:\Riot Games\League of Legends\LeagueClient.exe Identificador de informe: 6f30ef11-002a-11ea-8692-d050990e74ae Error: (11/05/2019 03:54:31 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema. Error: (11/05/2019 02:48:38 PM) (Source: Windows Backup) (EventID: 4104) (User: ) Description: La copia de seguridad no se realizó correctamente. Error: No hay suficiente espacio en esta unidad para guardar la copia de seguridad. Para liberar espacio, elimine copias de seguridad anteriores y datos innecesarios o cambie la configuración de la copia de seguridad. (0x81000005). System errors: ============= Error: (11/07/2019 06:04:30 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: El siguiente controlador de inicio del sistema o de inicio del arranque no se cargó correctamente: cdrom Error: (11/07/2019 02:42:15 AM) (Source: volsnap) (EventID: 36) (User: ) Description: Se anularon las instantáneas del volumen C: porque el almacenamiento de instantáneas no pudo crecer debido a un límite impuesto por el usuario. Error: (11/06/2019 11:29:26 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY) Description: Se recibió la siguiente alerta irrecuperable: 40. Error: (11/06/2019 11:29:26 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY) Description: Se recibió la siguiente alerta irrecuperable: 40. Error: (11/06/2019 11:28:49 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY) Description: Se recibió la siguiente alerta irrecuperable: 40. Error: (11/06/2019 11:28:49 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY) Description: Se recibió la siguiente alerta irrecuperable: 40. Error: (11/06/2019 11:28:49 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY) Description: Se recibió la siguiente alerta irrecuperable: 40. Error: (11/06/2019 11:28:49 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY) Description: Se recibió la siguiente alerta irrecuperable: 40. Windows Defender: =================================== Date: 2019-07-14 14:58:31.948 Description: Windows Defender encontró un error al intentar actualizar el motor. Nueva versión de motor:1.1.16100.4 Versión de motor anterior:1.1.6402.0 Origen de actualización:Usuario Usuario:NT AUTHORITY\SYSTEM Código de error:0x8050800c Descripción de error:Problema inesperado. Instale todas las actualizaciones disponibles e intente iniciar el programa de nuevo. Para obtener más información sobre cómo instalar actualizaciones, consulte Ayuda y soporte técnico. Date: 2019-06-28 02:05:42.652 Description: Windows Defender encontró un error al intentar actualizar el motor. Nueva versión de motor:1.1.16100.4 Versión de motor anterior:1.1.6402.0 Origen de actualización:Usuario Usuario:NT AUTHORITY\SYSTEM Código de error:0x8050800c Descripción de error:Problema inesperado. Instale todas las actualizaciones disponibles e intente iniciar el programa de nuevo. Para obtener más información sobre cómo instalar actualizaciones, consulte Ayuda y soporte técnico. ==================== Memory info =========================== BIOS: American Megatrends Inc. P1.30 10/02/2013 Motherboard: ASRock 960GM-VGS3 FX Processor: AMD FX(tm)-6300 Six-Core Processor Percentage of memory in use: 78% Total physical RAM: 8175.24 MB Available physical RAM: 1771.43 MB Total Virtual: 59693.38 MB Available Virtual: 51116.75 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:687.27 GB) (Free:427.92 GB) NTFS Drive d: (Mis Cosas) (Fixed) (Total:97.66 GB) (Free:46.47 GB) NTFS Drive e: (Juegos) (Fixed) (Total:146.48 GB) (Free:107.42 GB) NTFS \\?\Volume{10763580-9959-11e9-9bdc-806e6f6e6963}\ (Reservado para el sistema) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==================== MBR & Partition Table ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 4D27D3D9) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=687.3 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=97.7 GB) - (Type=0F Extended) Partition 4: (Not Active) - (Size=146.5 GB) - (Type=07 NTFS) ==================== End of Addition.txt =======================