Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Eset Antivirus keeps blocking Skype-soft affiliate internet access on startup


  • This topic is locked This topic is locked
4 replies to this topic

#1 howlingCup

howlingCup

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:44 PM

Posted 18 November 2015 - 05:34 PM

Hi, I opened a topic on /security and I've been told that it's best for me to follow the malware removal guide and open a topic here.

 

I've been getting this weird attempt and tried a few ways of dealing with the issue with no success.

 

All the previous scans revealed some suspicious programs but we were unable to find anything related to the issue.

 

 

I've followed the guide so here are the logs that the Frst produced:

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:18-11-2015
Ran by Adrian (administrator) on ADRIAN-I7 (18-11-2015 22:35:34)
Running from D:\Adrian\Escritorio
Loaded Profiles: Adrian (Available Profiles: Adrian & nx)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Español (España, internacional)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\47.0.2526.18\remoting_host.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\47.0.2526.18\remoting_host.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Google Inc.) D:\Archivos de programas (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
() D:\Archivos de programas (x86)\Drakonia Configurator\hid.exe
(Nitro PDF Software) C:\Program Files\Common Files\Nitro\Reader\3.0\NitroPDFReaderDriverService3x64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Google Inc.) D:\Archivos de programas (x86)\Google\Chrome\Application\chrome.exe
(NoMachine) D:\Archivos de programas (x86)\NoMachine\bin\nxdeviced64.exe
(NoMachine) D:\Archivos de programas (x86)\NoMachine\bin\nxdisplay.exe
(Google Inc.) D:\Archivos de programas (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) D:\Archivos de programas (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) D:\Archivos de programas (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) D:\Archivos de programas (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) D:\Archivos de programas (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) D:\Archivos de programas (x86)\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() D:\Archivos de programas (x86)\Drakonia Configurator\trayicon.exe
(NoMachine) D:\Archivos de programas (x86)\NoMachine\bin\nxfsd.exe
(Piriform Ltd) D:\Archivos de programas\CClean\rer.exe
(NoMachine) D:\Archivos de programas (x86)\NoMachine\bin\nxusbd64.exe
(NoMachine) D:\Archivos de programas (x86)\NoMachine\bin\nxnode.bin
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) D:\Archivos de programas (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) D:\Archivos de programas (x86)\Google\Update\GoogleUpdate.exe
(Google Inc.) D:\Archivos de programas (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
(Google Inc.) D:\Archivos de programas (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Google Inc.) D:\Archivos de programas (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) D:\Archivos de programas (x86)\Google\Chrome\Application\46.0.2490.86\nacl64.exe
(Google Inc.) D:\Archivos de programas (x86)\Google\Chrome\Application\46.0.2490.86\nacl64.exe
(Google Inc.) D:\Archivos de programas (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
 
 
==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [Nvtmru] => "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5618456 2013-09-12] (ESET)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634896 2015-07-24] (NVIDIA Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-27] (Intel Corporation)
HKLM-x32\...\Run: [GamingMouse] => D:\Archivos de programas (x86)\Drakonia Configurator\hid.exe [246784 2012-06-07] ()
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKU\S-1-5-21-199812834-1161120735-512373414-1000\...\Run: [CCleaner Monitoring] => D:\Archivos de programas\CClean\rer.exe [8551848 2015-10-19] (Piriform Ltd)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [176064 2015-05-12] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [154256 2015-05-12] (NVIDIA Corporation)
Lsa: [Authentication Packages] msv1_0 nxlsa
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Adrian\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Adrian\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Adrian\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Adrian\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Adrian\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Adrian\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Adrian\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.)
GroupPolicyScripts: Restriction <======= ATTENTION
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Tcpip\Parameters: [DhcpNameServer] 62.81.16.164 62.81.16.213
Tcpip\..\Interfaces\{30BFD378-F03B-4ED8-B5BE-0C512717E96D}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{37050B5F-6C3A-4EBA-8E2E-8A2791DE1D51}: [NameServer] 158.42.250.65 158.42.250.195
Tcpip\..\Interfaces\{79E3F10F-6F7B-4555-B43B-528602E48B27}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{79E3F10F-6F7B-4555-B43B-528602E48B27}: [DhcpNameServer] 62.81.16.164 62.81.16.213
 
Internet Explorer:
==================
HKU\S-1-5-21-199812834-1161120735-512373414-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://es.msn.com/?ocid=iehp
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
 
FireFox:
========
FF ProfilePath: C:\Users\Adrian\AppData\Roaming\Mozilla\Firefox\Profiles\lj0gd678.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-10] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-10] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll [2012-04-11] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-05-12] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-05-12] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-199812834-1161120735-512373414-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\Adrian\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-199812834-1161120735-512373414-1000: @talk.google.com/O1DPlugin -> C:\Users\Adrian\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-199812834-1161120735-512373414-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Adrian\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin HKU\S-1-5-21-199812834-1161120735-512373414-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Adrian\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin HKU\S-1-5-21-199812834-1161120735-512373414-1000: @unity3d.com/UnityPlayer,version=1.0 -> D:\Adrian\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-06-16] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-199812834-1161120735-512373414-1000: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin ProgramFiles/Appdata: C:\Users\Adrian\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Adrian\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF Extension: MEGA - C:\Users\Adrian\AppData\Roaming\Mozilla\Firefox\Profiles\lj0gd678.default\Extensions\firefox@mega.co.nz.xpi [2015-06-07] [not signed]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2013-10-19] [not signed]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2013-10-19] [not signed]
StartMenuInternet: FIREFOX.EXE - D:\Archivos de programas (x86)\Firefox\firefox.exe
 
Chrome: 
=======
CHR HomePage: Default -> hxxp://www.google.es/
CHR StartupUrls: Default -> "hxxp://www.google.es/","hxxp://www.dsic.upv.es/"
CHR Session Restore: Default -> is enabled.
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\pdf.dll => No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll => No File
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Profile: C:\Users\Adrian\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Adrian\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-04]
CHR Extension: (Lucidchart Diagramas - Online) - C:\Users\Adrian\AppData\Local\Google\Chrome\User Data\Default\Extensions\apboafhkiegglekeafbckfjldecefkhn [2015-11-14]
CHR Extension: (Google Drive) - C:\Users\Adrian\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\Adrian\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Adblock Plus) - C:\Users\Adrian\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-09-23]
CHR Extension: (Búsqueda de Google) - C:\Users\Adrian\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Everhour Time Tracker) - C:\Users\Adrian\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnebklifojaaecmheejjopgjdljebpeo [2015-10-13]
CHR Extension: (Ponyhoof) - C:\Users\Adrian\AppData\Local\Google\Chrome\User Data\Default\Extensions\efjjgphedlaihnlgaibiaihhmhaejjdd [2015-11-12]
CHR Extension: (Escritorio remoto de Chrome) - C:\Users\Adrian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2015-11-05]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Adrian\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-18]
CHR Extension: (Jeffrey's Exif viewer) - C:\Users\Adrian\AppData\Local\Google\Chrome\User Data\Default\Extensions\glpbdeclgjmeoojlmhpamjddandmplki [2013-09-10]
CHR Extension: (agar.io server browser) - C:\Users\Adrian\AppData\Local\Google\Chrome\User Data\Default\Extensions\hongpdkjnjhijmdnogoicadboadgllhi [2015-06-11]
CHR Extension: (Save as PDF) - C:\Users\Adrian\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpdjmbiefanbdgnkcikhllpmjnnllbbc [2015-02-13]
CHR Extension: (Ghostery) - C:\Users\Adrian\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2015-09-19]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Adrian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-28]
CHR Extension: (Gmail) - C:\Users\Adrian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR Extension: (Luna Theme ) - C:\Users\Adrian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmhihobegibbfdeogahppfhmbfmbjann [2013-09-10]
 
==================== Services (Whitelisted) ========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\47.0.2526.18\remoting_host.exe [69448 2015-10-14] (Google Inc.)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1337752 2013-09-12] (ESET)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155216 2015-07-24] (NVIDIA Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [317640 2015-03-30] (Intel Corporation)
R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-07-05] (Intel Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel® Update Manager\bin\iumsvc.exe [178312 2015-09-25] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [166720 2012-08-21] (Intel Corporation)
S2 MBAMService; D:\Archivos de programas (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 NitroReaderDriverReadSpool3; C:\Program Files\Common Files\Nitro\Reader\3.0\NitroPDFReaderDriverService3x64.exe [230416 2013-07-26] (Nitro PDF Software)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1871504 2015-07-24] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544592 2015-07-24] (NVIDIA Corporation)
R2 nxdeviced; D:\Archivos de programas (x86)\NoMachine\bin\nxdeviced64.exe [958128 2013-10-31] (NoMachine)
R2 nxdisplay; D:\Archivos de programas (x86)\NoMachine\bin\nxdisplay.exe [220336 2013-10-31] (NoMachine)
R2 nxfsd; D:\Archivos de programas (x86)\NoMachine\bin\nxfsd.exe [181936 2013-10-31] (NoMachine)
S2 nxservice; D:\Archivos de programas (x86)\NoMachine\bin\nxservice.exe [206512 2013-10-31] (NoMachine)
R2 nxusbd; D:\Archivos de programas (x86)\NoMachine\bin\nxusbd64.exe [3775664 2013-10-31] (NoMachine)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-10-19] ()
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
 
===================== Drivers (Whitelisted) ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R0 asahci64; C:\Windows\System32\DRIVERS\asahci64.sys [49760 2011-09-21] (Asmedia Technology)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [239320 2013-08-15] (ESET)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [239296 2013-08-19] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [168256 2013-08-15] (ESET)
R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [157432 2013-08-15] (ESET)
R2 IntelHaxm; C:\Windows\System32\DRIVERS\IntelHaxm.sys [84992 2015-01-30] (Intel  Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-07-24] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [47976 2015-07-03] (NVIDIA Corporation)
R3 nxaudio; C:\Windows\System32\drivers\nxaudio.sys [17920 2013-08-29] (NoMachine)
R3 nxdm; C:\Windows\System32\DRIVERS\nxdm.sys [29696 2012-12-11] (NoMachine Sarl)
R2 nxfs; D:\Archivos de programas (x86)\NoMachine\bin\drivers\nxdisk\amd64\nxfs.sys [57008 2013-08-30] (NoMachine)
R2 nxusbf; D:\Archivos de programas (x86)\NoMachine\bin\drivers\nxusb\NT6\amd64\nxusbf.sys [85168 2013-08-30] (NoMachine)
R3 nxusbh; C:\Windows\System32\DRIVERS\nxusbh.sys [66560 2013-08-29] (NoMachine)
R3 nxusbs; C:\Windows\System32\DRIVERS\nxusbs.sys [10240 2013-08-29] (NoMachine)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-11-18 22:35 - 2015-11-18 22:35 - 00000000 ____D C:\FRST
2015-11-18 21:44 - 2015-11-18 21:47 - 00000000 ____D C:\AdwCleaner
2015-11-18 09:39 - 2015-11-18 10:00 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-11-18 09:39 - 2015-11-18 09:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-11-18 09:39 - 2015-11-18 09:39 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-11-18 09:39 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-11-18 09:39 - 2015-10-05 09:50 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-11-18 09:39 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2015-11-18 09:19 - 2015-11-18 09:19 - 00000000 ____D C:\Windows\pss
2015-11-18 09:17 - 2015-11-18 09:35 - 00002796 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-11-18 09:16 - 2015-11-18 09:16 - 00000000 ____D C:\Users\Adrian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-11-18 00:55 - 2015-11-18 21:48 - 00001008 _____ C:\Windows\setupact.log
2015-11-18 00:55 - 2015-11-18 21:05 - 00002690 _____ C:\Windows\PFRO.log
2015-11-18 00:55 - 2015-11-18 00:55 - 00000000 _____ C:\Windows\setuperr.log
2015-11-18 00:18 - 2015-11-18 09:19 - 00002948 _____ C:\Windows\System32\Tasks\{989E55A0-3098-4589-8430-1B7879117D01}
2015-11-18 00:18 - 2015-11-18 09:19 - 00002948 _____ C:\Windows\System32\Tasks\{22D8ED93-85E1-4174-BA49-391A552D3799}
2015-11-18 00:17 - 2015-11-18 09:19 - 00002948 _____ C:\Windows\System32\Tasks\{006D6B89-8D60-476E-B220-1D2E3767D266}
2015-11-10 21:58 - 2015-11-10 21:58 - 00000000 ____D C:\Users\Adrian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-10-27 23:24 - 2015-10-27 23:24 - 00000000 ____D C:\Users\Adrian\AppData\Local\UNDERTALE
2015-10-27 23:23 - 2015-10-27 23:23 - 00000495 _____ C:\Users\Adrian\AppData\Local\UNDERTALE.7z
2015-10-24 11:02 - 2015-10-24 11:02 - 00000000 ____D C:\Users\Adrian\AppData\Roaming\Battle.net
2015-10-19 20:54 - 2015-10-19 20:54 - 00000000 ____D C:\Users\Adrian\AppData\Roaming\Steam
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-11-18 22:20 - 2013-09-10 18:32 - 01972914 _____ C:\Windows\WindowsUpdate.log
2015-11-18 21:55 - 2011-04-12 10:10 - 00746584 _____ C:\Windows\system32\perfh00A.dat
2015-11-18 21:55 - 2011-04-12 10:10 - 00158570 _____ C:\Windows\system32\perfc00A.dat
2015-11-18 21:55 - 2009-07-14 06:13 - 01674830 _____ C:\Windows\system32\PerfStringBackup.INI
2015-11-18 21:55 - 2009-07-14 05:45 - 00022096 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-11-18 21:55 - 2009-07-14 05:45 - 00022096 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-11-18 21:49 - 2015-10-18 23:20 - 00003430 _____ C:\Windows\System32\Tasks\SteamClient
2015-11-18 21:48 - 2013-09-11 15:25 - 00000000 ____D C:\ProgramData\NVIDIA
2015-11-18 21:48 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-11-18 09:57 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Branding
2015-11-18 09:34 - 2015-07-19 09:35 - 00003990 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000UA1d0c1fdda899db1
2015-11-18 09:34 - 2015-07-19 09:35 - 00003594 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000Core1d0c1fdda7b5570
2015-11-18 09:34 - 2015-07-19 09:35 - 00001006 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000UA1d0c1fdda899db1.job
2015-11-18 09:34 - 2015-07-19 09:35 - 00000954 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000Core1d0c1fdda7b5570.job
2015-11-18 09:34 - 2015-07-16 14:45 - 00004098 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000UA1d0bfcdb8f83d96
2015-11-18 09:34 - 2015-07-16 14:45 - 00003702 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000Core1d0bfcdb8da06c5
2015-11-18 09:34 - 2015-07-16 14:45 - 00001114 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000UA1d0bfcdb8f83d96.job
2015-11-18 09:34 - 2015-07-16 14:45 - 00001062 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000Core1d0bfcdb8da06c5.job
2015-11-18 09:34 - 2015-07-16 14:28 - 00004108 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1d0bfcb43c4e560
2015-11-18 09:34 - 2015-07-16 14:28 - 00003856 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1d0bfcb43a5eb3c
2015-11-18 09:34 - 2015-07-16 14:28 - 00001100 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0bfcb43c4e560.job
2015-11-18 09:34 - 2015-07-16 14:28 - 00001096 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0bfcb43a5eb3c.job
2015-11-18 09:34 - 2015-05-15 21:45 - 00004098 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000UA1d08f5021378baf
2015-11-18 09:34 - 2015-05-15 21:45 - 00003702 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000Core1d08f502119f120
2015-11-18 09:34 - 2015-05-15 21:45 - 00001114 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000UA1d08f5021378baf.job
2015-11-18 09:34 - 2015-05-15 21:45 - 00001062 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000Core1d08f502119f120.job
2015-11-18 09:34 - 2015-05-14 16:22 - 00004108 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1d08e59bc00fbd8
2015-11-18 09:34 - 2015-05-14 16:22 - 00003856 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1d08e59bbe228c4
2015-11-18 09:34 - 2015-05-14 16:22 - 00001100 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d08e59bc00fbd8.job
2015-11-18 09:34 - 2015-05-14 16:22 - 00001096 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d08e59bbe228c4.job
2015-11-18 09:34 - 2015-02-05 12:40 - 00004098 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000UA1d04138950c8c42
2015-11-18 09:34 - 2015-02-05 12:40 - 00003702 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000Core1d0413894ed9a5e
2015-11-18 09:34 - 2015-02-05 12:40 - 00001114 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000UA1d04138950c8c42.job
2015-11-18 09:34 - 2015-02-05 12:40 - 00001062 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000Core1d0413894ed9a5e.job
2015-11-18 09:34 - 2015-02-04 21:22 - 00003856 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1d040b83e72f6bc
2015-11-18 09:34 - 2015-02-04 21:22 - 00001096 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d040b83e72f6bc.job
2015-11-18 09:34 - 2014-06-19 17:18 - 00003702 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000Core1cf8bdaf91f530
2015-11-18 09:34 - 2014-06-19 17:18 - 00001062 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000Core1cf8bdaf91f530.job
2015-11-18 09:34 - 2014-06-17 10:03 - 00003856 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1cf8a0af90ac840
2015-11-18 09:34 - 2014-06-17 10:03 - 00001096 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf8a0af90ac840.job
2015-11-18 09:34 - 2014-05-17 12:12 - 00004098 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000UA1cf71c0d8a9fe97
2015-11-18 09:34 - 2014-05-17 12:12 - 00001114 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000UA1cf71c0d8a9fe97.job
2015-11-18 09:34 - 2014-05-17 11:57 - 00004108 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1cf71bece1a4e36
2015-11-18 09:34 - 2014-05-17 11:57 - 00001100 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cf71bece1a4e36.job
2015-11-18 09:34 - 2013-12-18 17:47 - 00003778 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-11-18 09:34 - 2013-12-18 17:47 - 00000838 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-11-18 09:19 - 2015-10-18 22:37 - 00003352 _____ C:\Windows\System32\Tasks\ESET Windows 10 upgrade – Refresh settings
2015-11-18 09:19 - 2014-09-24 16:26 - 00003148 _____ C:\Windows\System32\Tasks\{050A3795-351D-4B59-87B1-CF85CF2B2A34}
2015-11-18 09:19 - 2014-05-18 17:58 - 00003724 _____ C:\Windows\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
2015-11-18 09:19 - 2014-05-18 17:58 - 00003478 _____ C:\Windows\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon
2015-11-18 09:15 - 2014-11-26 23:33 - 00038400 ___SH C:\Users\Adrian\Thumbs.db
2015-11-18 09:14 - 2013-09-19 12:33 - 00000000 ____D C:\Users\Adrian\AppData\Roaming\Dropbox
2015-11-18 00:35 - 2013-09-16 02:25 - 00000000 ____D C:\Users\Adrian\AppData\Roaming\uTorrent
2015-11-18 00:35 - 2013-09-11 16:14 - 00000000 ____D C:\Users\Adrian\AppData\Roaming\Media Player Classic
2015-11-18 00:35 - 2013-09-10 19:24 - 00000000 ____D C:\Windows\Panther
2015-11-18 00:03 - 2013-09-11 20:53 - 00000000 ____D C:\Users\Adrian\AppData\Roaming\Skype
2015-11-12 23:20 - 2013-11-22 23:24 - 00000000 ____D C:\Users\Adrian\AppData\Local\Battle.net
2015-11-10 22:26 - 2013-12-18 17:47 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-11-10 22:26 - 2013-12-18 17:47 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-11-03 08:40 - 2013-09-10 19:37 - 00000000 ____D C:\Program Files (x86)\Google
2015-11-02 00:23 - 2015-01-06 20:17 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
 
==================== Files in the root of some directories =======
 
2014-01-11 17:52 - 2014-01-11 17:52 - 0000132 _____ () C:\Users\Adrian\AppData\Roaming\Adobe GIF Format CS6 Prefs
2013-10-20 19:02 - 2015-09-11 07:37 - 0000132 _____ () C:\Users\Adrian\AppData\Roaming\Adobe PNG Format CS6 Prefs
2014-12-15 01:55 - 2014-12-15 16:03 - 0000132 _____ () C:\Users\Adrian\AppData\Roaming\Adobe Targa Format CS6 Prefs
2013-11-23 00:15 - 2015-07-12 17:56 - 0001456 _____ () C:\Users\Adrian\AppData\Local\Adobe Save for Web 13.0 Prefs
2013-09-11 15:48 - 2013-09-22 20:02 - 0003584 _____ () C:\Users\Adrian\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-08-26 23:57 - 2015-08-26 23:57 - 0001856 _____ () C:\Users\Adrian\AppData\Local\recently-used.xbel
2013-11-24 16:56 - 2015-02-26 21:18 - 0007612 _____ () C:\Users\Adrian\AppData\Local\Resmon.ResmonCfg
2015-10-27 23:23 - 2015-10-27 23:23 - 0000495 _____ () C:\Users\Adrian\AppData\Local\UNDERTALE.7z
2015-08-16 01:19 - 2015-08-16 01:19 - 0000000 _____ () C:\Users\Adrian\AppData\Local\{D7B16EF7-F72A-4A1A-8310-BB3CF48D3D98}
 
Some files in TEMP:
====================
C:\Users\Adrian\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpsutz4i.dll
C:\Users\Adrian\AppData\Local\Temp\sqlite3.dll
 
 
==================== Bamital & volsnap =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2015-11-10 22:30
 
==================== End of FRST.txt ============================
 
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version:18-11-2015
Ran by Adrian (2015-11-18 22:36:05)
Running from D:\Adrian\Escritorio
Windows 7 Professional Service Pack 1 (X64) (2013-09-10 17:32:25)
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrador (S-1-5-21-199812834-1161120735-512373414-500 - Administrator - Disabled)
Adrian (S-1-5-21-199812834-1161120735-512373414-1000 - Administrator - Enabled) => C:\Users\Adrian
HomeGroupUser$ (S-1-5-21-199812834-1161120735-512373414-1004 - Limited - Enabled)
Invitado (S-1-5-21-199812834-1161120735-512373414-501 - Limited - Disabled)
nx (S-1-5-21-199812834-1161120735-512373414-1002 - Administrator - Enabled) => C:\Users\nx
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: ESET NOD32 Antivirus 7.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET NOD32 Antivirus 7.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
µTorrent (HKU\S-1-5-21-199812834-1161120735-512373414-1000\...\uTorrent) (Version: 3.4.5.41202 - BitTorrent Inc.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
AaaaaAAaaaAAAaaAAAAaAAAAA!!! for the Awesome (HKLM-x32\...\Steam App 15560) (Version:  - Dejobaan Games, LLC)
Actualización de NVIDIA 2.5.12.11 (Version: 2.5.12.11 - NVIDIA Corporation) Hidden
Adobe After Effects CS6 (HKLM-x32\...\{4817D846-700B-474E-A31B-80892B3E92E3}) (Version: 11 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 5 64-bit (HKLM\...\{6C1A010F-9108-4162-A26F-9FEC4AC0F0F0}) (Version: 5.0.1 - Adobe)
Adobe Premiere Pro CS6 (HKLM-x32\...\{7176B973-6011-43C1-AEBC-2D73FE7C6982}) (Version: 6.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.13) - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated)
Android Studio (HKLM\...\Android Studio) (Version: 1.0 - Google Inc.)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.10.1.0 - Asmedia Technology)
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}) (Version: 1.3.1.000 - Asmedia Technology)
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
Audiosurf (HKLM-x32\...\Steam App 12900) (Version:  - Dylan Fitterer)
AutoHotkey 1.1.22.02 (HKLM\...\AutoHotkey) (Version: 1.1.22.02 - Lexikos)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
BioShock (HKLM-x32\...\Steam App 7670) (Version:  - 2K Boston)
BIT.TRIP RUNNER (HKLM-x32\...\Steam App 63710) (Version:  - Gaijin Games)
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
Blender (HKLM\...\Blender) (Version: 2.73a - Blender Foundation)
Borderlands 2 (HKLM-x32\...\Steam App 49520) (Version:  - Gearbox Software)
Broadcom NetLink Controller (HKLM\...\{C91DCB72-F5BB-410D-A91A-314F5D1B4284}) (Version: 14.8.5.1 - Broadcom Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.11 - Piriform)
Chrome Remote Desktop Host (HKLM-x32\...\{CDF9E1C8-4B97-4F8B-A848-7DD0E8BEB89F}) (Version: 47.0.2526.18 - Google Inc.)
CLIPS (HKLM-x32\...\{66AACE4B-A3C8-4393-85B4-3650DD424083}) (Version: 1.0.0 - Gary Riley)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
CPUID CPU-Z 1.72.1 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
DARK SOULS™ II (HKLM-x32\...\Steam App 236430) (Version:  - FromSoftware, Inc)
devkitProUpdater 1.5.4 (HKLM-x32\...\devkitProUpdater) (Version: 1.5.4 - devkitPro)
Drakonia Configurator (HKLM-x32\...\{A7B243AA-6D4C-4575-A873-6F01A1EFC5E2}}_is1) (Version:  - )
Dropbox (HKU\S-1-5-21-199812834-1161120735-512373414-1000\...\Dropbox) (Version: 3.10.11 - Dropbox, Inc.)
Dustforce (HKLM-x32\...\Steam App 65300) (Version:  - Hitbox Team)
Entity Framework Designer para Visual Studio 2012 - ESN (HKLM-x32\...\{B097793A-07F5-4781-BEE6-C4B14559FC4E}) (Version: 11.1.20702.00 - Microsoft Corporation)
ESET NOD32 Antivirus (HKLM\...\{3D6FF8DD-DCD4-4CAD-B765-E19C15722E75}) (Version: 7.0.302.0 - ESET, spol s r. o.)
Fallout: New Vegas (HKLM-x32\...\Steam App 22380) (Version:  - Obsidian Entertainment)
FormatFactory 3.6.0.0 (HKLM-x32\...\FormatFactory) (Version: 3.6.0.0 - Format Factory)
FTL: Faster Than Light (HKLM-x32\...\Steam App 212680) (Version:  - Subset Games)
Git version 1.9.4-preview20140815 (HKLM-x32\...\Git_is1) (Version: 1.9.4-preview20140815 - The Git Development Community)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.86 - Google Inc.)
Google Earth Pro (HKLM-x32\...\{35DAA04C-1720-4BE3-A920-A03731EC6A1D}) (Version: 7.1.5.1557 - Google)
Google Talk Plugin (HKLM-x32\...\{CA3DD97D-1FD7-37A7-BD5C-FC4430C8B8E6}) (Version: 5.41.2.0 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Gtk# for .Net 2.12.25 (HKLM-x32\...\{889E7D77-2A98-4020-83B1-0296FA1BDE8A}) (Version: 2.12.25 - Xamarin, Inc.)
Hammerwatch (HKLM-x32\...\Steam App 239070) (Version:  - )
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Hotline Miami (HKLM-x32\...\Steam App 219150) (Version:  - Dennaton Games)
Hotline Miami 2: Wrong Number (HKLM-x32\...\Steam App 274170) (Version:  - Dennaton Games)
Hotline Miami 2: Wrong Number Digital Comic (HKLM-x32\...\Steam App 341190) (Version:  - Dennaton Games)
IIS 8.0 Express (HKLM\...\{7BF61FA9-BDFB-4563-98AD-FCB0DA28CCC7}) (Version: 8.0.1557 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{9f4f4a9b-eec5-4906-92fe-d1f43ccf5c8d}.sdb) (Version:  - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb) (Version:  - )
ImageMagick 6.8.9-9 Q16 (64-bit) (2014-10-15) (HKLM\...\ImageMagick 6.8.9 Q16 (64-bit)_is1) (Version: 6.8.9 - ImageMagick Studio LLC)
Intel® Driver Update Utility 2.0 (x32 Version: 2.0.0.29 - Intel) Hidden
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1281 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4176 - Intel Corporation)
Intel® Update Manager (HKLM-x32\...\{B991A1BC-DE0F-41B3-9037-B2F948F706EC}) (Version: 3.1.1228 - Intel Corporation)
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.4.220 - Intel Corporation)
Intel® Driver Update Utility (HKLM-x32\...\{8409c4f7-2340-4933-a304-5d37db4fb48b}) (Version: 2.0.0.29 - Intel)
Intel® Hardware Accelerated Execution Manager (HKLM\...\{ECCB31F5-435D-4F37-A98D-5854D3C62718}) (Version: 1.1.1 - Intel Corporation)
KCP-0.5.4.0 (HKLM-x32\...\Kawaii Codec Pack_is1) (Version: 0.5.4.0 - Haruhichan.com)
Keep Talking and Nobody Explodes (HKLM-x32\...\{5F313C69-E37D-4A3B-8A48-3D36C768517B}_is1) (Version: 1.0 - Steel Crate Games)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
LG United Mobile Driver (HKLM-x32\...\{2A3A4BD6-6CE0-4e2a-80D2-1D0FF6ACBFBA}) (Version: 3.10.1.0 - LG Electronics)
LIMBO (HKLM-x32\...\Steam App 48000) (Version:  - Playdead)
LUFTRAUSERS (HKLM-x32\...\Steam App 233150) (Version:  - Vlambeer)
Magicka (HKLM-x32\...\Steam App 42910) (Version:  - Arrowhead Game Studios)
Malwarebytes Anti-Malware version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Mark of the Ninja (HKLM-x32\...\Steam App 214560) (Version:  - Klei Entertainment)
MediaCoder x64 0.8.29.5603 (HKLM\...\MediaCoder x64) (Version: 0.8.29.5603 - Mediatronic)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{5CBFF3F3-2D40-34EE-BCA5-A95BC19E400D}) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK - Paquete de idioma ESN (HKLM-x32\...\{DAA3E771-CB41-40A4-8AAF-258BA650B0AA}) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK (HKLM-x32\...\{1948E039-EC79-4591-951D-9867A8C14C90}) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft ASP.NET MVC 3 - ESN (HKLM-x32\...\{79B56745-1296-490E-86A7-AE07A034AB26}) (Version: 3.0.20105.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 3 (HKLM-x32\...\{DCDEC776-BADD-48B9-8F9A-DFF513C3D7FA}) (Version: 3.0.20105.0 - Microsoft Corporation)
Microsoft ASP.NET Web Pages - ESN (HKLM-x32\...\{9763733B-6453-4EC3-BFD2-92FB60889204}) (Version: 1.0.20105.0 - Microsoft Corporation)
Microsoft ASP.NET Web Pages (HKLM-x32\...\{631471BE-DEAB-454B-A9AC-CE3EB42C28B3}) (Version: 1.0.20105.0 - Microsoft Corporation)
Microsoft Camera Codec Pack (HKLM\...\{122D94E8-4E70-42BC-80A2-2C9F81003512}) (Version: 6.3.9723.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D}) (Version: 3.5.95.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 2.0 (HKLM-x32\...\Microsoft Help Viewer 2.0) (Version: 2.0.50727 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.10411.0 - Microsoft Corporation)
Microsoft Silverlight 4 SDK - Español (HKLM-x32\...\{D58ED42D-08B2-460F-87DC-F80AAC3A8FED}) (Version: 4.0.60310.0 - Microsoft Corporation)
Microsoft Silverlight 5 SDK - ESN (HKLM-x32\...\{8CD5ABF3-C30B-4A94-811F-0A2C5510B72C}) (Version: 5.0.61118.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (HKLM\...\{36E619BC-A234-4EC3-849B-779A7C865A45}) (Version: 11.0.2316.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (HKLM-x32\...\{FBA6F90E-36EC-4FC9-9B25-3834E3BD46A8}) (Version: 11.0.2316.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB  (HKLM\...\{68FC0046-2F69-497C-ABCC-47C6C54AB253}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects  (HKLM-x32\...\{E0476CC7-E960-49B8-AAC1-7F95931A3E6B}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (x64) (HKLM\...\{E3A180B5-6020-4EA4-AD9D-742B53D1D2EC}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{F845936B-E004-4F9C-A1DA-CDB99FF440F0}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL Compiler Service  (HKLM\...\{89AF07BA-5B5E-442C-AF41-AA6C63E60749}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom  (HKLM\...\{6EB540BD-BA76-44E9-928A-AB7508F448B8}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ESN (HKLM-x32\...\{2A78694E-ACFE-4D5A-9B0F-C0EBEFA3F280}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ESN (HKLM\...\{24965A31-311D-462D-BAA8-B482ABA115D8}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ESN (HKLM\...\{D7126FFC-90BA-4120-8FFB-3688C9931A09}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - ESN (11.1.20627.00) (HKLM-x32\...\{1E8D35CF-17C5-41D7-ADF8-F9979AB271B1}) (Version: 11.1.20627.00 - Microsoft Corporation)
Microsoft SQL Server Data Tools Build Utilities - ESN (11.1.20627.00) (HKLM-x32\...\{DF5FCA82-ABFC-4DA4-A456-6AD0083746BD}) (Version: 11.1.20627.00 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{73E68BD3-5ABA-4529-A2C8-4ECED6952092}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (x64) (HKLM\...\{0EA5B5B6-4537-4989-B522-69772E79CE49}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft System CLR Types para SQL Server 2012 (HKLM-x32\...\{247E8762-752C-4F2C-9CE2-A2BE787A1C19}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft System CLR Types para SQL Server 2012 (x64) (HKLM\...\{A46A6021-355D-4909-8A03-C35D332A6578}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Express - ESN (HKLM-x32\...\Microsoft Visual C++ 2010 Express - ESN) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Express Prerequisites x64 - ESN (HKLM\...\{8557776A-3E8B-335B-8EF7-EFBB02C6948C}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.31125 - Microsoft Corporation)
Microsoft Web Deploy dbSqlPackage Provider - ESN (HKLM-x32\...\{F07BB259-CA70-4443-9E32-7B1F3F2703C7}) (Version: 10.3.20225.0 - Microsoft Corporation)
Microsoft Web Platform Installer 4.0 (HKLM\...\{E2B8249D-895C-4685-8C83-00F3B1A13028}) (Version: 4.0.1622 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Mozilla Firefox 30.0 (x86 es-ES) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 es-ES)) (Version: 30.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
Music Manager (HKU\S-1-5-21-199812834-1161120735-512373414-1000\...\MusicManager) (Version:  - Google, Inc.)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.46.0 - Black Tree Gaming)
Nitro Reader 3 (HKLM\...\{9EA981E5-EE67-4662-86F1-58937D31FE07}) (Version: 3.5.6.5 - Nitro)
Node.js (HKLM-x32\...\{F32F1F88-CCB8-45A0-B37B-2034A25C6C6A}) (Version: 0.10.19 - Joyent, Inc. and other Node contributors)
NoMachine (HKLM-x32\...\NoMachine_is1) (Version: 4.0.362 - NoMachine)
NVIDIA Controlador de 3D Vision 352.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 352.86 - NVIDIA Corporation)
NVIDIA Controlador de audio HD 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA Controlador de gráficos 352.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 352.86 - NVIDIA Corporation)
NVIDIA Controlador de la controladora 3D Vision 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.5.12.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.12.11 - NVIDIA Corporation)
NVIDIA Software del sistema PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
NX Client for Windows 3.5.0-9 (HKLM-x32\...\nxclient_is1) (Version: 3.5.0-9 - NoMachine)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OpenOffice 4.1.1 (HKLM-x32\...\{EFC97BC6-345A-4861-ACD5-0D3181252924}) (Version: 4.11.9775 - Apache Software Foundation)
Oracle VM VirtualBox 4.3.16 (HKLM\...\{D7FAEA32-7CE3-4D9F-9139-F7B87BCC50AF}) (Version: 4.3.16 - Oracle Corporation)
Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.7 - Pando Networks Inc.)
Panel de control de NVIDIA 352.86 (Version: 352.86 - NVIDIA Corporation) Hidden
Paquete de idioma de Microsoft .NET Framework 4.5 ESN (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.5.50709 - Microsoft Corporation)
Paquete de idioma de Microsoft Visual Studio 2010 Tools para Office Runtime (x64) - ESN (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - ESN) (Version: 10.0.31125 - Microsoft Corporation)
Paquete de idioma de Visor de Ayuda de Microsoft 2.0 - ESN (HKLM-x32\...\Paquete de idioma de Visor de Ayuda de Microsoft 2.0 - ESN) (Version: 2.0.50727 - Microsoft Corporation)
Paquete de idioma de Visor de Ayuda de Microsoft 2.0 - ESN (x32 Version: 2.0.50727 - Microsoft Corporation) Hidden
Paquete de idioma del Visor de Ayuda de Microsoft 3.0 - ESN (HKLM\...\Microsoft Help Viewer 1.0 Language Pack - ESN) (Version: 1.0.30319 - Microsoft Corporation)
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version:  - OVERKILL - a Starbreeze Studio.)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
PlanetSide 2 (HKLM-x32\...\Steam App 218230) (Version:  - Daybreak Games)
PlanetSide 2 (HKU\S-1-5-21-199812834-1161120735-512373414-1000\...\SOE-PlanetSide 2) (Version:  - Sony Online Entertainment)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Python 2.7 py2exe-0.6.9 (HKU\S-1-5-21-199812834-1161120735-512373414-1000\...\py2exe-py2.7) (Version:  - )
Python 2.7.5 (HKLM-x32\...\{DBDD570E-0952-475F-9453-AB88F3DD5659}) (Version: 2.7.5150 - Python Software Foundation)
Python 2.7.8 (Anaconda 2.1.0 32-bit) (HKU\S-1-5-21-199812834-1161120735-512373414-1000\...\Python 2.7.8 (Anaconda 2.1.0 32-bit)) (Version: 2.1.0 - Continuum Analytics, Inc.)
Python 3.3 pyzmq-2.2.0 (HKLM\...\{5D312995-5D05-4E99-B1CC-1B9049D5B080}) (Version: 2.2.0 - Brian E. Granger, Min Ragan-Kelley)
Rapture3D 2.4.11 Game (HKLM-x32\...\{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1) (Version:  - Blue Ripple Sound)
REAPER (HKLM-x32\...\REAPER) (Version:  - )
Recuva (HKLM\...\Recuva) (Version: 1.51 - Piriform)
Requisitos previos para SSDT  (HKLM-x32\...\{42335F51-334C-4805-9FFC-3A33F40A245D}) (Version: 11.0.2100.60 - Microsoft Corporation)
Resource Hacker Version 3.6.0 (HKLM-x32\...\ResourceHacker_is1) (Version:  - )
Servicio de lenguaje T-SQL de Microsoft SQL Server 2012  (HKLM-x32\...\{0E22C06E-DCC1-48D6-9A47-3671F673B8C1}) (Version: 11.0.2100.60 - Microsoft Corporation)
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.12.11 - NVIDIA Corporation) Hidden
Skype™ 6.21 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.21.104 - Skype Technologies S.A.)
SourceTree (HKLM-x32\...\SourceTree 1.6.20) (Version: 1.6.20 - Atlassian)
SourceTree (x32 Version: 1.6.20 - Atlassian) Hidden
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version:  - )
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Super Hexagon (HKLM-x32\...\Steam App 221640) (Version:  - Terry Cavanagh)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version:  - Valve)
The Beginner's Guide (HKU\S-1-5-21-199812834-1161120735-512373414-1000\...\The Beginner's Guide) (Version: 1.0.0.0 - Everything Unlimited)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)
The Witcher 3 Wild Hunt (HKLM-x32\...\The Witcher 3 Wild Hunt_is1) (Version: 1.02 - Релиз от R.G. Steamgames)
To the Moon (HKLM-x32\...\Steam App 206440) (Version:  - Freebird Games)
Trine (HKLM-x32\...\Steam App 35700) (Version:  - Frozenbyte)
Trine 2 (HKLM-x32\...\Steam App 35720) (Version:  - Frozenbyte)
Undertale (HKLM-x32\...\Steam App 391540) (Version:  - tobyfox)
Unepic (HKLM-x32\...\Steam App 233980) (Version:  - Francisco Téllez de Meneses)
Unity (HKLM-x32\...\Unity) (Version: 5.1.1f1 - Unity Technologies ApS)
Unity Web Player (HKU\S-1-5-21-199812834-1161120735-512373414-1000\...\UnityWebPlayer) (Version: 5.1.1f1 - Unity Technologies ApS)
Universe Sandbox (HKLM-x32\...\Steam App 72200) (Version:  - Giant Army)
Utilidades línea de comandos de Microsoft SQL Server 2012  (HKLM\...\{EFCB35DF-0CD7-4A8C-9C62-A0F909AD2498}) (Version: 11.0.2100.60 - Microsoft Corporation)
Vagrant (HKLM-x32\...\{3D24EE12-E0CF-41EC-8182-361ECF575656}) (Version: 1.6.5 - HashiCorp)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.4.8.0 - Elaborate Bytes)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WCF RIA Services V1.0 SP2 (HKLM-x32\...\{3A523AF9-D32F-4C85-8388-0335731F3405}) (Version: 4.1.61829.0 - Microsoft Corporation)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
WinRAR 4.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.00.0 - win.rar GmbH)
World Machine 2 Professional Edition (HKLM-x32\...\World Machine2Pro) (Version:  - )
ZeroMQ 4.0.1 (x64) (HKLM\...\ZeroMQ (x64)) (Version: 4.0.1 - Miru)
 
==================== Custom CLSID (Whitelisted): ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Adrian\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{087B3AE3-E237-4467-B8DB-5A38AB959AC9}\InprocServer32 -> D:\Archivos de programas (x86)\OpenOffice 4.1.0\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Adrian\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Adrian\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\Adrian\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{3B092F0C-7696-40E3-A80F-68D74DA84210}\InprocServer32 -> D:\Archivos de programas (x86)\OpenOffice 4.1.0\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Adrian\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{63542C48-9552-494A-84F7-73AA6A7C99C1}\InprocServer32 -> D:\Archivos de programas (x86)\OpenOffice 4.1.0\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\Adrian\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{7BC0E710-5703-45BE-A29D-5D46D8B39262}\InprocServer32 -> D:\Archivos de programas (x86)\OpenOffice 4.1.0\program\shlxthdl\ooofilt_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Adrian\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{AE424E85-F6DF-4910-A6A9-438797986431}\InprocServer32 -> D:\Archivos de programas (x86)\OpenOffice 4.1.0\program\shlxthdl\propertyhdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Adrian\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}\InprocServer32 -> D:\Archivos de programas (x86)\OpenOffice 4.1.0\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{ca586c80-7c84-4b88-8537-726724df6929}\InprocServer32 -> D:\Archivos de programas (x86)\Git\git-cheetah\git_shell_ext64.dll ()
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Adrian\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\Adrian\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{D45F043D-F17F-4e8a-8435-70971D9FA46D}\InprocServer32 -> D:\Archivos de programas\Blender Foundation\Blender\BlendThumb64.dll ()
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Adrian\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Adrian\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Adrian\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Adrian\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Adrian\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Adrian\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Adrian\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Adrian\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Adrian\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Adrian\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Adrian\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\Adrian\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll => No File
 
==================== Restore Points =========================
 
18-11-2015 21:53:21 JRT Pre-Junkware Removal
 
==================== Hosts content: ===============================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
 
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {00A40E92-461B-4390-94E5-6C77561BF017} - System32\Tasks\ESET Windows 10 upgrade – Refresh settings => C:\Program Files\Common Files\AV\ESET NOD32 Antivirus 7.0\upgrade.exe [2015-11-12] (ESET)
Task: {00B74EFC-DD6E-472A-BA6D-E7F90A38DEF0} - System32\Tasks\GoogleUpdateTaskMachineUA1d08e59bc00fbd8 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {12FA0AB1-D842-41CD-BDEF-EBABAD65FCE6} - System32\Tasks\GoogleUpdateTaskMachineCore1d0bfcb43a5eb3c => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {16213A2F-7ED0-4251-B40D-397010CD41B0} - System32\Tasks\{22D8ED93-85E1-4174-BA49-391A552D3799} => C:\Program Files\CCleaner\CCleaner.exe
Task: {1ECBBC98-B0C2-491F-BFCC-16D976B362F2} - System32\Tasks\{989E55A0-3098-4589-8430-1B7879117D01} => C:\Program Files\CCleaner\CCleaner.exe
Task: {36F683BE-CDB0-4943-B8B8-003772CC8510} - System32\Tasks\GoogleUpdateTaskMachineCore1d040b83e72f6bc => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {40466986-395C-4AFC-B061-B1C1C1021D06} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000UA1d0c1fdda899db1 => C:\Users\Adrian\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-16] (Dropbox, Inc.)
Task: {4C965A85-9FC8-404B-B26B-8E3AA27C8A99} - System32\Tasks\CCleanerSkipUAC => D:\Archivos de programas\CClean\rer.exe [2015-10-19] (Piriform Ltd)
Task: {5CB97AA2-C1AC-4C1B-80A4-FE4D85346D4F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000UA1d0bfcdb8f83d96 => C:\Users\Adrian\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {5EE71551-A395-4FC0-8D67-DB754BE0AB4A} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000UA1d04138950c8c42 => C:\Users\Adrian\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {657B9B12-961D-46E7-AD2D-B4550A6A62EB} - System32\Tasks\Microsoft\Windows\Games\Hearthstone => cmd.exe /c start /min cscript.exe "D:\Archivos de programas (x86)\Blizzard\Hearthstone\steamoverlay.vbs" %temp%\steam.tmp
Task: {6ADFAA96-A94F-4A43-90F5-CD15F682062C} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000Core1d0bfcdb8da06c5 => C:\Users\Adrian\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {79210BD2-214A-4D49-991D-E2CD1EA5D698} - System32\Tasks\SteamClient => C:\Users\Adrian\AppData\Roaming\Steam\SteamHelper.exe [2015-10-09] (Valve Corporation                                           ) <==== ATTENTION
Task: {7DEE6C0F-B5D9-43CF-83B3-90E993B61A06} - System32\Tasks\GoogleUpdateTaskMachineCore1cf8a0af90ac840 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {8CA13583-5C27-46E3-B2A0-CE2AC3545EF6} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000UA1cf71c0d8a9fe97 => C:\Users\Adrian\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {9584B882-B336-4869-A9A5-D7A61B593CDB} - System32\Tasks\GoogleUpdateTaskMachineUA1cf71bece1a4e36 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {A3E3D9E5-390C-4325-9A4C-E876DC73A7FC} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel® Update Manager\bin\iumsvc.exe [2015-09-25] (Intel Corporation)
Task: {B0675F6D-73F5-4E00-ADB3-E3A754CA0A13} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-10] (Adobe Systems Incorporated)
Task: {BFA934C4-1536-4CC6-A374-BACD6E0B0379} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000Core1d0c1fdda7b5570 => C:\Users\Adrian\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-16] (Dropbox, Inc.)
Task: {C672F5F8-9DF9-42B9-AF5A-CDB165631331} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel® Update Manager\bin\iumsvc.exe [2015-09-25] (Intel Corporation)
Task: {D3904C61-BF3C-4EEC-A2A4-34525E10580F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000Core1cf8bdaf91f530 => C:\Users\Adrian\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {D9A3EF87-9077-4B8C-B1D0-7345E19765C7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {E7B7E76F-43C4-4773-BB6B-08482082C51A} - System32\Tasks\GoogleUpdateTaskMachineUA1d0bfcb43c4e560 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {E867478B-2F70-49EB-8CB5-5B9ACE02D179} - System32\Tasks\{050A3795-351D-4B59-87B1-CF85CF2B2A34} => pcalua.exe -a D:\Adrian\Downloads\VirtualBox-4.3.16-95972-Win.exe -d D:\Adrian\Downloads
Task: {E8EF4866-4129-4A1B-86FA-51976A967638} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000Core1d08f502119f120 => C:\Users\Adrian\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {E9616AFF-AC90-46B1-A004-8DFE19D1F14D} - System32\Tasks\GoogleUpdateTaskMachineCore1d08e59bbe228c4 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {ED00DE5F-BA42-47C1-AD86-F2511B53D96A} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000Core1d0413894ed9a5e => C:\Users\Adrian\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {F165D5AE-2EB7-4793-8177-BC95E6BC2453} - System32\Tasks\{006D6B89-8D60-476E-B220-1D2E3767D266} => C:\Program Files\CCleaner\CCleaner.exe
Task: {F30B9F67-27B6-4ADB-96BF-42AAE9F85FDE} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000UA1d08f5021378baf => C:\Users\Adrian\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000Core1d0c1fdda7b5570.job => C:\Users\Adrian\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000UA1d0c1fdda899db1.job => C:\Users\Adrian\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf8a0af90ac840.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d040b83e72f6bc.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d08e59bbe228c4.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0bfcb43a5eb3c.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cf71bece1a4e36.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d08e59bc00fbd8.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0bfcb43c4e560.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000Core1cf8bdaf91f530.job => C:\Users\Adrian\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000Core1d0413894ed9a5e.job => C:\Users\Adrian\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000Core1d08f502119f120.job => C:\Users\Adrian\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000Core1d0bfcdb8da06c5.job => C:\Users\Adrian\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000UA1cf71c0d8a9fe97.job => C:\Users\Adrian\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000UA1d04138950c8c42.job => C:\Users\Adrian\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000UA1d08f5021378baf.job => C:\Users\Adrian\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-199812834-1161120735-512373414-1000UA1d0bfcdb8f83d96.job => C:\Users\Adrian\AppData\Local\Google\Update\GoogleUpdate.exe
 
==================== Loaded Modules (Whitelisted) ==============
 
2013-11-09 20:45 - 2013-09-27 15:07 - 02017280 _____ () C:\Windows\system32\nxlsa.DLL
2013-09-11 16:05 - 2015-05-12 04:30 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00842928 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libnxlp64.dll
2013-09-26 22:45 - 2011-03-02 11:40 - 00164864 _____ () D:\Archivos de programas\Winrar\rarext.dll
2013-10-28 13:10 - 2014-08-15 17:33 - 00736962 _____ () D:\Archivos de programas (x86)\Git\git-cheetah\git_shell_ext64.dll
2013-10-19 17:36 - 2012-06-07 09:24 - 00246784 _____ () D:\Archivos de programas (x86)\Drakonia Configurator\hid.exe
2013-10-19 17:36 - 2012-03-05 12:46 - 00240640 _____ () D:\Archivos de programas (x86)\Drakonia Configurator\trayicon.exe
2013-10-19 00:30 - 2013-10-19 00:38 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2015-04-13 21:22 - 2015-07-24 05:22 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2013-10-19 17:36 - 2011-11-22 13:18 - 00061440 _____ () D:\Archivos de programas (x86)\Drakonia Configurator\HidDevice.dll
2015-11-11 23:28 - 2015-11-07 05:36 - 01532744 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\libglesv2.dll
2015-11-11 23:28 - 2015-11-07 05:36 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\libegl.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00861360 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libstdc++-6.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00121520 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libgcc_s_sjlj-1.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 02993328 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libnx.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 01654960 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libcrypto.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00180912 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libssh.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00114352 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libz.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00376496 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libssl.dll
2013-10-19 17:36 - 2011-11-22 13:18 - 00249856 _____ () D:\Archivos de programas (x86)\Drakonia Configurator\language.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 01146544 _____ () D:\Archivos de programas (x86)\NoMachine\bin\perl58.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00139440 _____ () D:\Archivos de programas (x86)\NoMachine\lib\perl\POSIX.dll
2013-11-09 20:45 - 2013-10-31 02:06 - 00264075 _____ () D:\Archivos de programas (x86)\NoMachine\lib\perl\libperl\auto\List\Util\Util.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00051888 _____ () D:\Archivos de programas (x86)\NoMachine\lib\perl\NXFunc.dll
2013-11-09 20:45 - 2013-10-31 02:06 - 00242901 _____ () D:\Archivos de programas (x86)\NoMachine\lib\perl\libperl\auto\Time\HiRes\HiRes.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00079024 _____ () D:\Archivos de programas (x86)\NoMachine\lib\perl\Win32.dll
2013-11-09 20:45 - 2013-10-31 02:05 - 00238505 _____ () D:\Archivos de programas (x86)\NoMachine\lib\perl\libperl\auto\Fcntl\Fcntl.dll
2013-11-09 20:45 - 2013-10-31 02:04 - 00250771 _____ () D:\Archivos de programas (x86)\NoMachine\lib\perl\libperl\auto\Digest\MD5\MD5.dll
2013-11-09 20:45 - 2013-10-31 02:04 - 00234484 _____ () D:\Archivos de programas (x86)\NoMachine\lib\perl\libperl\auto\Cwd\Cwd.dll
2013-11-09 20:45 - 2013-10-31 02:06 - 00257207 _____ () D:\Archivos de programas (x86)\NoMachine\lib\perl\libperl\auto\Socket\Socket.dll
2013-11-09 20:45 - 2013-10-31 02:06 - 00292498 _____ () D:\Archivos de programas (x86)\NoMachine\lib\perl\libperl\auto\IO\IO.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00118448 _____ () D:\Archivos de programas (x86)\NoMachine\lib\perl\File.dll
2013-11-09 20:45 - 2013-10-31 02:06 - 00229025 _____ () D:\Archivos de programas (x86)\NoMachine\lib\perl\libperl\auto\Sys\Hostname\Hostname.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00093360 _____ () D:\Archivos de programas (x86)\NoMachine\lib\perl\NetAdmin.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00061104 _____ () D:\Archivos de programas (x86)\NoMachine\lib\perl\Process.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00057008 _____ () D:\Archivos de programas (x86)\NoMachine\lib\perl\API.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00439744 _____ () D:\Archivos de programas (x86)\NoMachine\bin\NXPL.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 01086640 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libnxc.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00782512 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libnxdiag.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00061104 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libnxau.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00091824 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libnxm.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00299184 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libnxcau.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00054448 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libogg.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00127664 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libspeex.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00096432 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libspeexdsp.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00188592 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libvorbis.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 01549488 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libvorbisenc.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00064176 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libvorbisfile.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00152240 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libnxcex.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00328880 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libjpeg.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00385712 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libnxcim.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00192176 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libpng.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00674480 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libvp8.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00196272 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libwebm.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00198832 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libyuv.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00473264 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libnxdixl.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00142512 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libnxcl.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00247472 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libnxd.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00214704 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libnxs.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00239792 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libnxcsl.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00090800 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libnxdi.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00381104 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libnxdiex.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 03464368 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libnxdifb.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00497328 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libnxdift.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00284336 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libfontconfig.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00192176 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libexpat.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00519856 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libfreetype.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00057520 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libfontenc.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00169648 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libnxdimi.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00141488 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libnxlo.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00198320 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libnxn.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00067760 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libmdnsd.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00279216 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libnxne.dll
2013-11-09 20:45 - 2013-10-31 17:21 - 00583344 _____ () D:\Archivos de programas (x86)\NoMachine\bin\libnxcde.dll
2013-09-10 19:22 - 2012-07-18 05:55 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll
 
==================== Alternate Data Streams (Whitelisted) =========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
AlternateDataStreams: C:\Users\Adrian\Cookies:RCT35ut3GdFt4qsmkISTwWmtPn
AlternateDataStreams: C:\Users\Adrian\AppData\Local\x0rTAH0mFHgFTC:yAqTeJwmC6Hs2CVQF9CeRHyW4yXrZ
 
==================== Safe Mode (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
 
==================== EXE Association (Whitelisted) ===============
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 
IE trusted site: HKU\S-1-5-21-199812834-1161120735-512373414-1000\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-199812834-1161120735-512373414-1000\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-199812834-1161120735-512373414-1000\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-199812834-1161120735-512373414-1000\...\sony.com -> sony.com
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-199812834-1161120735-512373414-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Adrian\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
(Currently there is no automatic fix for this section.)
 
MSCONFIG\startupfolder: C:^Users^Adrian^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeBridge => 
MSCONFIG\startupreg: AdobeCS6ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: CCleaner Monitoring => "D:\Archivos de programas\CClean\rer.exe" /MONITOR
MSCONFIG\startupreg: Dropbox Update => "C:\Users\Adrian\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
MSCONFIG\startupreg: Google Update => "C:\Users\Adrian\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: GoogleChromeAutoLaunch_257F9E5159429344AA5489535C1FAD3E => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
MSCONFIG\startupreg: MusicManager => "C:\Users\Adrian\AppData\Local\Programs\Google\MusicManager\MusicManager.exe"
MSCONFIG\startupreg: ShadowPlay => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
MSCONFIG\startupreg: Steam => "D:\Archivos de programas (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: SwitchBoard => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
MSCONFIG\startupreg: VirtualCloneDrive => "D:\Archivos de programas (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
 
==================== FirewallRules (Whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{65C7E7B7-AE17-432B-9AA5-9153A7B5D123}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{D7204EEB-99B3-48C9-9CAF-36C307277535}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{B9AC0787-ED03-4046-B96B-60AC8FA77B4C}] => (Allow) D:\Archivos de programas (x86)\Steam\Steam.exe
FirewallRules: [{0D719F77-0091-4811-99EE-A61AAFB122EC}] => (Allow) D:\Archivos de programas (x86)\Steam\Steam.exe
FirewallRules: [{38CE64DD-B9D1-458D-A71A-0E9AF3562F17}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\mirrors edge\Support\EA Help\Electronic_Arts_Technical_Support.htm
FirewallRules: [{3E97F981-5D6B-497C-8F74-A72F0BC92B83}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\mirrors edge\Support\EA Help\Electronic_Arts_Technical_Support.htm
FirewallRules: [{50D40160-1988-4947-A3D3-B096980500BC}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{2AA5EE09-7421-419F-9C2D-F801050DEB6F}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{0A5BD639-CC94-4C07-AB3C-57D9A31A6021}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{C63C051F-4B6E-48A0-89CE-B62B9FDB294A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{A195460F-B279-4BBD-BAD1-539A84846497}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{4ED6E257-076A-451F-B71B-D62888E82AF2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0D72EB73-7876-464F-BCAF-682CA6C2603E}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Universe Sandbox\Universe Sandbox.exe
FirewallRules: [{860AF311-8650-43CD-A56C-62A03D32184C}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Universe Sandbox\Universe Sandbox.exe
FirewallRules: [{FE241994-9A91-4611-BF7F-1046F725035F}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Audiosurf\engine\QuestViewer.exe
FirewallRules: [{753933B3-0299-41A0-ACFB-5AA6A1B41DCF}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Audiosurf\engine\QuestViewer.exe
FirewallRules: [TCP Query User{2A21016C-2B54-40EE-9CEE-ABC89105CDDB}D:\archivos de programas (x86)\bin\javaw.exe] => (Allow) D:\archivos de programas (x86)\bin\javaw.exe
FirewallRules: [UDP Query User{AF3DD052-0EB6-4017-A913-D4EAB3A0B6B2}D:\archivos de programas (x86)\bin\javaw.exe] => (Allow) D:\archivos de programas (x86)\bin\javaw.exe
FirewallRules: [{5F47A045-29D7-4898-B020-0462D3554460}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{EA884240-FFB0-440A-9141-0D9818B27FAA}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{2122D320-DE87-47DE-BE59-D98252D83036}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{C3F71F6F-E752-4F2F-81E7-6964DCC5762C}] => (Allow) D:\Archivos de programas (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{D436C844-19D5-4FBE-844B-8BA5147CC495}] => (Allow) D:\Archivos de programas (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{AFE95170-08CA-4E77-9D67-3B9633EE73B8}] => (Allow) D:\Archivos de programas (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{3E9B5FA0-1936-4BB8-B844-5D7108BF70FC}] => (Allow) D:\Archivos de programas (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{B40584E9-C083-4AA5-BD54-ED0AD71504FF}] => (Allow) D:\Archivos de programas (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{C790A8E3-8024-4071-A469-8EBB93832947}] => (Allow) D:\Archivos de programas (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{C84211A7-611C-47AD-B923-B7FF4B4EAEB2}] => (Allow) D:\Archivos de programas (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{A770BE29-B3EA-46D3-9B13-7DB0A26EBED2}] => (Allow) C:\Users\Adrian\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{4F6DD4E3-CBFE-44CC-9DFE-A410D58EA037}] => (Allow) C:\Users\Adrian\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{6F34CF6C-AF47-4F38-AAB2-BF683262226E}D:\archivos de programas\java\jre7\bin\javaw.exe] => (Allow) D:\archivos de programas\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{92FC8F3B-BF5C-4E43-87A5-4D93DDF156B0}D:\archivos de programas\java\jre7\bin\javaw.exe] => (Allow) D:\archivos de programas\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{B40BAC7F-58F9-4B2D-8E54-814F014C8822}C:\windows\system32\javaw.exe] => (Allow) C:\windows\system32\javaw.exe
FirewallRules: [UDP Query User{7174C11F-263F-4983-9F77-236449402201}C:\windows\system32\javaw.exe] => (Allow) C:\windows\system32\javaw.exe
FirewallRules: [{8C6F8658-9BF8-4172-B122-F86935F05A73}] => (Allow) C:\Users\Adrian\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{F68AD832-0E9F-4250-A741-E4BA88EC7C79}] => (Allow) C:\Users\Adrian\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{EE2D1ABA-EA1B-46D4-B39A-841C45016F5A}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Limbo\limbo.exe
FirewallRules: [{03A9B9E9-C9A0-4E9E-8A4B-40367DF7D559}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Limbo\limbo.exe
FirewallRules: [{F377ADD7-D4E7-47A0-860E-52AE47ED21B1}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\FTL Faster Than Light\FTLGame.exe
FirewallRules: [{D2F01FF0-8523-4DF3-9DB0-A33AB83E6F0B}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\FTL Faster Than Light\FTLGame.exe
FirewallRules: [{A6A4A424-7B6C-46B2-BF17-C16A47F750AA}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\rocketbirds_hardboiled\Game.exe
FirewallRules: [{335E0A1B-BC71-4FFB-9A65-A9265571D244}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\rocketbirds_hardboiled\Game.exe
FirewallRules: [TCP Query User{64E04B72-2B1E-41DD-83CF-9B1817FD2B3D}D:\archivos de programas (x86)\steam\steamapps\common\planetside 2\planetside2.exe] => (Allow) D:\archivos de programas (x86)\steam\steamapps\common\planetside 2\planetside2.exe
FirewallRules: [UDP Query User{68862A95-CD3A-4288-83E4-43AB84826881}D:\archivos de programas (x86)\steam\steamapps\common\planetside 2\planetside2.exe] => (Allow) D:\archivos de programas (x86)\steam\steamapps\common\planetside 2\planetside2.exe
FirewallRules: [TCP Query User{B0CC51F0-985D-4FC2-BC2D-AD6E1EAF4106}C:\users\adrian\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\adrian\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{15D577AF-AADD-41ED-9034-5D3C3D587124}C:\users\adrian\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\adrian\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{6F7D5123-35FD-4DE1-94A9-DBE738B21F18}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\mark_of_the_ninja\bin\game.exe
FirewallRules: [{1AFA8571-7AFE-4609-84D7-7EA803ACF176}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\mark_of_the_ninja\bin\game.exe
FirewallRules: [{16CC0E6B-4C48-43C0-9D47-AB08720CB634}] => (Block) %ProgramFiles%\Sony\Vegas Pro 12.0\vegas120.exe
FirewallRules: [{E1295F12-479A-437C-ACCC-24985D2C357A}] => (Block) %ProgramFiles%\Sony\Vegas Pro 12.0\vegas120.exe
FirewallRules: [{C9E9ABC8-6A2C-4B66-B6B0-656B37536CE4}] => (Block) %ProgramFiles%\Adobe\Adobe Photoshop Lightroom 5\lightroom.exe
FirewallRules: [{3889393D-6406-436D-B6C3-305C000BD7C9}] => (Block) %ProgramFiles%\Adobe\Adobe Photoshop Lightroom 5\lightroom.exe
FirewallRules: [TCP Query User{D5C1909A-97F4-4CA1-8B68-F8777524EF14}D:\archivos de programas (x86)\nodejs\node.exe] => (Allow) D:\archivos de programas (x86)\nodejs\node.exe
FirewallRules: [UDP Query User{A27D99E5-1FBC-4FE4-9993-2D342D2A9467}D:\archivos de programas (x86)\nodejs\node.exe] => (Allow) D:\archivos de programas (x86)\nodejs\node.exe
FirewallRules: [{EC68E3FB-2D38-461F-A81F-7DF83940FCF7}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{4F8619E9-0631-45B0-9B56-18B72549CEE2}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{909ABA41-0FA3-42BC-BBFB-2CA299384093}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{4C1BC0A7-8DF0-4F0C-B71F-76439DC23D74}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{D5E02644-3FCA-4631-8EB7-14039B731B5C}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\APB Reloaded\Binaries\APB.exe
FirewallRules: [{2B5A1200-9BCE-4EE9-942E-E6A8A2BD3D4C}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\APB Reloaded\Binaries\APB.exe
FirewallRules: [{90039BEB-E3BC-4D5F-B291-0127B5318D92}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\APB Reloaded\Binaries\VivoxVoiceService.exe
FirewallRules: [{9645E55D-D00F-4963-8451-5D96E33F0A80}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\APB Reloaded\Binaries\VivoxVoiceService.exe
FirewallRules: [TCP Query User{73BD7935-CB42-4E38-BF3B-2D8D51776B74}D:\archivos de programas (x86)\steam\steamapps\common\war thunder\aces.exe] => (Allow) D:\archivos de programas (x86)\steam\steamapps\common\war thunder\aces.exe
FirewallRules: [UDP Query User{1AE136E9-FBCD-4877-9895-7495F3950A0F}D:\archivos de programas (x86)\steam\steamapps\common\war thunder\aces.exe] => (Allow) D:\archivos de programas (x86)\steam\steamapps\common\war thunder\aces.exe
FirewallRules: [TCP Query User{3C056953-275B-419A-9545-6B105C0D1EB9}C:\users\adrian\appdata\local\temp\gw2.exe] => (Allow) C:\users\adrian\appdata\local\temp\gw2.exe
FirewallRules: [UDP Query User{0BA4BA61-43C3-431F-9649-9CA35BA59451}C:\users\adrian\appdata\local\temp\gw2.exe] => (Allow) C:\users\adrian\appdata\local\temp\gw2.exe
FirewallRules: [TCP Query User{0347AD30-0BCE-4C3B-9D9B-A603F2B8D6D9}D:\archivos de programas (x86)\guild wars 2\gw2.exe] => (Allow) D:\archivos de programas (x86)\guild wars 2\gw2.exe
FirewallRules: [UDP Query User{2C775B45-9358-4B2C-BF93-DC6678908309}D:\archivos de programas (x86)\guild wars 2\gw2.exe] => (Allow) D:\archivos de programas (x86)\guild wars 2\gw2.exe
FirewallRules: [{973658D1-8CCB-41A4-964D-C76EFC22F4F6}] => (Allow) D:\Archivos de programas (x86)\NoMachine\bin\nxplayer.bin
FirewallRules: [{23B5560F-9691-4298-BBA1-29D1766FC61B}] => (Allow) D:\Archivos de programas (x86)\NoMachine\bin\nxplayer.bin
FirewallRules: [{5EDC74EE-7B51-4B69-9A7A-E18DCA382D27}] => (Allow) D:\Archivos de programas (x86)\NoMachine\bin\nxd.exe
FirewallRules: [{6387BDCB-9D54-4052-B393-A0C57C8F14BC}] => (Allow) D:\Archivos de programas (x86)\NoMachine\bin\nxd.exe
FirewallRules: [{D84AFFAF-2495-4926-B68D-F62BD6CFFDB0}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{8B344838-8564-4B4A-94A8-D6AE927CA5A9}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{DCE11B44-EEE1-440E-9C41-FB36B97F7192}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{E55855C5-BCCB-4EB5-8842-E62643AAB427}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{52EFA4D8-7F29-4B9C-AF66-5BD598F2D0D6}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2391\Agent.exe
FirewallRules: [{7522A142-0FA6-4831-8667-6945521ACBC3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2391\Agent.exe
FirewallRules: [{3CD628E8-585F-4C4B-A0D3-E947ECA07DB1}] => (Allow) D:\Archivos de programas (x86)\Battle.net\Battle.net.exe
FirewallRules: [{625E34FA-0998-40A8-942B-79121684CAEA}] => (Allow) D:\Archivos de programas (x86)\Battle.net\Battle.net.exe
FirewallRules: [{FD9400ED-D143-4A8B-990C-B4A251527773}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{BC256FEA-6C7C-43C6-A8AC-33D846515007}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [TCP Query User{978A0815-6E23-41FE-AD8A-6EED63F6E835}C:\users\adrian\.nx\plugin\windows\nxclient.exe] => (Allow) C:\users\adrian\.nx\plugin\windows\nxclient.exe
FirewallRules: [UDP Query User{70B5F3D8-05D6-41C2-9300-A73832AA59F5}C:\users\adrian\.nx\plugin\windows\nxclient.exe] => (Allow) C:\users\adrian\.nx\plugin\windows\nxclient.exe
FirewallRules: [{6CA6DF0D-7EC6-4264-A18C-E201A8B627B3}] => (Block) C:\users\adrian\.nx\plugin\windows\nxclient.exe
FirewallRules: [{385E8E83-0877-4DD9-98FD-6D593EB99311}] => (Block) C:\users\adrian\.nx\plugin\windows\nxclient.exe
FirewallRules: [TCP Query User{142E72ED-8490-488C-A1B4-7293C55B22D7}C:\users\adrian\.nx\plugin\windows\bin\nxssh.exe] => (Allow) C:\users\adrian\.nx\plugin\windows\bin\nxssh.exe
FirewallRules: [UDP Query User{7FA816A8-1ED6-46AF-A8F7-EAC9B355D135}C:\users\adrian\.nx\plugin\windows\bin\nxssh.exe] => (Allow) C:\users\adrian\.nx\plugin\windows\bin\nxssh.exe
FirewallRules: [{14A24372-6238-4F62-86F8-8947B0C39CEE}] => (Block) C:\users\adrian\.nx\plugin\windows\bin\nxssh.exe
FirewallRules: [{63D21000-2234-4B8A-9623-035D638021CE}] => (Block) C:\users\adrian\.nx\plugin\windows\bin\nxssh.exe
FirewallRules: [TCP Query User{8D4CA7A7-F125-453D-ACB7-F876468F1362}D:\archivos de programas (x86)\steam\steamapps\common\dark souls prepare to die edition\data\data.exe] => (Allow) D:\archivos de programas (x86)\steam\steamapps\common\dark souls prepare to die edition\data\data.exe
FirewallRules: [UDP Query User{486EDEDD-BCDC-4E8D-9683-A09084B6F4CA}D:\archivos de programas (x86)\steam\steamapps\common\dark souls prepare to die edition\data\data.exe] => (Allow) D:\archivos de programas (x86)\steam\steamapps\common\dark souls prepare to die edition\data\data.exe
FirewallRules: [{288A58DE-220F-4604-BD5D-B0DD52876B36}] => (Block) D:\archivos de programas (x86)\steam\steamapps\common\dark souls prepare to die edition\data\data.exe
FirewallRules: [{10C6D482-F53F-4758-8E3E-25651C258AA4}] => (Block) D:\archivos de programas (x86)\steam\steamapps\common\dark souls prepare to die edition\data\data.exe
FirewallRules: [{CCF4B054-1FE2-40DC-A9AE-F9E8DD48353D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{1C458680-8FFD-4692-A943-00BAD49ABD5C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{0DC83A95-2BC0-44FA-ACB4-5777F791712C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{EE6CF1B0-179B-4AC3-BD03-EE7D4480990E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{A1850F09-9FE4-41C0-AFD3-F4ADF1C233FA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2417\Agent.exe
FirewallRules: [{97F3F8CF-2493-486B-87C7-6D50D879C4D3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2417\Agent.exe
FirewallRules: [{76BB8F2A-7531-4D94-A5AC-82C3ABAA8354}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{6210B425-D36B-4973-9200-6AE60C57BBA4}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{6241BDF6-95DB-4440-BE6D-B4CA4C223C22}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Audiosurf\engine\QuestViewer.exe
FirewallRules: [{DEDF9B59-152C-41B2-8E9E-9E1E06B95EAB}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Audiosurf\engine\QuestViewer.exe
FirewallRules: [{5E9D8F99-B78A-4F83-9819-EE18FD05F159}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{71A4F867-6C3D-404D-BE8A-E3D04E826F17}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{71F6D9CF-874E-4B6A-AD86-D6BB8B49DA73}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2426\Agent.exe
FirewallRules: [{300BC8C4-D9C5-4A0B-811A-4A70B8BA55D4}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2426\Agent.exe
FirewallRules: [{7CB03135-F125-4C40-86B3-D4E1A0DEAEB2}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Unepic\unepic.exe
FirewallRules: [{4E5B5B73-1D95-415D-8369-01F5D8A096D7}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Unepic\unepic.exe
FirewallRules: [{D6E2F7C8-3887-4332-A590-1B6850F4FA4E}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Unepic\unepic.exe
FirewallRules: [{563F1056-78A7-4830-B8F9-40D1F015EEC3}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Unepic\unepic.exe
FirewallRules: [{EA43DCB1-14F1-4EF5-AC91-C3073CF2827D}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Unepic\unepic.exe
FirewallRules: [{60925203-6390-4A30-AB5F-81FC2EE3D4A4}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Unepic\unepic.exe
FirewallRules: [{2D53C387-CE24-4118-A4A0-F445BADC117F}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Unepic\unepic.exe
FirewallRules: [{8583340E-97A7-4D55-B186-343C12478312}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Unepic\unepic.exe
FirewallRules: [{B26F0F15-B3F7-46C1-A775-798E3DB3283A}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{078FCA15-2827-4EA5-A6C8-E3A9AA770336}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [TCP Query User{5EB75EC1-E03C-4958-80FC-BB729ED1436D}C:\windows\system32\java.exe] => (Allow) C:\windows\system32\java.exe
FirewallRules: [UDP Query User{0E747C1D-ABA9-466C-A3F5-A8E37EE0387F}C:\windows\system32\java.exe] => (Allow) C:\windows\system32\java.exe
FirewallRules: [{D3DB7C9A-FEAB-4F31-80D5-EB3B3E2F1D78}] => (Block) C:\windows\system32\java.exe
FirewallRules: [{0B94E773-C387-463E-BFC2-A9230B0D0E66}] => (Block) C:\windows\system32\java.exe
FirewallRules: [{A40267DD-758F-4551-9DEC-BDD937654093}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{6F8B267D-FEFC-4E0F-9F95-0D5FAAA4C905}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{B6660422-C802-414E-8595-2E7DF0AF52CF}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\To the Moon\To the Moon\To the Moon.exe
FirewallRules: [{9908BC0B-75BA-4E3C-8B27-FE10FFC39304}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\To the Moon\To the Moon\To the Moon.exe
FirewallRules: [{88D43F10-14A6-481E-A3C4-37237F15DEEF}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\To the Moon\To the Moon\To the Moon.exe
FirewallRules: [{DFF2C1D6-F742-42A8-87DD-7F3CA705952B}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\To the Moon\To the Moon\To the Moon.exe
FirewallRules: [{B9DC984C-4FDE-4953-9F5E-2FF50DBF40F5}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Unepic\unepic.exe
FirewallRules: [{B3B5F9A6-ECD3-4FC8-9E8A-7C35B95DBDA4}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Unepic\unepic.exe
FirewallRules: [{30239408-D54B-4E7A-AEA5-8DFBFF2061A8}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Unepic\unepic.exe
FirewallRules: [{123AC551-2323-4C40-B401-DBD7A103131F}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Unepic\unepic.exe
FirewallRules: [{D4C81F0D-2452-46A1-8545-DC4AC4F488EE}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2514\Agent.exe
FirewallRules: [{50FE8E58-6655-4EEC-83C2-4C4B413DDBA9}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2514\Agent.exe
FirewallRules: [TCP Query User{3438A687-B6BB-4F55-BD03-C402D1938FB0}D:\archivos de programas (x86)\blizzard\hearthstone\hearthstone.exe] => (Allow) D:\archivos de programas (x86)\blizzard\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{416144A3-748B-429C-9396-10056BA55947}D:\archivos de programas (x86)\blizzard\hearthstone\hearthstone.exe] => (Allow) D:\archivos de programas (x86)\blizzard\hearthstone\hearthstone.exe
FirewallRules: [{305B828D-7FE3-4CCB-B25E-1B2873C8C762}] => (Block) D:\archivos de programas (x86)\blizzard\hearthstone\hearthstone.exe
FirewallRules: [{2A4E7BE3-913E-4E4E-AC56-6183C1EB04BF}] => (Block) D:\archivos de programas (x86)\blizzard\hearthstone\hearthstone.exe
FirewallRules: [{1E7F8986-6F26-488D-9EAA-014CDE248BF8}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{95C7ABA0-81BA-4537-AC88-A6B37595417A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{A0E3271B-E8F7-4379-A160-730700C2D532}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{55C84696-F464-4BF3-9C0C-0DB1A145C3FD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0AD14B77-E4A2-44A3-99AF-FC2348FD6D98}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{CBFCB31B-7127-4778-BF22-E2AD19FC4505}C:\programdata\battle.net\agent\agent.beta.2581\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.beta.2581\agent.exe
FirewallRules: [UDP Query User{F3A94D32-8FD9-42E3-8E32-E96613FFE6AF}C:\programdata\battle.net\agent\agent.beta.2581\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.beta.2581\agent.exe
FirewallRules: [{FE59D5B2-34A8-4F8C-82E7-EA23C3230EF8}] => (Block) C:\programdata\battle.net\agent\agent.beta.2581\agent.exe
FirewallRules: [{5B11DAFA-3754-4AD7-95A7-310DD8785643}] => (Block) C:\programdata\battle.net\agent\agent.beta.2581\agent.exe
FirewallRules: [{DB7FE1FF-ED19-48B4-A876-B47DE6240F75}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{D5347B96-C906-4E47-8B3A-07BEEC13899D}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{AE48E4DB-8C8B-40B8-BA08-A7D2D9610184}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\hotline_miami\HotlineMiami.exe
FirewallRules: [{0E5800DC-72E7-4AB9-9AAE-B1A5283B2E9E}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\hotline_miami\HotlineMiami.exe
FirewallRules: [{174BB491-CBCA-4422-881E-0641197709BE}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{B02BBEB9-4DC2-4CA1-884A-46151E1A0E3B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{3EEA416B-2711-4AAB-899C-43C74C9A253C}] => (Allow) D:\Archivos de programas (x86)\Steam\Steam.exe
FirewallRules: [{01E66D5E-07A9-4D0C-B974-2155D2B3FADB}] => (Allow) D:\Archivos de programas (x86)\Steam\Steam.exe
FirewallRules: [{77CCC057-D496-4CA7-AC31-0449F32798A9}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe
FirewallRules: [{3B0B2C08-5CFA-4680-B7F0-BF49BE958C8D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe
FirewallRules: [{4EC9E77F-8009-4DD7-8C27-99ED4F81023B}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Trine\trine_launcher.exe
FirewallRules: [{4753BB79-C4B3-4940-86C6-2472DB279007}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Trine\trine_launcher.exe
FirewallRules: [TCP Query User{5DFE4643-B562-4156-A680-0F9E99516BCB}D:\archivos de programas (x86)\steam\steamapps\common\dirt 3\dirt3_game.exe] => (Block) D:\archivos de programas (x86)\steam\steamapps\common\dirt 3\dirt3_game.exe
FirewallRules: [UDP Query User{E5A9A06A-C385-4921-9243-D872A9D4EAD6}D:\archivos de programas (x86)\steam\steamapps\common\dirt 3\dirt3_game.exe] => (Block) D:\archivos de programas (x86)\steam\steamapps\common\dirt 3\dirt3_game.exe
FirewallRules: [TCP Query User{6ADE0042-5EBC-40AB-BA43-74F5B47A7B7F}D:\archivos de programas (x86)\steam\steamapps\common\operation flashpoint red river\redriver.exe] => (Allow) D:\archivos de programas (x86)\steam\steamapps\common\operation flashpoint red river\redriver.exe
FirewallRules: [UDP Query User{CA03D2D4-0CBD-43EE-9EDF-E1522D26EBDD}D:\archivos de programas (x86)\steam\steamapps\common\operation flashpoint red river\redriver.exe] => (Allow) D:\archivos de programas (x86)\steam\steamapps\common\operation flashpoint red river\redriver.exe
FirewallRules: [{D51F499C-4D99-4F8E-B0C9-8EDE6B282F54}] => (Block) D:\archivos de programas (x86)\steam\steamapps\common\operation flashpoint red river\redriver.exe
FirewallRules: [{2E44ABDF-666C-4E97-999A-52BEE578A06E}] => (Block) D:\archivos de programas (x86)\steam\steamapps\common\operation flashpoint red river\redriver.exe
FirewallRules: [{6201446B-BE39-4BBF-AC1E-43B8D8CC465E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{027DD4F1-A2CD-4F1B-9548-0B6AD18F1BD7}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{F7E0371E-BFB8-40FC-9C46-EF4D68B09936}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{4B31A881-3CA1-4320-84FB-AAAC4E34921A}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{D3C363C7-9C47-49D6-AA55-F89A8855C743}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{1934D5C5-ACC7-4BF1-8B6C-730B2A4A7C7E}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{0B62BBD9-C9B8-4118-8AD7-9A2FD902D00A}] => (Allow) LPort=57670
FirewallRules: [{54E6D92E-6114-4621-88A6-57E9FB7E7A54}] => (Allow) LPort=57670
FirewallRules: [{6346E955-E434-45F6-9D11-8EE25F0D667C}] => (Allow) LPort=57670
FirewallRules: [{371A730E-35FE-4A25-A3A0-ED2CD60F22E6}] => (Allow) LPort=57670
FirewallRules: [{DFD8BE3E-D34B-4A48-9DFF-66994E739F4D}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{0EC525F7-3404-469E-852B-26AA04585674}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
FirewallRules: [{8D29D118-7F81-48DD-8E3B-72EF776CE28A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
FirewallRules: [{14DC1BBC-7359-4F9D-B090-85A78967CAD7}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Super Hexagon\superhexagon.exe
FirewallRules: [{05979E0F-B86A-4372-ACEB-83454EBD54E9}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Super Hexagon\superhexagon.exe
FirewallRules: [{0DC369B7-D49A-401B-8FCB-8F842F18DF67}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Awesome\Awesome.exe
FirewallRules: [{534A6F0F-80C5-4707-BA36-0BDEC6F072FB}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Awesome\Awesome.exe
FirewallRules: [{A1A55729-FD79-4C24-924D-DD1B13AEF97B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{D2638C97-63D8-46E8-BFA8-DCFEC5181800}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{F6C3D8E7-2E5B-4EA5-B2FD-8C21851D0105}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Brothers - A Tale of Two Sons\Binaries\Win32\BrothersLauncher.exe
FirewallRules: [{99132B79-1ECE-4688-ACAD-D572C4A6B9B4}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Brothers - A Tale of Two Sons\Binaries\Win32\BrothersLauncher.exe
FirewallRules: [{80A3A64E-991E-4BA2-BF4F-161B4DCBF2BF}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Brothers - A Tale of Two Sons\Binaries\Win32\Brothers.exe
FirewallRules: [{4907052F-6210-45E5-B5D2-C1D7BB54ADAF}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Brothers - A Tale of Two Sons\Binaries\Win32\Brothers.exe
FirewallRules: [{9F248B85-33DC-42AF-B53F-699F7F58D709}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{35A47468-B6B8-44B9-9C64-A0EF7FBE5DB4}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{DB0F34C1-C19D-44B6-ACB6-09E813515956}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{8F68A1F8-9A57-4596-A3C1-9B1D2DC78FE4}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{82DAE93F-BE86-4F41-A7DD-71AE029973D2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{10EE2FF5-8FE2-4B6F-8937-741EDA342B5C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{BF2DEF8B-965B-4796-8E95-2CD017DCBEB6}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\FTL Faster Than Light\FTLGame.exe
FirewallRules: [{41FC4C81-54C9-4669-B7D4-3772BF060222}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\FTL Faster Than Light\FTLGame.exe
FirewallRules: [{5C0B91E1-48DB-4CD8-A123-A81EFD4272CE}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Awesome\SteamLauncher.exe
FirewallRules: [{40842351-4290-46A1-9566-5ACE2C413375}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Awesome\SteamLauncher.exe
FirewallRules: [{7B1C3125-BB5D-4E8D-BED6-F7026E72A4BF}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Hammerwatch\Hammerwatch.exe
FirewallRules: [{395AF3E5-9283-48D1-AFA1-0BAA79006583}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Hammerwatch\Hammerwatch.exe
FirewallRules: [{17028CA6-59F4-44DF-9BA5-0B50BAE81C62}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [{15BDA3EA-991C-420F-9CD1-56A04C909FB4}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [{0EF7E03C-F10F-4514-99B6-313885EE828B}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Dustforce\dustforce.exe
FirewallRules: [{E18B6AAD-0D3F-4EBB-AE23-117C7C9E3688}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Dustforce\dustforce.exe
FirewallRules: [{00E8726E-757B-4FF1-9488-19080E9AED3E}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{61CA4E52-142F-417D-8084-CD455170B6D6}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{E6B534DC-3AEE-4682-ACC0-03E6D71ED750}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{CCB4283E-E514-4B0D-B069-0E840C2AF7E7}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{529116E8-5BA9-4FE8-AC92-8DDB134B417F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3023\Agent.exe
FirewallRules: [{6D225403-3529-47B1-826D-2CF20D63222F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3023\Agent.exe
FirewallRules: [{60B06C87-4B2A-4A1D-AA21-3D3E10244140}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3109\Agent.exe
FirewallRules: [{CC833974-C2DE-4520-8383-525BE47F593F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3109\Agent.exe
FirewallRules: [{97E01CB9-7F73-4792-B5A6-89CA41990C77}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Bioshock\Builds\Release\Bioshock.exe
FirewallRules: [{8AAA6B88-0772-4FFD-A21C-6F81BB54307B}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Bioshock\Builds\Release\Bioshock.exe
FirewallRules: [{D8780DF3-ECB3-44B9-8277-8907E752926B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3147\Agent.exe
FirewallRules: [{EDF10720-56B3-40C3-B7C0-C7651857CC17}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3147\Agent.exe
FirewallRules: [TCP Query User{C6B8C8D3-EFDD-4D0D-AF71-5DBAF4458D93}D:\archivos de programas\java\bin\javaw.exe] => (Allow) D:\archivos de programas\java\bin\javaw.exe
FirewallRules: [UDP Query User{80657FD8-523E-4E2F-98B8-D912FD830B3C}D:\archivos de programas\java\bin\javaw.exe] => (Allow) D:\archivos de programas\java\bin\javaw.exe
FirewallRules: [{CA4588E7-A2D6-4790-83B7-B84DAF720869}] => (Block) D:\archivos de programas\java\bin\javaw.exe
FirewallRules: [{6B270438-0612-4DB0-8796-5F45E23FE587}] => (Block) D:\archivos de programas\java\bin\javaw.exe
FirewallRules: [{280CAFEA-A6AD-48A3-AEE0-32763A876E86}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Trine\_enchanted_edition_\trine1_launcher.exe
FirewallRules: [{1CB086CC-D56D-44B9-8D5F-C79131B38519}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Trine\_enchanted_edition_\trine1_launcher.exe
FirewallRules: [{6CF8E79C-8D70-4AA0-92E6-86C1FE198E67}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3182\Agent.exe
FirewallRules: [{F0D53A22-383D-41BE-AE47-37CBAC7A34E3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3182\Agent.exe
FirewallRules: [TCP Query User{B1EE5684-FFB4-4A86-9E3D-3F30D170AE88}D:\archivos de programas (x86)\steam\steamapps\common\planetside 2\planetside2_x64.exe] => (Allow) D:\archivos de programas (x86)\steam\steamapps\common\planetside 2\planetside2_x64.exe
FirewallRules: [UDP Query User{ABFF6817-BAE5-4BD1-BBF7-0821E30156A1}D:\archivos de programas (x86)\steam\steamapps\common\planetside 2\planetside2_x64.exe] => (Allow) D:\archivos de programas (x86)\steam\steamapps\common\planetside 2\planetside2_x64.exe
FirewallRules: [{37336805-9824-45AC-B921-6F92D70FFA51}] => (Block) D:\archivos de programas (x86)\steam\steamapps\common\planetside 2\planetside2_x64.exe
FirewallRules: [{7A4E342A-5A7A-4111-A801-937FEDCC1739}] => (Block) D:\archivos de programas (x86)\steam\steamapps\common\planetside 2\planetside2_x64.exe
FirewallRules: [{383CD41D-4DAB-479B-9941-4C3A5B8A0401}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\mark_of_the_ninja\bin\game.exe
FirewallRules: [{E1AF7E76-7F76-401D-AAD1-8A4414A45A92}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\mark_of_the_ninja\bin\game.exe
FirewallRules: [{3558A02F-783C-45B4-97DC-D39F6BB1724B}] => (Allow) D:\Archivos de programas (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{81CA36ED-8455-41C5-9EC7-C6414EC22B04}] => (Allow) D:\Archivos de programas (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{E839AB87-717C-4895-8135-9185E72AA7BA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3235\Agent.exe
FirewallRules: [{BCE1D8C6-E9EF-4EDC-BCD0-4A1C1EEEBEF2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3235\Agent.exe
FirewallRules: [{DF27B602-C7A7-4EF9-854C-1B0A8FCE3299}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Luftrausers\bin\Luftrausers.exe
FirewallRules: [{015FAE54-C2F2-4CC4-AE7E-13537AE2A085}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Luftrausers\bin\Luftrausers.exe
FirewallRules: [{DFF359E3-A1D4-44D5-A1E6-EED9B5BD9D31}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe
FirewallRules: [{36C3D2D3-5E4B-448F-A0BF-D535233D2B78}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe
FirewallRules: [TCP Query User{19C6EE99-155B-4863-94DC-13CF6C053A54}C:\programdata\battle.net\agent\agent.3372\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.3372\agent.exe
FirewallRules: [UDP Query User{A84E0E0E-9EB2-45AF-A5F2-7FA510F39B07}C:\programdata\battle.net\agent\agent.3372\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.3372\agent.exe
FirewallRules: [{89A05A10-F37E-4550-B819-24E20FB1FAB9}] => (Allow) C:\programdata\battle.net\agent\agent.3372\agent.exe
FirewallRules: [{B4DEB01B-4AED-4D71-AACB-A52BDBECD705}] => (Allow) C:\programdata\battle.net\agent\agent.3372\agent.exe
FirewallRules: [{453D3173-C450-4B69-BCFF-0CB6624BF791}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3427\Agent.exe
FirewallRules: [{CCAC359F-D203-41EC-B777-783D607CF42E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3427\Agent.exe
FirewallRules: [{1BB41972-406B-498F-99AC-3A863BCFA541}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\BIT.TRIP RUNNER\RUNNER.exe
FirewallRules: [{76461B96-97F4-45C0-ABED-C5F46DBA92D0}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\BIT.TRIP RUNNER\RUNNER.exe
FirewallRules: [{A2F5FF4C-32C6-4406-A3FF-E66745D1BF50}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Awesome\Awesome_DirectToRift.exe
FirewallRules: [{B0F2A3E0-0052-43E8-89F3-67A036EBD8F3}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Awesome\Awesome_DirectToRift.exe
FirewallRules: [{C6989F55-78C9-47CB-9C5C-9E04473C68FA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe
FirewallRules: [{9BB31EDB-F29D-49AA-B303-63B5AD6DF2F1}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe
FirewallRules: [TCP Query User{B09476CC-3561-4623-B06E-A24250E4797F}C:\programdata\battle.net\agent\agent.3526\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.3526\agent.exe
FirewallRules: [UDP Query User{F7651AFF-6805-4F7A-8056-6BF7E6D38042}C:\programdata\battle.net\agent\agent.3526\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.3526\agent.exe
FirewallRules: [{240ADB08-CA8F-404F-A308-F19566BF2CE5}] => (Allow) C:\programdata\battle.net\agent\agent.3526\agent.exe
FirewallRules: [{762D6354-FE7F-4548-9658-912D34F45D8F}] => (Allow) C:\programdata\battle.net\agent\agent.3526\agent.exe
FirewallRules: [TCP Query User{46FA3D41-F896-4F34-863D-704B7EF3C006}C:\program files (x86)\nx client for windows\nxclient.exe] => (Allow) C:\program files (x86)\nx client for windows\nxclient.exe
FirewallRules: [UDP Query User{BE6A0009-C0CE-45A3-8D86-7C34BC8AB3A4}C:\program files (x86)\nx client for windows\nxclient.exe] => (Allow) C:\program files (x86)\nx client for windows\nxclient.exe
FirewallRules: [{6B716E9E-493D-4F45-A94B-0DD0527D0C47}] => (Block) C:\program files (x86)\nx client for windows\nxclient.exe
FirewallRules: [{AA0C8C97-6816-420B-903E-CD982D26EC98}] => (Block) C:\program files (x86)\nx client for windows\nxclient.exe
FirewallRules: [{1023C89A-96F7-49E6-9B73-FF7A0B72475B}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{6F6F07FD-24EE-4745-B7AB-12188E905FF0}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{ACBC4251-D741-4111-97E1-A507DFE7C979}] => (Block) %ProgramFiles%\Adobe\Adobe After Effects CS6\Support Files\AfterFX.exe
FirewallRules: [{2F3C27A1-FAAF-495E-B018-43A6A1F99449}] => (Block) %ProgramFiles%\Adobe\Adobe Bridge CS6 (64 Bit)\Bridge.exe
FirewallRules: [{A8A8886F-97D9-41F2-A585-5F577C0B7900}] => (Block) %ProgramFiles%\Adobe\Adobe Photoshop CS6 (64 Bit)\Photoshop.exe
FirewallRules: [{2D70C397-491B-4483-91A1-8DEF6F29A163}] => (Block) %ProgramFiles%\Adobe\Adobe Encore CS6\Adobe Encore.exe
FirewallRules: [{CA716A43-8DDF-42B5-8670-E9A50969261F}] => (Block) %ProgramFiles%\Adobe\Adobe Premiere Pro CS6\Adobe Premiere Pro.exe
FirewallRules: [{3710F558-D5C5-439D-B5FA-78603F822104}] => (Block) %ProgramFiles%\Adobe\Adobe Photoshop Lightroom 5\lightroom.exe
FirewallRules: [{EA2694AA-69E8-4951-928D-DFA514B7799A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{00B57208-88F8-4768-977A-A70B4EB20F27}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [TCP Query User{2EF7A7FC-7280-4E30-9F13-E671343A92B5}D:\archivos de programas (x86)\unity\editor\unity.exe] => (Allow) D:\archivos de programas (x86)\unity\editor\unity.exe
FirewallRules: [UDP Query User{662D5127-FC9C-47B3-8854-8E7961CC9B43}D:\archivos de programas (x86)\unity\editor\unity.exe] => (Allow) D:\archivos de programas (x86)\unity\editor\unity.exe
FirewallRules: [{EB38942D-02B2-4841-9731-976B8021A249}] => (Block) D:\archivos de programas (x86)\unity\editor\unity.exe
FirewallRules: [{29A61294-A7B9-4B71-9959-D18D35C7A22C}] => (Block) D:\archivos de programas (x86)\unity\editor\unity.exe
FirewallRules: [TCP Query User{20558E0B-4383-41BF-A4E4-A11D2D90736F}D:\archivos de programas (x86)\unity psm\editor\unity.exe] => (Allow) D:\archivos de programas (x86)\unity psm\editor\unity.exe
FirewallRules: [UDP Query User{E2265CFA-B563-4C39-AB07-442B3CD18377}D:\archivos de programas (x86)\unity psm\editor\unity.exe] => (Allow) D:\archivos de programas (x86)\unity psm\editor\unity.exe
FirewallRules: [{7E860DDE-1C47-45A9-932F-AE2465CC8ACD}] => (Block) D:\archivos de programas (x86)\unity psm\editor\unity.exe
FirewallRules: [{22AECBE3-14A1-42D5-9048-9BB25002F291}] => (Block) D:\archivos de programas (x86)\unity psm\editor\unity.exe
FirewallRules: [{C400197B-4FF3-4ABE-B81E-42BA836C4C2B}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{6690277D-AF0E-42D0-8FFB-9E0BD68F0736}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{900C3AEF-0175-4B75-A2A3-99AA37B92F14}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Hotline Miami 2 Wrong Number Digital Comic\hlm2comics.exe
FirewallRules: [{D90F176B-6022-4F6C-8353-898F067F9120}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Hotline Miami 2 Wrong Number Digital Comic\hlm2comics.exe
FirewallRules: [TCP Query User{AE891F57-ECAA-4FC8-9E7E-411F1F886326}D:\archivos de programas\unity\editor\unity.exe] => (Allow) D:\archivos de programas\unity\editor\unity.exe
FirewallRules: [UDP Query User{72A80D4B-D7BB-4273-9CA8-5A3E3B0BE502}D:\archivos de programas\unity\editor\unity.exe] => (Allow) D:\archivos de programas\unity\editor\unity.exe
FirewallRules: [{1F17474F-3825-4A07-86BC-0E0348E31E87}] => (Block) D:\archivos de programas\unity\editor\unity.exe
FirewallRules: [{9430BC88-BB83-4FF7-B144-CF3C3326671B}] => (Block) D:\archivos de programas\unity\editor\unity.exe
FirewallRules: [{22A92BDA-60E5-43AB-AB4B-DBDC34B5A9F8}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Trine 2\trine2_launcher.exe
FirewallRules: [{89038A61-3323-4E08-B8C1-63CF20DCEC54}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Trine 2\trine2_launcher.exe
FirewallRules: [TCP Query User{29F99EB2-6FC0-42BF-9ED6-5F7E113FF47D}D:\archivos de programas (x86)\steam\steamapps\common\trine 2\trine2_32bit.exe] => (Allow) D:\archivos de programas (x86)\steam\steamapps\common\trine 2\trine2_32bit.exe
FirewallRules: [UDP Query User{E3F171C1-6FE1-49A9-833B-6635395D1BF8}D:\archivos de programas (x86)\steam\steamapps\common\trine 2\trine2_32bit.exe] => (Allow) D:\archivos de programas (x86)\steam\steamapps\common\trine 2\trine2_32bit.exe
FirewallRules: [{CDB85A8C-BD33-442A-853D-5D0A9650EBB9}] => (Block) D:\archivos de programas (x86)\steam\steamapps\common\trine 2\trine2_32bit.exe
FirewallRules: [{C66B5032-3235-4EAE-A374-4454AC936ACE}] => (Block) D:\archivos de programas (x86)\steam\steamapps\common\trine 2\trine2_32bit.exe
FirewallRules: [TCP Query User{0933D3A9-BCC7-426F-B3FB-C535E8A497BC}D:\adrian\downloads\ffinstonline.exe] => (Allow) D:\adrian\downloads\ffinstonline.exe
FirewallRules: [UDP Query User{D7BB7ED7-3371-42BB-A5B9-FCF5991208E1}D:\adrian\downloads\ffinstonline.exe] => (Allow) D:\adrian\downloads\ffinstonline.exe
FirewallRules: [{63E69748-7E2D-49A3-9BF3-089AF7AE4ADB}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Hotline Miami 2\HotlineMiami2.exe
FirewallRules: [{A5F7532F-87B8-4757-AEC0-52B13CA5BE8E}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Hotline Miami 2\HotlineMiami2.exe
FirewallRules: [{C2CB7113-8BBE-4C60-B717-1C43BC219810}] => (Block) D:\Archivos de programas (x86)\World Machine 2 Professional\World Machine.exe
FirewallRules: [{C7DCBAC4-B200-409D-B269-2E0603C8770D}] => (Block) D:\Archivos de programas (x86)\World Machine 2 Professional\World Machine32.exe
FirewallRules: [{C9711E48-18B9-46D9-88ED-A23467599701}] => (Block) D:\Archivos de programas (x86)\World Machine 2 Professional\World Machine64.exe
FirewallRules: [{1271CD27-0DB3-444B-AE0A-A63B6D92739B}] => (Block) D:\Archivos de programas (x86)\World Machine 2 Professional\WorldMachineCMD.exe
FirewallRules: [{A63D817A-FBDD-435C-A2CD-41B646681208}] => (Block) D:\Archivos de programas (x86)\World Machine 2 Professional\World Machine.exe
FirewallRules: [{E60D2DE1-D42A-4BAE-A1DD-3CBF3C93CC74}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\To the Moon\Minisode_1\Sigmund Holiday Special 1\Siggy - Holiday Special.exe
FirewallRules: [{1C7419E5-7B20-4F42-A426-CC9167401EC9}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\To the Moon\Minisode_1\Sigmund Holiday Special 1\Siggy - Holiday Special.exe
FirewallRules: [{11939913-96ED-470E-AF9A-3843DAA79D6A}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\To the Moon\Minisode_2\Sigmund Holiday Special 2\SigCorp Minisode 2.exe
FirewallRules: [{3A3E14EA-AFA3-4A64-8EDD-07B97CBBE7BD}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\To the Moon\Minisode_2\Sigmund Holiday Special 2\SigCorp Minisode 2.exe
FirewallRules: [{29DC7A92-6419-4E1D-ACB2-777AA528916E}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Hammerwatch\editor\HammerEditor.exe
FirewallRules: [{238A893F-9E48-4F3F-86C4-636E13DD5DC1}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Hammerwatch\editor\HammerEditor.exe
FirewallRules: [TCP Query User{41FFA1A2-818E-4311-A8F0-A08476665611}D:\archivos de programas\unity\editor\data\playbackengines\webglsupport\buildtools\emscripten_win\python\2.7.5.3_64bit\python.exe] => (Allow) D:\archivos de programas\unity\editor\data\playbackengines\webglsupport\buildtools\emscripten_win\python\2.7.5.3_64bit\python.exe
FirewallRules: [UDP Query User{44602A23-3149-46AB-BCBC-55EC5034251F}D:\archivos de programas\unity\editor\data\playbackengines\webglsupport\buildtools\emscripten_win\python\2.7.5.3_64bit\python.exe] => (Allow) D:\archivos de programas\unity\editor\data\playbackengines\webglsupport\buildtools\emscripten_win\python\2.7.5.3_64bit\python.exe
FirewallRules: [{8DC6B572-6E36-463B-BD87-99915EF63038}] => (Block) D:\archivos de programas\unity\editor\data\playbackengines\webglsupport\buildtools\emscripten_win\python\2.7.5.3_64bit\python.exe
FirewallRules: [{58E8DD53-7953-4865-8946-C62D66E828AD}] => (Block) D:\archivos de programas\unity\editor\data\playbackengines\webglsupport\buildtools\emscripten_win\python\2.7.5.3_64bit\python.exe
FirewallRules: [{6FFDB428-C06E-4C99-BF05-82940D964A04}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\PlanetSide 2\LaunchPad.exe
FirewallRules: [{FBAB62A4-8D92-4EA1-8488-A9B00846D739}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\PlanetSide 2\LaunchPad.exe
FirewallRules: [{D2092D2A-DDA6-4E29-A63F-C32D18A1F5A9}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{019AC5D6-1C5D-44D9-8144-4C10707B3845}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{CD931DBE-4215-40E7-A060-6DD8BF63CEDA}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Magicka\Magicka.exe
FirewallRules: [{DB0D2CBC-4682-444B-9665-4CE42F8BE9A8}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Magicka\Magicka.exe
FirewallRules: [{F4E2027F-2F49-42A8-9DCC-EFCC8DBF968B}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Fallout New Vegas\FalloutNVLauncher.exe
FirewallRules: [{D371693C-DA25-4024-A97B-8FFF8A066001}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Fallout New Vegas\FalloutNVLauncher.exe
FirewallRules: [TCP Query User{94502F89-BDF7-4D3C-AF0D-97616CE5A628}D:\archivos de programas\unity\monodevelop\bin\monodevelop.exe] => (Block) D:\archivos de programas\unity\monodevelop\bin\monodevelop.exe
FirewallRules: [UDP Query User{05C6A8A7-9B24-4414-9511-C8C38D29496A}D:\archivos de programas\unity\monodevelop\bin\monodevelop.exe] => (Block) D:\archivos de programas\unity\monodevelop\bin\monodevelop.exe
FirewallRules: [{EEF77D4E-8ED2-4FD2-9839-89A82EABF51D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{FA23EA45-63F5-458E-96D9-4ECCCEA978FD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{E5F696F6-AEDA-4A09-8E8D-B4F989BFCFE1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{4914B695-4F86-45A6-8505-C364028E3223}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{AB0C076F-83DF-4896-8B41-C1B0002B69D8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{2133DCB3-C682-4C72-B2C5-FEC38D89C28B}D:\archivos de programas (x86)\the beginner's guide\beginnersguide.exe] => (Block) D:\archivos de programas (x86)\the beginner's guide\beginnersguide.exe
FirewallRules: [UDP Query User{6166FFFF-0398-4FEC-A38A-F931C4E35BA3}D:\archivos de programas (x86)\the beginner's guide\beginnersguide.exe] => (Block) D:\archivos de programas (x86)\the beginner's guide\beginnersguide.exe
FirewallRules: [{FDDE5B78-A739-4527-8C06-5D8CFE3D3B89}] => (Allow) D:\Archivos de programas (x86)\Keep Talking and Nobody Explodes\steam_api.exe
FirewallRules: [{97ACC81C-FFDD-40DD-A84A-005EAD7711C3}] => (Allow) D:\Archivos de programas (x86)\Keep Talking and Nobody Explodes\steam_api.exe
FirewallRules: [{81190BF2-CC78-4B2B-A27D-35E5A9D4BA27}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Undertale\UNDERTALE.exe
FirewallRules: [{08198051-A741-41B3-8B98-F3BADA47E8A7}] => (Allow) D:\Archivos de programas (x86)\Steam\SteamApps\common\Undertale\UNDERTALE.exe
FirewallRules: [{310EEF74-71D4-43D8-B93E-E31AE73EB5AA}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\47.0.2526.18\remoting_host.exe
FirewallRules: [{3620B820-D687-40E9-ABE1-80FCC4F00311}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
==================== Faulty Device Manager Devices =============
 
Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (11/18/2015 09:50:16 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/18/2015 09:06:52 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/18/2015 10:00:25 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/18/2015 09:36:09 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/18/2015 09:33:49 AM) (Source: MsiInstaller) (EventID: 11719) (User: Adrian-i7)
Description: Producto: Java 7 Update 40 -- Error 1719. No se tiene acceso al servicio de Windows Installer. Esto puede suceder si Windows Installer no está correctamente instalado. Póngase en contacto con el personal de soporte técnico para obtener ayuda.
 
Error: (11/18/2015 09:33:45 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: El programa msiexec.exe, versión 5.0.7601.17514, dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible acerca del problema, compruebe el historial de problemas en el panel de control Centro de actividades.
 
Identificador de proceso: 1db4
 
Hora de inicio: 01d121da0b21df7d
 
Hora de finalización: 0
 
Ruta de acceso de la aplicación: C:\Windows\system32\msiexec.exe
 
Identificador de informe:
 
Error: (11/18/2015 09:15:15 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/18/2015 00:17:27 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/18/2015 00:11:36 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/17/2015 09:33:16 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
 
System errors:
=============
Error: (11/18/2015 09:48:53 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: El servicio nxservice no se pudo iniciarse como .\nx con la contraseña configurada actualmente debido al siguiente error: 
%%1330
 
Para asegurarse de que el servicio esté correctamente configurado, use el complemento Servicios en Microsoft Management Console (MMC).
 
Error: (11/18/2015 09:47:42 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Intel® Management and Security Application User Notification Service se terminó de manera inesperada. Esto ha sucedido 1 veces.
 
Error: (11/18/2015 09:47:42 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Intel® ME Service se terminó de manera inesperada. Esto ha sucedido 1 veces.
 
Error: (11/18/2015 09:47:42 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Servicio de uso compartido de red del Reproductor de Windows Media terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 30000 milisegundos: Reiniciar el servicio.
 
Error: (11/18/2015 09:47:41 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Windows Presentation Foundation Font Cache 3.0.0.0 terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 0 milisegundos: Reiniciar el servicio.
 
Error: (11/18/2015 09:47:41 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Windows Search terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 30000 milisegundos: Reiniciar el servicio.
 
Error: (11/18/2015 09:47:41 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Windows Live ID Sign-in Assistant terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 10000 milisegundos: Reiniciar el servicio.
 
Error: (11/18/2015 09:47:41 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio SQL Server VSS Writer se terminó de manera inesperada. Esto ha sucedido 1 veces.
 
Error: (11/18/2015 09:47:41 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio PnkBstrA se terminó de manera inesperada. Esto ha sucedido 1 veces.
 
Error: (11/18/2015 09:47:41 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio NoMachine USB Server se terminó de manera inesperada. Esto ha sucedido 1 veces.
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™ i7-3770K CPU @ 3.50GHz
Percentage of memory in use: 17%
Total physical RAM: 32650.52 MB
Available physical RAM: 26778.29 MB
Total Virtual: 65299.21 MB
Available Virtual: 59290.38 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:111.69 GB) (Free:0.63 GB) NTFS
Drive d: (Disco de Almacenamiento) (Fixed) (Total:931.51 GB) (Free:244.71 GB) NTFS
Drive e: (Disco de Almacenamiento) (Fixed) (Total:2794.39 GB) (Free:1471.51 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: A6F05040)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.7 GB) - (Type=07 NTFS)
 
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: F70D9C7F)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
 
========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 2794.5 GB) (Disk ID: 00000000)
 
Partition: GPT.
 
==================== End of Addition.txt ============================
 
 
 
-------------------------EDIT:---------------------------
 
On a side note, I also think that it'might be relevant for you to know that I've found that the Junkware removal tool gets its access denied to most (if not all) folders; even tough it was being ran as admin.
 
 
 
 
Thanks

Attached Files


Edited by howlingCup, 19 November 2015 - 03:20 AM.


BC AdBot (Login to Remove)

 


#2 nasdaq

nasdaq

  • Malware Response Team
  • 39,877 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:10:44 AM

Posted 21 November 2015 - 11:07 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

Press the windows key Windows_Logo_key.gif+ r on your keyboard at the same time. This will open the RUN BOX.
Type Notepad and and click the OK key.
Please copy the entire contents of the code box below to the a new file.


start

CreateRestorePoint:
EmptyTemp:
CloseProcesses:

Winlogon\Notify\igfxcui: igfxdev.dll [X]
GroupPolicyScripts: Restriction <======= ATTENTION
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin HKU\S-1-5-21-199812834-1161120735-512373414-1000: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\pdf.dll => No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll => No File
CHR Extension: (agar.io server browser) - C:\Users\Adrian\AppData\Local\Google\Chrome\User Data\Default\Extensions\hongpdkjnjhijmdnogoicadboadgllhi [2015-06-11]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Adrian\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Adrian\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\Adrian\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Adrian\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\Adrian\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Adrian\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Adrian\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Adrian\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\Adrian\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll => No File
Task: {79210BD2-214A-4D49-991D-E2CD1EA5D698} - System32\Tasks\SteamClient => C:\Users\Adrian\AppData\Roaming\Steam\SteamHelper.exe [2015-10-09] (Valve Corporation                                           ) <==== ATTENTION
AlternateDataStreams: C:\Users\Adrian\Cookies:RCT35ut3GdFt4qsmkISTwWmtPn
AlternateDataStreams: C:\Users\Adrian\AppData\Local\x0rTAH0mFHgFTC:yAqTeJwmC6Hs2CVQF9CeRHyW4yXrZ
C:\Users\Adrian\AppData\Roaming\Steam\SteamHelper.exe
C:\Users\Adrian\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpsutz4i.dll
C:\Users\Adrian\AppData\Local\Temp\sqlite3.dll

End
Save the file as fixlist.txt in the same folder where the Farbar tool is running from.
The location is listed in the 3rd line of the Farbar log you have submitted.

Run FRST and click Fix only once and wait.

Restart the computer normally to reset the registry.

The tool will create a log (Fixlog.txt) please post it to your reply.
===

How is the computer running now?

#3 howlingCup

howlingCup
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:44 PM

Posted 22 November 2015 - 02:47 PM

Hi there,

 

I've done the fix and after 5 or 6 restarts I can confirm that the PopUps are gone. 

 

Here is the file produced:

 

 

Fix result of Farbar Recovery Scan Tool (x64) Version:20-11-2015
Ran by Adrian (2015-11-22 14:50:34) Run:1
Running from D:\Adrian\Escritorio
Loaded Profiles: Adrian (Available Profiles: Adrian & nx)
Boot Mode: Normal
==============================================
 
fixlist content:
*****************
 
start
 
CreateRestorePoint:
EmptyTemp:
CloseProcesses:
 
Winlogon\Notify\igfxcui: igfxdev.dll [X]
GroupPolicyScripts: Restriction <======= ATTENTION
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin HKU\S-1-5-21-199812834-1161120735-512373414-1000: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\pdf.dll => No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll => No File
CHR Extension: (agar.io server browser) - C:\Users\Adrian\AppData\Local\Google\Chrome\User Data\Default\Extensions\hongpdkjnjhijmdnogoicadboadgllhi [2015-06-11]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Adrian\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Adrian\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\Adrian\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Adrian\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\Adrian\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Adrian\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Adrian\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Adrian\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\Adrian\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll => No File
Task: {79210BD2-214A-4D49-991D-E2CD1EA5D698} - System32\Tasks\SteamClient => C:\Users\Adrian\AppData\Roaming\Steam\SteamHelper.exe [2015-10-09] (Valve Corporation                                           ) <==== ATTENTION
AlternateDataStreams: C:\Users\Adrian\Cookies:RCT35ut3GdFt4qsmkISTwWmtPn
AlternateDataStreams: C:\Users\Adrian\AppData\Local\x0rTAH0mFHgFTC:yAqTeJwmC6Hs2CVQF9CeRHyW4yXrZ
C:\Users\Adrian\AppData\Roaming\Steam\SteamHelper.exe
C:\Users\Adrian\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpsutz4i.dll
C:\Users\Adrian\AppData\Local\Temp\sqlite3.dll
 
End
*****************
 
Restore point was successfully created.
Processes closed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui" => key removed successfully
C:\Windows\system32\GroupPolicy\Machine => moved successfully
C:\Windows\system32\GroupPolicy\GPT.ini => moved successfully
C:\Windows\SysWOW64\GroupPolicy\GPT.ini => moved successfully
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => key removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => key removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@pandonetworks.com/PandoWebPlugin" => key removed successfully
"HKU\S-1-5-21-199812834-1161120735-512373414-1000\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin" => key removed successfully
C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll => not found.
C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\ppGoogleNaClPluginChrome.dll => not found.
C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\pdf.dll => not found.
C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll => not found.
C:\Users\Adrian\AppData\Local\Google\Chrome\User Data\Default\Extensions\hongpdkjnjhijmdnogoicadboadgllhi => moved successfully
EagleX64 => service removed successfully
"HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}" => key removed successfully
"HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}" => key removed successfully
"HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}" => key removed successfully
"HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}" => key removed successfully
"HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}" => key removed successfully
"HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}" => key removed successfully
"HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}" => key removed successfully
"HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}" => key removed successfully
"HKU\S-1-5-21-199812834-1161120735-512373414-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{79210BD2-214A-4D49-991D-E2CD1EA5D698} => key not found. 
C:\Windows\System32\Tasks\SteamClient => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SteamClient" => key removed successfully
"C:\Users\Adrian\Cookies" => ":RCT35ut3GdFt4qsmkISTwWmtPn" ADS not found.
C:\Users\Adrian\AppData\Local\x0rTAH0mFHgFTC => ":yAqTeJwmC6Hs2CVQF9CeRHyW4yXrZ" ADS removed successfully.
C:\Users\Adrian\AppData\Roaming\Steam\SteamHelper.exe => moved successfully
C:\Users\Adrian\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpsutz4i.dll => moved successfully
C:\Users\Adrian\AppData\Local\Temp\sqlite3.dll => moved successfully
EmptyTemp: => 485.8 MB temporary data Removed.
 
 
The system needed a reboot.
 
==== End of Fixlog 14:50:50 ====
 
 
 
 
Any ideas what exactly was causing the issue?
 
 
Thanks for your help, if there is anything else that I should do to check if everything is back to normal, or to help you find out any more info about the issue tell me and I'll gladly help.
 
Cheers


#4 nasdaq

nasdaq

  • Malware Response Team
  • 39,877 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:10:44 AM

Posted 23 November 2015 - 07:24 AM

It probably can form this program C:\Users\Adrian\AppData\Roaming\Steam\SteamHelper.exe

http://www.herdprotect.com/steamhelper.exe-f9feab91d306a1a5dcd2bab0889461992e7bf5ea.aspx

Nothing is free anymore.
After installing new 3rd party programs run the Adwcleaner tool.
Clean everything you did not ask for.

===

If all is well.

To learn more about how to protect yourself while on the internet read this little guide best security practices keep safe.
http://www.bleepingcomputer.com/forums/t/407147/answers-to-common-security-questions-best-practices/
===

#5 nasdaq

nasdaq

  • Malware Response Team
  • 39,877 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:10:44 AM

Posted 29 November 2015 - 09:50 AM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users