Jump to content
Ari_David

How to know if I have a virus or a malware?

Recommended Posts

Hi, I have downloaded an aplication from github: https://github.com/Artikash/Textractor it showed what it had to, but didn't worked for me, so I deleted it. I'm reaelly scared from viruses, malware and all. I've restared 3 times the pc, and checked all the process, documents, programs, etc. and everything seems in roder, also I've ran 3 times the complete analysis of malwarebytes and the smart analysis of avast and they didn't found nothing.

 

My questions is it's ok with those scans, my pc is free of viruses?

 

Thank you in advice.

Ari.

Share this post


Link to post
Share on other sites

P.D: I don't know why my post is triplicated. There was an error when i tried to post it, i tried some times but i had the same error, so afther that i refresh the page and said me that it was satisfactory posted. I'm really sorry.

Share this post


Link to post
Share on other sites

Hello, Welcome to Malwarebytes.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

Let me check further.

Download the Farbar Recovery Scan Tool (FRST).
Choose the 32 or 64 bit version for your system.
and save it to a folder on your computer's Desktop.
Double-click to run it. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

How to attach a file to your reply:
In the Reply section in the bottom of the topic Click the "more reply Options" button.
attachlogs.png

Attach the file.
Select the "Choose a File" navigate to the location of the File.
Click the file you wish to Attach.
Click Attach this file.
Click the Add reply button.
===

Please post the logs  for my review.

Wait for further instructions

Share this post


Link to post
Share on other sites

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20.04.2019 01
Ran by Candy Panda (administrator) on CANDY-PANDA (Gigabyte Technology Co., Ltd. GA-990FXA-UD5) (20-04-2019 22:29:07)
Running from C:\Users\Candy Panda\Desktop\Nueva carpeta
Loaded Profiles: Candy Panda (Available Profiles: Candy Panda)
Platform: Windows 10 Pro Version 1803 17134.706 (X64) Language: Español (España, internacional)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Adobe Systems Incorporated -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Systems Incorporated -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\IME\shared\ImeBroker.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [MouseDriver] => C:\Windows\system32\TiltWheelMouse.exe [241152 2013-04-09] (Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040792 2017-04-23] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1393880 2017-04-23] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [260488 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [303928 2017-07-14] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [IntelliPoint] => C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2417032 2011-08-01] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2675176 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes Corporation -> Malwarebytes)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [225944 2017-04-11] (OOO Lightshot -> )
HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [704424 2017-03-10] (Autodesk, Inc -> Autodesk, Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2383040 2016-10-12] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [ADSK DLMSession] => C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe [1627032 2015-01-28] (Autodesk, Inc -> Autodesk, Inc.)
HKLM-x32\...\Run: [amd_dc_opt] => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD) [File not signed]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [588704 2018-03-28] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [260488 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-2249504812-4021907149-2879380034-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Candy Panda\AppData\Local\Akamai\netsession_win.exe [4490200 2017-01-03] (Akamai Technologies, Inc. -> Akamai Technologies, Inc.)
HKU\S-1-5-21-2249504812-4021907149-2879380034-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3152160 2019-04-16] (Valve -> Valve Corporation)
HKU\S-1-5-21-2249504812-4021907149-2879380034-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4701888 2017-02-07] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-2249504812-4021907149-2879380034-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27545048 2017-03-14] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-2249504812-4021907149-2879380034-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19645800 2019-01-10] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\...\Drivers32: [vidc.MPG4] => C:\Windows\SysWOW64\MPG4c32.dll [413760 2001-01-07] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [vidc.MP42] => C:\Windows\SysWOW64\MPG4c32.dll [413760 2001-01-07] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [vidc.MP43] => C:\Windows\SysWOW64\MPG4c32.dll [413760 2001-01-07] (Microsoft Corporation) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.103\Installer\chrmstp.exe [2019-04-10] (Google LLC -> Google Inc.)
GroupPolicy\User: Restriction ? <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {01739CB9-1ECE-4AFC-A040-DB943DE2142E} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {070F2855-9CB2-45AE-BD02-2AE93F8607BB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {073B7454-4C03-4454-9F52-3F330786C55A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {0D249939-1D40-41E2-A055-4F97FEF081E8} - System32\Tasks\DolbySelectorTask => C:\Program Files\Dolby Digital Plus\ddp.exe
Task: {14F6DBDE-4601-48DC-B465-53C35C788AF9} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1D0C08BC-7FB2-4ED3-8AEF-2EAD247E633E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
Task: {22373EB5-C150-4783-B946-DE3387D32477} - System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe => C:\Program Files\Microsoft IntelliPoint\IPoint.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {29FC4123-1115-4C7F-AB30-1499254B62DE} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\ReconcileFeatures
Task: {2B5A8025-1FC6-4006-B689-7FD5DAD7EF72} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2C524251-5539-4BA4-89F6-473246208D52} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {37E13D6D-36A6-4910-94EC-13770B05E9E3} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {44826AD8-E19B-4DA0-9D28-543DE656D9AA} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {48203D68-715B-4879-85DE-0789189888E6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {581F0D88-5C6B-42B5-8651-A164B8ED96F8} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5FC87272-ACCF-4D27-937C-376A056E1BA1} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {62821EEB-2AB0-4026-B159-9131D0BCEE9A} - System32\Tasks\AdobeGCInvoker-1.0-CANDY-PANDA-Candy Panda => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
Task: {681EFC7B-0FF3-4755-9027-B50BFB945F22} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {69FF8793-E7BF-4D3A-B14D-F793C8912D51} - System32\Tasks\AdobeAAMUpdater-1.0-CANDY-PANDA-Candy Panda => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {6CB7633E-CC10-4FF6-B392-C91221F3D449} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6E49AFA6-60F5-40CF-A60C-517B1A67E406} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {73C7F071-994F-4F19-A383-F86A51FEFC82} - System32\Tasks\S-1-5-21-2249504812-4021907149-2879380034-1001\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe (Microsoft Windows -> Microsoft Corporation)
Task: {8BC1BAFD-CABD-43F3-BFCD-6EDA6E024C57} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A24A1292-20E5-4D21-B2BA-E12C3C6A6B8D} - System32\Tasks\Start CorsairLink4 => C:\Program Files (x86)\CorsairLink4\CorsairLink4.exe (Corsair Components, Inc. -> Corsair Components, Inc.)
Task: {A36684AA-3849-4378-80C5-C32C4F5F9D5C} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AA69E5F4-37FE-4A2D-BDE0-B42A7876C88A} - System32\Tasks\BlueStacksHelper => E:\Program [Argument = Files\Bluestacks\BlueStacks\Client\Helper\BlueStacksHelper.exe]
Task: {ADA17CEC-7E3C-4518-9A2B-305422FB233D} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B17A5B3C-1FFC-4B13-A17A-6CB2C4726985} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {CD0046EE-2DE1-402B-A2B0-65F026B53817} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-2249504812-4021907149-2879380034-1001 => C:\Users\Candy Panda\AppData\Local\MEGAsync\MEGAupdater.exe (Mega Limited -> Mega Limited)
Task: {D3FB6B83-9FA9-471F-9583-A1753FC98C20} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe (Piriform Software Ltd -> Piriform Software Ltd)
Task: {D5530C80-1D77-4318-9112-B4BBFCC8EBB6} - System32\Tasks\update-S-1-5-21-2249504812-4021907149-2879380034-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe (OOO Lightshot -> TODO: <Company name>)
Task: {D67450D2-288F-444A-9815-401031140A69} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe (OOO Lightshot -> TODO: <Company name>)
Task: {DD3162BA-DE15-496E-873E-8B866BCC194A} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {E1A68F31-1B02-4D23-B44D-BF4875EFCA7F} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\update-S-1-5-21-2249504812-4021907149-2879380034-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.100.1
Tcpip\..\Interfaces\{32b8cd81-8a46-40bb-acec-2539de9d907f}: [DhcpNameServer] 192.168.100.1

Internet Explorer:
==================
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\ssv.dll [2018-05-08] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\jp2ssv.dll [2018-05-08] (Oracle America, Inc. -> Oracle Corporation)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

Edge:
======
Edge Extension: (AdBlock) -> EdgeExtension_BetaFishAdBlock_c1wakc4j0nefm => C:\Program Files\WindowsApps\BetaFish.AdBlock_2.9.0.0_neutral__c1wakc4j0nefm [2019-03-28]

FireFox:
========
FF DefaultProfile: nz5wr6fq.default
FF ProfilePath: C:\Users\Candy Panda\AppData\Roaming\Mozilla\Firefox\Profiles\nz5wr6fq.default [2019-04-20]
FF Homepage: Mozilla\Firefox\Profiles\nz5wr6fq.default -> hxxps://www.google.com.mx/
FF NewTabOverride: Mozilla\Firefox\Profiles\nz5wr6fq.default -> Enabled: newtaboverride@agenedia.com
FF Extension: (Yomichan) - C:\Users\Candy Panda\AppData\Roaming\Mozilla\Firefox\Profiles\nz5wr6fq.default\Extensions\alex@foosoft.net.xpi [2019-01-10]
FF Extension: (Exhentai Passport) - C:\Users\Candy Panda\AppData\Roaming\Mozilla\Firefox\Profiles\nz5wr6fq.default\Extensions\exhentaipassport@harytfw.xpi [2018-07-10]
FF Extension: (Video Downloader professional) - C:\Users\Candy Panda\AppData\Roaming\Mozilla\Firefox\Profiles\nz5wr6fq.default\Extensions\ffext_basicvideoext@startpage24.xpi [2019-04-19]
FF Extension: (AdBlock) - C:\Users\Candy Panda\AppData\Roaming\Mozilla\Firefox\Profiles\nz5wr6fq.default\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2019-03-16]
FF Extension: (Japanese Language Pack) - C:\Users\Candy Panda\AppData\Roaming\Mozilla\Firefox\Profiles\nz5wr6fq.default\Extensions\langpack-ja@firefox.mozilla.org.xpi [2019-03-24]
FF Extension: (New Tab Override) - C:\Users\Candy Panda\AppData\Roaming\Mozilla\Firefox\Profiles\nz5wr6fq.default\Extensions\newtaboverride@agenedia.com.xpi [2018-12-29]
FF Extension: (Hover Zoom+) - C:\Users\Candy Panda\AppData\Roaming\Mozilla\Firefox\Profiles\nz5wr6fq.default\Extensions\{1f50c5bd-711d-441f-8cdf-d2043bcce0f9}.xpi [2018-06-23]
FF Extension: (Image Search Options) - C:\Users\Candy Panda\AppData\Roaming\Mozilla\Firefox\Profiles\nz5wr6fq.default\Extensions\{4a313247-8330-4a81-948e-b79936516f78}.xpi [2019-04-14]
FF Extension: (Love Live Sunshine Mari) - C:\Users\Candy Panda\AppData\Roaming\Mozilla\Firefox\Profiles\nz5wr6fq.default\Extensions\{a1572caf-6a1f-4734-b64d-a8d67f3f71b5}.xpi [2019-03-21]
FF Extension: (Popup blocker for FF: Poper Blocker) - C:\Users\Candy Panda\AppData\Roaming\Mozilla\Firefox\Profiles\nz5wr6fq.default\Extensions\{bee8b1f2-823a-424c-959c-f8f76c8b2306}.xpi [2019-04-19]
FF Extension: (Subadub) - C:\Users\Candy Panda\AppData\Roaming\Mozilla\Firefox\Profiles\nz5wr6fq.default\Extensions\{e44f8534-9b1e-4d1e-b584-6fa1513c3c42}.xpi [2019-04-18]
FF Extension: (SearchPreview) - C:\Users\Candy Panda\AppData\Roaming\Mozilla\Firefox\Profiles\nz5wr6fq.default\Extensions\{EF522540-89F5-46b9-B6FE-1829E2B572C6}.xpi [2018-11-01]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_142.dll [2019-02-19] (Adobe Systems Incorporated -> )
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> E:\Program Files\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-10-12] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_142.dll [2019-02-19] (Adobe Systems Incorporated -> )
FF Plugin-x32: @java.com/DTPlugin,version=11.171.2 -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\dtplugin\npDeployJava1.dll [2018-05-08] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.171.2 -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\plugin2\npjp2.dll [2018-05-08] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2019-03-17] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2019-03-17] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-27] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-27] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-03-25] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-10-12] (Adobe Systems Incorporated -> Adobe Systems)

Chrome:
=======
CHR HomePage: Default -> hxxps://www.google.com.mx/
CHR StartupUrls: Default -> "hxxps://www.google.com.mx/"
CHR NewTab: Default -> "active": true,
            "entry": "chrome-extension://alinppachfoplkpifadofmchbggehmoi/dashboard.html"
         ,
            "active": false,
            "entry": "chrome-extension://hckpnalffccocpippngobngbcjmdoppg/new_tab.html"
          
CHR Profile: C:\Users\Candy Panda\AppData\Local\Google\Chrome\User Data\Default [2019-04-20]
CHR Extension: (Presentaciones) - C:\Users\Candy Panda\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12]
CHR Extension: (TabTab - New tab page) - C:\Users\Candy Panda\AppData\Local\Google\Chrome\User Data\Default\Extensions\alinppachfoplkpifadofmchbggehmoi [2017-09-19]
CHR Extension: (Documentos) - C:\Users\Candy Panda\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (Google Drive) - C:\Users\Candy Panda\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-23]
CHR Extension: (YouTube) - C:\Users\Candy Panda\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-23]
CHR Extension: (Sad Panda) - C:\Users\Candy Panda\AppData\Local\Google\Chrome\User Data\Default\Extensions\bohapeiooecafommnlaiccilacgmkaoc [2018-05-18]
CHR Extension: (グランブルーファンタジー[ChromeApps版]) - C:\Users\Candy Panda\AppData\Local\Google\Chrome\User Data\Default\Extensions\eablgejicbklomgaiclcolfilbkckngf [2018-08-17]
CHR Extension: (my goddesses, my queens) - C:\Users\Candy Panda\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfadeafhddjkemfheecelddfefejkpd [2017-09-19]
CHR Extension: (Hojas de cálculo) - C:\Users\Candy Panda\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Candy Panda\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-09-03]
CHR Extension: (AdBlock) - C:\Users\Candy Panda\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-04-13]
CHR Extension: (SearchPreview) - C:\Users\Candy Panda\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcjdanpjacpeeppdjkppebobilhaglfo [2018-12-29]
CHR Extension: (Better Tab) - C:\Users\Candy Panda\AppData\Local\Google\Chrome\User Data\Default\Extensions\hckpnalffccocpippngobngbcjmdoppg [2019-03-06]
CHR Extension: (AutoPagerize) - C:\Users\Candy Panda\AppData\Local\Google\Chrome\User Data\Default\Extensions\igiofjhpmpihnifddepnpngfjhkfenbp [2017-04-23]
CHR Extension: (Floating for YouTube™) - C:\Users\Candy Panda\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjphmlaoffndcnecccgemfdaaoighkel [2017-04-23]
CHR Extension: (Turn Off the Lights) - C:\Users\Candy Panda\AppData\Local\Google\Chrome\User Data\Default\Extensions\labjanboighjienkhiabgpefblkbmemd [2017-04-23]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Candy Panda\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-05-08]
CHR Extension: (Unseen) - C:\Users\Candy Panda\AppData\Local\Google\Chrome\User Data\Default\Extensions\oclokcfejikeggpnhgakanfbdnlafaon [2017-04-23]
CHR Extension: (Hover Zoom+) - C:\Users\Candy Panda\AppData\Local\Google\Chrome\User Data\Default\Extensions\pccckmaobkjjboncdfnnofkonhgpceea [2019-03-28]
CHR Extension: (Gmail) - C:\Users\Candy Panda\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-04-23]
CHR Extension: (Chrome Media Router) - C:\Users\Candy Panda\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-03-28]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1309176 2017-03-10] (Autodesk, Inc -> Autodesk Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640 2016-10-12] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2917864 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2709480 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-04-03] (Apple Inc. -> Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6570352 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [360440 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [5708808 2018-04-04] (BattlEye Innovations e.K. -> )
S3 CLink4Service; C:\Program Files (x86)\CorsairLink4\CorsairLink4.Service.exe [32464 2017-05-04] (Corsair Components, Inc. -> Corsair Components, Inc.)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1471168 2017-02-07] (Disc Soft Ltd -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [781440 2018-12-08] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4470736 2017-05-09] (Malwarebytes Corporation -> Malwarebytes)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782320 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782320 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5074120 2019-03-14] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\NisSrv.exe [4098064 2019-03-04] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MsMpEng.exe [113992 2019-03-04] (Microsoft Corporation -> Microsoft Corporation)
R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [1764296 2017-12-13] (Wacom Technology Corporation -> Wacom Technology, Corp.)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37320 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [205608 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [254408 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [196304 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblog.sys [320904 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [58168 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15488 2019-01-07] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42496 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [169104 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [112520 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [88152 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1034640 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [476264 2019-04-12] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [220632 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [380160 2019-03-19] (AVAST Software s.r.o. -> AVAST Software)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-04-23] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-04-23] (Disc Soft Ltd -> Disc Soft Ltd)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77376 2017-05-31] (Malwarebytes Corporation -> )
R2 MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [188312 2019-04-19] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\drivers\farflt.sys [113592 2019-04-20] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [44960 2019-04-20] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [252832 2019-04-20] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\drivers\mwac.sys [93600 2019-04-20] (Malwarebytes Corporation -> Malwarebytes)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_c5dc31c3a136544a\nvlddmkm.sys [20746632 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-02-26] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [70024 2018-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [66792 2018-10-03] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [895256 2017-04-23] (Realtek Semiconductor Corp -> Realtek )
S3 ssudserd; C:\WINDOWS\system32\DRIVERS\ssudserd.sys [206080 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 t_mouse.sys; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [6144 2013-04-09] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 vjoy; C:\WINDOWS\System32\drivers\vjoy.sys [57976 2017-04-06] (Shaul Eizikovich -> Shaul Eizikovich)
R3 WacHidRouterPro; C:\WINDOWS\System32\drivers\wachidrouter.sys [115192 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Wacom Technology, Corp.)
R3 wacomrouterfilter; C:\WINDOWS\System32\drivers\wacomrouterfilter.sys [17912 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Wacom Technology, Corp.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46472 2019-03-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [333792 2019-03-04] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62432 2019-03-04] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-04-20 22:28 - 2019-04-20 22:29 - 000000000 ____D C:\FRST
2019-04-20 22:27 - 2019-04-20 22:29 - 000000000 ____D C:\Users\Candy Panda\Desktop\Nueva carpeta
2019-04-17 06:39 - 2019-02-13 00:47 - 001909560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2019-04-15 13:13 - 2019-04-15 13:13 - 000000000 ____D C:\Users\Candy Panda\AppData\LocalLow\Silver Dollar Games
2019-04-15 13:12 - 2019-04-19 16:57 - 000000854 _____ C:\Users\Candy Panda\Desktop\One Finger Death Punch 2.lnk
2019-04-12 11:52 - 2019-04-12 11:52 - 000000077 _____ C:\WINDOWS\system32\Drivers\aswSP.sys.sum
2019-04-10 07:58 - 2019-04-02 07:38 - 000094008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2019-04-10 07:58 - 2019-04-02 07:33 - 001634912 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-04-10 07:58 - 2019-04-02 07:33 - 000719984 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-04-10 07:58 - 2019-04-02 07:19 - 012730880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-04-10 07:58 - 2019-04-02 07:19 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-04-10 07:58 - 2019-04-02 07:18 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-04-10 07:58 - 2019-04-02 07:16 - 001030144 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2019-04-10 07:58 - 2019-04-02 07:15 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleprn.dll
2019-04-10 07:58 - 2019-04-02 07:13 - 001605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2019-04-10 07:58 - 2019-04-02 07:12 - 003643904 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-04-10 07:58 - 2019-04-02 07:12 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-04-10 07:58 - 2019-04-02 07:11 - 004053504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-04-10 07:58 - 2019-04-02 07:11 - 001857536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2019-04-10 07:58 - 2019-04-02 07:11 - 001662976 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-04-10 07:58 - 2019-04-02 07:10 - 000130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
2019-04-10 07:58 - 2019-04-02 07:10 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxssrv.dll
2019-04-10 07:58 - 2019-04-02 04:25 - 001454648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-04-10 07:58 - 2019-04-02 04:25 - 000607960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-04-10 07:58 - 2019-04-02 04:11 - 011919360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-04-10 07:58 - 2019-04-02 04:11 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-04-10 07:58 - 2019-04-02 04:10 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleprn.dll
2019-04-10 07:58 - 2019-04-02 04:08 - 002889216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-04-10 07:58 - 2019-04-02 04:07 - 004054528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-04-10 07:58 - 2019-04-02 04:07 - 001586688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2019-04-10 07:58 - 2019-04-02 04:06 - 001470976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-04-10 07:58 - 2019-04-02 03:36 - 001035256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-04-10 07:58 - 2019-04-02 03:24 - 000135184 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-04-10 07:58 - 2019-04-02 03:23 - 001023800 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-04-10 07:58 - 2019-04-02 03:22 - 001219896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-04-10 07:58 - 2019-04-02 03:22 - 000567592 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-04-10 07:58 - 2019-04-02 03:22 - 000076088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-04-10 07:58 - 2019-04-02 03:21 - 007520136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-04-10 07:58 - 2019-04-02 03:21 - 002822160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-04-10 07:58 - 2019-04-02 03:21 - 002467536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-04-10 07:58 - 2019-04-02 03:21 - 000735680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-04-10 07:58 - 2019-04-02 03:20 - 002719032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-04-10 07:58 - 2019-04-02 03:20 - 000412984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-04-10 07:58 - 2019-04-02 03:19 - 009083704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-04-10 07:58 - 2019-04-02 03:19 - 000793400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-04-10 07:58 - 2019-04-02 03:19 - 000786080 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-04-10 07:58 - 2019-04-02 03:19 - 000713272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2019-04-10 07:58 - 2019-04-02 03:01 - 025857536 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-04-10 07:58 - 2019-04-02 02:53 - 022717440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-04-10 07:58 - 2019-04-02 02:53 - 004384256 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-04-10 07:58 - 2019-04-02 02:51 - 003399680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-04-10 07:58 - 2019-04-02 02:50 - 007591936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-04-10 07:58 - 2019-04-02 02:50 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-04-10 07:58 - 2019-04-02 02:49 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2019-04-10 07:58 - 2019-04-02 02:49 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2019-04-10 07:58 - 2019-04-02 02:48 - 001559552 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-04-10 07:58 - 2019-04-02 02:48 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2019-04-10 07:58 - 2019-04-02 02:48 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-04-10 07:58 - 2019-04-02 02:47 - 001214464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2019-04-10 07:58 - 2019-04-02 02:47 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-04-10 07:58 - 2019-04-02 02:46 - 002174976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-04-10 07:58 - 2019-04-02 02:45 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-04-10 07:58 - 2019-04-02 02:44 - 002208768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-04-10 07:58 - 2019-04-02 02:44 - 001724416 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-04-10 07:58 - 2019-04-02 02:44 - 001421312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2019-04-10 07:58 - 2019-04-02 02:43 - 000542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-04-10 07:58 - 2019-04-02 01:22 - 000001312 _____ C:\WINDOWS\system32\tcbres.wim
2019-04-10 07:58 - 2019-04-02 00:05 - 001989544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-04-10 07:58 - 2019-04-02 00:04 - 006572120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-04-10 07:58 - 2019-04-02 00:04 - 000604008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-04-10 07:58 - 2019-04-02 00:04 - 000581832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2019-04-10 07:58 - 2019-04-02 00:04 - 000560600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-04-10 07:58 - 2019-04-01 23:56 - 022018048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-04-10 07:58 - 2019-04-01 23:50 - 019404800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-04-10 07:58 - 2019-04-01 23:43 - 005788160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-04-10 07:58 - 2019-04-01 23:43 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-04-10 07:58 - 2019-04-01 23:43 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-04-10 07:58 - 2019-04-01 23:42 - 001295360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2019-04-10 07:58 - 2019-04-01 23:41 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-04-10 07:58 - 2019-04-01 23:41 - 001235968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2019-04-10 07:58 - 2019-04-01 23:41 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-04-10 07:58 - 2019-04-01 23:40 - 001073664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2019-04-10 07:58 - 2019-04-01 23:40 - 000534016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-04-10 07:58 - 2019-03-16 07:54 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-04-10 07:58 - 2019-03-16 04:03 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-04-10 07:58 - 2019-03-14 09:55 - 001786680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2019-04-10 07:58 - 2019-03-14 09:53 - 001626928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2019-04-10 07:58 - 2019-03-14 09:53 - 001038136 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll
2019-04-10 07:58 - 2019-03-14 09:53 - 000652088 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2019-04-10 07:58 - 2019-03-14 09:53 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll
2019-04-10 07:58 - 2019-03-14 09:52 - 003933296 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-04-10 07:58 - 2019-03-14 09:52 - 001424696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2019-04-10 07:58 - 2019-03-14 09:52 - 000954160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVManifest.dll
2019-04-10 07:58 - 2019-03-14 09:52 - 000830264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2019-04-10 07:58 - 2019-03-14 09:52 - 000827704 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClient.exe
2019-04-10 07:58 - 2019-03-14 09:52 - 000825144 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2019-04-10 07:58 - 2019-03-14 09:52 - 000749880 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2019-04-10 07:58 - 2019-03-14 09:52 - 000670008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2019-04-10 07:58 - 2019-03-14 09:52 - 000495416 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
2019-04-10 07:58 - 2019-03-14 09:52 - 000164664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\AppvVemgr.sys
2019-04-10 07:58 - 2019-03-14 09:51 - 000157192 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2019-04-10 07:58 - 2019-03-14 09:35 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfoext.dll
2019-04-10 07:58 - 2019-03-14 09:34 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2019-04-10 07:58 - 2019-03-14 09:33 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2019-04-10 07:58 - 2019-03-14 09:33 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storqosflt.sys
2019-04-10 07:58 - 2019-03-14 09:33 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\RpcPing.exe
2019-04-10 07:58 - 2019-03-14 09:31 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincredui.dll
2019-04-10 07:58 - 2019-03-14 09:30 - 000675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\objsel.dll
2019-04-10 07:58 - 2019-03-14 09:30 - 000440832 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2019-04-10 07:58 - 2019-03-14 09:29 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2019-04-10 07:58 - 2019-03-14 09:29 - 000727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscsvc.dll
2019-04-10 07:58 - 2019-03-14 09:28 - 000560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsound.dll
2019-04-10 07:58 - 2019-03-14 09:08 - 003611264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-04-10 07:58 - 2019-03-14 08:56 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincredui.dll
2019-04-10 07:58 - 2019-03-14 08:55 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RpcPing.exe
2019-04-10 07:58 - 2019-03-14 08:53 - 000625664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2019-04-10 07:58 - 2019-03-14 08:53 - 000559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\objsel.dll
2019-04-10 07:58 - 2019-03-14 08:53 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2019-04-10 07:58 - 2019-03-14 08:52 - 000502784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsound.dll
2019-04-10 07:58 - 2019-03-14 03:57 - 000611640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-04-10 07:58 - 2019-03-14 03:56 - 000375096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-04-10 07:58 - 2019-03-14 03:38 - 000380728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-04-10 07:58 - 2019-03-14 03:38 - 000090360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpr.dll
2019-04-10 07:58 - 2019-03-14 03:37 - 006043496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-04-10 07:58 - 2019-03-14 03:37 - 002256248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-04-10 07:58 - 2019-03-14 03:37 - 001171568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2019-04-10 07:58 - 2019-03-14 03:28 - 000152072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2019-04-10 07:58 - 2019-03-14 03:27 - 000436024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-04-10 07:58 - 2019-03-14 03:27 - 000097600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpr.dll
2019-04-10 07:58 - 2019-03-14 03:26 - 007436016 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-04-10 07:58 - 2019-03-14 03:26 - 002768448 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-04-10 07:58 - 2019-03-14 03:26 - 002421048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-04-10 07:58 - 2019-03-14 03:26 - 001457576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-04-10 07:58 - 2019-03-14 03:26 - 001258688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-04-10 07:58 - 2019-03-14 03:26 - 001140984 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-04-10 07:58 - 2019-03-14 03:26 - 001014344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2019-04-10 07:58 - 2019-03-14 03:26 - 000983424 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-04-10 07:58 - 2019-03-14 03:26 - 000481048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2019-04-10 07:58 - 2019-03-14 03:26 - 000175416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-04-10 07:58 - 2019-03-14 03:22 - 002700288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-04-10 07:58 - 2019-03-14 03:20 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-04-10 07:58 - 2019-03-14 03:19 - 003711488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-04-10 07:58 - 2019-03-14 03:19 - 002969600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-04-10 07:58 - 2019-03-14 03:18 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2019-04-10 07:58 - 2019-03-14 03:18 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2019-04-10 07:58 - 2019-03-14 03:18 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credui.dll
2019-04-10 07:58 - 2019-03-14 03:18 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-04-10 07:58 - 2019-03-14 03:17 - 002258944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-04-10 07:58 - 2019-03-14 03:17 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2019-04-10 07:58 - 2019-03-14 03:17 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-04-10 07:58 - 2019-03-14 03:17 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2019-04-10 07:58 - 2019-03-14 03:17 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcmapi.dll
2019-04-10 07:58 - 2019-03-14 03:17 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntlanman.dll
2019-04-10 07:58 - 2019-03-14 03:16 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-04-10 07:58 - 2019-03-14 03:16 - 000333824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-04-10 07:58 - 2019-03-14 03:15 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2019-04-10 07:58 - 2019-03-14 03:15 - 000318464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2019-04-10 07:58 - 2019-03-14 03:15 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShellCommonCommonProxyStub.dll
2019-04-10 07:58 - 2019-03-14 03:15 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\negoexts.dll
2019-04-10 07:58 - 2019-03-14 03:14 - 001070080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2019-04-10 07:58 - 2019-03-14 03:14 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-04-10 07:58 - 2019-03-14 03:14 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-04-10 07:58 - 2019-03-14 03:14 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-04-10 07:58 - 2019-03-14 03:14 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-04-10 07:58 - 2019-03-14 03:14 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-04-10 07:58 - 2019-03-14 03:14 - 000138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smartscreenps.dll
2019-04-10 07:58 - 2019-03-14 03:13 - 001468416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2019-04-10 07:58 - 2019-03-14 03:13 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-04-10 07:58 - 2019-03-14 03:13 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-04-10 07:58 - 2019-03-14 03:01 - 008188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-04-10 07:58 - 2019-03-14 02:58 - 004708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-04-10 07:58 - 2019-03-14 02:58 - 002509824 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2019-04-10 07:58 - 2019-03-14 02:58 - 000150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll
2019-04-10 07:58 - 2019-03-14 02:57 - 004866560 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-04-10 07:58 - 2019-03-14 02:57 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2019-04-10 07:58 - 2019-03-14 02:56 - 003392000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-04-10 07:58 - 2019-03-14 02:56 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-04-10 07:58 - 2019-03-14 02:56 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2019-04-10 07:58 - 2019-03-14 02:56 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-04-10 07:58 - 2019-03-14 02:56 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-04-10 07:58 - 2019-03-14 02:55 - 003601920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2019-04-10 07:58 - 2019-03-14 02:55 - 002739200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-04-10 07:58 - 2019-03-14 02:55 - 000528896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2019-04-10 07:58 - 2019-03-14 02:55 - 000458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2019-04-10 07:58 - 2019-03-14 02:55 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2019-04-10 07:58 - 2019-03-14 02:55 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2019-04-10 07:58 - 2019-03-14 02:55 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmapi.dll
2019-04-10 07:58 - 2019-03-14 02:55 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncCsp.dll
2019-04-10 07:58 - 2019-03-14 02:55 - 000069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntlanman.dll
2019-04-10 07:58 - 2019-03-14 02:55 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\EASPolicyManagerBrokerHost.exe
2019-04-10 07:58 - 2019-03-14 02:55 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\credui.dll
2019-04-10 07:58 - 2019-03-14 02:54 - 002368000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-04-10 07:58 - 2019-03-14 02:54 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-04-10 07:58 - 2019-03-14 02:54 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-04-10 07:58 - 2019-03-14 02:54 - 000354304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2019-04-10 07:58 - 2019-03-14 02:54 - 000279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2019-04-10 07:58 - 2019-03-14 02:54 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2019-04-10 07:58 - 2019-03-14 02:54 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2019-04-10 07:58 - 2019-03-14 02:54 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-04-10 07:58 - 2019-03-14 02:54 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\negoexts.dll
2019-04-10 07:58 - 2019-03-14 02:54 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2019-04-10 07:58 - 2019-03-14 02:53 - 000787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2019-04-10 07:58 - 2019-03-14 02:53 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-04-10 07:58 - 2019-03-14 02:53 - 000473600 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2019-04-10 07:58 - 2019-03-14 02:53 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2019-04-10 07:58 - 2019-03-14 02:52 - 002909696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-04-10 07:58 - 2019-03-14 02:52 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuietHours.dll
2019-04-10 07:58 - 2019-03-14 02:52 - 000404480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll
2019-04-10 07:58 - 2019-03-14 02:52 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
2019-04-10 07:58 - 2019-03-14 02:51 - 001216000 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-04-10 07:58 - 2019-03-14 02:51 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-04-10 07:58 - 2019-03-14 02:51 - 000226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\TetheringMgr.dll
2019-04-10 07:58 - 2019-03-14 02:50 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2019-04-10 07:58 - 2019-03-14 02:50 - 001410560 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2019-04-10 07:58 - 2019-03-14 02:50 - 000947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-04-10 07:58 - 2019-03-14 02:50 - 000847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2019-04-10 07:58 - 2019-03-14 02:50 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-04-10 07:58 - 2019-03-14 02:50 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-04-10 07:58 - 2019-03-14 02:50 - 000507392 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-04-10 07:58 - 2019-03-14 02:50 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-04-10 07:58 - 2019-03-14 02:50 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-04-10 07:58 - 2019-03-13 20:57 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-04-10 07:58 - 2019-03-13 20:57 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2019-04-10 07:58 - 2019-03-13 20:57 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2019-04-10 07:58 - 2019-03-13 20:57 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-04-10 07:58 - 2019-03-13 20:57 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2019-04-09 14:28 - 2019-04-09 14:45 - 000000848 _____ C:\Users\Candy Panda\Desktop\Phoenix Wright Ace Attorney Trilogy.lnk
2019-04-09 14:28 - 2019-04-09 14:28 - 000000000 ____D C:\Users\Candy Panda\AppData\LocalLow\CAPCOM
2019-04-05 20:38 - 2019-04-06 22:46 - 000001284 _____ C:\Users\Candy Panda\Desktop\Nekopara.lnk
2019-04-05 13:23 - 2019-04-05 13:24 - 000000000 ____D C:\Users\Candy Panda\AppData\Roaming\Baba_Is_You
2019-04-04 22:57 - 2019-04-19 19:42 - 000000000 ____D C:\Users\Candy Panda\AppData\Roaming\vlc
2019-04-04 22:57 - 2019-04-04 22:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2019-04-03 17:53 - 2019-04-03 17:53 - 000003642 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-CANDY-PANDA-Candy Panda
2019-04-03 16:46 - 2019-04-03 16:46 - 000000963 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro CC 2015.lnk
2019-04-02 23:54 - 2019-04-03 00:03 - 000000000 ____D C:\Users\Candy Panda\AppData\Roaming\Subtitle Edit
2019-04-02 23:54 - 2019-04-02 23:54 - 000001917 _____ C:\Users\Candy Panda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Subtitle Edit.lnk
2019-04-02 23:54 - 2019-04-02 23:54 - 000000000 ____D C:\Program Files\Subtitle Edit
2019-03-25 18:38 - 2019-03-17 01:42 - 000133616 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2019-03-25 18:31 - 2019-03-18 13:32 - 000047592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2019-03-25 18:30 - 2019-03-18 14:48 - 010320928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2019-03-25 18:30 - 2019-03-18 14:48 - 008786128 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2019-03-25 18:30 - 2019-03-18 14:48 - 001168936 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2019-03-25 18:30 - 2019-03-18 14:48 - 000914912 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2019-03-25 18:30 - 2019-03-18 14:48 - 000822576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2019-03-25 18:30 - 2019-03-18 14:48 - 000794632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2019-03-25 18:30 - 2019-03-18 14:48 - 000638176 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2019-03-25 18:30 - 2019-03-18 14:47 - 020107592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2019-03-25 18:30 - 2019-03-18 14:47 - 017433176 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2019-03-25 18:30 - 2019-03-18 14:47 - 001471608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
2019-03-25 18:30 - 2019-03-18 14:47 - 001462024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2019-03-25 18:30 - 2019-03-18 14:47 - 001151984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
2019-03-25 18:30 - 2019-03-18 14:47 - 001145720 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2019-03-25 18:30 - 2019-03-18 11:51 - 001007008 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2019-03-25 18:30 - 2019-03-18 11:51 - 001007008 _____ C:\WINDOWS\system32\vulkan-1.dll
2019-03-25 18:30 - 2019-03-18 11:51 - 000870304 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2019-03-25 18:30 - 2019-03-18 11:51 - 000870304 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2019-03-25 18:30 - 2019-03-18 11:51 - 000551896 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2019-03-25 18:30 - 2019-03-18 11:51 - 000456872 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2019-03-25 18:30 - 2019-03-18 11:51 - 000286624 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2019-03-25 18:30 - 2019-03-18 11:51 - 000286624 _____ C:\WINDOWS\system32\vulkaninfo.exe
2019-03-25 18:30 - 2019-03-18 11:51 - 000260512 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2019-03-25 18:30 - 2019-03-18 11:51 - 000260512 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2019-03-25 18:30 - 2019-03-18 11:50 - 005274560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2019-03-25 18:30 - 2019-03-18 11:50 - 002033032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2019-03-25 18:30 - 2019-03-18 11:50 - 001734536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6441967.dll
2019-03-25 18:30 - 2019-03-18 11:50 - 001535744 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2019-03-25 18:30 - 2019-03-18 11:50 - 001467648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6441967.dll
2019-03-25 18:30 - 2019-03-18 11:50 - 001464712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2019-03-25 18:30 - 2019-03-18 11:50 - 001130376 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2019-03-25 18:30 - 2019-03-18 11:50 - 000752336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2019-03-25 18:30 - 2019-03-18 11:50 - 000668456 _____ C:\WINDOWS\system32\nvofapi64.dll
2019-03-25 18:30 - 2019-03-18 11:50 - 000631040 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2019-03-25 18:30 - 2019-03-18 11:50 - 000611720 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2019-03-25 18:30 - 2019-03-18 11:50 - 000534728 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2019-03-25 18:30 - 2019-03-18 11:50 - 000522120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2019-03-25 18:30 - 2019-03-18 11:49 - 040421280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2019-03-25 18:30 - 2019-03-18 11:49 - 035268720 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2019-03-25 18:30 - 2019-03-18 11:49 - 004625616 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2019-03-21 15:35 - 2019-03-21 15:36 - 000000000 ____D C:\Users\Candy Panda\AppData\Roaming\Sekiro
2019-03-21 14:56 - 2019-03-21 14:56 - 000000798 _____ C:\Users\Candy Panda\Desktop\Sekiro Shadows Die Twice.lnk

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-04-20 22:27 - 2017-12-26 01:28 - 000000000 ____D C:\Users\Candy Panda\AppData\Roaming\Anki2
2019-04-20 21:55 - 2017-04-23 17:49 - 000000000 ____D C:\Program Files (x86)\Steam
2019-04-20 21:39 - 2018-04-11 18:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-04-20 20:45 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-04-20 18:45 - 2018-08-16 13:52 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-04-20 17:45 - 2017-06-08 11:48 - 000093600 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2019-04-20 16:30 - 2017-09-26 15:16 - 000000000 ____D C:\Users\Candy Panda\AppData\Roaming\WTablet
2019-04-20 12:25 - 2017-04-23 16:00 - 000000000 ____D C:\ProgramData\NVIDIA
2019-04-20 06:52 - 2018-02-01 15:44 - 000000000 ____D C:\Users\Candy Panda\AppData\LocalLow\Mozilla
2019-04-20 06:50 - 2018-08-16 14:24 - 000004264 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2019-04-20 02:23 - 2017-06-08 11:48 - 000252832 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2019-04-20 02:23 - 2017-06-08 11:48 - 000113592 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2019-04-20 02:23 - 2017-06-08 11:48 - 000044960 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2019-04-20 02:22 - 2018-08-16 14:24 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-04-20 02:21 - 2018-04-11 16:04 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2019-04-20 02:19 - 2017-12-02 19:13 - 000000000 ____D C:\Users\Candy Panda\AppData\Roaming\uTorrent
2019-04-20 02:19 - 2017-04-23 23:02 - 000000000 ____D C:\Users\Candy Panda\AppData\Roaming\DAEMON Tools Lite
2019-04-20 02:17 - 2018-04-11 18:36 - 000000000 ____D C:\WINDOWS\INF
2019-04-20 02:17 - 2017-04-25 12:34 - 000000000 ____D C:\Users\Candy Panda\AppData\Local\CrashDumps
2019-04-20 02:03 - 2018-04-11 16:04 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2019-04-20 01:43 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\Registration
2019-04-20 01:42 - 2018-09-15 12:43 - 000000000 ___HD C:\$WINDOWS.~BT
2019-04-20 01:41 - 2018-08-16 14:22 - 000009528 _____ C:\WINDOWS\diagwrn.xml
2019-04-20 01:41 - 2018-08-16 14:22 - 000009528 _____ C:\WINDOWS\diagerr.xml
2019-04-20 00:10 - 2018-08-09 07:34 - 000000000 ___DC C:\WINDOWS\Panther
2019-04-19 23:12 - 2018-04-11 18:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-04-19 22:32 - 2017-04-23 23:02 - 000000000 ____D C:\Users\Candy Panda\AppData\Local\ESET
2019-04-19 21:22 - 2017-06-08 11:48 - 000188312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
2019-04-19 19:56 - 2018-03-03 14:44 - 000000000 ____D C:\lolete
2019-04-19 19:55 - 2017-04-26 17:06 - 000000000 ____D C:\Users\Candy Panda\AppData\Roaming\discord
2019-04-19 16:16 - 2017-10-26 08:30 - 000000000 ____D C:\Program Files\TAP-Windows
2019-04-19 11:02 - 2018-08-16 14:24 - 000003384 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2249504812-4021907149-2879380034-1001
2019-04-19 11:02 - 2018-08-16 14:02 - 000002385 _____ C:\Users\Candy Panda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-04-19 11:02 - 2017-04-23 15:31 - 000000000 ___RD C:\Users\Candy Panda\OneDrive
2019-04-19 07:21 - 2018-04-11 18:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-04-18 17:03 - 2017-04-23 21:03 - 000000000 ____D C:\ProgramData\boost_interprocess
2019-04-17 22:10 - 2018-12-21 16:36 - 000000000 ____D C:\Users\Candy Panda\AppData\Local\LarianLauncher
2019-04-17 00:03 - 2018-08-16 14:32 - 000000000 ____D C:\Users\Candy Panda\AppData\Local\D3DSCache
2019-04-15 13:17 - 2018-01-28 23:40 - 000000000 ____D C:\Users\Candy Panda\AppData\Local\Packages
2019-04-15 13:15 - 2018-09-15 12:41 - 000000000 ____D C:\Users\Candy Panda\AppData\LocalLow\Unity
2019-04-15 06:46 - 2018-02-10 21:22 - 000000000 ____D C:\Users\Candy Panda\AppData\Local\PlaceholderTileLogoFolder
2019-04-14 16:41 - 2018-04-12 11:23 - 000000000 ____D C:\WINDOWS\OCR
2019-04-12 11:52 - 2017-05-01 00:13 - 000476264 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2019-04-12 00:46 - 2018-08-16 14:02 - 000000000 ____D C:\Users\Candy Panda
2019-04-11 13:31 - 2017-05-07 03:30 - 000000000 ____D C:\Users\Candy Panda\Desktop\JPAutodidact
2019-04-11 11:53 - 2018-02-01 15:44 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-04-11 11:53 - 2018-02-01 15:43 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-04-11 09:37 - 2017-04-23 15:29 - 000000000 ____D C:\Users\Candy Panda\AppData\Roaming\Adobe
2019-04-10 23:35 - 2018-02-01 15:44 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-04-10 23:03 - 2017-04-23 16:12 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-04-10 20:16 - 2018-08-16 13:52 - 005157224 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-04-10 20:13 - 2018-04-12 11:24 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2019-04-10 20:13 - 2018-04-11 18:38 - 000000000 ___RD C:\Program Files\Windows Defender
2019-04-10 20:13 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\TextInput
2019-04-10 20:13 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2019-04-10 20:13 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\system32\es-MX
2019-04-10 20:13 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-04-10 20:13 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-04-10 08:53 - 2017-04-23 16:25 - 000000000 ____D C:\Users\Candy Panda\Desktop\LAURA
2019-04-10 07:57 - 2017-05-15 00:27 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-04-10 07:50 - 2017-05-15 00:27 - 131129288 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-04-10 06:56 - 2017-05-06 04:13 - 000000000 ___RD C:\Users\Candy Panda\Documents\Scanned Documents
2019-04-09 23:36 - 2017-05-07 17:13 - 000000000 ____D C:\Users\Candy Panda\AppData\Roaming\Mp3tag
2019-04-09 14:03 - 2017-05-12 20:03 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-04-08 02:30 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-04-08 02:27 - 2019-02-12 17:22 - 000004210 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-04-08 02:22 - 2018-08-16 14:16 - 002372074 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-04-08 02:22 - 2018-08-16 07:10 - 000487960 _____ C:\WINDOWS\system32\perfh011.dat
2019-04-08 02:22 - 2018-08-16 07:10 - 000132830 _____ C:\WINDOWS\system32\perfc011.dat
2019-04-08 02:22 - 2018-04-12 11:19 - 000771880 _____ C:\WINDOWS\system32\perfh00A.dat
2019-04-08 02:22 - 2018-04-12 11:19 - 000151890 _____ C:\WINDOWS\system32\perfc00A.dat
2019-04-08 01:47 - 2017-05-08 03:06 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2019-04-08 01:09 - 2017-06-22 11:32 - 000000000 ____D C:\Users\Candy Panda\Desktop\SVE
2019-04-05 07:30 - 2018-01-12 09:27 - 000000000 ____D C:\Program Files\rempl
2019-04-04 22:55 - 2017-04-28 18:59 - 000000000 ____D C:\Program Files (x86)\VideoLAN
2019-04-03 16:46 - 2017-04-24 14:58 - 000000000 ____D C:\Program Files\Common Files\Adobe
2019-04-03 16:46 - 2017-04-24 14:58 - 000000000 ____D C:\Program Files\Adobe
2019-04-03 15:03 - 2017-11-15 00:07 - 000000000 ____D C:\Users\Candy Panda\AppData\Roaming\audacity
2019-04-03 02:15 - 2017-04-23 16:00 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2019-04-03 00:36 - 2018-08-27 17:42 - 000000000 ____D C:\Users\Candy Panda\Documents\MEGAsync Downloads
2019-04-02 00:06 - 2017-04-23 09:16 - 000407742 __RSH C:\bootmgr
2019-04-01 12:51 - 2018-11-14 18:36 - 000835480 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-04-01 12:51 - 2018-11-14 18:36 - 000179608 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-03-27 17:57 - 2018-08-16 14:24 - 000003554 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-03-27 17:57 - 2018-08-16 14:24 - 000003430 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-03-27 16:08 - 2017-04-23 16:01 - 000000000 ____D C:\Users\Candy Panda\AppData\Local\NVIDIA
2019-03-25 18:39 - 2018-09-19 16:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2019-03-25 18:39 - 2017-04-23 16:00 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2019-03-25 18:36 - 2017-04-23 15:58 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2019-03-25 18:18 - 2018-09-19 16:41 - 000003976 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-25 18:18 - 2018-09-19 16:41 - 000003940 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-25 18:18 - 2018-09-19 16:38 - 000004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-25 18:18 - 2018-09-19 16:38 - 000004106 _____ C:\WINDOWS\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-25 18:17 - 2018-09-19 16:38 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-25 18:17 - 2018-09-19 16:38 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-25 18:17 - 2018-09-19 16:38 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-25 18:17 - 2018-09-19 16:38 - 000003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-25 18:17 - 2018-09-19 16:38 - 000003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-25 18:17 - 2018-09-19 16:38 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-25 18:17 - 2018-09-19 16:38 - 000003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}

==================== Files in the root of some directories =======

2018-08-17 12:04 - 2018-08-17 12:05 - 000000065 _____ () C:\Users\Candy Panda\AppData\Roaming\~SiMPLEX.ini
2018-03-04 19:02 - 2019-01-13 00:21 - 000007680 _____ () C:\Users\Candy Panda\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2019-03-17 07:54 - 2019-03-17 07:54 - 000000000 _____ () C:\Users\Candy Panda\AppData\Local\oobelibMkey.log
2018-09-27 12:09 - 2018-09-27 12:09 - 000002094 _____ () C:\Users\Candy Panda\AppData\Local\recently-used.xbel
2017-05-02 19:15 - 2017-05-02 19:15 - 000000017 _____ () C:\Users\Candy Panda\AppData\Local\resmon.resmoncfg
2017-04-23 17:00 - 2017-04-23 17:00 - 000000003 _____ () C:\Users\Candy Panda\AppData\Local\updater.log
2017-04-23 17:00 - 2017-05-06 17:56 - 000000425 _____ () C:\Users\Candy Panda\AppData\Local\UserProducts.xml

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2018-08-16 13:52
==================== End of FRST.txt ============================

Addition.txt

Share this post


Link to post
Share on other sites

I explored a little bit the .txt and i found this characters 理由: 不明な理由でマルウェア対策保護が... I have installed the japanese languaje, so i suppose they are normal, and the system languaje is spanish.

Share this post


Link to post
Share on other sites

Hi,

This fix is only cosmetic. You are looking good.

Please download the attached Fixlist.txt file to  the same folder where the Farbar tool is running from.
The location is listed in the 3rd line of the FRST.txt log you have submitted.

Run FRST and click Fix only once and wait.

The tool will create a log (Fixlog.txt) please post it to your reply.
===

Please post the Fixlog.txt and let me know what problem persists.

fixlist.txt

Share this post


Link to post
Share on other sites

Fix result of Farbar Recovery Scan Tool (x64) Version: 21.04.2019 01
Ran by Candy Panda (21-04-2019 13:22:01) Run:1
Running from C:\Users\Candy Panda\Desktop\Nueva carpeta
Loaded Profiles: Candy Panda (Available Profiles: Candy Panda)
Boot Mode: Normal
==============================================

fixlist content:
*****************
CreateRestorePoint:
EmptyTemp:
CloseProcesses:
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
FF Extension: (Hover Zoom+) - C:\Users\Candy Panda\AppData\Roaming\Mozilla\Firefox\Profiles\nz5wr6fq.default\Extensions\{1f50c5bd-711d-441f-8cdf-d2043bcce0f9}.xpi [2018-06-23]
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
AlternateDataStreams: C:\Users\Public\AppData:CSM [195]
FirewallRules: [UDP Query User{155BDE87-2B79-43DD-B713-1B477E731EAD}C:\lolete\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{AF300928-D04F-4C28-8BEA-0EF39C77F9F4}C:\lolete\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{33623A81-4640-4E98-AF7E-7B631894184E}C:\lolete\rads\projects\league_client\releases\0.0.0.156\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.156\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{C994BB68-C0B9-471B-B7FA-9350195613DF}C:\lolete\rads\projects\league_client\releases\0.0.0.156\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.156\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{6A4E9635-9382-4D4D-86AC-150853C1A414}C:\lolete\rads\projects\league_client\releases\0.0.0.155\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.155\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{8E6A6E48-4CA9-4C3D-A59E-EB814A86640B}C:\lolete\rads\projects\league_client\releases\0.0.0.155\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.155\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{78D859BC-0EB7-4FA6-8395-38EE7EDF493E}C:\users\candy panda\desktop\megadownloader_portable_v1.7\megadownloader_portable_v1.7\megadownloader_portable_v1.7.exe] => (Allow) C:\users\candy panda\desktop\megadownloader_portable_v1.7\megadownloader_portable_v1.7\megadownloader_portable_v1.7.exe No File
FirewallRules: [TCP Query User{127D1317-A5D5-4044-8E77-DA6C18214A17}C:\users\candy panda\desktop\megadownloader_portable_v1.7\megadownloader_portable_v1.7\megadownloader_portable_v1.7.exe] => (Allow) C:\users\candy panda\desktop\megadownloader_portable_v1.7\megadownloader_portable_v1.7\megadownloader_portable_v1.7.exe No File
FirewallRules: [UDP Query User{56789298-8C89-44C9-8ADA-85A1FC5BE9BB}E:\program files\assassins creed iv black flag\ac4bfmp.exe] => (Block) E:\program files\assassins creed iv black flag\ac4bfmp.exe No File
FirewallRules: [TCP Query User{37042904-0CD7-4265-9DF5-4CC8F95C9994}E:\program files\assassins creed iv black flag\ac4bfmp.exe] => (Block) E:\program files\assassins creed iv black flag\ac4bfmp.exe No File
FirewallRules: [{C052718C-126A-406D-844B-D7738C6179C5}] => (Allow) E:\Program Files\SteamLibrary\steamapps\common\Warframe\Tools\RemoteCrashSender.exe No File
FirewallRules: [{CC46FB9A-FFE0-49BF-B2D6-E258455E8374}] => (Allow) E:\Program Files\SteamLibrary\steamapps\common\Warframe\Tools\Launcher.exe No File
FirewallRules: [{14D83E18-AECF-4FD1-8653-9C973393BA5B}] => (Allow) E:\Program Files\SteamLibrary\steamapps\common\Warframe\Warframe.x64.exe No File
FirewallRules: [{FBF03E44-2E50-48D3-A8B6-2E115E4B154B}] => (Allow) E:\Program Files\SteamLibrary\steamapps\common\Warframe\Warframe.exe No File
FirewallRules: [{BC9C24E2-7870-4C27-B153-50CBB40089B8}] => (Allow) E:\Program Files\SteamLibrary\steamapps\common\Warframe\Warframe.x64.exe No File
FirewallRules: [{86A6AC1D-8A87-437C-941D-E0E25588A54E}] => (Allow) E:\Program Files\SteamLibrary\steamapps\common\Warframe\Warframe.exe No File
FirewallRules: [{B367039A-EDBB-4BA7-98D1-CF96E8D201FA}] => (Allow) E:\Program Files\SteamLibrary\steamapps\common\Warframe\Tools\RemoteCrashSender.exe No File
FirewallRules: [{2886826A-F379-4DCE-B414-43279CDD1467}] => (Allow) E:\Program Files\SteamLibrary\steamapps\common\Warframe\Tools\Launcher.exe No File
FirewallRules: [{4138ED40-070F-47A8-BB27-02189869A4AC}] => (Allow) E:\Program Files\SteamLibrary\steamapps\common\Warframe\Warframe.x64.exe No File
FirewallRules: [{B1C8E363-566D-40A1-A268-97070F67C666}] => (Allow) E:\Program Files\SteamLibrary\steamapps\common\Warframe\Warframe.exe No File
FirewallRules: [{31FEAC22-B84D-44D1-B7CE-16C3EE01AD67}] => (Allow) E:\Program Files\SteamLibrary\steamapps\common\Warframe\Warframe.x64.exe No File
FirewallRules: [{F606B9FF-4564-4BAE-AD12-47780C72E4B2}] => (Allow) E:\Program Files\SteamLibrary\steamapps\common\Warframe\Warframe.exe No File
FirewallRules: [UDP Query User{56F77A91-B171-46A2-A3C1-D71112B513CB}E:\program files\doom\doomx64.exe] => (Block) E:\program files\doom\doomx64.exe No File
FirewallRules: [TCP Query User{3A4A2474-BDB0-48E3-A9F5-F4489ED90961}E:\program files\doom\doomx64.exe] => (Block) E:\program files\doom\doomx64.exe No File
FirewallRules: [UDP Query User{953ADEE6-210D-4F10-9E3D-CC04CCC33CED}E:\program files\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Block) E:\program files\kingdom come deliverance\bin\win64\kingdomcome.exe No File
FirewallRules: [TCP Query User{FDB1F893-09F9-4BF6-B666-DD5723CF2CDC}E:\program files\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Block) E:\program files\kingdom come deliverance\bin\win64\kingdomcome.exe No File
FirewallRules: [UDP Query User{75048587-0C5D-4F8E-A21A-F1A090642764}C:\lolete\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{C5B6571E-FE1B-4D26-A482-F83087D2AFC5}C:\lolete\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{95A77AA5-E494-4D49-BAC2-28A42EDD658D}E:\program files\far cry 4\bin\farcry4.exe] => (Block) E:\program files\far cry 4\bin\farcry4.exe No File
FirewallRules: [TCP Query User{A5F11EE4-274F-47EB-80CA-49D0BB061759}E:\program files\far cry 4\bin\farcry4.exe] => (Block) E:\program files\far cry 4\bin\farcry4.exe No File
FirewallRules: [{2D116217-D65C-4B78-97F9-240612017457}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Antichamber\Binaries\Win32\UDK.exe No File
FirewallRules: [{049AF9DD-DCE9-4E32-B03E-0AE290824032}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Antichamber\Binaries\Win32\UDK.exe No File
FirewallRules: [UDP Query User{9121D141-F76C-42AF-86B8-F470A3ED0193}E:\program files\vampyr\avgame\binaries\win64\avgame-win64-shipping.exe] => (Block) E:\program files\vampyr\avgame\binaries\win64\avgame-win64-shipping.exe No File
FirewallRules: [TCP Query User{9D4C389B-F9C8-496E-ADAC-228A6BA376A6}E:\program files\vampyr\avgame\binaries\win64\avgame-win64-shipping.exe] => (Block) E:\program files\vampyr\avgame\binaries\win64\avgame-win64-shipping.exe No File
FirewallRules: [UDP Query User{69CE5352-D06B-43DD-9C3D-2774BE8F5FCE}C:\lolete\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{AD654B89-EDDE-4B98-BF7B-2DF958678157}C:\lolete\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{BDA87935-C381-4895-83B1-1E3D97B32142}C:\lolete\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{536118F8-CD62-468A-9B10-923AE2895474}C:\lolete\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{2290E688-2E60-4539-8491-11B5583DE4C4}C:\lolete\rads\projects\league_client\releases\0.0.0.146\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.146\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{4A213C1A-EAB3-4459-861F-9E6A82F87BDB}C:\lolete\rads\projects\league_client\releases\0.0.0.146\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.146\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{7952074F-128A-4340-907E-376A729C1D21}C:\lolete\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{1EF897A3-4514-44E1-B524-EE485CCA08BD}C:\lolete\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{D3E8B2AC-A78E-40EF-9AD6-BB7CFB5A82D1}C:\lolete\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{2F0C758A-B8D7-4373-A047-3C229B35D829}C:\lolete\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{15DBF306-0748-4EBF-948C-401840461F71}E:\program files\xcom 2 war of the chosen\xcom2-warofthechosen\binaries\win64\xcom2.exe] => (Block) E:\program files\xcom 2 war of the chosen\xcom2-warofthechosen\binaries\win64\xcom2.exe No File
FirewallRules: [TCP Query User{C1A22DFA-9AC8-4F33-BDE9-D653169E9D24}E:\program files\xcom 2 war of the chosen\xcom2-warofthechosen\binaries\win64\xcom2.exe] => (Block) E:\program files\xcom 2 war of the chosen\xcom2-warofthechosen\binaries\win64\xcom2.exe No File
FirewallRules: [{BF1BB8FF-C99C-40D0-A89C-1B6E92FAC7F0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe No File
FirewallRules: [{B501E045-1C49-4922-9CE8-9839935083B3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe No File
FirewallRules: [UDP Query User{8A5F8829-86DC-4240-AC56-7A22F4E4792B}C:\lolete\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{93FF9450-D8B7-4BFA-9454-71F91A628AA2}C:\lolete\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{C523DEA9-9085-4B02-8ADE-0F3A10B04313}C:\lolete\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{A1FF0045-ACFF-40B5-98AF-A80DF2492645}C:\lolete\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{212C9847-AA0A-4B07-8088-F64BDF8D3381}E:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) E:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe No File
FirewallRules: [TCP Query User{9D0EFF0E-9991-4895-B9CD-EE66E4498403}E:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) E:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe No File
FirewallRules: [UDP Query User{AB67339D-27AA-4CDF-A08D-CD748D6BBF0E}E:\program files\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) E:\program files\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
FirewallRules: [TCP Query User{8F42F2C9-5E41-436E-85AA-02B929BD8393}E:\program files\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) E:\program files\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
FirewallRules: [UDP Query User{A5A6C4BB-0947-4DD8-87EC-2DBBAAD54BC8}E:\program files\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) E:\program files\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe No File
FirewallRules: [TCP Query User{3B0801B7-FE52-426F-B8C2-936581F1BFA3}E:\program files\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) E:\program files\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe No File
FirewallRules: [UDP Query User{CD6AB14A-66AE-47BB-B0EE-1B1432FEA84F}C:\lolete\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{E168E9F2-E7BD-475B-BE4F-75AFA375CA38}C:\lolete\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{E24986B7-85A4-41AD-A484-6ADFC2F80E51}C:\guns gore and cannoli 2\ggc2.exe] => (Block) C:\guns gore and cannoli 2\ggc2.exe No File
FirewallRules: [TCP Query User{84D12A06-1531-407D-966B-1457EF117B44}C:\guns gore and cannoli 2\ggc2.exe] => (Block) C:\guns gore and cannoli 2\ggc2.exe No File
FirewallRules: [UDP Query User{C29B0912-18F8-4B64-98DC-3D9102A6F7BB}C:\hellmut - the badass from hell\hellmut.exe] => (Block) C:\hellmut - the badass from hell\hellmut.exe No File
FirewallRules: [TCP Query User{622B51B0-6D3B-4953-BD13-FEA8D79F4EE3}C:\hellmut - the badass from hell\hellmut.exe] => (Block) C:\hellmut - the badass from hell\hellmut.exe No File
FirewallRules: [UDP Query User{B3EE4918-E215-41FF-8CAE-D53A9D39EB9C}C:\into the breach\breach.exe] => (Block) C:\into the breach\breach.exe No File
FirewallRules: [TCP Query User{4D7E981B-B07B-45B0-A1B6-2E4D68286C87}C:\into the breach\breach.exe] => (Block) C:\into the breach\breach.exe No File
FirewallRules: [UDP Query User{CB1307C1-3AF7-4696-B45A-F673B7E333CA}C:\subnautica\subnautica.exe] => (Block) C:\subnautica\subnautica.exe No File
FirewallRules: [TCP Query User{603A9649-60E5-41A2-93A8-7C69B13BD79E}C:\subnautica\subnautica.exe] => (Block) C:\subnautica\subnautica.exe No File
FirewallRules: [{85BAA3FC-EA41-43A8-9A1E-4A67D808A743}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe No File
FirewallRules: [{26F24A7B-195B-4FCD-BC67-397C082B1E60}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{B6C7E4BE-DDAD-4FB0-9CAD-1D55DFDEC6F8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [TCP Query User{0F9AB714-CDFB-451F-8775-E6EEE53789DF}D:\steamlibrary\steamapps\common\enter the gungeon\etg.exe] => (Allow) D:\steamlibrary\steamapps\common\enter the gungeon\etg.exe No File
FirewallRules: [UDP Query User{29E432FD-F20B-4F90-8C8C-196A46646F3C}D:\steamlibrary\steamapps\common\enter the gungeon\etg.exe] => (Allow) D:\steamlibrary\steamapps\common\enter the gungeon\etg.exe No File
FirewallRules: [{C1C350B2-F918-4BE7-9A3C-7BE7B9DE5995}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{4732C3E2-5634-41D4-8EA2-A2CAD04F2FAA}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{FAD52D59-692E-40A8-BE52-5570175414EF}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe No File
FirewallRules: [{3DCE581A-0464-444B-96CA-027623271415}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe No File
FirewallRules: [{FFF4DB3F-F5E9-4293-983E-2B5AE62DF0E6}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{CA8F95B5-20B5-44CF-9E76-5F9EB07E3774}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{21706F78-F1F2-4CAC-A1C2-2EE69BC8D840}] => (Allow) D:\SteamLibrary\steamapps\common\Terraria\Terraria.exe No File
FirewallRules: [{EF513A70-F0F9-4E70-BA8F-B405CEEC2136}] => (Allow) D:\SteamLibrary\steamapps\common\Path of Exile\PathOfExileSteam.exe No File
FirewallRules: [{A3096623-B55D-4057-BBCD-7BA30D9FC8A9}] => (Allow) D:\SteamLibrary\steamapps\common\Path of Exile\PathOfExileSteam.exe No File
FirewallRules: [{3A89D6BA-C8F2-4E11-B4A6-F2C8A0E77200}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{78458B48-DC1A-4EA2-8B34-483F483C798F}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{EC5F9D44-6223-4768-B1AB-7A6088B8E470}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{18CAAAEA-2A9E-4BFF-8936-61DAC81475EA}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{C8E1472C-268F-4AB6-A14E-951FADB95F82}] => (Allow) D:\SteamLibrary\steamapps\common\Camera Obscura\CameraObscura.exe No File
FirewallRules: [{F0B4F11F-25D2-4F43-9FD0-9F5EC2E256A5}] => (Allow) D:\SteamLibrary\steamapps\common\Camera Obscura\CameraObscura.exe No File
FirewallRules: [{0D18BDA2-9962-41E5-86A9-A5B2B6AE730D}] => (Allow) D:\SteamLibrary\steamapps\common\Camera Obscura\Editor.exe No File
FirewallRules: [{EA77EBA8-5A78-49C9-8A5C-42A35784298B}] => (Allow) D:\SteamLibrary\steamapps\common\Camera Obscura\Editor.exe No File
FirewallRules: [{EAB23E5C-5FE7-45BE-AA01-9A547D78EF76}] => (Allow) D:\SteamLibrary\steamapps\common\Ghost\ghost.exe No File
FirewallRules: [{825AA96C-54C3-4BFB-A3ED-E431A018003F}] => (Allow) D:\SteamLibrary\steamapps\common\Ghost\ghost.exe No File
FirewallRules: [{E8F4A182-45EC-48DA-8071-4C3D26871925}] => (Allow) D:\SteamLibrary\steamapps\common\Picross Touch\picross.exe No File
FirewallRules: [{5FF806C4-19F7-4EC8-B821-FC0BF90E3574}] => (Allow) D:\SteamLibrary\steamapps\common\Picross Touch\picross.exe No File
FirewallRules: [{0EC6AF64-4B2D-4E5A-8B39-7482BEB2EC2C}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{B08EE202-5829-497D-ABC5-8F5DC72F271E}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{793F8071-7D1F-4251-B401-B060D03210FD}] => (Allow) D:\SteamLibrary\steamapps\common\PRICE\PRICE.exe No File
FirewallRules: [{6100B4BF-36E1-4739-BDA3-6FE20F062566}] => (Allow) D:\SteamLibrary\steamapps\common\PRICE\PRICE.exe No File
FirewallRules: [{4764473E-5CCF-421C-9053-F10196BF8067}] => (Allow) D:\SteamLibrary\steamapps\common\DarkestDungeon\_windows\Darkest.exe No File
FirewallRules: [{2074A7A9-FD85-48FE-B575-B96008E95EB3}] => (Allow) D:\SteamLibrary\steamapps\common\DarkestDungeon\_windows\Darkest.exe No File
FirewallRules: [{AED0640D-636B-427C-B985-FD21ED111AE6}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{0E788C48-1DFA-4A26-ADB8-272201872F72}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{7B04470C-6D99-434D-BCDA-80FFF3A51C82}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{14E94A5E-FC29-49E9-AA17-D9A360E863FD}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{FB6342DA-B4FC-42B0-8F33-EEB35D9BFBF4}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{646B8512-AC3C-4853-B29A-54ED4C38E31B}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [TCP Query User{9DAE67C4-1DE1-48AC-B220-7E6E45A65880}D:\nueva carpeta\newmega\bin\megadownloader.exe] => (Allow) D:\nueva carpeta\newmega\bin\megadownloader.exe No File
FirewallRules: [UDP Query User{097A1BEC-1F69-41E4-BF55-C574F6B0E4D3}D:\nueva carpeta\newmega\bin\megadownloader.exe] => (Allow) D:\nueva carpeta\newmega\bin\megadownloader.exe No File
FirewallRules: [{512E8955-4F7A-4188-A8FE-C938067717EF}] => (Allow) D:\SteamLibrary\steamapps\common\Outland\Outland.exe No File
FirewallRules: [{BABC5B73-43A1-44D1-8F4F-73D0D967606F}] => (Allow) D:\SteamLibrary\steamapps\common\Outland\Outland.exe No File
FirewallRules: [{8ACA04FB-8F4B-4BD5-8598-00A8B2DAFD66}] => (Allow) D:\SteamLibrary\steamapps\common\PAYDAY 2\payday2_win32_release.exe No File
FirewallRules: [{A118EDD1-01F0-40FF-A966-562B99E28B95}] => (Allow) D:\SteamLibrary\steamapps\common\PAYDAY 2\payday2_win32_release.exe No File
FirewallRules: [{DA9ABE7D-2CA5-4DB1-8225-B93BEBD820C3}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{5643E6EF-2290-4C7B-A948-CBA7D3FD46F9}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{ED797444-2793-403D-9422-B8D4123112AF}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{979D81FB-A06D-4639-9031-BBD470CDF17B}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{586F5E3E-0BAA-4BDC-AB20-DE330B2D7B5B}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{1CB5CC91-68E0-463E-AF41-CF677177A8D9}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{ECB89612-A629-4F8D-A572-42AAEA89F3C7}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{0B7FDF12-59F1-45FC-99AA-01D1D88CAECF}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{DA3EBE67-BF56-444F-B9B8-285161120678}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{F5D1A637-E298-4B1A-A6A7-CC09998CF7F8}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{4F2AA0E3-DF5E-4892-9A32-7BF9CEC26DDC}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{27582F0B-62E8-439C-B216-9295119ACCDB}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{6618C651-5525-4789-BD6C-45C76C93908A}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{41F91969-46B5-438C-B562-EAE0C250F3AD}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{6DE0001B-FC94-4EF2-A773-80D11EFA55DD}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{F09B83C3-3A7F-40B2-82A3-9555D1F31481}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{C74F47B9-8958-4A23-AEBA-791706D9004B}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [{F45B5009-7A20-431E-BAD4-5A7DCE1A9A63}] => (Allow) D:\SteamLibrary\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe No File
FirewallRules: [TCP Query User{11F5A1A8-9AF4-4A6E-8C1A-F1E6F17B3E07}C:\users\candy panda\desktop\phoenix wright\1emulador\desmume_vs2010_x64_noconsole.exe] => (Block) C:\users\candy panda\desktop\phoenix wright\1emulador\desmume_vs2010_x64_noconsole.exe No File
FirewallRules: [UDP Query User{6B6285A1-598A-444E-9736-A7D8EE05FF93}C:\users\candy panda\desktop\phoenix wright\1emulador\desmume_vs2010_x64_noconsole.exe] => (Block) C:\users\candy panda\desktop\phoenix wright\1emulador\desmume_vs2010_x64_noconsole.exe No File
FirewallRules: [{59DD67E1-A330-465B-9C2F-1F832D45143F}] => (Allow) C:\Cosas de Uli\Animaciones\Anime Studio Debut 10\Anime Studio Debut Win32.exe No File
FirewallRules: [{68B81A6C-B8BB-4383-9360-2950CCA18B0A}] => (Allow) C:\Cosas de Uli\Animaciones\Anime Studio Debut 10\Anime Studio Debut Win32.exe No File
FirewallRules: [TCP Query User{8C9FB7B4-7B17-42D1-A8B8-371FACF7ADD9}C:\program files (x86)\steam\steamapps\common\insurgency2\insurgency.exe] => (Block) C:\program files (x86)\steam\steamapps\common\insurgency2\insurgency.exe No File
FirewallRules: [UDP Query User{5F921879-976D-4BB3-AE18-658BB2893846}C:\program files (x86)\steam\steamapps\common\insurgency2\insurgency.exe] => (Block) C:\program files (x86)\steam\steamapps\common\insurgency2\insurgency.exe No File
FirewallRules: [TCP Query User{5710C329-D43E-4BB7-B52B-6F1AA9AD5C9A}C:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe No File
FirewallRules: [UDP Query User{A711B0E4-7AFC-4947-9C6F-9C599A5729E6}C:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe No File
FirewallRules: [TCP Query User{75F7A96A-B136-44B5-B5E7-36256D44D180}C:\oxygen not included\oxygennotincluded.exe] => (Block) C:\oxygen not included\oxygennotincluded.exe No File
FirewallRules: [UDP Query User{817A3407-5681-47FC-903B-96F06E7B6DFF}C:\oxygen not included\oxygennotincluded.exe] => (Block) C:\oxygen not included\oxygennotincluded.exe No File
FirewallRules: [TCP Query User{A7760FCF-12EB-47AC-A29B-A5D562DF5A18}C:\program files (x86)\steam\steamapps\common\total war rome ii\rome2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\total war rome ii\rome2.exe No File
FirewallRules: [UDP Query User{A29B18F3-DBE9-4C9A-9C8B-7C9B09B7558A}C:\program files (x86)\steam\steamapps\common\total war rome ii\rome2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\total war rome ii\rome2.exe No File
FirewallRules: [TCP Query User{9EE71602-BCE3-41E3-8AE6-C7044F550C21}C:\program files (x86)\starcraft ii\versions\base58400\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base58400\sc2_x64.exe No File
FirewallRules: [UDP Query User{842D3F57-7C61-4EBD-80C3-BDE676245121}C:\program files (x86)\starcraft ii\versions\base58400\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base58400\sc2_x64.exe No File
FirewallRules: [TCP Query User{3A80A1B9-36DC-4668-AB42-DEE82197C058}C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe No File
FirewallRules: [UDP Query User{EBC4C626-7A37-4263-9D8F-DEB8393BCBE2}C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe No File
FirewallRules: [TCP Query User{51658FA2-E01D-41C6-A59B-BE64BD8ADD4A}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe No File
FirewallRules: [UDP Query User{409E0455-44E1-4AAE-8A65-66DF5EF19CDF}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe No File
FirewallRules: [{B7A6B5D5-3826-405E-8D06-245406D6D3F1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Total War Rome II\launcher\launcher.exe No File
FirewallRules: [{62E4BD10-49A1-4E98-AD35-53F08F59A8F5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Total War Rome II\launcher\launcher.exe No File
FirewallRules: [{98901CA7-4F59-4AFD-8FF6-E53439A3B8E9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Divinity Original Sin Enhanced Edition\Shipping\EoCApp.exe No File
FirewallRules: [{50669215-80DF-45DC-9E43-726C9E2F1A0F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Divinity Original Sin Enhanced Edition\Shipping\EoCApp.exe No File
FirewallRules: [{005540E9-609F-40E4-8F09-E34CF948DDA0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Turing Test\TheTuringTest\Binaries\Win64\TheTuringTest.exe No File
FirewallRules: [{95D8BB64-A549-46E3-BC82-774EFEDD7390}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Turing Test\TheTuringTest\Binaries\Win64\TheTuringTest.exe No File
FirewallRules: [TCP Query User{6DA1D090-0E7F-4F4D-A375-7210F5879563}C:\lolete\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{C1FEAC87-E081-4EC2-8374-6147D200E106}C:\lolete\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe No File
FirewallRules: [{24C218BB-AC60-40D7-941A-DA38A1D0FC9A}] => (Allow) C:\Program Files (x86)\BlueStacks\HD-Player.exe No File
FirewallRules: [{F6483936-664F-4BCA-B712-8E655F4A1094}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hacknet\Hacknet.exe No File
FirewallRules: [{31C8300A-5D9C-4D28-AC65-39DC721089E9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hacknet\Hacknet.exe No File
FirewallRules: [TCP Query User{989D7CAE-D5E6-477A-9B62-0568282DED7F}C:\lolete\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{0FE01F7D-19B2-4437-8C7C-897106D2C467}C:\lolete\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{1B42057B-D071-46E3-B977-64B93BADFEDA}C:\lolete\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{19ACDC97-C38A-4542-AC92-25394A1386D0}C:\lolete\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{FB5506CB-E28C-4604-ACEF-2820EA18910C}C:\lolete\rads\projects\league_client\releases\0.0.0.165\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.165\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{FD68AFCF-BBD9-4CDA-B4C4-2997F8EEAE77}C:\lolete\rads\projects\league_client\releases\0.0.0.165\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.165\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{9693142F-A0BC-4B4B-B978-18C41E48240C}C:\lolete\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{5689A656-2FBB-4F4A-B279-A4D137E20269}C:\lolete\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{1ABACB32-01AE-45F1-96E8-0F22902C73F8}C:\lolete\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{0A9F9980-0A12-4368-ACC0-2E4926A52263}C:\lolete\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{2A461E49-9071-49DA-846B-E93AED7BD741}C:\lolete\rads\projects\league_client\releases\0.0.0.170\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.170\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{541B2871-EDC1-4210-B0BC-3166B796C27A}C:\lolete\rads\projects\league_client\releases\0.0.0.170\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.170\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{6B1E487A-26C4-4860-960E-A1C44869D365}C:\lolete\rads\projects\league_client\releases\0.0.0.172\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.172\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{6B35F780-4678-4963-888F-32C2971F2C0E}C:\lolete\rads\projects\league_client\releases\0.0.0.172\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.172\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{E3EF4AC3-021F-45A5-B66F-A3A1D31BEB14}E:\program files\magic\mtgarena\mtga.exe] => (Allow) E:\program files\magic\mtgarena\mtga.exe No File
FirewallRules: [UDP Query User{CAA42528-DCA9-4775-B438-110DD9B3E0F2}E:\program files\magic\mtgarena\mtga.exe] => (Allow) E:\program files\magic\mtgarena\mtga.exe No File
FirewallRules: [TCP Query User{7E4940E9-CA81-48B5-B018-C7F9D54AE70B}C:\lolete\rads\projects\league_client\releases\0.0.0.174\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.174\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{1365A84C-39F7-4373-9FE4-BC7D032EE145}C:\lolete\rads\projects\league_client\releases\0.0.0.174\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.174\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{2B15105C-6D84-428B-A14A-FF6B59197C5F}C:\lolete\rads\projects\league_client\releases\0.0.0.175\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.175\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{6ABA10FB-4161-45D8-A152-615B821FC9E5}C:\lolete\rads\projects\league_client\releases\0.0.0.175\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.175\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{9721EE75-9EFF-43AE-A9FB-66824D55345F}C:\lolete\rads\projects\league_client\releases\0.0.0.176\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.176\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{8B459184-CBC4-44F7-BDB1-51C315FC9605}C:\lolete\rads\projects\league_client\releases\0.0.0.176\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.176\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{30F2E3F8-8109-47C1-9A7E-34AA640BF346}C:\lolete\rads\projects\league_client\releases\0.0.0.177\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.177\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{4269C947-ADC1-4A5B-AE75-68A3FB67B99C}C:\lolete\rads\projects\league_client\releases\0.0.0.177\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.177\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{2D9D85AA-DF23-4F69-9F86-9CB42FD2AF35}C:\lolete\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{20B7C5F7-78E0-487E-B1F4-424B907D35DF}C:\lolete\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe No File
FirewallRules: [{572AF419-8F23-46B9-A1A1-0F63BAC35F91}] => (Allow) E:\Program Files\SteamLibrary\steamapps\common\Circuits\Composer\Composer.exe No File
FirewallRules: [{821B2DC4-2477-4F01-9F3D-24C9634A99BF}] => (Allow) E:\Program Files\SteamLibrary\steamapps\common\Circuits\Composer\Composer.exe No File
FirewallRules: [TCP Query User{70E3A655-479E-44CC-8FD1-EA1A14C198B9}C:\lolete\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{D5E5B119-580E-4810-BAC0-AA1950169D9C}C:\lolete\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{7C402880-4FCB-46DD-8673-6173B2099583}C:\lolete\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{D3C7B03B-2224-45CC-8384-FAA82AD2CDE7}C:\lolete\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{04C2BB62-B85E-41B5-B594-C37689652FFB}C:\lolete\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{45083D85-A89D-40E3-A1B4-53623D2ED025}C:\lolete\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{C79B71B1-B641-465E-80C3-F3D15AE327B1}C:\lolete\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{6102B586-9E7A-4F81-A33B-BA35D5B7FD75}C:\lolete\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{C096731A-89DE-423F-B9F5-354AD8D5D219}E:\program files\rise of the tomb raider - 20 years celebration\rottr.exe] => (Block) E:\program files\rise of the tomb raider - 20 years celebration\rottr.exe No File
FirewallRules: [UDP Query User{8BA1240F-CE97-4A6C-B29B-36ED64657D3C}E:\program files\rise of the tomb raider - 20 years celebration\rottr.exe] => (Block) E:\program files\rise of the tomb raider - 20 years celebration\rottr.exe No File
FirewallRules: [TCP Query User{60921747-231B-48D9-AF3C-28A78132F0C3}C:\lolete\rads\projects\league_client\releases\0.0.0.184\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.184\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{84AC3C42-1EB1-41E5-9D48-AB9604D3E7C4}C:\lolete\rads\projects\league_client\releases\0.0.0.184\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.184\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{A9CE9A28-287A-4065-9773-F13491253E94}E:\program files\origin\apex\r5apex.exe] => (Allow) E:\program files\origin\apex\r5apex.exe No File
FirewallRules: [UDP Query User{65897038-8239-4F0D-B115-FE4D5F68F0DE}E:\program files\origin\apex\r5apex.exe] => (Allow) E:\program files\origin\apex\r5apex.exe No File
FirewallRules: [TCP Query User{A4BF1A5B-C85C-4E3B-81AF-2CE250528210}C:\lolete\rads\projects\league_client\releases\0.0.0.185\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.185\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{C60CD3A3-46DD-4034-9087-5CF22F7C947C}C:\lolete\rads\projects\league_client\releases\0.0.0.185\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.185\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{68D34A3E-C137-484E-8420-1A53635FDABF}C:\lolete\rads\projects\league_client\releases\0.0.0.186\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.186\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{30AE22B2-D52E-4396-A043-4E3F7FCED481}C:\lolete\rads\projects\league_client\releases\0.0.0.186\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.186\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{04A275D9-BCBB-4113-A960-752DDAE19818}C:\lolete\rads\projects\league_client\releases\0.0.0.187\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.187\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{A3DB9B5F-5245-45C0-AEB8-1C89C5D96666}C:\lolete\rads\projects\league_client\releases\0.0.0.187\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.187\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{2AA94F7A-2218-4B02-8AD7-EB2B819524B6}C:\lolete\rads\projects\league_client\releases\0.0.0.188\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.188\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{71811CFB-0388-4A3D-BD22-4A0EAE6ECD04}C:\lolete\rads\projects\league_client\releases\0.0.0.188\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.188\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{706CD4A8-6F9E-4FCA-A476-0B713ACFAE50}C:\lolete\rads\projects\league_client\releases\0.0.0.189\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.189\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{84F7460B-32F0-4295-BA29-630097789F5A}C:\lolete\rads\projects\league_client\releases\0.0.0.189\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.189\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{4CC722B5-8D54-4C00-9ED3-1A44FD0FDA7B}C:\lolete\rads\projects\league_client\releases\0.0.0.190\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.190\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{90D321EC-8EF9-420A-8CBE-7E12494906DB}C:\lolete\rads\projects\league_client\releases\0.0.0.190\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.190\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{906647D5-C9AF-4880-9767-B68DEE3410D2}C:\lolete\rads\projects\league_client\releases\0.0.0.191\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.191\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{81ACD6DD-9669-41AB-A189-44A58DCE86F9}C:\lolete\rads\projects\league_client\releases\0.0.0.191\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.191\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{BBF7ED20-A60A-4ED1-B635-3DBDD878605C}C:\lolete\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{355DAD0F-420F-4692-85B4-A36DC47E9C9B}C:\lolete\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{1B1CC6FC-D96F-4C9E-BA48-593A0C335C7A}C:\lolete\rads\projects\league_client\releases\0.0.0.193\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.193\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{50CD259B-0763-45DA-8DD6-359CF66A11CB}C:\lolete\rads\projects\league_client\releases\0.0.0.193\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.193\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{9987B467-4E9F-43A6-A041-3E76325B9B65}C:\lolete\rads\projects\league_client\releases\0.0.0.194\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.194\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{CF87993D-699C-4B3E-8517-F3AB7FAE74D4}C:\lolete\rads\projects\league_client\releases\0.0.0.194\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.194\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{5AA72578-E5CC-4A17-9400-443A9C990D51}C:\lolete\rads\projects\league_client\releases\0.0.0.195\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.195\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{068F3232-99A1-4BB9-A0DD-6999BFE44744}C:\lolete\rads\projects\league_client\releases\0.0.0.195\deploy\leagueclient.exe] => (Allow) C:\lolete\rads\projects\league_client\releases\0.0.0.195\deploy\leagueclient.exe No File
Reboot:

*****************

Restore point was successfully created.
Processes closed successfully.
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION => restored successfully
C:\WINDOWS\system32\GroupPolicy\User => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
C:\Users\Candy Panda\AppData\Roaming\Mozilla\Firefox\Profiles\nz5wr6fq.default\Extensions\{1f50c5bd-711d-441f-8cdf-d2043bcce0f9}.xpi => moved successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\CLSID\{23170F69-40C1-278A-1000-000100020000} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
"HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}" => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => removed successfully
HKLM\Software\Classes\CLSID\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => not found
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\CLSID\{23170F69-40C1-278A-1000-000100020000} => not found
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D} => not found
C:\Users\Public\AppData => ":CSM" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{155BDE87-2B79-43DD-B713-1B477E731EAD}C:\lolete\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{AF300928-D04F-4C28-8BEA-0EF39C77F9F4}C:\lolete\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{33623A81-4640-4E98-AF7E-7B631894184E}C:\lolete\rads\projects\league_client\releases\0.0.0.156\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C994BB68-C0B9-471B-B7FA-9350195613DF}C:\lolete\rads\projects\league_client\releases\0.0.0.156\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{6A4E9635-9382-4D4D-86AC-150853C1A414}C:\lolete\rads\projects\league_client\releases\0.0.0.155\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{8E6A6E48-4CA9-4C3D-A59E-EB814A86640B}C:\lolete\rads\projects\league_client\releases\0.0.0.155\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{78D859BC-0EB7-4FA6-8395-38EE7EDF493E}C:\users\candy panda\desktop\megadownloader_portable_v1.7\megadownloader_portable_v1.7\megadownloader_portable_v1.7.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{127D1317-A5D5-4044-8E77-DA6C18214A17}C:\users\candy panda\desktop\megadownloader_portable_v1.7\megadownloader_portable_v1.7\megadownloader_portable_v1.7.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{56789298-8C89-44C9-8ADA-85A1FC5BE9BB}E:\program files\assassins creed iv black flag\ac4bfmp.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{37042904-0CD7-4265-9DF5-4CC8F95C9994}E:\program files\assassins creed iv black flag\ac4bfmp.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C052718C-126A-406D-844B-D7738C6179C5}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CC46FB9A-FFE0-49BF-B2D6-E258455E8374}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{14D83E18-AECF-4FD1-8653-9C973393BA5B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FBF03E44-2E50-48D3-A8B6-2E115E4B154B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BC9C24E2-7870-4C27-B153-50CBB40089B8}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{86A6AC1D-8A87-437C-941D-E0E25588A54E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B367039A-EDBB-4BA7-98D1-CF96E8D201FA}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2886826A-F379-4DCE-B414-43279CDD1467}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4138ED40-070F-47A8-BB27-02189869A4AC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B1C8E363-566D-40A1-A268-97070F67C666}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{31FEAC22-B84D-44D1-B7CE-16C3EE01AD67}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F606B9FF-4564-4BAE-AD12-47780C72E4B2}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{56F77A91-B171-46A2-A3C1-D71112B513CB}E:\program files\doom\doomx64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{3A4A2474-BDB0-48E3-A9F5-F4489ED90961}E:\program files\doom\doomx64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{953ADEE6-210D-4F10-9E3D-CC04CCC33CED}E:\program files\kingdom come deliverance\bin\win64\kingdomcome.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{FDB1F893-09F9-4BF6-B666-DD5723CF2CDC}E:\program files\kingdom come deliverance\bin\win64\kingdomcome.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{75048587-0C5D-4F8E-A21A-F1A090642764}C:\lolete\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C5B6571E-FE1B-4D26-A482-F83087D2AFC5}C:\lolete\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{95A77AA5-E494-4D49-BAC2-28A42EDD658D}E:\program files\far cry 4\bin\farcry4.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{A5F11EE4-274F-47EB-80CA-49D0BB061759}E:\program files\far cry 4\bin\farcry4.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2D116217-D65C-4B78-97F9-240612017457}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{049AF9DD-DCE9-4E32-B03E-0AE290824032}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{9121D141-F76C-42AF-86B8-F470A3ED0193}E:\program files\vampyr\avgame\binaries\win64\avgame-win64-shipping.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{9D4C389B-F9C8-496E-ADAC-228A6BA376A6}E:\program files\vampyr\avgame\binaries\win64\avgame-win64-shipping.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{69CE5352-D06B-43DD-9C3D-2774BE8F5FCE}C:\lolete\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{AD654B89-EDDE-4B98-BF7B-2DF958678157}C:\lolete\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{BDA87935-C381-4895-83B1-1E3D97B32142}C:\lolete\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{536118F8-CD62-468A-9B10-923AE2895474}C:\lolete\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{2290E688-2E60-4539-8491-11B5583DE4C4}C:\lolete\rads\projects\league_client\releases\0.0.0.146\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{4A213C1A-EAB3-4459-861F-9E6A82F87BDB}C:\lolete\rads\projects\league_client\releases\0.0.0.146\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{7952074F-128A-4340-907E-376A729C1D21}C:\lolete\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{1EF897A3-4514-44E1-B524-EE485CCA08BD}C:\lolete\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{D3E8B2AC-A78E-40EF-9AD6-BB7CFB5A82D1}C:\lolete\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{2F0C758A-B8D7-4373-A047-3C229B35D829}C:\lolete\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{15DBF306-0748-4EBF-948C-401840461F71}E:\program files\xcom 2 war of the chosen\xcom2-warofthechosen\binaries\win64\xcom2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C1A22DFA-9AC8-4F33-BDE9-D653169E9D24}E:\program files\xcom 2 war of the chosen\xcom2-warofthechosen\binaries\win64\xcom2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BF1BB8FF-C99C-40D0-A89C-1B6E92FAC7F0}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B501E045-1C49-4922-9CE8-9839935083B3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{8A5F8829-86DC-4240-AC56-7A22F4E4792B}C:\lolete\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{93FF9450-D8B7-4BFA-9454-71F91A628AA2}C:\lolete\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{C523DEA9-9085-4B02-8ADE-0F3A10B04313}C:\lolete\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{A1FF0045-ACFF-40B5-98AF-A80DF2492645}C:\lolete\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{212C9847-AA0A-4B07-8088-F64BDF8D3381}E:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{9D0EFF0E-9991-4895-B9CD-EE66E4498403}E:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{AB67339D-27AA-4CDF-A08D-CD748D6BBF0E}E:\program files\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{8F42F2C9-5E41-436E-85AA-02B929BD8393}E:\program files\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{A5A6C4BB-0947-4DD8-87EC-2DBBAAD54BC8}E:\program files\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{3B0801B7-FE52-426F-B8C2-936581F1BFA3}E:\program files\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{CD6AB14A-66AE-47BB-B0EE-1B1432FEA84F}C:\lolete\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{E168E9F2-E7BD-475B-BE4F-75AFA375CA38}C:\lolete\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{E24986B7-85A4-41AD-A484-6ADFC2F80E51}C:\guns gore and cannoli 2\ggc2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{84D12A06-1531-407D-966B-1457EF117B44}C:\guns gore and cannoli 2\ggc2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{C29B0912-18F8-4B64-98DC-3D9102A6F7BB}C:\hellmut - the badass from hell\hellmut.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{622B51B0-6D3B-4953-BD13-FEA8D79F4EE3}C:\hellmut - the badass from hell\hellmut.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{B3EE4918-E215-41FF-8CAE-D53A9D39EB9C}C:\into the breach\breach.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{4D7E981B-B07B-45B0-A1B6-2E4D68286C87}C:\into the breach\breach.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{CB1307C1-3AF7-4696-B45A-F673B7E333CA}C:\subnautica\subnautica.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{603A9649-60E5-41A2-93A8-7C69B13BD79E}C:\subnautica\subnautica.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{85BAA3FC-EA41-43A8-9A1E-4A67D808A743}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{26F24A7B-195B-4FCD-BC67-397C082B1E60}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B6C7E4BE-DDAD-4FB0-9CAD-1D55DFDEC6F8}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{0F9AB714-CDFB-451F-8775-E6EEE53789DF}D:\steamlibrary\steamapps\common\enter the gungeon\etg.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{29E432FD-F20B-4F90-8C8C-196A46646F3C}D:\steamlibrary\steamapps\common\enter the gungeon\etg.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C1C350B2-F918-4BE7-9A3C-7BE7B9DE5995}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4732C3E2-5634-41D4-8EA2-A2CAD04F2FAA}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FAD52D59-692E-40A8-BE52-5570175414EF}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3DCE581A-0464-444B-96CA-027623271415}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FFF4DB3F-F5E9-4293-983E-2B5AE62DF0E6}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CA8F95B5-20B5-44CF-9E76-5F9EB07E3774}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{21706F78-F1F2-4CAC-A1C2-2EE69BC8D840}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EF513A70-F0F9-4E70-BA8F-B405CEEC2136}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A3096623-B55D-4057-BBCD-7BA30D9FC8A9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3A89D6BA-C8F2-4E11-B4A6-F2C8A0E77200}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{78458B48-DC1A-4EA2-8B34-483F483C798F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EC5F9D44-6223-4768-B1AB-7A6088B8E470}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{18CAAAEA-2A9E-4BFF-8936-61DAC81475EA}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C8E1472C-268F-4AB6-A14E-951FADB95F82}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F0B4F11F-25D2-4F43-9FD0-9F5EC2E256A5}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0D18BDA2-9962-41E5-86A9-A5B2B6AE730D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EA77EBA8-5A78-49C9-8A5C-42A35784298B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EAB23E5C-5FE7-45BE-AA01-9A547D78EF76}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{825AA96C-54C3-4BFB-A3ED-E431A018003F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E8F4A182-45EC-48DA-8071-4C3D26871925}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5FF806C4-19F7-4EC8-B821-FC0BF90E3574}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0EC6AF64-4B2D-4E5A-8B39-7482BEB2EC2C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B08EE202-5829-497D-ABC5-8F5DC72F271E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{793F8071-7D1F-4251-B401-B060D03210FD}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6100B4BF-36E1-4739-BDA3-6FE20F062566}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4764473E-5CCF-421C-9053-F10196BF8067}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2074A7A9-FD85-48FE-B575-B96008E95EB3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AED0640D-636B-427C-B985-FD21ED111AE6}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0E788C48-1DFA-4A26-ADB8-272201872F72}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7B04470C-6D99-434D-BCDA-80FFF3A51C82}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{14E94A5E-FC29-49E9-AA17-D9A360E863FD}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FB6342DA-B4FC-42B0-8F33-EEB35D9BFBF4}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{646B8512-AC3C-4853-B29A-54ED4C38E31B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{9DAE67C4-1DE1-48AC-B220-7E6E45A65880}D:\nueva carpeta\newmega\bin\megadownloader.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{097A1BEC-1F69-41E4-BF55-C574F6B0E4D3}D:\nueva carpeta\newmega\bin\megadownloader.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{512E8955-4F7A-4188-A8FE-C938067717EF}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BABC5B73-43A1-44D1-8F4F-73D0D967606F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8ACA04FB-8F4B-4BD5-8598-00A8B2DAFD66}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A118EDD1-01F0-40FF-A966-562B99E28B95}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DA9ABE7D-2CA5-4DB1-8225-B93BEBD820C3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5643E6EF-2290-4C7B-A948-CBA7D3FD46F9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{ED797444-2793-403D-9422-B8D4123112AF}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{979D81FB-A06D-4639-9031-BBD470CDF17B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{586F5E3E-0BAA-4BDC-AB20-DE330B2D7B5B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1CB5CC91-68E0-463E-AF41-CF677177A8D9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{ECB89612-A629-4F8D-A572-42AAEA89F3C7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0B7FDF12-59F1-45FC-99AA-01D1D88CAECF}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DA3EBE67-BF56-444F-B9B8-285161120678}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F5D1A637-E298-4B1A-A6A7-CC09998CF7F8}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4F2AA0E3-DF5E-4892-9A32-7BF9CEC26DDC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{27582F0B-62E8-439C-B216-9295119ACCDB}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6618C651-5525-4789-BD6C-45C76C93908A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{41F91969-46B5-438C-B562-EAE0C250F3AD}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6DE0001B-FC94-4EF2-A773-80D11EFA55DD}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F09B83C3-3A7F-40B2-82A3-9555D1F31481}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C74F47B9-8958-4A23-AEBA-791706D9004B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F45B5009-7A20-431E-BAD4-5A7DCE1A9A63}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{11F5A1A8-9AF4-4A6E-8C1A-F1E6F17B3E07}C:\users\candy panda\desktop\phoenix wright\1emulador\desmume_vs2010_x64_noconsole.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{6B6285A1-598A-444E-9736-A7D8EE05FF93}C:\users\candy panda\desktop\phoenix wright\1emulador\desmume_vs2010_x64_noconsole.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{59DD67E1-A330-465B-9C2F-1F832D45143F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{68B81A6C-B8BB-4383-9360-2950CCA18B0A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{8C9FB7B4-7B17-42D1-A8B8-371FACF7ADD9}C:\program files (x86)\steam\steamapps\common\insurgency2\insurgency.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{5F921879-976D-4BB3-AE18-658BB2893846}C:\program files (x86)\steam\steamapps\common\insurgency2\insurgency.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{5710C329-D43E-4BB7-B52B-6F1AA9AD5C9A}C:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{A711B0E4-7AFC-4947-9C6F-9C599A5729E6}C:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{75F7A96A-B136-44B5-B5E7-36256D44D180}C:\oxygen not included\oxygennotincluded.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{817A3407-5681-47FC-903B-96F06E7B6DFF}C:\oxygen not included\oxygennotincluded.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{A7760FCF-12EB-47AC-A29B-A5D562DF5A18}C:\program files (x86)\steam\steamapps\common\total war rome ii\rome2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{A29B18F3-DBE9-4C9A-9C8B-7C9B09B7558A}C:\program files (x86)\steam\steamapps\common\total war rome ii\rome2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{9EE71602-BCE3-41E3-8AE6-C7044F550C21}C:\program files (x86)\starcraft ii\versions\base58400\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{842D3F57-7C61-4EBD-80C3-BDE676245121}C:\program files (x86)\starcraft ii\versions\base58400\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{3A80A1B9-36DC-4668-AB42-DEE82197C058}C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{EBC4C626-7A37-4263-9D8F-DEB8393BCBE2}C:\program files (x86)\starcraft ii\versions\base59587\sc2_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{51658FA2-E01D-41C6-A59B-BE64BD8ADD4A}C:\program files (x86)\overwatch\overwatch.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{409E0455-44E1-4AAE-8A65-66DF5EF19CDF}C:\program files (x86)\overwatch\overwatch.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B7A6B5D5-3826-405E-8D06-245406D6D3F1}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{62E4BD10-49A1-4E98-AD35-53F08F59A8F5}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{98901CA7-4F59-4AFD-8FF6-E53439A3B8E9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{50669215-80DF-45DC-9E43-726C9E2F1A0F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{005540E9-609F-40E4-8F09-E34CF948DDA0}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{95D8BB64-A549-46E3-BC82-774EFEDD7390}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{6DA1D090-0E7F-4F4D-A375-7210F5879563}C:\lolete\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{C1FEAC87-E081-4EC2-8374-6147D200E106}C:\lolete\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{24C218BB-AC60-40D7-941A-DA38A1D0FC9A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F6483936-664F-4BCA-B712-8E655F4A1094}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{31C8300A-5D9C-4D28-AC65-39DC721089E9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{989D7CAE-D5E6-477A-9B62-0568282DED7F}C:\lolete\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{0FE01F7D-19B2-4437-8C7C-897106D2C467}C:\lolete\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{1B42057B-D071-46E3-B977-64B93BADFEDA}C:\lolete\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{19ACDC97-C38A-4542-AC92-25394A1386D0}C:\lolete\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{FB5506CB-E28C-4604-ACEF-2820EA18910C}C:\lolete\rads\projects\league_client\releases\0.0.0.165\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{FD68AFCF-BBD9-4CDA-B4C4-2997F8EEAE77}C:\lolete\rads\projects\league_client\releases\0.0.0.165\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{9693142F-A0BC-4B4B-B978-18C41E48240C}C:\lolete\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{5689A656-2FBB-4F4A-B279-A4D137E20269}C:\lolete\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{1ABACB32-01AE-45F1-96E8-0F22902C73F8}C:\lolete\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{0A9F9980-0A12-4368-ACC0-2E4926A52263}C:\lolete\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{2A461E49-9071-49DA-846B-E93AED7BD741}C:\lolete\rads\projects\league_client\releases\0.0.0.170\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{541B2871-EDC1-4210-B0BC-3166B796C27A}C:\lolete\rads\projects\league_client\releases\0.0.0.170\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{6B1E487A-26C4-4860-960E-A1C44869D365}C:\lolete\rads\projects\league_client\releases\0.0.0.172\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{6B35F780-4678-4963-888F-32C2971F2C0E}C:\lolete\rads\projects\league_client\releases\0.0.0.172\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{E3EF4AC3-021F-45A5-B66F-A3A1D31BEB14}E:\program files\magic\mtgarena\mtga.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{CAA42528-DCA9-4775-B438-110DD9B3E0F2}E:\program files\magic\mtgarena\mtga.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{7E4940E9-CA81-48B5-B018-C7F9D54AE70B}C:\lolete\rads\projects\league_client\releases\0.0.0.174\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{1365A84C-39F7-4373-9FE4-BC7D032EE145}C:\lolete\rads\projects\league_client\releases\0.0.0.174\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{2B15105C-6D84-428B-A14A-FF6B59197C5F}C:\lolete\rads\projects\league_client\releases\0.0.0.175\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{6ABA10FB-4161-45D8-A152-615B821FC9E5}C:\lolete\rads\projects\league_client\releases\0.0.0.175\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{9721EE75-9EFF-43AE-A9FB-66824D55345F}C:\lolete\rads\projects\league_client\releases\0.0.0.176\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{8B459184-CBC4-44F7-BDB1-51C315FC9605}C:\lolete\rads\projects\league_client\releases\0.0.0.176\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{30F2E3F8-8109-47C1-9A7E-34AA640BF346}C:\lolete\rads\projects\league_client\releases\0.0.0.177\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{4269C947-ADC1-4A5B-AE75-68A3FB67B99C}C:\lolete\rads\projects\league_client\releases\0.0.0.177\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{2D9D85AA-DF23-4F69-9F86-9CB42FD2AF35}C:\lolete\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{20B7C5F7-78E0-487E-B1F4-424B907D35DF}C:\lolete\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{572AF419-8F23-46B9-A1A1-0F63BAC35F91}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{821B2DC4-2477-4F01-9F3D-24C9634A99BF}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{70E3A655-479E-44CC-8FD1-EA1A14C198B9}C:\lolete\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{D5E5B119-580E-4810-BAC0-AA1950169D9C}C:\lolete\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{7C402880-4FCB-46DD-8673-6173B2099583}C:\lolete\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{D3C7B03B-2224-45CC-8384-FAA82AD2CDE7}C:\lolete\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{04C2BB62-B85E-41B5-B594-C37689652FFB}C:\lolete\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{45083D85-A89D-40E3-A1B4-53623D2ED025}C:\lolete\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C79B71B1-B641-465E-80C3-F3D15AE327B1}C:\lolete\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{6102B586-9E7A-4F81-A33B-BA35D5B7FD75}C:\lolete\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C096731A-89DE-423F-B9F5-354AD8D5D219}E:\program files\rise of the tomb raider - 20 years celebration\rottr.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{8BA1240F-CE97-4A6C-B29B-36ED64657D3C}E:\program files\rise of the tomb raider - 20 years celebration\rottr.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{60921747-231B-48D9-AF3C-28A78132F0C3}C:\lolete\rads\projects\league_client\releases\0.0.0.184\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{84AC3C42-1EB1-41E5-9D48-AB9604D3E7C4}C:\lolete\rads\projects\league_client\releases\0.0.0.184\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{A9CE9A28-287A-4065-9773-F13491253E94}E:\program files\origin\apex\r5apex.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{65897038-8239-4F0D-B115-FE4D5F68F0DE}E:\program files\origin\apex\r5apex.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{A4BF1A5B-C85C-4E3B-81AF-2CE250528210}C:\lolete\rads\projects\league_client\releases\0.0.0.185\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{C60CD3A3-46DD-4034-9087-5CF22F7C947C}C:\lolete\rads\projects\league_client\releases\0.0.0.185\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{68D34A3E-C137-484E-8420-1A53635FDABF}C:\lolete\rads\projects\league_client\releases\0.0.0.186\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{30AE22B2-D52E-4396-A043-4E3F7FCED481}C:\lolete\rads\projects\league_client\releases\0.0.0.186\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{04A275D9-BCBB-4113-A960-752DDAE19818}C:\lolete\rads\projects\league_client\releases\0.0.0.187\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{A3DB9B5F-5245-45C0-AEB8-1C89C5D96666}C:\lolete\rads\projects\league_client\releases\0.0.0.187\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{2AA94F7A-2218-4B02-8AD7-EB2B819524B6}C:\lolete\rads\projects\league_client\releases\0.0.0.188\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{71811CFB-0388-4A3D-BD22-4A0EAE6ECD04}C:\lolete\rads\projects\league_client\releases\0.0.0.188\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{706CD4A8-6F9E-4FCA-A476-0B713ACFAE50}C:\lolete\rads\projects\league_client\releases\0.0.0.189\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{84F7460B-32F0-4295-BA29-630097789F5A}C:\lolete\rads\projects\league_client\releases\0.0.0.189\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{4CC722B5-8D54-4C00-9ED3-1A44FD0FDA7B}C:\lolete\rads\projects\league_client\releases\0.0.0.190\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{90D321EC-8EF9-420A-8CBE-7E12494906DB}C:\lolete\rads\projects\league_client\releases\0.0.0.190\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{906647D5-C9AF-4880-9767-B68DEE3410D2}C:\lolete\rads\projects\league_client\releases\0.0.0.191\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{81ACD6DD-9669-41AB-A189-44A58DCE86F9}C:\lolete\rads\projects\league_client\releases\0.0.0.191\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{BBF7ED20-A60A-4ED1-B635-3DBDD878605C}C:\lolete\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{355DAD0F-420F-4692-85B4-A36DC47E9C9B}C:\lolete\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{1B1CC6FC-D96F-4C9E-BA48-593A0C335C7A}C:\lolete\rads\projects\league_client\releases\0.0.0.193\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{50CD259B-0763-45DA-8DD6-359CF66A11CB}C:\lolete\rads\projects\league_client\releases\0.0.0.193\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{9987B467-4E9F-43A6-A041-3E76325B9B65}C:\lolete\rads\projects\league_client\releases\0.0.0.194\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{CF87993D-699C-4B3E-8517-F3AB7FAE74D4}C:\lolete\rads\projects\league_client\releases\0.0.0.194\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{5AA72578-E5CC-4A17-9400-443A9C990D51}C:\lolete\rads\projects\league_client\releases\0.0.0.195\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{068F3232-99A1-4BB9-A0DD-6999BFE44744}C:\lolete\rads\projects\league_client\releases\0.0.0.195\deploy\leagueclient.exe" => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 210339660 B
Java, Flash, Steam htmlcache => 260019668 B
Windows/system/drivers => 1472382 B
Edge => 10560 B
Chrome => 1777608 B
Firefox => 1091582041 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 76095 B
LocalService => 22302 B
LocalService => 0 B
NetworkService => 0 B
NetworkService => 0 B
Candy Panda => 32509949 B

RecycleBin => 152057220 B
EmptyTemp: => 1.6 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 13:25:50 ====

Share this post


Link to post
Share on other sites

I see that the fix deleted Hober Zoom+ extension of firefox. Is that extension a problem?

 

Apart from that it seems that there is  no another problem... so my pc is clean?

 

Thank you nasdaq.

Share this post


Link to post
Share on other sites

I didn't know that it was a spyware. Thanks for the info.

If you confrim me that my pc is clean, that would be all.

Thank you for all your help.

Share this post


Link to post
Share on other sites

If all is well then your should be good.

Glad we could help.

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.