Archivo .wsf

Hola, buen día.

He recibido un correo con un archivo de extensión .wsf y por desconocimiento lo intenté abrir pero este desaparece al dar doble click, incluyendo el archivo .rar del cual procedía.

Después de ver dicha acción, verifiqué el correo del cual recibí dicho archivo y resultó ser un correo falso.

Quisiera saber si este archivo introdujo algún malware o algo similar a mi equipo.

Gracias.

Hola @Alonso_Rangel

Bienvenido al Foro!!

Realiza lo siguiente:

1.- Desactiva temporalmente tu antivirus y cualquier programa de seguridad.

2.- Descarga, instala y/o actualiza a las siguientes herramientas:

3.- Ejecutas respetando el orden los pasos con todos los programas cerrados incluido los navegadores

CCleaner

Usando su opción Limpiador de acuerdo su Manual:

  • Para borrar Cookies, temporales de Internet y todos los archivos que este te muestre como obsoletos.
  • Cuando lo instales destilda las casillas para no permitir la instalación de Ccleaner Browser/Avast Browser o similar…
  • NO necesitamos este reporte

AdwCleaner

Lo ejecutas.

  • Pulsa en el botón Escanear y espera a que se realice el proceso. Luego pulsa sobre el botón Limpiar.
  • Espera a que se complete. Si te pidiera reiniciar el sistema Aceptas.
  • Guarda el reporte que le aparecerá para copiarlo y pegarlo en tu próxima respuesta.
  • El informe también puede encontrarse en “C:\AdwCleaner\AdwCleaner.txt”

ZHPCleaner

  • Siguiendo su manual, lo instalas y ejecutas. Cuando termine, elimina todo lo que encuentre.

Malwarebytes Versión 4

  • Lo ejecutas siguiendo los pasos de su Manual.
  • Realizas un Análisis de Amenazas
  • Revisa especialmente como salvar el reporte.

4.- Nota Importante:

En tu próxima respuesta debes pegar los reportes de AdwCleaner , ZHPCleaner y Malwarebytes.

Guía: ¿Como Pegar reportes en el Foro?

Nos comentas.

Salu2

# -------------------------------
# Malwarebytes AdwCleaner 8.0.4.0
# -------------------------------
# Build:    04-03-2020
# Database: 2020-04-08.2 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    04-20-2020
# Duration: 00:00:02
# OS:       Windows 10 Home Single Language
# Cleaned:  1
# Failed:   0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

Deleted       cknghehebaconkajgiobncfleofebcog

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [3818 octets] - [20/04/2020 17:29:56]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
~ ZHPCleaner v2020.4.15.192 by Nicolas Coolman (2020/04/15)
~ Run by carlo (Administrator)  (20/04/2020 17:50:02)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Reparar
~ Report : D:\carlo\Escritorio\ZHPCleaner (R).txt
~ Quarantine : C:\Users\carlo\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
~ System Restore Point : OK
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 10 Home Single Language, 64-bit  (Build 18363)


---\\  Alternate Data Stream (ADS). (0)
~ No malintencionados o innecesarios artículos encontrados.


---\\  Servicios (0)
~ No malintencionados o innecesarios artículos encontrados.


---\\  Navegadores de Internet (0)
~ No malintencionados o innecesarios artículos encontrados.


---\\  Hosts carpeta (1)
~ El archivo hosts es legítimo (21)


---\\  Tareas automáticas programadas. (0)
~ No malintencionados o innecesarios artículos encontrados.


---\\  Explorador ( Archivos, Carpetas ) (1)
MOVIDO carpeta: C:\Users\carlo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent Web.lnk  [Bad : C:\Users\carlo\AppData\Roaming\uTorrent Web\utweb.exe](.BitTorrent Inc..)  =>BitTorrent (P2P)


---\\  Registro ( Claves, Valores, Datos) (1)
BORRADOS clave*: [X64] HKLM\SOFTWARE\Classes\CLSID\{63005CD0-8541-439c-A66A-617F4B1F2BCB} [TVWizard Class]  =>Adware.TVWizard


---\\  Resumen de elementos en su estación de trabajo (2)
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/  =>BitTorrent (P2P)
https://nicolascoolman.eu/forum/Topic/tvwizard-logiciel-publicitaire-adware/  =>Adware.TVWizard


---\\ Limpieza adicional. (7)
~ Clave de registro Tracing borrados (7)
~ Quitar los antiguos informes de ZHPCleaner. (0)


---\\ Resultado de la reparación.
~ Reparación llevada a cabo con éxito
~ Google Chrome OK
~ Mozilla Firefox OK
~ Internet Explorer OK


---\\ STATISTIQUES
~ Items escaneado : 3285
~ Items encontrado : 0
~ artículos cancelados : 0
~ Ahorro de espacio (bytes) : 0
~ Items opciones : 8/15


---\\ OPCIONES NO ACTIVAS
~ Análisis temporal de archivos
~ Análisis temporal de carpetas
~ Análisis de CLSID de carpetas vacías
~ Vaciar otro análisis de carpetas
~ Análisis de carpetas locales vacías
~ Análisis de carpetas locales vacías
~ Análisis de archivos de instalación obsoleto





~ End of clean in 00h00mn09s

---\\  Reporte (2)
ZHPCleaner-[S]-20042020-17_46_37.txt
ZHPCleaner-[R]-20042020-17_50_11.txt
Malwarebytes
www.malwarebytes.com

-Detalles del registro-
Fecha del análisis: 20/4/20
Hora del análisis: 17:55
Archivo de registro: fa147224-8359-11ea-8da5-040e3cc4702d.json

-Información del software-
Versión: 4.1.0.56
Versión de los componentes: 1.0.875
Versión del paquete de actualización: 1.0.22710
Licencia: Prueba

-Información del sistema-
SO: Windows 10 (Build 18362.778)
CPU: x64
Sistema de archivos: NTFS
Usuario: LAPTOP-5P0DD8KF\carlo

-Resumen del análisis-
Tipo de análisis: Análisis de amenazas
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 290471
Amenazas detectadas: 3
Amenazas en cuarentena: 3
Tiempo transcurrido: 0 min, 55 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)

Módulo: 1
Malware.Generic.4115063190, C:\USERS\CARLO\APPDATA\ROAMING\GK5FRK2XDL0BFJDD6LEMC\SZEXGRIQHSVTWAXICP.DLL, En cuarentena, 1000000, 0, , , , 

Clave del registro: 0
(No hay elementos maliciosos detectados)

Valor del registro: 0
(No hay elementos maliciosos detectados)

Datos del registro: 0
(No hay elementos maliciosos detectados)

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 0
(No hay elementos maliciosos detectados)

Archivo: 2
Malware.Generic.4115063190, C:\USERS\CARLO\APPDATA\ROAMING\GK5FRK2XDL0BFJDD6LEMC\SZEXGRIQHSVTWAXICP.DLL, En cuarentena, 1000000, 0, 1.0.22710, 75DA3499A5CA249EF546E196, dds, 00685327
PUP.Optional.BundleInstaller, D:\CARLO\DOWNLOADS\UTWEB_INSTALLER.EXE, En cuarentena, 503, 790622, 1.0.22710, , ame, 

Sector físico: 0
(No hay elementos maliciosos detectados)

WMI: 0
(No hay elementos maliciosos detectados)


(end)

Hola @Alonso_Rangel

Realiza lo siguiente:

1.- Análisis del PC con Eset Online Scaner : Manual de Uso lee las instrucciones para salvar el reporte.

2.- Análisis del PC con Kasperky Virus Removal Tool: Manual de Uso

  • Este no da reporte cuando te encuentres, si es que lo hace con alguna infección, tomas una imagen y la subes.

Como subir imágenes al Foro ?

Salu2

22/04/2020 22:59:49
Archivos explorados: 1421611
Archivos detectados: 2
Archivos desinfectados: 2
Tiempo total de exploración 01:10:56
Estado de la exploración: Finalizado


D:\carlo\Downloads\OfficeAct.7z	Win64/HackKMS.O aplicación potencialmente no segura	eliminado
D:\carlo\Downloads\PhotoScapeSetup_V3.7.exe	Win32/Bundled.Toolbar.Google.D aplicación potencialmente no segura	desinfectado por eliminación

Kasperky Virus Removal Tool no detectó ninguna amenaza.

Hola @Alonso_Rangel

Perfecto…:+1:

Realiza lo siguiente:

1.- Desactiva temporalmente tu antivirus y cualquier programa de seguridad.

2.- Descarga Farbar Recovery Scan Tool. en el escritorio, seleccionando la versión adecuada para la arquitectura (32 o 64bits) de su equipo. >> Como saber si mi Windows es de 32 o 64 bits.?

  • Ejecuta FRST.exe.
  • En el mensaje de la ventana del Disclaimer, pulsamos Yes
  • En la ventana principal pulsamos en el botón Scan/Analizar y esperamos a que concluya el proceso.
  • Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.

Guía: Como Ejecutar FRST

3.- En tu próxima respuesta, pega los reportes generados.

Guía : ¿Como Pegar reportes en el Foro?

Esperamos esos reporte.

Salu2

“Mensaje está limitado a 65000 caracteres; has ingresado 111709.”

Hola.

Solo entro para comentarte, lo que debes hacer es dividir ese mensaje en dos o más mensajes para que puedas ponerlos. :+1:

Saludos

2 Me gusta
Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 22-04-2020
Ejecutado por carlo (administrador) sobre LAPTOP-5P0DD8KF (HP OMEN by HP Laptop 15-dc1xxx) (23-04-2020 01:08:19)
Ejecutado desde D:\carlo\Escritorio
Perfiles cargados: carlo (Perfiles disponibles: carlo)
Platform: Windows 10 Home Single Language Versión 1909 18363.778 (X64) Idioma: Español (México)
Navegador predeterminado: Chrome
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Conexant Systems LLC -> Conexant Systems LLC.) C:\Windows\System32\CxAudioSvc.exe
(Conexant Systems LLC -> Synaptics Incorporated.) C:\Windows\System32\SynAudSrv.exe
(Discord Inc. -> Discord Inc.) C:\Users\carlo\AppData\Local\Discord\app-0.0.306\Discord.exe <6>
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3>
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\95.4.441\QtWebEngineProcess.exe <2>
(DTS, Inc. -> ) C:\Windows\System32\DTS\PC\APO3x\DTSAPO3Service.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <23>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe
(HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_942053d68a2ba613\x64\TouchpointAnalyticsClientService.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_79c5c41204d03777\x64\AppHelperCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_79c5c41204d03777\x64\NetworkCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_79c5c41204d03777\x64\SysInfoCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_59a0a32410fb19a2\x64\OmenCap.exe
(HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.5.1296.0_x64__v10z8vjag6ke6\HP.JumpStarts.exe
(HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.1.4.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityHost.exe
(HP Inc.) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.11.0_x64__v10z8vjag6ke6\win32\OmenCommandCenterBackground.exe
(HP Inc.) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.11.0_x64__v10z8vjag6ke6\win32\StreamerV2\omen.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\jhi_service.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_05de635879d45aad\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_05de635879d45aad\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_e705c7cb629066f4\IntelCpHDCPSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_e705c7cb629066f4\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_6ca78a08b838e305\RstMwService.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(McAfee, Inc. -> McAfee LLC.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(McAfee, Inc. -> McAfee, LLC) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(McAfee, Inc. -> McAfee, LLC) C:\Windows\System32\mfevtps.exe
(McAfee, LLC -> McAfee, LLC.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe <2>
(McAfee, LLC. -> McAfee, LLC) C:\Program Files\Common Files\McAfee\VSCore_20_1\mcapexe.exe
(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\Common Files\McAfee\CSP\3.4.105.0\McCSPServiceHost.exe
(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHOST.exe
(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\Common Files\McAfee\ModuleCore\ProtectedModuleHost.exe
(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe
(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe
(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\Common Files\McAfee\Platform\MSM\McSmtFwk.exe
(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\McAfee\MfeAV\MfeAVSvc.exe
(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\McAfee\MQS\QcShm.exe
(Mega Limited -> Mega Limited) C:\Users\carlo\AppData\Local\MEGAsync\MEGAsync.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\carlo\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2003.1001.4.0_x64__8wekyb3d8bbwe\app\Xbox.exe <3>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2003.1001.4.0_x64__8wekyb3d8bbwe\app\XboxAppServices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.40.7001.0_x64__8wekyb3d8bbwe\GamingServices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.40.7001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12624.20368.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12624.20368.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12004.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxApp_48.62.6002.0_x64__8wekyb3d8bbwe\XboxApp.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.120.4062.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.120.4062.0_x64__8wekyb3d8bbwe\GameBarFT.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.120.4062.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvhmi.inf_amd64_e115ca539654e4a0\Display.NvContainer\NVDisplay.Container.exe <2>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(REITSUPER ESTATE LLC -> ) C:\Users\carlo\AppData\Roaming\GK5Frk2XdL0bfJDd6leMC\whrrZYvRa.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [RtkAudUService] => C:\windows\System32\RtkAudUService64.exe [878368 2019-06-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6287872 2020-04-14] (Dropbox, Inc -> Dropbox, Inc.)
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [1114624 2019-05-31] (HP Inc.) [Archivo no firmado]
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\Run: [Discord] => C:\Users\carlo\AppData\Local\Discord\app-0.0.306\Discord.exe [90950968 2020-02-24] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\Run: [Parsec.App.0] => C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_9.6.9.0_x64__v10z8vjag6ke6\win32\Streamer\omen.exe app_silent=1
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3371296 2020-04-03] (Valve -> Valve Corporation)
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\Run: [Overwolf] => D:\Archivos de programa\Overwolf\OverwolfLauncher.exe [1749848 2020-03-14] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\Run: [utweb] => C:\Users\carlo\AppData\Roaming\uTorrent Web\utweb.exe [5415128 2019-12-19] (Jenkins Win Client Build SPC -> BitTorrent Inc.) [Archivo no firmado]
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\Run: [Spotify_Lyrics.NET_Helper_UWP] => D:\carlo\Documents\Spotify Lyrics .NET\Spotify_Lyrics.NET_Helper_UWP.exe
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22245560 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.122\Installer\chrmstp.exe [2020-04-21] (Google LLC -> Google LLC)
Startup: C:\Users\carlo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\fOCvL1mkuq1ZHFh9.lnk [2020-04-20]
ShortcutTarget: fOCvL1mkuq1ZHFh9.lnk -> C:\Users\carlo\AppData\Roaming\GK5Frk2XdL0bfJDd6leMC\whrrZYvRa.exe (REITSUPER ESTATE LLC -> )
Startup: C:\Users\carlo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2020-02-09]
ShortcutTarget: MEGAsync.lnk -> C:\Users\carlo\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited)

==================== Tareas programadas (Lista blanca) ============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {1C232E5E-8B73-45F5-951E-5EEBD4785C96} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18227896 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {1F5B1C5D-2724-4FFE-A65A-ABE686BB97E6} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {27B268CB-2A56-40EA-881E-F6DC6887E615} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4A278173-4412-41F4-9473-9D9EBB9F33DC} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4CC57652-BC1A-4A30-9558-DB7CE6DAF394} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3293168 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5C716D79-F45C-42A3-BF16-4E13B003116E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {63EBFF4F-C1D7-4061-88CC-BE8FA488827C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-01-25] (Google LLC -> Google LLC)
Task: {7DFAAB01-0FA2-4149-9DE2-D90F9DFB3E15} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158568 2020-04-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {7EFA0FAE-E574-409A-8426-1866313CA63E} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent => {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1072312 2020-02-04] (McAfee, LLC. -> McAfee, LLC.)
Task: {80B5177E-4E96-4538-B8BF-814C75883B4F} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {82C11A7A-BC30-4A33-993F-9DED8227CFBE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6147496 2020-04-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {888EFB28-5639-4D9B-B4E6-81359C74FEAB} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat [862 2019-04-30] () [Archivo no firmado]
Task: {8D03B2EB-2DFF-4B25-9CA5-60D144DC6049} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24702832 2020-04-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {91E3B185-BBBD-47CE-B04E-7B8F50EE8896} - System32\Tasks\Overwolf Updater Task => D:\Archivos de programa\Overwolf\OverwolfUpdater.exe [2463064 2020-03-14] (Overwolf Ltd -> Overwolf LTD)
"C:\Windows\System32\Tasks\McAfee\McAfee Idle Detection Task" fue desbloqueado. <==== ATENCIÓN
Task: {967B2E8E-9449-40B1-B1AC-1BCD4DDD610C} - System32\Tasks\McAfee\McAfee Idle Detection Task => {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1072312 2020-02-04] (McAfee, LLC. -> McAfee, LLC.)
Task: {9884E6D8-4957-4F90-94D5-3C80118C6118} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe [761424 2020-02-05] (McAfee, LLC. -> McAfee, LLC.)
Task: {A076BB83-688C-4A46-B500-5F3EA6E5E5B1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1099640 2020-01-28] (HP Inc. -> HP Inc.)
Task: {B8D061C6-2DF6-4C38-A391-D9422DBCB7CE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-01-25] (Google LLC -> Google LLC)
Task: {BA624B3C-13A0-480D-9994-9F8A7E8C1C50} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\1.4.134\DADUpdater.exe [4147336 2020-03-20] (McAfee, Inc. -> McAfee, LLC)
Task: {C85E44CD-38EE-4845-98D9-C3F01DB078C9} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158568 2020-04-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {CDF065FB-E653-46AB-8AF1-BA08D52522B4} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CE7BC382-A85A-4901-8982-38196D4B58B3} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DAA0266F-456A-488A-8ED8-10974805D985} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DB517789-3617-4F81-A594-5069A44F164E} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1644984 2018-07-18] (HP Inc. -> HP Inc.)
Task: {DD0AA089-85C9-40CD-A0A9-E8B5A9F2DFA8} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DD58DF78-86EF-4E3D-AB44-91E7D8D23DE9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1099640 2020-01-28] (HP Inc. -> HP Inc.)
Task: {DD89E7DE-8FC3-45D9-B52A-11DFDEAA820A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [147320 2020-01-28] (HP Inc. -> HP Inc.)
Task: {DDD5AB47-07D0-4F97-B8D3-9646811C1B36} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6147496 2020-04-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {E5F4C820-666A-4D02-8963-DC0EA7C9D852} - System32\Tasks\HP\Consent Manager Launcher => sc start hptouchpointanalyticsservice
Task: {EA5F632E-F9BB-4CD5-B318-5CEEA33CDC32} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {F25ABA73-227E-4C1B-96AC-54CE8AA543FD} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-01-25] (Dropbox, Inc -> Dropbox, Inc.)
Task: {F724A0A9-D147-4862-9809-8E652489B9BB} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-01-25] (Dropbox, Inc -> Dropbox, Inc.)
Task: {F77FA252-2ABE-475D-9F94-437393F57FDE} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F8453BF0-B47A-4857-B9CD-A3998ED6AFC9} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24702832 2020-04-10] (Microsoft Corporation -> Microsoft Corporation)

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)

Task: C:\windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Tcpip\Parameters: [DhcpNameServer] 10.0.184.141 189.198.222.137 200.52.196.196
Tcpip\..\Interfaces\{0b2736e5-f0aa-48cf-a149-a3693eb69964}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{0b2736e5-f0aa-48cf-a149-a3693eb69964}: [DhcpNameServer] 10.0.184.141 189.198.222.137 200.52.196.196
Tcpip\..\Interfaces\{70d3fde1-5dd6-4029-a7da-b6ce3a364851}: [DhcpNameServer] 10.0.184.141 189.198.222.137 200.52.196.196

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://micomenzar.toshiba.com
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2020-01-28] (HP Inc. -> HP Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-01-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2020-04-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2020-01-28] (HP Inc. -> HP Inc.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-04-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-04-09] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-04-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-04-09] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-04-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-04-09] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-04-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-04-09] (Microsoft Corporation -> Microsoft Corporation)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\McAfee\MSC\McSnIePl64.dll [2020-02-05] (McAfee, LLC. -> McAfee, LLC.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files (x86)\McAfee\MSC\McSnIePl.dll [2020-02-05] (McAfee, LLC. -> McAfee, LLC.)

FireFox:
========
FF DefaultProfile: r2cptqjb.default
FF ProfilePath: C:\Users\carlo\AppData\Roaming\Mozilla\Firefox\Profiles\r2cptqjb.default [2020-02-12]
FF ProfilePath: C:\Users\carlo\AppData\Roaming\Mozilla\Firefox\Profiles\33c1frqf.default-release [2020-04-23]
FF HKLM\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\McAfee\MSKHKLM => no encontrado
FF HKLM-x32\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\McAfee\MSK
FF Extension: (McAfee Anti-Spam Thunderbird Extension) - C:\Program Files\McAfee\MSK [2020-03-03] [Heredado] [no firmado]
FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\McAfee\MSC\npMcSnFFPl64.dll [2020-02-05] (McAfee, LLC. -> )
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> D:\Archivos de programa\Nueva carpeta\VLC\npvlc.dll [Ningún archivo]
FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\MSC\npMcSnFFPl.dll [2020-02-05] (McAfee, LLC. -> )
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-01-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-03-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1669855820-2084828274-340432298-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\carlo\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-04-03] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default [2020-04-23]
CHR Notifications: Default -> hxxps://forospyware.com; hxxps://messages.google.com; hxxps://www.youtube.com
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchURL: Default -> hxxps://www.gstatic.com/youtube/media/ytm/images/applauncher/music_icon_48x48.png
CHR Session Restore: Default -> está habilitado.
CHR Extension: (Presentaciones) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-01-25]
CHR Extension: (Web Video Downloader) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\adahebendgkgacfmpnmoddebbnfpfkcd [2020-02-12]
CHR Extension: (Safe Torrent Scanner) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2020-02-05]
CHR Extension: (Documentos) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-01-25]
CHR Extension: (Google Drive) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-01-25]
CHR Extension: (Turn Off the Lights) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn [2020-03-21]
CHR Extension: (AdGuard AdBlocker) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2020-04-15]
CHR Extension: (MEGA) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2020-04-16]
CHR Extension: (YouTube) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-01-25]
CHR Extension: (DownAlbum) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgjnhhjpfcdhbhlcmmjppicjmgfkppok [2020-04-12]
CHR Extension: (YouTube Music) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cinhimbnkkaeohfgghhklpknlkffjgod [2020-01-27]
CHR Extension: (uBlock Origin) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2020-04-22]
CHR Extension: (Tampermonkey) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2020-01-25]
CHR Extension: (Adobe Acrobat) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-03-07]
CHR Extension: (Video Downloader professional) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2020-01-25]
CHR Extension: (Photo Zoom for Facebook) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi [2020-01-25]
CHR Extension: (Hojas de cálculo) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-01-25]
CHR Extension: (Letras.mus.br) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\flhkjkdhoffhpbnenjlmahnkjcpfbddh [2020-01-25]
CHR Extension: (Escritorio Remoto de Chrome) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2020-01-25]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-20]
CHR Extension: (AdBlock: el mejor bloqueador de anuncios) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-04-15]
CHR Extension: (Botón de Google Académico) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldipcbpaocekfooobnbcddclnhejkcpn [2020-01-25]
CHR Extension: (Webcam Toy) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfbgimoladefibpklnfmkpknadbklade [2020-01-25]
CHR Extension: (Servicio cashback Letyshops) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\lphicbbhfmllgmomkkhjfkpbdlncafbn [2020-04-22]
CHR Extension: (Captura de página completa - FireShot) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbpblocgmgfnpjjppndjkmgjaogfceg [2020-01-25]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-01-25]
CHR Extension: (Scopus Document Download Manager) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojplelelocihfchkdaebocpankipadmp [2020-01-25]
CHR Extension: (Netflix Party) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\oocalimimngaihdkbihfgmpkcpnmlaoa [2020-04-17]
CHR Extension: (Gmail) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-01-25]
CHR Extension: (Chrome Media Router) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-22]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [10626648 2020-04-10] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-01-25] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-01-25] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\windows\system32\DbxSvc.exe [44552 2020-04-14] (Dropbox, Inc -> Dropbox, Inc.)
R2 DTSAPO3Service; C:\windows\System32\DTS\PC\APO3x\DTSAPO3Service.exe [223640 2019-09-03] (DTS, Inc. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-11-12] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 esifsvc; C:\windows\System32\Intel\DPTF\esif_uf.exe [1883104 2019-01-24] (Intel Corporation -> Intel Corporation)
R2 GameInput; C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe [48776 2020-04-07] (Microsoft Corporation -> Microsoft Corporation)
R2 GamingServices; C:\Program Files\WindowsApps\Microsoft.GamingServices_2.40.7001.0_x64__8wekyb3d8bbwe\GamingServices.exe [46008 2020-04-14] (Microsoft Corporation -> Microsoft Corporation)
R2 GamingServicesNet; C:\Program Files\WindowsApps\Microsoft.GamingServices_2.40.7001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe [46008 2020-04-14] (Microsoft Corporation -> Microsoft Corporation)
S4 HfcDisableService; C:\windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_6ca78a08b838e305\HfcDisableService.exe [1883856 2019-07-19] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [1321096 2018-09-28] (HP Inc. -> HP Inc.)
R2 HPAppHelperCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_79c5c41204d03777\x64\AppHelperCap.exe [515344 2020-03-27] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_79c5c41204d03777\x64\NetworkCap.exe [514320 2020-03-27] (HP Inc. -> HP Inc.)
R2 HPOmenCap; C:\windows\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_59a0a32410fb19a2\x64\OmenCap.exe [502544 2020-02-05] (HP Inc. -> HP Inc.)
R2 HPSysInfoCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_79c5c41204d03777\x64\SysInfoCap.exe [516880 2020-03-27] (HP Inc. -> HP Inc.)
R2 HpTouchpointAnalyticsService; C:\windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_942053d68a2ba613\x64\TouchpointAnalyticsClientService.exe [429008 2019-10-31] (HP Inc. -> HP Inc.)
S3 iaStorAfsService; C:\windows\System32\iaStorAfsService.exe [2873552 2019-07-19] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R2 ibtsiva; C:\windows\System32\ibtsiva.exe [536864 2020-01-06] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_34687bf44d0a152a\lib\SocketHeciServer.exe [873232 2019-03-13] (Intel(R) Trust Services -> Intel(R) Corporation)
S2 Intel(R) TPM Provisioning Service; C:\windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_34687bf44d0a152a\lib\TPMProvisioningService.exe [792848 2019-03-13] (Intel(R) Trust Services -> Intel(R) Corporation)
R2 jhi_service; C:\windows\System32\jhi_service.exe [648184 2019-03-13] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-04-20] (Malwarebytes Inc -> Malwarebytes)
R2 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_20_1\McApExe.exe [758864 2020-02-05] (McAfee, LLC. -> McAfee, LLC)
S3 McAWFwk; c:\program files\common files\McAfee\ActWiz\McAWFwk.exe [458688 2018-11-14] (McAfee, Inc. -> McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\3.4.105.0\\McCSPServiceHost.exe [2687856 2020-01-25] (McAfee, LLC. -> McAfee, LLC.)
S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [639048 2020-01-09] (McAfee, Inc. -> McAfee, LLC)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [639048 2020-01-09] (McAfee, Inc. -> McAfee, LLC)
R3 mfevtp; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [639048 2020-01-09] (McAfee, Inc. -> McAfee, LLC)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1737992 2020-02-06] (McAfee, LLC -> McAfee, LLC.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OverwolfUpdater; D:\Archivos de programa\Overwolf\OverwolfUpdater.exe [2463064 2020-03-14] (Overwolf Ltd -> Overwolf LTD)
R2 PEFService; C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe [1373912 2020-02-04] (McAfee, LLC. -> McAfee, LLC.)
R2 RstMwService; C:\windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_6ca78a08b838e305\RstMwService.exe [2158800 2019-07-19] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R2 RtkAudioUniversalService; C:\windows\System32\RtkAudUService64.exe [878368 2019-06-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
R2 SynaAPOService; C:\windows\System32\SynAudSrv.exe [586552 2019-06-03] (Conexant Systems LLC -> Synaptics Incorporated.)
R2 SynaAudioService; C:\windows\System32\CxAudioSvc.exe [74832 2019-06-03] (Conexant Systems LLC -> Conexant Systems LLC.)
R2 SynTPEnhService; C:\windows\System32\SynTPEnhService.exe [381784 2019-08-21] (Synaptics Incorporated -> Synaptics Incorporated)
S3 uncheater_bgl; C:\Program Files\Common Files\Uncheater\uncheater_bgl.exe [2097008 2020-01-30] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-18] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-18] (Microsoft Corporation -> Microsoft Corporation)
R2 XTU3SERVICE; C:\windows\SysWow64\XTUService.exe [26416 2019-05-06] (Intel Corporation -> Intel(R) Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\windows\System32\DriverStore\FileRepository\nvhmi.inf_amd64_e115ca539654e4a0\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\windows\System32\DriverStore\FileRepository\nvhmi.inf_amd64_e115ca539654e4a0\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S3 Origin Client Service; "C:\Program Files (x86)\Origin\OriginClientService.exe" [X]
S2 Origin Web Helper Service; "C:\Program Files (x86)\Origin\OriginWebHelperService.exe" [X]

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R3 Accelerometer; C:\windows\System32\drivers\Accelerometer.sys [53888 2018-11-30] (HP Inc. -> HP)
S3 BthA2dp; C:\windows\System32\drivers\BthA2dp.sys [231936 2020-01-26] (Microsoft Corporation) [Archivo no firmado]
R3 cfwids; C:\windows\System32\drivers\cfwids.sys [75896 2020-01-15] (McAfee, Inc. -> McAfee, LLC)
R3 dptf_acpi; C:\windows\System32\drivers\dptf_acpi.sys [78832 2019-01-24] (Intel Corporation -> Intel Corporation)
R3 dptf_cpu; C:\windows\System32\drivers\dptf_cpu.sys [75248 2019-01-24] (Intel Corporation -> Intel Corporation)
R3 esif_lf; C:\windows\System32\drivers\esif_lf.sys [403440 2019-01-24] (Intel Corporation -> Intel Corporation)
R1 ESProtectionDriver; C:\windows\system32\drivers\mbae64.sys [153312 2020-04-20] (Malwarebytes Corporation -> Malwarebytes)
R3 gameflt; C:\windows\System32\DriverStore\FileRepository\gameflt.inf_amd64_158653e0522d616e\gameflt.sys [71000 2020-04-14] (Microsoft Windows -> Microsoft Corporation)
S3 HipShieldK; C:\windows\System32\drivers\HipShieldK.sys [217912 2019-06-04] (McAfee, LLC -> McAfee, Inc.)
R3 HPCustomCapDriver; C:\windows\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_1f5602eb8a12ac4c\x64\hpcustomcapdriver.sys [25024 2019-04-18] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.)
R0 hpdskflt; C:\windows\System32\drivers\hpdskflt.sys [41088 2018-11-30] (HP Inc. -> HP)
R3 HPOmenCustomCapDriver; C:\windows\System32\DriverStore\FileRepository\hpomencustomcapdriver.inf_amd64_326f2e1d16385daf\x64\hpomencustomcapdriver.sys [23888 2019-05-03] (HP Inc. -> HP Inc.)
R0 iaStorAC; C:\windows\System32\drivers\iaStorAC.sys [1036496 2019-07-19] (Intel(R) Rapid Storage Technology -> Intel Corporation)
S3 iaStorAfs; C:\windows\System32\drivers\iaStorAfs.sys [75472 2019-07-19] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R3 ibtusb; C:\windows\System32\DriverStore\FileRepository\ibtusb.inf_amd64_dcab122dcfed2102\ibtusb.sys [16960288 2020-01-06] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R2 MBAMChameleon; C:\windows\System32\Drivers\MbamChameleon.sys [214496 2020-04-20] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\windows\System32\DRIVERS\MbamElam.sys [20936 2020-04-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\windows\System32\DRIVERS\farflt.sys [195432 2020-04-20] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\windows\system32\DRIVERS\mbam.sys [73584 2020-04-22] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\windows\System32\Drivers\mbamswissarmy.sys [248968 2020-04-20] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\windows\system32\DRIVERS\mwac.sys [124560 2020-04-20] (Malwarebytes Inc -> Malwarebytes)
R3 mfeaack; C:\windows\System32\drivers\mfeaack.sys [527272 2020-01-15] (McAfee, Inc. -> McAfee, LLC)
R3 mfeavfk; C:\windows\System32\drivers\mfeavfk.sys [380840 2020-01-15] (McAfee, Inc. -> McAfee, LLC)
S0 mfeelamk; C:\windows\System32\drivers\mfeelamk.sys [85920 2020-01-15] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, LLC)
R3 mfefirek; C:\windows\System32\drivers\mfefirek.sys [521128 2020-01-15] (McAfee, Inc. -> McAfee, LLC)
R0 mfehidk; C:\windows\System32\drivers\mfehidk.sys [997800 2020-01-15] (McAfee, Inc. -> McAfee, LLC)
R3 mfencbdc; C:\windows\System32\DRIVERS\mfencbdc.sys [594360 2019-12-23] (McAfee, Inc. -> McAfee LLC.)
S3 mfencrk; C:\windows\System32\DRIVERS\mfencrk.sys [107960 2019-12-23] (McAfee, Inc. -> McAfee LLC.)
R3 mfeplk; C:\windows\System32\drivers\mfeplk.sys [116856 2020-01-15] (McAfee, Inc. -> McAfee, LLC)
R0 mfewfpk; C:\windows\System32\drivers\mfewfpk.sys [252328 2020-01-15] (McAfee, Inc. -> McAfee, LLC)
S3 Netwtw06; C:\windows\System32\drivers\Netwtw06.sys [8723968 2019-03-18] (Microsoft Windows -> Intel Corporation)
R3 Netwtw08; C:\windows\System32\drivers\Netwtw08.sys [9278240 2019-09-05] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R1 npcap; C:\windows\system32\DRIVERS\npcap.sys [69744 2019-12-17] (Insecure.Com LLC -> Insecure.Com LLC.)
S4 npcap_wifi; C:\windows\system32\DRIVERS\npcap.sys [69744 2019-12-17] (Insecure.Com LLC -> Insecure.Com LLC.)
R3 nvlddmkm; C:\windows\System32\DriverStore\FileRepository\nvhmi.inf_amd64_e115ca539654e4a0\nvlddmkm.sys [23439288 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2020-03-31] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\windows\system32\drivers\nvvad64v.sys [69840 2019-06-03] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\windows\System32\drivers\nvvhci.sys [67456 2020-03-11] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\windows\System32\drivers\rt640x64.sys [1131024 2019-04-24] (Realtek Semiconductor Corp. -> Realtek )
R1 rtf64; C:\windows\system32\DRIVERS\rtf64x64.sys [70560 2018-09-03] (Realtek Semiconductor Corp. -> Realtek)
R3 RTSPER; C:\windows\System32\drivers\RtsPer.sys [1002920 2019-05-07] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)
S3 SmbDrv; C:\windows\System32\drivers\Smb_driver_AMDASF.sys [39856 2019-05-17] (Synaptics Incorporated -> Synaptics Incorporated)
R3 SmbDrvI; C:\windows\System32\drivers\Smb_driver_Intel.sys [48984 2019-08-21] (Synaptics Incorporated -> Synaptics Incorporated)
R3 ViGEmBus; C:\windows\System32\DriverStore\FileRepository\vigembus.inf_amd64_8a927fc43d8a7838\x64\ViGEmBus.sys [82840 2019-04-23] (HP Inc. -> Benjamin Hoeglinger-Stelzer)
S3 WdBoot; C:\windows\system32\drivers\WdBoot.sys [46472 2019-03-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\windows\system32\drivers\WdFilter.sys [333784 2019-03-18] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\windows\System32\Drivers\WdNisDrv.sys [62432 2019-03-18] (Microsoft Windows -> Microsoft Corporation)
R3 WinRing0_1_2_0; C:\windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_942053d68a2ba613\x64\OpenHardwareMonitorLib.sys [14544 2020-04-22] (Noriyuki MIYAZAKI -> OpenLibSys.org)
R3 WirelessButtonDriver64; C:\windows\System32\drivers\WirelessButtonDriver64.sys [35600 2019-02-06] (HP Inc. -> HP)
S3 xhunter1; C:\windows\xhunter1.sys [2740480 2020-04-14] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 XtuAcpiDriver; C:\windows\System32\drivers\XtuAcpiDriver.sys [54928 2019-05-06] (Intel Corporation -> Intel Corporation)
R3 XTUComponent; C:\windows\System32\drivers\iocbios2.sys [38280 2019-05-06] (Intel Corporation -> Intel Corporation)
R3 Xvdd; C:\windows\System32\DriverStore\FileRepository\xvdd.inf_amd64_7c3edb5ea11185bb\xvdd.sys [497000 2020-04-14] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)


==================== Un mes (creado) ===================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-04-23 01:07 - 2020-04-23 01:08 - 000000000 ____D C:\FRST
2020-04-22 23:02 - 2020-04-22 23:02 - 000478392 ____N (Kaspersky Lab ZAO) C:\windows\system32\Drivers\77822393.sys
2020-04-22 23:02 - 2020-04-22 23:02 - 000085600 ____N (Kaspersky Lab ZAO) C:\windows\system32\Drivers\93860453.sys
2020-04-22 23:02 - 2020-04-22 23:02 - 000000000 ____D C:\KVRT_Data
2020-04-22 21:42 - 2020-04-22 21:42 - 000000672 _____ C:\Users\carlo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2020-04-22 21:42 - 2020-04-22 21:42 - 000000000 ____D C:\Users\carlo\AppData\Local\ESET
2020-04-22 20:12 - 2020-04-22 20:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2020-04-22 12:03 - 2020-04-22 12:03 - 000000000 ___HD C:\OneDriveTemp
2020-04-21 20:00 - 2020-04-21 20:35 - 000000000 ____D C:\Users\carlo\AppData\Roaming\slobs-client
2020-04-21 20:00 - 2020-04-21 20:04 - 000000000 ____D C:\Users\carlo\AppData\Roaming\obs-studio-node-server
2020-04-21 20:00 - 2020-04-21 20:00 - 000001099 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Streamlabs OBS.lnk
2020-04-21 20:00 - 2020-04-21 20:00 - 000001099 _____ C:\ProgramData\Escritorio\Streamlabs OBS.lnk
2020-04-21 20:00 - 2020-04-21 20:00 - 000000000 ____D C:\Users\carlo\AppData\Roaming\slobs-plugins
2020-04-21 20:00 - 2020-04-21 20:00 - 000000000 ____D C:\Users\carlo\AppData\Local\slobs-client-updater
2020-04-20 17:58 - 2020-04-22 12:02 - 000073584 _____ (Malwarebytes) C:\windows\system32\Drivers\mbam.sys
2020-04-20 17:58 - 2020-04-20 17:58 - 000195432 _____ (Malwarebytes) C:\windows\system32\Drivers\farflt.sys
2020-04-20 17:58 - 2020-04-20 17:58 - 000124560 _____ (Malwarebytes) C:\windows\system32\Drivers\mwac.sys
2020-04-20 17:32 - 2020-04-20 17:58 - 000248968 _____ (Malwarebytes) C:\windows\system32\Drivers\mbamswissarmy.sys
2020-04-20 17:32 - 2020-04-20 17:32 - 000214496 _____ (Malwarebytes) C:\windows\system32\Drivers\MbamChameleon.sys
2020-04-20 17:25 - 2020-04-20 17:33 - 000000000 ____D C:\ProgramData\AVAST Software
2020-04-20 17:25 - 2020-04-20 17:33 - 000000000 ____D C:\Program Files\AVAST Software
2020-04-20 17:25 - 2020-04-20 17:25 - 000003936 _____ C:\windows\system32\Tasks\CCleaner Update
2020-04-20 17:25 - 2020-04-20 17:25 - 000002888 _____ C:\windows\system32\Tasks\CCleanerSkipUAC
2020-04-20 17:25 - 2020-04-20 17:25 - 000000870 _____ C:\ProgramData\Escritorio\CCleaner.lnk
2020-04-20 17:25 - 2020-04-20 17:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-04-20 17:25 - 2020-04-20 17:25 - 000000000 ____D C:\Program Files\CCleaner
2020-04-20 17:24 - 2020-04-20 17:50 - 000000000 ____D C:\Users\carlo\AppData\Roaming\ZHP
2020-04-20 17:24 - 2020-04-20 17:31 - 000000000 ____D C:\AdwCleaner
2020-04-20 17:24 - 2020-04-20 17:24 - 000000000 ____D C:\Users\carlo\AppData\Local\ZHP
2020-04-20 17:23 - 2020-04-20 17:23 - 000000000 ____D C:\Users\carlo\AppData\Local\mbam
2020-04-20 17:22 - 2020-04-20 17:22 - 000153312 _____ (Malwarebytes) C:\windows\system32\Drivers\mbae64.sys
2020-04-20 17:22 - 2020-04-20 17:22 - 000020936 _____ (Malwarebytes) C:\windows\system32\Drivers\MbamElam.sys
2020-04-20 17:22 - 2020-04-20 17:22 - 000002028 _____ C:\ProgramData\Escritorio\Malwarebytes.lnk
2020-04-20 17:22 - 2020-04-20 17:22 - 000000000 ____D C:\Users\carlo\AppData\Local\mbamtray
2020-04-20 17:22 - 2020-04-20 17:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2020-04-20 17:22 - 2020-04-20 17:22 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-04-20 17:22 - 2020-04-20 17:22 - 000000000 ____D C:\Program Files\Malwarebytes
2020-04-20 12:33 - 2020-04-20 17:58 - 000000000 ____D C:\Users\carlo\AppData\Roaming\GK5Frk2XdL0bfJDd6leMC
2020-04-17 11:57 - 2020-04-17 11:58 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2020-04-16 18:32 - 2020-04-16 18:32 - 000000937 _____ C:\ProgramData\Escritorio\Call of Duty Modern Warfare.lnk
2020-04-16 18:32 - 2020-04-16 18:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Call of Duty Modern Warfare
2020-04-16 13:44 - 2020-04-16 13:44 - 000000000 ____D C:\Users\carlo\AppData\LocalLow\Intel
2020-04-16 13:43 - 2020-03-10 06:46 - 021460848 _____ (Intel Corporation) C:\windows\system32\libmfxhw64.dll
2020-04-16 13:43 - 2020-03-10 06:46 - 020356720 _____ (Intel Corporation) C:\windows\SysWOW64\libmfxhw32.dll
2020-04-16 13:43 - 2020-03-10 06:46 - 003219784 _____ (Intel Corporation) C:\windows\system32\mfx_mft_h265ve_64.dll
2020-04-16 13:43 - 2020-03-10 06:46 - 003212936 _____ (Intel Corporation) C:\windows\system32\mfx_mft_vp9ve_64.dll
2020-04-16 13:43 - 2020-03-10 06:46 - 003199336 _____ (Intel Corporation) C:\windows\system32\mfx_mft_h264ve_64.dll
2020-04-16 13:43 - 2020-03-10 06:46 - 002996096 _____ (Intel Corporation) C:\windows\system32\mfx_mft_encrypt_64.dll
2020-04-16 13:43 - 2020-03-10 06:46 - 002606216 _____ (Intel Corporation) C:\windows\SysWOW64\mfx_mft_h265ve_32.dll
2020-04-16 13:43 - 2020-03-10 06:46 - 002601504 _____ (Intel Corporation) C:\windows\SysWOW64\mfx_mft_vp9ve_32.dll
2020-04-16 13:43 - 2020-03-10 06:46 - 002592416 _____ (Intel Corporation) C:\windows\SysWOW64\mfx_mft_h264ve_32.dll
2020-04-16 13:43 - 2020-03-10 06:46 - 002435368 _____ (Intel Corporation) C:\windows\SysWOW64\mfx_mft_encrypt_32.dll
2020-04-16 13:43 - 2020-03-10 06:46 - 000186208 _____ (Intel Corporation) C:\windows\SysWOW64\intel_gfx_api-x86.dll
2020-04-16 13:43 - 2020-03-10 06:45 - 000218720 _____ (Intel Corporation) C:\windows\system32\intel_gfx_api-x64.dll
2020-04-16 13:43 - 2020-03-10 03:45 - 025076752 _____ (Intel Corporation) C:\windows\system32\mfxplugin64_hw.dll
2020-04-16 13:43 - 2020-03-10 03:45 - 011920400 _____ (Intel Corporation) C:\windows\SysWOW64\mfxplugin32_hw.dll
2020-04-16 13:43 - 2020-03-10 03:45 - 003013648 _____ (Intel Corporation) C:\windows\system32\mfx_mft_mjpgvd_64.dll
2020-04-16 13:43 - 2020-03-10 03:45 - 002439184 _____ (Intel Corporation) C:\windows\SysWOW64\mfx_mft_mjpgvd_32.dll
2020-04-16 13:43 - 2020-03-10 03:45 - 001785920 _____ C:\windows\system32\vulkaninfo-1-999-0-0-0.exe
2020-04-16 13:43 - 2020-03-10 03:45 - 001785920 _____ C:\windows\system32\vulkaninfo.exe
2020-04-16 13:43 - 2020-03-10 03:45 - 001376344 _____ C:\windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-04-16 13:43 - 2020-03-10 03:45 - 001376344 _____ C:\windows\SysWOW64\vulkaninfo.exe
2020-04-16 13:43 - 2020-03-10 03:45 - 001079848 _____ C:\windows\system32\vulkan-1-999-0-0-0.dll
2020-04-16 13:43 - 2020-03-10 03:45 - 001079848 _____ C:\windows\system32\vulkan-1.dll
2020-04-16 13:43 - 2020-03-10 03:45 - 000939536 _____ C:\windows\SysWOW64\vulkan-1-999-0-0-0.dll
2020-04-16 13:43 - 2020-03-10 03:45 - 000939536 _____ C:\windows\SysWOW64\vulkan-1.dll
2020-04-16 13:43 - 2020-03-10 03:45 - 000126480 _____ (Khronos Group) C:\windows\system32\OpenCL.dll
2020-04-16 13:43 - 2020-03-10 03:45 - 000111632 _____ (Khronos Group) C:\windows\SysWOW64\OpenCL.dll
2020-04-16 13:43 - 2020-03-10 03:26 - 000072305 _____ C:\windows\SysWOW64\h265e_32.vp
2020-04-16 13:43 - 2020-03-10 03:26 - 000071888 _____ C:\windows\SysWOW64\vp9e_32.vp
2020-04-16 13:43 - 2020-03-10 03:26 - 000070721 _____ C:\windows\SysWOW64\he_32.vp
2020-04-16 13:43 - 2020-03-10 03:26 - 000066153 _____ C:\windows\SysWOW64\mj_32.vp
2020-04-16 13:43 - 2020-03-10 03:26 - 000057143 _____ C:\windows\SysWOW64\dev_32.vp
2020-04-16 13:43 - 2020-03-10 03:26 - 000056359 _____ C:\windows\system32\dev_64.vp
2020-04-16 13:43 - 2020-03-10 03:26 - 000014145 _____ C:\windows\system32\h265e_64.vp
2020-04-16 13:43 - 2020-03-10 03:26 - 000013996 _____ C:\windows\system32\vp9e_64.vp
2020-04-16 13:43 - 2020-03-10 03:26 - 000013589 _____ C:\windows\system32\he_64.vp
2020-04-16 13:43 - 2020-03-10 03:26 - 000013309 _____ C:\windows\system32\mj_64.vp
2020-04-16 13:43 - 2020-03-10 03:26 - 000001125 _____ C:\windows\SysWOW64\cpa_32.vp
2020-04-16 13:43 - 2020-03-10 03:26 - 000001125 _____ C:\windows\system32\cpa_64.vp
2020-04-16 08:51 - 2020-04-20 11:01 - 000000520 _____ C:\windows\system32\Drivers\etc\hosts.ics
2020-04-15 21:23 - 2020-04-15 21:23 - 000000000 ____D C:\Riot Games
2020-04-15 19:08 - 2020-04-15 19:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2020-04-15 00:54 - 2020-04-15 00:54 - 001870408 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfmp4srcsnk.dll
2020-04-15 00:54 - 2020-04-15 00:54 - 001610240 _____ (Microsoft Corporation) C:\windows\system32\HologramCompositor.dll
2020-04-15 00:54 - 2020-04-15 00:54 - 001013000 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfmpeg2srcsnk.dll
2020-04-15 00:54 - 2020-04-15 00:54 - 000983040 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfmkvsrcsnk.dll
2020-04-15 00:54 - 2020-04-15 00:54 - 000380416 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSFlacDecoder.dll
2020-04-15 00:53 - 2020-04-15 00:54 - 025444352 _____ (Microsoft Corporation) C:\windows\system32\Hydrogen.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 022636544 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 019850240 _____ (Microsoft Corporation) C:\windows\SysWOW64\edgehtml.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 019812864 _____ (Microsoft Corporation) C:\windows\system32\HologramWorld.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 018027520 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 009930552 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 007756800 _____ (Microsoft Corporation) C:\windows\system32\Chakra.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 007604584 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.Protection.PlayReady.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 006523048 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 005910016 _____ (Microsoft Corporation) C:\windows\SysWOW64\Chakra.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 005040640 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 004611584 _____ (Microsoft Corporation) C:\windows\system32\msi.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 004563200 _____ (Microsoft Corporation) C:\windows\system32\sppsvc.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 004538880 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 004129624 _____ (Microsoft Corporation) C:\windows\system32\mfcore.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 003802624 _____ (Microsoft Corporation) C:\windows\system32\diagtrack.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 003729408 _____ (Microsoft Corporation) C:\windows\system32\win32kfull.sys
2020-04-15 00:53 - 2020-04-15 00:53 - 003587384 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2020-04-15 00:53 - 2020-04-15 00:53 - 003512320 _____ (Microsoft Corporation) C:\windows\SysWOW64\msi.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 003109376 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 002951832 _____ (Microsoft Corporation) C:\windows\system32\mfmp4srcsnk.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 002800640 _____ (Microsoft Corporation) C:\windows\system32\WinSAT.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 002800128 _____ (Microsoft Corporation) C:\windows\SysWOW64\win32kfull.sys
2020-04-15 00:53 - 2020-04-15 00:53 - 002767928 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 002717184 _____ (Microsoft Corporation) C:\windows\system32\win32kbase.sys
2020-04-15 00:53 - 2020-04-15 00:53 - 002494744 _____ (Microsoft Corporation) C:\windows\system32\msmpeg2vdec.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 002453504 _____ (Microsoft Corporation) C:\windows\system32\InstallService.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 002180408 _____ (Microsoft Corporation) C:\windows\system32\workfolderssvc.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 002131456 _____ (Microsoft Corporation) C:\windows\system32\WpcDesktopMonSvc.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 002086656 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001999960 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001764336 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecs.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001729024 _____ (Microsoft Corporation) C:\windows\SysWOW64\InstallService.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001697792 _____ (Microsoft Corporation) C:\windows\system32\GdiPlus.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001665216 _____ (Microsoft Corporation) C:\windows\SysWOW64\user32.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001664896 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001656904 _____ (Microsoft Corporation) C:\windows\system32\user32.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001646048 _____ (Microsoft Corporation) C:\windows\system32\gdi32full.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001612800 _____ (Microsoft Corporation) C:\windows\system32\wpncore.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001603584 _____ (Microsoft Corporation) C:\windows\system32\dosvc.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001484384 _____ (Microsoft Corporation) C:\windows\SysWOW64\WindowsCodecs.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001458688 _____ (Microsoft Corporation) C:\windows\SysWOW64\GdiPlus.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001413840 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32full.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001397576 _____ (Microsoft Corporation) C:\windows\system32\hvix64.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 001318912 _____ (Microsoft Corporation) C:\windows\system32\wpnapps.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001310720 _____ (Microsoft Corporation) C:\windows\SysWOW64\msjet40.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001153024 _____ (Microsoft Corporation) C:\windows\system32\windowsperformancerecordercontrol.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001151816 _____ (Microsoft Corporation) C:\windows\system32\mfmpeg2srcsnk.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001077064 _____ (Microsoft Corporation) C:\windows\system32\hvax64.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 001009152 _____ (Microsoft Corporation) C:\windows\SysWOW64\wpnapps.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001008128 _____ (Microsoft Corporation) C:\windows\system32\StorSvc.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000982840 _____ (Microsoft Corporation) C:\windows\system32\winhttp.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000874296 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgmms2.sys
2020-04-15 00:53 - 2020-04-15 00:53 - 000868864 _____ (Microsoft Corporation) C:\windows\SysWOW64\windowsperformancerecordercontrol.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000836608 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000835584 _____ (Microsoft Corporation) C:\windows\system32\WorkfoldersControl.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000822208 _____ (Microsoft Corporation) C:\windows\system32\fontdrvhost.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 000783480 _____ (Microsoft Corporation) C:\windows\system32\tcblaunch.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 000775696 _____ (Microsoft Corporation) C:\windows\system32\securekernel.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 000772096 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv2.sys
2020-04-15 00:53 - 2020-04-15 00:53 - 000768528 _____ (Microsoft Corporation) C:\windows\SysWOW64\winhttp.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000722072 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000701440 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Mirage.Internal.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000686080 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000673464 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontdrvhost.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 000668672 _____ (Microsoft Corporation) C:\windows\system32\wsecedit.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000629760 _____ (Microsoft Corporation) C:\windows\system32\ipnathlp.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000628616 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000595968 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000561464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2020-04-15 00:53 - 2020-04-15 00:53 - 000550400 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2020-04-15 00:53 - 2020-04-15 00:53 - 000532480 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000530432 _____ (Microsoft Corporation) C:\windows\system32\sppcext.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000525312 _____ (Microsoft Corporation) C:\windows\SysWOW64\wsecedit.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000510792 _____ (Microsoft Corporation) C:\windows\system32\wow64win.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000444416 _____ (Microsoft Corporation) C:\windows\system32\MSFlacDecoder.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000441144 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgmms1.sys
2020-04-15 00:53 - 2020-04-15 00:53 - 000420152 _____ (Microsoft Corporation) C:\windows\system32\MSAudDecMFT.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000408064 _____ (Microsoft Corporation) C:\windows\system32\domgmt.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000355840 _____ (Microsoft Corporation) C:\windows\system32\WaaSMedicSvc.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000353792 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrd3x40.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000343552 _____ (Microsoft Corporation) C:\windows\system32\wpr.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 000341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\msexcl40.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000339304 _____ (Microsoft Corporation) C:\windows\system32\Windows.Storage.ApplicationData.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000324096 _____ (Microsoft Corporation) C:\windows\SysWOW64\win32k.sys
2020-04-15 00:53 - 2020-04-15 00:53 - 000285184 _____ (Microsoft Corporation) C:\windows\system32\WaaSMedicCapsule.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000277504 _____ (Microsoft Corporation) C:\windows\system32\scecli.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000268288 _____ (Microsoft Corporation) C:\windows\system32\dot3svc.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000268008 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Storage.ApplicationData.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000265216 _____ (Microsoft Corporation) C:\windows\system32\cdd.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000256000 _____ (Microsoft Corporation) C:\windows\system32\UpdateDeploymentProvider.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000241152 _____ (Microsoft Corporation) C:\windows\SysWOW64\msltus40.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000231936 _____ (Microsoft Corporation) C:\windows\system32\InstallServiceTasks.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000227840 _____ (Microsoft Corporation) C:\windows\system32\IndexedDbLegacy.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000225792 _____ (Microsoft Corporation) C:\windows\system32\WorkFoldersShell.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000214528 _____ (Microsoft Corporation) C:\windows\system32\srumsvc.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000214016 _____ (Microsoft Corporation) C:\windows\SysWOW64\scecli.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000211256 _____ (Microsoft Corporation) C:\windows\system32\tcbloader.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000179712 _____ (Microsoft Corporation) C:\windows\SysWOW64\InstallServiceTasks.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000179712 _____ (Microsoft Corporation) C:\windows\system32\t2embed.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000178176 _____ (Microsoft Corporation) C:\windows\SysWOW64\srumsvc.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000175616 _____ (Microsoft Corporation) C:\windows\SysWOW64\IndexedDbLegacy.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000158720 _____ (Microsoft Corporation) C:\windows\system32\umpo.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000155136 _____ (Microsoft Corporation) C:\windows\system32\Chakradiag.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000139776 _____ (Microsoft Corporation) C:\windows\system32\Chakrathunk.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000138752 _____ (Microsoft Corporation) C:\windows\SysWOW64\t2embed.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000130560 _____ (Microsoft Corporation) C:\windows\system32\StorageUsage.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000129024 _____ (Microsoft Corporation) C:\windows\system32\UtcDecoderHost.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 000127280 _____ (Microsoft Corporation) C:\windows\system32\win32u.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000125952 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000117248 _____ (Microsoft Corporation) C:\windows\SysWOW64\Chakradiag.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000105984 _____ (Microsoft Corporation) C:\windows\system32\utcutil.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000105472 _____ (Microsoft Corporation) C:\windows\SysWOW64\Chakrathunk.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000105472 _____ (Microsoft Corporation) C:\windows\system32\WorkFolders.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 000103936 _____ (Microsoft Corporation) C:\windows\system32\dot3msm.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000099328 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontsub.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000092160 _____ (Microsoft Corporation) C:\windows\system32\dot3api.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000089336 _____ (Microsoft Corporation) C:\windows\SysWOW64\win32u.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000089088 _____ (Microsoft Corporation) C:\windows\system32\WaaSMedicAgent.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 000087552 _____ (Microsoft Corporation) C:\windows\SysWOW64\dot3api.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000087040 _____ (Microsoft Corporation) C:\windows\SysWOW64\dot3msm.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000063488 _____ (Microsoft Corporation) C:\windows\system32\srumapi.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000060928 _____ (Microsoft Corporation) C:\windows\system32\mf3216.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000058880 _____ C:\windows\system32\runexehelper.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 000057856 _____ (Microsoft Corporation) C:\windows\system32\wups2.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\srumapi.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000047000 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 000046080 _____ (Microsoft Corporation) C:\windows\SysWOW64\mf3216.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000043008 _____ (Microsoft Corporation) C:\windows\system32\WiredNetworkCSP.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000033792 _____ (Microsoft Corporation) C:\windows\system32\sxssrv.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000028672 _____ (Microsoft Corporation) C:\windows\system32\WaaSMedicPS.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000026112 _____ (Microsoft Corporation) C:\windows\SysWOW64\msimsg.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000026112 _____ (Microsoft Corporation) C:\windows\system32\msimsg.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000017920 _____ (Microsoft Corporation) C:\windows\system32\icsunattend.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 000014336 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000012288 _____ (Microsoft Corporation) C:\windows\system32\pacjsworker.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 000011776 _____ (Microsoft Corporation) C:\windows\SysWOW64\dciman32.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000008192 _____ (Microsoft Corporation) C:\windows\system32\msimg32.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\msimg32.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000003072 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000002560 _____ (Microsoft Corporation) C:\windows\SysWOW64\lpk.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000000315 _____ C:\windows\system32\DrtmAuth9.bin
2020-04-15 00:53 - 2020-04-15 00:53 - 000000315 _____ C:\windows\system32\DrtmAuth8.bin
2020-04-15 00:53 - 2020-04-15 00:53 - 000000315 _____ C:\windows\system32\DrtmAuth7.bin
2020-04-15 00:53 - 2020-04-15 00:53 - 000000315 _____ C:\windows\system32\DrtmAuth6.bin
2020-04-15 00:53 - 2020-04-15 00:53 - 000000315 _____ C:\windows\system32\DrtmAuth5.bin
2020-04-15 00:53 - 2020-04-15 00:53 - 000000315 _____ C:\windows\system32\DrtmAuth4.bin
2020-04-15 00:53 - 2020-04-15 00:53 - 000000315 _____ C:\windows\system32\DrtmAuth3.bin
2020-04-15 00:53 - 2020-04-15 00:53 - 000000315 _____ C:\windows\system32\DrtmAuth2.bin
2020-04-15 00:53 - 2020-04-15 00:53 - 000000315 _____ C:\windows\system32\DrtmAuth12.bin
2020-04-15 00:53 - 2020-04-15 00:53 - 000000315 _____ C:\windows\system32\DrtmAuth11.bin
2020-04-15 00:53 - 2020-04-15 00:53 - 000000315 _____ C:\windows\system32\DrtmAuth10.bin
2020-04-15 00:53 - 2020-04-15 00:53 - 000000315 _____ C:\windows\system32\DrtmAuth1.bin
2020-04-15 00:48 - 2020-03-16 22:57 - 000390656 _____ (Microsoft Corporation) C:\windows\SysWOW64\poqexec.exe
2020-04-15 00:48 - 2020-03-16 22:56 - 000492544 _____ (Microsoft Corporation) C:\windows\system32\poqexec.exe
2020-04-14 16:28 - 2020-04-14 16:28 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2020-04-14 16:28 - 2020-04-14 16:28 - 000000000 ____D C:\Program Files (x86)\Microsoft GameInput
2020-04-14 16:28 - 2020-04-14 16:27 - 000090624 _____ (Microsoft Corporation) C:\windows\system32\gamingtcuihelpers.dll
2020-04-14 16:28 - 2020-04-07 06:55 - 000169408 _____ (Microsoft Corporation) C:\windows\system32\GameInput.dll
2020-04-14 16:28 - 2020-04-07 04:55 - 000138168 _____ (Microsoft Corporation) C:\windows\SysWOW64\GameInput.dll
2020-04-14 07:19 - 2020-04-14 07:19 - 000047600 _____ (Dropbox, Inc.) C:\windows\system32\Drivers\dbx-stable.sys
2020-04-14 07:19 - 2020-04-14 07:19 - 000047600 _____ (Dropbox, Inc.) C:\windows\system32\Drivers\dbx-dev.sys
2020-04-14 07:19 - 2020-04-14 07:19 - 000047600 _____ (Dropbox, Inc.) C:\windows\system32\Drivers\dbx-canary.sys
2020-04-14 07:19 - 2020-04-14 07:19 - 000044552 _____ (Dropbox, Inc.) C:\windows\system32\DbxSvc.exe
2020-04-13 17:41 - 2020-04-13 17:41 - 000000000 ____D C:\Users\carlo\AppData\LocalLow\Unity
2020-04-13 04:39 - 2020-04-13 04:39 - 000000782 _____ C:\ProgramData\Escritorio\CPUID HWMonitor.lnk
2020-04-13 04:39 - 2020-04-13 04:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2020-04-12 20:57 - 2020-04-12 20:57 - 000000000 ____D C:\Users\carlo\AppData\LocalLow\rpgames
2020-04-12 20:54 - 2020-04-12 20:54 - 000000948 _____ C:\Users\carlo\AppData\Roaming\Microsoft\Windows\Start Menu\NewGunboundLS.lnk
2020-04-12 20:54 - 2020-04-12 20:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoftnyxGame
2020-04-07 23:35 - 2020-04-07 23:35 - 000321536 _____ (Microsoft Corporation) C:\windows\system32\wbadmin.exe
2020-04-07 23:35 - 2020-04-07 23:35 - 000179200 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.XamlHost.dll
2020-04-07 23:35 - 2020-04-07 23:35 - 000135168 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.XamlHost.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 017790464 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Xaml.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 014818816 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.Xaml.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 008013824 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 007849216 _____ (Microsoft Corporation) C:\windows\system32\OneCoreUAPCommonProxyStub.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 007017472 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstscax.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 006168064 _____ (Microsoft Corporation) C:\windows\system32\twinui.pcshell.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 003753472 _____ (Microsoft Corporation) C:\windows\system32\SettingsHandlers_nt.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 003742544 _____ (Microsoft Corporation) C:\windows\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 003708928 _____ (Microsoft Corporation) C:\windows\system32\AppXDeploymentServer.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 003547648 _____ (Microsoft Corporation) C:\windows\system32\dwmcore.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 002986808 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 002871608 _____ (Microsoft Corporation) C:\windows\system32\aitstatic.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 002126144 _____ (Microsoft Corporation) C:\windows\system32\AudioEng.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 002114560 _____ (Microsoft Corporation) C:\windows\system32\Windows.CloudStore.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001960448 _____ (Microsoft Corporation) C:\windows\system32\aadtb.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001945600 _____ (Microsoft Corporation) C:\windows\system32\dcomp.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001942528 _____ (Microsoft Corporation) C:\windows\system32\audiosrv.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001918976 _____ (Microsoft Corporation) C:\windows\system32\wevtsvc.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001835008 _____ (Microsoft Corporation) C:\windows\system32\enterprisecsps.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001783296 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Input.Inking.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001762816 _____ (Microsoft Corporation) C:\windows\system32\wwansvc.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001757096 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2020-04-07 23:34 - 2020-04-07 23:34 - 001726264 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001719808 _____ (Microsoft Corporation) C:\windows\system32\Wpc.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001587712 _____ (Microsoft Corporation) C:\windows\SysWOW64\aadtb.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001545216 _____ (Microsoft Corporation) C:\windows\system32\mstsc.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 001512832 _____ (Microsoft Corporation) C:\windows\system32\winload.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 001497600 _____ (Microsoft Corporation) C:\windows\system32\TokenBroker.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001480192 _____ (Microsoft Corporation) C:\windows\system32\usocoreworker.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 001477112 _____ (Microsoft Corporation) C:\windows\SysWOW64\dcomp.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001427456 _____ (Microsoft Corporation) C:\windows\system32\Windows.Networking.Vpn.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001413704 _____ (Microsoft Corporation) C:\windows\system32\AudioSes.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001378528 _____ (Microsoft Corporation) C:\windows\system32\webservices.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001368576 _____ (Microsoft Corporation) C:\windows\SysWOW64\Wpc.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001368576 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.Input.Inking.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001300280 _____ (Microsoft Corporation) C:\windows\system32\Drivers\http.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 001264640 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstsc.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 001263856 _____ (Microsoft Corporation) C:\windows\system32\WpcMon.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 001261808 _____ (Microsoft Corporation) C:\windows\system32\msctf.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001257472 _____ (Microsoft Corporation) C:\windows\system32\rpcss.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001245184 _____ (Microsoft Corporation) C:\windows\SysWOW64\TokenBroker.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001243648 _____ (Microsoft Corporation) C:\windows\system32\TSWorkspace.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001180672 _____ (Microsoft Corporation) C:\windows\system32\Windows.Security.Authentication.Web.Core.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001136128 _____ (Microsoft Corporation) C:\windows\system32\MbaeApiPublic.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001127424 _____ (Microsoft Corporation) C:\windows\system32\WpcRefreshTask.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001083904 _____ (Microsoft Corporation) C:\windows\system32\MusUpdateHandlers.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001081856 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Networking.Vpn.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001071616 _____ (Microsoft Corporation) C:\windows\system32\BTAGService.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001055376 _____ (Microsoft Corporation) C:\windows\SysWOW64\msctf.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001011200 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000993280 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSWorkspace.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000980832 _____ (Microsoft Corporation) C:\windows\SysWOW64\webservices.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000974336 _____ (Microsoft Corporation) C:\windows\system32\uDWM.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000924672 _____ (Microsoft Corporation) C:\windows\system32\samsrv.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000923136 _____ (Microsoft Corporation) C:\windows\system32\Windows.Internal.Management.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000915192 _____ (Microsoft Corporation) C:\windows\system32\AppXDeploymentClient.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000912896 _____ (Microsoft Corporation) C:\windows\system32\rasmans.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000893952 _____ (Microsoft Corporation) C:\windows\system32\FlightSettings.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000892416 _____ (Microsoft Corporation) C:\windows\SysWOW64\MbaeApiPublic.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000879616 _____ (Microsoft Corporation) C:\windows\system32\Windows.Management.Service.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000865280 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000865280 _____ (Microsoft Corporation) C:\windows\system32\netlogon.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000840704 _____ (Microsoft Corporation) C:\windows\system32\SettingsHandlers_Language.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000811320 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000785920 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000759272 _____ (Microsoft Corporation) C:\windows\system32\taskschd.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000747320 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000735744 _____ (Microsoft Corporation) C:\windows\system32\AudioEndpointBuilder.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000729600 _____ (Microsoft Corporation) C:\windows\SysWOW64\FlightSettings.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000701440 _____ (Microsoft Corporation) C:\windows\SysWOW64\BTAGService.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000689152 _____ (Microsoft Corporation) C:\windows\SysWOW64\CPFilters.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000684560 _____ (Microsoft Corporation) C:\windows\system32\SHCore.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000673704 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppXDeploymentClient.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000665088 _____ (Microsoft Corporation) C:\windows\SysWOW64\netlogon.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000654912 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000647680 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Internal.Management.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000638480 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000637240 _____ (Microsoft Corporation) C:\windows\system32\Drivers\storport.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 000632832 _____ (Microsoft Corporation) C:\windows\SysWOW64\WpcWebFilter.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000618296 _____ (Microsoft Corporation) C:\windows\system32\hal.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000605184 _____ (Microsoft Corporation) C:\windows\system32\MusNotification.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000604984 _____ (Microsoft Corporation) C:\windows\system32\pcasvc.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000589384 _____ (Microsoft Corporation) C:\windows\system32\audiodg.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000555008 _____ (Microsoft Corporation) C:\windows\system32\appwiz.cpl
2020-04-07 23:34 - 2020-04-07 23:34 - 000538160 _____ (Microsoft Corporation) C:\windows\SysWOW64\SHCore.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000529408 _____ (Microsoft Corporation) C:\windows\system32\nltest.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000524264 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Enumeration.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000516096 _____ (Microsoft Corporation) C:\windows\system32\MusNotificationUx.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000515600 _____ (Microsoft Corporation) C:\windows\system32\dcntel.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000513576 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000507152 _____ (Microsoft Corporation) C:\windows\SysWOW64\taskschd.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000498688 _____ (Microsoft Corporation) C:\windows\system32\ntshrui.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000497152 _____ (Microsoft Corporation) C:\windows\system32\wuuhext.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000491008 _____ (Microsoft Corporation) C:\windows\SysWOW64\sppcext.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000487784 _____ (Microsoft Corporation) C:\windows\SysWOW64\advapi32.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000477496 _____ (Microsoft Corporation) C:\windows\system32\Drivers\FWPKCLNT.SYS
2020-04-07 23:34 - 2020-04-07 23:34 - 000469504 _____ (Microsoft Corporation) C:\windows\system32\cloudAP.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000465208 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000459688 _____ (Microsoft Corporation) C:\windows\system32\MusNotifyIcon.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000456504 _____ (Microsoft Corporation) C:\windows\system32\Drivers\rdbss.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 000456192 _____ (Microsoft Corporation) C:\windows\SysWOW64\appwiz.cpl
2020-04-07 23:34 - 2020-04-07 23:34 - 000452096 _____ (Microsoft Corporation) C:\windows\system32\rdpclip.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000437560 _____ (Microsoft Corporation) C:\windows\system32\Drivers\pci.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 000416016 _____ (Microsoft Corporation) C:\windows\system32\AUDIOKSE.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000415760 _____ (Microsoft Corporation) C:\windows\SysWOW64\aepic.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000410112 _____ (Microsoft Corporation) C:\windows\system32\rascustom.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000406480 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Enumeration.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000401408 _____ (Microsoft Corporation) C:\windows\system32\es.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000381440 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntshrui.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000374784 _____ (Microsoft Corporation) C:\windows\system32\ncbservice.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000355328 _____ (Microsoft Corporation) C:\windows\system32\WpcApi.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000336384 _____ (Microsoft Corporation) C:\windows\SysWOW64\es.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000330240 _____ (Microsoft Corporation) C:\windows\system32\omadmclient.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000324408 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000323584 _____ (Microsoft Corporation) C:\windows\system32\sppcommdlg.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000297272 _____ (Microsoft Corporation) C:\windows\system32\Drivers\sdbus.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 000278016 _____ (Microsoft Corporation) C:\windows\system32\WpcTok.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000277864 _____ (Microsoft Corporation) C:\windows\system32\LsaIso.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000259776 _____ (Microsoft Corporation) C:\windows\system32\logoncli.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000259072 _____ (Microsoft Corporation) C:\windows\system32\VPNv2CSP.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000251704 _____ (Microsoft Corporation) C:\windows\system32\offlinesam.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000251392 _____ (Microsoft Corporation) C:\windows\system32\Drivers\winnat.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 000241152 _____ (Microsoft Corporation) C:\windows\system32\policymanagerprecheck.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000234496 _____ (Microsoft Corporation) C:\windows\system32\iasrad.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000231912 _____ (Microsoft Corporation) C:\windows\system32\deviceaccess.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000203264 _____ (Microsoft Corporation) C:\windows\system32\LanguageComponentsInstaller.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000200192 _____ (Microsoft Corporation) C:\windows\system32\updatepolicy.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000197632 _____ (Microsoft Corporation) C:\windows\system32\Win32CompatibilityAppraiserCSP.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000193848 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dumpsd.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 000190048 _____ (Microsoft Corporation) C:\windows\SysWOW64\logoncli.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000187392 _____ (Microsoft Corporation) C:\windows\SysWOW64\iasrad.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000185952 _____ (Microsoft Corporation) C:\windows\SysWOW64\deviceaccess.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000178192 _____ (Microsoft Corporation) C:\windows\system32\Drivers\partmgr.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 000169472 _____ (Microsoft Corporation) C:\windows\system32\SpatialAudioLicenseSrv.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000164368 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000163840 _____ (Microsoft Corporation) C:\windows\SysWOW64\updatepolicy.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000152408 _____ (Microsoft Corporation) C:\windows\system32\KerbClientShared.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000151352 _____ (Microsoft Corporation) C:\windows\system32\Drivers\scmbus.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 000147696 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000142544 _____ (Microsoft Corporation) C:\windows\system32\LicensingUI.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000140800 _____ (Microsoft Corporation) C:\windows\system32\slc.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000136192 _____ (Microsoft Corporation) C:\windows\system32\sppc.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000123952 _____ (Microsoft Corporation) C:\windows\SysWOW64\KerbClientShared.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000122368 _____ (Microsoft Corporation) C:\windows\system32\samlib.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000118272 _____ (Microsoft Corporation) C:\windows\SysWOW64\slc.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000115120 _____ (Microsoft Corporation) C:\windows\system32\phoneactivate.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000108032 _____ (Microsoft Corporation) C:\windows\system32\wwanprotdim.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000102216 _____ (Microsoft Corporation) C:\windows\system32\changepk.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000101888 _____ (Microsoft Corporation) C:\windows\SysWOW64\sppc.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000096768 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Custom.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000093712 _____ (Microsoft Corporation) C:\windows\system32\hvloader.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000090624 _____ (Microsoft Corporation) C:\windows\system32\tsgqec.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000089912 _____ (Microsoft Corporation) C:\windows\system32\Drivers\volmgr.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 000088352 _____ (Microsoft Corporation) C:\windows\system32\remoteaudioendpoint.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000087040 _____ (Microsoft Corporation) C:\windows\system32\iasacct.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000084280 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hvservice.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 000076288 _____ (Microsoft Corporation) C:\windows\system32\autopilot.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000071680 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Custom.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000071480 _____ (Microsoft Corporation) C:\windows\system32\win32appinventorycsp.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000070656 _____ (Microsoft Corporation) C:\windows\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000070656 _____ (Microsoft Corporation) C:\windows\system32\keepaliveprovider.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000070144 _____ (Microsoft Corporation) C:\windows\SysWOW64\tsgqec.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000066624 _____ (Microsoft Corporation) C:\windows\system32\iumcrypt.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000066048 _____ (Microsoft Corporation) C:\windows\SysWOW64\iasacct.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000064512 _____ (Microsoft Corporation) C:\windows\system32\pcadm.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000064000 _____ (Microsoft Corporation) C:\windows\system32\tbauth.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000060416 _____ (Microsoft Corporation) C:\windows\system32\CloudNotifications.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000059192 _____ (Microsoft Corporation) C:\windows\system32\Drivers\storufs.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 000057344 _____ (Microsoft Corporation) C:\windows\system32\audioresourceregistrar.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000051200 _____ (Microsoft Corporation) C:\windows\system32\pcalua.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000050544 _____ (Microsoft Corporation) C:\windows\SysWOW64\CloudNotifications.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000050176 _____ (Microsoft Corporation) C:\windows\system32\iaspolcy.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000049152 _____ (Microsoft Corporation) C:\windows\SysWOW64\tbauth.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000045568 _____ (Microsoft Corporation) C:\windows\system32\cmintegrator.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000044032 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Xaml.Resources.Common.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000043008 _____ (Microsoft Corporation) C:\windows\system32\UpgradeResultsUI.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000040448 _____ (Microsoft Corporation) C:\windows\SysWOW64\iaspolcy.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000039424 _____ (Microsoft Corporation) C:\windows\system32\WpcProxyStubs.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000036864 _____ (Microsoft Corporation) C:\windows\system32\TokenBrokerCookies.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000036152 _____ (Microsoft Corporation) C:\windows\system32\DeviceCensus.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000033080 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hwpolicy.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 000031744 _____ (Microsoft Corporation) C:\windows\system32\wksprtPS.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000031744 _____ (Microsoft Corporation) C:\windows\system32\ias.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000030720 _____ (Microsoft Corporation) C:\windows\system32\Drivers\KNetPwrDepBroker.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 000029696 _____ (Microsoft Corporation) C:\windows\SysWOW64\cmintegrator.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000029184 _____ (Microsoft Corporation) C:\windows\SysWOW64\TokenBrokerCookies.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000028160 _____ (Microsoft Corporation) C:\windows\system32\Drivers\flpydisk.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 000023552 _____ (Microsoft Corporation) C:\windows\SysWOW64\ias.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000023552 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Custom.ps.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000022528 _____ (Microsoft Corporation) C:\windows\system32\slcext.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000022528 _____ (Microsoft Corporation) C:\windows\system32\sbservicetrigger.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000021520 _____ (Microsoft Corporation) C:\windows\system32\kdhvcom.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000019968 _____ (Microsoft Corporation) C:\windows\SysWOW64\slcext.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000018944 _____ (Microsoft Corporation) C:\windows\system32\Drivers\sfloppy.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 000017920 _____ (Microsoft Corporation) C:\windows\SysWOW64\wksprtPS.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000015872 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Custom.ps.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000012800 _____ (Microsoft Corporation) C:\windows\system32\pcaevts.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000010752 _____ (Microsoft Corporation) C:\windows\system32\DMAlertListener.ProxyStub.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000007680 _____ (Microsoft Corporation) C:\windows\SysWOW64\DMAlertListener.ProxyStub.dll
2020-04-07 02:44 - 2020-04-07 02:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO64
2020-04-07 02:08 - 2020-04-15 21:26 - 000007609 _____ C:\Users\carlo\AppData\Local\Resmon.ResmonCfg
2020-04-07 01:52 - 2020-04-07 01:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FinalWire
2020-04-05 20:56 - 2020-04-16 17:47 - 000000000 ____D C:\Users\carlo\AppData\Local\BY-COMBO
2020-04-05 20:56 - 2020-04-05 20:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\T16 Wired Gaming Mouse
2020-04-04 21:44 - 2020-04-04 21:44 - 000000000 ____D C:\Users\carlo\AppData\Roaming\NVIDIA
2020-04-04 20:17 - 2020-04-04 20:17 - 000000000 ____D C:\Users\carlo\AppData\Local\Mendeley Ltd
2020-04-04 20:10 - 2020-04-04 20:10 - 000000849 _____ C:\ProgramData\Escritorio\Mendeley Desktop.lnk
2020-04-04 20:10 - 2020-04-04 20:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mendeley Desktop
2020-04-03 10:41 - 2020-04-03 10:41 - 000000000 ____D C:\Users\carlo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2020-03-28 20:52 - 2020-03-28 20:52 - 000048582 _____ C:\windows\uninsCooler Master Portal.dat
2020-03-28 20:52 - 2020-03-28 20:52 - 000000000 ____D C:\Users\carlo\AppData\Roaming\CoolerMaster Portal
2020-03-28 20:52 - 2020-03-28 20:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cooler Master
2020-03-28 20:52 - 2020-03-28 20:52 - 000000000 ____D C:\Program Files (x86)\Cooler Master
2020-03-28 20:52 - 2016-06-19 17:25 - 006177792 _____ (Cooler Master) C:\windows\uninsCooler Master Portal.exe
2020-03-25 09:49 - 2020-04-03 10:41 - 000000000 ____D C:\Users\carlo\AppData\Roaming\Zoom
2020-03-24 03:56 - 2020-03-18 04:39 - 000039824 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvhdap64.dll
2020-03-24 03:52 - 2020-03-18 18:25 - 011944864 _____ (NVIDIA Corporation) C:\windows\system32\nvptxJitCompiler.dll
2020-03-24 03:52 - 2020-03-18 18:25 - 010285472 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvptxJitCompiler.dll
2020-03-24 03:52 - 2020-03-18 18:24 - 023439288 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvlddmkm.sys
2020-03-24 03:52 - 2020-03-18 18:24 - 002073200 _____ (NVIDIA Corporation) C:\windows\system32\NvFBC64.dll
2020-03-24 03:52 - 2020-03-18 18:24 - 001565136 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvFBC.dll
2020-03-24 03:52 - 2020-03-18 18:24 - 001481144 _____ (NVIDIA Corporation) C:\windows\system32\NvIFR64.dll
2020-03-24 03:52 - 2020-03-18 18:24 - 001351776 _____ (NVIDIA Corporation) C:\windows\system32\nvfatbinaryLoader.dll
2020-03-24 03:52 - 2020-03-18 18:24 - 001142384 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvIFR.dll
2020-03-24 03:52 - 2020-03-18 18:24 - 001022560 _____ (NVIDIA Corporation) C:\windows\system32\nvml.dll
2020-03-24 03:52 - 2020-03-18 18:24 - 000817264 _____ (NVIDIA Corporation) C:\windows\system32\nvmcumd.dll
2020-03-24 03:52 - 2020-03-18 18:24 - 000680048 _____ (NVIDIA Corporation) C:\windows\system32\NvIFROpenGL.dll
2020-03-24 03:52 - 2020-03-18 18:24 - 000676240 _____ C:\windows\system32\nvofapi64.dll
2020-03-24 03:52 - 2020-03-18 18:24 - 000573024 _____ (NVIDIA Corporation) C:\windows\system32\nvidia-smi.exe
2020-03-24 03:52 - 2020-03-18 18:24 - 000546928 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvIFROpenGL.dll
2020-03-24 03:52 - 2020-03-18 18:24 - 000544144 _____ C:\windows\SysWOW64\nvofapi.dll
2020-03-24 03:52 - 2020-03-18 18:23 - 017601120 _____ (NVIDIA Corporation) C:\windows\system32\nvcuda.dll
2020-03-24 03:52 - 2020-03-18 18:23 - 015157664 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuda.dll
2020-03-24 03:52 - 2020-03-18 18:23 - 005856864 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvid.dll
2020-03-24 03:52 - 2020-03-18 18:23 - 005158512 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuvid.dll
2020-03-24 03:52 - 2020-03-18 18:23 - 001049696 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvfatbinaryLoader.dll
2020-03-24 03:52 - 2020-03-18 18:23 - 000849848 _____ (NVIDIA Corporation) C:\windows\system32\MCU.exe
2020-03-24 03:52 - 2020-03-18 18:23 - 000811632 _____ (NVIDIA Corporation) C:\windows\system32\nvEncodeAPI64.dll
2020-03-24 03:52 - 2020-03-18 18:23 - 000655472 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvEncodeAPI.dll
2020-03-24 03:52 - 2020-03-18 18:23 - 000445024 _____ (NVIDIA Corporation) C:\windows\system32\nvdebugdump.exe
2020-03-24 03:52 - 2020-03-18 04:39 - 000111058 _____ C:\windows\system32\nvidia-smi.1.pdf
2020-03-24 03:52 - 2020-03-18 04:39 - 000077314 _____ C:\windows\system32\nvinfo.pb

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-04-23 01:04 - 2019-03-18 23:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-04-23 00:53 - 2020-01-30 21:40 - 000000000 ____D C:\Users\carlo\AppData\Roaming\WhatsApp
2020-04-23 00:38 - 2020-01-25 19:37 - 000000000 ___RD C:\Users\carlo\OneDrive
2020-04-23 00:36 - 2020-01-26 23:55 - 000000000 ____D C:\Users\carlo\AppData\Roaming\Discord
2020-04-23 00:34 - 2019-04-15 10:38 - 000000000 ____D C:\windows\system32\SleepStudy
2020-04-23 00:28 - 2020-03-12 18:49 - 000004218 _____ C:\windows\system32\Tasks\User_Feed_Synchronization-{4AFEADCD-9B82-4434-B751-9D70C4F57BBA}
2020-04-22 18:05 - 2020-01-26 01:55 - 000000000 ____D C:\Users\carlo\AppData\Local\CrashDumps
2020-04-22 17:07 - 2019-11-26 09:32 - 000000000 ____D C:\windows\system32\Tasks\McAfee
2020-04-22 12:25 - 2019-11-26 09:25 - 000000000 ____D C:\ProgramData\NVIDIA
2020-04-22 12:08 - 2019-06-14 14:05 - 000820676 _____ C:\windows\system32\perfh00A.dat
2020-04-22 12:08 - 2019-06-14 14:05 - 000170586 _____ C:\windows\system32\perfc00A.dat
2020-04-22 12:08 - 2019-06-14 11:25 - 001914926 _____ C:\windows\system32\PerfStringBackup.INI
2020-04-22 12:08 - 2019-03-18 23:50 - 000000000 ____D C:\windows\INF
2020-04-22 12:02 - 2020-01-25 19:34 - 000000000 __SHD C:\Users\carlo\IntelGraphicsProfiles
2020-04-22 12:02 - 2020-01-25 19:29 - 000000000 ____D C:\Users\carlo
2020-04-22 12:02 - 2019-11-26 09:25 - 000000000 ____D C:\Intel
2020-04-22 12:02 - 2019-04-15 10:38 - 000000006 ____H C:\windows\Tasks\SA.DAT
2020-04-22 01:04 - 2019-11-26 09:25 - 000001557 _____ C:\ProgramData\DisplaySessionContainer1.log_backup1
2020-04-22 00:45 - 2019-03-18 23:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-04-22 00:45 - 2019-03-18 23:52 - 000000000 ____D C:\windows\AppReadiness
2020-04-21 22:08 - 2020-01-25 19:34 - 000000000 ____D C:\Users\carlo\AppData\Local\Packages
2020-04-21 21:42 - 2020-03-14 17:56 - 000000000 ____D C:\Users\carlo\AppData\Local\Battle.net
2020-04-21 15:56 - 2020-01-25 19:40 - 000002306 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-04-21 15:55 - 2019-11-26 09:25 - 000017022 _____ C:\ProgramData\NVDisplay.ContainerLocalSystem.log_backup1
2020-04-20 17:58 - 2020-01-25 20:38 - 000001206 _____ C:\ProgramData\NvcDispCorePlugin.log_backup1
2020-04-20 17:58 - 2019-11-26 09:25 - 000037032 _____ C:\ProgramData\NVDisplayContainerWatchdog.log_backup1
2020-04-20 17:58 - 2019-03-18 23:37 - 001048576 _____ C:\windows\system32\config\BBI
2020-04-20 17:27 - 2020-02-08 13:13 - 000000000 ____D C:\Users\carlo\AppData\Roaming\PhotoScape
2020-04-20 17:27 - 2019-04-15 11:31 - 000000000 ____D C:\windows\Panther
2020-04-20 17:22 - 2019-03-18 23:52 - 000000000 ___HD C:\windows\ELAMBKUP
2020-04-19 15:17 - 2019-03-18 23:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-04-19 15:16 - 2019-06-14 11:23 - 000000000 ____D C:\Program Files\Microsoft Office
2020-04-19 11:10 - 2019-03-18 23:37 - 000032768 _____ C:\windows\system32\config\ELAM
2020-04-19 01:55 - 2020-01-25 19:34 - 000011489 _____ C:\ProgramData\DisplaySessionContainer2.log_backup1
2020-04-19 00:17 - 2020-02-05 14:16 - 000000000 ____D C:\Users\carlo\AppData\Local\Overwolf
2020-04-18 12:07 - 2020-01-25 19:37 - 000000000 ____D C:\Users\carlo\AppData\Local\PlaceholderTileLogoFolder
2020-04-18 00:27 - 2020-02-01 20:58 - 000000000 ____D C:\Users\carlo\AppData\Roaming\Origin
2020-04-18 00:27 - 2020-02-01 20:58 - 000000000 ____D C:\ProgramData\Origin
2020-04-16 18:49 - 2020-02-01 23:41 - 000000883 _____ C:\ProgramData\Escritorio\Apex Legends.lnk
2020-04-16 18:48 - 2020-02-01 20:58 - 000000000 ____D C:\Users\carlo\AppData\Local\Origin
2020-04-16 13:47 - 2019-11-26 09:25 - 000000000 ____D C:\ProgramData\Intel
2020-04-16 13:43 - 2019-03-18 23:52 - 000000000 ____D C:\windows\LiveKernelReports
2020-04-16 02:35 - 2020-01-25 19:40 - 000000000 ____D C:\Users\carlo\AppData\Local\D3DSCache
2020-04-15 19:08 - 2020-01-25 19:38 - 000000000 ____D C:\Program Files (x86)\Dropbox
2020-04-15 17:29 - 2019-11-26 09:26 - 000004308 _____ C:\windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-15 17:29 - 2019-11-26 09:26 - 000004106 _____ C:\windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-15 17:29 - 2019-11-26 09:26 - 000003976 _____ C:\windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-15 17:29 - 2019-11-26 09:26 - 000003940 _____ C:\windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-15 17:29 - 2019-11-26 09:26 - 000003858 _____ C:\windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-15 17:29 - 2019-11-26 09:26 - 000003858 _____ C:\windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-15 17:29 - 2019-11-26 09:26 - 000003858 _____ C:\windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-15 17:29 - 2019-11-26 09:26 - 000003858 _____ C:\windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-15 17:29 - 2019-11-26 09:25 - 000003894 _____ C:\windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-15 17:29 - 2019-11-26 09:25 - 000003654 _____ C:\windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-15 17:29 - 2019-11-26 09:25 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-04-15 17:29 - 2019-11-26 09:25 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-04-15 17:29 - 2019-11-26 09:25 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-04-15 07:59 - 2019-04-15 10:38 - 000438888 _____ C:\windows\system32\FNTCACHE.DAT
2020-04-15 01:18 - 2019-03-18 23:52 - 000000000 ____D C:\windows\SysWOW64\es-MX
2020-04-15 01:18 - 2019-03-18 23:52 - 000000000 ____D C:\windows\SystemResources
2020-04-15 01:18 - 2019-03-18 23:52 - 000000000 ____D C:\windows\system32\migwiz
2020-04-15 01:18 - 2019-03-18 23:52 - 000000000 ____D C:\windows\system32\es-MX
2020-04-15 01:18 - 2019-03-18 23:52 - 000000000 ____D C:\windows\ShellExperiences
2020-04-15 01:18 - 2019-03-18 23:52 - 000000000 ____D C:\windows\bcastdvr
2020-04-15 00:55 - 2019-03-18 23:37 - 000000000 ____D C:\windows\CbsTemp
2020-04-14 22:07 - 2020-01-25 19:37 - 000003378 _____ C:\windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1669855820-2084828274-340432298-1001
2020-04-14 22:07 - 2020-01-25 19:29 - 000002370 _____ C:\Users\carlo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-04-14 21:51 - 2020-01-30 17:47 - 002740480 _____ (Wellbia.com Co., Ltd.) C:\windows\xhunter1.sys
2020-04-14 16:27 - 2020-01-26 10:18 - 001449920 _____ (Microsoft Corporation) C:\windows\system32\xgameruntime.dll
2020-04-14 16:27 - 2020-01-26 10:18 - 000153528 _____ (Microsoft Corporation) C:\windows\system32\gameconfighelper.dll
2020-04-14 16:27 - 2020-01-26 10:18 - 000118200 _____ (Microsoft Corporation) C:\windows\system32\gamingservicesproxy.dll
2020-04-14 16:27 - 2020-01-26 10:18 - 000033720 _____ (Microsoft Corporation) C:\windows\system32\gamemodcontrol.exe
2020-04-12 20:17 - 2019-03-18 23:52 - 000000000 ____D C:\windows\system32\NDF
2020-04-09 22:58 - 2020-01-30 01:52 - 000011476 _____ C:\ProgramData\DisplaySessionContainer3.log_backup1
2020-04-08 09:01 - 2020-02-03 02:42 - 000000000 ____D C:\Users\carlo\AppData\Local\HP_Inc
2020-04-08 03:46 - 2020-01-28 20:17 - 000000000 ____D C:\Users\carlo\AppData\Local\HP
2020-04-08 00:04 - 2020-02-03 01:09 - 000000000 ____D C:\Program Files (x86)\Steam
2020-04-07 23:50 - 2019-11-26 11:12 - 000000000 ____D C:\windows\HoloShell
2020-04-07 23:50 - 2019-03-18 23:52 - 000000000 ____D C:\windows\system32\PerceptionSimulation
2020-04-07 23:50 - 2019-03-18 23:52 - 000000000 ____D C:\windows\Provisioning
2020-04-07 15:43 - 2020-01-26 00:47 - 000000000 ____D C:\swsetup
2020-04-07 12:58 - 2019-11-26 09:26 - 002799416 _____ (NVIDIA Corporation) C:\windows\system32\nvspcap64.dll
2020-04-07 12:58 - 2019-11-26 09:26 - 002159592 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvspcap.dll
2020-04-07 12:58 - 2019-11-26 09:26 - 001314792 _____ (NVIDIA Corporation) C:\windows\system32\NvRtmpStreamer64.dll
2020-04-06 12:24 - 2020-01-26 01:16 - 000000000 ____D C:\windows\Firmware
2020-04-03 03:48 - 2020-02-02 03:26 - 000013626 _____ C:\ProgramData\DisplaySessionContainer4.log_backup1
2020-03-31 21:04 - 2020-01-30 21:39 - 000000000 ____D C:\Users\carlo\AppData\Local\WhatsApp
2020-03-31 21:03 - 2020-01-26 23:55 - 000000000 ____D C:\Users\carlo\AppData\Local\SquirrelTemp
2020-03-27 00:55 - 2019-11-26 09:25 - 000170472 _____ (NVIDIA Corporation) C:\windows\system32\nvaudcap64v.dll
2020-03-27 00:55 - 2019-11-26 09:25 - 000146408 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvaudcap32v.dll

==================== Archivos en la raíz de algunos directorios ========

2020-04-07 02:08 - 2020-04-15 21:26 - 000007609 _____ () C:\Users\carlo\AppData\Local\Resmon.ResmonCfg
2020-04-20 12:33 - 2020-04-20 12:33 - 000000048 _____ () C:\Users\carlo\AppData\Local\wiatrace.log

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)

==================== Final de FRST.txt ========================
Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 22-04-2020
Ejecutado por carlo (23-04-2020 01:09:06)
Ejecutado desde D:\carlo\Escritorio
Windows 10 Home Single Language Versión 1909 18363.778 (X64) (2020-01-26 06:24:45)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================

Administrador (S-1-5-21-1669855820-2084828274-340432298-500 - Administrator - Disabled)
carlo (S-1-5-21-1669855820-2084828274-340432298-1001 - Administrator - Enabled) => C:\Users\carlo
DefaultAccount (S-1-5-21-1669855820-2084828274-340432298-503 - Limited - Disabled)
Invitado (S-1-5-21-1669855820-2084828274-340432298-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1669855820-2084828274-340432298-504 - Limited - Disabled)

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: VirusScan de McAfee  (Disabled - Up to date) {F682A51C-4EAD-6A3A-F460-B9C1D4A2DB09}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
FW: McAfee Firewall (Enabled) {CEB92439-04C2-6B62-DF3F-10F42A719C72}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

Actualización de NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 20.006.20042 - Adobe Systems Incorporated)
AIDA64 Extreme v6.25 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 6.25 - FinalWire Ltd.)
Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.3.5 - Electronic Arts, Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version:  - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 5.65 - Piriform)
Cooler Master Portal Settings software (HKLM-x32\...\{1A3E3EA7-5A7C-4292-8A13-B0DE1BF49E13}_COOLER_MASTER_PORTAL) (Version: 1.01 - Cooler Master)
CPUID HWMonitor 1.41 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.41 - CPUID, Inc.)
Dev-C++ (HKLM-x32\...\Dev-C++) (Version: 5.11 - Bloodshed Software)
Discord (HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\Discord) (Version: 0.0.306 - Discord Inc.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 95.4.441 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.295.1 - Dropbox, Inc.) Hidden
GameInput Redistributable (HKLM-x32\...\{5CAEA37E-8C31-F1D0-9BD8-91B1EFAEF885}) (Version: 10.1.19041.1124 - Microsoft Corporation)
GAMS win64 26.1.0 (HKLM\...\GAMS win64 26.1_is1) (Version: GAMS 26.1.0 - GAMS Development)
GAMS win64 30.1.0 (HKLM\...\GAMS win64 30.1_is1) (Version: GAMS 30.1.0 - GAMS Development)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 81.0.4044.122 - Google LLC)
Google Earth Pro (HKLM\...\{70A0F34E-564B-4F93-ADD6-3BAEC6E44075}) (Version: 7.3.2.5776 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
HP Audio Switch (HKLM-x32\...\{20A40E7C-E470-4E9F-9B5C-DDB2C205E856}) (Version: 1.0.154.0 - HP Inc.)
HP Connection Optimizer (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 2.0.15.0 - HP Inc.)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
HWiNFO64 Version 6.24 (HKLM\...\HWiNFO64_is1) (Version: 6.24 - Martin Malik - REALiX)
Intel XTU SDK (HKLM-x32\...\{43A58350-CB99-4F4E-9BB6-F058D7B27985}) (Version: 1.0.14 - HP Inc.) Hidden
Julia 1.3.1 (HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\Julia 1.3.1) (Version:  - Julia Language)
League of Legends (HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\Riot Game league_of_legends.live) (Version:  - Riot Games, Inc)
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
McAfee LiveSafe (HKLM-x32\...\MSC) (Version: 16.0 R24 - McAfee, LLC.)
MEGAsync (HKLM-x32\...\MEGAsync) (Version:  - Mega Limited)
Mendeley Desktop 1.19.4 (HKLM-x32\...\Mendeley Desktop) (Version: 1.19.4 - Mendeley Ltd.)
Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.12624.20466 - Microsoft Corporation)
Microsoft Office 365 - es-es (HKLM\...\O365HomePremRetail - es-es) (Version: 16.0.12624.20466 - Microsoft Corporation)
Microsoft Office Profesional Plus 2019 - es-es (HKLM\...\ProPlus2019Retail - es-es) (Version: 16.0.12624.20466 - Microsoft Corporation)
Microsoft Office Professional Plus 2019 - en-us (HKLM\...\ProPlus2019Retail - en-us) (Version: 16.0.12624.20466 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\OneDriveSetup.exe) (Version: 19.232.1124.0012 - Microsoft Corporation)
Microsoft Project Professional 2019 - en-us (HKLM\...\ProjectPro2019Retail - en-us) (Version: 16.0.12624.20466 - Microsoft Corporation)
Microsoft Project Professional 2019 - es-es (HKLM\...\ProjectPro2019Retail - es-es) (Version: 16.0.12624.20466 - Microsoft Corporation)
Microsoft Visio Professional 2019 - en-us (HKLM\...\VisioPro2019Retail - en-us) (Version: 16.0.12624.20466 - Microsoft Corporation)
Microsoft Visio Professional 2019 - es-es (HKLM\...\VisioPro2019Retail - es-es) (Version: 16.0.12624.20466 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
Mozilla Firefox 73.0 (x64 es-MX) (HKLM\...\Mozilla Firefox 73.0 (x64 es-MX)) (Version: 73.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 73.0 - Mozilla)
NewGunboundLS (HKLM-x32\...\NewGunboundLS_is1) (Version:  - Softnyx co.,Ltd.)
Npcap (HKLM-x32\...\NpcapInst) (Version: 0.9986 - Nmap Project)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA Controlador de audio HD 1.3.38.26 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.26 - NVIDIA Corporation)
NVIDIA Controlador de gráficos 445.75 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 445.75 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.20.3.63 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.3.63 - NVIDIA Corporation)
NVIDIA Software del sistema PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.12624.20442 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.12624.20466 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.12624.20442 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0C0A-1000-0000000FF1CE}) (Version: 16.0.12624.20442 - Microsoft Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 10.5.67.39484 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.143.0.24 - Overwolf Ltd.)
PhotoScape (HKLM-x32\...\PhotoScape) (Version:  - )
Polymath Educational (Unlimited) (HKLM-x32\...\{AE8EE7E5-B355-424F-98D2-6ACEC38AD7DB}) (Version: 6.10.0261 - Polymath Software)
Polyspace R2019a (HKLM\...\Polyspace R2019a) (Version: 3.0 - MathWorks)
Porofessor.gg (HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\Overwolf_pibhbkkgefgheeglaeemkkfjlhidhcedalapdggh) (Version: 2.4.7 - Overwolf app)
PUBG LITE (HKLM-x32\...\PUBG LITE_is1) (Version: 1.0.1.0 - )
Python 3.8.2 (32-bit) (HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\{3182483d-078b-48fa-92c2-798baa1fe27d}) (Version: 3.8.2150.0 - Python Software Foundation)
Python 3.8.2 Core Interpreter (32-bit) (HKLM-x32\...\{6BA6203C-85AB-4B9E-8582-CE31B1B5C0ED}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Development Libraries (32-bit) (HKLM-x32\...\{12B4F371-ACE2-435B-BCF1-623F36C4E176}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Documentation (32-bit) (HKLM-x32\...\{45CEE0C6-5BB2-4A8B-B83C-58559A1CA424}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Executables (32-bit) (HKLM-x32\...\{FE5BE50D-21D5-44FB-9A97-5010E68608DA}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 pip Bootstrap (32-bit) (HKLM-x32\...\{2E818780-AC79-4BC0-8023-C1CC46EAC9B6}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Standard Library (32-bit) (HKLM-x32\...\{09CC0C6D-0822-491E-A10E-2A8443DDF170}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Tcl/Tk Support (32-bit) (HKLM-x32\...\{B1528EAE-7E64-49DB-8CE1-514EB30BB38B}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Test Suite (32-bit) (HKLM-x32\...\{EE21EEE7-9D5A-4ECE-B60F-4BFA63BDA937}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Utility Scripts (32-bit) (HKLM-x32\...\{E284B869-7701-4A91-82C2-D3E66974A0F9}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{AF12A465-EA47-447D-B6BF-2A82CDBE2F0E}) (Version: 3.8.6994.0 - Python Software Foundation)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Streamlabs OBS (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.21.2 - General Workings, Inc.)
T16 Wired Gaming Mouse (HKLM-x32\...\{444BE55C-4B14-4DB8-9922-6846C1437677}_is1) (Version: 1.0.3 - )
UE4 Prerequisites (x64) (HKLM\...\{36EAD5CF-44EF-4FCF-8BE1-D96C4835D7A4}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{2890ae6b-90e9-448d-b3e6-97e43c21e2fd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
uTorrent Web (HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\utweb) (Version: 1.0.7 - BitTorrent, Inc.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
WhatsApp (HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\WhatsApp) (Version: 0.4.2088 - WhatsApp)
WinRAR 5.80 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.80.0 - win.rar GmbH)
Wireshark 3.2.1 64-bit (HKLM-x32\...\Wireshark) (Version: 3.2.1 - The Wireshark developer community, hxxps://www.wireshark.org)
Zoom (HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\ZoomUMX) (Version: 4.6 - Zoom Video Communications, Inc.)

Packages:
=========
Age of Empires II: Definitive Edition -> C:\Program Files\WindowsApps\Microsoft.MSPhoenix_101.101.36202.0_x64__8wekyb3d8bbwe [2020-04-15] (Microsoft Studios)
Ajuste de piso -> C:\windows\SystemApps\RoomAdjustment_cw5n1h2txyewy [2020-04-07] (Microsoft Corporation)
Complemento de motor multimedia para Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-02-05] (Microsoft Corporation)
Connect -> C:\windows\SystemApps\Microsoft.Windows.DevicesFlowHost_cw5n1h2txyewy [2020-04-07] (Microsoft Corporation)
Descubrir la realidad mixta -> C:\windows\SystemApps\MixedRealityLearning_cw5n1h2txyewy [2020-04-07] (Microsoft Corporation)
DirectX -> C:\Program Files\WindowsApps\Microsoft.DirectXRuntime_9.29.952.0_x64__8wekyb3d8bbwe [2020-01-26] (Microsoft Corporation)
DirectX -> C:\Program Files\WindowsApps\Microsoft.DirectXRuntime_9.29.952.0_x86__8wekyb3d8bbwe [2020-01-26] (Microsoft Corporation)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220 [2020-04-18] (Dolby Laboratories)
DTS Sound Unbound -> C:\Program Files\WindowsApps\DTSInc.DTSSoundUnbound_2020.1.45.0_x64__t5j2fzbtdg37r [2020-04-08] (DTS, Inc.)
Energy Star -> C:\Program Files\WindowsApps\AD2F1837.HPInc.EnergyStar_1.2.0.0_x64__v10z8vjag6ke6 [2019-11-26] (HP Inc.)
Halo Wars 2 -> C:\Program Files\WindowsApps\Microsoft.HoganThreshold_1.11.2931.2_x64__8wekyb3d8bbwe [2020-02-03] (Microsoft Studios)
Halo: The Master Chief Collection -> C:\Program Files\WindowsApps\Mutable\Microsoft.Chelan_1.1389.0.0_x64__8wekyb3d8bbwe [2020-04-15] (Microsoft Studios)
HP JumpStarts -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.5.1296.0_x64__v10z8vjag6ke6 [2020-01-28] (HP Inc.)
HP PC Hardware Diagnostics Windows -> C:\Program Files\WindowsApps\AD2F1837.HPPCHardwareDiagnosticsWindows_1.6.4.0_x64__v10z8vjag6ke6 [2020-04-15] (HP Inc.)
HP Privacy Settings -> C:\Program Files\WindowsApps\AD2F1837.HPPrivacySettings_1.0.38.0_x64__v10z8vjag6ke6 [2020-01-26] (HP Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_110.1.728.0_x64__v10z8vjag6ke6 [2020-04-14] (HP Inc.)
HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.6.598.0_x64__v10z8vjag6ke6 [2020-04-08] (HP Inc.)
HP System Event Utility -> C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.1.4.0_x64__v10z8vjag6ke6 [2020-01-28] (HP Inc.)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2020-04-08] (INTEL CORP)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_17.8.1007.0_x64__8j3eq9eme6ctt [2020-01-28] (INTEL CORP)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2020-01-28] (LinkedIn)
McAfee® Personal Security -> C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.27.0_x64__wafk5atnkzcwy [2020-04-08] (McAfee LLC.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-01-28] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-01-28] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.6.4030.0_x64__8wekyb3d8bbwe [2020-04-14] (Microsoft Studios) [MS Ad]
Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.14.6005.0_x64__8wekyb3d8bbwe [2020-04-15] (Microsoft Studios)
MSN El tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-04-08] (Microsoft Corporation) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.96.725.0_x64__mcm4njqhnhss8 [2020-04-10] (Netflix, Inc.)
Novedades para ti -> C:\windows\SystemApps\WhatsNew_cw5n1h2txyewy [2020-04-07] (Microsoft Corporation)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.956.0_x64__56jybvy8sckqj [2020-01-25] (NVIDIA Corp.)
OMEN Audio Control -> C:\Program Files\WindowsApps\AD2F1837.OMENAudioControl_1.3.181.0_x64__v10z8vjag6ke6 [2019-11-26] (HP Inc.)
OMEN Command Center -> C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.11.0_x64__v10z8vjag6ke6 [2020-04-20] (HP Inc.) [Startup Task]
Passthrough -> C:\windows\SystemApps\passthrough_cw5n1h2txyewy [2020-04-07] (Microsoft Corporation)
PDF Reader - Visualizar, Anotar, Compartir -> C:\Program Files\WindowsApps\0D9A1B2D.PDFReaderUWP_1.9.4090.0_x64__jhretta7p24aw [2020-04-10] (Kdan Mobile Software Ltd.) [MS Ad]
PhotoScape X -> C:\Program Files\WindowsApps\MooiiTech.PhotoScapeX_4.0.2.0_x64__f5eddttrpssna [2020-02-08] (Mooii Tech)
Servicios de juegos -> C:\Program Files\WindowsApps\Microsoft.GamingServices_2.40.7001.0_x64__8wekyb3d8bbwe [2020-04-14] (Microsoft Corporation)
Sign In -> C:\windows\SystemApps\WebAuthBridgeInternet_cw5n1h2txyewy [2020-01-26] (ms-resource:PublisherDisplayName)
Sign In -> C:\windows\SystemApps\WebAuthBridgeInternetSso_cw5n1h2txyewy [2020-01-26] (ms-resource:PublisherDisplayName)
Sign In -> C:\windows\SystemApps\WebAuthBridgeIntranetSso_cw5n1h2txyewy [2020-01-26] (ms-resource:PublisherDisplayName)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.130.658.0_x86__zpdnekdrzrea0 [2020-04-08] (Spotify AB) [Startup Task]
Synaptics TouchPad -> C:\Program Files\WindowsApps\SynapticsIncorporated.SynHPConsumerDApp_19005.35054.0.0_x64__807d65c4rvak2 [2020-04-08] (Synaptics Incorporated)
The Master Chief Collection: REACH -> C:\Program Files\WindowsApps\Microsoft.TheMasterChiefCollectionREACH_1.1.0.0_x64__8wekyb3d8bbwe [2020-01-28] (Microsoft Studios)
Xbox (Beta) -> C:\Program Files\WindowsApps\Microsoft.GamingApp_2003.1001.4.0_x64__8wekyb3d8bbwe [2020-03-14] (Microsoft Corporation) [Startup Task]

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

CustomCLSID: HKU\S-1-5-21-1669855820-2084828274-340432298-1001_Classes\CLSID\{10D99606-D828-4671-9B5E-F2450D831788} -> [MEGAsync] => C:\Users\carlo\Documents\MEGAsync [2020-02-09 04:22]
CustomCLSID: HKU\S-1-5-21-1669855820-2084828274-340432298-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => D:\carlo\Documents\Dropbox\Dropbox [2020-01-26 14:50]
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\carlo\AppData\Local\MEGAsync\ShellExtX64.dll [2020-03-18] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\carlo\AppData\Local\MEGAsync\ShellExtX64.dll [2020-03-18] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\carlo\AppData\Local\MEGAsync\ShellExtX64.dll [2020-03-18] (Mega Limited -> )
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\carlo\AppData\Local\MEGAsync\ShellExtX64.dll [2020-03-18] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\carlo\AppData\Local\MEGAsync\ShellExtX64.dll [2020-03-18] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\carlo\AppData\Local\MEGAsync\ShellExtX64.dll [2020-03-18] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> Ningún archivo
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> Ningún archivo
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Ningún archivo
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => C:\Program Files\McAfee\MSC\McCtxMenuFrmWrk.dll [2020-02-05] (McAfee, LLC. -> McAfee, LLC.)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\carlo\AppData\Local\MEGAsync\ShellExtX64.dll [2020-03-18] (Mega Limited -> )
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Archivos de programa\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Archivos de programa\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\carlo\AppData\Local\MEGAsync\ShellExtX64.dll [2020-03-18] (Mega Limited -> )
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-04-20] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\carlo\AppData\Local\MEGAsync\ShellExtX64.dll [2020-03-18] (Mega Limited -> )
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> Ningún archivo
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> Ningún archivo
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\carlo\AppData\Local\MEGAsync\ShellExtX64.dll [2020-03-18] (Mega Limited -> )
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> Ningún archivo
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\windows\System32\DriverStore\FileRepository\nvhmi.inf_amd64_e115ca539654e4a0\nvshext.dll [2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Ningún archivo
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-04-20] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => C:\Program Files\McAfee\MSC\McCtxMenuFrmWrk.dll [2020-02-05] (McAfee, LLC. -> McAfee, LLC.)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> Ningún archivo
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Archivos de programa\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Archivos de programa\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Lista blanca) ====================

==================== Accesos directos & WMI ========================

(Las entradas pueden ser listadas para ser restauradas o eliminadas.)

ShortcutWithArgument: C:\Users\carlo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Escritorio Remoto de Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=gbchcmhmhahfdphkhkmpfmihenigjmpp
ShortcutWithArgument: C:\Users\carlo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\YouTube Music.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=cinhimbnkkaeohfgghhklpknlkffjgod
ShortcutWithArgument: C:\Users\carlo\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\b14bc6b8f06194fd\YouTube Music.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=cinhimbnkkaeohfgghhklpknlkffjgod

==================== Módulos cargados (Lista blanca) =============

2020-03-11 21:04 - 2020-03-11 21:04 - 000138240 _____ ( ) [Archivo no firmado] C:\windows\assembly\NativeImages_v4.0.30319_32\Interop.IWs06dcaa36#\aed666a803880b062f8e4b0bc9fc6d5c\Interop.IWshRuntimeLibrary.ni.dll
2020-04-18 21:30 - 2020-04-18 21:30 - 000165376 ____X () [Archivo no firmado] C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220\DAXRPCClient.dll
2020-04-18 21:30 - 2020-04-18 21:30 - 037219328 ____X () [Archivo no firmado] C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220\DolbyAccess.dll
2020-04-18 21:30 - 2020-04-18 21:30 - 001165824 ____X () [Archivo no firmado] C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220\e_sqlite3.dll
2020-01-28 01:11 - 2020-01-28 01:12 - 004979200 _____ (El archivo está en uso)  [Archivo no firmado ?] C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.11.0_x64__v10z8vjag6ke6\win32\AWSIoTCppCLR.dll
2020-03-11 21:03 - 2020-03-11 21:03 - 000134656 _____ (hardcodet.net) [Archivo no firmado] C:\windows\assembly\NativeImages_v4.0.30319_32\Hardcodet.W6cab32f3#\1643419d1e4fe1937e1ca11744ada253\Hardcodet.Wpf.TaskbarNotification.ni.dll
2019-11-26 09:31 - 2019-11-26 09:31 - 000015360 _____ (HP Inc.) [Archivo no firmado] C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.1.4.0_x64__v10z8vjag6ke6\SystemEventUtility\NativeRpcClient.DLL
2020-03-11 21:04 - 2020-03-11 21:04 - 001591808 _____ (Mark Heath) [Archivo no firmado] C:\windows\assembly\NativeImages_v4.0.30319_32\NAudio\8fd673db07920a602d65838ce052a29b\NAudio.ni.dll
2020-03-11 21:04 - 2020-03-11 21:04 - 003127808 _____ (Newtonsoft) [Archivo no firmado] C:\windows\assembly\NativeImages_v4.0.30319_32\Newtonsoft.Json\daabdb3385b789b50058a7162f08d857\Newtonsoft.Json.ni.dll
2019-11-26 09:30 - 2019-04-12 04:36 - 000340480 _____ (Realtek Semiconductor Corp.) [Archivo no firmado] C:\windows\SYSTEM32\RtBWCtrl.dll
2020-01-28 01:11 - 2020-01-28 01:13 - 001625088 _____ (Robert Simpson, et al.) [Archivo no firmado] C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.11.0_x64__v10z8vjag6ke6\win32\SQLite.Interop.dll
2020-03-11 21:03 - 2020-03-11 21:03 - 000793088 _____ (The Apache Software Foundation) [Archivo no firmado] C:\windows\assembly\NativeImages_v4.0.30319_32\log4net\b752f0d636c8ca1a56f52f1334d63b97\log4net.ni.dll
2017-09-14 01:37 - 2017-09-14 01:37 - 000026112 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Users\carlo\AppData\Local\MEGAsync\imageformats\qgif.dll
2017-09-14 01:42 - 2017-09-14 01:42 - 000033280 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Users\carlo\AppData\Local\MEGAsync\imageformats\qicns.dll
2017-09-14 01:37 - 2017-09-14 01:37 - 000027648 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Users\carlo\AppData\Local\MEGAsync\imageformats\qico.dll
2017-09-14 01:37 - 2017-09-14 01:37 - 000245760 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Users\carlo\AppData\Local\MEGAsync\imageformats\qjpeg.dll
2017-09-14 01:42 - 2017-09-14 01:42 - 000021504 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Users\carlo\AppData\Local\MEGAsync\imageformats\qsvg.dll
2017-09-14 01:42 - 2017-09-14 01:42 - 000020992 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Users\carlo\AppData\Local\MEGAsync\imageformats\qtga.dll
2017-09-14 01:42 - 2017-09-14 01:42 - 000316416 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Users\carlo\AppData\Local\MEGAsync\imageformats\qtiff.dll
2017-09-14 01:42 - 2017-09-14 01:42 - 000019968 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Users\carlo\AppData\Local\MEGAsync\imageformats\qwbmp.dll
2017-09-14 01:42 - 2017-09-14 01:42 - 000322560 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Users\carlo\AppData\Local\MEGAsync\imageformats\qwebp.dll
2017-09-14 01:37 - 2017-09-14 01:37 - 001010688 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Users\carlo\AppData\Local\MEGAsync\platforms\qwindows.dll
2019-11-26 09:30 - 2017-09-01 01:22 - 002216448 _____ (TODO: <Company name>) [Archivo no firmado] C:\windows\SYSTEM32\wlanCliDLL.dll

==================== Alternate Data Streams (Lista blanca) ========

(Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.)

AlternateDataStreams: C:\ProgramData\TEMP:DF29D946 [120]
AlternateDataStreams: C:\Users\carlo\Datos de programa:f2470d06f885efcb2972c69faf0745e1 [394]
AlternateDataStreams: C:\Users\carlo\Datos de programa:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]
AlternateDataStreams: C:\Users\carlo\AppData\Roaming:f2470d06f885efcb2972c69faf0745e1 [394]
AlternateDataStreams: C:\Users\carlo\AppData\Roaming:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]

==================== Modo Seguro (Lista blanca) ==================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ModuleCoreService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcapexe => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ModuleCoreService => ""="Service"

==================== Asociación (Lista blanca) =================

==================== Internet Explorer sitios de confianza/restringidos ==========

==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2019-03-18 23:49 - 2019-03-18 23:49 - 000000824 _____ C:\windows\system32\drivers\etc\hosts

2020-04-16 08:51 - 2020-04-20 11:01 - 000000520 _____ C:\windows\system32\drivers\etc\hosts.ics

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKU\S-1-5-21-1669855820-2084828274-340432298-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\hp backgrounds\backgrounddefault.jpg
DNS Servers: 10.0.184.141 - 189.198.222.137
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Firewall de Windows está habilitado.

Network Binding:
=============
Conexión de red Bluetooth: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled) 
Conexión de red Bluetooth: Npcap Packet Driver (NPCAP) (Wi-Fi) -> INSECURE_NPCAP_WIFI (enabled) 
Ethernet: Realtek LightWeight Filter (NDIS6.40) -> nt_rtf64 (enabled) 
Ethernet: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled) 
Ethernet: Npcap Packet Driver (NPCAP) (Wi-Fi) -> INSECURE_NPCAP_WIFI (enabled) 
Wi-Fi: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled) 
Wi-Fi: Npcap Packet Driver (NPCAP) (Wi-Fi) -> INSECURE_NPCAP_WIFI (enabled) 
Wi-Fi: Realtek LightWeight Filter (NDIS6.40) -> nt_rtf64 (enabled) 

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\StartupApproved\Run: => "utweb"
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\StartupApproved\Run: => "Parsec.App.0"
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\StartupApproved\Run: => "Overwolf"
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\StartupApproved\Run: => "Spotify_Lyrics.NET_Helper_UWP"
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\StartupApproved\Run: => "EADM"

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [{1CAB44A0-5B5A-47E2-9642-74D651ABD533}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{FAB827E6-BF7F-450A-8569-749E4087F127}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5A2B4953-1B9C-4B39-BD16-B083BE9498A9}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe (McAfee, LLC. -> McAfee, LLC.)
FirewallRules: [{8E035AD2-EAE5-4277-951A-7C2374725858}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe (McAfee, LLC. -> McAfee, LLC.)
FirewallRules: [{340771C3-666D-4F5D-BC7A-D3CD0F28A60B}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe (McAfee, LLC. -> McAfee, LLC.)
FirewallRules: [{EEE7136D-8EE4-4B4B-8DD5-EC73CF8CB776}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.11.0_x64__v10z8vjag6ke6\win32\StreamerV2\omen.exe (HP Inc. -> )
FirewallRules: [{06CF8107-17C9-4636-8316-02C9EA49EEFD}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.11.0_x64__v10z8vjag6ke6\win32\StreamerV2\omen.exe (HP Inc. -> )
FirewallRules: [{3818D52E-4D34-455A-9F98-B01019265975}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.11.0_x64__v10z8vjag6ke6\win32\StreamerV2\omen.exe (HP Inc. -> )
FirewallRules: [{E8442DAE-DA56-4108-9C6D-174920F2DF64}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.11.0_x64__v10z8vjag6ke6\win32\StreamerV2\omen.exe (HP Inc. -> )
FirewallRules: [{61CD59B4-3088-41EC-85BE-F16EBFDFEB29}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{54D8647F-0F57-4D36-AFF7-29C61BBA8821}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{F97BD71E-CD1B-4358-9DDA-6A82471645F7}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Ningún archivo
FirewallRules: [{50C75A6C-4013-477F-844E-67929F0C8F48}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Ningún archivo
FirewallRules: [{96354B16-4484-4B16-91E2-E990AF6A1C1E}] => (Allow) D:\Archivos de programa\SteamLibrary\steamapps\common\Paladins\Binaries\Win64\PaladinsEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{81FB93F8-B52F-478D-866F-A16A323C532C}] => (Allow) D:\Archivos de programa\SteamLibrary\steamapps\common\Paladins\Binaries\Win64\PaladinsEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{571BB5C5-F53D-46B4-9E1F-E064B5919A2A}] => (Allow) C:\Users\carlo\AppData\Roaming\uTorrent Web\utweb.exe (Jenkins Win Client Build SPC -> BitTorrent Inc.) [Archivo no firmado]
FirewallRules: [{C2F5BBC8-31E6-49F6-96DC-FD2635A350DF}] => (Allow) C:\Users\carlo\AppData\Roaming\uTorrent Web\utweb.exe (Jenkins Win Client Build SPC -> BitTorrent Inc.) [Archivo no firmado]
FirewallRules: [{DD01B176-4710-40CD-BBBB-3BDA907E0163}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3E0BE0E5-01F1-431A-9A26-36FAE9A961C3}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F0446494-2CFD-4EDC-9913-B5F97C2BD6A2}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0DC781B1-48D8-45FE-B5B6-1BEACFF0FADF}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E5F8E89E-56A1-45DA-84C8-DC6527D736D9}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{FFF03B09-BE28-4DD6-B094-DE96095B3D8A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{F508ECA1-DE8F-4C15-81C9-20D10AD176FB}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{FC9D45B6-0FDB-4A61-A7F5-C8AB3086FFA2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{DE2337EE-57B4-4B79-9F42-EE371D6DC604}] => (Allow) D:\Archivos de programa\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{AD6C2FFF-C3DC-46D0-9398-024EEBE943F7}] => (Allow) D:\Archivos de programa\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{5CBB9FFA-1F13-4A34-9323-BCD67501BD61}] => (Allow) C:\Users\carlo\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{95CB3C89-6DEE-4B6A-B078-C3C833414BE0}] => (Allow) C:\Users\carlo\AppData\Roaming\Zoom\bin\airhost.exe Ningún archivo
FirewallRules: [{D9613309-46D0-4E97-8364-7473EC2E2C6D}] => (Allow) D:\Archivos de programa\Overwolf\0.143.0.24\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{B764C6F7-F0CD-43C8-8253-D4A58EE3AC61}] => (Allow) D:\Archivos de programa\Overwolf\0.143.0.24\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{63B1B16F-A483-4893-B64A-6FCDDF07ABA9}] => (Block) D:\Archivos de programa\Overwolf\0.143.0.24\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{34CFE9A6-D3CA-4251-9ECD-883053A3D106}] => (Block) D:\Archivos de programa\Overwolf\0.143.0.24\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{89B56F46-B3A1-41BF-80A3-969A661389CA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.130.658.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0988FE54-B777-410C-AD61-63648FB46171}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.130.658.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{3CC1C8CF-769B-4C05-BB20-F9D71604D1F0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.130.658.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C13CF808-7497-43D8-B88E-DB05C000457C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.130.658.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{DF693A0A-7723-40C3-AFEE-97B9CAA45937}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.130.658.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{FC972375-2BAD-45B6-81F7-2CE8E89C4D22}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.130.658.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{FB076467-9474-4E10-A15B-1CDB87F48928}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.130.658.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{3F6EDB77-43A7-47B2-B0A8-3FD737F353CB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.130.658.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{876F752D-8B60-4B3B-9B4B-7AEC5CFE7094}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0CEDD079-E5F9-4F87-B36F-60F192A8ADC5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{70E51C54-E805-40F6-849C-EAEA6CAF915E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{0CC31541-812B-4E73-A51A-CE30A0B99914}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4D7911DF-12B8-42A8-8A4A-686BA775A889}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{01E30B76-1C55-4C19-818C-3E3980393472}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{77353E2E-F7F2-44C0-9868-CC291E46C2D1}] => (Allow) D:\Archivos de programa\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{F32DB8C1-B818-411A-AC49-FD283B856EB8}] => (Allow) D:\Archivos de programa\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{2A4CA9FD-B36F-4D2E-AA9B-138584A6DB89}] => (Allow) %systemroot%\system32\alg.exe Ningún archivo
FirewallRules: [{DA619D1A-A0EB-4CC7-AFEB-D304DEE2A799}] => (Allow) %systemroot%\system32\alg.exe Ningún archivo
FirewallRules: [{748F3B82-E387-4849-B4D6-73BBD84F8CC7}] => (Allow) %systemroot%\system32\alg.exe Ningún archivo
FirewallRules: [{B5A86A48-303A-46B9-9EDD-154DC8539315}] => (Allow) %systemroot%\system32\alg.exe Ningún archivo
FirewallRules: [{EEAAFF47-14EF-453B-BEE4-8DD5A82AF230}] => (Allow) %systemroot%\system32\alg.exe Ningún archivo
FirewallRules: [{0D85401F-41E1-42D2-A9BB-093665B1A9DE}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.11.0_x64__v10z8vjag6ke6\win32\StreamerV2\Omen.exe (HP Inc. -> )
FirewallRules: [{3D35EFD9-7AC8-48FA-9A29-8530F8AAFC58}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.11.0_x64__v10z8vjag6ke6\win32\StreamerV2\Omen.exe (HP Inc. -> )
FirewallRules: [{7A7F39D3-8A10-4953-A484-40C62FBA3F6E}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.11.0_x64__v10z8vjag6ke6\win32\StreamerV2\Omen.exe (HP Inc. -> )
FirewallRules: [{56950C48-D655-4077-A6CA-97F4F4936329}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.11.0_x64__v10z8vjag6ke6\win32\StreamerV2\Omen.exe (HP Inc. -> )
FirewallRules: [{01FFC7BF-5A62-4685-9A65-635E28F5A1A8}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.11.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc.) [Archivo no firmado]
FirewallRules: [{3E85715D-4057-4D0D-81DE-310F1BB094B6}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.11.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc.) [Archivo no firmado]
FirewallRules: [{9A21D086-1942-44A8-9B37-B09C3961C562}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.11.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc.) [Archivo no firmado]
FirewallRules: [{56F3B9F5-36A2-40DF-BE6E-94F1ACE4AF05}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.11.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc.) [Archivo no firmado]
FirewallRules: [{2EAD6F35-A468-4019-9B2C-757B6A2105AD}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Puntos de Restauración =========================

23-04-2020 00:44:50 Eliminación del paquete de idioma

==================== Dispositivos defectuosos en el Administrador de dispositivos ============

Name: Dispositivo de entrada USB
Description: Dispositivo de entrada USB
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Dispositivos de sistema estándar)
Service: HidUsb
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (04/22/2020 08:53:08 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: LAPTOP-5P0DD8KF)
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.

Error: (04/22/2020 07:44:06 PM) (Source: HP Comm Recovery) (EventID: 0) (User: )
Description: Error al controlar PowerEvent. Error: System.IO.IOException: El proceso no puede obtener acceso al archivo 'C:\Windows\Temp\signtool.exe' porque está siendo utilizado en otro proceso.
   en System.IO.__Error.WinIOError(Int32 errorCode, String maybeFullPath)
   en System.IO.FileStream.Init(String path, FileMode mode, FileAccess access, Int32 rights, Boolean useRights, FileShare share, Int32 bufferSize, FileOptions options, SECURITY_ATTRIBUTES secAttrs, String msgPath, Boolean bFromProxy, Boolean useLongPath, Boolean checkHost)
   en System.IO.FileStream..ctor(String path, FileMode mode, FileAccess access, FileShare share, Int32 bufferSize, FileOptions options, String msgPath, Boolean bFromProxy)
   en System.IO.FileStream..ctor(String path, FileMode mode)
   en _HPCommRecovery.Tools.Signtool.ExtractSignTool()
   en _HPCommRecovery.Tools.Signtool.Verify(String arg)
   en _HPCommRecovery.HPAHAgent.CallAgent()
   en _HPCommRecovery.AppSession..ctor(DateTime Current, String LogPath)
   en _HPCommRecovery.HPAHLogger.NewSession()
   en _HPC....

Error: (04/22/2020 06:05:54 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: GameBar.exe, versión: 5.120.4062.0, marca de tiempo: 0x5e8b4797
Nombre del módulo con errores: ucrtbase.dll, versión: 10.0.18362.387, marca de tiempo: 0x4361b720
Código de excepción: 0xc0000409
Desplazamiento de errores: 0x000000000006db8e
Identificador del proceso con errores: 0x1760
Hora de inicio de la aplicación con errores: 0x01d618fa86d46f56
Ruta de acceso de la aplicación con errores: C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.120.4062.0_x64__8wekyb3d8bbwe\GameBar.exe
Ruta de acceso del módulo con errores: C:\windows\System32\ucrtbase.dll
Identificador del informe: 08d55ce5-a76c-400d-ad5f-ab51d20448d3
Nombre completo del paquete con errores: Microsoft.XboxGamingOverlay_5.120.4062.0_x64__8wekyb3d8bbwe
Identificador de aplicación relativa del paquete con errores: App

Error: (04/22/2020 12:33:51 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: LAPTOP-5P0DD8KF)
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.

Error: (04/22/2020 12:52:43 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: LAPTOP-5P0DD8KF)
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.

Error: (04/21/2020 10:08:02 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: LAPTOP-5P0DD8KF)
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.

Error: (04/20/2020 05:31:50 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina CoCreateInstance. HR = 0x8007045b, Se está cerrando el sistema.
.

Error: (04/20/2020 05:31:50 PM) (Source: VSS) (EventID: 13) (User: )
Description: Información del Servicio de instantáneas de volumen: el servidor COM con CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} y el nombre CEventSystem no puede iniciarse. [0x8007045b, Se está cerrando el sistema.
]


Errores del sistema:
=============
Error: (04/22/2020 09:48:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio eapihdrv no pudo iniciarse debido al siguiente error: 
Se ha bloqueado la descarga de este controlador

Error: (04/22/2020 09:48:41 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\carlo\AppData\Local\Temp\ehdrv.sys

Error: (04/22/2020 09:48:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio eapihdrv no pudo iniciarse debido al siguiente error: 
Se ha bloqueado la descarga de este controlador

Error: (04/22/2020 09:48:40 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\carlo\AppData\Local\Temp\ehdrv.sys

Error: (04/22/2020 09:48:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio eapihdrv no pudo iniciarse debido al siguiente error: 
Se ha bloqueado la descarga de este controlador

Error: (04/22/2020 09:48:40 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\carlo\AppData\Local\Temp\ehdrv.sys

Error: (04/22/2020 09:48:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio eapihdrv no pudo iniciarse debido al siguiente error: 
Se ha bloqueado la descarga de este controlador

Error: (04/22/2020 09:48:40 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\carlo\AppData\Local\Temp\ehdrv.sys


CodeIntegrity:
===================================

Date: 2020-04-23 01:05:34.533
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Windows signing level requirements.

Date: 2020-04-23 01:05:34.440
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Windows signing level requirements.

Date: 2020-04-23 00:13:47.264
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-04-23 00:13:47.257
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-04-23 00:13:47.249
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-04-23 00:13:47.237
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-04-23 00:13:47.228
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-04-23 00:13:47.221
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Información de la memoria =========================== 

BIOS: AMI F.16 03/23/2020
Placa base: HP 8575
Procesador: Intel(R) Core(TM) i7-9750H CPU @ 2.60GHz
Porcentaje de memoria en uso: 62%
RAM física total: 16191.83 MB
RAM física disponible: 6070.54 MB
Virtual total: 24895.83 MB
Virtual disponible: 11852.1 MB

==================== Unidades ================================

Drive c: (Windows) (Fixed) (Total:118.49 GB) (Free:14 GB) NTFS
Drive d: (DATA) (Fixed) (Total:931.51 GB) (Free:602.94 GB) NTFS

\\?\Volume{1bd1c15a-c9e9-4924-9627-0b78503bbae5}\ (Windows RE tools) (Fixed) (Total:0.48 GB) (Free:0.06 GB) NTFS
\\?\Volume{97fb0c80-cbff-b10d-db75-e48ef1994d85}\ () (Fixed) (Total:19.03 GB) (Free:0 GB) NTFS
\\?\Volume{10e372fe-f97e-6d78-890e-8f1aee9c54a4}\ () (Fixed) (Total:33.23 GB) (Free:0 GB) NTFS
\\?\Volume{a7537661-921f-ed59-a758-f2ff8a6db369}\ () (Fixed) (Total:0 GB) (Free:0 GB) NTFS
\\?\Volume{a4cb5ab7-e70d-4feb-82e8-c06fe1815378}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: 551A1240)

Partition: GPT.

==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 8B3EAB57)

Partition: GPT.
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 2.
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 3.
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 4.

==================== Final de Addition.txt =======================

Hola @Alonso_Rangel

Ejecutaste FRST desde un lugar incorrecto:

  • Ejecutado desde D:\carlo\Escritorio

Corta el ejecutable y pegalo en tu escritorio <<< Esto es Muy Importante.

En tu caso debe ser el escritorio de C:\ que es donde tienes el Sistema Operativo.


Luego sigue estos pasos:

1.- Muy Importante >>> Realizar una copia de Seguridad de su Registro.

  • Descarga DelFix en el escritorio de Windows.
  • Clic Derecho, “Ejecutar como Administrador”.
  • En la ventana principal, marca solamente la casilla “Create Registry Backup”.
  • Clic en Run.

Al terminar se abrirá un reporte llamado DelFix.txt, guárdelo por si fuera necesario y cierre la herramienta…

2.- Desactiva Temporalmente tu antivirus.

3.- Abre un nuevo archivo Notepad/Bloc de Notas y copia y pega este contenido:

Start
CloseProcesses:
CreateRestorePoint:
REITSUPER ESTATE LLC -> ) C:\Users\carlo\AppData\Roaming\GK5Frk2XdL0bfJDd6leMC\whrrZYvRa.exe
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.122\Installer\chrmstp.exe [2020-04-21] (Google LLC -> Google LLC)
Startup: C:\Users\carlo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\fOCvL1mkuq1ZHFh9.lnk [2020-04-20]
ShortcutTarget: fOCvL1mkuq1ZHFh9.lnk -> C:\Users\carlo\AppData\Roaming\GK5Frk2XdL0bfJDd6leMC\whrrZYvRa.exe (REITSUPER ESTATE LLC -> )
Task: {91E3B185-BBBD-47CE-B04E-7B8F50EE8896} - System32\Tasks\Overwolf Updater Task => D:\Archivos de programa\Overwolf\OverwolfUpdater.exe [2463064 2020-03-14] (Overwolf Ltd -> Overwolf LTD)
"C:\Windows\System32\Tasks\McAfee\McAfee Idle Detection Task" fue desbloqueado. <==== ATENCIÓN
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://micomenzar.toshiba.com
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
FF HKLM\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\McAfee\MSKHKLM => no encontrado
S3 Origin Client Service; "C:\Program Files (x86)\Origin\OriginClientService.exe" [X]
S2 Origin Web Helper Service; "C:\Program Files (x86)\Origin\OriginWebHelperService.exe" [X]
2020-04-22 23:02 - 2020-04-22 23:02 - 000478392 ____N (Kaspersky Lab ZAO) C:\windows\system32\Drivers\77822393.sys
2020-04-22 23:02 - 2020-04-22 23:02 - 000085600 ____N (Kaspersky Lab ZAO) C:\windows\system32\Drivers\93860453.sys
2020-04-22 23:02 - 2020-04-22 23:02 - 000000000 ____D C:\KVRT_Data
2020-04-22 21:42 - 2020-04-22 21:42 - 000000672 _____ C:\Users\carlo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2020-04-22 21:42 - 2020-04-22 21:42 - 000000000 ____D C:\Users\carlo\AppData\Local\ESET
2020-04-20 17:25 - 2020-04-20 17:33 - 000000000 ____D C:\ProgramData\AVAST Software
2020-04-20 17:25 - 2020-04-20 17:33 - 000000000 ____D C:\Program Files\AVAST Software
2020-04-20 12:33 - 2020-04-20 17:58 - 000000000 ____D C:\Users\carlo\AppData\Roaming\GK5Frk2XdL0bfJDd6leMC
2020-04-17 11:57 - 2020-04-17 11:58 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> Ningún archivo
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> Ningún archivo
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Ningún archivo
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> Ningún archivo
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> Ningún archivo
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> Ningún archivo
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Ningún archivo
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> Ningún archivo
AlternateDataStreams: C:\ProgramData\TEMP:DF29D946 [120]
AlternateDataStreams: C:\Users\carlo\Datos de programa:f2470d06f885efcb2972c69faf0745e1 [394]
AlternateDataStreams: C:\Users\carlo\Datos de programa:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]
AlternateDataStreams: C:\Users\carlo\AppData\Roaming:f2470d06f885efcb2972c69faf0745e1 [394]
AlternateDataStreams: C:\Users\carlo\AppData\Roaming:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]
FirewallRules: [{F97BD71E-CD1B-4358-9DDA-6A82471645F7}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Ningún archivo
FirewallRules: [{50C75A6C-4013-477F-844E-67929F0C8F48}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Ningún archivo
FirewallRules: [{95CB3C89-6DEE-4B6A-B078-C3C833414BE0}] => (Allow) C:\Users\carlo\AppData\Roaming\Zoom\bin\airhost.exe Ningún archivo
FirewallRules: [{2A4CA9FD-B36F-4D2E-AA9B-138584A6DB89}] => (Allow) %systemroot%\system32\alg.exe Ningún archivo
FirewallRules: [{DA619D1A-A0EB-4CC7-AFEB-D304DEE2A799}] => (Allow) %systemroot%\system32\alg.exe Ningún archivo
FirewallRules: [{748F3B82-E387-4849-B4D6-73BBD84F8CC7}] => (Allow) %systemroot%\system32\alg.exe Ningún archivo
FirewallRules: [{B5A86A48-303A-46B9-9EDD-154DC8539315}] => (Allow) %systemroot%\system32\alg.exe Ningún archivo
FirewallRules: [{EEAAFF47-14EF-453B-BEE4-8DD5A82AF230}] => (Allow) %systemroot%\system32\alg.exe Ningún archivo

CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
END
  • Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.

Nota: Es necesario que el ejecutable Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no la herramienta no trabajara.

  • Ejecutas Frst.exe.
  • Presionas el botón Fix/Corregir y aguardas a que termine.
  • La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).
  • Lo pegas en tu próxima respuesta.

Luego de reiniciar, nos comentas como sigue el equipo.

Salu2.

Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 30-04-2020
Ejecutado por carlo (administrador) sobre LAPTOP-5P0DD8KF (HP OMEN by HP Laptop 15-dc1xxx) (01-05-2020 06:34:42)
Ejecutado desde C:\carlo\Escritorio
Perfiles cargados: carlo (Perfiles disponibles: carlo)
Platform: Windows 10 Home Single Language Versión 1909 18363.778 (X64) Idioma: Español (México)
Navegador predeterminado: Chrome
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Conexant Systems LLC -> Conexant Systems LLC.) C:\Windows\System32\CxAudioSvc.exe
(Conexant Systems LLC -> Synaptics Incorporated.) C:\Windows\System32\SynAudSrv.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3>
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\96.4.172\QtWebEngineProcess.exe <2>
(DTS, Inc. -> ) C:\Windows\System32\DTS\PC\APO3x\DTSAPO3Service.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe
(HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_942053d68a2ba613\x64\TouchpointAnalyticsClientService.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_79c5c41204d03777\x64\AppHelperCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_79c5c41204d03777\x64\NetworkCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_79c5c41204d03777\x64\SysInfoCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_59a0a32410fb19a2\x64\OmenCap.exe
(HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.5.1296.0_x64__v10z8vjag6ke6\HP.JumpStarts.exe
(HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.1.4.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityHost.exe
(HP Inc.) C:\Program Files\WindowsApps\AD2F1837.OMENAudioControl_1.3.181.0_x64__v10z8vjag6ke6\OMENAudioControl.exe
(HP Inc.) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.11.0_x64__v10z8vjag6ke6\win32\OmenCommandCenterBackground.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\jhi_service.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_05de635879d45aad\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_05de635879d45aad\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_e705c7cb629066f4\IntelCpHDCPSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_e705c7cb629066f4\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_6ca78a08b838e305\RstMwService.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(McAfee, Inc. -> McAfee LLC.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(McAfee, Inc. -> McAfee, LLC) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(McAfee, Inc. -> McAfee, LLC) C:\Windows\System32\mfevtps.exe
(McAfee, LLC -> McAfee, LLC.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe <2>
(McAfee, LLC. -> McAfee, LLC) C:\Program Files\Common Files\McAfee\VSCore_20_1\mcapexe.exe
(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\Common Files\McAfee\CSP\3.4.105.0\McCSPServiceHost.exe
(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHOST.exe
(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\Common Files\McAfee\ModuleCore\ProtectedModuleHost.exe
(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe
(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe
(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\Common Files\McAfee\Platform\MSM\McSmtFwk.exe
(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\McAfee\MfeAV\MfeAVSvc.exe
(McAfee, LLC. -> McAfee, LLC.) C:\Program Files\McAfee\MQS\QcShm.exe
(Mega Limited -> Mega Limited) C:\Users\carlo\AppData\Local\MEGAsync\MEGAsync.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\carlo\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2003.1001.4.0_x64__8wekyb3d8bbwe\app\XboxAppServices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.40.7001.0_x64__8wekyb3d8bbwe\GamingServices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.40.7001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12624.20368.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12624.20368.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12004.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxApp_48.62.6002.0_x64__8wekyb3d8bbwe\XboxApp.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvhmi.inf_amd64_f5abf44622a9ff68\Display.NvContainer\NVDisplay.Container.exe <2>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(REITSUPER ESTATE LLC -> ) C:\Users\carlo\AppData\Roaming\GK5Frk2XdL0bfJDd6leMC\whrrZYvRa.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
(TechPowerUp LLC -> uWebb Software) D:\carlo\Downloads\ThrottleStop_8.70.6\ThrottleStop.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [RtkAudUService] => C:\windows\System32\RtkAudUService64.exe [878368 2019-06-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6856192 2020-04-28] (Dropbox, Inc -> Dropbox, Inc.)
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [1114624 2019-05-31] (HP Inc.) [Archivo no firmado]
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\Run: [Discord] => C:\Users\carlo\AppData\Local\Discord\app-0.0.306\Discord.exe [90950968 2020-02-24] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\Run: [Parsec.App.0] => C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_9.6.9.0_x64__v10z8vjag6ke6\win32\Streamer\omen.exe app_silent=1
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3371296 2020-04-03] (Valve -> Valve Corporation)
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\Run: [Overwolf] => D:\Archivos de programa\Overwolf\OverwolfLauncher.exe [1749848 2020-03-14] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\Run: [utweb] => C:\Users\carlo\AppData\Roaming\uTorrent Web\utweb.exe [5415128 2019-12-19] (Jenkins Win Client Build SPC -> BitTorrent Inc.) [Archivo no firmado]
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\Run: [Spotify_Lyrics.NET_Helper_UWP] => D:\carlo\Documents\Spotify Lyrics .NET\Spotify_Lyrics.NET_Helper_UWP.exe
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22245560 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.129\Installer\chrmstp.exe [2020-04-28] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{9459C573-B17A-45AE-9F64-1857B5D58CEE}] -> C:\Program Files (x86)\Microsoft\Edge\Application\81.0.416.68\Installer\setup.exe [2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\Users\carlo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\fOCvL1mkuq1ZHFh9.lnk [2020-04-20]
ShortcutTarget: fOCvL1mkuq1ZHFh9.lnk -> C:\Users\carlo\AppData\Roaming\GK5Frk2XdL0bfJDd6leMC\whrrZYvRa.exe (REITSUPER ESTATE LLC -> )
Startup: C:\Users\carlo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2020-02-09]
ShortcutTarget: MEGAsync.lnk -> C:\Users\carlo\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited)

==================== Tareas programadas (Lista blanca) ============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {06E26DB4-B5B5-4622-83F7-33B45F092D0E} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineCore => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [224160 2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {1C232E5E-8B73-45F5-951E-5EEBD4785C96} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18227896 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {1F5B1C5D-2724-4FFE-A65A-ABE686BB97E6} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {27B268CB-2A56-40EA-881E-F6DC6887E615} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4A0E30EB-440C-45F1-9DD9-9FF3DB5AEA18} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineUA => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [224160 2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {4A278173-4412-41F4-9473-9D9EBB9F33DC} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4CC57652-BC1A-4A30-9558-DB7CE6DAF394} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3293168 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5C716D79-F45C-42A3-BF16-4E13B003116E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {63EBFF4F-C1D7-4061-88CC-BE8FA488827C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-01-25] (Google LLC -> Google LLC)
Task: {7DFAAB01-0FA2-4149-9DE2-D90F9DFB3E15} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158568 2020-04-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {7EFA0FAE-E574-409A-8426-1866313CA63E} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent => {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1072312 2020-02-04] (McAfee, LLC. -> McAfee, LLC.)
Task: {80B5177E-4E96-4538-B8BF-814C75883B4F} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {82C11A7A-BC30-4A33-993F-9DED8227CFBE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6147496 2020-04-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {888EFB28-5639-4D9B-B4E6-81359C74FEAB} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat [862 2019-04-30] () [Archivo no firmado]
Task: {8D03B2EB-2DFF-4B25-9CA5-60D144DC6049} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24702832 2020-04-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {91E3B185-BBBD-47CE-B04E-7B8F50EE8896} - System32\Tasks\Overwolf Updater Task => D:\Archivos de programa\Overwolf\OverwolfUpdater.exe [2463064 2020-03-14] (Overwolf Ltd -> Overwolf LTD)
Task: {967B2E8E-9449-40B1-B1AC-1BCD4DDD610C} - System32\Tasks\McAfee\McAfee Idle Detection Task => {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1072312 2020-02-04] (McAfee, LLC. -> McAfee, LLC.)
Task: {9884E6D8-4957-4F90-94D5-3C80118C6118} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe [761424 2020-02-05] (McAfee, LLC. -> McAfee, LLC.)
Task: {A076BB83-688C-4A46-B500-5F3EA6E5E5B1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1099640 2020-01-28] (HP Inc. -> HP Inc.)
Task: {AC14F6D0-ECA5-4A19-AB5F-742D88914611} - System32\Tasks\Throttlestop => D:\carlo\Downloads\ThrottleStop_8.70.6\ThrottleStop.exe [509608 2019-01-24] (TechPowerUp LLC -> uWebb Software)
Task: {B8D061C6-2DF6-4C38-A391-D9422DBCB7CE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-01-25] (Google LLC -> Google LLC)
Task: {BA624B3C-13A0-480D-9994-9F8A7E8C1C50} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\1.4.134\DADUpdater.exe [4147336 2020-03-20] (McAfee, Inc. -> McAfee, LLC)
Task: {C85E44CD-38EE-4845-98D9-C3F01DB078C9} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158568 2020-04-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {CDF065FB-E653-46AB-8AF1-BA08D52522B4} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CE7BC382-A85A-4901-8982-38196D4B58B3} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DAA0266F-456A-488A-8ED8-10974805D985} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DB517789-3617-4F81-A594-5069A44F164E} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1644984 2018-07-18] (HP Inc. -> HP Inc.)
Task: {DD0AA089-85C9-40CD-A0A9-E8B5A9F2DFA8} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DD58DF78-86EF-4E3D-AB44-91E7D8D23DE9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1099640 2020-01-28] (HP Inc. -> HP Inc.)
Task: {DD89E7DE-8FC3-45D9-B52A-11DFDEAA820A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [147320 2020-01-28] (HP Inc. -> HP Inc.)
Task: {DDD5AB47-07D0-4F97-B8D3-9646811C1B36} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6147496 2020-04-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {E5F4C820-666A-4D02-8963-DC0EA7C9D852} - System32\Tasks\HP\Consent Manager Launcher => sc start hptouchpointanalyticsservice
Task: {EA5F632E-F9BB-4CD5-B318-5CEEA33CDC32} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {F25ABA73-227E-4C1B-96AC-54CE8AA543FD} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-01-25] (Dropbox, Inc -> Dropbox, Inc.)
Task: {F724A0A9-D147-4862-9809-8E652489B9BB} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-01-25] (Dropbox, Inc -> Dropbox, Inc.)
Task: {F77FA252-2ABE-475D-9F94-437393F57FDE} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F8453BF0-B47A-4857-B9CD-A3998ED6AFC9} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24702832 2020-04-10] (Microsoft Corporation -> Microsoft Corporation)

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)

Task: C:\windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Tcpip\Parameters: [DhcpNameServer] 10.0.184.141 189.198.222.137 200.52.196.196
Tcpip\..\Interfaces\{0b2736e5-f0aa-48cf-a149-a3693eb69964}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{0b2736e5-f0aa-48cf-a149-a3693eb69964}: [DhcpNameServer] 10.0.184.141 189.198.222.137 200.52.196.196
Tcpip\..\Interfaces\{70d3fde1-5dd6-4029-a7da-b6ce3a364851}: [DhcpNameServer] 10.0.184.141 189.198.222.137 200.52.196.196

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://micomenzar.toshiba.com
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2020-01-28] (HP Inc. -> HP Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-01-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2020-04-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2020-01-28] (HP Inc. -> HP Inc.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-04-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-04-09] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-04-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-04-09] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-04-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-04-09] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-04-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-04-09] (Microsoft Corporation -> Microsoft Corporation)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\McAfee\MSC\McSnIePl64.dll [2020-02-05] (McAfee, LLC. -> McAfee, LLC.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files (x86)\McAfee\MSC\McSnIePl.dll [2020-02-05] (McAfee, LLC. -> McAfee, LLC.)

Edge: 
======
Edge DefaultProfile: Default
Edge Profile: C:\Users\carlo\AppData\Local\Microsoft\Edge\User Data\Default [2020-05-01]
Edge Extension: (Web Video Downloader) - C:\Users\carlo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\adahebendgkgacfmpnmoddebbnfpfkcd [2020-05-01]
Edge Extension: (Safe Torrent Scanner) - C:\Users\carlo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2020-05-01]
Edge Extension: (MEGA) - C:\Users\carlo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2020-05-01]
Edge Extension: (DownAlbum) - C:\Users\carlo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\cgjnhhjpfcdhbhlcmmjppicjmgfkppok [2020-05-01]
Edge Extension: (Photo Zoom for Facebook) - C:\Users\carlo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi [2020-05-01]
Edge Extension: (Captura de página completa - FireShot) - C:\Users\carlo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fcbmiimfkmkkkffjlopcpdlgclncnknm [2020-05-01]
Edge Extension: (Botón de Google Académico) - C:\Users\carlo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fciokoalnclhnonofghacdplgpafdcgl [2020-05-01]
Edge Extension: (Letras.mus.br) - C:\Users\carlo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\flhkjkdhoffhpbnenjlmahnkjcpfbddh [2020-05-01]
Edge Extension: (Apaga las luces) - C:\Users\carlo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fmamkbgpnienhphflfdamlhnljffjdgm [2020-05-01]
Edge Extension: (Tampermonkey) - C:\Users\carlo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\iikmkjmpaadaobahmlepeloendndfphd [2020-05-01]
Edge Extension: (Servicio cashback Letyshops) - C:\Users\carlo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\lphicbbhfmllgmomkkhjfkpbdlncafbn [2020-05-01]
Edge Extension: (Video Downloader professional) - C:\Users\carlo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mbpnbnogejaolbhfpfgagldkeahefbhd [2020-05-01]
Edge Extension: (AdBlock: el mejor bloqueador de anuncios) - C:\Users\carlo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2020-05-01]
Edge Extension: (uBlock Origin) - C:\Users\carlo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2020-05-01]
Edge Extension: (Scopus Document Download Manager) - C:\Users\carlo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ojplelelocihfchkdaebocpankipadmp [2020-05-01]
Edge Extension: (Netflix Party) - C:\Users\carlo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\oocalimimngaihdkbihfgmpkcpnmlaoa [2020-05-01]
Edge Extension: (AdGuard AdBlocker) - C:\Users\carlo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pdffkfellgipmhklpdmokmckkkfcopbh [2020-05-01]

FireFox:
========
FF DefaultProfile: r2cptqjb.default
FF ProfilePath: C:\Users\carlo\AppData\Roaming\Mozilla\Firefox\Profiles\r2cptqjb.default [2020-02-12]
FF ProfilePath: C:\Users\carlo\AppData\Roaming\Mozilla\Firefox\Profiles\33c1frqf.default-release [2020-05-01]
FF HKLM\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\McAfee\MSKHKLM => no encontrado
FF HKLM-x32\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\McAfee\MSK
FF Extension: (McAfee Anti-Spam Thunderbird Extension) - C:\Program Files\McAfee\MSK [2020-03-03] [Heredado] [no firmado]
FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\McAfee\MSC\npMcSnFFPl64.dll [2020-02-05] (McAfee, LLC. -> )
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> D:\Archivos de programa\Nueva carpeta\VLC\npvlc.dll [Ningún archivo]
FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\MSC\npMcSnFFPl.dll [2020-02-05] (McAfee, LLC. -> )
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-02-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-01-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-03-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1669855820-2084828274-340432298-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\carlo\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-04-03] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default [2020-05-01]
CHR Notifications: Default -> hxxps://forospyware.com; hxxps://messages.google.com; hxxps://www.youtube.com
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchURL: Default -> hxxps://www.gstatic.com/youtube/media/ytm/images/applauncher/music_icon_48x48.png
CHR Session Restore: Default -> está habilitado.
CHR Extension: (Presentaciones) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-01-25]
CHR Extension: (Web Video Downloader) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\adahebendgkgacfmpnmoddebbnfpfkcd [2020-02-12]
CHR Extension: (Safe Torrent Scanner) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2020-02-05]
CHR Extension: (Documentos) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-01-25]
CHR Extension: (Google Drive) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-01-25]
CHR Extension: (Turn Off the Lights) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn [2020-03-21]
CHR Extension: (AdGuard AdBlocker) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2020-04-15]
CHR Extension: (MEGA) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2020-05-01]
CHR Extension: (YouTube) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-01-25]
CHR Extension: (DownAlbum) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgjnhhjpfcdhbhlcmmjppicjmgfkppok [2020-04-12]
CHR Extension: (YouTube Music) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cinhimbnkkaeohfgghhklpknlkffjgod [2020-04-26]
CHR Extension: (uBlock Origin) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2020-04-22]
CHR Extension: (Tampermonkey) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2020-01-25]
CHR Extension: (Adobe Acrobat) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-03-07]
CHR Extension: (Video Downloader professional) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2020-01-25]
CHR Extension: (Photo Zoom for Facebook) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi [2020-01-25]
CHR Extension: (Hojas de cálculo) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-01-25]
CHR Extension: (Letras.mus.br) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\flhkjkdhoffhpbnenjlmahnkjcpfbddh [2020-01-25]
CHR Extension: (Escritorio Remoto de Chrome) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2020-01-25]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-20]
CHR Extension: (AdBlock: el mejor bloqueador de anuncios) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-04-15]
CHR Extension: (Botón de Google Académico) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldipcbpaocekfooobnbcddclnhejkcpn [2020-01-25]
CHR Extension: (Webcam Toy) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfbgimoladefibpklnfmkpknadbklade [2020-01-25]
CHR Extension: (Servicio cashback Letyshops) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\lphicbbhfmllgmomkkhjfkpbdlncafbn [2020-05-01]
CHR Extension: (Captura de página completa - FireShot) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbpblocgmgfnpjjppndjkmgjaogfceg [2020-01-25]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-01-25]
CHR Extension: (Scopus Document Download Manager) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojplelelocihfchkdaebocpankipadmp [2020-01-25]
CHR Extension: (Netflix Party) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\oocalimimngaihdkbihfgmpkcpnmlaoa [2020-04-17]
CHR Extension: (Gmail) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-01-25]
CHR Extension: (Chrome Media Router) - C:\Users\carlo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-22]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [10626648 2020-04-10] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-01-25] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-01-25] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\windows\system32\DbxSvc.exe [44552 2020-04-28] (Dropbox, Inc -> Dropbox, Inc.)
R2 DTSAPO3Service; C:\windows\System32\DTS\PC\APO3x\DTSAPO3Service.exe [223640 2019-09-03] (DTS, Inc. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-11-12] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S2 edgeupdate; C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [224160 2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
S3 edgeupdatem; C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [224160 2020-05-01] (Microsoft Corporation -> Microsoft Corporation)
R2 esifsvc; C:\windows\System32\Intel\DPTF\esif_uf.exe [1883104 2019-01-24] (Intel Corporation -> Intel Corporation)
R2 GameInput; C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe [48776 2020-04-07] (Microsoft Corporation -> Microsoft Corporation)
R2 GamingServices; C:\Program Files\WindowsApps\Microsoft.GamingServices_2.40.7001.0_x64__8wekyb3d8bbwe\GamingServices.exe [46008 2020-04-14] (Microsoft Corporation -> Microsoft Corporation)
R2 GamingServicesNet; C:\Program Files\WindowsApps\Microsoft.GamingServices_2.40.7001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe [46008 2020-04-14] (Microsoft Corporation -> Microsoft Corporation)
S4 HfcDisableService; C:\windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_6ca78a08b838e305\HfcDisableService.exe [1883856 2019-07-19] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [1321096 2018-09-28] (HP Inc. -> HP Inc.)
R2 HPAppHelperCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_79c5c41204d03777\x64\AppHelperCap.exe [515344 2020-03-27] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_79c5c41204d03777\x64\NetworkCap.exe [514320 2020-03-27] (HP Inc. -> HP Inc.)
R2 HPOmenCap; C:\windows\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_59a0a32410fb19a2\x64\OmenCap.exe [502544 2020-02-05] (HP Inc. -> HP Inc.)
R2 HPSysInfoCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_79c5c41204d03777\x64\SysInfoCap.exe [516880 2020-03-27] (HP Inc. -> HP Inc.)
R2 HpTouchpointAnalyticsService; C:\windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_942053d68a2ba613\x64\TouchpointAnalyticsClientService.exe [429008 2019-10-31] (HP Inc. -> HP Inc.)
S3 iaStorAfsService; C:\windows\System32\iaStorAfsService.exe [2873552 2019-07-19] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R2 ibtsiva; C:\windows\System32\ibtsiva.exe [536864 2020-01-06] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_34687bf44d0a152a\lib\SocketHeciServer.exe [873232 2019-03-13] (Intel(R) Trust Services -> Intel(R) Corporation)
S2 Intel(R) TPM Provisioning Service; C:\windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_34687bf44d0a152a\lib\TPMProvisioningService.exe [792848 2019-03-13] (Intel(R) Trust Services -> Intel(R) Corporation)
R2 jhi_service; C:\windows\System32\jhi_service.exe [648184 2019-03-13] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-04-20] (Malwarebytes Inc -> Malwarebytes)
R2 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_20_1\McApExe.exe [758864 2020-02-05] (McAfee, LLC. -> McAfee, LLC)
S3 McAWFwk; c:\program files\common files\McAfee\ActWiz\McAWFwk.exe [458688 2018-11-14] (McAfee, Inc. -> McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\3.4.105.0\\McCSPServiceHost.exe [2687856 2020-01-25] (McAfee, LLC. -> McAfee, LLC.)
S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [639048 2020-01-09] (McAfee, Inc. -> McAfee, LLC)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [639048 2020-01-09] (McAfee, Inc. -> McAfee, LLC)
R3 mfevtp; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [639048 2020-01-09] (McAfee, Inc. -> McAfee, LLC)
S3 MicrosoftEdgeElevationService; C:\Program Files (x86)\Microsoft\Edge\Application\81.0.416.68\elevation_service.exe [1125264 2020-04-29] (Microsoft Corporation -> Microsoft Corporation)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1737992 2020-02-06] (McAfee, LLC -> McAfee, LLC.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OverwolfUpdater; D:\Archivos de programa\Overwolf\OverwolfUpdater.exe [2463064 2020-03-14] (Overwolf Ltd -> Overwolf LTD)
R2 PEFService; C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe [1373912 2020-02-04] (McAfee, LLC. -> McAfee, LLC.)
R2 RstMwService; C:\windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_6ca78a08b838e305\RstMwService.exe [2158800 2019-07-19] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R2 RtkAudioUniversalService; C:\windows\System32\RtkAudUService64.exe [878368 2019-06-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
R2 SynaAPOService; C:\windows\System32\SynAudSrv.exe [586552 2019-06-03] (Conexant Systems LLC -> Synaptics Incorporated.)
R2 SynaAudioService; C:\windows\System32\CxAudioSvc.exe [74832 2019-06-03] (Conexant Systems LLC -> Conexant Systems LLC.)
R2 SynTPEnhService; C:\windows\System32\SynTPEnhService.exe [381784 2019-08-21] (Synaptics Incorporated -> Synaptics Incorporated)
S3 uncheater_bgl; C:\Program Files\Common Files\Uncheater\uncheater_bgl.exe [2097008 2020-01-30] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-18] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-18] (Microsoft Corporation -> Microsoft Corporation)
R2 XTU3SERVICE; C:\windows\SysWow64\XTUService.exe [26416 2019-05-06] (Intel Corporation -> Intel(R) Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\windows\System32\DriverStore\FileRepository\nvhmi.inf_amd64_f5abf44622a9ff68\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\windows\System32\DriverStore\FileRepository\nvhmi.inf_amd64_f5abf44622a9ff68\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S3 Origin Client Service; "C:\Program Files (x86)\Origin\OriginClientService.exe" [X]
S2 Origin Web Helper Service; "C:\Program Files (x86)\Origin\OriginWebHelperService.exe" [X]

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R3 Accelerometer; C:\windows\System32\drivers\Accelerometer.sys [53888 2018-11-30] (HP Inc. -> HP)
S3 BthA2dp; C:\windows\System32\drivers\BthA2dp.sys [231936 2020-01-26] (Microsoft Corporation) [Archivo no firmado]
R3 cfwids; C:\windows\System32\drivers\cfwids.sys [75896 2020-01-15] (McAfee, Inc. -> McAfee, LLC)
R3 dptf_acpi; C:\windows\System32\drivers\dptf_acpi.sys [78832 2019-01-24] (Intel Corporation -> Intel Corporation)
R3 dptf_cpu; C:\windows\System32\drivers\dptf_cpu.sys [75248 2019-01-24] (Intel Corporation -> Intel Corporation)
R3 esif_lf; C:\windows\System32\drivers\esif_lf.sys [403440 2019-01-24] (Intel Corporation -> Intel Corporation)
R1 ESProtectionDriver; C:\windows\system32\drivers\mbae64.sys [153312 2020-04-20] (Malwarebytes Corporation -> Malwarebytes)
R3 gameflt; C:\windows\System32\DriverStore\FileRepository\gameflt.inf_amd64_158653e0522d616e\gameflt.sys [71000 2020-04-14] (Microsoft Windows -> Microsoft Corporation)
S3 HipShieldK; C:\windows\System32\drivers\HipShieldK.sys [217912 2019-06-04] (McAfee, LLC -> McAfee, Inc.)
R3 HPCustomCapDriver; C:\windows\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_1f5602eb8a12ac4c\x64\hpcustomcapdriver.sys [25024 2019-04-18] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.)
R0 hpdskflt; C:\windows\System32\drivers\hpdskflt.sys [41088 2018-11-30] (HP Inc. -> HP)
R3 HPOmenCustomCapDriver; C:\windows\System32\DriverStore\FileRepository\hpomencustomcapdriver.inf_amd64_326f2e1d16385daf\x64\hpomencustomcapdriver.sys [23888 2019-05-03] (HP Inc. -> HP Inc.)
R0 iaStorAC; C:\windows\System32\drivers\iaStorAC.sys [1036496 2019-07-19] (Intel(R) Rapid Storage Technology -> Intel Corporation)
S3 iaStorAfs; C:\windows\System32\drivers\iaStorAfs.sys [75472 2019-07-19] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R3 ibtusb; C:\windows\System32\DriverStore\FileRepository\ibtusb.inf_amd64_dcab122dcfed2102\ibtusb.sys [16960288 2020-01-06] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R2 MBAMChameleon; C:\windows\System32\Drivers\MbamChameleon.sys [214496 2020-05-01] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\windows\System32\DRIVERS\MbamElam.sys [20936 2020-04-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\windows\System32\DRIVERS\farflt.sys [195432 2020-05-01] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\windows\system32\DRIVERS\mbam.sys [73368 2020-05-01] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\windows\System32\Drivers\mbamswissarmy.sys [248968 2020-05-01] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\windows\system32\DRIVERS\mwac.sys [125088 2020-05-01] (Malwarebytes Inc -> Malwarebytes)
R3 mfeaack; C:\windows\System32\drivers\mfeaack.sys [527272 2020-01-15] (McAfee, Inc. -> McAfee, LLC)
R3 mfeavfk; C:\windows\System32\drivers\mfeavfk.sys [380840 2020-01-15] (McAfee, Inc. -> McAfee, LLC)
S0 mfeelamk; C:\windows\System32\drivers\mfeelamk.sys [85920 2020-01-15] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, LLC)
R3 mfefirek; C:\windows\System32\drivers\mfefirek.sys [521128 2020-01-15] (McAfee, Inc. -> McAfee, LLC)
R0 mfehidk; C:\windows\System32\drivers\mfehidk.sys [997800 2020-01-15] (McAfee, Inc. -> McAfee, LLC)
R3 mfencbdc; C:\windows\System32\DRIVERS\mfencbdc.sys [594360 2019-12-23] (McAfee, Inc. -> McAfee LLC.)
S3 mfencrk; C:\windows\System32\DRIVERS\mfencrk.sys [107960 2019-12-23] (McAfee, Inc. -> McAfee LLC.)
R3 mfeplk; C:\windows\System32\drivers\mfeplk.sys [116856 2020-01-15] (McAfee, Inc. -> McAfee, LLC)
R0 mfewfpk; C:\windows\System32\drivers\mfewfpk.sys [252328 2020-01-15] (McAfee, Inc. -> McAfee, LLC)
S3 Netwtw06; C:\windows\System32\drivers\Netwtw06.sys [8723968 2019-03-18] (Microsoft Windows -> Intel Corporation)
R3 Netwtw08; C:\windows\System32\drivers\Netwtw08.sys [9278240 2019-09-05] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R1 npcap; C:\windows\system32\DRIVERS\npcap.sys [69744 2019-12-17] (Insecure.Com LLC -> Insecure.Com LLC.)
S4 npcap_wifi; C:\windows\system32\DRIVERS\npcap.sys [69744 2019-12-17] (Insecure.Com LLC -> Insecure.Com LLC.)
R3 nvlddmkm; C:\windows\System32\DriverStore\FileRepository\nvhmi.inf_amd64_f5abf44622a9ff68\nvlddmkm.sys [23446760 2020-04-11] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2020-03-31] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\windows\system32\drivers\nvvad64v.sys [69840 2019-06-03] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\windows\System32\drivers\nvvhci.sys [67456 2020-03-11] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\windows\System32\drivers\rt640x64.sys [1131024 2019-04-24] (Realtek Semiconductor Corp. -> Realtek )
R1 rtf64; C:\windows\system32\DRIVERS\rtf64x64.sys [70560 2018-09-03] (Realtek Semiconductor Corp. -> Realtek)
R3 RTSPER; C:\windows\System32\drivers\RtsPer.sys [1002920 2019-05-07] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)
S3 SmbDrv; C:\windows\System32\drivers\Smb_driver_AMDASF.sys [39856 2019-05-17] (Synaptics Incorporated -> Synaptics Incorporated)
R3 SmbDrvI; C:\windows\System32\drivers\Smb_driver_Intel.sys [48984 2019-08-21] (Synaptics Incorporated -> Synaptics Incorporated)
R3 ViGEmBus; C:\windows\System32\DriverStore\FileRepository\vigembus.inf_amd64_8a927fc43d8a7838\x64\ViGEmBus.sys [82840 2019-04-23] (HP Inc. -> Benjamin Hoeglinger-Stelzer)
S3 WdBoot; C:\windows\system32\drivers\WdBoot.sys [46472 2019-03-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\windows\system32\drivers\WdFilter.sys [333784 2019-03-18] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\windows\System32\Drivers\WdNisDrv.sys [62432 2019-03-18] (Microsoft Windows -> Microsoft Corporation)
R3 WinRing0_1_2_0; C:\windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_942053d68a2ba613\x64\OpenHardwareMonitorLib.sys [14544 2020-04-28] (Noriyuki MIYAZAKI -> OpenLibSys.org)
R3 WirelessButtonDriver64; C:\windows\System32\drivers\WirelessButtonDriver64.sys [35600 2019-02-06] (HP Inc. -> HP)
S3 xhunter1; C:\windows\xhunter1.sys [2740480 2020-04-14] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 XtuAcpiDriver; C:\windows\System32\drivers\XtuAcpiDriver.sys [54928 2019-05-06] (Intel Corporation -> Intel Corporation)
R3 XTUComponent; C:\windows\System32\drivers\iocbios2.sys [38280 2019-05-06] (Intel Corporation -> Intel Corporation)
R3 Xvdd; C:\windows\System32\DriverStore\FileRepository\xvdd.inf_amd64_7c3edb5ea11185bb\xvdd.sys [497000 2020-04-14] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)


==================== Un mes (creado) ===================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-05-01 06:33 - 2020-05-01 06:33 - 000000000 ____D C:\carlo
2020-05-01 06:08 - 2020-05-01 06:08 - 000003580 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-05-01 06:08 - 2020-05-01 06:08 - 000003456 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-05-01 06:08 - 2020-05-01 06:08 - 000002502 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-05-01 06:08 - 2020-05-01 06:08 - 000002340 _____ C:\ProgramData\Escritorio\Microsoft Edge.lnk
2020-05-01 01:41 - 2020-05-01 01:41 - 000195432 _____ (Malwarebytes) C:\windows\system32\Drivers\farflt.sys
2020-05-01 01:41 - 2020-05-01 01:41 - 000073368 _____ (Malwarebytes) C:\windows\system32\Drivers\mbam.sys
2020-04-30 20:02 - 2020-04-30 20:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2020-04-29 16:26 - 2020-04-29 16:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2020-04-28 14:55 - 2020-04-28 14:55 - 000047600 _____ (Dropbox, Inc.) C:\windows\system32\Drivers\dbx-stable.sys
2020-04-28 14:55 - 2020-04-28 14:55 - 000047600 _____ (Dropbox, Inc.) C:\windows\system32\Drivers\dbx-dev.sys
2020-04-28 14:55 - 2020-04-28 14:55 - 000047600 _____ (Dropbox, Inc.) C:\windows\system32\Drivers\dbx-canary.sys
2020-04-28 14:55 - 2020-04-28 14:55 - 000044552 _____ (Dropbox, Inc.) C:\windows\system32\DbxSvc.exe
2020-04-28 12:59 - 2020-04-28 12:59 - 002899028 _____ C:\windows\Minidump\042820-31906-01.dmp
2020-04-27 15:05 - 2020-04-27 15:26 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2020-04-27 15:05 - 2020-04-27 15:05 - 000000000 ____D C:\windows\SysWOW64\directx
2020-04-27 15:05 - 2020-04-27 15:05 - 000000000 ____D C:\Users\carlo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2020-04-27 15:04 - 2020-04-27 15:22 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2020-04-27 15:04 - 2020-04-27 15:04 - 000000000 ____D C:\Users\carlo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2020-04-27 14:37 - 2020-05-01 01:41 - 000248968 _____ (Malwarebytes) C:\windows\system32\Drivers\mbamswissarmy.sys
2020-04-27 14:37 - 2020-05-01 01:41 - 000214496 _____ (Malwarebytes) C:\windows\system32\Drivers\MbamChameleon.sys
2020-04-27 14:37 - 2020-05-01 01:41 - 000125088 _____ (Malwarebytes) C:\windows\system32\Drivers\mwac.sys
2020-04-27 14:37 - 2020-04-27 14:37 - 002860060 _____ C:\windows\Minidump\042720-59078-01.dmp
2020-04-27 14:27 - 2020-04-27 14:27 - 000003188 _____ C:\windows\system32\Tasks\Throttlestop
2020-04-26 13:09 - 2020-04-26 13:09 - 000000000 ___HD C:\OneDriveTemp
2020-04-25 10:11 - 2020-04-25 10:11 - 000002226 _____ C:\ProgramData\Escritorio\Polymath Professional.lnk
2020-04-25 10:11 - 2020-04-25 10:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Polymath Software
2020-04-25 10:11 - 2020-04-25 10:11 - 000000000 ____D C:\Program Files (x86)\Polymath Software
2020-04-23 16:15 - 2020-04-23 16:15 - 000000000 ____D C:\windows\LastGood.Tmp
2020-04-23 16:13 - 2020-04-11 13:56 - 000450280 _____ (Khronos Group) C:\windows\system32\OpenCL.dll
2020-04-23 16:13 - 2020-04-11 13:56 - 000346856 _____ (Khronos Group) C:\windows\SysWOW64\OpenCL.dll
2020-04-23 16:13 - 2020-04-11 13:55 - 011945872 _____ (NVIDIA Corporation) C:\windows\system32\nvptxJitCompiler.dll
2020-04-23 16:13 - 2020-04-11 13:55 - 010286480 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvptxJitCompiler.dll
2020-04-23 16:13 - 2020-04-11 13:54 - 023446760 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvlddmkm.sys
2020-04-23 16:13 - 2020-04-11 13:54 - 001481112 _____ (NVIDIA Corporation) C:\windows\system32\NvIFR64.dll
2020-04-23 16:13 - 2020-04-11 13:54 - 001141992 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvIFR.dll
2020-04-23 16:13 - 2020-04-11 13:54 - 001004960 _____ (NVIDIA Corporation) C:\windows\system32\nvml.dll
2020-04-23 16:13 - 2020-04-11 13:54 - 000816872 _____ (NVIDIA Corporation) C:\windows\system32\nvmcumd.dll
2020-04-23 16:13 - 2020-04-11 13:54 - 000679656 _____ (NVIDIA Corporation) C:\windows\system32\NvIFROpenGL.dll
2020-04-23 16:13 - 2020-04-11 13:54 - 000676240 _____ C:\windows\system32\nvofapi64.dll
2020-04-23 16:13 - 2020-04-11 13:54 - 000546536 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvIFROpenGL.dll
2020-04-23 16:13 - 2020-04-11 13:54 - 000542952 _____ C:\windows\SysWOW64\nvofapi.dll
2020-04-23 16:13 - 2020-04-11 13:53 - 017601632 _____ (NVIDIA Corporation) C:\windows\system32\nvcuda.dll
2020-04-23 16:13 - 2020-04-11 13:53 - 015158384 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuda.dll
2020-04-23 16:13 - 2020-04-11 13:53 - 005855856 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvid.dll
2020-04-23 16:13 - 2020-04-11 13:53 - 005159520 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuvid.dll
2020-04-23 16:13 - 2020-04-11 13:53 - 002074208 _____ (NVIDIA Corporation) C:\windows\system32\NvFBC64.dll
2020-04-23 16:13 - 2020-04-11 13:53 - 001566304 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvFBC.dll
2020-04-23 16:13 - 2020-04-11 13:53 - 001350768 _____ (NVIDIA Corporation) C:\windows\system32\nvfatbinaryLoader.dll
2020-04-23 16:13 - 2020-04-11 13:53 - 001048504 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvfatbinaryLoader.dll
2020-04-23 16:13 - 2020-04-11 13:53 - 000851040 _____ (NVIDIA Corporation) C:\windows\system32\MCU.exe
2020-04-23 16:13 - 2020-04-11 13:53 - 000811448 _____ (NVIDIA Corporation) C:\windows\system32\nvEncodeAPI64.dll
2020-04-23 16:13 - 2020-04-11 13:53 - 000561776 _____ (NVIDIA Corporation) C:\windows\system32\nvidia-smi.exe
2020-04-23 16:13 - 2020-04-11 13:53 - 000443832 _____ (NVIDIA Corporation) C:\windows\system32\nvdebugdump.exe
2020-04-23 16:13 - 2020-04-11 13:52 - 004195488 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvapi.dll
2020-04-23 16:13 - 2020-04-03 20:49 - 000106838 _____ C:\windows\system32\nvidia-smi.1.pdf
2020-04-23 16:13 - 2020-04-03 20:49 - 000077294 _____ C:\windows\system32\nvinfo.pb
2020-04-23 01:07 - 2020-05-01 06:35 - 000000000 ____D C:\FRST
2020-04-22 23:02 - 2020-04-22 23:02 - 000000000 ____D C:\KVRT_Data
2020-04-22 21:42 - 2020-04-22 21:42 - 000000672 _____ C:\Users\carlo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2020-04-22 21:42 - 2020-04-22 21:42 - 000000000 ____D C:\Users\carlo\AppData\Local\ESET
2020-04-21 20:00 - 2020-04-21 20:35 - 000000000 ____D C:\Users\carlo\AppData\Roaming\slobs-client
2020-04-21 20:00 - 2020-04-21 20:04 - 000000000 ____D C:\Users\carlo\AppData\Roaming\obs-studio-node-server
2020-04-21 20:00 - 2020-04-21 20:00 - 000001099 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Streamlabs OBS.lnk
2020-04-21 20:00 - 2020-04-21 20:00 - 000001099 _____ C:\ProgramData\Escritorio\Streamlabs OBS.lnk
2020-04-21 20:00 - 2020-04-21 20:00 - 000000000 ____D C:\Users\carlo\AppData\Roaming\slobs-plugins
2020-04-21 20:00 - 2020-04-21 20:00 - 000000000 ____D C:\Users\carlo\AppData\Local\slobs-client-updater
2020-04-20 17:25 - 2020-04-20 17:33 - 000000000 ____D C:\ProgramData\AVAST Software
2020-04-20 17:25 - 2020-04-20 17:33 - 000000000 ____D C:\Program Files\AVAST Software
2020-04-20 17:25 - 2020-04-20 17:25 - 000003936 _____ C:\windows\system32\Tasks\CCleaner Update
2020-04-20 17:25 - 2020-04-20 17:25 - 000002888 _____ C:\windows\system32\Tasks\CCleanerSkipUAC
2020-04-20 17:25 - 2020-04-20 17:25 - 000000870 _____ C:\ProgramData\Escritorio\CCleaner.lnk
2020-04-20 17:25 - 2020-04-20 17:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-04-20 17:25 - 2020-04-20 17:25 - 000000000 ____D C:\Program Files\CCleaner
2020-04-20 17:24 - 2020-04-20 17:50 - 000000000 ____D C:\Users\carlo\AppData\Roaming\ZHP
2020-04-20 17:24 - 2020-04-20 17:31 - 000000000 ____D C:\AdwCleaner
2020-04-20 17:24 - 2020-04-20 17:24 - 000000000 ____D C:\Users\carlo\AppData\Local\ZHP
2020-04-20 17:23 - 2020-04-20 17:23 - 000000000 ____D C:\Users\carlo\AppData\Local\mbam
2020-04-20 17:22 - 2020-04-20 17:22 - 000153312 _____ (Malwarebytes) C:\windows\system32\Drivers\mbae64.sys
2020-04-20 17:22 - 2020-04-20 17:22 - 000020936 _____ (Malwarebytes) C:\windows\system32\Drivers\MbamElam.sys
2020-04-20 17:22 - 2020-04-20 17:22 - 000002028 _____ C:\ProgramData\Escritorio\Malwarebytes.lnk
2020-04-20 17:22 - 2020-04-20 17:22 - 000000000 ____D C:\Users\carlo\AppData\Local\mbamtray
2020-04-20 17:22 - 2020-04-20 17:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2020-04-20 17:22 - 2020-04-20 17:22 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-04-20 17:22 - 2020-04-20 17:22 - 000000000 ____D C:\Program Files\Malwarebytes
2020-04-20 12:33 - 2020-04-20 17:58 - 000000000 ____D C:\Users\carlo\AppData\Roaming\GK5Frk2XdL0bfJDd6leMC
2020-04-17 11:57 - 2020-04-17 11:58 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2020-04-16 18:32 - 2020-04-23 18:21 - 000000937 _____ C:\ProgramData\Escritorio\Call of Duty Modern Warfare.lnk
2020-04-16 18:32 - 2020-04-16 18:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Call of Duty Modern Warfare
2020-04-16 13:44 - 2020-04-16 13:44 - 000000000 ____D C:\Users\carlo\AppData\LocalLow\Intel
2020-04-16 13:43 - 2020-03-10 06:46 - 021460848 _____ (Intel Corporation) C:\windows\system32\libmfxhw64.dll
2020-04-16 13:43 - 2020-03-10 06:46 - 020356720 _____ (Intel Corporation) C:\windows\SysWOW64\libmfxhw32.dll
2020-04-16 13:43 - 2020-03-10 06:46 - 003219784 _____ (Intel Corporation) C:\windows\system32\mfx_mft_h265ve_64.dll
2020-04-16 13:43 - 2020-03-10 06:46 - 003212936 _____ (Intel Corporation) C:\windows\system32\mfx_mft_vp9ve_64.dll
2020-04-16 13:43 - 2020-03-10 06:46 - 003199336 _____ (Intel Corporation) C:\windows\system32\mfx_mft_h264ve_64.dll
2020-04-16 13:43 - 2020-03-10 06:46 - 002996096 _____ (Intel Corporation) C:\windows\system32\mfx_mft_encrypt_64.dll
2020-04-16 13:43 - 2020-03-10 06:46 - 002606216 _____ (Intel Corporation) C:\windows\SysWOW64\mfx_mft_h265ve_32.dll
2020-04-16 13:43 - 2020-03-10 06:46 - 002601504 _____ (Intel Corporation) C:\windows\SysWOW64\mfx_mft_vp9ve_32.dll
2020-04-16 13:43 - 2020-03-10 06:46 - 002592416 _____ (Intel Corporation) C:\windows\SysWOW64\mfx_mft_h264ve_32.dll
2020-04-16 13:43 - 2020-03-10 06:46 - 002435368 _____ (Intel Corporation) C:\windows\SysWOW64\mfx_mft_encrypt_32.dll
2020-04-16 13:43 - 2020-03-10 06:46 - 000186208 _____ (Intel Corporation) C:\windows\SysWOW64\intel_gfx_api-x86.dll
2020-04-16 13:43 - 2020-03-10 06:45 - 000218720 _____ (Intel Corporation) C:\windows\system32\intel_gfx_api-x64.dll
2020-04-16 13:43 - 2020-03-10 03:45 - 025076752 _____ (Intel Corporation) C:\windows\system32\mfxplugin64_hw.dll
2020-04-16 13:43 - 2020-03-10 03:45 - 011920400 _____ (Intel Corporation) C:\windows\SysWOW64\mfxplugin32_hw.dll
2020-04-16 13:43 - 2020-03-10 03:45 - 003013648 _____ (Intel Corporation) C:\windows\system32\mfx_mft_mjpgvd_64.dll
2020-04-16 13:43 - 2020-03-10 03:45 - 002439184 _____ (Intel Corporation) C:\windows\SysWOW64\mfx_mft_mjpgvd_32.dll
2020-04-16 13:43 - 2020-03-10 03:45 - 001785920 _____ C:\windows\system32\vulkaninfo-1-999-0-0-0.exe
2020-04-16 13:43 - 2020-03-10 03:45 - 001785920 _____ C:\windows\system32\vulkaninfo.exe
2020-04-16 13:43 - 2020-03-10 03:45 - 001376344 _____ C:\windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-04-16 13:43 - 2020-03-10 03:45 - 001376344 _____ C:\windows\SysWOW64\vulkaninfo.exe
2020-04-16 13:43 - 2020-03-10 03:45 - 001079848 _____ C:\windows\system32\vulkan-1-999-0-0-0.dll
2020-04-16 13:43 - 2020-03-10 03:45 - 001079848 _____ C:\windows\system32\vulkan-1.dll
2020-04-16 13:43 - 2020-03-10 03:45 - 000939536 _____ C:\windows\SysWOW64\vulkan-1-999-0-0-0.dll
2020-04-16 13:43 - 2020-03-10 03:45 - 000939536 _____ C:\windows\SysWOW64\vulkan-1.dll
2020-04-16 13:43 - 2020-03-10 03:26 - 000072305 _____ C:\windows\SysWOW64\h265e_32.vp
2020-04-16 13:43 - 2020-03-10 03:26 - 000071888 _____ C:\windows\SysWOW64\vp9e_32.vp
2020-04-16 13:43 - 2020-03-10 03:26 - 000070721 _____ C:\windows\SysWOW64\he_32.vp
2020-04-16 13:43 - 2020-03-10 03:26 - 000066153 _____ C:\windows\SysWOW64\mj_32.vp
2020-04-16 13:43 - 2020-03-10 03:26 - 000057143 _____ C:\windows\SysWOW64\dev_32.vp
2020-04-16 13:43 - 2020-03-10 03:26 - 000056359 _____ C:\windows\system32\dev_64.vp
2020-04-16 13:43 - 2020-03-10 03:26 - 000014145 _____ C:\windows\system32\h265e_64.vp
2020-04-16 13:43 - 2020-03-10 03:26 - 000013996 _____ C:\windows\system32\vp9e_64.vp
2020-04-16 13:43 - 2020-03-10 03:26 - 000013589 _____ C:\windows\system32\he_64.vp
2020-04-16 13:43 - 2020-03-10 03:26 - 000013309 _____ C:\windows\system32\mj_64.vp
2020-04-16 13:43 - 2020-03-10 03:26 - 000001125 _____ C:\windows\SysWOW64\cpa_32.vp
2020-04-16 13:43 - 2020-03-10 03:26 - 000001125 _____ C:\windows\system32\cpa_64.vp
2020-04-16 08:51 - 2020-04-30 12:43 - 000000520 _____ C:\windows\system32\Drivers\etc\hosts.ics
2020-04-15 21:23 - 2020-04-15 21:23 - 000000000 ____D C:\Riot Games
2020-04-15 00:54 - 2020-04-15 00:54 - 001870408 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfmp4srcsnk.dll
2020-04-15 00:54 - 2020-04-15 00:54 - 001610240 _____ (Microsoft Corporation) C:\windows\system32\HologramCompositor.dll
2020-04-15 00:54 - 2020-04-15 00:54 - 001013000 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfmpeg2srcsnk.dll
2020-04-15 00:54 - 2020-04-15 00:54 - 000983040 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfmkvsrcsnk.dll
2020-04-15 00:54 - 2020-04-15 00:54 - 000380416 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSFlacDecoder.dll
2020-04-15 00:53 - 2020-04-15 00:54 - 025444352 _____ (Microsoft Corporation) C:\windows\system32\Hydrogen.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 022636544 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 019850240 _____ (Microsoft Corporation) C:\windows\SysWOW64\edgehtml.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 019812864 _____ (Microsoft Corporation) C:\windows\system32\HologramWorld.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 018027520 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 009930552 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 007756800 _____ (Microsoft Corporation) C:\windows\system32\Chakra.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 007604584 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.Protection.PlayReady.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 006523048 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 005910016 _____ (Microsoft Corporation) C:\windows\SysWOW64\Chakra.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 005040640 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 004611584 _____ (Microsoft Corporation) C:\windows\system32\msi.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 004563200 _____ (Microsoft Corporation) C:\windows\system32\sppsvc.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 004538880 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 004129624 _____ (Microsoft Corporation) C:\windows\system32\mfcore.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 003802624 _____ (Microsoft Corporation) C:\windows\system32\diagtrack.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 003729408 _____ (Microsoft Corporation) C:\windows\system32\win32kfull.sys
2020-04-15 00:53 - 2020-04-15 00:53 - 003587384 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2020-04-15 00:53 - 2020-04-15 00:53 - 003512320 _____ (Microsoft Corporation) C:\windows\SysWOW64\msi.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 003109376 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 002951832 _____ (Microsoft Corporation) C:\windows\system32\mfmp4srcsnk.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 002800640 _____ (Microsoft Corporation) C:\windows\system32\WinSAT.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 002800128 _____ (Microsoft Corporation) C:\windows\SysWOW64\win32kfull.sys
2020-04-15 00:53 - 2020-04-15 00:53 - 002767928 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 002717184 _____ (Microsoft Corporation) C:\windows\system32\win32kbase.sys
2020-04-15 00:53 - 2020-04-15 00:53 - 002494744 _____ (Microsoft Corporation) C:\windows\system32\msmpeg2vdec.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 002453504 _____ (Microsoft Corporation) C:\windows\system32\InstallService.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 002180408 _____ (Microsoft Corporation) C:\windows\system32\workfolderssvc.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 002131456 _____ (Microsoft Corporation) C:\windows\system32\WpcDesktopMonSvc.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 002086656 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001999960 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001764336 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecs.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001729024 _____ (Microsoft Corporation) C:\windows\SysWOW64\InstallService.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001697792 _____ (Microsoft Corporation) C:\windows\system32\GdiPlus.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001665216 _____ (Microsoft Corporation) C:\windows\SysWOW64\user32.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001664896 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001656904 _____ (Microsoft Corporation) C:\windows\system32\user32.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001646048 _____ (Microsoft Corporation) C:\windows\system32\gdi32full.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001612800 _____ (Microsoft Corporation) C:\windows\system32\wpncore.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001603584 _____ (Microsoft Corporation) C:\windows\system32\dosvc.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001484384 _____ (Microsoft Corporation) C:\windows\SysWOW64\WindowsCodecs.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001458688 _____ (Microsoft Corporation) C:\windows\SysWOW64\GdiPlus.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001413840 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32full.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001397576 _____ (Microsoft Corporation) C:\windows\system32\hvix64.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 001318912 _____ (Microsoft Corporation) C:\windows\system32\wpnapps.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001310720 _____ (Microsoft Corporation) C:\windows\SysWOW64\msjet40.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001153024 _____ (Microsoft Corporation) C:\windows\system32\windowsperformancerecordercontrol.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001151816 _____ (Microsoft Corporation) C:\windows\system32\mfmpeg2srcsnk.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001077064 _____ (Microsoft Corporation) C:\windows\system32\hvax64.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 001009152 _____ (Microsoft Corporation) C:\windows\SysWOW64\wpnapps.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 001008128 _____ (Microsoft Corporation) C:\windows\system32\StorSvc.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000982840 _____ (Microsoft Corporation) C:\windows\system32\winhttp.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000874296 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgmms2.sys
2020-04-15 00:53 - 2020-04-15 00:53 - 000868864 _____ (Microsoft Corporation) C:\windows\SysWOW64\windowsperformancerecordercontrol.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000836608 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000835584 _____ (Microsoft Corporation) C:\windows\system32\WorkfoldersControl.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000822208 _____ (Microsoft Corporation) C:\windows\system32\fontdrvhost.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 000783480 _____ (Microsoft Corporation) C:\windows\system32\tcblaunch.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 000775696 _____ (Microsoft Corporation) C:\windows\system32\securekernel.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 000772096 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv2.sys
2020-04-15 00:53 - 2020-04-15 00:53 - 000768528 _____ (Microsoft Corporation) C:\windows\SysWOW64\winhttp.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000722072 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000701440 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Mirage.Internal.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000686080 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000673464 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontdrvhost.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 000668672 _____ (Microsoft Corporation) C:\windows\system32\wsecedit.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000629760 _____ (Microsoft Corporation) C:\windows\system32\ipnathlp.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000628616 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000595968 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000561464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2020-04-15 00:53 - 2020-04-15 00:53 - 000550400 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2020-04-15 00:53 - 2020-04-15 00:53 - 000532480 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000530432 _____ (Microsoft Corporation) C:\windows\system32\sppcext.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000525312 _____ (Microsoft Corporation) C:\windows\SysWOW64\wsecedit.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000510792 _____ (Microsoft Corporation) C:\windows\system32\wow64win.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000444416 _____ (Microsoft Corporation) C:\windows\system32\MSFlacDecoder.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000441144 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgmms1.sys
2020-04-15 00:53 - 2020-04-15 00:53 - 000420152 _____ (Microsoft Corporation) C:\windows\system32\MSAudDecMFT.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000408064 _____ (Microsoft Corporation) C:\windows\system32\domgmt.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000355840 _____ (Microsoft Corporation) C:\windows\system32\WaaSMedicSvc.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000353792 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrd3x40.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000343552 _____ (Microsoft Corporation) C:\windows\system32\wpr.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 000341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\msexcl40.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000339304 _____ (Microsoft Corporation) C:\windows\system32\Windows.Storage.ApplicationData.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000324096 _____ (Microsoft Corporation) C:\windows\SysWOW64\win32k.sys
2020-04-15 00:53 - 2020-04-15 00:53 - 000285184 _____ (Microsoft Corporation) C:\windows\system32\WaaSMedicCapsule.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000277504 _____ (Microsoft Corporation) C:\windows\system32\scecli.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000268288 _____ (Microsoft Corporation) C:\windows\system32\dot3svc.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000268008 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Storage.ApplicationData.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000265216 _____ (Microsoft Corporation) C:\windows\system32\cdd.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000256000 _____ (Microsoft Corporation) C:\windows\system32\UpdateDeploymentProvider.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000241152 _____ (Microsoft Corporation) C:\windows\SysWOW64\msltus40.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000231936 _____ (Microsoft Corporation) C:\windows\system32\InstallServiceTasks.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000227840 _____ (Microsoft Corporation) C:\windows\system32\IndexedDbLegacy.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000225792 _____ (Microsoft Corporation) C:\windows\system32\WorkFoldersShell.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000214528 _____ (Microsoft Corporation) C:\windows\system32\srumsvc.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000214016 _____ (Microsoft Corporation) C:\windows\SysWOW64\scecli.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000211256 _____ (Microsoft Corporation) C:\windows\system32\tcbloader.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000179712 _____ (Microsoft Corporation) C:\windows\SysWOW64\InstallServiceTasks.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000179712 _____ (Microsoft Corporation) C:\windows\system32\t2embed.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000178176 _____ (Microsoft Corporation) C:\windows\SysWOW64\srumsvc.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000175616 _____ (Microsoft Corporation) C:\windows\SysWOW64\IndexedDbLegacy.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000158720 _____ (Microsoft Corporation) C:\windows\system32\umpo.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000155136 _____ (Microsoft Corporation) C:\windows\system32\Chakradiag.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000139776 _____ (Microsoft Corporation) C:\windows\system32\Chakrathunk.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000138752 _____ (Microsoft Corporation) C:\windows\SysWOW64\t2embed.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000130560 _____ (Microsoft Corporation) C:\windows\system32\StorageUsage.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000129024 _____ (Microsoft Corporation) C:\windows\system32\UtcDecoderHost.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 000127280 _____ (Microsoft Corporation) C:\windows\system32\win32u.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000125952 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000117248 _____ (Microsoft Corporation) C:\windows\SysWOW64\Chakradiag.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000105984 _____ (Microsoft Corporation) C:\windows\system32\utcutil.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000105472 _____ (Microsoft Corporation) C:\windows\SysWOW64\Chakrathunk.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000105472 _____ (Microsoft Corporation) C:\windows\system32\WorkFolders.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 000103936 _____ (Microsoft Corporation) C:\windows\system32\dot3msm.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000099328 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontsub.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000092160 _____ (Microsoft Corporation) C:\windows\system32\dot3api.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000089336 _____ (Microsoft Corporation) C:\windows\SysWOW64\win32u.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000089088 _____ (Microsoft Corporation) C:\windows\system32\WaaSMedicAgent.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 000087552 _____ (Microsoft Corporation) C:\windows\SysWOW64\dot3api.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000087040 _____ (Microsoft Corporation) C:\windows\SysWOW64\dot3msm.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000063488 _____ (Microsoft Corporation) C:\windows\system32\srumapi.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000060928 _____ (Microsoft Corporation) C:\windows\system32\mf3216.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000058880 _____ C:\windows\system32\runexehelper.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 000057856 _____ (Microsoft Corporation) C:\windows\system32\wups2.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\srumapi.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000047000 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 000046080 _____ (Microsoft Corporation) C:\windows\SysWOW64\mf3216.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000043008 _____ (Microsoft Corporation) C:\windows\system32\WiredNetworkCSP.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000033792 _____ (Microsoft Corporation) C:\windows\system32\sxssrv.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000028672 _____ (Microsoft Corporation) C:\windows\system32\WaaSMedicPS.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000026112 _____ (Microsoft Corporation) C:\windows\SysWOW64\msimsg.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000026112 _____ (Microsoft Corporation) C:\windows\system32\msimsg.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000017920 _____ (Microsoft Corporation) C:\windows\system32\icsunattend.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 000014336 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000012288 _____ (Microsoft Corporation) C:\windows\system32\pacjsworker.exe
2020-04-15 00:53 - 2020-04-15 00:53 - 000011776 _____ (Microsoft Corporation) C:\windows\SysWOW64\dciman32.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000008192 _____ (Microsoft Corporation) C:\windows\system32\msimg32.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\msimg32.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000003072 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000002560 _____ (Microsoft Corporation) C:\windows\SysWOW64\lpk.dll
2020-04-15 00:53 - 2020-04-15 00:53 - 000000315 _____ C:\windows\system32\DrtmAuth9.bin
2020-04-15 00:53 - 2020-04-15 00:53 - 000000315 _____ C:\windows\system32\DrtmAuth8.bin
2020-04-15 00:53 - 2020-04-15 00:53 - 000000315 _____ C:\windows\system32\DrtmAuth7.bin
2020-04-15 00:53 - 2020-04-15 00:53 - 000000315 _____ C:\windows\system32\DrtmAuth6.bin
2020-04-15 00:53 - 2020-04-15 00:53 - 000000315 _____ C:\windows\system32\DrtmAuth5.bin
2020-04-15 00:53 - 2020-04-15 00:53 - 000000315 _____ C:\windows\system32\DrtmAuth4.bin
2020-04-15 00:53 - 2020-04-15 00:53 - 000000315 _____ C:\windows\system32\DrtmAuth3.bin
2020-04-15 00:53 - 2020-04-15 00:53 - 000000315 _____ C:\windows\system32\DrtmAuth2.bin
2020-04-15 00:53 - 2020-04-15 00:53 - 000000315 _____ C:\windows\system32\DrtmAuth12.bin
2020-04-15 00:53 - 2020-04-15 00:53 - 000000315 _____ C:\windows\system32\DrtmAuth11.bin
2020-04-15 00:53 - 2020-04-15 00:53 - 000000315 _____ C:\windows\system32\DrtmAuth10.bin
2020-04-15 00:53 - 2020-04-15 00:53 - 000000315 _____ C:\windows\system32\DrtmAuth1.bin
2020-04-15 00:48 - 2020-03-16 22:57 - 000390656 _____ (Microsoft Corporation) C:\windows\SysWOW64\poqexec.exe
2020-04-15 00:48 - 2020-03-16 22:56 - 000492544 _____ (Microsoft Corporation) C:\windows\system32\poqexec.exe
2020-04-14 16:28 - 2020-04-14 16:28 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2020-04-14 16:28 - 2020-04-14 16:28 - 000000000 ____D C:\Program Files (x86)\Microsoft GameInput
2020-04-14 16:28 - 2020-04-14 16:27 - 000090624 _____ (Microsoft Corporation) C:\windows\system32\gamingtcuihelpers.dll
2020-04-14 16:28 - 2020-04-07 06:55 - 000169408 _____ (Microsoft Corporation) C:\windows\system32\GameInput.dll
2020-04-14 16:28 - 2020-04-07 04:55 - 000138168 _____ (Microsoft Corporation) C:\windows\SysWOW64\GameInput.dll
2020-04-13 17:41 - 2020-04-13 17:41 - 000000000 ____D C:\Users\carlo\AppData\LocalLow\Unity
2020-04-13 04:39 - 2020-04-13 04:39 - 000000782 _____ C:\ProgramData\Escritorio\CPUID HWMonitor.lnk
2020-04-13 04:39 - 2020-04-13 04:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2020-04-12 20:57 - 2020-04-12 20:57 - 000000000 ____D C:\Users\carlo\AppData\LocalLow\rpgames
2020-04-12 20:54 - 2020-04-12 20:54 - 000000948 _____ C:\Users\carlo\AppData\Roaming\Microsoft\Windows\Start Menu\NewGunboundLS.lnk
2020-04-12 20:54 - 2020-04-12 20:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoftnyxGame
2020-04-07 23:35 - 2020-04-07 23:35 - 000321536 _____ (Microsoft Corporation) C:\windows\system32\wbadmin.exe
2020-04-07 23:35 - 2020-04-07 23:35 - 000179200 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.XamlHost.dll
2020-04-07 23:35 - 2020-04-07 23:35 - 000135168 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.XamlHost.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 017790464 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Xaml.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 014818816 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.Xaml.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 008013824 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 007849216 _____ (Microsoft Corporation) C:\windows\system32\OneCoreUAPCommonProxyStub.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 007017472 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstscax.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 006168064 _____ (Microsoft Corporation) C:\windows\system32\twinui.pcshell.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 003753472 _____ (Microsoft Corporation) C:\windows\system32\SettingsHandlers_nt.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 003742544 _____ (Microsoft Corporation) C:\windows\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 003708928 _____ (Microsoft Corporation) C:\windows\system32\AppXDeploymentServer.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 003547648 _____ (Microsoft Corporation) C:\windows\system32\dwmcore.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 002986808 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 002871608 _____ (Microsoft Corporation) C:\windows\system32\aitstatic.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 002126144 _____ (Microsoft Corporation) C:\windows\system32\AudioEng.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 002114560 _____ (Microsoft Corporation) C:\windows\system32\Windows.CloudStore.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001960448 _____ (Microsoft Corporation) C:\windows\system32\aadtb.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001945600 _____ (Microsoft Corporation) C:\windows\system32\dcomp.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001942528 _____ (Microsoft Corporation) C:\windows\system32\audiosrv.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001918976 _____ (Microsoft Corporation) C:\windows\system32\wevtsvc.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001835008 _____ (Microsoft Corporation) C:\windows\system32\enterprisecsps.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001783296 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Input.Inking.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001762816 _____ (Microsoft Corporation) C:\windows\system32\wwansvc.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001757096 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2020-04-07 23:34 - 2020-04-07 23:34 - 001726264 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001719808 _____ (Microsoft Corporation) C:\windows\system32\Wpc.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001587712 _____ (Microsoft Corporation) C:\windows\SysWOW64\aadtb.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001545216 _____ (Microsoft Corporation) C:\windows\system32\mstsc.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 001512832 _____ (Microsoft Corporation) C:\windows\system32\winload.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 001497600 _____ (Microsoft Corporation) C:\windows\system32\TokenBroker.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001480192 _____ (Microsoft Corporation) C:\windows\system32\usocoreworker.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 001477112 _____ (Microsoft Corporation) C:\windows\SysWOW64\dcomp.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001427456 _____ (Microsoft Corporation) C:\windows\system32\Windows.Networking.Vpn.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001413704 _____ (Microsoft Corporation) C:\windows\system32\AudioSes.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001378528 _____ (Microsoft Corporation) C:\windows\system32\webservices.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001368576 _____ (Microsoft Corporation) C:\windows\SysWOW64\Wpc.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001368576 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.Input.Inking.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001300280 _____ (Microsoft Corporation) C:\windows\system32\Drivers\http.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 001264640 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstsc.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 001263856 _____ (Microsoft Corporation) C:\windows\system32\WpcMon.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 001261808 _____ (Microsoft Corporation) C:\windows\system32\msctf.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001257472 _____ (Microsoft Corporation) C:\windows\system32\rpcss.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001245184 _____ (Microsoft Corporation) C:\windows\SysWOW64\TokenBroker.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001243648 _____ (Microsoft Corporation) C:\windows\system32\TSWorkspace.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001180672 _____ (Microsoft Corporation) C:\windows\system32\Windows.Security.Authentication.Web.Core.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001136128 _____ (Microsoft Corporation) C:\windows\system32\MbaeApiPublic.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001127424 _____ (Microsoft Corporation) C:\windows\system32\WpcRefreshTask.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001083904 _____ (Microsoft Corporation) C:\windows\system32\MusUpdateHandlers.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001081856 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Networking.Vpn.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001071616 _____ (Microsoft Corporation) C:\windows\system32\BTAGService.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001055376 _____ (Microsoft Corporation) C:\windows\SysWOW64\msctf.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 001011200 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000993280 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSWorkspace.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000980832 _____ (Microsoft Corporation) C:\windows\SysWOW64\webservices.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000974336 _____ (Microsoft Corporation) C:\windows\system32\uDWM.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000924672 _____ (Microsoft Corporation) C:\windows\system32\samsrv.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000923136 _____ (Microsoft Corporation) C:\windows\system32\Windows.Internal.Management.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000915192 _____ (Microsoft Corporation) C:\windows\system32\AppXDeploymentClient.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000912896 _____ (Microsoft Corporation) C:\windows\system32\rasmans.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000893952 _____ (Microsoft Corporation) C:\windows\system32\FlightSettings.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000892416 _____ (Microsoft Corporation) C:\windows\SysWOW64\MbaeApiPublic.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000879616 _____ (Microsoft Corporation) C:\windows\system32\Windows.Management.Service.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000865280 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000865280 _____ (Microsoft Corporation) C:\windows\system32\netlogon.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000840704 _____ (Microsoft Corporation) C:\windows\system32\SettingsHandlers_Language.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000811320 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000785920 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000759272 _____ (Microsoft Corporation) C:\windows\system32\taskschd.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000747320 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000735744 _____ (Microsoft Corporation) C:\windows\system32\AudioEndpointBuilder.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000729600 _____ (Microsoft Corporation) C:\windows\SysWOW64\FlightSettings.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000701440 _____ (Microsoft Corporation) C:\windows\SysWOW64\BTAGService.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000689152 _____ (Microsoft Corporation) C:\windows\SysWOW64\CPFilters.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000684560 _____ (Microsoft Corporation) C:\windows\system32\SHCore.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000673704 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppXDeploymentClient.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000665088 _____ (Microsoft Corporation) C:\windows\SysWOW64\netlogon.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000654912 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000647680 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Internal.Management.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000638480 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000637240 _____ (Microsoft Corporation) C:\windows\system32\Drivers\storport.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 000632832 _____ (Microsoft Corporation) C:\windows\SysWOW64\WpcWebFilter.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000618296 _____ (Microsoft Corporation) C:\windows\system32\hal.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000605184 _____ (Microsoft Corporation) C:\windows\system32\MusNotification.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000604984 _____ (Microsoft Corporation) C:\windows\system32\pcasvc.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000589384 _____ (Microsoft Corporation) C:\windows\system32\audiodg.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000555008 _____ (Microsoft Corporation) C:\windows\system32\appwiz.cpl
2020-04-07 23:34 - 2020-04-07 23:34 - 000538160 _____ (Microsoft Corporation) C:\windows\SysWOW64\SHCore.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000529408 _____ (Microsoft Corporation) C:\windows\system32\nltest.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000524264 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Enumeration.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000516096 _____ (Microsoft Corporation) C:\windows\system32\MusNotificationUx.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000515600 _____ (Microsoft Corporation) C:\windows\system32\dcntel.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000513576 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000507152 _____ (Microsoft Corporation) C:\windows\SysWOW64\taskschd.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000498688 _____ (Microsoft Corporation) C:\windows\system32\ntshrui.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000497152 _____ (Microsoft Corporation) C:\windows\system32\wuuhext.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000491008 _____ (Microsoft Corporation) C:\windows\SysWOW64\sppcext.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000487784 _____ (Microsoft Corporation) C:\windows\SysWOW64\advapi32.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000477496 _____ (Microsoft Corporation) C:\windows\system32\Drivers\FWPKCLNT.SYS
2020-04-07 23:34 - 2020-04-07 23:34 - 000469504 _____ (Microsoft Corporation) C:\windows\system32\cloudAP.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000465208 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000459688 _____ (Microsoft Corporation) C:\windows\system32\MusNotifyIcon.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000456504 _____ (Microsoft Corporation) C:\windows\system32\Drivers\rdbss.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 000456192 _____ (Microsoft Corporation) C:\windows\SysWOW64\appwiz.cpl
2020-04-07 23:34 - 2020-04-07 23:34 - 000452096 _____ (Microsoft Corporation) C:\windows\system32\rdpclip.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000437560 _____ (Microsoft Corporation) C:\windows\system32\Drivers\pci.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 000416016 _____ (Microsoft Corporation) C:\windows\system32\AUDIOKSE.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000415760 _____ (Microsoft Corporation) C:\windows\SysWOW64\aepic.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000410112 _____ (Microsoft Corporation) C:\windows\system32\rascustom.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000406480 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Enumeration.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000401408 _____ (Microsoft Corporation) C:\windows\system32\es.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000381440 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntshrui.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000374784 _____ (Microsoft Corporation) C:\windows\system32\ncbservice.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000355328 _____ (Microsoft Corporation) C:\windows\system32\WpcApi.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000336384 _____ (Microsoft Corporation) C:\windows\SysWOW64\es.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000330240 _____ (Microsoft Corporation) C:\windows\system32\omadmclient.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000324408 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000323584 _____ (Microsoft Corporation) C:\windows\system32\sppcommdlg.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000297272 _____ (Microsoft Corporation) C:\windows\system32\Drivers\sdbus.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 000278016 _____ (Microsoft Corporation) C:\windows\system32\WpcTok.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000277864 _____ (Microsoft Corporation) C:\windows\system32\LsaIso.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000259776 _____ (Microsoft Corporation) C:\windows\system32\logoncli.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000259072 _____ (Microsoft Corporation) C:\windows\system32\VPNv2CSP.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000251704 _____ (Microsoft Corporation) C:\windows\system32\offlinesam.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000251392 _____ (Microsoft Corporation) C:\windows\system32\Drivers\winnat.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 000241152 _____ (Microsoft Corporation) C:\windows\system32\policymanagerprecheck.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000234496 _____ (Microsoft Corporation) C:\windows\system32\iasrad.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000231912 _____ (Microsoft Corporation) C:\windows\system32\deviceaccess.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000203264 _____ (Microsoft Corporation) C:\windows\system32\LanguageComponentsInstaller.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000200192 _____ (Microsoft Corporation) C:\windows\system32\updatepolicy.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000197632 _____ (Microsoft Corporation) C:\windows\system32\Win32CompatibilityAppraiserCSP.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000193848 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dumpsd.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 000190048 _____ (Microsoft Corporation) C:\windows\SysWOW64\logoncli.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000187392 _____ (Microsoft Corporation) C:\windows\SysWOW64\iasrad.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000185952 _____ (Microsoft Corporation) C:\windows\SysWOW64\deviceaccess.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000178192 _____ (Microsoft Corporation) C:\windows\system32\Drivers\partmgr.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 000169472 _____ (Microsoft Corporation) C:\windows\system32\SpatialAudioLicenseSrv.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000164368 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000163840 _____ (Microsoft Corporation) C:\windows\SysWOW64\updatepolicy.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000152408 _____ (Microsoft Corporation) C:\windows\system32\KerbClientShared.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000151352 _____ (Microsoft Corporation) C:\windows\system32\Drivers\scmbus.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 000147696 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000142544 _____ (Microsoft Corporation) C:\windows\system32\LicensingUI.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000140800 _____ (Microsoft Corporation) C:\windows\system32\slc.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000136192 _____ (Microsoft Corporation) C:\windows\system32\sppc.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000123952 _____ (Microsoft Corporation) C:\windows\SysWOW64\KerbClientShared.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000122368 _____ (Microsoft Corporation) C:\windows\system32\samlib.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000118272 _____ (Microsoft Corporation) C:\windows\SysWOW64\slc.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000115120 _____ (Microsoft Corporation) C:\windows\system32\phoneactivate.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000108032 _____ (Microsoft Corporation) C:\windows\system32\wwanprotdim.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000102216 _____ (Microsoft Corporation) C:\windows\system32\changepk.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000101888 _____ (Microsoft Corporation) C:\windows\SysWOW64\sppc.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000096768 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Custom.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000093712 _____ (Microsoft Corporation) C:\windows\system32\hvloader.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000090624 _____ (Microsoft Corporation) C:\windows\system32\tsgqec.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000089912 _____ (Microsoft Corporation) C:\windows\system32\Drivers\volmgr.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 000088352 _____ (Microsoft Corporation) C:\windows\system32\remoteaudioendpoint.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000087040 _____ (Microsoft Corporation) C:\windows\system32\iasacct.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000084280 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hvservice.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 000076288 _____ (Microsoft Corporation) C:\windows\system32\autopilot.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000071680 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Custom.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000071480 _____ (Microsoft Corporation) C:\windows\system32\win32appinventorycsp.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000070656 _____ (Microsoft Corporation) C:\windows\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000070656 _____ (Microsoft Corporation) C:\windows\system32\keepaliveprovider.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000070144 _____ (Microsoft Corporation) C:\windows\SysWOW64\tsgqec.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000066624 _____ (Microsoft Corporation) C:\windows\system32\iumcrypt.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000066048 _____ (Microsoft Corporation) C:\windows\SysWOW64\iasacct.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000064512 _____ (Microsoft Corporation) C:\windows\system32\pcadm.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000064000 _____ (Microsoft Corporation) C:\windows\system32\tbauth.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000060416 _____ (Microsoft Corporation) C:\windows\system32\CloudNotifications.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000059192 _____ (Microsoft Corporation) C:\windows\system32\Drivers\storufs.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 000057344 _____ (Microsoft Corporation) C:\windows\system32\audioresourceregistrar.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000051200 _____ (Microsoft Corporation) C:\windows\system32\pcalua.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000050544 _____ (Microsoft Corporation) C:\windows\SysWOW64\CloudNotifications.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000050176 _____ (Microsoft Corporation) C:\windows\system32\iaspolcy.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000049152 _____ (Microsoft Corporation) C:\windows\SysWOW64\tbauth.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000045568 _____ (Microsoft Corporation) C:\windows\system32\cmintegrator.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000044032 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Xaml.Resources.Common.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000043008 _____ (Microsoft Corporation) C:\windows\system32\UpgradeResultsUI.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000040448 _____ (Microsoft Corporation) C:\windows\SysWOW64\iaspolcy.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000039424 _____ (Microsoft Corporation) C:\windows\system32\WpcProxyStubs.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000036864 _____ (Microsoft Corporation) C:\windows\system32\TokenBrokerCookies.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000036152 _____ (Microsoft Corporation) C:\windows\system32\DeviceCensus.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000033080 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hwpolicy.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 000031744 _____ (Microsoft Corporation) C:\windows\system32\wksprtPS.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000031744 _____ (Microsoft Corporation) C:\windows\system32\ias.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000030720 _____ (Microsoft Corporation) C:\windows\system32\Drivers\KNetPwrDepBroker.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 000029696 _____ (Microsoft Corporation) C:\windows\SysWOW64\cmintegrator.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000029184 _____ (Microsoft Corporation) C:\windows\SysWOW64\TokenBrokerCookies.exe
2020-04-07 23:34 - 2020-04-07 23:34 - 000028160 _____ (Microsoft Corporation) C:\windows\system32\Drivers\flpydisk.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 000023552 _____ (Microsoft Corporation) C:\windows\SysWOW64\ias.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000023552 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Custom.ps.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000022528 _____ (Microsoft Corporation) C:\windows\system32\slcext.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000022528 _____ (Microsoft Corporation) C:\windows\system32\sbservicetrigger.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000021520 _____ (Microsoft Corporation) C:\windows\system32\kdhvcom.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000019968 _____ (Microsoft Corporation) C:\windows\SysWOW64\slcext.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000018944 _____ (Microsoft Corporation) C:\windows\system32\Drivers\sfloppy.sys
2020-04-07 23:34 - 2020-04-07 23:34 - 000017920 _____ (Microsoft Corporation) C:\windows\SysWOW64\wksprtPS.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000015872 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Custom.ps.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000012800 _____ (Microsoft Corporation) C:\windows\system32\pcaevts.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000010752 _____ (Microsoft Corporation) C:\windows\system32\DMAlertListener.ProxyStub.dll
2020-04-07 23:34 - 2020-04-07 23:34 - 000007680 _____ (Microsoft Corporation) C:\windows\SysWOW64\DMAlertListener.ProxyStub.dll
2020-04-07 02:44 - 2020-04-07 02:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO64
2020-04-07 02:08 - 2020-04-15 21:26 - 000007609 _____ C:\Users\carlo\AppData\Local\Resmon.ResmonCfg
2020-04-07 01:52 - 2020-04-07 01:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FinalWire
2020-04-05 20:56 - 2020-04-16 17:47 - 000000000 ____D C:\Users\carlo\AppData\Local\BY-COMBO
2020-04-05 20:56 - 2020-04-05 20:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\T16 Wired Gaming Mouse
2020-04-04 21:44 - 2020-04-04 21:44 - 000000000 ____D C:\Users\carlo\AppData\Roaming\NVIDIA
2020-04-04 20:17 - 2020-04-04 20:17 - 000000000 ____D C:\Users\carlo\AppData\Local\Mendeley Ltd
2020-04-04 20:10 - 2020-04-04 20:10 - 000000849 _____ C:\ProgramData\Escritorio\Mendeley Desktop.lnk
2020-04-04 20:10 - 2020-04-04 20:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mendeley Desktop
2020-04-03 10:41 - 2020-04-03 10:41 - 000000000 ____D C:\Users\carlo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-05-01 06:35 - 2019-03-18 23:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-05-01 04:10 - 2019-11-26 09:25 - 000000000 ____D C:\ProgramData\NVIDIA
2020-05-01 02:07 - 2020-03-12 18:49 - 000004218 _____ C:\windows\system32\Tasks\User_Feed_Synchronization-{4AFEADCD-9B82-4434-B751-9D70C4F57BBA}
2020-04-30 21:55 - 2020-02-05 14:16 - 000000000 ____D C:\Users\carlo\AppData\Local\Overwolf
2020-04-30 20:59 - 2020-01-25 19:37 - 000000000 ___RD C:\Users\carlo\OneDrive
2020-04-30 19:57 - 2019-11-26 09:32 - 000000000 ____D C:\windows\system32\Tasks\McAfee
2020-04-30 19:38 - 2019-04-15 10:38 - 000000000 ____D C:\windows\system32\SleepStudy
2020-04-30 08:57 - 2020-01-26 23:55 - 000000000 ____D C:\Users\carlo\AppData\Roaming\Discord
2020-04-30 03:58 - 2020-01-30 21:40 - 000000000 ____D C:\Users\carlo\AppData\Roaming\WhatsApp
2020-04-29 23:49 - 2019-03-18 23:52 - 000000000 ____D C:\windows\AppReadiness
2020-04-29 23:48 - 2019-03-18 23:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-04-29 16:26 - 2020-01-25 19:38 - 000000000 ____D C:\Program Files (x86)\Dropbox
2020-04-28 19:21 - 2019-06-14 14:05 - 000820676 _____ C:\windows\system32\perfh00A.dat
2020-04-28 19:21 - 2019-06-14 14:05 - 000170586 _____ C:\windows\system32\perfc00A.dat
2020-04-28 19:21 - 2019-06-14 11:25 - 001914926 _____ C:\windows\system32\PerfStringBackup.INI
2020-04-28 19:21 - 2019-03-18 23:50 - 000000000 ____D C:\windows\INF
2020-04-28 17:45 - 2020-01-25 19:34 - 000000000 __SHD C:\Users\carlo\IntelGraphicsProfiles
2020-04-28 16:57 - 2020-01-25 19:40 - 000002306 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-04-28 12:59 - 2020-01-26 01:24 - 000000000 ____D C:\windows\minidump
2020-04-28 12:59 - 2019-11-26 09:25 - 000000000 ____D C:\Intel
2020-04-28 12:59 - 2019-04-15 10:38 - 000439808 _____ C:\windows\system32\FNTCACHE.DAT
2020-04-28 12:59 - 2019-04-15 10:38 - 000000006 ____H C:\windows\Tasks\SA.DAT
2020-04-28 06:46 - 2019-11-26 09:25 - 000013553 _____ C:\ProgramData\DisplaySessionContainer1.log_backup1
2020-04-28 06:45 - 2019-11-26 09:25 - 000014956 _____ C:\ProgramData\NVDisplay.ContainerLocalSystem.log_backup1
2020-04-27 15:12 - 2020-03-14 17:56 - 000000000 ____D C:\Users\carlo\AppData\Local\Battle.net
2020-04-27 15:06 - 2020-01-25 19:40 - 000000000 ____D C:\Users\carlo\AppData\Local\D3DSCache
2020-04-27 14:37 - 2020-01-25 20:38 - 000001206 _____ C:\ProgramData\NvcDispCorePlugin.log_backup1
2020-04-27 14:37 - 2019-11-26 09:25 - 000014179 _____ C:\ProgramData\NVDisplayContainerWatchdog.log_backup1
2020-04-27 08:36 - 2020-01-26 01:55 - 000000000 ____D C:\Users\carlo\AppData\Local\CrashDumps
2020-04-26 19:50 - 2020-01-25 19:43 - 000000000 ____D C:\Users\carlo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome
2020-04-26 13:14 - 2019-03-18 23:37 - 000032768 _____ C:\windows\system32\config\ELAM
2020-04-25 17:21 - 2020-01-25 19:34 - 000000000 ____D C:\Users\carlo\AppData\Local\Packages
2020-04-25 12:00 - 2020-01-25 20:07 - 000000000 ____D C:\Users\carlo\AppData\Local\NVIDIA
2020-04-25 10:10 - 2020-03-11 20:46 - 000000000 ____D C:\Users\carlo\AppData\Local\Downloaded Applications
2020-04-25 09:24 - 2020-03-12 18:46 - 000000000 ____D C:\ProgramData\TEMP
2020-04-25 02:55 - 2020-01-25 19:34 - 000010379 _____ C:\ProgramData\DisplaySessionContainer2.log_backup1
2020-04-24 13:55 - 2020-01-25 19:29 - 000000000 ____D C:\Users\carlo
2020-04-23 22:19 - 2019-03-18 23:37 - 001048576 _____ C:\windows\system32\config\BBI
2020-04-23 03:34 - 2019-03-18 23:52 - 000000000 ____D C:\windows\LiveKernelReports
2020-04-20 17:27 - 2020-02-08 13:13 - 000000000 ____D C:\Users\carlo\AppData\Roaming\PhotoScape
2020-04-20 17:27 - 2019-04-15 11:31 - 000000000 ____D C:\windows\Panther
2020-04-20 17:22 - 2019-03-18 23:52 - 000000000 ___HD C:\windows\ELAMBKUP
2020-04-19 15:17 - 2019-03-18 23:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-04-19 15:16 - 2019-06-14 11:23 - 000000000 ____D C:\Program Files\Microsoft Office
2020-04-18 12:07 - 2020-01-25 19:37 - 000000000 ____D C:\Users\carlo\AppData\Local\PlaceholderTileLogoFolder
2020-04-18 00:27 - 2020-02-01 20:58 - 000000000 ____D C:\Users\carlo\AppData\Roaming\Origin
2020-04-18 00:27 - 2020-02-01 20:58 - 000000000 ____D C:\ProgramData\Origin
2020-04-16 18:49 - 2020-02-01 23:41 - 000000883 _____ C:\ProgramData\Escritorio\Apex Legends.lnk
2020-04-16 18:48 - 2020-02-01 20:58 - 000000000 ____D C:\Users\carlo\AppData\Local\Origin
2020-04-16 13:47 - 2019-11-26 09:25 - 000000000 ____D C:\ProgramData\Intel
2020-04-15 17:29 - 2019-11-26 09:26 - 000004308 _____ C:\windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-15 17:29 - 2019-11-26 09:26 - 000004106 _____ C:\windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-15 17:29 - 2019-11-26 09:26 - 000003976 _____ C:\windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-15 17:29 - 2019-11-26 09:26 - 000003940 _____ C:\windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-15 17:29 - 2019-11-26 09:26 - 000003858 _____ C:\windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-15 17:29 - 2019-11-26 09:26 - 000003858 _____ C:\windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-15 17:29 - 2019-11-26 09:26 - 000003858 _____ C:\windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-15 17:29 - 2019-11-26 09:26 - 000003858 _____ C:\windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-15 17:29 - 2019-11-26 09:25 - 000003894 _____ C:\windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-15 17:29 - 2019-11-26 09:25 - 000003654 _____ C:\windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-15 17:29 - 2019-11-26 09:25 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-04-15 17:29 - 2019-11-26 09:25 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-04-15 17:29 - 2019-11-26 09:25 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-04-15 01:18 - 2019-03-18 23:52 - 000000000 ____D C:\windows\SysWOW64\es-MX
2020-04-15 01:18 - 2019-03-18 23:52 - 000000000 ____D C:\windows\SystemResources
2020-04-15 01:18 - 2019-03-18 23:52 - 000000000 ____D C:\windows\system32\migwiz
2020-04-15 01:18 - 2019-03-18 23:52 - 000000000 ____D C:\windows\system32\es-MX
2020-04-15 01:18 - 2019-03-18 23:52 - 000000000 ____D C:\windows\ShellExperiences
2020-04-15 01:18 - 2019-03-18 23:52 - 000000000 ____D C:\windows\bcastdvr
2020-04-15 00:55 - 2019-03-18 23:37 - 000000000 ____D C:\windows\CbsTemp
2020-04-14 22:07 - 2020-01-25 19:37 - 000003378 _____ C:\windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1669855820-2084828274-340432298-1001
2020-04-14 22:07 - 2020-01-25 19:29 - 000002370 _____ C:\Users\carlo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-04-14 21:51 - 2020-01-30 17:47 - 002740480 _____ (Wellbia.com Co., Ltd.) C:\windows\xhunter1.sys
2020-04-14 16:27 - 2020-01-26 10:18 - 001449920 _____ (Microsoft Corporation) C:\windows\system32\xgameruntime.dll
2020-04-14 16:27 - 2020-01-26 10:18 - 000153528 _____ (Microsoft Corporation) C:\windows\system32\gameconfighelper.dll
2020-04-14 16:27 - 2020-01-26 10:18 - 000118200 _____ (Microsoft Corporation) C:\windows\system32\gamingservicesproxy.dll
2020-04-14 16:27 - 2020-01-26 10:18 - 000033720 _____ (Microsoft Corporation) C:\windows\system32\gamemodcontrol.exe
2020-04-12 20:17 - 2019-03-18 23:52 - 000000000 ____D C:\windows\system32\NDF
2020-04-11 13:53 - 2020-03-24 03:52 - 000655288 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvEncodeAPI.dll
2020-04-11 13:52 - 2019-06-03 01:48 - 004927744 _____ (NVIDIA Corporation) C:\windows\system32\nvapi64.dll
2020-04-09 22:58 - 2020-01-30 01:52 - 000011476 _____ C:\ProgramData\DisplaySessionContainer3.log_backup1
2020-04-08 09:01 - 2020-02-03 02:42 - 000000000 ____D C:\Users\carlo\AppData\Local\HP_Inc
2020-04-08 03:46 - 2020-01-28 20:17 - 000000000 ____D C:\Users\carlo\AppData\Local\HP
2020-04-08 00:04 - 2020-02-03 01:09 - 000000000 ____D C:\Program Files (x86)\Steam
2020-04-07 23:50 - 2019-11-26 11:12 - 000000000 ____D C:\windows\HoloShell
2020-04-07 23:50 - 2019-03-18 23:52 - 000000000 ____D C:\windows\system32\PerceptionSimulation
2020-04-07 23:50 - 2019-03-18 23:52 - 000000000 ____D C:\windows\Provisioning
2020-04-07 15:43 - 2020-01-26 00:47 - 000000000 ____D C:\swsetup
2020-04-07 12:58 - 2019-11-26 09:26 - 002799416 _____ (NVIDIA Corporation) C:\windows\system32\nvspcap64.dll
2020-04-07 12:58 - 2019-11-26 09:26 - 002159592 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvspcap.dll
2020-04-07 12:58 - 2019-11-26 09:26 - 001314792 _____ (NVIDIA Corporation) C:\windows\system32\NvRtmpStreamer64.dll
2020-04-06 12:24 - 2020-01-26 01:16 - 000000000 ____D C:\windows\Firmware
2020-04-03 10:41 - 2020-03-25 09:49 - 000000000 ____D C:\Users\carlo\AppData\Roaming\Zoom
2020-04-03 03:48 - 2020-02-02 03:26 - 000013626 _____ C:\ProgramData\DisplaySessionContainer4.log_backup1

==================== Archivos en la raíz de algunos directorios ========

2020-04-07 02:08 - 2020-04-15 21:26 - 000007609 _____ () C:\Users\carlo\AppData\Local\Resmon.ResmonCfg
2020-04-20 12:33 - 2020-04-20 12:33 - 000000048 _____ () C:\Users\carlo\AppData\Local\wiatrace.log

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)

==================== Final de FRST.txt ========================
Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 30-04-2020
Ejecutado por carlo (01-05-2020 06:35:49)
Ejecutado desde C:\carlo\Escritorio
Windows 10 Home Single Language Versión 1909 18363.778 (X64) (2020-01-26 06:24:45)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================

Administrador (S-1-5-21-1669855820-2084828274-340432298-500 - Administrator - Disabled)
carlo (S-1-5-21-1669855820-2084828274-340432298-1001 - Administrator - Enabled) => C:\Users\carlo
DefaultAccount (S-1-5-21-1669855820-2084828274-340432298-503 - Limited - Disabled)
Invitado (S-1-5-21-1669855820-2084828274-340432298-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1669855820-2084828274-340432298-504 - Limited - Disabled)

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: VirusScan de McAfee  (Disabled - Up to date) {F682A51C-4EAD-6A3A-F460-B9C1D4A2DB09}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
FW: McAfee Firewall (Enabled) {CEB92439-04C2-6B62-DF3F-10F42A719C72}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

Actualización de NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 20.006.20042 - Adobe Systems Incorporated)
AIDA64 Extreme v6.25 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 6.25 - FinalWire Ltd.)
Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.3.5 - Electronic Arts, Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version:  - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 5.65 - Piriform)
Cooler Master Portal Settings software (HKLM-x32\...\{1A3E3EA7-5A7C-4292-8A13-B0DE1BF49E13}_COOLER_MASTER_PORTAL) (Version: 1.01 - Cooler Master)
CPUID HWMonitor 1.41 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.41 - CPUID, Inc.)
Dev-C++ (HKLM-x32\...\Dev-C++) (Version: 5.11 - Bloodshed Software)
Discord (HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\Discord) (Version: 0.0.306 - Discord Inc.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 96.4.172 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.295.1 - Dropbox, Inc.) Hidden
GameInput Redistributable (HKLM-x32\...\{5CAEA37E-8C31-F1D0-9BD8-91B1EFAEF885}) (Version: 10.1.19041.1124 - Microsoft Corporation)
GAMS win64 26.1.0 (HKLM\...\GAMS win64 26.1_is1) (Version: GAMS 26.1.0 - GAMS Development)
GAMS win64 30.1.0 (HKLM\...\GAMS win64 30.1_is1) (Version: GAMS 30.1.0 - GAMS Development)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 81.0.4044.129 - Google LLC)
Google Earth Pro (HKLM\...\{70A0F34E-564B-4F93-ADD6-3BAEC6E44075}) (Version: 7.3.2.5776 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
HP Audio Switch (HKLM-x32\...\{20A40E7C-E470-4E9F-9B5C-DDB2C205E856}) (Version: 1.0.154.0 - HP Inc.)
HP Connection Optimizer (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 2.0.15.0 - HP Inc.)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
HWiNFO64 Version 6.24 (HKLM\...\HWiNFO64_is1) (Version: 6.24 - Martin Malik - REALiX)
Intel XTU SDK (HKLM-x32\...\{43A58350-CB99-4F4E-9BB6-F058D7B27985}) (Version: 1.0.14 - HP Inc.) Hidden
Julia 1.3.1 (HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\Julia 1.3.1) (Version:  - Julia Language)
League of Legends (HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\Riot Game league_of_legends.live) (Version:  - Riot Games, Inc)
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
McAfee LiveSafe (HKLM-x32\...\MSC) (Version: 16.0 R24 - McAfee, LLC.)
MEGAsync (HKLM-x32\...\MEGAsync) (Version:  - Mega Limited)
Mendeley Desktop 1.19.4 (HKLM-x32\...\Mendeley Desktop) (Version: 1.19.4 - Mendeley Ltd.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 81.0.416.68 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.127.15 - )
Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.12624.20466 - Microsoft Corporation)
Microsoft Office 365 - es-es (HKLM\...\O365HomePremRetail - es-es) (Version: 16.0.12624.20466 - Microsoft Corporation)
Microsoft Office Profesional Plus 2019 - es-es (HKLM\...\ProPlus2019Retail - es-es) (Version: 16.0.12624.20466 - Microsoft Corporation)
Microsoft Office Professional Plus 2019 - en-us (HKLM\...\ProPlus2019Retail - en-us) (Version: 16.0.12624.20466 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\OneDriveSetup.exe) (Version: 19.232.1124.0012 - Microsoft Corporation)
Microsoft Project Professional 2019 - en-us (HKLM\...\ProjectPro2019Retail - en-us) (Version: 16.0.12624.20466 - Microsoft Corporation)
Microsoft Project Professional 2019 - es-es (HKLM\...\ProjectPro2019Retail - es-es) (Version: 16.0.12624.20466 - Microsoft Corporation)
Microsoft Visio Professional 2019 - en-us (HKLM\...\VisioPro2019Retail - en-us) (Version: 16.0.12624.20466 - Microsoft Corporation)
Microsoft Visio Professional 2019 - es-es (HKLM\...\VisioPro2019Retail - es-es) (Version: 16.0.12624.20466 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
Mozilla Firefox 73.0 (x64 es-MX) (HKLM\...\Mozilla Firefox 73.0 (x64 es-MX)) (Version: 73.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 73.0 - Mozilla)
MSI Afterburner 4.6.2 (HKLM-x32\...\Afterburner) (Version: 4.6.2 - MSI Co., LTD)
NewGunboundLS (HKLM-x32\...\NewGunboundLS_is1) (Version:  - Softnyx co.,Ltd.)
Npcap (HKLM-x32\...\NpcapInst) (Version: 0.9986 - Nmap Project)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA Controlador de audio HD 1.3.38.26 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.26 - NVIDIA Corporation)
NVIDIA Controlador de gráficos 445.87 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 445.87 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.20.3.63 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.3.63 - NVIDIA Corporation)
NVIDIA Software del sistema PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.12624.20442 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.12624.20466 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.12624.20442 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0C0A-1000-0000000FF1CE}) (Version: 16.0.12624.20442 - Microsoft Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 10.5.67.39484 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.143.0.24 - Overwolf Ltd.)
PhotoScape (HKLM-x32\...\PhotoScape) (Version:  - )
Polymath Professional (HKLM-x32\...\{95730541-F084-4B2D-92A0-0270E18EA29E}) (Version: 6.10.0260 - Polymath Software)
Polyspace R2019a (HKLM\...\Polyspace R2019a) (Version: 3.0 - MathWorks)
Porofessor.gg (HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\Overwolf_pibhbkkgefgheeglaeemkkfjlhidhcedalapdggh) (Version: 2.4.18 - Overwolf app)
PUBG LITE (HKLM-x32\...\PUBG LITE_is1) (Version: 1.0.1.0 - )
Python 3.8.2 (32-bit) (HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\{3182483d-078b-48fa-92c2-798baa1fe27d}) (Version: 3.8.2150.0 - Python Software Foundation)
Python 3.8.2 Core Interpreter (32-bit) (HKLM-x32\...\{6BA6203C-85AB-4B9E-8582-CE31B1B5C0ED}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Development Libraries (32-bit) (HKLM-x32\...\{12B4F371-ACE2-435B-BCF1-623F36C4E176}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Documentation (32-bit) (HKLM-x32\...\{45CEE0C6-5BB2-4A8B-B83C-58559A1CA424}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Executables (32-bit) (HKLM-x32\...\{FE5BE50D-21D5-44FB-9A97-5010E68608DA}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 pip Bootstrap (32-bit) (HKLM-x32\...\{2E818780-AC79-4BC0-8023-C1CC46EAC9B6}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Standard Library (32-bit) (HKLM-x32\...\{09CC0C6D-0822-491E-A10E-2A8443DDF170}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Tcl/Tk Support (32-bit) (HKLM-x32\...\{B1528EAE-7E64-49DB-8CE1-514EB30BB38B}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Test Suite (32-bit) (HKLM-x32\...\{EE21EEE7-9D5A-4ECE-B60F-4BFA63BDA937}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Utility Scripts (32-bit) (HKLM-x32\...\{E284B869-7701-4A91-82C2-D3E66974A0F9}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{AF12A465-EA47-447D-B6BF-2A82CDBE2F0E}) (Version: 3.8.6994.0 - Python Software Foundation)
RivaTuner Statistics Server 7.2.3 (HKLM-x32\...\RTSS) (Version: 7.2.3 - Unwinder)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Streamlabs OBS (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.21.2 - General Workings, Inc.)
T16 Wired Gaming Mouse (HKLM-x32\...\{444BE55C-4B14-4DB8-9922-6846C1437677}_is1) (Version: 1.0.3 - )
UE4 Prerequisites (x64) (HKLM\...\{36EAD5CF-44EF-4FCF-8BE1-D96C4835D7A4}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{2890ae6b-90e9-448d-b3e6-97e43c21e2fd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
uTorrent Web (HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\utweb) (Version: 1.0.7 - BitTorrent, Inc.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
WhatsApp (HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\WhatsApp) (Version: 0.4.2088 - WhatsApp)
WinRAR 5.80 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.80.0 - win.rar GmbH)
Wireshark 3.2.1 64-bit (HKLM-x32\...\Wireshark) (Version: 3.2.1 - The Wireshark developer community, hxxps://www.wireshark.org)
Zoom (HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\ZoomUMX) (Version: 4.6 - Zoom Video Communications, Inc.)

Packages:
=========
Age of Empires II: Definitive Edition -> C:\Program Files\WindowsApps\Microsoft.MSPhoenix_101.101.36202.0_x64__8wekyb3d8bbwe [2020-04-15] (Microsoft Studios)
Ajuste de piso -> C:\windows\SystemApps\RoomAdjustment_cw5n1h2txyewy [2020-04-07] (Microsoft Corporation)
Complemento de motor multimedia para Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-02-05] (Microsoft Corporation)
Connect -> C:\windows\SystemApps\Microsoft.Windows.DevicesFlowHost_cw5n1h2txyewy [2020-04-07] (Microsoft Corporation)
Descubrir la realidad mixta -> C:\windows\SystemApps\MixedRealityLearning_cw5n1h2txyewy [2020-04-07] (Microsoft Corporation)
DirectX -> C:\Program Files\WindowsApps\Microsoft.DirectXRuntime_9.29.952.0_x64__8wekyb3d8bbwe [2020-01-26] (Microsoft Corporation)
DirectX -> C:\Program Files\WindowsApps\Microsoft.DirectXRuntime_9.29.952.0_x86__8wekyb3d8bbwe [2020-01-26] (Microsoft Corporation)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220 [2020-04-18] (Dolby Laboratories)
DTS Sound Unbound -> C:\Program Files\WindowsApps\DTSInc.DTSSoundUnbound_2020.1.45.0_x64__t5j2fzbtdg37r [2020-04-08] (DTS, Inc.)
Energy Star -> C:\Program Files\WindowsApps\AD2F1837.HPInc.EnergyStar_1.2.0.0_x64__v10z8vjag6ke6 [2019-11-26] (HP Inc.)
Halo Wars 2 -> C:\Program Files\WindowsApps\Microsoft.HoganThreshold_1.11.2931.2_x64__8wekyb3d8bbwe [2020-02-03] (Microsoft Studios)
Halo: The Master Chief Collection -> C:\Program Files\WindowsApps\Mutable\Microsoft.Chelan_1.1389.0.0_x64__8wekyb3d8bbwe [2020-04-15] (Microsoft Studios)
HP JumpStarts -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.5.1296.0_x64__v10z8vjag6ke6 [2020-01-28] (HP Inc.)
HP PC Hardware Diagnostics Windows -> C:\Program Files\WindowsApps\AD2F1837.HPPCHardwareDiagnosticsWindows_1.6.4.0_x64__v10z8vjag6ke6 [2020-04-15] (HP Inc.)
HP Privacy Settings -> C:\Program Files\WindowsApps\AD2F1837.HPPrivacySettings_1.0.38.0_x64__v10z8vjag6ke6 [2020-01-26] (HP Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_110.1.728.0_x64__v10z8vjag6ke6 [2020-04-14] (HP Inc.)
HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.6.598.0_x64__v10z8vjag6ke6 [2020-04-08] (HP Inc.)
HP System Event Utility -> C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.1.4.0_x64__v10z8vjag6ke6 [2020-01-28] (HP Inc.)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2020-04-08] (INTEL CORP)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_17.8.1007.0_x64__8j3eq9eme6ctt [2020-01-28] (INTEL CORP)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2020-01-28] (LinkedIn)
McAfee® Personal Security -> C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.27.0_x64__wafk5atnkzcwy [2020-04-08] (McAfee LLC.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-01-28] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-01-28] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.6.4030.0_x64__8wekyb3d8bbwe [2020-04-14] (Microsoft Studios) [MS Ad]
Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.14.6005.0_x64__8wekyb3d8bbwe [2020-04-15] (Microsoft Studios)
MSN El tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-04-08] (Microsoft Corporation) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.96.725.0_x64__mcm4njqhnhss8 [2020-04-10] (Netflix, Inc.)
Novedades para ti -> C:\windows\SystemApps\WhatsNew_cw5n1h2txyewy [2020-04-07] (Microsoft Corporation)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.956.0_x64__56jybvy8sckqj [2020-01-25] (NVIDIA Corp.)
OMEN Audio Control -> C:\Program Files\WindowsApps\AD2F1837.OMENAudioControl_1.3.181.0_x64__v10z8vjag6ke6 [2019-11-26] (HP Inc.)
OMEN Command Center -> C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.11.0_x64__v10z8vjag6ke6 [2020-04-20] (HP Inc.) [Startup Task]
Passthrough -> C:\windows\SystemApps\passthrough_cw5n1h2txyewy [2020-04-07] (Microsoft Corporation)
PDF Reader - Visualizar, Anotar, Compartir -> C:\Program Files\WindowsApps\0D9A1B2D.PDFReaderUWP_1.9.4090.0_x64__jhretta7p24aw [2020-04-10] (Kdan Mobile Software Ltd.) [MS Ad]
PhotoScape X -> C:\Program Files\WindowsApps\MooiiTech.PhotoScapeX_4.0.2.0_x64__f5eddttrpssna [2020-02-08] (Mooii Tech)
Servicios de juegos -> C:\Program Files\WindowsApps\Microsoft.GamingServices_2.40.7001.0_x64__8wekyb3d8bbwe [2020-04-14] (Microsoft Corporation)
Sign In -> C:\windows\SystemApps\WebAuthBridgeInternet_cw5n1h2txyewy [2020-01-26] (ms-resource:PublisherDisplayName)
Sign In -> C:\windows\SystemApps\WebAuthBridgeInternetSso_cw5n1h2txyewy [2020-01-26] (ms-resource:PublisherDisplayName)
Sign In -> C:\windows\SystemApps\WebAuthBridgeIntranetSso_cw5n1h2txyewy [2020-01-26] (ms-resource:PublisherDisplayName)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.131.703.0_x86__zpdnekdrzrea0 [2020-04-24] (Spotify AB) [Startup Task]
Synaptics TouchPad -> C:\Program Files\WindowsApps\SynapticsIncorporated.SynHPConsumerDApp_19005.35054.0.0_x64__807d65c4rvak2 [2020-04-08] (Synaptics Incorporated)
The Master Chief Collection: REACH -> C:\Program Files\WindowsApps\Microsoft.TheMasterChiefCollectionREACH_1.1.0.0_x64__8wekyb3d8bbwe [2020-01-28] (Microsoft Studios)
Xbox (Beta) -> C:\Program Files\WindowsApps\Microsoft.GamingApp_2003.1001.4.0_x64__8wekyb3d8bbwe [2020-03-14] (Microsoft Corporation) [Startup Task]

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

CustomCLSID: HKU\S-1-5-21-1669855820-2084828274-340432298-1001_Classes\CLSID\{10D99606-D828-4671-9B5E-F2450D831788} -> [MEGAsync] => C:\Users\carlo\Documents\MEGAsync [2020-02-09 04:22]
CustomCLSID: HKU\S-1-5-21-1669855820-2084828274-340432298-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => D:\carlo\Documents\Dropbox\Dropbox [2020-01-26 14:50]
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\carlo\AppData\Local\MEGAsync\ShellExtX64.dll [2020-03-18] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\carlo\AppData\Local\MEGAsync\ShellExtX64.dll [2020-03-18] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\carlo\AppData\Local\MEGAsync\ShellExtX64.dll [2020-03-18] (Mega Limited -> )
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\carlo\AppData\Local\MEGAsync\ShellExtX64.dll [2020-03-18] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\carlo\AppData\Local\MEGAsync\ShellExtX64.dll [2020-03-18] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\carlo\AppData\Local\MEGAsync\ShellExtX64.dll [2020-03-18] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> Ningún archivo
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> Ningún archivo
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Ningún archivo
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => C:\Program Files\McAfee\MSC\McCtxMenuFrmWrk.dll [2020-02-05] (McAfee, LLC. -> McAfee, LLC.)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\carlo\AppData\Local\MEGAsync\ShellExtX64.dll [2020-03-18] (Mega Limited -> )
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Archivos de programa\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Archivos de programa\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\carlo\AppData\Local\MEGAsync\ShellExtX64.dll [2020-03-18] (Mega Limited -> )
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-04-20] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\carlo\AppData\Local\MEGAsync\ShellExtX64.dll [2020-03-18] (Mega Limited -> )
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> Ningún archivo
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> Ningún archivo
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\carlo\AppData\Local\MEGAsync\ShellExtX64.dll [2020-03-18] (Mega Limited -> )
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> Ningún archivo
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.37.0.dll [2020-04-01] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\windows\System32\DriverStore\FileRepository\nvhmi.inf_amd64_f5abf44622a9ff68\nvshext.dll [2020-04-11] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Ningún archivo
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-04-20] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => C:\Program Files\McAfee\MSC\McCtxMenuFrmWrk.dll [2020-02-05] (McAfee, LLC. -> McAfee, LLC.)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> Ningún archivo
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Archivos de programa\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Archivos de programa\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Lista blanca) ====================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Drivers32: [VIDC.RTV1] => C:\windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [Archivo no firmado]

==================== Accesos directos & WMI ========================

(Las entradas pueden ser listadas para ser restauradas o eliminadas.)

ShortcutWithArgument: C:\Users\carlo\AppData\Local\Microsoft\Edge\User Data\Default\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory=Default
ShortcutWithArgument: C:\Users\carlo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Escritorio Remoto de Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=gbchcmhmhahfdphkhkmpfmihenigjmpp
ShortcutWithArgument: C:\Users\carlo\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory=Default
ShortcutWithArgument: C:\Users\carlo\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\b14bc6b8f06194fd\YouTube Music.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=cinhimbnkkaeohfgghhklpknlkffjgod

==================== Módulos cargados (Lista blanca) =============

2020-01-28 01:11 - 2020-01-28 01:12 - 004979200 _____ ( (Copyright (C) 2017-2018, HP Development Company, LP.) [Archivo no firmado])  [El archivo está en uso ] C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.11.0_x64__v10z8vjag6ke6\win32\AWSIoTCppCLR.dll
2020-03-11 21:04 - 2020-03-11 21:04 - 000138240 _____ ( ) [Archivo no firmado] C:\windows\assembly\NativeImages_v4.0.30319_32\Interop.IWs06dcaa36#\aed666a803880b062f8e4b0bc9fc6d5c\Interop.IWshRuntimeLibrary.ni.dll
2020-04-18 21:30 - 2020-04-18 21:30 - 000165376 ____X () [Archivo no firmado] C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220\DAXRPCClient.dll
2020-04-18 21:30 - 2020-04-18 21:30 - 037219328 ____X () [Archivo no firmado] C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220\DolbyAccess.dll
2020-04-18 21:30 - 2020-04-18 21:30 - 001165824 ____X () [Archivo no firmado] C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220\e_sqlite3.dll
2020-04-08 03:44 - 2020-04-08 03:45 - 017228800 _____ () [Archivo no firmado] C:\Program Files\WindowsApps\DTSInc.DTSSoundUnbound_2020.1.45.0_x64__t5j2fzbtdg37r\DTSSoundUnbound2.dll
2020-01-28 01:09 - 2020-01-28 01:09 - 001194496 _____ () [Archivo no firmado] C:\Program Files\WindowsApps\DTSInc.DTSSoundUnbound_2020.1.45.0_x64__t5j2fzbtdg37r\e_sqlite3.dll
2020-03-11 21:03 - 2020-03-11 21:03 - 000134656 _____ (hardcodet.net) [Archivo no firmado] C:\windows\assembly\NativeImages_v4.0.30319_32\Hardcodet.W6cab32f3#\1643419d1e4fe1937e1ca11744ada253\Hardcodet.Wpf.TaskbarNotification.ni.dll
2019-11-26 09:31 - 2019-11-26 09:31 - 000015360 _____ (HP Inc.) [Archivo no firmado] C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.1.4.0_x64__v10z8vjag6ke6\SystemEventUtility\NativeRpcClient.DLL
2020-03-11 21:04 - 2020-03-11 21:04 - 001591808 _____ (Mark Heath) [Archivo no firmado] C:\windows\assembly\NativeImages_v4.0.30319_32\NAudio\8fd673db07920a602d65838ce052a29b\NAudio.ni.dll
2020-03-11 21:04 - 2020-03-11 21:04 - 003127808 _____ (Newtonsoft) [Archivo no firmado] C:\windows\assembly\NativeImages_v4.0.30319_32\Newtonsoft.Json\daabdb3385b789b50058a7162f08d857\Newtonsoft.Json.ni.dll
2020-04-13 04:23 - 2017-11-14 08:47 - 000065536 _____ (OpenLibSys.org) [Archivo no firmado] D:\carlo\Downloads\ThrottleStop_8.70.6\WinRing0.dll
2019-11-26 09:30 - 2019-04-12 04:36 - 000340480 _____ (Realtek Semiconductor Corp.) [Archivo no firmado] C:\windows\SYSTEM32\RtBWCtrl.dll
2020-01-28 01:11 - 2020-01-28 01:13 - 001625088 _____ (Robert Simpson, et al.) [Archivo no firmado] C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.11.0_x64__v10z8vjag6ke6\win32\SQLite.Interop.dll
2019-11-26 09:24 - 2019-11-26 09:24 - 000023040 _____ (Synaptics Incorporated.) [Archivo no firmado] C:\Program Files\WindowsApps\AD2F1837.OMENAudioControl_1.3.181.0_x64__v10z8vjag6ke6\SynAudSrvDll.dll
2020-03-11 21:03 - 2020-03-11 21:03 - 000793088 _____ (The Apache Software Foundation) [Archivo no firmado] C:\windows\assembly\NativeImages_v4.0.30319_32\log4net\b752f0d636c8ca1a56f52f1334d63b97\log4net.ni.dll
2017-09-14 01:37 - 2017-09-14 01:37 - 000026112 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Users\carlo\AppData\Local\MEGAsync\imageformats\qgif.dll
2017-09-14 01:42 - 2017-09-14 01:42 - 000033280 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Users\carlo\AppData\Local\MEGAsync\imageformats\qicns.dll
2017-09-14 01:37 - 2017-09-14 01:37 - 000027648 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Users\carlo\AppData\Local\MEGAsync\imageformats\qico.dll
2017-09-14 01:37 - 2017-09-14 01:37 - 000245760 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Users\carlo\AppData\Local\MEGAsync\imageformats\qjpeg.dll
2017-09-14 01:42 - 2017-09-14 01:42 - 000021504 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Users\carlo\AppData\Local\MEGAsync\imageformats\qsvg.dll
2017-09-14 01:42 - 2017-09-14 01:42 - 000020992 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Users\carlo\AppData\Local\MEGAsync\imageformats\qtga.dll
2017-09-14 01:42 - 2017-09-14 01:42 - 000316416 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Users\carlo\AppData\Local\MEGAsync\imageformats\qtiff.dll
2017-09-14 01:42 - 2017-09-14 01:42 - 000019968 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Users\carlo\AppData\Local\MEGAsync\imageformats\qwbmp.dll
2017-09-14 01:42 - 2017-09-14 01:42 - 000322560 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Users\carlo\AppData\Local\MEGAsync\imageformats\qwebp.dll
2017-09-14 01:37 - 2017-09-14 01:37 - 001010688 _____ (The Qt Company Ltd) [Archivo no firmado] C:\Users\carlo\AppData\Local\MEGAsync\platforms\qwindows.dll
2019-11-26 09:30 - 2017-09-01 01:22 - 002216448 _____ (TODO: <Company name>) [Archivo no firmado] C:\windows\SYSTEM32\wlanCliDLL.dll

==================== Alternate Data Streams (Lista blanca) ========

(Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.)

AlternateDataStreams: C:\ProgramData\TEMP:DF29D946 [126]
AlternateDataStreams: C:\Users\carlo\Datos de programa:f2470d06f885efcb2972c69faf0745e1 [394]
AlternateDataStreams: C:\Users\carlo\Datos de programa:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]
AlternateDataStreams: C:\Users\carlo\AppData\Roaming:f2470d06f885efcb2972c69faf0745e1 [394]
AlternateDataStreams: C:\Users\carlo\AppData\Roaming:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]

==================== Modo Seguro (Lista blanca) ==================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ModuleCoreService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcapexe => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ModuleCoreService => ""="Service"

==================== Asociación (Lista blanca) =================

==================== Internet Explorer sitios de confianza/restringidos ==========

==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2019-03-18 23:49 - 2019-03-18 23:49 - 000000824 _____ C:\windows\system32\drivers\etc\hosts

2020-04-16 08:51 - 2020-04-30 12:43 - 000000520 _____ C:\windows\system32\drivers\etc\hosts.ics

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKU\S-1-5-21-1669855820-2084828274-340432298-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\hp backgrounds\backgrounddefault.jpg
DNS Servers: 10.0.184.141 - 189.198.222.137
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Firewall de Windows está habilitado.

Network Binding:
=============
Conexión de red Bluetooth: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled) 
Conexión de red Bluetooth: Npcap Packet Driver (NPCAP) (Wi-Fi) -> INSECURE_NPCAP_WIFI (enabled) 
Ethernet: Realtek LightWeight Filter (NDIS6.40) -> nt_rtf64 (enabled) 
Ethernet: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled) 
Ethernet: Npcap Packet Driver (NPCAP) (Wi-Fi) -> INSECURE_NPCAP_WIFI (enabled) 
Wi-Fi: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled) 
Wi-Fi: Npcap Packet Driver (NPCAP) (Wi-Fi) -> INSECURE_NPCAP_WIFI (enabled) 
Wi-Fi: Realtek LightWeight Filter (NDIS6.40) -> nt_rtf64 (enabled) 

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\StartupApproved\Run: => "utweb"
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\StartupApproved\Run: => "Parsec.App.0"
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\StartupApproved\Run: => "Overwolf"
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\StartupApproved\Run: => "Spotify_Lyrics.NET_Helper_UWP"
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\...\StartupApproved\Run: => "EADM"

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [{1CAB44A0-5B5A-47E2-9642-74D651ABD533}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{FAB827E6-BF7F-450A-8569-749E4087F127}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5A2B4953-1B9C-4B39-BD16-B083BE9498A9}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe (McAfee, LLC. -> McAfee, LLC.)
FirewallRules: [{8E035AD2-EAE5-4277-951A-7C2374725858}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe (McAfee, LLC. -> McAfee, LLC.)
FirewallRules: [{340771C3-666D-4F5D-BC7A-D3CD0F28A60B}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe (McAfee, LLC. -> McAfee, LLC.)
FirewallRules: [{EEE7136D-8EE4-4B4B-8DD5-EC73CF8CB776}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.11.0_x64__v10z8vjag6ke6\win32\StreamerV2\omen.exe (HP Inc. -> )
FirewallRules: [{06CF8107-17C9-4636-8316-02C9EA49EEFD}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.11.0_x64__v10z8vjag6ke6\win32\StreamerV2\omen.exe (HP Inc. -> )
FirewallRules: [{3818D52E-4D34-455A-9F98-B01019265975}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.11.0_x64__v10z8vjag6ke6\win32\StreamerV2\omen.exe (HP Inc. -> )
FirewallRules: [{E8442DAE-DA56-4108-9C6D-174920F2DF64}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.11.0_x64__v10z8vjag6ke6\win32\StreamerV2\omen.exe (HP Inc. -> )
FirewallRules: [{61CD59B4-3088-41EC-85BE-F16EBFDFEB29}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{54D8647F-0F57-4D36-AFF7-29C61BBA8821}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{F97BD71E-CD1B-4358-9DDA-6A82471645F7}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Ningún archivo
FirewallRules: [{50C75A6C-4013-477F-844E-67929F0C8F48}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Ningún archivo
FirewallRules: [{96354B16-4484-4B16-91E2-E990AF6A1C1E}] => (Allow) D:\Archivos de programa\SteamLibrary\steamapps\common\Paladins\Binaries\Win64\PaladinsEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{81FB93F8-B52F-478D-866F-A16A323C532C}] => (Allow) D:\Archivos de programa\SteamLibrary\steamapps\common\Paladins\Binaries\Win64\PaladinsEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{571BB5C5-F53D-46B4-9E1F-E064B5919A2A}] => (Allow) C:\Users\carlo\AppData\Roaming\uTorrent Web\utweb.exe (Jenkins Win Client Build SPC -> BitTorrent Inc.) [Archivo no firmado]
FirewallRules: [{C2F5BBC8-31E6-49F6-96DC-FD2635A350DF}] => (Allow) C:\Users\carlo\AppData\Roaming\uTorrent Web\utweb.exe (Jenkins Win Client Build SPC -> BitTorrent Inc.) [Archivo no firmado]
FirewallRules: [{DD01B176-4710-40CD-BBBB-3BDA907E0163}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3E0BE0E5-01F1-431A-9A26-36FAE9A961C3}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F0446494-2CFD-4EDC-9913-B5F97C2BD6A2}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0DC781B1-48D8-45FE-B5B6-1BEACFF0FADF}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E5F8E89E-56A1-45DA-84C8-DC6527D736D9}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{FFF03B09-BE28-4DD6-B094-DE96095B3D8A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{F508ECA1-DE8F-4C15-81C9-20D10AD176FB}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{FC9D45B6-0FDB-4A61-A7F5-C8AB3086FFA2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{DE2337EE-57B4-4B79-9F42-EE371D6DC604}] => (Allow) D:\Archivos de programa\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{AD6C2FFF-C3DC-46D0-9398-024EEBE943F7}] => (Allow) D:\Archivos de programa\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{5CBB9FFA-1F13-4A34-9323-BCD67501BD61}] => (Allow) C:\Users\carlo\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{95CB3C89-6DEE-4B6A-B078-C3C833414BE0}] => (Allow) C:\Users\carlo\AppData\Roaming\Zoom\bin\airhost.exe Ningún archivo
FirewallRules: [{D9613309-46D0-4E97-8364-7473EC2E2C6D}] => (Allow) D:\Archivos de programa\Overwolf\0.143.0.24\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{B764C6F7-F0CD-43C8-8253-D4A58EE3AC61}] => (Allow) D:\Archivos de programa\Overwolf\0.143.0.24\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{63B1B16F-A483-4893-B64A-6FCDDF07ABA9}] => (Block) D:\Archivos de programa\Overwolf\0.143.0.24\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{34CFE9A6-D3CA-4251-9ECD-883053A3D106}] => (Block) D:\Archivos de programa\Overwolf\0.143.0.24\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{876F752D-8B60-4B3B-9B4B-7AEC5CFE7094}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0CEDD079-E5F9-4F87-B36F-60F192A8ADC5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{70E51C54-E805-40F6-849C-EAEA6CAF915E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{0CC31541-812B-4E73-A51A-CE30A0B99914}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4D7911DF-12B8-42A8-8A4A-686BA775A889}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{77353E2E-F7F2-44C0-9868-CC291E46C2D1}] => (Allow) D:\Archivos de programa\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{F32DB8C1-B818-411A-AC49-FD283B856EB8}] => (Allow) D:\Archivos de programa\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{0D85401F-41E1-42D2-A9BB-093665B1A9DE}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.11.0_x64__v10z8vjag6ke6\win32\StreamerV2\Omen.exe (HP Inc. -> )
FirewallRules: [{3D35EFD9-7AC8-48FA-9A29-8530F8AAFC58}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.11.0_x64__v10z8vjag6ke6\win32\StreamerV2\Omen.exe (HP Inc. -> )
FirewallRules: [{7A7F39D3-8A10-4953-A484-40C62FBA3F6E}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.11.0_x64__v10z8vjag6ke6\win32\StreamerV2\Omen.exe (HP Inc. -> )
FirewallRules: [{56950C48-D655-4077-A6CA-97F4F4936329}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.11.0_x64__v10z8vjag6ke6\win32\StreamerV2\Omen.exe (HP Inc. -> )
FirewallRules: [{01FFC7BF-5A62-4685-9A65-635E28F5A1A8}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.11.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc.) [Archivo no firmado]
FirewallRules: [{3E85715D-4057-4D0D-81DE-310F1BB094B6}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.11.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc.) [Archivo no firmado]
FirewallRules: [{9A21D086-1942-44A8-9B37-B09C3961C562}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.11.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc.) [Archivo no firmado]
FirewallRules: [{56F3B9F5-36A2-40DF-BE6E-94F1ACE4AF05}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.11.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc.) [Archivo no firmado]
FirewallRules: [{63978CE0-3EE9-43EE-9169-5172A1D985AA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.131.703.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{DEA5559A-B1E8-410C-89CE-F1F64541EA08}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.131.703.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{10537FD6-8158-465B-8C19-DE0B7F2A50D7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.131.703.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{AC550754-D07B-4DF8-9DE1-6D4D7A0F7B61}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.131.703.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1410C385-1CAD-4522-830E-4FD3479DC729}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.131.703.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{33ECBD8E-927F-489F-A996-05B93393C737}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.131.703.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{03C85C9F-6748-49B3-8969-F157085F90A0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.131.703.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{00786EDB-55CC-44BD-B616-2F22CEF70136}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.131.703.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{094024F2-FFB6-4478-B74F-E69B93FB30F2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{EEB668A7-F68A-48D3-B27D-061D5AD00A08}] => (Allow) %systemroot%\system32\alg.exe Ningún archivo
FirewallRules: [{FD17F078-573C-45DD-A484-E42726210392}] => (Allow) %systemroot%\system32\alg.exe Ningún archivo
FirewallRules: [{BFD2A969-CF7C-480C-9987-746875898C8A}] => (Allow) %systemroot%\system32\alg.exe Ningún archivo
FirewallRules: [{8DD23DCD-2ADF-4048-B6CE-25C950B4D3EF}] => (Allow) %systemroot%\system32\alg.exe Ningún archivo
FirewallRules: [{A6CADE8E-C73C-4A81-B49D-E3C8C2B3BB17}] => (Allow) %systemroot%\system32\alg.exe Ningún archivo
FirewallRules: [{1DC6E255-9FD1-4EE0-95E1-B58F97652927}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{4CBA461C-D631-4803-B028-78DC6C24B1D6}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.16.0_x64__v10z8vjag6ke6\win32\StreamerV2\Omen.exe (HP Inc. -> )
FirewallRules: [{6AB51602-F046-4232-9D86-AC55958C7D74}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.16.0_x64__v10z8vjag6ke6\win32\StreamerV2\Omen.exe (HP Inc. -> )
FirewallRules: [{C01CF090-2189-4E8D-8226-F1008EBBF1E2}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.16.0_x64__v10z8vjag6ke6\win32\StreamerV2\Omen.exe (HP Inc. -> )
FirewallRules: [{A6377800-10A3-4F49-9187-DAD932E8B7AC}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.16.0_x64__v10z8vjag6ke6\win32\StreamerV2\Omen.exe (HP Inc. -> )
FirewallRules: [{7B87EF98-B472-4C7B-813E-500CBFC40F24}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.16.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc.) [Archivo no firmado]
FirewallRules: [{FFAE29C2-B329-404C-84D2-9FA1A3367EC3}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.16.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc.) [Archivo no firmado]
FirewallRules: [{DC137083-CB2A-4164-84C4-2EA25A21870D}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.16.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc.) [Archivo no firmado]
FirewallRules: [{B03F6425-7507-4AE3-AEDC-214C2C6281BA}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_10.0.16.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc.) [Archivo no firmado]
FirewallRules: [{8E4D8A39-9AC2-4A59-93ED-1D97414EB72A}] => (Allow) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Puntos de Restauración =========================

25-04-2020 10:11:21 Installed Polymath Professional
26-04-2020 14:24:49 Eliminación del paquete de idioma
29-04-2020 17:01:52 Eliminación del paquete de idioma

==================== Dispositivos defectuosos en el Administrador de dispositivos ============


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (05/01/2020 06:10:00 AM) (Source: ESENT) (EventID: 413) (User: )
Description: msedge (33920,R,98) EdgeDataImporter: No se puede crear un nuevo archivo de registro, la base de datos no puede escribir en la unidad de registro. Puede que la unidad sea de sólo lectura, no tenga espacio disponible, esté incorrectamente configurada o esté dañada. Error -1032.

Error: (05/01/2020 06:10:00 AM) (Source: ESENT) (EventID: 488) (User: )
Description: msedge (33920,R,98) EdgeDataImporter: Al intentar crear el archivo "C:\Program Files (x86)\Microsoft\Edge\Application\81.0.416.68\edbtmp.log" se produjo el error de sistema 5 (0x00000005): "Acceso denegado. ". La operación de creación del archivo se cerrará con el error -1032 (0xfffffbf8).

Error: (05/01/2020 05:47:37 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: LAPTOP-5P0DD8KF)
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.

Error: (05/01/2020 04:08:19 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: LAPTOP-5P0DD8KF)
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.

Error: (05/01/2020 03:25:03 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: LAPTOP-5P0DD8KF)
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.

Error: (05/01/2020 02:59:43 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: LAPTOP-5P0DD8KF)
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.

Error: (05/01/2020 02:39:05 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: LAPTOP-5P0DD8KF)
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.

Error: (05/01/2020 02:17:57 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: LAPTOP-5P0DD8KF)
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.


Errores del sistema:
=============
Error: (04/29/2020 11:49:43 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80073d02: 9NQDW009T0T5-AD2F1837.OMENCommandCenter.

Error: (04/28/2020 11:51:17 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80073d02: 9NZKPSTSNW4P-Microsoft.XboxGamingOverlay.

Error: (04/28/2020 12:59:41 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: El equipo se reinició después de una comprobación de errores. La comprobación de errores fue: 0x00000124 (0x0000000000000000, 0xffffb60b89a76028, 0x00000000be000000, 0x0000000000800400). Se guardó un volcado en: C:\windows\MEMORY.DMP. Id. de informe: fd7cc53b-509d-49d8-a6b7-c2980e930148.

Error: (04/28/2020 12:59:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Origin Web Helper Service no pudo iniciarse debido al siguiente error: 
El sistema no puede encontrar el archivo especificado.

Error: (04/28/2020 12:59:12 PM) (Source: volmgr) (EventID: 161) (User: )
Description: No se pudo crear el archivo de volcado debido a un error durante la creación del volcado.

Error: (04/28/2020 12:59:18 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: El cierre anterior del sistema a las 12:38:34 p. m. del ‎28/‎04/‎2020 resultó inesperado.

Error: (04/28/2020 06:46:02 AM) (Source: NetBT) (EventID: 4311) (User: )
Description: Error de inicialización; no se puede crear el dispositivo del controlador.
Use la cadena "F6E488F8360A" para identificar la interfaz con errores de inicialización.
Representa la dirección MAC de la interfaz con errores o el Identificador de
interfaz único global (GUID), si NetBT no pudo asignar de GUID a direcciones
MAC. Si no estaban disponibles ni la dirección MAC ni el GUID, la
cadena representa el nombre de un dispositivo de clúster.

Error: (04/28/2020 06:46:02 AM) (Source: NetBT) (EventID: 4311) (User: )
Description: Error de inicialización; no se puede crear el dispositivo del controlador.
Use la cadena "F6E488F8360A" para identificar la interfaz con errores de inicialización.
Representa la dirección MAC de la interfaz con errores o el Identificador de
interfaz único global (GUID), si NetBT no pudo asignar de GUID a direcciones
MAC. Si no estaban disponibles ni la dirección MAC ni el GUID, la
cadena representa el nombre de un dispositivo de clúster.


CodeIntegrity:
===================================

Date: 2020-05-01 06:32:50.691
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Windows signing level requirements.

Date: 2020-05-01 06:32:50.614
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Windows signing level requirements.

Date: 2020-05-01 06:23:47.015
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-05-01 06:23:46.834
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-05-01 06:23:46.660
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-05-01 06:23:46.487
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-05-01 06:23:46.305
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-05-01 06:23:46.118
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

==================== Información de la memoria =========================== 

BIOS: AMI F.16 03/23/2020
Placa base: HP 8575
Procesador: Intel(R) Core(TM) i7-9750H CPU @ 2.60GHz
Porcentaje de memoria en uso: 43%
RAM física total: 16191.83 MB
RAM física disponible: 9132.36 MB
Virtual total: 23615.83 MB
Virtual disponible: 13756.62 MB

==================== Unidades ================================

Drive c: (Windows) (Fixed) (Total:118.49 GB) (Free:6.62 GB) NTFS
Drive d: (DATA) (Fixed) (Total:931.51 GB) (Free:599.09 GB) NTFS

\\?\Volume{1bd1c15a-c9e9-4924-9627-0b78503bbae5}\ (Windows RE tools) (Fixed) (Total:0.48 GB) (Free:0.06 GB) NTFS
\\?\Volume{10e372fe-f97e-6d78-890e-8f1aee9c54a4}\ () (Fixed) (Total:33.23 GB) (Free:0 GB) NTFS
\\?\Volume{97fb0c80-cbff-b10d-db75-e48ef1994d85}\ () (Fixed) (Total:19.03 GB) (Free:0 GB) NTFS
\\?\Volume{a7537661-921f-ed59-a758-f2ff8a6db369}\ () (Fixed) (Total:0 GB) (Free:0 GB) NTFS
\\?\Volume{a4cb5ab7-e70d-4feb-82e8-c06fe1815378}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: 551A1240)

Partition: GPT.

==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 8B3EAB57)

Partition: GPT.
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 2.
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 3.
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 4.

==================== Final de Addition.txt =======================
Resultados de la corrección de Farbar Recovery Scan Tool (x64) Versión: 30-04-2020
Ejecutado por carlo (01-05-2020 06:47:09) Run:1
Ejecutado desde C:\carlo\Escritorio
Perfiles cargados: carlo (Perfiles disponibles: carlo)
Modo de Inicio: Normal
==============================================

fixlist contenido:
*****************
Start
CloseProcesses:
CreateRestorePoint:
REITSUPER ESTATE LLC -> ) C:\Users\carlo\AppData\Roaming\GK5Frk2XdL0bfJDd6leMC\whrrZYvRa.exe
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.122\Installer\chrmstp.exe [2020-04-21] (Google LLC -> Google LLC)
Startup: C:\Users\carlo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\fOCvL1mkuq1ZHFh9.lnk [2020-04-20]
ShortcutTarget: fOCvL1mkuq1ZHFh9.lnk -> C:\Users\carlo\AppData\Roaming\GK5Frk2XdL0bfJDd6leMC\whrrZYvRa.exe (REITSUPER ESTATE LLC -> )
Task: {91E3B185-BBBD-47CE-B04E-7B8F50EE8896} - System32\Tasks\Overwolf Updater Task => D:\Archivos de programa\Overwolf\OverwolfUpdater.exe [2463064 2020-03-14] (Overwolf Ltd -> Overwolf LTD)
"C:\Windows\System32\Tasks\McAfee\McAfee Idle Detection Task" fue desbloqueado. <==== ATENCIÓN
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://micomenzar.toshiba.com
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
FF HKLM\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\McAfee\MSKHKLM => no encontrado
S3 Origin Client Service; "C:\Program Files (x86)\Origin\OriginClientService.exe" [X]
S2 Origin Web Helper Service; "C:\Program Files (x86)\Origin\OriginWebHelperService.exe" [X]
2020-04-22 23:02 - 2020-04-22 23:02 - 000478392 ____N (Kaspersky Lab ZAO) C:\windows\system32\Drivers\77822393.sys
2020-04-22 23:02 - 2020-04-22 23:02 - 000085600 ____N (Kaspersky Lab ZAO) C:\windows\system32\Drivers\93860453.sys
2020-04-22 23:02 - 2020-04-22 23:02 - 000000000 ____D C:\KVRT_Data
2020-04-22 21:42 - 2020-04-22 21:42 - 000000672 _____ C:\Users\carlo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2020-04-22 21:42 - 2020-04-22 21:42 - 000000000 ____D C:\Users\carlo\AppData\Local\ESET
2020-04-20 17:25 - 2020-04-20 17:33 - 000000000 ____D C:\ProgramData\AVAST Software
2020-04-20 17:25 - 2020-04-20 17:33 - 000000000 ____D C:\Program Files\AVAST Software
2020-04-20 12:33 - 2020-04-20 17:58 - 000000000 ____D C:\Users\carlo\AppData\Roaming\GK5Frk2XdL0bfJDd6leMC
2020-04-17 11:57 - 2020-04-17 11:58 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> Ningún archivo
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> Ningún archivo
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Ningún archivo
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> Ningún archivo
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> Ningún archivo
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> Ningún archivo
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Ningún archivo
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> Ningún archivo
AlternateDataStreams: C:\ProgramData\TEMP:DF29D946 [120]
AlternateDataStreams: C:\Users\carlo\Datos de programa:f2470d06f885efcb2972c69faf0745e1 [394]
AlternateDataStreams: C:\Users\carlo\Datos de programa:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]
AlternateDataStreams: C:\Users\carlo\AppData\Roaming:f2470d06f885efcb2972c69faf0745e1 [394]
AlternateDataStreams: C:\Users\carlo\AppData\Roaming:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]
FirewallRules: [{F97BD71E-CD1B-4358-9DDA-6A82471645F7}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Ningún archivo
FirewallRules: [{50C75A6C-4013-477F-844E-67929F0C8F48}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Ningún archivo
FirewallRules: [{95CB3C89-6DEE-4B6A-B078-C3C833414BE0}] => (Allow) C:\Users\carlo\AppData\Roaming\Zoom\bin\airhost.exe Ningún archivo
FirewallRules: [{2A4CA9FD-B36F-4D2E-AA9B-138584A6DB89}] => (Allow) %systemroot%\system32\alg.exe Ningún archivo
FirewallRules: [{DA619D1A-A0EB-4CC7-AFEB-D304DEE2A799}] => (Allow) %systemroot%\system32\alg.exe Ningún archivo
FirewallRules: [{748F3B82-E387-4849-B4D6-73BBD84F8CC7}] => (Allow) %systemroot%\system32\alg.exe Ningún archivo
FirewallRules: [{B5A86A48-303A-46B9-9EDD-154DC8539315}] => (Allow) %systemroot%\system32\alg.exe Ningún archivo
FirewallRules: [{EEAAFF47-14EF-453B-BEE4-8DD5A82AF230}] => (Allow) %systemroot%\system32\alg.exe Ningún archivo

CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
END
*****************

Procesos cerrados correctamente.
El punto de restauración fue creado correctamente.
REITSUPER ESTATE LLC -> ) C:\Users\carlo\AppData\Roaming\GK5Frk2XdL0bfJDd6leMC\whrrZYvRa.exe => Error: Ninguna corrección automática encontrada para esta entrada.
HKLM\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96} => eliminado correctamente
C:\Users\carlo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\fOCvL1mkuq1ZHFh9.lnk => movido correctamente
C:\Users\carlo\AppData\Roaming\GK5Frk2XdL0bfJDd6leMC\whrrZYvRa.exe => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{91E3B185-BBBD-47CE-B04E-7B8F50EE8896}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{91E3B185-BBBD-47CE-B04E-7B8F50EE8896}" => eliminado correctamente
C:\windows\System32\Tasks\Overwolf Updater Task => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Overwolf Updater Task" => eliminado correctamente
"C:\Windows\System32\Tasks\McAfee\McAfee Idle Detection Task" fue desbloqueado. <==== ATENCIÓN" => no encontrado
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => valor restaurado correctamente
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => valor restaurado correctamente
HKU\S-1-5-21-1669855820-2084828274-340432298-1001\Software\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => valor restaurado correctamente
"HKU\S-1-5-21-1669855820-2084828274-340432298-1001\Software\Microsoft\Internet Explorer\Main\\Secondary Start Pages" => eliminado correctamente
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => valor restaurado correctamente
"HKLM\Software\Mozilla\Thunderbird\Extensions\\[email protected]" => eliminado correctamente
HKLM\System\CurrentControlSet\Services\Origin Client Service => eliminado correctamente
Origin Client Service => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\Origin Web Helper Service => eliminado correctamente
Origin Web Helper Service => servicio eliminado correctamente
"C:\windows\system32\Drivers\77822393.sys" => no encontrado
"C:\windows\system32\Drivers\93860453.sys" => no encontrado
C:\KVRT_Data => movido correctamente
C:\Users\carlo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk => movido correctamente
C:\Users\carlo\AppData\Local\ESET => movido correctamente
C:\ProgramData\AVAST Software => movido correctamente
C:\Program Files\AVAST Software => movido correctamente
C:\Users\carlo\AppData\Roaming\GK5Frk2XdL0bfJDd6leMC => movido correctamente
C:\ProgramData\Kaspersky Lab Setup Files => movido correctamente
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => eliminado correctamente
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => eliminado correctamente
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => eliminado correctamente
"HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}" => eliminado correctamente
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => eliminado correctamente
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => eliminado correctamente
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files => eliminado correctamente
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => eliminado correctamente
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files => eliminado correctamente
C:\ProgramData\TEMP => ":DF29D946" ADS eliminado correctamente
C:\Users\carlo\Datos de programa => ":f2470d06f885efcb2972c69faf0745e1" ADS eliminado correctamente
C:\Users\carlo\Datos de programa => ":fbd50e2f7662a5c33287ddc6e65ab5a1" ADS eliminado correctamente
"C:\Users\carlo\AppData\Roaming" => ":f2470d06f885efcb2972c69faf0745e1" ADS no encontrado.
"C:\Users\carlo\AppData\Roaming" => ":fbd50e2f7662a5c33287ddc6e65ab5a1" ADS no encontrado.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F97BD71E-CD1B-4358-9DDA-6A82471645F7}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{50C75A6C-4013-477F-844E-67929F0C8F48}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{95CB3C89-6DEE-4B6A-B078-C3C833414BE0}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2A4CA9FD-B36F-4D2E-AA9B-138584A6DB89}" => no encontrado
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DA619D1A-A0EB-4CC7-AFEB-D304DEE2A799}" => no encontrado
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{748F3B82-E387-4849-B4D6-73BBD84F8CC7}" => no encontrado
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B5A86A48-303A-46B9-9EDD-154DC8539315}" => no encontrado
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EEAAFF47-14EF-453B-BEE4-8DD5A82AF230}" => no encontrado

========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

========= Final de CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows

No se puede realizar ninguna operaci¢n en Conexi¢n de  rea local* 1 mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de  rea local* 10 mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Wi-Fi mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de red Bluetooth mientras los medios
est‚n desconectados.

Adaptador de Ethernet Ethernet:

   Sufijo DNS espec¡fico para la conexi¢n. . : 
   Direcci¢n IPv6 . . . . . . . . . . : 2806:266:402:3bb::2
   Direcci¢n IPv6 . . . . . . . . . . : 2806:266:402:3bb:a04d:80b3:6de2:5815
   Direcci¢n IPv6 temporal. . . . . . : 2806:266:402:3bb:149:e5ee:e17e:e158
   Direcci¢n IPv6 temporal. . . . . . : 2806:266:402:3bb:283a:bdc5:1c7c:c56a
   Direcci¢n IPv6 temporal. . . . . . : 2806:266:402:3bb:a814:dbca:502f:cbb9
   V¡nculo: direcci¢n IPv6 local. . . : fe80::a04d:80b3:6de2:5815%10
   Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.0.14
   M scara de subred . . . . . . . . . . . . : 255.255.255.0
   Puerta de enlace predeterminada . . . . . : fe80::5e76:95ff:fe8a:e170%10
                                       192.168.0.1

Adaptador de LAN inal mbrica Conexi¢n de  rea local* 1:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de LAN inal mbrica Conexi¢n de  rea local* 10:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de LAN inal mbrica Wi-Fi:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de Ethernet Conexi¢n de red Bluetooth:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

========= Final de CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.

0 out of 0 jobs canceled.

========= Final de CMD: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= Final de CMD: =========


========= netsh advfirewall reset =========

Aceptar


========= Final de CMD: =========


========= netsh advfirewall set allprofiles state ON =========

Aceptar


========= Final de CMD: =========


========= netsh int ipv4 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= Final de CMD: =========


========= netsh int ipv6 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= Final de CMD: =========


========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
"HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
"HKU\S-1-5-21-1669855820-2084828274-340432298-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-21-1669855820-2084828274-340432298-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente


========= Final de RemoveProxy: =========

C:\Windows\System32\Drivers\etc\hosts => movido correctamente
Hosts restaurado correctamente.

=========== EmptyTemp: ==========

BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 39464506 B
Java, Flash, Steam htmlcache => 204427587 B
Windows/system/drivers => 12601131 B
Edge => 560603 B
Chrome => 380239508 B
Firefox => 24295435 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 328342 B
systemprofile32 => 328342 B
LocalService => 394002 B
NetworkService => 394002 B
carlo => 50219798 B

RecycleBin => 172333 B
EmptyTemp: => 690.4 MB datos temporales eliminados.

================================


El sistema necesita reiniciarse.

==== Final de Fixlog 06:48:27 ====

Hola @Alonso_Rangel

No era necesario que ejecutaras nuevamente FRST.

El Fixlist se ejecuto correctamente, seria bueno que comentaras como sigue el equipo en cuanto al problema inicial.

Salu2