Bloc de notas

Yo tambien tengo el mismo problema, he probado a pasarle el Malwarebytes y el Adwcleaner y sigue sin funcionar. Ya no sé que mas hacer

Hola

Separé tu tema, porque la ayuda es individual.

Pega los logs de Malwarebytes y Adwcleaner,si los tienes , para revisar

AdwCleaner[C00].txt (4,7 KB)

El de Malware no se como encontrarlo

Que versión tienes,la 3xx o la 4xx??

Tengo la version 4.0.4

En la pantalla inicial, pinchas en el recuadro de los analizador y luego informes.Al lado del del analisis, pulsas el simbolo de flecha abajo, le pones un nombre y lo guardas.Lo abres, copias y pegas en la respuesta

Ademas estos otros

• Desactiva Temporalmente tu antivirus y cualquier programa de seguridad.

• Descarga a Tu Escritorio >> Esto es muy importante<<.,Fabar Recovery Scan Tool, considerando la versión adecuada para tu equipo. (32 o 64 bits) ¿Cómo saber si mi Windows es de 32 o 64 bits?

• Doble clic para ejecutar Frst.exe. En la ventana del Disclaimer, presiona Yes.

• En la nueva ventana que se abre, presiona el botón Scan y espera a que concluya el análisis.

• Se abrirán dos (2) archivos (Logs), Frst.txt y Addition.txt, que estarán grabados en Tu escritorio.

En Tu próxima respuesta, copias y pegas los dos reportes Frst.txt y Addition.txt de FRST

Nota: Si el/los reportes solicitados no entraran en una sola respuesta porque superan la cantidad de caracteres permitidos, puedes utilizar dos o mas respuestas para pegarlos completamente.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 05-12-2019
Ran by sr-we (administrator) on DESKTOP-I9U2M64 (MSI MS-7A72) (06-12-2019 19:08:25)
Running from C:\Users\sr-we\Desktop
Loaded Profiles: sr-we (Available Profiles: sr-we)
Platform: Windows 10 Home Version 1809 17763.864 (X64) Language: Español (España, internacional)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] D:\Riot Games\Riot Client\RiotClientCrashHandler.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Discord Inc. -> Discord Inc.) C:\Users\sr-we\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\sr-we\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\sr-we\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\sr-we\AppData\Local\Discord\app-0.0.305\Discord.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.342\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.342\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.35.14003.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.35.14003.0_x64__8wekyb3d8bbwe\GameBarFT.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19101.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\GameBarPresenceWriter.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1910.4-0\MsMpEng.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Riot Games, Inc. -> ) D:\Riot Games\Riot Client\RiotClientServices.exe
(Riot Games, Inc. -> ) D:\RiotGames\LeagueClient.exe
(Riot Games, Inc. -> ) D:\RiotGames\LeagueClientUx.exe
(Riot Games, Inc. -> ) D:\RiotGames\LeagueClientUxRender.exe
(Riot Games, Inc. -> ) D:\RiotGames\LeagueClientUxRender.exe
(Spotify AB -> Spotify Ltd) C:\Users\sr-we\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\sr-we\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\sr-we\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\sr-we\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\sr-we\AppData\Roaming\Spotify\Spotify.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645648 2019-10-05] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3288016 2019-11-20] (Valve -> Valve Corporation)
HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\Run: [Spotify] => C:\Users\sr-we\AppData\Roaming\Spotify\Spotify.exe [22051232 2019-11-29] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\Run: [Discord] => C:\Users\sr-we\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\Run: [uTorrent] => C:\Users\sr-we\AppData\Roaming\uTorrent\uTorrent.exe [1823976 2019-10-13] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [731240 2018-10-19] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\Run: [utweb] => C:\Users\sr-we\AppData\Roaming\uTorrent Web\utweb.exe [5400280 2019-10-19] (Jenkins Win Client Build SPC -> BitTorrent Inc.) [File not signed]
HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\Run: [EpicGamesLauncher] => D:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [35997584 2019-11-14] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22488952 2019-03-11] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [912776 2019-09-24] (Nota Inc. -> Nota Inc.)
HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\Run: [b19e16e4] => C:\ProgramData\Intel\Wireless\087f371\efkiajk.exe [943784 2019-12-06] (AutoIt Consulting Ltd -> AutoIt Team)
HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\MountPoints2: {9ad56515-efc2-11e8-aabf-309c2344e1ea} - "E:\setup.exe" 
HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\MountPoints2: {d79b3db1-f7e9-11e8-aac1-309c2344e1ea} - "F:\setup.exe" 
HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\MountPoints2: {d79b3e4b-f7e9-11e8-aac1-309c2344e1ea} - "G:\setup.exe" 
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.108\Installer\chrmstp.exe [2019-11-21] (Google LLC -> Google LLC)
Lsa: [Authentication Packages] msv1_0 SshdPinAuthLsa
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2019-07-10]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (No File)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1CA54E2B-CB44-4986-AF13-463B3A3FBF82} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913720 2019-11-21] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1D87CDA6-3242-49DB-A3C1-C97112B14831} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [6785448 2019-09-24] (Nota Inc. -> Nota Inc.)
Task: {24E29CFB-1622-40FE-9A06-1BD43412AA12} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-03-11] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {2DC30C21-2570-4B43-88DE-4C52CDC40BA9} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133368 2019-11-21] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2E3F89DC-F436-4D4A-8A7F-4A11D183BD2E} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [6785448 2019-09-24] (Nota Inc. -> Nota Inc.)
Task: {3042E3C9-985B-46BD-9AAD-89990195CECD} - System32\Tasks\EOSv3 Scheduler onTime => D:\Descargas\esetonlinescanner_esn.exe [8162616 2019-12-06] (ESET, spol. s r.o. -> ESET spol. s r.o.)
Task: {30F4D8E4-CD18-4E76-AB18-3A6B9FB01BC9} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-12-06] (Adobe Inc. -> Adobe)
Task: {48243787-1059-4DAF-8F10-9886C8A81B75} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-10-28] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {63E07766-5F7D-4DC2-973C-E3E9AC8B2050} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16494464 2019-03-11] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {729DAD91-441B-47C4-BAC7-D66C12B4F5EC} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133368 2019-11-21] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7363789B-D82D-4FC3-9CEB-E7591AD69C83} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-10-28] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {865E266B-0B3D-449D-A7F1-7ABDC62E1B0B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-12] (Google Inc -> Google LLC)
Task: {8C61111D-7A7C-4824-B31E-B0A02D387217} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3301928 2019-11-21] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8E201DAF-7825-4961-B23C-0919CFBD3A49} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-12] (Google Inc -> Google LLC)
Task: {940A7023-386C-4E94-A6FF-A952F2AAE44B} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913720 2019-11-21] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9D99C313-42B7-41C2-A878-682C62DB04BA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-10-28] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A0900D1B-387E-45A6-B760-C84C4DD031CF} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133368 2019-11-21] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B21CC086-77F5-48E9-BEC1-3BCAC49025AD} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_293_pepper.exe [1453112 2019-12-06] (Adobe Inc. -> Adobe)
Task: {B2876023-FA99-4A99-A2E0-4D0C4A46B59C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-10-28] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B8E4803A-0B53-4612-A121-67A9A11C1B64} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-11-21] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DFAEAA24-F921-4BDD-8BD6-F44C912D75A0} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [654456 2019-11-21] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F5518D80-D4DF-41EC-ACB9-48D0E0AAA8EA} - System32\Tasks\EOSv3 Scheduler onLogOn => D:\Descargas\esetonlinescanner_esn.exe [8162616 2019-12-06] (ESET, spol. s r.o. -> ESET spol. s r.o.)
Task: {F5D469EF-42A6-45C7-B9C0-C489F725DB5F} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-11-21] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F72837CC-3C35-49AE-BE7A-84CD0E5C74FB} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133368 2019-11-21] (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 80.58.61.254 80.58.61.250
Tcpip\..\Interfaces\{134eceae-1198-40af-9604-3c2eaa2aaca5}: [DhcpNameServer] 80.58.61.254 80.58.61.250

Internet Explorer:
==================
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2953242240-3240904032-2787377254-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_231\bin\ssv.dll [2019-12-06] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_231\bin\jp2ssv.dll [2019-12-06] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\ssv.dll [2019-12-06] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\jp2ssv.dll [2019-12-06] (Oracle America, Inc. -> Oracle Corporation)

FireFox:
========
FF DefaultProfile: mpt68mqj.default
FF ProfilePath: C:\Users\sr-we\AppData\Roaming\Mozilla\Firefox\Profiles\mpt68mqj.default [2019-12-06]
FF Homepage: Mozilla\Firefox\Profiles\mpt68mqj.default -> hxxps://www.malwarebytes.org/restorebrowser/
FF HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\Firefox\Extensions: [[email protected]] - C:\Users\sr-we\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => not found
FF Plugin: @java.com/DTPlugin,version=11.231.2 -> C:\Program Files\Java\jre1.8.0_231\bin\dtplugin\npDeployJava1.dll [2019-12-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.231.2 -> C:\Program Files\Java\jre1.8.0_231\bin\plugin2\npjp2.dll [2019-12-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.231.2 -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\dtplugin\npDeployJava1.dll [2019-12-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.231.2 -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\plugin2\npjp2.dll [2019-12-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-05] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-05] (Google Inc -> Google LLC)

Chrome: 
=======
CHR HomePage: Default -> hxxps://www.google.es/
CHR StartupUrls: Default -> "hxxps://www.google.es/"
CHR Notifications: Default -> hxxps://aternos.org; hxxps://eu1.badoo.com; hxxps://p4.maranhesduve.club; hxxps://tinder.com; hxxps://twitter.com; hxxps://web.whatsapp.com; hxxps://www.instagram.com
CHR Profile: C:\Users\sr-we\AppData\Local\Google\Chrome\User Data\Default [2019-12-06]
CHR Extension: (Presentaciones) - C:\Users\sr-we\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-11-22]
CHR Extension: (Safe Torrent Scanner) - C:\Users\sr-we\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2019-10-13]
CHR Extension: (BetterTTV) - C:\Users\sr-we\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2019-12-04]
CHR Extension: (Documentos) - C:\Users\sr-we\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-11-22]
CHR Extension: (Google Drive) - C:\Users\sr-we\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-11-22]
CHR Extension: (YouTube) - C:\Users\sr-we\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-11-22]
CHR Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\sr-we\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-10-23]
CHR Extension: (Hojas de cálculo) - C:\Users\sr-we\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-11-22]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\sr-we\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-11-22]
CHR Extension: (AdBlock: el mejor bloqueador de anuncios) - C:\Users\sr-we\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-12-06]
CHR Extension: (Ace Script) - C:\Users\sr-we\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2019-10-10]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\sr-we\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Global Twitch Emotes) - C:\Users\sr-we\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgniedifoejifjkndekolimjeclnokkb [2019-08-22]
CHR Extension: (Gmail) - C:\Users\sr-we\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-30]
CHR Extension: (Chrome Media Router) - C:\Users\sr-we\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-10-29]
CHR Profile: C:\Users\sr-we\AppData\Local\Google\Chrome\User Data\System Profile [2019-12-06]
CHR HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8404720 2019-11-15] (BattlEye Innovations e.K. -> )
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3729512 2018-10-19] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6960640 2019-12-06] (Malwarebytes Inc -> Malwarebytes)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-11-21] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-11-21] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2425136 2019-11-12] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3303736 2019-11-12] (Electronic Arts, Inc. -> Electronic Arts)
S3 sshd; C:\Windows\System32\OpenSSH\sshd.exe [974848 2019-05-09] (Microsoft Windows -> )
S3 SshdBroker; C:\Windows\System32\SshdBroker.dll [288768 2019-09-11] (Microsoft Windows -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11665136 2019-01-16] (TeamViewer GmbH -> TeamViewer GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\NisSrv.exe [3201616 2019-10-28] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MsMpEng.exe [103168 2019-10-28] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WsDrvInst; C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe [120016 2018-12-29] (Wondershare Technology Co.,Ltd -> Wondershare)
S2 AnyDesk; "C:\Program Files (x86)\AnyDesk\AnyDesk.exe" --service [X]
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2018-11-24] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2018-11-24] (Disc Soft Ltd -> Disc Soft Ltd)
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2018-12-14] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [20936 2019-12-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 Neo_VPN; C:\Windows\System32\drivers\Neo6_x64_VPN.sys [37824 2019-07-06] (SoftEther Corporation -> SoftEther Corporation)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_eb2e336f678f7f83\nvlddmkm.sys [22744696 2019-12-03] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-11-21] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [69840 2019-03-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [75600 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
S3 qcusbnet; C:\Windows\System32\drivers\qcusbnet.sys [428600 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
S3 qcusbser; C:\Windows\system32\DRIVERS\qcusbser.sys [254520 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
R3 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [237584 2019-07-12] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [248464 2019-07-12] (Oracle Corporation -> Oracle Corporation)
R0 VMSNPXY; C:\Windows\System32\drivers\VmsProxyHNic.sys [37920 2019-04-11] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [46472 2019-10-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [351968 2019-10-28] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [53984 2019-10-28] (Microsoft Windows -> Microsoft Corporation)
S3 WinDivert1.1; C:\ProgramData\KMSAuto\bin\driver\x64WDV\WinDivert.sys [35376 2013-12-03] (Nemea Mjukvaruutveckling AB -> Basil Projects)
S3 xhunter1; C:\Windows\xhunter1.sys [74552 2019-07-15] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 BlueStacksDrv; \??\C:\Program Files\BlueStacks\BstkDrv.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-12-06 19:08 - 2019-12-06 19:09 - 000029474 _____ C:\Users\sr-we\Desktop\FRST.txt
2019-12-06 19:08 - 2019-12-06 19:07 - 002263552 _____ (Farbar) C:\Users\sr-we\Desktop\FRST64.exe
2019-12-06 19:07 - 2019-12-06 19:08 - 000000000 ____D C:\FRST
2019-12-06 18:49 - 2019-12-06 18:49 - 000001547 _____ C:\Users\sr-we\Desktop\Malware.txt
2019-12-06 18:29 - 2019-12-06 18:30 - 000000000 ____D C:\Windows\LastGood.Tmp
2019-12-06 18:29 - 2019-12-06 18:29 - 000003788 _____ C:\Windows\system32\Tasks\EOSv3 Scheduler onLogOn
2019-12-06 18:29 - 2019-12-06 18:29 - 000003346 _____ C:\Windows\system32\Tasks\EOSv3 Scheduler onTime
2019-12-06 18:28 - 2019-12-06 18:28 - 000001414 _____ C:\Users\sr-we\Desktop\Eset registro.txt
2019-12-06 18:28 - 2019-12-03 21:36 - 001073872 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2019-12-06 18:28 - 2019-12-03 21:36 - 001073872 _____ C:\Windows\system32\vulkan-1.dll
2019-12-06 18:28 - 2019-12-03 21:36 - 000931536 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2019-12-06 18:28 - 2019-12-03 21:36 - 000931536 _____ C:\Windows\SysWOW64\vulkan-1.dll
2019-12-06 18:28 - 2019-12-03 21:36 - 000848592 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2019-12-06 18:28 - 2019-12-03 21:36 - 000848592 _____ C:\Windows\system32\vulkaninfo.exe
2019-12-06 18:28 - 2019-12-03 21:36 - 000706256 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2019-12-06 18:28 - 2019-12-03 21:36 - 000706256 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2019-12-06 18:28 - 2019-12-03 21:36 - 000450976 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2019-12-06 18:28 - 2019-12-03 21:36 - 000352512 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2019-12-06 18:28 - 2019-12-03 21:35 - 011842976 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2019-12-06 18:28 - 2019-12-03 21:35 - 010167216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2019-12-06 18:28 - 2019-12-03 21:35 - 000825928 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcumd.dll
2019-12-06 18:28 - 2019-12-03 21:35 - 000676824 _____ C:\Windows\system32\nvofapi64.dll
2019-12-06 18:28 - 2019-12-03 21:35 - 000544728 _____ C:\Windows\SysWOW64\nvofapi.dll
2019-12-06 18:28 - 2019-12-03 21:34 - 040511064 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2019-12-06 18:28 - 2019-12-03 21:34 - 035380104 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2019-12-06 18:28 - 2019-12-03 21:34 - 017458824 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2019-12-06 18:28 - 2019-12-03 21:34 - 015027776 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2019-12-06 18:28 - 2019-12-03 21:34 - 005380744 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2019-12-06 18:28 - 2019-12-03 21:34 - 004716176 _____ (NVIDIA Corporation)

C:\Windows\SysWOW64\nvcuvid.dll
2019-12-06 18:28 - 2019-12-03 21:34 - 002074736 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2019-12-06 18:28 - 2019-12-03 21:34 - 001729520 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6444141.dll
2019-12-06 18:28 - 2019-12-03 21:34 - 001567688 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2019-12-06 18:28 - 2019-12-03 21:34 - 001491544 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6444141.dll
2019-12-06 18:28 - 2019-12-03 21:34 - 001482408 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2019-12-06 18:28 - 2019-12-03 21:34 - 001370280 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2019-12-06 18:28 - 2019-12-03 21:34 - 001144944 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2019-12-06 18:28 - 2019-12-03 21:34 - 001064408 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2019-12-06 18:28 - 2019-12-03 21:34 - 000813656 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2019-12-06 18:28 - 2019-12-03 21:34 - 000685800 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2019-12-06 18:28 - 2019-12-03 21:34 - 000556680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2019-12-06 18:28 - 2019-12-03 21:33 - 004205784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2019-12-06 18:28 - 2019-11-21 01:56 - 000047272 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2019-12-06 18:24 - 2019-12-06 18:24 - 000004804 _____ C:\Users\sr-we\Desktop\AdwCleaner[C00].txt
2019-12-06 16:47 - 2019-12-06 19:06 - 000000595 _____ C:\Users\sr-we\Desktop\ESET Online Scanner.lnk
2019-12-06 16:47 - 2019-12-06 16:47 - 000000664 _____ C:\Users\sr-we\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2019-12-06 16:47 - 2019-12-06 16:47 - 000000000 ____D C:\Users\sr-we\AppData\Local\ESET
2019-12-06 16:31 - 2019-12-06 16:31 - 000000000 ___HD C:\_acestream_cache_
2019-12-06 16:27 - 2019-12-06 16:28 - 000000000 ____D C:\AdwCleaner
2019-12-06 16:11 - 2019-12-06 16:11 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2019-12-06 16:11 - 2019-12-06 16:11 - 000020936 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2019-12-06 16:11 - 2019-12-06 16:11 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-12-06 16:11 - 2019-12-06 16:11 - 000000000 ____D C:\Users\sr-we\AppData\Local\mbamtray
2019-12-06 16:11 - 2019-12-06 16:11 - 000000000 ____D C:\Users\sr-we\AppData\Local\mbam
2019-12-06 16:11 - 2019-12-06 16:11 - 000000000 ____D C:\Users\sr-we\AppData\Local\cache
2019-12-06 16:11 - 2019-12-06 16:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-12-06 16:11 - 2019-12-06 16:11 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-12-06 16:11 - 2019-12-06 16:11 - 000000000 ____D C:\Program Files\Malwarebytes
2019-12-06 15:35 - 2019-12-06 15:35 - 000114232 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2019-12-06 15:35 - 2019-12-06 15:35 - 000000000 ____D C:\Program Files (x86)\Java
2019-12-06 15:35 - 2019-12-06 15:32 - 000129080 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-64.dll
2019-11-29 19:56 - 2019-11-29 19:56 - 000000543 _____ C:\Users\Public\Desktop\Overwatch.lnk
2019-11-29 19:56 - 2019-11-29 19:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Overwatch
2019-11-27 23:43 - 2019-11-27 23:43 - 000555115 _____ C:\Users\sr-we\Desktop\viaje_madrid_20dic.pdf
2019-11-24 12:22 - 2019-11-24 12:21 - 000001081 _____ C:\Users\sr-we\Desktop\Vendetta - Acceso directo.lnk
2019-11-23 19:14 - 2019-11-23 19:14 - 000019280 _____ C:\Users\sr-we\Desktop\hu7HTUH7_400x400.jpeg
2019-11-15 19:53 - 2019-11-15 19:53 - 000000000 ____D C:\Users\sr-we\AppData\Local\BattlEye
2019-11-15 19:49 - 2019-11-15 19:49 - 000000000 ____D C:\ProgramData\Ubisoft
2019-11-14 19:18 - 2019-11-14 19:18 - 000000000 ____D C:\Users\sr-we\Documents\4A Games
2019-11-14 19:16 - 2019-11-14 19:16 - 000000000 ____D C:\Users\sr-we\AppData\Local\4A Games
2019-11-13 20:53 - 2019-11-13 20:53 - 000000222 _____ C:\Users\sr-we\Desktop\Rocket League.url
2019-11-13 20:52 - 2019-11-13 20:52 - 000000219 _____ C:\Users\sr-we\Desktop\Portal 2.url
2019-11-13 20:51 - 2019-11-13 20:51 - 000000241 _____ C:\Users\sr-we\Desktop\Metro 2033 Redux.url
2019-11-13 17:32 - 2018-12-11 15:17 - 000000000 ____D C:\Users\sr-we\Desktop\Europa.Universalis.IV.Golden.Century
2019-11-13 17:29 - 2019-11-13 17:29 - 000000829 _____ C:\Users\sr-we\Desktop\Europa Universalis IV Golden Century.lnk
2019-11-13 17:29 - 2019-11-13 17:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Europa Universalis IV Golden Century
2019-11-13 16:45 - 2019-11-13 16:45 - 023455232 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 022137120 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 019014144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 012960256 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 012258816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 011724288 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 009941504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 009667896 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 007872000 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 007700696 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 007656072 _____ (Microsoft Corporation) C:\Windows\system32\OneCoreUAPCommonProxyStub.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 007645392 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 006934016 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 006547896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 006318328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 006065152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 005770240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 005608336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 005575168 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 005573232 _____ (Microsoft Corporation) C:\Windows\system32\StartTileData.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 005436696 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 004873216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 004866560 _____ (Microsoft Corporation) C:\Windows\system32\Windows.AI.MachineLearning.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 004661760 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 004413936 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 004303872 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 004049920 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 003906560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 003872336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 003703296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 003656792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneCoreUAPCommonProxyStub.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 003637760 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2019-11-13 16:45 - 2019-11-13 16:45 - 003576832 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 003550384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 003496448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.AI.MachineLearning.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 003387392 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 003363640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2019-11-13 16:45 - 2019-11-13 16:45 - 003333632 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 003082752 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 002918200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2019-11-13 16:45 - 2019-11-13 16:45 - 002871824 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 002848768 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 002765312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 002707968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2019-11-13 16:45 - 2019-11-13 16:45 - 002699976 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 002698752 _____ (Microsoft Corporation) C:\Windows\system32\WebRuntimeManager.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 002645504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 002628112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2019-11-13 16:45 - 2019-11-13 16:45 - 002421248 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2019-11-13 16:45 - 2019-11-13 16:45 - 002393600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AcGenral.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 002348544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 002192384 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 002109960 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 002072176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 002050560 _____ (Microsoft Corporation) C:\Windows\system32\Windows.CloudStore.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 001994976 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 001966096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refs.sys
2019-11-13 16:45 - 2019-11-13 16:45 - 001933408 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 001929728 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 001918792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 001904128 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 001751432 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 001729024 _____ (Microsoft Corporation) C:\Windows\system32\CoreShell.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 001726480 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 001708544 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 001702600 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-11-13 16:45 - 2019-11-13 16:45 - 001677808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 001674480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 001668784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 001668752 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 001666440 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 001644544 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 001608192 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 001538560 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 001486472 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 001473296 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 001465472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 001388032 _____ (Microsoft Corporation) C:\Windows\system32\qmgr.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 001388032 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvruserservice.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 001346216 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2019-11-13 16:45 - 2019-11-13 16:45 - 001331536 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 001319936 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 001312256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 001294792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 001291264 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 001267240 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2019-11-13 16:45 - 2019-11-13 16:45 - 001262592 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 001200920 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 001183504 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 001180248 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 001107768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\lxcore.sys
2019-11-13 16:45 - 2019-11-13 16:45 - 001098136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 001054712 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 001054224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ClipSp.sys
2019-11-13 16:45 - 2019-11-13 16:45 - 001050112 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 001024712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 001022464 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000981504 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000948224 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000927232 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000888560 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000877568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 000872448 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000869888 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000862008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2019-11-13 16:45 - 2019-11-13 16:45 - 000856424 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000842752 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000834048 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000811536 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000808272 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 000807424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdiWiFi.sys
2019-11-13 16:45 - 2019-11-13 16:45 - 000801792 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000782968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000775768 _____ (Microsoft Corporation) C:\Windows\system32\pkeyhelper.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000774144 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 000773208 _____ (Microsoft Corporation) C:\Windows\system32\taskschd.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000764928 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000750592 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000747536 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000741688 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_StorageSense.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000729088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000703488 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\ActivationManager.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000680184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000676352 _____ (Microsoft Corporation) C:\Windows\system32\sud.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000664576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000661264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 000652088 _____ (Microsoft Corporation) C:\Windows\system32\securekernel.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 000642560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sud.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000638480 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000613376 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000604344 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 000596992 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000595968 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000591160 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000590336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActivationManager.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000588816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2019-11-13 16:45 - 2019-11-13 16:45 - 000575488 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 000574464 _____ (Microsoft Corporation) C:\Windows\system32\wpnprv.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000553784 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000553472 _____ (Microsoft Corporation) C:\Windows\system32\dmenrollengine.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000551936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2019-11-13 16:45 - 2019-11-13 16:45 - 000548864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000547328 _____ (Microsoft Corporation) C:\Windows\system32\VAN.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000542320 _____ (Microsoft Corporation) C:\Windows\system32\policymanager.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000536320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskschd.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000535080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2019-11-13 16:45 - 2019-11-13 16:45 - 000533504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000520704 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Notifications.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000514600 _____ (Microsoft Corporation) C:\Windows\system32\dcntel.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000513544 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000509968 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 000505640 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000495616 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000481280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000474936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2019-11-13 16:45 - 2019-11-13 16:45 - 000473832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\policymanager.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000465416 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000462352 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000462336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmenrollengine.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000455168 _____ (Microsoft Corporation) C:\Windows\system32\upnphost.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000450632 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000445752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 000435512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys
2019-11-13 16:45 - 2019-11-13 16:45 - 000430592 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 000428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000427832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2019-11-13 16:45 - 2019-11-13 16:45 - 000420864 _____ (Microsoft Corporation) C:\Windows\system32\SettingsEnvironment.Desktop.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000415760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aepic.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000415744 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 000408064 _____ (Microsoft Corporation) C:\Windows\system32\rascustom.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000394240 _____ (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000389408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000385848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000383288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys
2019-11-13 16:45 - 2019-11-13 16:45 - 000367104 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000360960 _____ (Microsoft Corporation) C:\Windows\system32\DeviceEnroller.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 000350208 _____ (Microsoft Corporation) C:\Windows\system32\AcGenral.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000349184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 000331264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnphost.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000324624 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000321024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wldap32.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000315904 _____ (Microsoft Corporation) C:\Windows\system32\ComposableShellProxyStub.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000303104 _____ (Microsoft Corporation) C:\Windows\system32\dmenterprisediagnostics.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000292352 _____ (Microsoft Corporation) C:\Windows\system32\CapabilityAccessManager.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000284672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000281088 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.AppDefaults.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000273408 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000263360 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000262152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-11-13 16:45 - 2019-11-13 16:45 - 000256000 _____ (Microsoft Corporation) C:\Windows\system32\wpnservice.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000249856 _____ (Gracenote, Inc.) C:\Windows\SysWOW64\gnsdk_fp.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000240640 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 000226816 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_CapabilityAccess.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000217088 _____ (Microsoft Corporation) C:\Windows\system32\DWWIN.EXE
2019-11-13 16:45 - 2019-11-13 16:45 - 000214528 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000213304 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 000201528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2019-11-13 16:45 - 2019-11-13 16:45 - 000198144 _____ (Microsoft Corporation) C:\Windows\system32\policymanagerprecheck.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000193336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 000182784 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000180736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWWIN.EXE
2019-11-13 16:45 - 2019-11-13 16:45 - 000178176 _____ (Microsoft Corporation) C:\Windows\system32\prntvpt.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000177664 _____ (Microsoft Corporation) C:\Windows\system32\spacebridge.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000166400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spacebridge.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000164368 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 000161792 _____ (Microsoft Corporation) C:\Windows\system32\dssvc.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000160272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pacer.sys
2019-11-13 16:45 - 2019-11-13 16:45 - 000154624 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_AppExecutionAlias.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000152896 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ComposableShellProxyStub.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_BackgroundApps.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000144384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000141736 _____ (Microsoft Corporation) C:\Windows\system32\wldp.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000139776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prntvpt.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000138112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\userenv.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000132608 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 000124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tunnel.sys
2019-11-13 16:45 - 2019-11-13 16:45 - 000122368 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000120352 _____ (Microsoft Corporation) C:\Windows\system32\OpenWith.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 000118480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wldp.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000112168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2019-11-13 16:45 - 2019-11-13 16:45 - 000111104 _____ (Microsoft Corporation) C:\Windows\system32\AxInstSv.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000109568 _____ (Microsoft Corporation) C:\Windows\system32\CapabilityAccessManagerClient.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000105832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OpenWith.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 000101888 _____ (Microsoft Corporation) C:\Windows\system32\CoreShellExtFramework.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\wsqmcons.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 000087040 _____ (Microsoft Corporation) C:\Windows\system32\ApiSetHost.AppExecutionAlias.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000086840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2019-11-13 16:45 - 2019-11-13 16:45 - 000086744 _____ (Microsoft Corporation) C:\Windows\system32\taskhostw.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 000080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dtdump.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 000079360 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000071696 _____ (Microsoft Corporation) C:\Windows\system32\win32appinventorycsp.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CapabilityAccessManagerClient.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\udhisapi.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ApiSetHost.AppExecutionAlias.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\AssignedAccessRuntime.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\udhisapi.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000056320 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\dwm.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 000047616 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AssignedAccessRuntime.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000046080 _____ (Microsoft Corporation) C:\Windows\system32\compact.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\WiredNetworkCSP.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\compact.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 000038912 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000036368 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCensus.exe
2019-11-13 16:45 - 2019-11-13 16:45 - 000023768 _____ (Microsoft Corporation) C:\Windows\system32\nsi.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000020144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nsi.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000015912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\lxss.sys
2019-11-13 16:45 - 2019-11-13 16:45 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2019-11-13 16:45 - 2019-11-13 16:45 - 000000315 _____ C:\Windows\system32\DrtmAuth8.bin
2019-11-13 16:45 - 2019-11-13 16:45 - 000000315 _____ C:\Windows\system32\DrtmAuth7.bin
2019-11-13 16:45 - 2019-11-13 16:45 - 000000315 _____ C:\Windows\system32\DrtmAuth6.bin
2019-11-13 16:45 - 2019-11-13 16:45 - 000000315 _____ C:\Windows\system32\DrtmAuth5.bin
2019-11-13 16:45 - 2019-11-13 16:45 - 000000315 _____ C:\Windows\system32\DrtmAuth4.bin
2019-11-13 16:45 - 2019-11-13 16:45 - 000000315 _____ C:\Windows\system32\DrtmAuth3.bin
2019-11-13 16:45 - 2019-11-13 16:45 - 000000315 _____ C:\Windows\system32\DrtmAuth2.bin
2019-11-13 16:45 - 2019-11-13 16:45 - 000000315 _____ C:\Windows\system32\DrtmAuth1.bin
2019-11-13 16:44 - 2019-11-13 16:44 - 002030592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmswitch.sys
2019-11-13 16:44 - 2019-11-13 16:44 - 001258512 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2019-11-13 16:44 - 2019-11-13 16:44 - 001049608 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2019-11-13 16:44 - 2019-11-13 16:44 - 000811008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wnv.sys
2019-11-13 16:44 - 2019-11-13 16:44 - 000667664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2019-11-13 16:44 - 2019-11-13 16:44 - 000520208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Vid.sys
2019-11-13 16:44 - 2019-11-13 16:44 - 000198968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spacedump.sys
2019-11-13 16:44 - 2019-11-13 16:44 - 000110080 _____ (Microsoft Corporation) C:\Windows\system32\WinHvPlatform.dll
2019-11-13 16:44 - 2019-11-13 16:44 - 000090632 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.dll
2019-11-13 16:44 - 2019-11-13 16:44 - 000087080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winhvr.sys
2019-11-13 16:44 - 2019-11-13 16:44 - 000080400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvservice.sys
2019-11-13 16:44 - 2019-11-13 16:44 - 000061480 _____ (Microsoft Corporation) C:\Windows\system32\hvhostsvc.dll

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-12-06 19:04 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-12-06 18:52 - 2018-11-23 15:08 - 000000000 ____D C:\Users\sr-we\AppData\Local\Spotify
2019-12-06 18:52 - 2018-11-23 15:07 - 000000000 ____D C:\Users\sr-we\AppData\Roaming\Spotify
2019-12-06 18:42 - 2018-11-22 20:05 - 001773366 _____ C:\Windows\system32\PerfStringBackup.INI
2019-12-06 18:42 - 2018-09-15 17:36 - 000788560 _____ C:\Windows\system32\perfh00A.dat
2019-12-06 18:42 - 2018-09-15 17:36 - 000155850 _____ C:\Windows\system32\perfc00A.dat
2019-12-06 18:42 - 2018-09-15 08:31 - 000000000 ____D C:\Windows\INF
2019-12-06 18:40 - 2018-11-22 20:03 - 000000000 ____D C:\Users\sr-we
2019-12-06 18:39 - 2019-01-07 12:46 - 000000000 ____D C:\Program Files\KMSpico
2019-12-06 18:38 - 2019-05-21 18:50 - 000000000 ____D C:\Users\sr-we\AppData\Roaming\Origin
2019-12-06 18:38 - 2019-02-07 22:39 - 000000000 ____D C:\ProgramData\Origin
2019-12-06 18:37 - 2019-05-21 19:58 - 000000000 ____D C:\Program Files (x86)\Origin Games
2019-12-06 18:36 - 2019-03-14 21:41 - 000000000 ____D C:\Program Files (x86)\Wondershare
2019-12-06 18:36 - 2018-11-22 20:04 - 000000000 ____D C:\ProgramData\NVIDIA
2019-12-06 18:35 - 2019-08-06 16:16 - 000000000 ____D C:\Users\sr-we\AppData\Roaming\Blitz
2019-12-06 18:35 - 2019-01-19 11:31 - 000000000 ____D C:\Users\sr-we\AppData\Roaming\picpick
2019-12-06 18:34 - 2018-11-22 20:50 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2019-12-06 18:34 - 2018-11-22 20:04 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2019-12-06 18:34 - 2018-11-22 19:58 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-12-06 18:33 - 2018-09-15 07:09 - 000786432 _____ C:\Windows\system32\config\BBI
2019-12-06 18:32 - 2018-11-23 15:47 - 000000000 ____D C:\Users\sr-we\AppData\Roaming\discord
2019-12-06 18:31 - 2018-11-22 20:27 - 000001447 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2019-12-06 18:31 - 2018-11-22 20:04 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2019-12-06 18:30 - 2019-06-23 11:28 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-12-06 18:30 - 2019-06-23 11:28 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-12-06 18:30 - 2019-06-23 11:28 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-12-06 18:30 - 2019-06-23 11:28 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-12-06 18:30 - 2018-11-22 20:27 - 000000000 ____D C:\Users\sr-we\AppData\Local\NVIDIA
2019-12-06 18:30 - 2018-11-22 20:26 - 000004308 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-12-06 18:30 - 2018-11-22 20:26 - 000004106 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-12-06 18:30 - 2018-11-22 20:26 - 000003976 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-12-06 18:30 - 2018-11-22 20:26 - 000003940 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-12-06 18:30 - 2018-11-22 20:26 - 000003894 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-12-06 18:30 - 2018-11-22 20:26 - 000003654 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-12-06 18:30 - 2018-11-22 20:04 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2019-12-06 17:33 - 2018-11-22 19:58 - 000000000 ____D C:\Windows\system32\SleepStudy
2019-12-06 16:31 - 2019-10-10 19:22 - 000000000 ____D C:\Users\sr-we\AppData\Roaming\.ACEStream
2019-12-06 16:22 - 2018-11-22 20:27 - 000000000 ____D C:\Program Files (x86)\Steam
2019-12-06 16:21 - 2018-11-24 21:48 - 000000000 ____D C:\Users\sr-we\AppData\Local\CrashDumps
2019-12-06 16:16 - 2019-01-10 18:22 - 000000000 ____D C:\Program Files\Java
2019-12-06 16:16 - 2018-11-22 20:57 - 000000000 ____D C:\ProgramData\KMSAuto
2019-12-06 16:11 - 2018-09-15 08:33 - 000000000 ___HD C:\Windows\ELAMBKUP
2019-12-06 15:37 - 2018-11-24 10:09 - 000000000 ____D C:\Users\sr-we\AppData\Local\Adobe
2019-12-06 15:37 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2019-12-06 15:37 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\system32\Macromed
2019-12-06 15:35 - 2019-01-10 18:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-12-06 15:32 - 2019-01-10 18:23 - 000129080 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2019-12-06 15:29 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-12-06 15:29 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\AppReadiness
2019-12-06 15:27 - 2018-12-02 16:30 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-12-06 15:26 - 2018-11-23 15:03 - 000000000 ____D C:\Users\sr-we\AppData\Roaming\WhatsApp
2019-12-05 16:53 - 2018-11-22 20:27 - 000000000 ____D C:\Users\sr-we\AppData\Local\NVIDIA Corporation
2019-12-04 22:06 - 2019-10-11 18:13 - 000000000 ____D C:\Users\sr-we\AppData\Local\log
2019-12-04 13:45 - 2019-08-06 16:16 - 000002225 _____ C:\Users\sr-we\Desktop\Blitz.lnk
2019-12-04 13:45 - 2019-08-06 16:16 - 000000000 ____D C:\Users\sr-we\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blitz Inc
2019-12-04 13:45 - 2019-08-06 16:16 - 000000000 ____D C:\Users\sr-we\AppData\Local\Blitz
2019-12-03 21:34 - 2019-04-23 20:24 - 000659088 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2019-12-03 21:33 - 2017-11-09 04:25 - 004937792 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2019-11-30 10:21 - 2018-11-22 20:16 - 000000000 ____D C:\Users\sr-we\AppData\Local\ElevatedDiagnostics
2019-11-29 21:44 - 2019-01-02 10:32 - 000000000 ____D C:\Users\sr-we\AppData\Local\Battle.net
2019-11-29 21:44 - 2019-01-02 10:31 - 000000000 ____D C:\Program Files (x86)\Battle.net
2019-11-28 10:25 - 2018-11-23 10:32 - 000000000 ____D C:\Users\sr-we\AppData\Local\D3DSCache
2019-11-25 23:23 - 2019-10-25 18:38 - 000000000 ____D C:\Users\sr-we\AppData\Local\WhatsApp
2019-11-25 12:51 - 2019-09-07 20:49 - 000002401 _____ C:\Users\sr-we\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-11-25 12:51 - 2018-11-22 20:06 - 000003380 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2953242240-3240904032-2787377254-1001
2019-11-25 12:51 - 2018-11-22 20:06 - 000000000 ___RD C:\Users\sr-we\OneDrive
2019-11-23 16:19 - 2019-10-13 18:25 - 000000000 ____D C:\Users\sr-we\AppData\Roaming\uTorrent Web
2019-11-23 14:41 - 2019-10-13 18:25 - 000001879 _____ C:\Users\sr-we\Desktop\uTorrent Web.lnk
2019-11-23 14:41 - 2019-03-17 14:06 - 000000000 ____D C:\Users\sr-we\AppData\Local\BitTorrentHelper
2019-11-23 14:41 - 2018-11-24 20:11 - 000001865 _____ C:\Users\sr-we\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent Web.lnk
2019-11-21 23:46 - 2019-08-12 11:25 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-11-21 23:46 - 2019-08-12 11:25 - 000002258 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-11-21 01:56 - 2018-11-22 20:26 - 002845208 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2019-11-21 01:56 - 2018-11-22 20:26 - 002209136 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2019-11-21 01:56 - 2018-11-22 20:26 - 001323112 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll
2019-11-21 01:56 - 2018-11-22 20:26 - 000179000 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2019-11-21 01:56 - 2018-11-22 20:26 - 000154424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2019-11-21 01:56 - 2018-11-22 20:04 - 000001951 _____ C:\Windows\NvContainerRecovery.bat
2019-11-21 01:56 - 2017-11-09 04:38 - 001683032 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2019-11-21 01:56 - 2017-11-09 04:38 - 000228792 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2019-11-21 01:56 - 2017-11-09 03:57 - 000056258 _____ C:\Windows\system32\nvinfo.pb
2019-11-21 01:21 - 2018-11-22 21:48 - 000000000 ____D C:\Users\sr-we\Documents\League of Legends
2019-11-20 23:44 - 2018-11-22 20:04 - 005549368 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2019-11-20 23:44 - 2018-11-22 20:04 - 002652168 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2019-11-20 23:44 - 2018-11-22 20:04 - 001767448 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2019-11-20 23:44 - 2018-11-22 20:04 - 000668200 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2019-11-20 23:44 - 2018-11-22 20:04 - 000454968 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2019-11-20 23:44 - 2018-11-22 20:04 - 000130584 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2019-11-20 23:44 - 2018-11-22 20:04 - 000082784 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2019-11-20 18:54 - 2018-11-22 20:04 - 008785212 _____ C:\Windows\system32\nvcoproc.bin
2019-11-16 20:05 - 2019-08-29 20:05 - 000000000 ____D C:\Users\sr-we\AppData\Local\Ubisoft Game Launcher
2019-11-15 19:53 - 2019-06-01 18:15 - 000000000 ____D C:\Users\sr-we\Documents\My Games
2019-11-15 19:53 - 2018-11-22 20:26 - 000000000 ____D C:\ProgramData\Package Cache
2019-11-15 17:28 - 2019-08-06 16:16 - 000000000 ____D C:\Users\sr-we\AppData\Roaming\Blitz-helpers
2019-11-14 20:45 - 2018-12-02 16:30 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-11-14 20:45 - 2018-12-02 16:30 - 000000000 ____D C:\Users\sr-we\AppData\LocalLow\Mozilla
2019-11-14 20:45 - 2018-12-02 16:30 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-11-14 13:15 - 2018-11-24 10:09 - 000004626 _____ C:\Windows\system32\Tasks\Adobe Flash Player PPAPI Notifier
2019-11-14 13:15 - 2018-11-24 10:09 - 000004430 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2019-11-14 13:12 - 2018-11-22 20:05 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-11-14 13:12 - 2018-11-22 20:05 - 000000000 ___RD C:\Users\sr-we\3D Objects
2019-11-14 13:12 - 2018-11-22 19:58 - 000258224 _____ C:\Windows\system32\FNTCACHE.DAT
2019-11-14 00:56 - 2018-09-15 08:33 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2019-11-14 00:56 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\SysWOW64\Dism
2019-11-14 00:56 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\system32\oobe
2019-11-14 00:56 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\system32\appraiser
2019-11-14 00:56 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\ShellExperiences
2019-11-14 00:56 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\PolicyDefinitions
2019-11-14 00:56 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\bcastdvr
2019-11-14 00:56 - 2018-09-15 07:09 - 000000000 ____D C:\Windows\system32\Dism
2019-11-13 17:37 - 2018-12-07 12:49 - 000000000 ____D C:\Users\sr-we\AppData\Roaming\GameSparks
2019-11-13 17:36 - 2018-12-05 12:21 - 000000000 ____D C:\Users\sr-we\Documents\Paradox Interactive
2019-11-13 16:48 - 2018-11-22 20:16 - 000000000 ____D C:\Windows\system32\MRT
2019-11-13 16:46 - 2018-11-22 20:16 - 128443096 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-11-13 16:46 - 2018-09-15 08:23 - 000000000 ____D C:\Windows\CbsTemp
2019-11-13 16:37 - 2018-11-22 20:15 - 000748816 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2019-11-13 12:46 - 2019-05-21 18:52 - 000000000 ____D C:\Program Files (x86)\Origin
2019-11-13 11:34 - 2019-07-12 16:54 - 000003544 _____ C:\Windows\system32\Tasks\GyazoUpdateTaskMachineDaily
2019-11-13 11:34 - 2019-07-12 16:54 - 000003408 _____ C:\Windows\system32\Tasks\GyazoUpdateTaskMachine
2019-11-13 11:34 - 2019-07-12 16:54 - 000000000 ____D C:\Program Files (x86)\Gyazo
2019-11-07 17:35 - 2019-06-26 18:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sniper Elite 4

==================== Files in the root of some directories ========

2019-01-27 21:45 - 2019-01-27 21:45 - 000001722 _____ () C:\Users\sr-we\AppData\Local\recently-used.xbel

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Esos dos son del Frst.txt

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-12-2019
Ran by sr-we (06-12-2019 19:09:15)
Running from C:\Users\sr-we\Desktop
Windows 10 Home Version 1809 17763.864 (X64) (2018-11-22 19:02:04)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-2953242240-3240904032-2787377254-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2953242240-3240904032-2787377254-503 - Limited - Disabled)
Invitado (S-1-5-21-2953242240-3240904032-2787377254-501 - Limited - Disabled)
sr-we (S-1-5-21-2953242240-3240904032-2787377254-1001 - Administrator - Enabled) => C:\Users\sr-we
WDAGUtilityAccount (S-1-5-21-2953242240-3240904032-2787377254-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\uTorrent) (Version: 3.5.5.45365 - BitTorrent Inc.)
A Game of Thrones versión 1.9 (HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\{7C82709E-75FE-4C3A-976A-8C97908DDD7B}_is1) (Version: 1.9 - AGOT TEAM)
Actualización de NVIDIA 38.0.2.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.2.0 - NVIDIA Corporation) Hidden
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.293 - Adobe)
AnyDesk (HKLM-x32\...\AnyDesk) (Version: ad 5.4.0 - philandro Software GmbH)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Blitz (HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\Blitz) (Version: 1.4.11 - Blitz Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.55 - Piriform)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.9.0.0650 - Disc Soft Ltd)
Discord (HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\Discord) (Version: 0.0.305 - Discord Inc.)
EaseUS Data Recovery Wizard 8.0 (HKLM-x32\...\EaseUS Data Recovery Wizard 8.0_is1) (Version:  - EaseUS)
Epic Games Launcher (HKLM-x32\...\{42934AF8-CDEE-432A-8AE6-F8C5D5A4FB68}) (Version: 1.1.215.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Europa Universalis IV Golden Century (HKLM-x32\...\Europa Universalis IV Golden Century_is1) (Version:  - )
Firestorm Launcher versión 1.3 (HKLM-x32\...\{008D5963-9A73-4472-8C16-A5BF04491B9D}_is1) (Version: 1.3 - Firestorm)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 78.0.3904.108 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.341 - Google LLC) Hidden
Gyazo 4.0.2.0 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version:  - Nota Inc.)
Hollow Knight Godmaster (HKLM-x32\...\Hollow Knight Godmaster_is1) (Version:  - )
InstaladorVendetta (HKLM-x32\...\{ED2E1DCC-FEB7-4D6B-B497-CC3C6C1E5941}) (Version: 1.0.3 - Default Company Name)
Java 8 Update 231 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180231F0}) (Version: 8.0.2310.11 - Oracle Corporation)
Java 8 Update 231 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180231F0}) (Version: 8.0.2310.11 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
Legends of Runeterra (HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\Riot Game bacon.live) (Version:  - Riot Games, Inc)
Malwarebytes version 4.0.4.49 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.0.4.49 - Malwarebytes)
Microsoft OneDrive (HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\OneDriveSetup.exe) (Version: 19.192.0926.0012 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
Mozilla Firefox 70.0.1 (x64 es-ES) (HKLM\...\Mozilla Firefox 70.0.1 (x64 es-ES)) (Version: 70.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 63.0.3 - Mozilla)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA Controlador de audio HD 1.3.38.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.21 - NVIDIA Corporation)
NVIDIA Controlador de gráficos 441.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 441.41 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.20.1.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.1.57 - NVIDIA Corporation)
NVIDIA Software del sistema PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Octopath Traveler (HKLM-x32\...\{B2387FFE-D293-4A16-86C3-B81E4DD5CAFD}_is1) (Version:  - Square Enix)
Oracle VM VirtualBox 6.0.10 (HKLM\...\{6A145EBB-FA61-4F90-BDE1-2308B1C26C0F}) (Version: 6.0.10 - Oracle Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.55.33574 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version:  - Blizzard Entertainment)
Panel de control de NVIDIA 441.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 441.41 - NVIDIA Corporation) Hidden
PBE (HKLM-x32\...\PBE 1.0) (Version: 1.0 - Riot Games, Inc)
PCM Fast Editor (HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\b4e96ac10814a05a) (Version: 2.1.0.0 - PCM Fast Editor)
Pro Cycling Manager 2019 Account Setup (HKLM-x32\...\Pro Cycling Manager 2019_is1) (Version:  - )
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.4.1 - Rockstar Games)
Sherlock Holmes - The Devil's Daughter (HKLM-x32\...\{958958D4-484A-4C90-9AB4-88977BE9EBED}_is1) (Version:  - Frogwares)
Spotify (HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\Spotify) (Version: 1.1.21.1654.g282a2807 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.1.9025 - TeamViewer)
The Outer Worlds (HKLM-x32\...\The Outer Worlds_is1) (Version:  - )
Tom Clancy's Rainbow Six Siege (HKLM-x32\...\Uplay Install 635) (Version:  - Ubisoft Montreal)
Uplay (HKLM-x32\...\Uplay) (Version: 85.1 - Ubisoft)
uTorrent Web (HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\utweb) (Version: 1.0.5 - BitTorrent, Inc.)
WhatsApp (HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\WhatsApp) (Version: 0.3.9308 - WhatsApp)
WinRAR 5.61 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.61.0 - win.rar GmbH)

Packages:
=========
Correo y Calendario -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20368.0_x64__8wekyb3d8bbwe [2019-11-05] (Microsoft Corporation) [MS Ad]
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.0.2204.0_x64__rz1tebttyb220 [2019-11-15] (Dolby Laboratories)
EdgeDevtoolsPlugin -> C:\Windows\SystemApps\Microsoft.EdgeDevtoolsPlugin_cw5n1h2txyewy [2019-05-09] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-13] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-13] (Microsoft Corporation) [MS Ad]
MSN El Tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-11] (Microsoft Corporation) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.95.602.0_x64__mcm4njqhnhss8 [2019-10-26] (Netflix, Inc.)
Take a Hike -> C:\Program Files\WindowsApps\Microsoft.TakeaHike_1.0.0.0_neutral__8wekyb3d8bbwe [2019-05-09] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2953242240-3240904032-2787377254-1001_Classes\CLSID\{b9351c93-aad4-480a-bcfe-bff5c849c4fd}\InprocServer32 -> C:\Windows\system32\dfshim.dll (Microsoft Windows -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-10-19] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-10-19] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-12-06] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-11-20] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-12-06] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2019-10-11 13:48 - 2019-10-11 13:48 - 000153088 _____ () [File not signed] D:\Riot Games\Riot Client\libuv.dll
2019-10-11 13:48 - 2019-10-11 13:48 - 000092160 _____ () [File not signed] D:\Riot Games\Riot Client\yaml.dll
2019-10-11 13:48 - 2019-10-11 13:48 - 000106496 _____ () [File not signed] D:\Riot Games\Riot Client\zlib.dll
2019-06-09 21:41 - 2019-11-20 12:52 - 001230336 _____ () [File not signed] D:\RiotGames\ffmpeg.dll
2019-10-11 13:48 - 2019-10-11 13:48 - 000122880 _____ (hxxps://nghttp2.org/) [File not signed] D:\Riot Games\Riot Client\libnghttp2.dll
2019-10-11 13:48 - 2019-10-11 13:48 - 000334336 _____ (The curl library, hxxps://curl.haxx.se/) [File not signed] D:\Riot Games\Riot Client\libcurl.dll
2019-08-31 09:28 - 2019-10-09 08:30 - 001277440 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2019-08-31 09:28 - 2019-10-09 08:30 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll
2019-10-11 13:48 - 2019-10-11 13:48 - 002551296 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] D:\Riot Games\Riot Client\libcrypto-1_1.dll
2019-10-11 13:48 - 2019-10-11 13:48 - 000530432 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] D:\Riot Games\Riot Client\libssl-1_1.dll
2019-08-31 09:28 - 2019-10-09 08:30 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2019-08-31 09:28 - 2019-10-09 08:30 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2019-08-31 09:28 - 2019-10-09 08:30 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2019-08-31 09:28 - 2019-10-09 08:30 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2019-08-31 09:28 - 2019-10-09 08:30 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2019-08-31 09:28 - 2019-10-09 08:30 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll
2019-10-11 13:48 - 2019-10-11 13:48 - 000386560 _____ (Yann Collet, Facebook, Inc.) [File not signed] D:\Riot Games\Riot Client\libzstd.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\sr-we\Datos de programa:6699d3ee8dd9cf775caae782c8f44f03 [394]
AlternateDataStreams: C:\Users\sr-we\AppData\Roaming:6699d3ee8dd9cf775caae782c8f44f03 [394]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\localhost -> localhost

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-09-15 08:31 - 2019-08-12 09:02 - 000000822 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common
HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\sr-we\Desktop\sylvanas-windrunner-2880x1800-world-of-warcraft-battle-for-azeroth-4k-11129.jpg
DNS Servers: 80.58.61.254 - 80.58.61.250
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.

Network Binding:
=============
VPN - VPN Client: Hyper-V Extensible Virtual Switch -> vms_pp (disabled) 
VPN - VPN Client: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) 
Ethernet: Hyper-V Extensible Virtual Switch -> vms_pp (disabled) 
Ethernet: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) 
VirtualBox Host-Only Network: Hyper-V Extensible Virtual Switch -> vms_pp (disabled) 
VirtualBox Host-Only Network: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) 

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\StartupFolder: => "AnyDesk.lnk"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\StartupApproved\Run: => "utweb"
HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\StartupApproved\Run: => "PicPick Start"
HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\StartupApproved\Run: => "Gyazo"
HKU\S-1-5-21-2953242240-3240904032-2787377254-1001\...\StartupApproved\Run: => "AceStream"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{9A811D83-E817-4646-9436-8C30B09CAE57}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5E00C9DD-B9B8-4D41-A054-4E9DA47F1494}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{1A4FA270-628C-4146-9C3D-622C42F7FB9B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{56F20A04-0FF2-4D88-9BC7-9CD5C3A1B147}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{BC10EF72-804D-4D55-83CF-4E9472B58E69}] => (Allow) LPort=1688
FirewallRules: [{6E2D7679-50FE-478A-A1AB-2EEA62E7F67A}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{01F3B573-8007-4827-9E1F-D4A3BB4C38AE}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [TCP Query User{72787310-8E61-4B41-8C07-C1609C3E4576}C:\users\sr-we\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\sr-we\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{193EFE6D-577A-4E29-8F05-95C637372081}C:\users\sr-we\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\sr-we\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{61F835A8-71C9-4169-92FD-4FF8965C524E}] => (Allow) C:\Users\sr-we\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{183A3FB7-31C6-4C4A-9876-377343446565}] => (Allow) C:\Users\sr-we\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{9B05397D-66F1-440A-92D4-573B9241B81A}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{FE3BF02A-4176-4695-830E-8D87EE89096E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C0C93DE6-8BDD-46C6-9913-999377515A03}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{6DC06728-E35E-40E8-8E15-5EBD0EE41D25}C:\users\sr-we\appdata\roaming\utorrent\updates\3.5.5_44910.exe] => (Allow) C:\users\sr-we\appdata\roaming\utorrent\updates\3.5.5_44910.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{3E629728-B74B-453B-936E-2FFDEC56FB56}C:\users\sr-we\appdata\roaming\utorrent\updates\3.5.5_44910.exe] => (Allow) C:\users\sr-we\appdata\roaming\utorrent\updates\3.5.5_44910.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{F3B71AFB-48E3-4340-8AC0-3057C03DB54F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{AD63324B-AF9A-4AD6-A6A2-491256EE9AFB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{D89399C8-6BBB-4CD8-9802-225F917C883A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{6150FA3C-703F-4044-A0B3-C794F3D4931B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{14C9AEB1-82C1-4CF5-9820-9D77FCC41E7D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{009A3B24-736D-4B93-9776-5FA1A894925E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{474B782F-69AF-48C1-9257-D34C47A74481}D:\descargas\anydesk.exe] => (Allow) D:\descargas\anydesk.exe (philandro Software GmbH -> )
FirewallRules: [UDP Query User{68442270-7FE3-4632-B729-19FF35F819B3}D:\descargas\anydesk.exe] => (Allow) D:\descargas\anydesk.exe (philandro Software GmbH -> )
FirewallRules: [TCP Query User{CFE73CC0-FE43-4306-927C-DA90B3D5FA3E}D:\riotgames\rads\projects\league_client\releases\0.0.0.200\deploy\leagueclient.exe] => (Allow) D:\riotgames\rads\projects\league_client\releases\0.0.0.200\deploy\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [UDP Query User{303B52ED-DCF2-492E-B1D4-2288C9F7B9C9}D:\riotgames\rads\projects\league_client\releases\0.0.0.200\deploy\leagueclient.exe] => (Allow) D:\riotgames\rads\projects\league_client\releases\0.0.0.200\deploy\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [OpenSSH-Server-In-TCP] => (Allow) %SystemRoot%\system32\OpenSSH\sshd.exe No File
FirewallRules: [{2AC2AA72-8308-460A-ADE7-A171C3A154DA}] => (Allow) D:\RiotGames\LeagueClient.exe (Riot Games, Inc. -> )
FirewallRules: [{5B7EE914-022D-4DDE-A5B1-250C7A5773DF}] => (Allow) D:\RiotGames\LeagueClient.exe (Riot Games, Inc. -> )
FirewallRules: [{46055649-6086-4979-8ED5-5CB5E4A11EFD}] => (Allow) D:\Games\PBE\LeagueClient.exe (Riot Games, Inc. -> )
FirewallRules: [{772118B2-E921-4370-9C66-18C86DE45736}] => (Allow) D:\Games\PBE\LeagueClient.exe (Riot Games, Inc. -> )
FirewallRules: [{77424A5F-D2CF-4210-89F1-044F371CD22B}] => (Allow) D:\SteamLibrary\steamapps\common\AoW3\AoW3Launcher.exe () [File not signed]
FirewallRules: [{8314E86E-B471-4AA3-AFED-4480A9FF6D7E}] => (Allow) D:\SteamLibrary\steamapps\common\AoW3\AoW3Launcher.exe () [File not signed]
FirewallRules: [TCP Query User{76F13A07-1CE3-416D-A65D-6C9189B4F4FB}D:\riotgames\game\league of legends.exe] => (Allow) D:\riotgames\game\league of legends.exe (Riot Games, Inc. -> )
FirewallRules: [UDP Query User{1D1283D8-B48B-48E9-9B19-D35F7B91A647}D:\riotgames\game\league of legends.exe] => (Allow) D:\riotgames\game\league of legends.exe (Riot Games, Inc. -> )
FirewallRules: [TCP Query User{AB8FAFFF-B7F4-45E5-9B81-4016D333F9E1}D:\games\overwatch\_retail_\overwatch.exe] => (Allow) D:\games\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{88F5609A-93E5-4D18-A8B5-95E4A9E08072}D:\games\overwatch\_retail_\overwatch.exe] => (Allow) D:\games\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{C4145988-266C-4529-90DF-935F26B64649}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{E023A252-CACA-4511-8260-E6A2B23EB6E0}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{5F90BA2D-3154-4786-A38C-DC2A07B239B8}] => (Allow) D:\SteamLibrary\steamapps\common\Warframe\Tools\Launcher.exe (Digital Extremes Ltd. -> Digital Extremes)
FirewallRules: [{5A11A1C4-D7C1-40FA-ACA4-BE5F14F3BF9B}] => (Allow) D:\SteamLibrary\steamapps\common\Warframe\Tools\Launcher.exe (Digital Extremes Ltd. -> Digital Extremes)
FirewallRules: [{9D51435F-BAEC-4868-972C-837AB95BFC1D}] => (Allow) C:\Users\sr-we\AppData\Roaming\uTorrent Web\utweb.exe (Jenkins Win Client Build SPC -> BitTorrent Inc.) [File not signed]
FirewallRules: [{7B7F45A9-10FD-48EC-A946-64D9EEAD88BD}] => (Allow) C:\Users\sr-we\AppData\Roaming\uTorrent Web\utweb.exe (Jenkins Win Client Build SPC -> BitTorrent Inc.) [File not signed]
FirewallRules: [TCP Query User{B111C755-25B3-4CAE-9C5E-002BBBF9183B}C:\users\sr-we\appdata\local\blitz\current\blitz.exe] => (Allow) C:\users\sr-we\appdata\local\blitz\current\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.)
FirewallRules: [UDP Query User{B3C7D4F5-5E56-40AD-9E6C-22931130C8CD}C:\users\sr-we\appdata\local\blitz\current\blitz.exe] => (Allow) C:\users\sr-we\appdata\local\blitz\current\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.)
FirewallRules: [{87956C6A-9143-4ADF-8075-5B8C2AB4A3C4}] => (Allow) D:\SteamLibrary\steamapps\common\Portal 2\portal2.exe () [File not signed]
FirewallRules: [{0D690D94-4202-49CB-8832-B77875A1940F}] => (Allow) D:\SteamLibrary\steamapps\common\Portal 2\portal2.exe () [File not signed]
FirewallRules: [{9957BEF2-4A89-4714-A90A-37336E1B6B9A}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [File not signed]
FirewallRules: [{6F3D99CA-5DD2-4F8B-9C8B-16D67AE7CA12}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [File not signed]
FirewallRules: [{577DCC0E-153D-400F-AA82-EFA85D0C9E8D}] => (Allow) D:\Games\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{4388743E-C3E5-405B-823D-EE2D35875A0E}] => (Allow) D:\Games\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{BB6077D8-2FD6-46B2-9688-6E5FE3A2EA96}] => (Allow) D:\Games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{A31A6814-F9F3-411A-915A-5317FC30A9B6}] => (Allow) D:\Games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{92496B6C-6046-4D6C-BB60-2C949CD730BD}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{95033CB0-92B1-4928-B78D-E6BDC63D6D39}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F69B14EF-1995-4D05-B18C-3DE260B939E3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{8837F103-3D21-4CAB-8A6E-654FA7AE3F87}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{14C6171A-267B-47DB-9E96-9ED8AB038850}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CD5C9868-9198-481C-A658-713361FD3DA0}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe No File
FirewallRules: [{85BA707F-6DDA-43B9-BC3E-ED8450A3EE29}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe No File
FirewallRules: [{3A3425E3-5C8E-4DDA-B331-2D8D6D13EA38}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe No File
FirewallRules: [{372932B6-6D78-421C-BB78-FE2FD246AF66}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe No File
FirewallRules: [{061C7F17-E1C8-4063-BA4B-0BCA2E74E46C}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe No File
FirewallRules: [{9332F970-EAD9-4F3F-AEED-1E92138EB598}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe No File

==================== Restore Points =========================

16-11-2019 14:06:28 Punto de control programado
28-11-2019 10:40:37 Punto de control programado

==================== Faulty Device Manager Devices ============

Name: Teclado PS/2 estándar
Description: Teclado PS/2 estándar
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Teclados estándar)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Mouse PS/2 de Microsoft
Description: Mouse PS/2 de Microsoft
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: ========================

Application errors:
==================
Error: (11/30/2019 10:20:40 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: svchost.exe_Audiosrv, versión: 10.0.17763.1, marca de tiempo: 0xb900eeff
Nombre del módulo con errores: ntdll.dll, versión: 10.0.17763.831, marca de tiempo: 0x1f1a0210
Código de excepción: 0xc000000d
Desplazamiento de errores: 0x0000000000110470
Identificador del proceso con errores: 0x934
Hora de inicio de la aplicación con errores: 0x01d59ae4c9101198
Ruta de acceso de la aplicación con errores: C:\Windows\System32\svchost.exe
Ruta de acceso del módulo con errores: C:\Windows\SYSTEM32\ntdll.dll
Identificador del informe: 65ae74d7-da1b-40a2-94d5-5e5113081da6
Nombre completo del paquete con errores: 
Identificador de aplicación relativa del paquete con errores:

Error: (11/29/2019 12:07:34 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Error de la activación de licencia (slui.exe) con el siguiente código:
hr=0xC004F074
Argumentos de línea de comandos:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (11/29/2019 12:07:34 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Error de la activación de licencia (slui.exe) con el siguiente código:
hr=0xC004F074
Argumentos de línea de comandos:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=UserLogon;SessionId=17

Error: (11/28/2019 01:39:49 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Error de la activación de licencia (slui.exe) con el siguiente código:
hr=0xC004F074
Argumentos de línea de comandos:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=TimerEvent

Error: (11/23/2019 10:54:28 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: SkypeApp.exe, versión: 8.54.0.91, marca de tiempo: 0x5dcafc07
Nombre del módulo con errores: Windows.UI.Xaml.dll, versión: 10.0.17763.802, marca de tiempo: 0x322dae8f
Código de excepción: 0xc000027b
Desplazamiento de errores: 0x0000000000701a52
Identificador del proceso con errores: 0x660
Hora de inicio de la aplicación con errores: 0x01d5a1db52870124
Ruta de acceso de la aplicación con errores: C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.54.91.0_x64__kzf8qxf38zg5c\SkypeApp.exe
Ruta de acceso del módulo con errores: C:\Windows\System32\Windows.UI.Xaml.dll
Identificador del informe: ab6bc1be-c022-48f5-9242-ce77eb8a5f78
Nombre completo del paquete con errores: Microsoft.SkypeApp_14.54.91.0_x64__kzf8qxf38zg5c
Identificador de aplicación relativa del paquete con errores: App

Error: (11/19/2019 11:07:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: SkypeApp.exe, versión: 8.54.0.91, marca de tiempo: 0x5dcafc07
Nombre del módulo con errores: twinapi.appcore.dll, versión: 10.0.17763.292, marca de tiempo: 0x270a22eb
Código de excepción: 0xc000027b
Desplazamiento de errores: 0x00000000000bd588
Identificador del proceso con errores: 0x738
Hora de inicio de la aplicación con errores: 0x01d59ed278d1e09d
Ruta de acceso de la aplicación con errores: C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.54.91.0_x64__kzf8qxf38zg5c\SkypeApp.exe
Ruta de acceso del módulo con errores: C:\Windows\SYSTEM32\twinapi.appcore.dll
Identificador del informe: 50b68cb5-231a-432e-b926-10e1e0ec559a
Nombre completo del paquete con errores: Microsoft.SkypeApp_14.54.91.0_x64__kzf8qxf38zg5c
Identificador de aplicación relativa del paquete con errores: App

Error: (11/14/2019 01:13:21 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Error de la activación de licencia (slui.exe) con el siguiente código:
hr=0xC004F074
Argumentos de línea de comandos:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (11/14/2019 01:12:45 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: El subárbol del usuario se carga mediante otro proceso (bloqueo del registro) nombre del proceso: C:\Windows\System32\svchost.exe, PID: 6096, ProfSvc PID: 1708.


System errors:
=============
Error: (12/06/2019 06:52:31 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-I9U2M64)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 y APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 al usuario DESKTOP-I9U2M64\sr-we con SID (S-1-5-21-2953242240-3240904032-2787377254-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (12/06/2019 06:34:36 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: La configuración de permisos específico de la aplicación no concede el permiso Iniciar Local para la aplicación de servidor COM con CLSID 
Windows.SecurityCenter.WscDataProtection
 y APPID 
No disponible
 al usuario NT AUTHORITY\SYSTEM con SID (S-1-5-18) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (12/06/2019 06:34:36 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: La configuración de permisos específico de la aplicación no concede el permiso Iniciar Local para la aplicación de servidor COM con CLSID 
Windows.SecurityCenter.SecurityAppBroker
 y APPID 
No disponible
 al usuario NT AUTHORITY\SYSTEM con SID (S-1-5-18) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (12/06/2019 06:34:36 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: La configuración de permisos específico de la aplicación no concede el permiso Iniciar Local para la aplicación de servidor COM con CLSID 
Windows.SecurityCenter.WscBrokerManager
 y APPID 
No disponible
 al usuario NT AUTHORITY\SYSTEM con SID (S-1-5-18) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (12/06/2019 06:34:33 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-I9U2M64)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 y APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 al usuario DESKTOP-I9U2M64\sr-we con SID (S-1-5-21-2953242240-3240904032-2787377254-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (12/06/2019 06:34:00 PM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: El controlador detectó un error interno del controlador en \Device\VBoxNetLwf.

Error: (12/06/2019 06:31:22 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-I9U2M64)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 y APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 al usuario DESKTOP-I9U2M64\sr-we con SID (S-1-5-21-2953242240-3240904032-2787377254-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (12/06/2019 06:30:25 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-I9U2M64)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 y APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 al usuario DESKTOP-I9U2M64\sr-we con SID (S-1-5-21-2953242240-3240904032-2787377254-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.


Windows Defender:
===================================
Date: 2019-12-06 16:51:35.031
Description: 
Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.
Para obtener más información consulte lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0
Nombre: HackTool:Win32/AutoKMS
Id.: 2147685180
Gravedad: Alta
Categoría: Herramienta
Ruta de acceso: file:_C:\Program Files\KMSpico\scripts\Install_Service.cmd; file:_C:\Program Files\KMSpico\scripts\Install_Task.cmd; file:_C:\Program Files\KMSpico\scripts\UnInstall_Service.cmd
Origen de detección: Equipo local
Tipo de detección: Concreto
Fuente de detección: Protección en tiempo real
Usuario: DESKTOP-I9U2M64\sr-we
Nombre de proceso: D:\Descargas\esetonlinescanner_esn.exe
Versión de firma: AV: 1.305.3464.0, AS: 1.305.3464.0, NIS: 1.305.3464.0
Versión de motor: AM: 1.1.16500.1, NIS: 1.1.16500.1

Date: 2019-12-06 16:51:34.625
Description: 
Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.
Para obtener más información consulte lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0
Nombre: HackTool:Win32/AutoKMS
Id.: 2147685180
Gravedad: Alta
Categoría: Herramienta
Ruta de acceso: file:_C:\Program Files\KMSpico\scripts\Install_Service.cmd; file:_C:\Program Files\KMSpico\scripts\Install_Task.cmd
Origen de detección: Equipo local
Tipo de detección: Concreto
Fuente de detección: Protección en tiempo real
Usuario: DESKTOP-I9U2M64\sr-we
Nombre de proceso: D:\Descargas\esetonlinescanner_esn.exe
Versión de firma: AV: 1.305.3464.0, AS: 1.305.3464.0, NIS: 1.305.3464.0
Versión de motor: AM: 1.1.16500.1, NIS: 1.1.16500.1

Date: 2019-12-06 16:51:34.600
Description: 
Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.
Para obtener más información consulte lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0
Nombre: HackTool:Win32/AutoKMS
Id.: 2147685180
Gravedad: Alta
Categoría: Herramienta
Ruta de acceso: file:_C:\Program Files\KMSpico\scripts\Install_Service.cmd
Origen de detección: Equipo local
Tipo de detección: Concreto
Fuente de detección: Protección en tiempo real
Usuario: DESKTOP-I9U2M64\sr-we
Nombre de proceso: D:\Descargas\esetonlinescanner_esn.exe
Versión de firma: AV: 1.305.3464.0, AS: 1.305.3464.0, NIS: 1.305.3464.0
Versión de motor: AM: 1.1.16500.1, NIS: 1.1.16500.1

Date: 2019-11-16 12:04:15.970
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {D00464C3-43FD-4E89-9FB0-954450909164}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-11-07 17:35:21.857
Description: 
Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.
Para obtener más información consulte lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Keygen!MSR&threatid=2147743020&enterprise=0
Nombre: HackTool:Win32/Keygen!MSR
Id.: 2147743020
Gravedad: Alta
Categoría: Herramienta
Ruta de acceso: file:_C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sniper Elite 4\Sniper Elite 4 DX11.lnk; file:_D:\Games\Sniper Elite 4\stp-se4dx11.exe; regkey:_HKLM\SOFTWARE\Wow6432Node\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{0B524096-DCBD-4090-9DE2-F1697041EE73}_is1; startup:_C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sniper Elite 4\Sniper Elite 4 DX11.lnk; uninstall:_HKLM\SOFTWARE\Wow6432Node\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{0B524096-DCBD-4090-9DE2-F1697041EE73}_is1
Origen de detección: Equipo local
Tipo de detección: Concreto
Fuente de detección: Protección en tiempo real
Usuario: DESKTOP-I9U2M64\sr-we
Nombre de proceso: C:\Windows\System32\RuntimeBroker.exe
Versión de firma: AV: 1.305.1610.0, AS: 1.305.1610.0, NIS: 1.305.1610.0
Versión de motor: AM: 1.1.16500.1, NIS: 1.1.16500.1

Date: 2019-10-27 10:51:56.619
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.305.576.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión de motor actual: 
Versión de motor anterior: 1.1.16500.1
Código de error: 0x800704e8
Descripción del error: El sistema remoto no está disponible. Para obtener más información sobre cómo solucionar problemas en la red, vea la Ayuda de Windows. 

Date: 2019-10-27 10:51:56.612
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.305.576.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de firma: AntiSpyware
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión de motor actual: 
Versión de motor anterior: 1.1.16500.1
Código de error: 0x800704e8
Descripción del error: El sistema remoto no está disponible. Para obtener más información sobre cómo solucionar problemas en la red, vea la Ayuda de Windows. 

Date: 2019-10-27 10:51:56.612
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.305.576.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión de motor actual: 
Versión de motor anterior: 1.1.16500.1
Código de error: 0x800704e8
Descripción del error: El sistema remoto no está disponible. Para obtener más información sobre cómo solucionar problemas en la red, vea la Ayuda de Windows. 

Date: 2019-10-27 10:51:55.372
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.305.576.0
Origen de actualización: Servidor de Microsoft Update
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión de motor actual: 
Versión de motor anterior: 1.1.16500.1
Código de error: 0x80240016
Descripción del error: Se produjo un problema inesperado mientras se buscaban actualizaciones. Para obtener más información sobre cómo instalar o solucionar problemas en las actualizaciones, consulte Ayuda y soporte técnico. 

CodeIntegrity:
===================================

Date: 2019-12-06 18:48:10.575
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-12-06 18:48:10.157
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-12-06 18:48:09.315
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-12-06 18:48:09.244
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-12-06 16:25:06.315
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-12-06 16:25:05.345
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-12-06 16:25:00.467
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-12-06 16:24:59.201
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Memory info =========================== 

BIOS: American Megatrends Inc. 1.60 07/11/2017
Motherboard: MSI Z270 PC MATE (MS-7A72)
Processor: Intel(R) Core(TM) i7-7700 CPU @ 3.60GHz
Percentage of memory in use: 61%
Total physical RAM: 14567.11 MB
Available physical RAM: 5606.88 MB
Total Virtual: 32691.11 MB
Available Virtual: 20710.52 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:222.97 GB) (Free:58.18 GB) NTFS
Drive d: (HDD) (Fixed) (Total:2793.96 GB) (Free:2030.97 GB) NTFS

\\?\Volume{795d8c35-fda1-4da2-b364-8d17a759de56}\ (Recuperación) (Fixed) (Total:0.49 GB) (Free:0.47 GB) NTFS
\\?\Volume{b481e391-5d02-4cb3-88bd-2b49fd6733e3}\ () (Fixed) (Total:0.44 GB) (Free:0.04 GB) NTFS
\\?\Volume{3934cbe9-e22a-42e8-8759-ad35e89d0a34}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
\\?\Volume{22f572bb-5d1a-4b4b-bdf9-43269751f9e4}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 223.6 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 2 (Size: 931.5 GB) (Disk ID: C87E05C8)

Partition: GPT.

==================== End of Addition.txt =======================

No tienes el log de Malwarebytes?

Si lo tienes pegado como te indique y mientras reviso todo