Carpeta explorer.exe

Buenas,

Ayer y hoy me saltó el Norton informando de que habia una amenza: “SONAR.SuspPE!gen32” Cuando le doy a localizar me lleva a la carpeta “explorer.exe” y cuando le doy a eliminar me pone lo siguiente: se requieren permisos de TrustedInstaller para hacer cambios a este archivo.

Quizás sea fácil de solucionar pero no tengo ni idea y buscándolo tampoco me lo aclara mucho.

Gracias por adelantado

Buenas @Augusto_Salini Bienvenido al Foro.!!!

Para revisar tu máquina, sigue estos pasos, en el orden indicado y leyendo todo lo explicado. :+1:

:one: Desactiva temporalmente el Antivirus :arrow_forward: Cómo deshabilitar temporalmente su Antivirus, mientras estemos realizando TODOS los pasos.

Vamos a descargar en TU ESCRITORIO(y NO en otro lugar :face_with_monocle:) todas las herramientas que vamos a utilizar en este procedimiento (pero no las ejecutes todavía) :


:two: Ejecutas las herramientas de una en una y en el orden indicado :



CCleaner.-

  • Instalas y Ejecutas CCleaner siguiendo los pasos indicados en el manual.

  • Úsalo primero en su opción de Limpiador para borrar cookies, temporales de Internet y todos los archivos que te muestre como obsoletos.

  • Después usa su opción de Registro para limpiar todo el registro de Windows(haciendo copia de seguridad).

Malwarebytes.-

  • Instalas y Ejecutas MBAM siguiendo los pasos indicados en el manual.

  • Realiza un Análisis Personalizado. :white_check_mark:

  • Seleccionando TODOS a Cuarentena para enviarlo a la cuarentena y Reinicias el sistema.

  • En el apartado del programa :arrow_forward: Historial de detecciones :arrow_backward: encontrarás el informe de MBAM, que debes copiar y pegar en tu próxima respuesta, para poder analizarlo.

AdwCleaner.-

  • Ejecuta Adwcleaner.exe.

  • Pulsamos en el botón Analizar ahora, y espera a que se realice el proceso, inmediatamente pulsa siempre sobre el botón Iniciar Reparación.

  • Espera a que se complete y sigue las instrucciones, si te pidiera Reiniciar el sistema Aceptas.

  • El log/informe lo encontramos en la pestaña “Informes”, volviendo a abrir el programa si fuese necesario, para poder copiarlo y pegarlo en tu próxima respuesta.

  • El informe también se puede encontrar en C:\AdwCleaner\Logs\AdwCleaner[C00].txt

Junkware Removal Tool.-

  • Ejecuta JRT.exe.

  • Y pulsar cualquier tecla para continuar, esperar pacientemente a que termine el proceso.

  • Si en algún momento te pide Reiniciar hazlo.

  • Al finalizar, un registro/informe (JRT.txt) se guardara en el escritorio y se abrirá automáticamente.

  • Copia y pega el contenido de JRT.txt en tu próxima respuesta.

Farbar Recovery Scan Tool.-

  • Ejecuta FRST.exe.

  • En el mensaje de la ventana del Disclaimer/Responsabilidad, pulsamos Sí/Yes

  • En la ventana principal pulsamos en el botón Analizar/Scan y esperamos a que concluya el proceso.

  • Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.

:three: Poner los informes en tu próxima respuesta de :

  • Malwarebytes, AdwCleaner, JRT, FRST + Addition.txt, y en ese orden. :+1:

Debes copiarlos y pegarlos con todo su contenido y usaras varios mensajes si recibes un mensaje de error indicando que es muy largo(más de 64.000 caracteres aprox.).

Y nos cuentas como funciona tu equipo en relación al problema planteado. :face_with_monocle:

Saludos Javier.

alwarebytes
www.malwarebytes.com

-Detalles del registro-
Fecha del análisis: 6/2/20
Hora del análisis: 19:39
Archivo de registro: 0da49366-4910-11ea-a525-107b444c5c01.json

-Información del software-
Versión: 4.0.4.49
Versión de los componentes: 1.0.810
Versión del paquete de actualización: 1.0.18812
Licencia: Prueba

-Información del sistema-
SO: Windows 10 (Build 18362.592)
CPU: x64
Sistema de archivos: NTFS
Usuario: DESKTOP-CRM928V\SunSh4d0W

-Resumen del análisis-
Tipo de análisis: Análisis de amenazas
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 298612
Amenazas detectadas: 14
Amenazas en cuarentena: 14
Tiempo transcurrido: 1 min, 8 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)

Módulo: 0
(No hay elementos maliciosos detectados)

Clave del registro: 2
PUP.Optional.InstallCore, HKU\S-1-5-21-3500290319-3602715883-2664233041-1001\SOFTWARE\CSASTATS\ic, En cuarentena, 493, 586068, 1.0.18812, , ame, 
PUP.Optional.NeroTuneItUp, HKLM\SOFTWARE\WOW6432NODE\NERO\nero_tuneitup, En cuarentena, 1365, 354277, 1.0.18812, , ame, 

Valor del registro: 1
Trojan.Agent.AutoIt.Generic, HKU\S-1-5-21-3500290319-3602715883-2664233041-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|baacaebd, En cuarentena, 5619, 781623, , , , 

Datos del registro: 0
(No hay elementos maliciosos detectados)

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 3
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\b38d079\e999f4d, En cuarentena, 5619, 781623, , , , 
Trojan.Agent.AutoIt.Generic, C:\PROGRAMDATA\INTEL\WIRELESS\b38d079, En cuarentena, 5619, 781623, 1.0.18812, , ame, 
PUP.Optional.NeroTuneItUp, C:\PROGRAMDATA\NERO\NERO TUNEITUP, En cuarentena, 1365, 354279, 1.0.18812, , ame, 

Archivo: 8
Trojan.Agent.AutoIt.Generic, C:\PROGRAMDATA\INTEL\WIRELESS\b38d079\hegkkjb.exe, En cuarentena, 5619, 781623, 1.0.18812, , ame, 
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\b38d079\e999f4d\03-02-2020.log, En cuarentena, 5619, 781623, , , , 
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\b38d079\e999f4d\7688097, En cuarentena, 5619, 781623, , , , 
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\b38d079\93a4405.au3, En cuarentena, 5619, 781623, , , , 
Trojan.Agent.AutoIt.Generic, C:\ProgramData\Intel\Wireless\b38d079\pe.bin, En cuarentena, 5619, 781623, , , , 
PUP.Optional.NeroTuneItUp, C:\ProgramData\Nero\Nero TuneItUp\remote_devices.db, En cuarentena, 1365, 354279, , , , 
Generic.Malware/Suspicious, C:\USERS\SUNSH4D0W\DOWNLOADS\FREEAUDIOCDBURNER.EXE, En cuarentena, 0, 392686, 1.0.18812, , shuriken, 
PUP.Optional.ASK, C:\USERS\SUNSH4D0W\DOWNLOADS\ATUBE_CATCHER.EXE, En cuarentena, 1, 398182, 1.0.18812, , ame, 

Sector físico: 0
(No hay elementos maliciosos detectados)

WMI: 0
(No hay elementos maliciosos detectados)


(end)
# -------------------------------
# Malwarebytes AdwCleaner 8.0.2.0
# -------------------------------
# Build:    01-27-2020
# Database: 2020-01-24.1 (Local)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    02-06-2020
# Duration: 00:00:02
# OS:       Windows 10 Home
# Cleaned:  16
# Failed:   0


***** [ Services ] *****

Deleted       updater

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted       HKCU\Software\csastats
Deleted       HKLM\Software\Wow6432Node\\Classes\CLSID\{8BF0126F-A5B7-4720-ABB2-2414A0AF5474}

***** [ Chromium (and derivatives) ] *****

Deleted       iilfecopjcmjdgfffklfdkhbkpkmcglh

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

Deleted       Preinstalled.CyberLinkLabelPrint   Folder   C:\Program Files (x86)\CYBERLINK\LABELPRINT
Deleted       Preinstalled.CyberLinkLabelPrint   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}
Deleted       Preinstalled.CyberLinkLabelPrint   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{C59C179C-668D-49A9-B6EA-0121CCFC1243}
Deleted       Preinstalled.CyberLinkShellExtension   Registry   HKLM\Software\Classes\CLSID\{3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2}
Deleted       Preinstalled.HPMediaSmart   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}
Deleted       Preinstalled.HPMediaSmart   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{01FB4998-33C4-4431-85ED-079E3EEFE75D}
Deleted       Preinstalled.LenovoPower2Go   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|CLMLServer_For_P2G8
Deleted       Preinstalled.LenovoPower2Go   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|CLVirtualDrive
Deleted       Preinstalled.LenovoPower2Go   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|CLMLServer_For_P2G8
Deleted       Preinstalled.LenovoPower2Go   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|CLVirtualDrive
Deleted       Preinstalled.LenovoPower2Go   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}
Deleted       Preinstalled.LenovoPower2Go   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [3239 octets] - [06/02/2020 20:07:02]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 10 Home x64 
Ran by SunSh4d0W (Administrator) on 06/02/2020 at 20:14:02,50
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 0 




Registry: 0 





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 06/02/2020 at 20:18:27,96
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 02-02-2020 02
Ejecutado por SunSh4d0W (administrador) sobre DESKTOP-CRM928V (06-02-2020 20:21:44)
Ejecutado desde C:\Users\SunSh4d0W\Downloads
Perfiles cargados: SunSh4d0W (Perfiles disponibles: SunSh4d0W)
Platform: Windows 10 Home Versión 1903 18362.592 (X64) Idioma: Español (España, internacional)
Navegador predeterminado: Chrome
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(Electronic Arts, Inc. -> Electronic Arts) A:\Origin\OriginWebHelperService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Users\SunSh4d0W\Desktop\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Users\SunSh4d0W\Desktop\mbamtray.exe
(Malwarebytes Inc -> Malwarebytes) C:\Users\SunSh4d0W\Desktop\MBAMWsc.exe
(McAfee, LLC -> McAfee, Inc.) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, Inc.) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
(Scarlet.Crush Productions) [Archivo no firmado] A:\ScpService.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.19.9.63\NortonSecurity.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.19.9.63\NortonSecurity.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.19.9.63\nsWscSvc.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942744 2018-12-17] (Logitech -> Logitech, Inc.)
HKLM-x32\...\Run: [YouCam Service] => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [265656 2015-06-15] (CyberLink Corp. -> CyberLink Corp.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596664 2018-04-05] (Razer USA Ltd. -> Razer Inc.)
HKU\S-1-5-21-3500290319-3602715883-2664233041-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3311568 2020-01-18] (Valve -> Valve Corporation)
HKU\S-1-5-21-3500290319-3602715883-2664233041-1001\...\Run: [utweb] => C:\Users\SunSh4d0W\AppData\Roaming\uTorrent Web\utweb.exe [5415128 2019-12-20] (Jenkins Win Client Build SPC -> BitTorrent Inc.) [Archivo no firmado]
HKU\S-1-5-21-3500290319-3602715883-2664233041-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [36098448 2020-02-05] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-3500290319-3602715883-2664233041-1001\...\Run: [com.blitz.app] => C:\Users\SunSh4d0W\AppData\Local\Blitz\Update.exe [1849928 2019-12-11] (Swift Media Entertainment, Inc. -> Blitz Inc)
HKU\S-1-5-21-3500290319-3602715883-2664233041-1001\...\Run: [electron.app.Guilded] => C:\Users\SunSh4d0W\AppData\Local\Programs\Guilded\Guilded.exe [104620752 2020-02-01] (GUILDED LLC -> Guilded, Inc.)
HKU\S-1-5-21-3500290319-3602715883-2664233041-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-3500290319-3602715883-2664233041-1001\...\RunOnce: [Application Restart #4] => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKU\S-1-5-21-3500290319-3602715883-2664233041-1001\...\RunOnce: [Application Restart #2] => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.130\Installer\chrmstp.exe [2020-01-17] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{538C240D-3DEE-4032-AB4C-08A3A6EB0861}] -> C:\Program Files (x86)\CyberLink\YouCam\CLCredProv\x64\CLCredProv.dll [2015-06-15] (CyberLink Corp. -> CyberLink)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2019-11-16]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.1512\SSScheduler.exe (McAfee, LLC -> McAfee, LLC.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ScpToolkit Tray Notifications.lnk [2019-07-18]
ShortcutTarget: ScpToolkit Tray Notifications.lnk -> A:\ScpTrayApp.exe (Scarlet.Crush Productions) [Archivo no firmado]
GroupPolicy: Restricción ? <==== ATENCIÓN

==================== Tareas programadas (Lista blanca) ============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {0402F738-6811-4E2E-8A1E-DD834A44078E} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-09-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0607622C-FAFE-4939-A5EB-AA2A55F1D61B} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24607520 2020-01-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {0873EF8A-17DF-4B9B-A1F0-11DF015CED19} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133368 2019-10-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0F239A73-003E-4B74-9565-22410CA120B4} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24607520 2020-01-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {0F8B10EE-8E4C-4BDF-98B2-12B8F690727A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {13023506-8DFD-4512-9542-46B7894A0DA3} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-01-21] (Adobe Inc. -> Adobe)
Task: {18AAD763-3073-4AA3-8812-17A5656DC36B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
Task: {1F5D7A22-3CCA-4B95-B2B7-B1C41862933C} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133368 2019-10-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {356FE102-B9DF-4CF3-966A-EC11278FB2FE} - System32\Tasks\Norton Security\Norton Security Error Analyzer => C:\Program Files\Norton Security\Engine\22.19.9.63\SymErr.exe [116392 2019-11-16] (Symantec Corporation -> Symantec Corporation)
Task: {3CE20950-F912-4BE0-B959-9345F07B6E5C} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133368 2019-10-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3D727E23-9C56-4D21-ADD8-978FAF7E573C} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1354064 2020-02-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {53E1C215-3FEB-4A63-974D-E8DCF660784B} - System32\Tasks\updater => A:\ScpUpdater.exe [464384 2016-01-10] (Nefarius Software Solutions) [Archivo no firmado]
Task: {566CADC2-E692-4DA3-A363-33065788192E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913720 2019-10-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5DA1DBFB-D46F-48FB-B3D0-9855BC6DC0FE} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.19.9.63\WSCStub.exe [570768 2019-11-16] (Symantec Corporation -> Symantec Corporation)
Task: {66CB85FD-295E-462C-9C52-4ADF9B291F60} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe [4838816 2014-09-28] (Samsung Electronics Co., Ltd. -> Samsung Electronics.)
Task: {6D266BC2-6501-49B2-B448-6752C664005B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115440 2020-02-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {70D5120B-3476-47AC-81C4-D666DCCA6FB5} - System32\Tasks\MSISW_Host => C:\WINDOWS\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
Task: {7FBC1259-7ED1-441A-8D96-626E5E346449} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-09-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8B2D4477-93F8-46EF-B275-3C3F8A8DDCBB} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1354064 2020-02-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {A9828D48-FE4A-4F38-B6DC-504744F7E211} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security\Upgrade.exe [1929344 2019-11-16] (Symantec Corporation -> Symantec Corporation)
Task: {BB0F359A-0217-4020-9B43-4C3161A65D9F} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913720 2019-10-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BCB89472-07ED-47DF-A212-6AD1DEAF28F8} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [654456 2019-10-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BCF91534-D6E4-422B-B954-E30CC5C23715} - System32\Tasks\Norton Security\Norton Security Autofix => C:\Program Files\Norton Security\Engine\22.19.9.63\SymErr.exe [116392 2019-11-16] (Symantec Corporation -> Symantec Corporation)
Task: {D618466B-5011-4C90-A92C-7EFCF46C6A0C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2017-10-04] (Google Inc -> Google Inc.)
Task: {D6EEE858-B78B-4F4D-A1C8-E02A1787ADFA} - System32\Tasks\MSIGH_Host => C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe [3354296 2019-01-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
Task: {DEAA770D-CF91-4AE5-B5F6-1F37FC12CF77} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115440 2020-02-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {E2E3F2D1-CFC3-48F9-A8C7-4A8F95444CDB} - System32\Tasks\Norton Security\Norton Security Error Processor => C:\Program Files\Norton Security\Engine\22.19.9.63\SymErr.exe [116392 2019-11-16] (Symantec Corporation -> Symantec Corporation)
Task: {F0E4AFBE-AA35-4FF0-8E04-1AD31E69163C} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_321_pepper.exe [1453624 2020-01-21] (Adobe Inc. -> Adobe)
Task: {F0FBF3DE-AAEA-44A6-AAC2-E945F08D8DFE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2017-10-04] (Google Inc -> Google Inc.)
Task: {F3264BBF-AFF9-4C1D-8C21-4BC021C358F0} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133368 2019-10-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FC86D420-ED1B-4137-900B-14EF345BE997} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3301928 2019-10-25] (NVIDIA Corporation -> NVIDIA Corporation)

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\MSIGH_Host.job => C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe
Task: C:\WINDOWS\Tasks\MSISW_Host.job => C:\WINDOWS\SysWOW64\muachost.exe

==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Hosts: 0.0.0.1	mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{02a37a88-fd46-4814-ace1-759e7159cee3}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-01-10] (Microsoft Corporation -> Microsoft Corporation)
BHO: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine\22.19.9.63\coIEPlg.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2020-02-05] (McAfee, LLC -> McAfee, Inc.)
BHO-x32: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine32\22.19.9.63\coIEPlg.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2020-02-05] (McAfee, LLC -> McAfee, Inc.)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine\22.19.9.63\coIEPlg.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine32\22.19.9.63\coIEPlg.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} -  Ningún archivo

FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2020-02-05]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-10] (Microsoft Corporation -> Microsoft Corporation)

Chrome: 
=======
CHR Profile: C:\Users\SunSh4d0W\AppData\Local\Google\Chrome\User Data\Default [2020-02-06]
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxps://www.google.es/"
CHR DefaultSearchURL: Default -> hxxps://es.search.yahoo.com/search?fr=mcafee&type=E210ES91082G0&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR DefaultSuggestURL: Default -> hxxps://es.search.yahoo.com/sugg/gossip/gossip-es-partner?output=fxjson&appid=mca&source=yahoo_mcafee_searchassist&command={searchTerms}
CHR Extension: (Documentos) - C:\Users\SunSh4d0W\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-20]
CHR Extension: (Google Drive) - C:\Users\SunSh4d0W\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-18]
CHR Extension: (YouTube) - C:\Users\SunSh4d0W\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-10-20]
CHR Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\SunSh4d0W\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-10-23]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\SunSh4d0W\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2019-11-23]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\SunSh4d0W\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-09]
CHR Extension: (AdBlock: el mejor bloqueador de anuncios) - C:\Users\SunSh4d0W\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-02-06]
CHR Extension: (Botón Guardar de Pinterest) - C:\Users\SunSh4d0W\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2020-01-14]
CHR Extension: (Norton Identity Safe) - C:\Users\SunSh4d0W\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2017-10-20]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\SunSh4d0W\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-01]
CHR Extension: (Gmail) - C:\Users\SunSh4d0W\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-24]
CHR Extension: (Chrome Media Router) - C:\Users\SunSh4d0W\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-17]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security\Engine\22.19.9.63\Exts\Chrome.crx <no encontrado>
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security\Engine\22.19.9.63\Exts\Chrome.crx <no encontrado>
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [7013384 2018-03-26] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11129712 2020-01-28] (Microsoft Corporation -> Microsoft Corporation)
R2 Ds3Service; A:\ScpService.exe [389632 2016-01-10] (Scarlet.Crush Productions) [Archivo no firmado]
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [526376 2019-07-17] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 GamingApp_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe [46776 2018-09-06] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 GamingHotkey_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe [2027192 2019-01-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MBAMService; C:\Users\SunSh4d0W\Desktop\MBAMService.exe [6960640 2020-02-06] (Malwarebytes Inc -> Malwarebytes)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [915832 2020-02-05] (McAfee, LLC -> McAfee, Inc.)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.1512\McCHSvc.exe [408416 2019-11-13] (McAfee, LLC -> McAfee, LLC.)
R2 MSI_ActiveX_Service; C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe [86688 2018-07-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 NortonSecurity; C:\Program Files\Norton Security\Engine\22.19.9.63\NortonSecurity.exe [227296 2019-11-16] (Symantec Corporation -> Symantec Corporation)
R2 nsWscSvc; C:\Program Files\Norton Security\Engine\22.19.9.63\nsWscSvc.exe [938496 2019-11-16] (Symantec Corporation -> Symantec Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-09-27] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-09-27] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; A:\Origin\OriginClientService.exe [2475312 2020-01-15] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; A:\Origin\OriginWebHelperService.exe [3393848 2020-01-15] (Electronic Arts, Inc. -> Electronic Arts)
R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [439936 2018-01-10] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [943232 2018-01-10] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [189776 2018-03-14] (Razer USA Ltd. -> )
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11665240 2019-02-26] (TeamViewer GmbH -> TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.9.2.3\Definitions\BASHDefs\20200203.001\BHDrvx64.sys [1952136 2019-10-03] (Symantec Corporation -> Symantec Corporation)
R1 ccSet_NGC; C:\WINDOWS\System32\drivers\NGCx64\1613090.03F\ccSetx64.sys [193392 2019-11-16] (Symantec Corporation -> Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [516784 2019-10-09] (Symantec Corporation -> Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [154288 2020-01-16] (Symantec Corporation -> Symantec Corporation)
R3 I2cHkBurn; C:\WINDOWS\system32\drivers\I2cHkBurn.sys [41760 2015-07-27] (Feature Integration Technology -> FINTEK Corp.)
R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.9.2.3\Definitions\IPSDefs\20200205.061\IDSvia64.sys [1451016 2019-08-06] (Symantec Corporation -> Symantec Corporation)
R3 libusbK; C:\WINDOWS\System32\drivers\libusbK.sys [47200 2019-07-18] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [214496 2020-02-06] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2020-02-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [226448 2020-02-06] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73584 2020-02-06] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-02-06] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [119960 2020-02-06] (Malwarebytes Inc -> Malwarebytes)
S3 NTIOLib_MBAPI; C:\Program Files (x86)\MSI\Gaming APP\Lib\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3334892267d8a3d1\nvlddmkm.sys [22744688 2019-11-21] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-07-23] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69840 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [75600 2019-08-23] (NVIDIA Corporation -> NVIDIA Corporation)
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [14024 2017-08-27] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
R3 rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [52240 2016-10-30] (Razer USA Ltd. -> Razer Inc)
R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [44160 2018-03-14] (Razer USA Ltd. -> Razer, Inc.)
R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [140040 2018-03-20] (Razer USA Ltd. -> Razer, Inc.)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
S3 SRTSP; C:\WINDOWS\System32\drivers\NGCx64\1613090.03F\SRTSP64.SYS [889008 2019-11-16] (Symantec Corporation -> Symantec Corporation)
R1 SRTSPX; C:\WINDOWS\System32\drivers\NGCx64\1613090.03F\SRTSPX64.SYS [50864 2019-11-16] (Symantec Corporation -> Symantec Corporation)
R0 SymEFASI; C:\WINDOWS\System32\drivers\NGCx64\1613090.03F\SYMEFASI64.SYS [1963400 2019-11-16] (Symantec Corporation -> Symantec Corporation)
S0 SymELAM; C:\WINDOWS\System32\drivers\NGCx64\1613090.03F\SymELAM.sys [25744 2019-11-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [100064 2019-03-17] (Symantec Corporation -> Symantec Corporation)
S4 SymEvnt; C:\Program Files\Norton Security\NortonData\22.9.2.3\SymPlatform\SymEvnt.sys [712368 2020-01-19] (Symantec Corporation -> Symantec Corporation)
R1 SymIRON; C:\WINDOWS\System32\drivers\NGCx64\1613090.03F\Ironx64.SYS [316656 2019-11-16] (Symantec Corporation -> Symantec Corporation)
R1 SymNetS; C:\WINDOWS\System32\drivers\NGCx64\1613090.03F\symnets.sys [573448 2019-11-16] (Symantec Corporation -> Symantec Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 wpCtrlDrv_NGC; C:\WINDOWS\System32\drivers\NGCx64\1613090.03F\wpCtrlDrv.sys [1012120 2019-11-16] (Symantec Corporation -> Symantec Corporation)

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)


==================== Un mes (creado) ===================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-02-06 20:21 - 2020-02-06 20:22 - 000030494 _____ C:\Users\SunSh4d0W\Downloads\FRST.txt
2020-02-06 20:08 - 2020-02-06 20:08 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-02-06 20:08 - 2020-02-06 20:08 - 000226448 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2020-02-06 20:08 - 2020-02-06 20:08 - 000119960 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2020-02-06 20:08 - 2020-02-06 20:08 - 000073584 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2020-02-06 19:48 - 2020-02-06 19:48 - 000000000 ____D C:\WINDOWS\system32\Tasks\Remediation
2020-02-06 19:41 - 2020-02-06 19:41 - 000003133 _____ C:\Users\SunSh4d0W\Documents\malware informe.txt
2020-02-06 19:39 - 2020-02-06 19:26 - 003515552 _____ (MalwareBytes) C:\Users\SunSh4d0W\Desktop\ig-8.exe
2020-02-06 19:39 - 2020-02-06 19:26 - 003515552 _____ (MalwareBytes) C:\Users\SunSh4d0W\Desktop\ig-47.exe
2020-02-06 19:39 - 2020-02-06 19:26 - 003515552 _____ (MalwareBytes) C:\Users\SunSh4d0W\Desktop\ig-46.exe
2020-02-06 19:39 - 2020-02-06 19:26 - 003515552 _____ (MalwareBytes) C:\Users\SunSh4d0W\Desktop\ig-43.exe
2020-02-06 19:39 - 2020-02-06 19:26 - 003515552 _____ (MalwareBytes) C:\Users\SunSh4d0W\Desktop\ig-39.exe
2020-02-06 19:39 - 2020-02-06 19:26 - 003515552 _____ (MalwareBytes) C:\Users\SunSh4d0W\Desktop\ig-36.exe
2020-02-06 19:39 - 2020-02-06 19:26 - 003515552 _____ (MalwareBytes) C:\Users\SunSh4d0W\Desktop\ig-35.exe
2020-02-06 19:39 - 2020-02-06 19:26 - 003515552 _____ (MalwareBytes) C:\Users\SunSh4d0W\Desktop\ig-33.exe
2020-02-06 19:39 - 2020-02-06 19:26 - 003515552 _____ (MalwareBytes) C:\Users\SunSh4d0W\Desktop\ig-29.exe
2020-02-06 19:39 - 2020-02-06 19:26 - 003515552 _____ (MalwareBytes) C:\Users\SunSh4d0W\Desktop\ig-26.exe
2020-02-06 19:39 - 2020-02-06 19:26 - 003515552 _____ (MalwareBytes) C:\Users\SunSh4d0W\Desktop\ig-20.exe
2020-02-06 19:39 - 2020-02-06 19:26 - 003515552 _____ (MalwareBytes) C:\Users\SunSh4d0W\Desktop\ig-2.exe
2020-02-06 19:39 - 2020-02-06 19:26 - 003515552 _____ (MalwareBytes) C:\Users\SunSh4d0W\Desktop\ig-13.exe
2020-02-06 19:39 - 2020-02-06 19:26 - 003515552 _____ (MalwareBytes) C:\Users\SunSh4d0W\Desktop\ig-10.exe
2020-02-06 19:39 - 2020-02-06 19:26 - 003515552 _____ (MalwareBytes) C:\Users\SunSh4d0W\Desktop\ig.exe
2020-02-06 19:35 - 2020-02-06 19:35 - 000237268 _____ C:\Users\SunSh4d0W\Desktop\cc_20200206_193512.reg
2020-02-06 19:30 - 2020-02-06 20:21 - 000000000 ____D C:\FRST
2020-02-06 19:29 - 2020-02-06 19:29 - 002279424 _____ (Farbar) C:\Users\SunSh4d0W\Downloads\FRST64.exe
2020-02-06 19:26 - 2020-02-06 20:08 - 000000000 ____D C:\Users\SunSh4d0W\Desktop\sdk
2020-02-06 19:26 - 2020-02-06 19:26 - 017332976 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\mbam.exe
2020-02-06 19:26 - 2020-02-06 19:26 - 006960640 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\MBAMService.exe
2020-02-06 19:26 - 2020-02-06 19:26 - 006365640 _____ (The Qt Company Ltd.) C:\Users\SunSh4d0W\Desktop\Qt5Core.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 005923480 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\CleanControllerImpl.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 005906952 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\mbamtray.exe
2020-02-06 19:26 - 2020-02-06 19:26 - 005667808 _____ (The Qt Company Ltd.) C:\Users\SunSh4d0W\Desktop\Qt5Widgets.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 005587760 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\MBAMCore.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 005225688 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\MBAMInstallerService.exe
2020-02-06 19:26 - 2020-02-06 19:26 - 005197272 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\BrowserSDKDLL.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 005111592 _____ (The Qt Company Ltd.) C:\Users\SunSh4d0W\Desktop\Qt5Gui.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 004842472 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\ScanControllerImpl.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 004593528 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\arwlib.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 004493352 _____ (Microsoft Corporation) C:\Users\SunSh4d0W\Desktop\d3dcompiler_47.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 004338936 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\Actions.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 004233528 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\TelemetryControllerImpl.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 004169424 _____ (The Qt Company Ltd.) C:\Users\SunSh4d0W\Desktop\Qt5Qml.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 004128672 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\CloudControllerImpl.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 003864720 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\UpdateControllerImpl.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 003851264 _____ (The Qt Company Ltd.) C:\Users\SunSh4d0W\Desktop\Qt5Quick.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 003814168 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\LicenseControllerImpl.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 003636952 _____ () C:\Users\SunSh4d0W\Desktop\QtANGLE.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 003589976 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\MWACControllerImpl.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 003524928 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\ArwControllerImpl.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 003360104 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\Swissarmy.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 003307928 _____ (The Qt Company Ltd.) C:\Users\SunSh4d0W\Desktop\Qt5Network.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 003263568 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\RTPControllerImpl.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 003178264 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\AEControllerImpl.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 002788864 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\MwacLib.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 002758920 _____ C:\Users\SunSh4d0W\Desktop\SelfProtectionSdk.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 002745464 _____ (The Qt Company Ltd.) C:\Users\SunSh4d0W\Desktop\Qt5XmlPatterns.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 002675248 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\rtp.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 002612232 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\SPControllerImpl.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 002541000 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\PoliciesControllerImpl.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 002395856 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\mbshlext_proto
2020-02-06 19:26 - 2020-02-06 19:26 - 002395856 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\mbshlext.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 002376736 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\MBAMWsc.exe
2020-02-06 19:26 - 2020-02-06 19:26 - 002323488 _____ (Malwarebytes Corporation) C:\Users\SunSh4d0W\Desktop\mbae-api-na.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 002255856 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\mbcut.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 002233640 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\SwissarmyShim.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 002210896 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\SelfProtectionShim.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 002200584 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\MBAMShim.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 002191240 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\ActionsShim.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 002185560 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\ArwSdkShim.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 002175280 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\BrowserSDKDLLShim.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 002173696 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\MwacSdkShim.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 002164408 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\RtpShim.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 001706816 _____ (Igor Pavlov) C:\Users\SunSh4d0W\Desktop\7z.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 001459936 _____ (The Qt Company Ltd.) C:\Users\SunSh4d0W\Desktop\Qt5Charts.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 001337984 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\assistant.exe
2020-02-06 19:26 - 2020-02-06 19:26 - 001336960 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\malwarebytes_assistant.exe
2020-02-06 19:26 - 2020-02-06 19:26 - 001153616 _____ (The Qt Company Ltd.) C:\Users\SunSh4d0W\Desktop\Qt5QuickTemplates2.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 001026088 _____ (Microsoft Corporation) C:\Users\SunSh4d0W\Desktop\ucrtbase.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 000627992 _____ (Microsoft Corporation) C:\Users\SunSh4d0W\Desktop\msvcp140.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 000569984 _____ (Malwarebytes Corporation) C:\Users\SunSh4d0W\Desktop\mbae64.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 000524488 _____ C:\Users\SunSh4d0W\Desktop\sample.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 000489936 _____ (The Qt Company Ltd.) C:\Users\SunSh4d0W\Desktop\Qt5WinExtras.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 000466128 _____ (Malwarebytes Corporation) C:\Users\SunSh4d0W\Desktop\mbae.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 000341184 _____ (The Qt Company Ltd.) C:\Users\SunSh4d0W\Desktop\Qt5Svg.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 000214496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-02-06 19:26 - 2020-02-06 19:26 - 000186728 _____ (The Qt Company Ltd.) C:\Users\SunSh4d0W\Desktop\Qt5QuickControls2.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-02-06 19:26 - 2020-02-06 19:26 - 000153312 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\mbae64.sys
2020-02-06 19:26 - 2020-02-06 19:26 - 000085784 _____ (Microsoft Corporation) C:\Users\SunSh4d0W\Desktop\vcruntime140.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 000073048 _____ (Microsoft Corporation) C:\Users\SunSh4d0W\Desktop\api-ms-win-crt-private-l1-1-0.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 000029528 _____ (Microsoft Corporation) C:\Users\SunSh4d0W\Desktop\api-ms-win-crt-math-l1-1-0.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 000028736 _____ (Microsoft Corporation) C:\Users\SunSh4d0W\Desktop\api-ms-win-crt-multibyte-l1-1-0.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 000026664 _____ (Microsoft Corporation) C:\Users\SunSh4d0W\Desktop\api-ms-win-crt-string-l1-1-0.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 000026664 _____ (Microsoft Corporation) C:\Users\SunSh4d0W\Desktop\api-ms-win-crt-stdio-l1-1-0.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 000025128 _____ (Microsoft Corporation) C:\Users\SunSh4d0W\Desktop\api-ms-win-crt-runtime-l1-1-0.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 000024616 _____ (Microsoft Corporation) C:\Users\SunSh4d0W\Desktop\api-ms-win-crt-convert-l1-1-0.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 000023080 _____ (Microsoft Corporation) C:\Users\SunSh4d0W\Desktop\api-ms-win-crt-time-l1-1-0.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 000022568 _____ (Microsoft Corporation) C:\Users\SunSh4d0W\Desktop\api-ms-win-crt-filesystem-l1-1-0.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 000021568 _____ (Microsoft Corporation) C:\Users\SunSh4d0W\Desktop\api-ms-win-crt-process-l1-1-0.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 000021544 _____ (Microsoft Corporation) C:\Users\SunSh4d0W\Desktop\api-ms-win-crt-heap-l1-1-0.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 000021544 _____ (Microsoft Corporation) C:\Users\SunSh4d0W\Desktop\api-ms-win-crt-conio-l1-1-0.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 000021032 _____ (Microsoft Corporation) C:\Users\SunSh4d0W\Desktop\api-ms-win-crt-utility-l1-1-0.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 000021032 _____ (Microsoft Corporation) C:\Users\SunSh4d0W\Desktop\api-ms-win-crt-locale-l1-1-0.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 000021032 _____ (Microsoft Corporation) C:\Users\SunSh4d0W\Desktop\api-ms-win-crt-environment-l1-1-0.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 000021032 _____ (Microsoft Corporation) C:\Users\SunSh4d0W\Desktop\api-ms-win-core-timezone-l1-1-0.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-02-06 19:26 - 2020-02-06 19:26 - 000020936 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\mbamelam.sys
2020-02-06 19:26 - 2020-02-06 19:26 - 000020520 _____ (Microsoft Corporation) C:\Users\SunSh4d0W\Desktop\api-ms-win-core-util-l1-1-0.dll
2020-02-06 19:26 - 2020-02-06 19:26 - 000020520 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\MbamPt.exe
2020-02-06 19:26 - 2020-02-06 19:26 - 000010009 _____ C:\Users\SunSh4d0W\Desktop\mbamelam.cat
2020-02-06 19:26 - 2020-02-06 19:26 - 000001893 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-02-06 19:26 - 2020-02-06 19:26 - 000000588 _____ C:\Users\SunSh4d0W\Desktop\ServiceConfig.json.bak
2020-02-06 19:26 - 2020-02-06 19:26 - 000000588 _____ C:\Users\SunSh4d0W\Desktop\ServiceConfig.json
2020-02-06 19:26 - 2020-02-06 19:26 - 000000191 _____ C:\Users\SunSh4d0W\Desktop\SecurityProductInformation.ini
2020-02-06 19:26 - 2020-02-06 19:26 - 000000008 _____ C:\Users\SunSh4d0W\Desktop\srvversion.dat
2020-02-06 19:26 - 2020-02-06 19:26 - 000000007 _____ C:\Users\SunSh4d0W\Desktop\ctlrvers.dat
2020-02-06 19:26 - 2020-02-06 19:26 - 000000000 ____D C:\Users\SunSh4d0W\Desktop\styles
2020-02-06 19:26 - 2020-02-06 19:26 - 000000000 ____D C:\Users\SunSh4d0W\Desktop\QtWinExtras
2020-02-06 19:26 - 2020-02-06 19:26 - 000000000 ____D C:\Users\SunSh4d0W\Desktop\QtQuick.2
2020-02-06 19:26 - 2020-02-06 19:26 - 000000000 ____D C:\Users\SunSh4d0W\Desktop\QtQuick
2020-02-06 19:26 - 2020-02-06 19:26 - 000000000 ____D C:\Users\SunSh4d0W\Desktop\QtQml
2020-02-06 19:26 - 2020-02-06 19:26 - 000000000 ____D C:\Users\SunSh4d0W\Desktop\QtCharts
2020-02-06 19:26 - 2020-02-06 19:26 - 000000000 ____D C:\Users\SunSh4d0W\Desktop\Qt
2020-02-06 19:26 - 2020-02-06 19:26 - 000000000 ____D C:\Users\SunSh4d0W\Desktop\platforms
2020-02-06 19:26 - 2020-02-06 19:26 - 000000000 ____D C:\Users\SunSh4d0W\Desktop\imageformats
2020-02-06 19:26 - 2020-02-06 19:26 - 000000000 ____D C:\Users\SunSh4d0W\AppData\Local\mbamtray
2020-02-06 19:26 - 2020-02-06 19:26 - 000000000 ____D C:\Users\SunSh4d0W\AppData\Local\mbam
2020-02-06 19:26 - 2020-02-06 19:26 - 000000000 ____D C:\Users\SunSh4d0W\AppData\Local\cache
2020-02-06 19:26 - 2020-02-06 19:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2020-02-06 19:26 - 2020-02-06 19:26 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-02-06 19:26 - 2020-02-06 19:25 - 001924728 _____ (Malwarebytes) C:\Users\SunSh4d0W\Desktop\mbuns.exe
2020-02-06 19:25 - 2020-02-06 19:25 - 001924728 _____ (Malwarebytes) C:\Users\SunSh4d0W\Downloads\MBSetup.exe
2020-02-06 19:24 - 2020-02-06 20:17 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-02-06 19:24 - 2020-02-06 19:24 - 024578944 _____ (Piriform Software Ltd) C:\Users\SunSh4d0W\Downloads\ccsetup563.exe
2020-02-06 19:24 - 2020-02-06 19:24 - 001790024 _____ (Malwarebytes) C:\Users\SunSh4d0W\Downloads\JRT.exe
2020-02-06 19:24 - 2020-02-06 19:24 - 000002896 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-02-06 19:24 - 2020-02-06 19:24 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-02-06 19:24 - 2020-02-06 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-02-06 19:24 - 2020-02-06 19:24 - 000000000 ____D C:\Program Files\CCleaner
2020-02-06 13:35 - 2020-02-06 13:35 - 000000000 ____D C:\Users\SunSh4d0W\AppData\Local\NPE
2020-02-03 18:02 - 2020-02-03 18:02 - 000158638 _____ C:\Users\SunSh4d0W\Downloads\BORRADOR_CONTRATO_DE_TRABAJO_AGUS.pdf
2020-02-01 00:48 - 2020-02-01 00:48 - 000288874 _____ C:\Users\SunSh4d0W\Downloads\MINIONS_-_BASICO (1).pdf
2020-01-25 01:12 - 2020-01-25 01:12 - 000000000 ____D C:\Users\SunSh4d0W\AppData\LocalLow\Riot Games
2020-01-25 01:11 - 2020-01-25 01:11 - 068510896 _____ (Riot Games, Inc.) C:\Users\SunSh4d0W\Downloads\Legends_Of_Runeterra_Installer.exe
2020-01-25 01:11 - 2020-01-25 01:11 - 000001511 _____ C:\Users\SunSh4d0W\Desktop\Legends of Runeterra.lnk
2020-01-25 01:11 - 2020-01-25 01:11 - 000000000 ____D C:\Users\SunSh4d0W\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Riot Games
2020-01-20 21:01 - 2020-02-06 20:14 - 000000000 ____D C:\Users\SunSh4d0W\AppData\Roaming\Guilded
2020-01-20 21:01 - 2020-02-02 13:36 - 000002291 _____ C:\Users\SunSh4d0W\Desktop\Guilded.lnk
2020-01-20 21:01 - 2020-02-02 13:36 - 000000000 ____D C:\Users\SunSh4d0W\AppData\Local\guilded-updater
2020-01-20 21:01 - 2020-01-20 21:01 - 000002299 _____ C:\Users\SunSh4d0W\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Guilded.lnk
2020-01-20 21:00 - 2020-01-20 21:00 - 051917064 _____ (Guilded, Inc.) C:\Users\SunSh4d0W\Downloads\Guilded-Win_v_591a1c4f973bd1f1657ff4b8319fad5av_1fccc183246351747213b55ba0b74dcae052.26dc97d5800df31f10ad8f1dbabce5cb475bb97a045fc8273bb27d6eb2b7d095.exe
2020-01-16 21:59 - 2020-01-16 21:59 - 000322437 _____ C:\Users\SunSh4d0W\Downloads\MINIONS_-_CONTROL_DE_LINEAS (1).pdf
2020-01-16 00:05 - 2020-01-16 00:05 - 025900032 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 022627840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 018020352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 009928208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-01-16 00:05 - 2020-01-16 00:05 - 008012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 007754752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 007600448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 007016448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 006520480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 005913600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 003729408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-01-16 00:05 - 2020-01-16 00:05 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 002870784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 002801152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-01-16 00:05 - 2020-01-16 00:05 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-01-16 00:05 - 2020-01-16 00:05 - 002561536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 002494464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 002473976 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 001985928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 001697280 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 001655880 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 001610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 001399096 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-01-16 00:05 - 2020-01-16 00:05 - 001330952 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 001106944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 001072952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-01-16 00:05 - 2020-01-16 00:05 - 001051664 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 001020032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000852480 _____ (Microsoft Corporation) 
C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000851456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-01-16 00:05 - 2020-01-16 00:05 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000678712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-01-16 00:05 - 2020-01-16 00:05 - 000646144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000571392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-01-16 00:05 - 2020-01-16 00:05 - 000542496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000432256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-01-16 00:05 - 2020-01-16 00:05 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-01-16 00:05 - 2020-01-16 00:05 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000363840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-01-16 00:05 - 2020-01-16 00:05 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-01-16 00:05 - 2020-01-16 00:05 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV1.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-01-16 00:05 - 2020-01-16 00:05 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-01-16 00:05 - 2020-01-16 00:05 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti_ci.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000162696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2020-01-16 00:05 - 2020-01-16 00:05 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiadss.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000127520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiadss.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000089536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiatrace.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-01-16 00:05 - 2020-01-16 00:05 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-01-16 00:04 - 2020-01-16 00:05 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-01-16 00:04 - 2020-01-16 00:04 - 000379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-01-16 00:04 - 2020-01-16 00:04 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-01-16 00:04 - 2020-01-16 00:04 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2020-01-16 00:04 - 2020-01-16 00:04 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2020-01-16 00:04 - 2020-01-16 00:04 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-01-16 00:04 - 2020-01-16 00:04 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2020-01-16 00:04 - 2020-01-16 00:04 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2020-01-16 00:04 - 2020-01-16 00:04 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2020-01-16 00:04 - 2020-01-16 00:04 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2020-01-16 00:04 - 2020-01-16 00:04 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2020-01-16 00:04 - 2020-01-16 00:04 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-01-16 00:04 - 2020-01-16 00:04 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2020-01-16 00:04 - 2020-01-16 00:04 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-01-16 00:01 - 2019-12-10 06:15 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-01-16 00:01 - 2019-12-10 05:59 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-01-15 01:21 - 2020-01-15 01:21 - 000003130 _____ C:\Users\SunSh4d0W\Downloads\LoG_Game_EUW_4365896615_live.bat
2020-01-13 15:11 - 2020-01-13 15:12 - 199333427 _____ C:\Users\SunSh4d0W\Downloads\3221_2.mp4
2020-01-11 17:18 - 2020-01-11 17:18 - 000000000 ____D C:\Users\SunSh4d0W\AppData\Local\STAR WARS Battlefront II
2020-01-10 23:08 - 2020-01-10 23:08 - 000000222 _____ C:\Users\SunSh4d0W\Desktop\NARUTO SHIPPUDEN Ultimate Ninja STORM 4.url
2020-01-09 23:48 - 2020-01-09 23:48 - 000000000 ____D C:\Users\SunSh4d0W\AppData\Local\StreetFighterV
2020-01-08 14:53 - 2020-01-08 14:53 - 000000222 _____ C:\Users\SunSh4d0W\Desktop\Street Fighter V.url

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-02-06 20:18 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-02-06 20:18 - 2017-10-23 17:55 - 000000000 ____D C:\Users\SunSh4d0W\AppData\Local\CrashDumps
2020-02-06 20:15 - 2019-09-28 04:10 - 001773366 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-02-06 20:15 - 2019-03-19 12:59 - 000788560 _____ C:\WINDOWS\system32\perfh00A.dat
2020-02-06 20:15 - 2019-03-19 12:59 - 000155850 _____ C:\WINDOWS\system32\perfc00A.dat
2020-02-06 20:15 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
2020-02-06 20:14 - 2019-12-13 00:34 - 000000000 ____D C:\Users\SunSh4d0W\AppData\Roaming\Blitz
2020-02-06 20:14 - 2017-10-20 03:06 - 000000000 ____D C:\ProgramData\NVIDIA
2020-02-06 20:13 - 2019-12-06 21:46 - 000000000 ____D C:\WINDOWS\system32\Tasks\Norton Security
2020-02-06 20:13 - 2019-03-23 20:06 - 000000000 ____D C:\Users\SunSh4d0W\AppData\Roaming\uTorrent Web
2020-02-06 20:09 - 2019-03-29 09:29 - 000000000 ____D C:\Users\SunSh4d0W\AppData\Local\BitTorrentHelper
2020-02-06 20:09 - 2018-07-18 20:19 - 000000000 ____D C:\Program Files (x86)\Steam
2020-02-06 20:09 - 2017-10-04 12:42 - 000000000 ____D C:\Users\SunSh4d0W\Documents\Youcam
2020-02-06 20:08 - 2019-09-28 04:07 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-02-06 20:08 - 2019-03-19 05:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-02-06 20:08 - 2019-03-11 22:09 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-02-06 20:08 - 2017-10-04 12:38 - 000000000 ____D C:\Program Files (x86)\CyberLink
2020-02-06 19:41 - 2017-11-03 14:08 - 000000000 ____D C:\ProgramData\Nero
2020-02-06 19:37 - 2019-09-28 04:07 - 000004228 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{80BFEE05-A1C3-4122-9187-79C2CE339C8B}
2020-02-06 19:37 - 2018-03-13 21:44 - 000000000 ____D C:\temp
2020-02-06 19:31 - 2019-09-27 19:21 - 000000000 ___DC C:\WINDOWS\Panther
2020-02-06 19:31 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-02-06 19:31 - 2018-02-06 20:15 - 000000000 ____D C:\Users\SunSh4d0W\AppData\Roaming\uTorrent
2020-02-06 19:31 - 2017-10-23 21:20 - 000000000 ____D C:\Users\SunSh4d0W\AppData\Roaming\TS3Client
2020-02-06 19:26 - 2019-03-19 05:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-02-06 17:44 - 2017-10-20 18:28 - 000000000 ____D C:\Users\SunSh4d0W\AppData\Roaming\discord
2020-02-06 13:35 - 2017-10-04 06:24 - 000000000 ____D C:\ProgramData\Norton
2020-02-06 13:21 - 2017-12-30 04:38 - 000000000 ____D C:\ProgramData\boost_interprocess
2020-02-06 13:16 - 2019-04-21 11:38 - 000000000 ____D C:\Users\SunSh4d0W\Documents\Wondershare Filmora 9
2020-02-06 13:15 - 2018-07-07 16:32 - 000000000 ____D C:\Users\SunSh4d0W\Documents\RiftAnalyst
2020-02-06 13:15 - 2017-11-27 19:16 - 000000000 ____D C:\Users\SunSh4d0W\Documents\Wondershare Filmora
2020-02-06 12:52 - 2018-03-13 23:31 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2020-02-06 12:46 - 2019-09-28 04:03 - 000000000 ____D C:\Users\SunSh4d0W
2020-02-06 12:40 - 2018-11-01 19:26 - 000000000 ____D C:\Users\SunSh4d0W\Desktop\WhatsApp Images
2020-02-06 12:39 - 2018-11-01 19:28 - 000000000 ____D C:\Users\SunSh4d0W\Desktop\Camera
2020-02-06 12:30 - 2019-10-30 20:44 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-02-06 12:28 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-02-06 12:19 - 2019-09-28 04:00 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-02-06 12:19 - 2019-03-19 05:37 - 000008192 _____ C:\WINDOWS\system32\config\ELAM
2020-02-06 00:58 - 2019-12-13 00:34 - 000000000 ____D C:\Users\SunSh4d0W\AppData\Roaming\Blitz-helpers
2020-02-06 00:02 - 2019-12-13 00:34 - 000002245 _____ C:\Users\SunSh4d0W\Desktop\Blitz.lnk
2020-02-06 00:02 - 2019-12-13 00:34 - 000000000 ____D C:\Users\SunSh4d0W\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blitz Inc
2020-02-06 00:02 - 2019-12-13 00:34 - 000000000 ____D C:\Users\SunSh4d0W\AppData\Local\Blitz
2020-02-05 10:27 - 2019-09-28 04:07 - 000003622 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-02-05 10:27 - 2019-09-28 04:07 - 000003498 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-02-05 02:05 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\NDF
2020-02-05 00:11 - 2019-12-10 00:01 - 000000346 _____ C:\Users\SunSh4d0W\Desktop\Primer Honor.txt
2020-02-04 23:56 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-02-03 14:47 - 2019-06-13 19:58 - 000000000 ____D C:\ProgramData\Intel
2020-01-25 01:12 - 2019-10-10 01:10 - 000000000 ____D C:\Users\SunSh4d0W\AppData\Local\Riot Games
2020-01-24 02:28 - 2019-12-06 21:46 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
2020-01-24 02:28 - 2017-10-04 06:30 - 000002408 _____ C:\Users\Public\Desktop\Norton Security.lnk
2020-01-21 15:45 - 2019-09-28 04:07 - 000004634 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player PPAPI Notifier
2020-01-21 15:45 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2020-01-21 15:45 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Macromed
2020-01-21 00:58 - 2018-04-06 15:24 - 000000000 ____D C:\Users\SunSh4d0W\AppData\Local\osu!
2020-01-20 14:01 - 2017-10-22 12:59 - 000001583 _____ C:\Users\SunSh4d0W\Desktop\LeagueClient - Acceso directo.lnk
2020-01-19 13:49 - 2019-09-28 04:07 - 000003388 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3500290319-3602715883-2664233041-1001
2020-01-19 13:49 - 2019-09-28 04:03 - 000002413 _____ C:\Users\SunSh4d0W\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-01-19 13:49 - 2017-10-04 06:19 - 000000000 ___RD C:\Users\SunSh4d0W\OneDrive
2020-01-17 00:17 - 2017-10-04 06:22 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-01-17 00:17 - 2017-10-04 06:22 - 000002258 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-01-16 19:17 - 2017-11-17 08:38 - 000000000 ____D C:\Users\SunSh4d0W\AppData\Local\Packages
2020-01-16 13:43 - 2019-09-28 04:00 - 000336880 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-01-16 03:05 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-01-16 03:05 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-01-16 03:05 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-01-16 03:05 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-01-16 00:10 - 2017-10-20 03:16 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-01-16 00:06 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-01-16 00:06 - 2017-10-20 03:16 - 120202352 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-01-14 18:53 - 2018-07-18 20:22 - 000000000 ____D C:\Users\SunSh4d0W\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2020-01-11 17:41 - 2017-10-19 23:13 - 000000000 ____D C:\ProgramData\Origin
2020-01-11 17:18 - 2017-10-22 13:15 - 000000000 ____D C:\Users\SunSh4d0W\AppData\Roaming\Origin
2020-01-11 17:07 - 2018-02-08 21:48 - 000001033 _____ C:\Users\Public\Desktop\STAR WARS Battlefront II.lnk
2020-01-11 15:48 - 2017-10-22 13:13 - 000000000 ____D C:\Users\SunSh4d0W\AppData\Local\Origin
2020-01-11 01:44 - 2018-05-06 18:56 - 000000000 ____D C:\Users\SunSh4d0W\AppData\Local\D3DSCache

==================== Archivos en la raíz de algunos directorios ========

2019-07-18 13:15 - 2019-07-18 13:15 - 000007598 _____ () C:\Users\SunSh4d0W\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)

==================== Final de FRST.txt ========================
Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 02-02-2020 02
Ejecutado por SunSh4d0W (06-02-2020 20:22:22)
Ejecutado desde C:\Users\SunSh4d0W\Downloads
Windows 10 Home Versión 1903 18362.592 (X64) (2019-09-28 03:07:22)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================

Administrador (S-1-5-21-3500290319-3602715883-2664233041-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3500290319-3602715883-2664233041-503 - Limited - Disabled)
Invitado (S-1-5-21-3500290319-3602715883-2664233041-501 - Limited - Disabled)
SunSh4d0W (S-1-5-21-3500290319-3602715883-2664233041-1001 - Administrator - Enabled) => C:\Users\SunSh4d0W
WDAGUtilityAccount (S-1-5-21-3500290319-3602715883-2664233041-504 - Limited - Disabled)

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Norton Security (Disabled - Up to date) {A2708B76-6835-6565-CB96-694212954A75}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Norton Security (Enabled) {9A4B0A53-225A-643D-E0C9-C077EC460D0E}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

µTorrent (HKU\S-1-5-21-3500290319-3602715883-2664233041-1001\...\uTorrent) (Version: 3.5.5.45146 - BitTorrent Inc.)
Actualización de NVIDIA 38.0.2.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.2.0 - NVIDIA Corporation) Hidden
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.321 - Adobe)
aTube Catcher versión 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
AutoFirma (HKLM-x32\...\AutoFirma) (Version: 1.6.5 - Gobierno de España)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Battlefield™ 1 (HKLM-x32\...\{335B50BC-6130-4BAF-9A6A-F1561270587B}) (Version: 1.0.51.47047 - Electronic Arts)
Blitz (HKU\S-1-5-21-3500290319-3602715883-2664233041-1001\...\Blitz) (Version: 1.6.16 - Blitz Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.63 - Piriform)
Citra (HKU\S-1-5-21-3500290319-3602715883-2664233041-1001\...\{852cec7e-d9b0-4445-badb-15754c5105c9}) (Version: 1.0.0 - Citra Team)
Citra (HKU\S-1-5-21-3500290319-3602715883-2664233041-1001\...\{96017655-3db3-4716-ab9a-8636282a41f9}) (Version: 1.0.0 - Citra Team)
CLOSERS (HKU\S-1-5-21-3500290319-3602715883-2664233041-1001\...\EME_GAME_closers) (Version:  - Naddic)
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
Discord (HKU\S-1-5-21-3500290319-3602715883-2664233041-1001\...\Discord) (Version: 0.0.305 - Discord Inc.)
En Masse Launcher (HKLM-x32\...\{5d5e6f2b-6c03-4f96-8cd7-c16318764bc8}_is1) (Version: 1.0 - En Masse Entertainment)
Epic Games Launcher (HKLM-x32\...\{BF267CB6-EC73-4AA9-991E-7BEA0B87419B}) (Version: 1.1.144.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
FIFA 17 (HKLM-x32\...\{8C0DD062-B659-409C-9AB7-8EBD1D64D2EB}) (Version: 1.0.48.30259 - Electronic Arts)
FIFA 19 (HKLM-x32\...\{3391E07D-8484-4124-817E-FCBDA859FD62}) (Version: 1.0.61.54442 - Electronic Arts)
Free Hide Folder (HKLM-x32\...\Free Hide Folder) (Version:  - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.130 - Google LLC)
Google Drive (HKLM-x32\...\{A8DC81F2-D365-4248-892A-FA3B5951F731}) (Version: 2.34.9392.7803 - Google, Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.441 - Google LLC) Hidden
Guilded 1.0.944563-release (HKU\S-1-5-21-3500290319-3602715883-2664233041-1001\...\{37acac95-e961-5909-9d05-c98f2db949a9}) (Version: 1.0.944563-release - Guilded, Inc.)
Hextech Repair Tool (HKLM-x32\...\{7F9A97E6-E666-11E5-B582-B88687E82322}) (Version: 1.1.91 - Riot Games, Inc.)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 25.20.100.6373 - Intel Corporation)
Kinect for Windows Speech Recognition Language Pack (en-AU) (HKLM-x32\...\{48CEC0A3-AE10-4EE3-AC62-76D3D58792E5}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-CA) (HKLM-x32\...\{9C5505DA-F9C1-46CB-9F8F-AC38F8EA518A}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-GB) (HKLM-x32\...\{A0186231-0A8B-455A-8A25-B64AABCC11A6}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-IE) (HKLM-x32\...\{998D5259-3BED-4710-98FF-D63387B5429E}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-NZ) (HKLM-x32\...\{07FC9CAD-FCEC-4186-BB83-EF7CCC9372BA}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-US) (HKLM-x32\...\{8AAA44BB-487E-4D01-AF76-484ACB90DBFE}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (es-ES) (HKLM-x32\...\{F49AF755-A5C3-4252-A190-5772B2669C3B}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (es-MX) (HKLM-x32\...\{E8F3B154-03CE-4120-8B9D-9E83ED5F3AD7}) (Version: 11.0.7400.336 - Microsoft Corporation)
KRITIKA (HKU\S-1-5-21-3500290319-3602715883-2664233041-1001\...\EME_GAME_kritika) (Version:  - allm)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Legends of Runeterra (HKU\S-1-5-21-3500290319-3602715883-2664233041-1001\...\Riot Game bacon.live) (Version:  - Riot Games, Inc)
LINE (HKU\S-1-5-21-3500290319-3602715883-2664233041-1001\...\LINE) (Version: 5.21.3.2086 - LINE Corporation)
Logitech Capture (HKLM\...\Capture) (Version: 1.0.553 - Logitech)
Los Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.36.104.1020 - Electronic Arts Inc.)
Malwarebytes version 4.0.4.49 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.0.4.49 - Malwarebytes)
Mass Effect™ 2 (HKLM-x32\...\{75D84EF7-0D8C-4e70-B3FA-7B42A5D4E0EB}) (Version: 1.2.1604.0 - Electronic Arts)
Mass Effect™: Andromeda (HKLM-x32\...\{72BBCA87-9350-48BC-9E2F-6DBC1E80C993}) (Version: 1.0.0.10 - Electronic Arts)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.1512.1 - McAfee, LLC.)
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.67 - McAfee, LLC.)
Microsoft Office Hogar y Estudiantes 2016 - es-es (HKLM\...\HomeStudentRetail - es-es) (Version: 16.0.12430.20184 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3500290319-3602715883-2664233041-1001\...\OneDriveSetup.exe) (Version: 19.222.1110.0006 - Microsoft Corporation)
Microsoft Server Speech Platform Runtime (x64) (HKLM\...\{3B433087-E62E-4BF5-97F9-4AF6E1C2409C}) (Version: 11.0.7400.345 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (en-IN) (HKLM-x32\...\{3B06AC90-DE68-44A9-95EB-0A3C1AF1514F}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25008 (HKLM-x32\...\{f1e7e313-06df-4c56-96a9-99fdfd149c51}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
Mirror's Edge™ Catalyst (HKLM-x32\...\{12228a0d-f6ad-4691-82af-d2c643424468}) (Version: 1.0.3.47248 - Electronic Arts)
MSI Afterburner 4.6.1 (HKLM-x32\...\Afterburner) (Version: 4.6.1 - MSI Co., LTD)
MSI Gaming APP (HKLM-x32\...\{E0229316-E73B-484B-B9E0-45098AB38D8C}}_is1) (Version: 6.2.0.84 - MSI)
Need for Speed™ Most Wanted (HKLM-x32\...\{FB0127F3-985B-44CE-AE29-378CAF60B361}) (Version: 1.5.0.0 - Electronic Arts)
Norton Security (HKLM-x32\...\NGC) (Version: 22.19.9.63 - Symantec Corporation)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA Controlador de audio HD 1.3.38.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.21 - NVIDIA Corporation)
NVIDIA Controlador de gráficos 441.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 441.41 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.20.1.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.1.57 - NVIDIA Corporation)
NVIDIA Software del sistema PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 23.1.0 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12430.20120 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12430.20120 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12430.20184 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0C0A-0000-0000000FF1CE}) (Version: 16.0.12430.20120 - Microsoft Corporation) Hidden
OpenOffice 4.1.5 (HKLM-x32\...\{A93E0F8F-B3C1-4784-916D-15865808017B}) (Version: 4.15.9789 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.59.36848 - Electronic Arts, Inc.)
osu! (HKLM-x32\...\{ab26c196-6622-4e88-8680-ec660966b75f}) (Version: latest - ppy Pty Ltd)
Panel de control de NVIDIA 441.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 441.41 - NVIDIA Corporation) Hidden
Pokémon Trading Card Game Online (HKLM-x32\...\{18E6AFE7-EA8C-4119-BB2B-AFED042E879D}) (Version: 2.64.0 - The Pokémon Company International)
Razer Chroma SDK Core Components (HKLM-x32\...\Razer Chroma SDK) (Version: 2.10.0 - Razer Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.21.18.433 - Razer Inc.)
RivaTuner Statistics Server 7.2.2 (HKLM-x32\...\RTSS) (Version: 7.2.2 - Unwinder)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.5.1 - Samsung Electronics)
ScpToolkit (HKLM\...\{AC052048-9828-45E3-872B-04CE30A3B58B}) (Version: 1.6.238.16010 - Nefarius Software Solutions)
STAR WARS™ Battlefront™ II (HKLM-x32\...\{8a882ce0-0c0b-4eb2-850c-28ebadab4f50}) (Version: 1.1.8.2727 - Electronic Arts)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.1.6 - TeamSpeak Systems GmbH)
TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.1.18533 - TeamViewer)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
uTorrent Web (HKU\S-1-5-21-3500290319-3602715883-2664233041-1001\...\utweb) (Version: 1.0.7 - BitTorrent, Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.8 - VideoLAN)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
Wondershare Filmora(Build 8.5.0) (HKLM\...\Wondershare Filmora_is1) (Version:  - Wondershare Software)
Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare)

Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-06] (Autodesk Inc.)
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_6.4.7.0_x86__kgqvnymyfvs32 [2020-01-10] (king.com)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.156.300.0_x86__kgqvnymyfvs32 [2020-01-29] (king.com)
Complemento de Fotos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2018-10-31] (Microsoft Corporation)
Complemento de motor del medio de Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-09-08] (Microsoft Corporation)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa [2020-01-29] (Apple Inc.) [Startup Task]
Keeper - Password Manager & Secure File Storage -> C:\Program Files\WindowsApps\KeeperSecurityInc.Keeper_14.0.33.0_x64__kejf07qmg0jnm [2019-07-29] (Keeper Security Inc)
March of Empires: War of Lords -> C:\Program Files\WindowsApps\A278AB0D.MarchofEmpires_4.5.2.1_x86__h6adky7gbf63m [2020-01-15] (Gameloft.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-12] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-12] (Microsoft Corporation) [MS Ad]
Microsoft News: Noticias destacadas en español -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.35.20273.0_x64__8wekyb3d8bbwe [2020-02-04] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.6.1224.0_x64__8wekyb3d8bbwe [2020-02-01] (Microsoft Studios) [MS Ad]
Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.14.2001.0_x64__8wekyb3d8bbwe [2020-01-29] (Microsoft Studios)
MSN El Tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-19] (Microsoft Corporation) [MS Ad]
Plex -> C:\Program Files\WindowsApps\CAF9E577.Plex_3.2.20.0_x64__aam28m9va5cke [2018-03-13] (Plex)

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [  OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.19.9.63\buShell.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.19.9.63\buShell.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.19.9.63\buShell.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Ningún archivo
ShellIconOverlayIdentifiers-x32: [  OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.19.9.63\buShell.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [  OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.19.9.63\buShell.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [  OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.19.9.63\buShell.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers1: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.19.9.63\buShell.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} =>  -> Ningún archivo
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google Inc -> Google)
ContextMenuHandlers1: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.19.9.63\NavShExt.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} =>  -> Ningún archivo
ContextMenuHandlers2: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.19.9.63\NavShExt.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Users\SunSh4d0W\Desktop\mbshlext.dll [2020-02-06] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google Inc -> Google)
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} =>  -> Ningún archivo
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-11-20] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.19.9.63\buShell.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Users\SunSh4d0W\Desktop\mbshlext.dll [2020-02-06] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.19.9.63\NavShExt.dll [2019-11-16] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Lista blanca) ====================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [Archivo no firmado]
HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-18] (Fox Magic Software) [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [Archivo no firmado]

==================== Accesos directos & WMI ========================

==================== Módulos cargados (Lista blanca) =============

2014-05-02 05:55 - 2014-05-02 05:55 - 000185344 _____ () [Archivo no firmado] A:\irrKlang\amd64\ikpflac.dll
2014-05-02 05:05 - 2014-05-02 05:05 - 000173056 _____ () [Archivo no firmado] A:\irrKlang\amd64\ikpmp3.dll
2014-05-02 10:52 - 2014-05-02 10:52 - 000599040 _____ () [Archivo no firmado] A:\irrKlang\amd64\irrKlang.NET4.dll
2019-07-18 14:11 - 2016-04-20 13:12 - 000772608 _____ () [Archivo no firmado] C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\Lib\USB_DLL.dll
2020-01-18 22:35 - 2020-01-18 22:35 - 000315392 _____ () [Archivo no firmado] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ReactiveSockets\b8cf1dd7874ed1a6a1474132dd66f1a4\ReactiveSockets.ni.dll
2015-08-28 19:16 - 2015-08-28 19:16 - 003496448 _____ (akeo.ie) [Archivo no firmado] A:\libwdi\amd64\libwdi.dll
2020-01-18 22:35 - 2020-01-18 22:35 - 000356864 _____ (Benjamin Höglinger) [Archivo no firmado] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Libarius\edf76e457a2ba99a2027d1667240cb27\Libarius.ni.dll
2020-01-18 22:34 - 2020-01-18 22:34 - 001546240 _____ (dbreeze.tiesky.com) [Archivo no firmado] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DBreeze\a6a85b6623dd22d338b64ae6aa35e458\DBreeze.ni.dll
2019-07-18 14:11 - 2015-06-23 15:41 - 000082432 _____ (Fintek) [Archivo no firmado] C:\Program Files (x86)\MSI\Gaming APP\Lib\FintekUSBDll.dll
2020-01-18 22:35 - 2020-01-18 22:35 - 000760320 _____ (Galos) [Archivo no firmado] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CSScriptLibrary\b3160f2cee0944d7a64a6c725791a90a\CSScriptLibrary.ni.dll
2020-01-18 22:35 - 2020-01-18 22:35 - 000629760 _____ (Illusory Studios LLC) [Archivo no firmado] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\HidSharp\7cc71711228e725943aee1a920ec2f28\HidSharp.ni.dll
2019-12-11 11:20 - 2019-12-11 11:20 - 000284160 _____ (MadMilkman) [Archivo no firmado] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\MadMilkman.Ini\b2781ecb7ba46f8b1addbe877b4299f5\MadMilkman.Ini.ni.dll
2019-12-11 11:20 - 2019-12-11 11:20 - 000150528 _____ (michaelnoonan) [Archivo no firmado] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\WindowsInput\f1be92e2b5d22af9f16d76a3b07ccba4\WindowsInput.ni.dll
2020-01-18 22:35 - 2020-01-18 22:35 - 005551616 _____ (Mono development team) [Archivo no firmado] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Mono.CSharp\f4068a961b7dff160613d69438eccdd0\Mono.CSharp.ni.dll
2020-01-18 22:35 - 2020-01-18 22:35 - 002821632 _____ (Newtonsoft) [Archivo no firmado] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Newtonsoft.Json\3ac7076226b50f99b4591eede6c8893b\Newtonsoft.Json.ni.dll
2020-01-18 22:35 - 2020-01-18 22:35 - 000159744 _____ (Richard Deeming) [Archivo no firmado] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Trinet.Core.IO.Ntfs\1a35ec631ad2806dde288ca2b66d2e96\Trinet.Core.IO.Ntfs.ni.dll
2020-01-18 22:34 - 2020-01-18 22:34 - 000164352 _____ (Scarlet.Crush Productions) [Archivo no firmado] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ScpControl.Shared\4c1492af09f5f0f338c3497286b13b68\ScpControl.Shared.ni.dll
2020-01-18 22:34 - 2020-01-18 22:34 - 001137664 _____ (Scarlet.Crush Productions) [Archivo no firmado] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ScpControl\1dec81d48c045c6345e63ecfa02b5ea5\ScpControl.ni.dll
2020-01-18 22:34 - 2020-01-18 22:34 - 000978432 _____ (The Apache Software Foundation) [Archivo no firmado] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\log4net\54aabd42cc7a59baeead372ada9837bf\log4net.ni.dll
2017-10-31 23:08 - 2020-01-11 15:47 - 001277440 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Archivo no firmado] A:\Origin\LIBEAY32.dll
2017-10-31 23:08 - 2020-01-11 15:47 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Archivo no firmado] A:\Origin\ssleay32.dll
2017-10-31 23:08 - 2020-01-11 15:47 - 001611264 _____ (The Qt Company Ltd) [Archivo no firmado] A:\Origin\platforms\qwindows.dll
2020-01-16 14:55 - 2020-01-11 15:47 - 005487104 _____ (The Qt Company Ltd) [Archivo no firmado] A:\Origin\Qt5Core.dll
2020-01-16 14:55 - 2020-01-11 15:47 - 005841920 _____ (The Qt Company Ltd) [Archivo no firmado] A:\Origin\Qt5Gui.dll
2020-01-16 14:55 - 2020-01-11 15:47 - 001179136 _____ (The Qt Company Ltd) [Archivo no firmado] A:\Origin\Qt5Network.dll
2020-01-16 14:55 - 2020-01-11 15:47 - 005089792 _____ (The Qt Company Ltd) [Archivo no firmado] A:\Origin\Qt5Widgets.dll
2020-01-16 14:55 - 2020-01-11 15:47 - 000184832 _____ (The Qt Company Ltd) [Archivo no firmado] A:\Origin\Qt5Xml.dll

==================== Alternate Data Streams (Lista blanca) ========

(Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.)

AlternateDataStreams: C:\Users\Public\AppData:CSM [476]

==================== Modo Seguro (Lista blanca) ==================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Asociación (Lista blanca) =================

==================== Internet Explorer sitios de confianza/restringidos ==========

==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2017-03-18 22:03 - 2019-11-16 00:26 - 000000887 _____ C:\WINDOWS\system32\drivers\etc\hosts
0.0.0.1	mssplus.mcafee.com

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Razer Chroma SDK\bin;C:\Program Files\Razer Chroma SDK\bin;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Users\SunSh4d0W\AppData\Local\Microsoft\WindowsApps;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files\AutoFirma\AutoFirma
HKU\S-1-5-21-3500290319-3602715883-2664233041-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\SunSh4d0W\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{7a41c9b7-c40f-4c17-a407-10ca0b7d5517}.jpg
DNS Servers: El medio no está conectado a internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Firewall de Windows está habilitado.

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [{8AEAA6B3-4846-4D63-A8A5-DF6247842ECA}] => (Allow) A:\Program Files (x86)\Origin Games\FIFA 19\FIFA 19\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{FB12E001-9B68-4DF4-87C3-2F78E823088B}] => (Allow) A:\Program Files (x86)\Origin Games\FIFA 19\FIFA 19\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{0E35AC20-0590-4514-92D8-28900F700839}] => (Allow) A:\F1\steamapps\common\F1 2019\F1_2019.exe (Codemasters Software Company Limited) [Archivo no firmado]
FirewallRules: [{78163A47-CB42-4C2C-9D07-E6075536B95F}] => (Allow) A:\F1\steamapps\common\F1 2019\F1_2019.exe (Codemasters Software Company Limited) [Archivo no firmado]
FirewallRules: [{EDE4B24B-25BA-40DC-A141-429A174D3E62}] => (Allow) A:\F1\steamapps\common\F1 2019\F1_2019_dx12.exe (Codemasters Software Company Limited) [Archivo no firmado]
FirewallRules: [{BC26C4C8-E2AD-486A-BB1E-D64918D02AA0}] => (Allow) A:\F1\steamapps\common\F1 2019\F1_2019_dx12.exe (Codemasters Software Company Limited) [Archivo no firmado]
FirewallRules: [{DC9523F6-DB6F-403A-9921-45BFD410C267}] => (Allow) A:\F1\steamapps\common\Sekiro\Artwork_MiniSoundtrack\DigitalArtwork_MiniSoundtrack.exe (Activision Publishing Inc -> DIGITAL ARTWORK & MINI SOUNDTRACK)
FirewallRules: [{1BF0B362-8C8E-4002-89E9-1D47BB77FDC3}] => (Allow) A:\F1\steamapps\common\Sekiro\Artwork_MiniSoundtrack\DigitalArtwork_MiniSoundtrack.exe (Activision Publishing Inc -> DIGITAL ARTWORK & MINI SOUNDTRACK)
FirewallRules: [{D844A1FC-4F52-4742-BBDE-83A1FC381ED9}] => (Allow) A:\F1\steamapps\common\Sekiro\sekiro.exe (Activision Publishing Inc -> FromSoftware, Inc.)
FirewallRules: [{A99955EE-FA1C-4028-A28D-64F00E7C49E5}] => (Allow) A:\F1\steamapps\common\Sekiro\sekiro.exe (Activision Publishing Inc -> FromSoftware, Inc.)
FirewallRules: [{6EA99FF4-7673-420F-8F95-CEFCD8EC16D8}] => (Allow) A:\F1\steamapps\common\Mordhau\Mordhau.exe (Epic Games, Inc.) [Archivo no firmado]
FirewallRules: [{EAD28530-9B30-4ECB-BE97-5FB28178B86D}] => (Allow) A:\F1\steamapps\common\Mordhau\Mordhau.exe (Epic Games, Inc.) [Archivo no firmado]
FirewallRules: [UDP Query User{2BFD8C94-0C11-4551-95D0-F0705491BE9E}C:\users\sunsh4d0w\appdata\roaming\utorrent web\utweb.exe] => (Block) C:\users\sunsh4d0w\appdata\roaming\utorrent web\utweb.exe (Jenkins Win Client Build SPC -> BitTorrent Inc.) [Archivo no firmado]
FirewallRules: [TCP Query User{262E96FB-2D54-44CD-B7DC-943B22D21834}C:\users\sunsh4d0w\appdata\roaming\utorrent web\utweb.exe] => (Block) C:\users\sunsh4d0w\appdata\roaming\utorrent web\utweb.exe (Jenkins Win Client Build SPC -> BitTorrent Inc.) [Archivo no firmado]
FirewallRules: [{928AC6C1-FFBB-43E0-A055-C82D17427BDA}] => (Allow) C:\Users\SunSh4d0W\AppData\Roaming\uTorrent Web\utweb.exe (Jenkins Win Client Build SPC -> BitTorrent Inc.) [Archivo no firmado]
FirewallRules: [{1494A047-CD47-402E-AAE9-DF7C52F86A89}] => (Allow) C:\Users\SunSh4d0W\AppData\Roaming\uTorrent Web\utweb.exe (Jenkins Win Client Build SPC -> BitTorrent Inc.) [Archivo no firmado]
FirewallRules: [{B32DA7F9-80C6-4596-AF92-3F0CA8AD8AE5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{4273A5E0-661F-4F33-BADB-95071BAE4A80}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{B00CEE1E-85D5-4144-BB11-88B6EB834270}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{C1BB6990-9B11-401D-9930-A9DE98DE421F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{C63C24E8-52AC-45DE-BFBD-C78C9AF8C986}] => (Allow) A:\Program Files (x86)\Origin Games\FIFA 19\FIFA 19\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{F6C81C93-1E1E-4E7A-851A-9EC7DB4CB161}] => (Allow) A:\Program Files (x86)\Origin Games\FIFA 19\FIFA 19\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{1B9E9F15-958A-49CA-85DE-919F13872243}] => (Allow) A:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{519CD13D-3842-4221-B2C9-B113917151AF}] => (Allow) A:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{B8C4615D-60BF-42FE-8EC0-9F8DE9C77940}] => (Allow) A:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{82CC8F3F-2AD8-4924-92CA-40231A05C9F0}] => (Allow) A:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{CDE6A3C7-0EC5-4D72-8DA8-DDF68890566E}] => (Allow) A:\F1\steamapps\common\Devil May Cry HD Collection\dmcLauncher.exe (CAPCOM Co.,Ltd. -> )
FirewallRules: [{52B9FD8B-8E7F-4DAF-9A86-F04913465A77}] => (Allow) A:\F1\steamapps\common\Devil May Cry HD Collection\dmcLauncher.exe (CAPCOM Co.,Ltd. -> )
FirewallRules: [{961010BA-556B-49BF-8C03-2DB5210FFAEE}] => (Allow) A:\F1\steamapps\common\F1 2018\F1_2018.exe (Codemasters Software Company Limited) [Archivo no firmado]
FirewallRules: [{2098E8BC-81D1-4144-BBE8-0A51B732B580}] => (Allow) A:\F1\steamapps\common\F1 2018\F1_2018.exe (Codemasters Software Company Limited) [Archivo no firmado]
FirewallRules: [{F6D6133F-2316-4BA7-9815-5BD7EE29A279}] => (Allow) A:\F1\steamapps\common\Metin2\config.exe (WEBZEN Inc. -> )
FirewallRules: [{67C50F95-5B4D-413B-9A01-8F70935B5029}] => (Allow) A:\F1\steamapps\common\Metin2\config.exe (WEBZEN Inc. -> )
FirewallRules: [{29B741DE-BC20-48ED-ACB9-8DFED6B39736}] => (Allow) A:\F1\steamapps\common\Metin2\steam_launcher.exe (Gameforge 4D GmbH -> )
FirewallRules: [{A293A2D1-4B8A-49F9-9F15-067CBF59940B}] => (Allow) A:\F1\steamapps\common\Metin2\steam_launcher.exe (Gameforge 4D GmbH -> )
FirewallRules: [{59EBBBF5-C29F-402B-876D-80B50F3A5929}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{CBCDB2AE-6489-46ED-B688-4AFFACD054D1}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{D77B4C48-94A0-4E46-87C3-86C45EE8506D}] => (Allow) A:\F1\steamapps\common\Monster Hunter World\MonsterHunterWorld.exe (CAPCOM CO., LTD. -> )
FirewallRules: [{085DF8F7-E464-4152-9487-21635927EA0F}] => (Allow) A:\F1\steamapps\common\Monster Hunter World\MonsterHunterWorld.exe (CAPCOM CO., LTD. -> )
FirewallRules: [{688131E5-221D-4EAD-98FC-407BF2B91F78}] => (Allow) A:\F1\steamapps\common\TEKKEN 7\TEKKEN 7.exe () [Archivo no firmado]
FirewallRules: [{E7611805-576A-4232-9A9C-8A54BB29145D}] => (Allow) A:\F1\steamapps\common\TEKKEN 7\TEKKEN 7.exe () [Archivo no firmado]
FirewallRules: [{BA349997-49A5-4E22-A05E-BEB1EEB76007}] => (Allow) A:\Program Files (x86)\Origin Games\Mass Effect Andromeda\MassEffectAndromeda.exe (Electronic Arts -> Electronic Arts - BioWare)
FirewallRules: [{70D11CF4-3542-417B-B931-1847CC402F3E}] => (Allow) A:\Program Files (x86)\Origin Games\Mass Effect Andromeda\MassEffectAndromeda.exe (Electronic Arts -> Electronic Arts - BioWare)
FirewallRules: [{1484A2B4-9E34-44C2-BE28-97C9578CE8FC}] => (Allow) A:\Program Files (x86)\Origin Games\Mass Effect Andromeda\MassEffectAndromedaTrial.exe (Electronic Arts - BioWare) [Archivo no firmado]
FirewallRules: [{AF33EB32-5D1B-4573-AAEE-10ECAA8A8E50}] => (Allow) A:\Program Files (x86)\Origin Games\Mass Effect Andromeda\MassEffectAndromedaTrial.exe (Electronic Arts - BioWare) [Archivo no firmado]
FirewallRules: [{5DB663E4-1FC0-4C41-A33B-0CB392A66EED}] => (Allow) A:\F1\steamapps\common\ShadowOfWar\x64\ShadowOfWar.exe (WB Games Inc. -> WB Games, Inc.)
FirewallRules: [{F48C0A9E-E824-4B9B-BF4C-34427CF5CAF0}] => (Allow) A:\F1\steamapps\common\ShadowOfWar\x64\ShadowOfWar.exe (WB Games Inc. -> WB Games, Inc.)
FirewallRules: [{84A0BE35-D3E7-4BC0-A170-A12E1672AFDE}] => (Allow) A:\F1\steamapps\common\ONE PIECE BURNING BLOOD\OPBB.exe () [Archivo no firmado]
FirewallRules: [{910F7F8D-F36B-4CCF-971B-D5A2384BFE59}] => (Allow) A:\F1\steamapps\common\ONE PIECE BURNING BLOOD\OPBB.exe () [Archivo no firmado]
FirewallRules: [{EC375207-649D-4037-B773-DB4116055B83}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{EF4A61CF-705E-492C-B941-E1956573C8BB}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{CD3E24B8-8EA9-402B-96F6-02B8B9B0CDBF}] => (Allow) A:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{E7BA1EB5-5774-49DA-83F6-EF9791BD5FA5}] => (Allow) A:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{DB9CEEE3-A1E5-45B7-98EC-C899D8EB3BE0}] => (Allow) A:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{AA046E69-EDFD-4A71-9409-7A517FC63D0C}] => (Allow) A:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{AC1E35E2-E2F7-4FBD-95DB-623923141585}] => (Allow) A:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [{5BF9C759-DE9E-418F-8C6D-F9990D181D71}] => (Allow) A:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [{6E0956B6-6829-4F49-83D8-C0C5D07B6089}] => (Allow) A:\Program Files (x86)\Origin Games\Mass Effect 2\Binaries\MassEffect2.exe (Electronic Arts -> BioWare)
FirewallRules: [{F07B2EFD-D396-46BC-8685-393689A7DD85}] => (Allow) A:\Program Files (x86)\Origin Games\Mass Effect 2\Binaries\MassEffect2.exe (Electronic Arts -> BioWare)
FirewallRules: [{EEBB5DCA-8286-4F74-AA4B-351AD322DABB}] => (Allow) C:\Users\SunSh4d0W\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{31CE667D-40A1-4F62-B24B-B270294F3FB8}] => (Allow) C:\Users\SunSh4d0W\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{8A12BB6C-0F14-41C6-ABE7-242FFAD45DE9}] => (Allow) LPort=26789
FirewallRules: [{F03FFB3F-0141-482D-88FA-D34D30F35D09}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B0F03CE7-130E-4552-BD0A-1671D11271DA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A84BCE95-5CB8-4DAD-9E0F-3C94D6C025CF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{29E49141-89CD-45FF-9D10-89C77ACE7B07}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C0F3474F-85CF-40CC-ABE0-4E3057B5BAA4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9002C2F2-70EE-41EF-85AA-4B98B3A7BD22}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BC180104-C984-4F06-BB3B-C9B3976E6681}] => (Allow) A:\F1\steamapps\common\MK10\Binaries\Retail\MK10.exe (WARNER BROS. ENTERTAINMENT INC. -> )
FirewallRules: [{A4A0A010-423D-44A9-9277-1849227197D1}] => (Allow) A:\F1\steamapps\common\MK10\Binaries\Retail\MK10.exe (WARNER BROS. ENTERTAINMENT INC. -> )
FirewallRules: [{C3E06B7C-B136-40EE-9615-0846E6DD9621}] => (Allow) A:\F1\steamapps\common\MK10\Binaries\Retail\MKXLauncher.exe (WARNER BROS. ENTERTAINMENT INC. -> )
FirewallRules: [{870EFC5E-E712-4226-BFEB-3F87F8D74A36}] => (Allow) A:\F1\steamapps\common\MK10\Binaries\Retail\MKXLauncher.exe (WARNER BROS. ENTERTAINMENT INC. -> )
FirewallRules: [{43294FBF-5EDA-48B0-82A7-C49DA4A2FB48}] => (Allow) A:\F1\steamapps\common\StreetFighterV\StreetFighterV.exe (CAPCOM CO., LTD. -> )
FirewallRules: [{46C6C33B-9F62-4086-AB17-709169BBADAA}] => (Allow) A:\F1\steamapps\common\StreetFighterV\StreetFighterV.exe (CAPCOM CO., LTD. -> )
FirewallRules: [{85ADD76D-5CFF-469C-A95D-E06A1683403C}] => (Allow) A:\F1\steamapps\common\NARUTO SHIPPUDEN Ultimate Ninja STORM 4\NSUNS4.exe () [Archivo no firmado]
FirewallRules: [{DF10B508-1540-4441-BBF2-B511ED130177}] => (Allow) A:\F1\steamapps\common\NARUTO SHIPPUDEN Ultimate Ninja STORM 4\NSUNS4.exe () [Archivo no firmado]
FirewallRules: [{11177F10-EB7B-47A8-B00D-4462D8F63FAE}] => (Allow) A:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{78FD9C23-5611-4188-9102-3EF1556517DF}] => (Allow) A:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{6801C1D8-5AD3-498D-9632-030EA1144000}] => (Allow) A:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{106C514C-DD52-45A9-8A22-8F8219FD15D7}] => (Allow) A:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{83B64064-2122-47E8-8CCD-98D481AAF472}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{4D590F84-E21D-4DE5-A770-7290D93D2737}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D039F495-44FD-4428-AE89-82A98B1197CA}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DCF55F77-B6F1-413B-B1FA-AE9584251705}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9440E9F7-1C79-4F7E-9D93-8BCB65A30926}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{CB434CD0-D598-444E-8409-20E5DDC5D4C9}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{78FE8079-A52B-4452-B4EB-234C4CFCF31C}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{46ACD261-D1CF-4522-81EF-EC6E6C5F487B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E77034F1-0134-4D7B-BC28-7CBE8C1B3D9B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)

==================== Puntos de Restauración =========================

16-01-2020 00:01:12 Windows Update
06-02-2020 20:06:36 JRT Pre-Junkware Removal
06-02-2020 20:07:55 AdwCleaner_BeforeCleaning_06/02/2020_20:07:55
06-02-2020 20:14:03 JRT Pre-Junkware Removal

==================== Dispositivos defectuosos en el Administrador de dispositivos ============


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (02/06/2020 08:18:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: SearchUI.exe, versión: 10.0.18362.418, marca de tiempo: 0x5d995690
Nombre del módulo con errores: ucrtbase.dll, versión: 10.0.18362.387, marca de tiempo: 0x4361b720
Código de excepción: 0xc0000409
Desplazamiento de errores: 0x000000000006db8e
Identificador del proceso con errores: 0x2904
Hora de inicio de la aplicación con errores: 0x01d5dd20e0246436
Ruta de acceso de la aplicación con errores: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\System32\ucrtbase.dll
Identificador del informe: d92f58b4-0b06-4f01-a3ce-4d4ee8d73340
Nombre completo del paquete con errores: Microsoft.Windows.Cortana_1.13.0.18362_neutral_neutral_cw5n1h2txyewy
Identificador de aplicación relativa del paquete con errores: CortanaUI

Error: (02/06/2020 08:17:03 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Error al actualizar el estado de  a SECURITY_PRODUCT_STATE_ON.

Error: (02/06/2020 08:16:58 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Error al actualizar el estado de  a SECURITY_PRODUCT_STATE_ON.

Error: (02/06/2020 08:16:53 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Error al actualizar el estado de  a SECURITY_PRODUCT_STATE_ON.

Error: (02/06/2020 08:16:48 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Error al actualizar el estado de  a SECURITY_PRODUCT_STATE_ON.

Error: (02/06/2020 08:16:43 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Error al actualizar el estado de  a SECURITY_PRODUCT_STATE_ON.

Error: (02/06/2020 08:16:38 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Error al actualizar el estado de  a SECURITY_PRODUCT_STATE_ON.

Error: (02/06/2020 08:16:33 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Error al actualizar el estado de  a SECURITY_PRODUCT_STATE_ON.


Errores del sistema:
=============
Error: (02/06/2020 08:14:10 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio NVIDIA LocalSystem Container terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 6000 milisegundos: Reiniciar el servicio.

Error: (02/06/2020 08:14:09 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio NVIDIA Display Container LS terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 6000 milisegundos: Reiniciar el servicio.

Error: (02/06/2020 08:08:01 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Origin Web Helper Service se terminó de manera inesperada. Esto ha sucedido 1 veces.

Error: (02/06/2020 08:08:01 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio SCP DSx Service se terminó de manera inesperada. Esto ha sucedido 1 veces.

Error: (02/06/2020 08:08:01 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio NVIDIA LocalSystem Container terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 6000 milisegundos: Reiniciar el servicio.

Error: (02/06/2020 08:08:01 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Razer Game Scanner terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 5000 milisegundos: Reiniciar el servicio.

Error: (02/06/2020 08:08:01 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Servicio Hacer clic y ejecutar de Microsoft Office terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 0 milisegundos: Reiniciar el servicio.

Error: (02/06/2020 08:08:00 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio McAfee WebAdvisor terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 1 milisegundos: Reiniciar el servicio.


CodeIntegrity:
===================================

Date: 2020-02-06 20:13:41.374
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.19.9.63\symamsi.dll that did not meet the Windows signing level requirements.

Date: 2020-02-06 20:13:41.370
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.19.9.63\symamsi.dll that did not meet the Windows signing level requirements.

Date: 2020-02-06 20:13:41.364
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.19.9.63\symamsi.dll that did not meet the Windows signing level requirements.

Date: 2020-02-06 20:13:41.360
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.19.9.63\symamsi.dll that did not meet the Windows signing level requirements.

Date: 2020-02-06 20:13:41.348
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.19.9.63\symamsi.dll that did not meet the Windows signing level requirements.

Date: 2020-02-06 20:10:21.367
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.19.9.63\symamsi.dll that did not meet the Microsoft signing level requirements.

Date: 2020-02-06 20:10:21.360
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.19.9.63\symamsi.dll that did not meet the Microsoft signing level requirements.

Date: 2020-02-06 20:10:21.353
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.19.9.63\symamsi.dll that did not meet the Microsoft signing level requirements.

==================== Información de la memoria =========================== 

BIOS: American Megatrends Inc. 1009 07/23/2017
Placa base: ASUSTeK COMPUTER INC. PRIME Z270-A
Procesador: Intel(R) Core(TM) i7-7700K CPU @ 4.20GHz
Porcentaje de memoria en uso: 21%
RAM física total: 16322.8 MB
RAM física disponible: 12882.52 MB
Virtual total: 18754.8 MB
Virtual disponible: 14176.33 MB

==================== Unidades ================================

Drive a: (Documentos) (Fixed) (Total:931.51 GB) (Free:161.37 GB) NTFS
Drive c: () (Fixed) (Total:237.46 GB) (Free:130.44 GB) NTFS

\\?\Volume{710bd25f-0000-0000-0000-100000000000}\ (Reservado para el sistema) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS
\\?\Volume{710bd25f-0000-0000-0000-e07c3b000000}\ () (Fixed) (Total:0.52 GB) (Free:0.08 GB) NTFS

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: E0F7DDE0)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 238.5 GB) (Disk ID: 710BD25F)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=237.5 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=534 MB) - (Type=27)

==================== Final de Addition.txt =======================

Este es el ultimo

Bien… y ahora sigue estos pasos, :arrow_forward: MUY Importante :arrow_backward: Realiza una copia de seguridad del registro :

  • Para hacerlo descarga :arrow_forward: DelFix.exe(en tu escritorio).

  • Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona -Ejecutar como Administrador-).

  • Atención, ahora marca/selecciona únicamente la casilla :white_check_mark: Create registry backup, las demás casillas NO. :face_with_monocle:

  • Pulsar en Run.

Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.

:warning: Con los demás programas cerrados ve a :arrow_forward: Inicio :arrow_forward: Ejecutar :arrow_forward: y escribe Notepad.exe.

  • Ahora debes copiar y pegar los códigos/líneas que están en el interior del recuadro de más abajo, dentro del Notepad.
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Ningún archivo
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> Ningún archivo
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> Ningún archivo
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => -> Ningún archivo
AlternateDataStreams: C:\Users\Public\AppData:CSM [476]
HKU\S-1-5-21-3500290319-3602715883-2664233041-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2019-11-16]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.1512\SSScheduler.exe (McAfee, LLC -> McAfee, LLC.)
GroupPolicy: Restricción ? <==== ATENCIÓN
Task: {0F8B10EE-8E4C-4BDF-98B2-12B8F690727A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-14] (Piriform Software Ltd -> Piriform Software Ltd)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - Ningún archivo
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.1512\McCHSvc.exe [408416 2019-11-13] (McAfee, LLC -> McAfee, LLC.)
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END

Guárdalo bajo el nombre de FIXLIST.TXT en el escritorio :arrow_backward: Esto es muy importante.

:o: Nota :o: Es importante que la herramienta FRST.exe(Farbar Recovery Scanner Tool) y FIXLIST.TXT se encuentren en la misma ubicación (escritorio) o si no, no trabajara.

Y ahora usa el 2º MÉTODO: de esta Faq de Windows 8(aplicable a Windows 10) :arrow_forward: ¿Cómo iniciar Windows 8/8.1 en Modo Seguro?, para trabajar desde ese modo de windows.

  • Ejecuta FRST.exe.(Si usas Windows Vista/7/8 o 10, presiona clic derecho y seleccionas -Ejecutar como Administrador-).

  • Presionar el botón FIX/Corregir y aguardar a que termine.

  • La Herramienta guardara el reporte de reparación en el escritorio (FIXLOG.TXT).

Pegar el contenido de este fichero en tu próxima respuesta. :+1:

Reiniciar el equipo y comprobar su funcionamiento en relación al problema planteado y comentarlo.

Saludos.

Resultados de la corrección de Farbar Recovery Scan Tool (x64) Versión: 02-02-2020 02
Ejecutado por SunSh4d0W (07-02-2020 01:26:00) Run:1
Ejecutado desde C:\Users\SunSh4d0W\Desktop
Perfiles cargados: SunSh4d0W (Perfiles disponibles: SunSh4d0W)
Modo de Inicio: Safe Mode (with Networking)
==============================================

fixlist contenido:
*****************
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Ningún archivo
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> Ningún archivo
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> Ningún archivo
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => -> Ningún archivo
AlternateDataStreams: C:\Users\Public\AppData:CSM [476]
HKU\S-1-5-21-3500290319-3602715883-2664233041-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2019-11-16]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.1512\SSScheduler.exe (McAfee, LLC -> McAfee, LLC.)
GroupPolicy: Restricción ? <==== ATENCIÓN
Task: {0F8B10EE-8E4C-4BDF-98B2-12B8F690727A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-14] (Piriform Software Ltd -> Piriform Software Ltd)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - Ningún archivo
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.1512\McCHSvc.exe [408416 2019-11-13] (McAfee, LLC -> McAfee, LLC.)
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END
*****************

Error: El punto de restauración solamente puede ser creado en modo normal.
Procesos cerrados correctamente.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => eliminado correctamente
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\CLVDShellExt => eliminado correctamente
HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\CLVDShellExt => eliminado correctamente
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxDTCM => eliminado correctamente
C:\Users\Public\AppData => ":CSM" ADS eliminado correctamente
"HKU\S-1-5-21-3500290319-3602715883-2664233041-1001\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Smart Cleaning" => no encontrado
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk" => no encontrado
"C:\Program Files\McAfee Security Scan\3.11.1512\SSScheduler.exe" => no encontrado
C:\WINDOWS\system32\GroupPolicy\Machine => movido correctamente
C:\WINDOWS\system32\GroupPolicy\GPT.ini => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0F8B10EE-8E4C-4BDF-98B2-12B8F690727A}" => no encontrado
"C:\WINDOWS\System32\Tasks\CCleaner Update" => no encontrado
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CCleaner Update" => no encontrado
HKLM\Software\Classes\PROTOCOLS\Handler\sacore => eliminado correctamente
HKLM\SOFTWARE\Google\Chrome\Extensions\fheoggkfdfchfphceeifdbepaooicaho => no encontrado
HKLM\SOFTWARE\Google\Chrome\Extensions\iikflkcanblccfahdhdonehdalibjnif => eliminado correctamente
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\fheoggkfdfchfphceeifdbepaooicaho => no encontrado
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\iikflkcanblccfahdhdonehdalibjnif => eliminado correctamente
McComponentHostService => servicio no encontrado.
C:\Windows\System32\Drivers\etc\hosts => movido correctamente
Hosts restaurado correctamente.

========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
"HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
"HKU\S-1-5-21-3500290319-3602715883-2664233041-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-21-3500290319-3602715883-2664233041-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente


========= Final de RemoveProxy: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= Final de CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows


Adaptador de Ethernet Ethernet:

   Sufijo DNS espec¡fico para la conexi¢n. . : 
   V¡nculo: direcci¢n IPv6 local. . . : fe80::b43e:77a5:981b:f185%2
   Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.0.11
   M scara de subred . . . . . . . . . . . . : 255.255.255.0
   Puerta de enlace predeterminada . . . . . : 192.168.0.1

========= Final de CMD: =========


========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

========= Final de CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.

Unable to connect to BITS - 0x8007043c
El servicio no puede iniciarse en modo a prueba de errores



========= Final de CMD: =========


========= netsh advfirewall reset =========

Aceptar


========= Final de CMD: =========


========= netsh advfirewall set allprofiles state ON =========

Aceptar


========= Final de CMD: =========


========= netsh int ipv4 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= Final de CMD: =========


========= netsh int ipv6 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= Final de CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 13881872 B
Java, Flash, Steam htmlcache => 394407724 B
Windows/system/drivers => 452609 B
Edge => 1807037 B
Chrome => 405154111 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 0 B
SunSh4d0W => 157714951 B

RecycleBin => 78200024 B
EmptyTemp: => 1012.9 MB datos temporales eliminados.

================================


El sistema necesita reiniciarse.

==== Final de Fixlog 01:26:20 ====

De paso saber si eso tiene algo que ver con esto :confused:

Hola.

Cuando te salio ese mensaje de Norton estabas navegando por Internet y usabas Chrome…??

Te faltaría comentar como sigue el problema inicialmente planteado…??

Si, disculpa. Con el primer problema planteado no me ha vuelto a saltar el problema, así que creo que el problema estará eliminado, gracias!

Y lo segundo era mientras navegaba en chrome si.

Perfecto. :clap:

Y ahora para ese otro problema de Chrome realiza los siguientes pasos :

  • Escribes en la barra de direcciones chrome://settings/syncSetup

Y comprueba/desactiva la opción “Sincronizar todo” y después de hacerlo :

  • Escribes en la barra de direcciones chrome://settings/resetProfileSettings y aceptas la opción de “Restablecer la configuración”.

Despues de hacerlo cierras el navegador lo vuelves a iniciar y compruebas el problema.

Nos comentas resultados. :thinking:

Saludos.

Solucionado gracias! y perdona las molestias.

Perfecto @Augusto_Salini :+1: excelente, nos alegra ver que ya está el problema inicial completamente arreglado, ahora solo queda eliminar las herramientas usadas.

Para hacerlo descarga :arrow_forward: DelFix.exe en tu escritorio.

  • Doble clic para ejecutarlo. (Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona - Ejecutar como Administrador -).

  • Marca todas las casillas, y pulsas en Run

Se abrirá el informe (DelFix.txt), puedes cerrarlo.


Para cualquier otro problema, no dudes en volver a postear., ya sabes dónde estamos. :+1:

Tema Solucionado.

Saludos, Javier.