Desisntalar Spy Hunter 5 en windows 7

Hola, muy buenas. Como digo en el título, no se puede desinstalar Spy Hunter 5 del pc, con sistema operativo windows 7, de la forma normal (desinstalar programas en el panel de control) ¿Cómo podría hacerlo?

1 me gusta

hola @zeit85

No se puede…porque NO aparece en el panel de control de programas instalados o porque al hacerlo tienes algún problema…??

Saludos.

Desapareció del panel de control de programas instalados y sigue en el equipo (de hecho se inicia siempre). He visto que es un programa que está preparado para que no lo borres y no sé muy bien qué puedo hacer para quitarlo. Muchas gracias.

Entendido. :+1:

Y ahora realiza estos pasos :

:one: Desactiva temporalmente el Antivirus :arrow_forward: Cómo deshabilitar temporalmente su Antivirus, mientras estemos realizando TODOS los pasos.

Descargar en TU ESCRITORIO(y NO en otro lugar :face_with_monocle:)

:two: Farbar Recovery Scan Tool.-

  • Ejecuta FRST.exe.

  • En el mensaje de la ventana del Disclaimer, pulsamos Yes

  • En la ventana principal pulsamos en el botón Scan y esperamos a que concluya el proceso.

  • Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.

:three: Poner los dos informes en tu próxima respuesta.

Debes copiarlos y pegarlos con todo su contenido y usaras varios mensajes si recibes un mensaje de error indicando que es muy largo(mas de 50.000 caracteres aprox.).

Saludos.

FRST.txt parte 1.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-10-2019 02
Ran by Leire (administrator) on ZEIT (Gigabyte Technology Co., Ltd. Z68XP-UD4) (14-10-2019 11:27:09)
Running from C:\Users\Leire\Desktop
Loaded Profiles: Leire (Available Profiles: Leire)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Español (España, internacional)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems Incorporated -> ) C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe
(Adobe Systems Incorporated -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Systems Incorporated -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Autodesk, Inc.) [File not signed] C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
(Chaos Software Ltd. -> ) [File not signed] C:\Program Files\Chaos Group\V-Ray Swarm\register-service.exe
(Chaos Software Ltd.) [File not signed] C:\Program Files\Chaos Group\V-Ray Swarm\swrm.exe
(CHENGDU YIWO Tech Development Co., Ltd. -> ) E:\PROGRAMAS carpeta instalacion\EaseUs\Todo Backup\bin\TodoBackupService.exe
(CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) E:\PROGRAMAS carpeta instalacion\EaseUs\Todo Backup\bin\Agent.exe
(Dolby Laboratories, Inc. -> Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe
(EnigmaSoft Limited -> EnigmaSoft Limited) C:\Program Files\EnigmaSoft\SpyHunter\ShKernel.exe
(EnigmaSoft Limited -> EnigmaSoft Limited) C:\Program Files\EnigmaSoft\SpyHunter\ShMonitor.exe
(EnigmaSoft Limited -> EnigmaSoft Limited) C:\Program Files\EnigmaSoft\SpyHunter\SpyHunter5.exe
(Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) E:\PROGRAMAS carpeta instalacion\Garmin express\Garmin\Express\express.exe
(Hewlett Packard -> HP Inc.) C:\Program Files\HP\HP OfficeJet 3830 series\Bin\ScanToPCActivationApp.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Last.fm) [File not signed] C:\Program Files (x86)\Last.fm\Last.fm Desktop Scrobbler\Last.fm Desktop Scrobbler.exe
(Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\ArxApplets\Discord\logitechg_discord.exe
(Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Node.js Foundation -> Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(Nota Inc. -> Nota Inc.) C:\Program Files (x86)\Gyazo\GyStation.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Opera Software AS -> Opera Software) C:\Users\Leire\AppData\Local\Programs\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Users\Leire\AppData\Local\Programs\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Users\Leire\AppData\Local\Programs\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Users\Leire\AppData\Local\Programs\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Users\Leire\AppData\Local\Programs\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Users\Leire\AppData\Local\Programs\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Users\Leire\AppData\Local\Programs\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Users\Leire\AppData\Local\Programs\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Users\Leire\AppData\Local\Programs\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Users\Leire\AppData\Local\Programs\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Users\Leire\AppData\Local\Programs\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Users\Leire\AppData\Local\Programs\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Users\Leire\AppData\Local\Programs\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Users\Leire\AppData\Local\Programs\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Users\Leire\AppData\Local\Programs\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Users\Leire\AppData\Local\Programs\Opera\63.0.3368.107\opera.exe
(Opera Software AS -> Opera Software) C:\Users\Leire\AppData\Local\Programs\Opera\63.0.3368.107\opera_crashreporter.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Samsung Electronics Co., Ltd. -> Samsung Electronics Co. Ltd.) E:\PROGRAMAS carpeta instalacion\Magician Samsung\Samsung Magician\SamsungMagician.exe
(Shenzhen Yi Xing Investment Co., Ltd. -> iSkySoft) C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe
(TeamViewer -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(The CefSharp Authors) [File not signed] E:\PROGRAMAS carpeta instalacion\Garmin express\Garmin\Express\CefSharp.BrowserSubprocess.exe
(Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1212560 2012-06-13] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [316336 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-09-25] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18727048 2018-10-05] (Logitech Inc -> Logitech Inc.)
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
HKLM-x32\...\Run: [Dolby Home Theater v4] => C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [507744 2012-04-23] (Dolby Laboratories, Inc. -> Dolby Laboratories Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2410968 2018-09-13] (Adobe Systems Incorporated -> Adobe Inc.)
HKLM-x32\...\Run: [iSkysoft Helper Compact.exe] => C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe [2138272 2016-10-08] (Shenzhen Yi Xing Investment Co., Ltd. -> iSkySoft)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [644552 2019-07-04] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1895503046-2164595843-4212185805-1000\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [912776 2019-08-01] (Nota Inc. -> Nota Inc.)
HKU\S-1-5-21-1895503046-2164595843-4212185805-1000\...\Run: [GarminExpress] => E:\PROGRAMAS carpeta instalacion\Garmin express\Garmin\Express\express.exe [30862320 2019-07-25] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-1895503046-2164595843-4212185805-1000\...\Run: [HP OfficeJet 3830 series (NET)] => C:\Program Files\HP\HP OfficeJet 3830 series\Bin\ScanToPCActivationApp.exe [3770504 2017-03-27] (Hewlett Packard -> HP Inc.)
HKU\S-1-5-18\...\Run: [GarminExpress] => E:\PROGRAMAS carpeta instalacion\Garmin express\Garmin\Express\express.exe [30862320 2019-07-25] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.90\Installer\chrmstp.exe [2019-09-29] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.81\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
Startup: C:\Users\Leire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Enviar a OneNote.lnk [2019-03-19]
ShortcutTarget: Enviar a OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\Users\Leire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Last.fm Desktop Scrobbler.lnk [2018-11-17]
ShortcutTarget: Last.fm Desktop Scrobbler.lnk -> C:\Users\Leire\AppData\Roaming\Microsoft\Installer\{B13709CB-85AE-4F45-BFF9-2CB2B7A78F83}\_19B259572BFCF696C10AAD.exe () [File not signed]
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00963C04-1538-46A7-BD34-E9402212775F} - System32\Tasks\Opera scheduled Autoupdate 1566565696 => C:\Users\Leire\AppData\Local\Programs\Opera\launcher.exe [1520152 2019-10-04] (Opera Software AS -> Opera Software)
Task: {00DD4B7C-AF45-4C5B-BBB4-59C56D6D4D23} - \{18E33739-9B6C-4834-B587-A4B0DC39D839} -> No File <==== ATTENTION
Task: {071E7F63-24AA-4C7A-8BBB-661FAFB0FF60} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [648504 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {07BFC6F6-412B-4F85-9707-CC4619DE073A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27295760 2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {0D0842B4-9F6B-46F7-84B6-C0E6F36AD531} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [3981232 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
Task: {0D84A0B2-FC8B-423A-A6EA-D4AB40649C35} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2177168 2019-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {0E20404F-2DAD-46F6-BAD7-35088DCA2707} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [897008 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {132BD0D5-A5BF-43D3-8693-DE843561D57D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-10-14] (Adobe Inc. -> Adobe)
Task: {173DE8A0-9D8F-475E-AF7C-827915DAEB7E} - \{68656588-3BCC-4BA6-A460-6E0D9010729A} -> No File <==== ATTENTION
Task: {18814521-5D12-4B06-97B8-3E57C08ECFBB} - \{95304FB1-B750-4C95-959F-60AB60262AA8} -> No File <==== ATTENTION
Task: {18EEF32C-0487-495A-A989-56A486050F1F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6311080 2019-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {1CE3158E-AA8E-42B8-ACDB-A265FDFB4859} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {248F7713-BA71-40D4-A6E2-AFA94CADE858} - \{F3F67E1B-4064-45B3-A3A7-3C77FA577DEE} -> No File <==== ATTENTION
Task: {2740AB40-A7A7-4283-AD00-329DA484F139} - \{0DAC133D-B375-453F-B2D8-7686ADB20A25} -> No File <==== ATTENTION
Task: {3079ABAD-F7ED-4BAA-B963-D2C8E9CE21ED} - System32\Tasks\GarminUpdaterTask => E:\PROGRAMAS carpeta instalacion\Garmin express\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [40432 2019-07-25] (Garmin International, Inc. -> )
Task: {331B2BBC-29CB-482A-BA2E-9A0176DD993D} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2177168 2019-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {3FFA18B5-3575-4BF4-80D3-5A8D5B6C16A9} - System32\Tasks\HPCustPartic.exe_{F96D03CE-4F43-45DB-BDCC-607D8C9C1C04} => C:\Program Files\HP\HP OfficeJet 3830 series\Bin\HPCustPartic.exe
Task: {4C9D6712-9A95-4905-86AC-ACEE3BFC6834} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [162864 2019-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {4F84C605-CDEF-4B98-84AF-66A2CFAECBC6} - System32\Tasks\SamsungMagician => E:\PROGRAMAS carpeta instalacion\Magician Samsung\Samsung Magician\SamsungMagician.exe [1112576 2017-02-22] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co. Ltd.)
Task: {545D11C1-0D98-46B1-BF77-08BE98D6CA21} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-03-06] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {56E145EB-8D46-4DF7-8D42-C20C3F125A0B} - \{F1BD5EC7-15AC-475A-9F31-7A5F74AC1419} -> No File <==== ATTENTION
Task: {651C35C9-8BD3-40CA-8495-5B0837A7BAE8} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [6785448 2019-08-01] (Nota Inc. -> Nota Inc.)
Task: {76C19D9C-CC69-4141-9859-6D1D3B249730} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {784E6130-07FE-403A-B921-561E17C5D100} - \{D716DE4F-F474-48E6-AE81-EBFEA1520A72} -> No File <==== ATTENTION
Task: {78845BF2-B538-45E2-94CA-85E9D5B40EAE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6311080 2019-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {7C8E8546-7FA0-4195-80A6-FC62E9F6F4DA} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-09-25] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {88180E67-8FAF-45FB-8D53-459FDB7A9C3A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)
Task: {8BBC0CC5-5076-4EE8-93CF-7659FCF920BB} - System32\Tasks\Games\UpdateCheck_S-1-5-21-1895503046-2164595843-4212185805-1000 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781} C:\Windows\System32\gameux.dll [2746368 2012-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {8D3D7C1B-49FF-40D1-B1D9-316ABB2B01C7} - \{D9258C07-F885-49F0-87D8-22EDA70742E5} -> No File <==== ATTENTION
Task: {939B4E47-5ACA-4BC6-833C-35A9AA806CEF} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [162864 2019-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {9CAC0D2E-90CE-4329-8049-52EC490988FA} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9F8CD5F1-0B3C-4938-B814-E4E5BF6FEA4F} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27295760 2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {A7318E61-EC60-4B0B-B321-8A2367036D5C} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1905072 2019-09-19] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
Task: {AEC13EF1-2353-4BDE-AB0D-C6E73B3733DB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-11-17] (Google Inc -> Google Inc.)
Task: {B2856BFB-B8F4-402A-9CEC-2E94507D74D9} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B453BC1D-66B5-4886-9090-E133F98562DA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-11-17] (Google Inc -> Google Inc.)
Task: {B5FAC553-1914-44F2-A7DF-693737125F0C} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_270_pepper.exe [1453112 2019-10-14] (Adobe Inc. -> Adobe)
Task: {B810B219-ACB0-442E-A863-A3A155E59B1C} - \{742AAC86-20A7-4B7E-BA09-5CDD4787F631} -> No File <==== ATTENTION
Task: {B91792C0-487E-41B2-BA9B-6E887563E679} - \{1374C2A1-C4EC-4E4D-BE95-4D1D88136866} -> No File <==== ATTENTION
Task: {D1FEAA49-4AFF-450B-93DF-B9DB41A23AE9} - \{A409177E-88DA-440B-B4C2-4324B118DE7A} -> No File <==== ATTENTION
Task: {D9607527-FF66-4CE4-B23B-1F3B4D2E4691} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-03-06] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DD090937-C45B-48BE-AC75-162F96310B8D} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [897008 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E371CB59-0E6C-46F0-B7D8-1CF75AEED439} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3788144 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E5A6E242-E950-45C8-9084-3330BC9EF031} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [6785448 2019-08-01] (Nota Inc. -> Nota Inc.)
Task: {F10EF1F4-912B-428A-97F9-EB09ECEDC5B7} - \{B044483D-22F7-4BC2-97F8-E44F6A3D6455} -> No File <==== ATTENTION
Task: {FC356724-9D4B-4B7B-98BD-68B815605C01} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-1895503046-2164595843-4212185805-1000 => C:\Users\Leire\AppData\Local\MEGAsync\MEGAupdater.exe [615160 2019-06-05] (Mega Limited -> Mega Limited)
Task: {FEFAC989-286E-4328-A5E0-70FAA5955647} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 80.58.61.254 80.58.61.250
Tcpip\..\Interfaces\{008BCA4E-6039-477D-AE3D-E0F819FBC9EF}: [DhcpNameServer] 80.58.61.254 80.58.61.250

Internet Explorer:
==================
HKU\S-1-5-21-1895503046-2164595843-4212185805-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://ver.movistarplus.es/?id_perfil=DTHTITULAR&suscripcion=PS-APERTURALI,PS-DIGITO,PS-DIGITOLI,PS-DIGITOPC,PS-SELEP,PS-SELEPLI,PS-SELEPPC
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2019-07-03] (Microsoft Corporation -> Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2019-10-05] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-04-05] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\ssv.dll [2019-07-18] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Aplicación auxiliar de inicio de sesión en la cuenta Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL [2019-10-05] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2019-10-11] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-07-18] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: DIALux Browser Helper Object -> {F586CB96-7091-42ec-9829-F5D5CE65AFC1} -> E:\PROGRAMAS carpeta instalacion\DIALux\Dialux.BHO_x86.dll [2013-12-10] (DIAL -> DIAL GmbH)
Handler-x32: dialux - {8352FA4C-39C6-11D3-ADBA-00A0244FB1A2} - E:\PROGRAMAS carpeta instalacion\DIALux\DLXToolBox.dll [2016-08-03] (DIAL GmbH, Germany) [File not signed]
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-10-05] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-10-05] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-10-05] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-10-05] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: 4y90dtjm.default
FF ProfilePath: C:\Users\Leire\AppData\Roaming\Mozilla\Firefox\Profiles\4y90dtjm.default [2019-10-14]
FF Extension: (BetterTTV) - C:\Users\Leire\AppData\Roaming\Mozilla\Firefox\Profiles\4y90dtjm.default\Extensions\[email protected] [2019-08-23] [UpdateUrl:hxxps://nightdev.com/betterttv/firefox/updates.json]
FF Extension: (Pinned GMail) - C:\Users\Leire\AppData\Roaming\Mozilla\Firefox\Profiles\4y90dtjm.default\Extensions\[email protected] [2019-08-20]
FF Extension: (Botón Guardar de Pinterest) - C:\Users\Leire\AppData\Roaming\Mozilla\Firefox\Profiles\4y90dtjm.default\Extensions\[email protected] [2019-08-23]
FF Extension: (rainbow blur) - C:\Users\Leire\AppData\Roaming\Mozilla\Firefox\Profiles\4y90dtjm.default\Extensions\{7477cece-5973-41fe-a60e-2d2ffae6d21e}.xpi [2019-08-19]
FF Extension: (Pink-Yellow-Blue) - C:\Users\Leire\AppData\Roaming\Mozilla\Firefox\Profiles\4y90dtjm.default\Extensions\{a1d41d49-e21d-4ee0-954c-d33ad5ef90be}.xpi [2019-08-19]
FF Extension: (Video DownloadHelper) - C:\Users\Leire\AppData\Roaming\Mozilla\Firefox\Profiles\4y90dtjm.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2019-07-16]
FF Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\Leire\AppData\Roaming\Mozilla\Firefox\Profiles\4y90dtjm.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-08-23]
FF Extension: (Yellow to Yellow) - C:\Users\Leire\AppData\Roaming\Mozilla\Firefox\Profiles\4y90dtjm.default\Extensions\{f3625ec1-42fc-4183-bcab-8a5ab6b0bae5}.xpi [2019-08-19]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-07-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2018-09-13] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\dtplugin\npDeployJava1.dll [2019-07-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\plugin2\npjp2.dll [2019-07-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-04-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-04-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-08] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-08] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-07-31] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2018-09-13] (Adobe Systems Incorporated -> Adobe Systems)

Chrome: 
=======
CHR DefaultProfile: Profile 3
CHR HomePage: Profile 3 -> hxxp://www.google.es/
CHR StartupUrls: Profile 3 -> "hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.es/","hxxp://www.google.es/","hxxp://www.google.com/"
CHR Profile: C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-09-04]
CHR Profile: C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 1 [2019-10-13]
CHR Extension: (Dewey Bookmarks) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aahpfefkmihhdabllidnlipghcjgpkdm [2018-02-20]
CHR Extension: (Traductor de Google) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2019-01-20]
CHR Extension: (Presentaciones) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12]
CHR Extension: (BetterTTV) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2019-10-07]
CHR Extension: (Documentos) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (PaperSpan) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apbbkgiadnodlonfadecfkpjkfakklnf [2019-03-23]
CHR Extension: (Google Drive) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-17]
CHR Extension: (YouTube) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-18]
CHR Extension: (OneTab) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\chphlpgkkbolifaimnlloiipkdnihall [2019-08-02]
CHR Extension: (Búsqueda de Google) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-18]
CHR Extension: (Blue-White) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cpdppflofbnccceeefenhhokdcaipacc [2017-05-29]
CHR Extension: (Adobe Acrobat) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-10-07]
CHR Extension: (Fontface Ninja) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eljapbgkmlngdpckoiiibecpemleclhh [2018-07-03]
CHR Extension: (Hojas de cálculo) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12]
CHR Extension: (Gyazo) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ffdaeeijbbijklfcpahbghahojgfgebo [2019-09-29]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-21]
CHR Extension: (AdBlock) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-10-07]
CHR Extension: (Note Board - Tablón de Notas) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\goficmpcgcnombioohjcgdhbaloknabb [2019-09-10]
CHR Extension: (Botón Guardar de Pinterest) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2019-09-29]
CHR Extension: (Spotify Chrome Extension) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hbjmlahipheaaghllkabfkpolljilkjb [2015-11-18]
CHR Extension: (Player para ver Movistar+) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\kenfcfndncbbggmafjjeihkdclggbojn [2019-03-06]
CHR Extension: (Hangouts de Google) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nckgahadagoaajjgafhacjanaoiihapd [2019-06-12]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-07]
CHR Extension: (Palette Creator) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\oolpphfmdmjbojolagcbgdemojhcnlod [2019-08-02]
CHR Extension: (Evernote Web Clipper) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pioclpoplcdbaefihamjohnefbikjilc [2019-09-19]
CHR Extension: (Gmail) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-06-12]
CHR Extension: (Chrome Media Router) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-29]
CHR Profile: C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 2 [2019-08-20]
CHR Extension: (Presentaciones) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-03-27]
CHR Extension: (Documentos) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2018-03-27]
CHR Extension: (Google Drive) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-03-27]
CHR Extension: (YouTube) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-03-27]
CHR Extension: (Hojas de cálculo) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-03-27]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-08-20]
CHR Extension: (Flying Paint) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\iaddkdiibkddhdbcmmplkhcpgeinggfo [2018-03-27]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-10]
CHR Extension: (Gmail) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-08-20]
CHR Extension: (Chrome Media Router) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-08-20]
CHR Profile: C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 3 [2019-10-14]
CHR Extension: (Traductor de Google) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2019-01-20]
CHR Extension: (Presentaciones) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-11-07]
CHR Extension: (Duolingo en la web) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aiahmijlpehemcpleichkcokhegllfjl [2018-11-07]
CHR Extension: (BetterTTV) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2019-10-14]
CHR Extension: (Documentos) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2018-11-07]
CHR Extension: (PaperSpan) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apbbkgiadnodlonfadecfkpjkfakklnf [2019-03-20]
CHR Extension: (Google Drive) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-11-07]
CHR Extension: (Pure White Theme with Grey Active Tab) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\bakdfbpkeajflbccecgedgjafhdaikkj [2019-09-22]
CHR Extension: (YouTube) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-11-07]
CHR Extension: (Tampermonkey) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2019-05-12]
CHR Extension: (Adobe Acrobat) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-09-30]
CHR Extension: (Fontface Ninja) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\eljapbgkmlngdpckoiiibecpemleclhh [2018-11-07]
CHR Extension: (¿Qué cocino hoy?) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\enadeelnincmhhilgbiphjbjnnagnhmh [2018-11-07]
CHR Extension: (Hojas de cálculo) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-11-07]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-11-07]
CHR Extension: (AdBlock) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-10-12]
CHR Extension: (Botón Guardar de Pinterest) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2019-09-24]
CHR Extension: (TweetDeck by Twitter) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\hbdpomandigafcibbmofojjchbcdagbl [2018-11-07]
CHR Extension: (Web Scrobbler) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\hhinaapppaileiechjoiifaancjggfjm [2019-10-12]
CHR Extension: (Player para ver Movistar+) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\kenfcfndncbbggmafjjeihkdclggbojn [2019-03-07]
CHR Extension: (Hangouts de Google) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\knipolnnllmklapflnccelgolnpehhpl [2019-05-23]
CHR Extension: (Video DownloadHelper) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2019-06-26]
CHR Extension: (Google Maps) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2018-11-07]
CHR Extension: (Google Mail Checker) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2018-11-07]
CHR Extension: (Google Play Books) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\mmimngoggfoobjdlefbcabngfnmieonb [2018-11-07]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-05]
CHR Extension: (Visualizador de archivos PDF/PowerPoint de Google Docs) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nnbmlagghjjcbdhgmkedmbmedengocbn [2018-11-07]
CHR Extension: (Gmail) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-29]
CHR Extension: (Chrome Media Router) - C:\Users\Leire\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-29]
CHR Profile: C:\Users\Leire\AppData\Local\Google\Chrome\User Data\System Profile [2019-05-27]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

Opera: 
=======
OPR Extension: (Twitter Lite Sidebar) - C:\Users\Leire\AppData\Roaming\Opera Software\Opera Stable\Extensions\bjllhlminknjjkpjghebnacnfijmkdbp [2019-08-23]
OPR Extension: (V7 Bookmarks) - C:\Users\Leire\AppData\Roaming\Opera Software\Opera Stable\Extensions\bpmgfnikhlpakdkeeahboleoommganka [2019-08-23]
OPR Extension: (Shareaholic for Pinterest) - C:\Users\Leire\AppData\Roaming\Opera Software\Opera Stable\Extensions\cfhohmfogghhjmmhnmfgdiinicebggjm [2019-08-23]
OPR Extension: (Translator) - C:\Users\Leire\AppData\Roaming\Opera Software\Opera Stable\Extensions\cnbpedcoekjafichoehopgaaldogogch [2019-08-23]
OPR Extension: (BetterTTV) - C:\Users\Leire\AppData\Roaming\Opera Software\Opera Stable\Extensions\deofbbdfofnmppcjbhjibgodpcdchjii [2019-08-23]
OPR Extension: (Notifier for Gmail™) - C:\Users\Leire\AppData\Roaming\Opera Software\Opera Stable\Extensions\flkijckbigolpahbkklilflpmkalfohc [2019-08-23]
OPR Extension: (Sidebar for YouTube™) - C:\Users\Leire\AppData\Roaming\Opera Software\Opera Stable\Extensions\ljkgfkfopogmclcinephnaeekjiikibd [2019-08-23]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [818136 2018-09-13] (Adobe Systems Incorporated -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-09-25] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-09-25] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-08-26] (Apple Inc. -> Apple Inc.)
R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [12288 2012-12-13] (Autodesk, Inc.) [File not signed]
R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [996928 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
S3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe [6133752 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11642376 2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
S3 DialComService; C:\Program Files (x86)\DIAL GmbH\DIAL Communication Framework\DialComService.exe [2183440 2014-12-10] (DIAL -> DIAL GmbH)
R2 EaseUS Agent; E:\PROGRAMAS carpeta instalacion\EaseUs\Todo Backup\bin\Agent.exe [40016 2018-12-25] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)
R2 EsgShKernel; C:\Program Files\EnigmaSoft\SpyHunter\ShKernel.exe [11457840 2019-10-13] (EnigmaSoft Limited -> EnigmaSoft Limited)
R2 HPSLPSVC; C:\Users\Leire\AppData\Local\Temp\7zS26B5\hpslpsvc64.dll [1039360 2015-09-21] (Hewlett-Packard Co.) [File not signed] <==== ATTENTION
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel® Trusted Connect Service -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [206472 2018-10-05] (Logitech Inc -> Logitech Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-03-06] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-03-06] (NVIDIA Corporation -> NVIDIA Corporation)
R2 ShMonitor; C:\Program Files\EnigmaSoft\SpyHunter\ShMonitor.exe [512816 2019-10-13] (EnigmaSoft Limited -> EnigmaSoft Limited)
R2 vrswrm-service; C:\Program Files\Chaos Group\V-Ray Swarm\register-service.exe [90176 2018-04-09] (Chaos Software Ltd. -> ) [File not signed]
R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [2238408 2019-06-14] (Wacom Technology Corporation -> Wacom Technology, Corp.)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 
R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r
S3 WsDrvInst; "C:\Program Files (x86)\iSkysoft\Video Converter Ultimate\Transfer\DriverInstall.exe" [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 avgArDisk; C:\Windows\System32\drivers\avgArDisk.sys [37880 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgArPot; C:\Windows\System32\drivers\avgArPot.sys [205600 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\Windows\System32\drivers\avgbidsdriver.sys [275232 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\Windows\System32\drivers\avgbidsh.sys [210328 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\Windows\System32\drivers\avgbuniv.sys [65376 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\Windows\System32\drivers\avgKbd.sys [43512 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\Windows\System32\drivers\avgMonFlt.sys [171784 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\Windows\System32\drivers\avgRdr2.sys [111096 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\Windows\System32\drivers\avgRvrt.sys [84560 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\Windows\System32\drivers\avgSnx.sys [848688 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\Windows\System32\drivers\avgSP.sys [461216 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
S2 avgStm; C:\Windows\System32\drivers\avgStm.sys [236288 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\Windows\System32\drivers\avgVmm.sys [317304 2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
S3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-05-25] (Disc Soft Ltd -> Disc Soft Ltd)
S3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-05-25] (Disc Soft Ltd -> Disc Soft Ltd)
R3 EnigmaFileMonDriver; C:\Windows\System32\drivers\EnigmaFileMonDriver.sys [68424 2019-10-14] (EnigmaSoft Limited -> EnigmaSoft Limited)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [153328 2019-01-08] (Malwarebytes Corporation -> Malwarebytes)
R0 EUBKMON; C:\Windows\System32\drivers\EUBKMON.sys [54152 2018-12-25] (CHENGDU YIWO Tech Development Co., Ltd. -> )
S3 gdrv; C:\Windows\gdrv.sys [26792 2018-11-12] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 gdrv2; C:\Windows\gdrv2.sys [32720 2018-11-12] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 GLCKIO2; C:\Program Files (x86)\GIGABYTE\RGBFusion\GLCKIO2.sys [19392 2018-03-08] (ASUSTeK Computer Inc. -> )
S2 Hardlock; C:\Windows\system32\drivers\hardlock.sys [296448 2005-06-14] (Aladdin Knowledge Systems Ltd.) [File not signed]
S3 hidkmdf; C:\Windows\System32\DRIVERS\hidkmdf.sys [13776 2016-03-03] (Wacom Technology Corporation -> Windows (R) Win 7 DDK provider)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech -> Logitech)
R3 LGJoyXlCore; C:\Windows\System32\drivers\LGJoyXlCore.sys [67736 2018-10-05] (Logitech Inc -> Logitech Inc.)
S3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2018-10-05] (Logitech -> Logitech Inc.)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [199768 2019-10-13] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [224408 2019-10-14] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [73584 2019-10-14] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [275232 2019-10-14] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [106344 2019-10-14] (Malwarebytes Corporation -> Malwarebytes)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-06-13] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [69840 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [75600 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> )
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [394296 2016-05-31] (Disc Soft Ltd -> Duplex Secure Ltd.)
U5 TMUSB; C:\Windows\System32\DRIVERS\TMUSB64.SYS [63096 2015-05-25] (SEIKO EPSON Corporation Test Signing -> Seiko Epson Corporation)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2015-06-17] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 WacHidRouterPro; C:\Windows\System32\DRIVERS\wachidrouter.sys [131736 2019-06-14] (Wacom Technology Corporation -> Wacom Technology, Corp.)
S3 XHASP; c:\windows\SysWOW64\drivers\XHASP.sys [2661376 2017-02-02] () [File not signed]
S2 XXLHASP; c:\windows\system32\drivers\XXLHASP.sys [290816 2017-02-02] (NGO -> ) [File not signed]
S3 EUBAKUP0; \??\C:\Windows\system32\drivers\EUBAKUP0.sys [X]
S3 EUBKMON0; \??\C:\Windows\system32\drivers\EUBKMON0.sys [X]
S3 EUFDDISK0; \??\C:\Windows\system32\drivers\EUFDDISK0.sys [X]
S3 GPCIDrv; \??\C:\Users\Leire\AppData\Local\Temp\7zS65F3.tmp\N2080_FW_Upgrade_Tool_V003\GPCIDrv64.sys [X] <==== ATTENTION

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-10-14 11:27 - 2019-10-14 11:27 - 000056867 _____ C:\Users\Leire\Desktop\FRST.txt
2019-10-14 11:26 - 2019-10-14 11:27 - 000000000 ____D C:\FRST
2019-10-14 11:24 - 2019-10-14 11:18 - 007622344 _____ (Malwarebytes) C:\Users\Leire\Desktop\AdwCleaner.exe
2019-10-14 11:23 - 2019-10-14 11:23 - 001616384 _____ (Farbar) C:\Users\Leire\Desktop\FRST64.exe
2019-10-14 11:21 - 2019-10-14 11:21 - 000224408 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2019-10-14 11:21 - 2019-10-14 11:21 - 000106344 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2019-10-14 11:21 - 2019-10-14 11:21 - 000073584 _____ (Malwarebytes) 

FRST.txt parte 2

C:\Windows\system32\Drivers\mbam.sys
2019-10-14 11:20 - 2019-10-14 11:20 - 000275232 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2019-10-14 11:18 - 2019-10-14 11:19 - 000000000 ____D C:\AdwCleaner
2019-10-14 11:14 - 2019-10-14 11:14 - 000001077 _____ C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
2019-10-14 11:14 - 2019-10-14 11:14 - 000001077 _____ C:\ProgramData\Desktop\Revo Uninstaller Pro.lnk
2019-10-14 11:14 - 2019-10-14 11:14 - 000000000 ____D C:\Users\Leire\AppData\Local\VS Revo Group
2019-10-14 11:14 - 2019-10-14 11:14 - 000000000 ____D C:\ProgramData\VS Revo Group
2019-10-14 11:14 - 2019-10-14 11:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2019-10-14 11:14 - 2019-10-14 11:14 - 000000000 ____D C:\Program Files\VS Revo Group
2019-10-14 11:14 - 2016-12-21 14:52 - 000040240 _____ (VS Revo Group) C:\Windows\system32\Drivers\revoflt.sys
2019-10-14 11:11 - 2019-10-14 11:11 - 000004290 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2019-10-14 10:44 - 2019-10-14 10:44 - 000015727 _____ C:\Users\Leire\Desktop\billetes de mierda.pdf
2019-10-13 12:17 - 2019-10-13 12:20 - 000000000 ____D C:\ProgramData\TEMP
2019-10-13 12:17 - 2019-10-13 12:17 - 000000000 ____D C:\Users\Leire\AppData\Roaming\URSoft
2019-10-13 11:38 - 2019-10-13 11:38 - 000199768 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2019-10-13 11:38 - 2019-10-13 11:38 - 000001867 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-10-13 11:38 - 2019-10-13 11:38 - 000001867 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2019-10-13 11:38 - 2019-10-13 11:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-10-13 11:38 - 2019-01-08 16:32 - 000153328 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2019-10-13 11:20 - 2019-10-13 11:20 - 000000000 ____D C:\Program Files\Malwarebytes
2019-10-13 11:04 - 2019-10-14 11:20 - 000068424 _____ (EnigmaSoft Limited) C:\Windows\system32\Drivers\EnigmaFileMonDriver.sys
2019-10-13 11:04 - 2019-10-13 11:20 - 000000000 ____D C:\ProgramData\EnigmaSoft Limited
2019-10-13 11:04 - 2019-10-13 11:04 - 000001010 _____ C:\Users\Public\Desktop\SpyHunter5.lnk
2019-10-13 11:04 - 2019-10-13 11:04 - 000001010 _____ C:\ProgramData\Desktop\SpyHunter5.lnk
2019-10-13 11:04 - 2019-10-13 11:04 - 000000000 ____D C:\sh5ldr
2019-10-13 11:04 - 2019-10-13 11:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EnigmaSoft
2019-10-13 11:04 - 2019-10-13 11:04 - 000000000 ____D C:\Program Files\EnigmaSoft
2019-10-10 18:51 - 2019-10-10 18:52 - 000000000 ____D C:\Users\Leire\AppData\Local\Riot Games
2019-10-10 18:24 - 2019-10-10 18:24 - 000001003 _____ C:\Users\Public\Desktop\OBS Studio.lnk
2019-10-10 18:24 - 2019-10-10 18:24 - 000001003 _____ C:\ProgramData\Desktop\OBS Studio.lnk
2019-10-10 18:24 - 2019-10-10 18:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2019-10-10 18:24 - 2019-10-10 18:24 - 000000000 ____D C:\Program Files\obs-studio
2019-10-10 12:25 - 2019-10-10 12:25 - 026768778 _____ C:\Users\Leire\Desktop\photoshop_reference.pdf
2019-10-09 16:07 - 2019-10-07 08:49 - 000390752 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2019-10-09 16:07 - 2019-10-07 07:57 - 000341896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2019-10-09 16:07 - 2019-10-06 06:12 - 025753088 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-10-09 16:07 - 2019-10-06 06:00 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2019-10-09 16:07 - 2019-10-06 06:00 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2019-10-09 16:07 - 2019-10-06 05:49 - 002909184 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-10-09 16:07 - 2019-10-06 05:48 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2019-10-09 16:07 - 2019-10-06 05:47 - 000579584 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-10-09 16:07 - 2019-10-06 05:47 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2019-10-09 16:07 - 2019-10-06 05:47 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2019-10-09 16:07 - 2019-10-06 05:46 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2019-10-09 16:07 - 2019-10-06 05:41 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2019-10-09 16:07 - 2019-10-06 05:40 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2019-10-09 16:07 - 2019-10-06 05:38 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2019-10-09 16:07 - 2019-10-06 05:37 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2019-10-09 16:07 - 2019-10-06 05:37 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2019-10-09 16:07 - 2019-10-06 05:36 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-10-09 16:07 - 2019-10-06 05:36 - 000797696 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-10-09 16:07 - 2019-10-06 05:34 - 005500928 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-10-09 16:07 - 2019-10-06 05:32 - 020290048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-10-09 16:07 - 2019-10-06 05:31 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2019-10-09 16:07 - 2019-10-06 05:28 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2019-10-09 16:07 - 2019-10-06 05:28 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2019-10-09 16:07 - 2019-10-06 05:23 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-10-09 16:07 - 2019-10-06 05:22 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2019-10-09 16:07 - 2019-10-06 05:22 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2019-10-09 16:07 - 2019-10-06 05:19 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2019-10-09 16:07 - 2019-10-06 05:19 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2019-10-09 16:07 - 2019-10-06 05:18 - 000496128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2019-10-09 16:07 - 2019-10-06 05:18 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2019-10-09 16:07 - 2019-10-06 05:17 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2019-10-09 16:07 - 2019-10-06 05:17 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2019-10-09 16:07 - 2019-10-06 05:17 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2019-10-09 16:07 - 2019-10-06 05:16 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2019-10-09 16:07 - 2019-10-06 05:16 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2019-10-09 16:07 - 2019-10-06 05:15 - 002302464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-10-09 16:07 - 2019-10-06 05:12 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2019-10-09 16:07 - 2019-10-06 05:12 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2019-10-09 16:07 - 2019-10-06 05:11 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2019-10-09 16:07 - 2019-10-06 05:10 - 000663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2019-10-09 16:07 - 2019-10-06 05:10 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2019-10-09 16:07 - 2019-10-06 05:10 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2019-10-09 16:07 - 2019-10-06 05:07 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2019-10-09 16:07 - 2019-10-06 05:05 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-10-09 16:07 - 2019-10-06 05:05 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2019-10-09 16:07 - 2019-10-06 05:03 - 002132992 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2019-10-09 16:07 - 2019-10-06 05:03 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2019-10-09 16:07 - 2019-10-06 05:03 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2019-10-09 16:07 - 2019-10-06 05:00 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2019-10-09 16:07 - 2019-10-06 05:00 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2019-10-09 16:07 - 2019-10-06 04:59 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2019-10-09 16:07 - 2019-10-06 04:58 - 015413760 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-10-09 16:07 - 2019-10-06 04:57 - 004859904 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-10-09 16:07 - 2019-10-06 04:57 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2019-10-09 16:07 - 2019-10-06 04:56 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2019-10-09 16:07 - 2019-10-06 04:56 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2019-10-09 16:07 - 2019-10-06 04:55 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2019-10-09 16:07 - 2019-10-06 04:53 - 004112384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2019-10-09 16:07 - 2019-10-06 04:50 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2019-10-09 16:07 - 2019-10-06 04:49 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2019-10-09 16:07 - 2019-10-06 04:48 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2019-10-09 16:07 - 2019-10-06 04:48 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2019-10-09 16:07 - 2019-10-06 04:45 - 013808640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-10-09 16:07 - 2019-10-06 04:45 - 001566208 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-10-09 16:07 - 2019-10-06 04:35 - 004387840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2019-10-09 16:07 - 2019-10-06 04:34 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-10-09 16:07 - 2019-10-06 04:32 - 001331712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2019-10-09 16:07 - 2019-10-06 04:30 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2019-10-09 16:07 - 2019-09-19 06:27 - 000168448 _____ (Microsoft Corporation) C:\Windows\system32\umpo.dll
2019-10-09 16:07 - 2019-09-17 04:32 - 004060896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2019-10-09 16:07 - 2019-09-17 04:32 - 003966688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2019-10-09 16:07 - 2019-09-17 04:32 - 000709856 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-10-09 16:07 - 2019-09-17 04:32 - 000627424 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2019-10-09 16:07 - 2019-09-17 04:31 - 005552864 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-10-09 16:07 - 2019-09-17 04:31 - 001319496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2019-10-09 16:07 - 2019-09-17 04:31 - 000263904 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-10-09 16:07 - 2019-09-17 04:31 - 000155360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2019-10-09 16:07 - 2019-09-17 04:31 - 000096992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2019-10-09 16:07 - 2019-09-17 04:30 - 001670784 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000834048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000555520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000261632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 001472512 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 001211392 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 001162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 001010176 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000733184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000408576 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 04:04 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2019-10-09 16:07 - 2019-09-17 04:03 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2019-10-09 16:07 - 2019-09-17 04:00 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2019-10-09 16:07 - 2019-09-17 04:00 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2019-10-09 16:07 - 2019-09-17 04:00 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2019-10-09 16:07 - 2019-09-17 03:59 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2019-10-09 16:07 - 2019-09-17 03:59 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2019-10-09 16:07 - 2019-09-17 03:59 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2019-10-09 16:07 - 2019-09-17 03:59 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2019-10-09 16:07 - 2019-09-17 03:59 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2019-10-09 16:07 - 2019-09-17 03:57 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2019-10-09 16:07 - 2019-09-17 03:57 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 03:57 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 03:57 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 03:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2019-10-09 16:07 - 2019-09-17 03:56 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2019-10-09 16:07 - 2019-09-17 03:56 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2019-10-09 16:07 - 2019-09-17 03:55 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2019-10-09 16:07 - 2019-09-17 03:53 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2019-10-09 16:07 - 2019-09-17 03:53 - 000161280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2019-10-09 16:07 - 2019-09-17 03:52 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2019-10-09 16:07 - 2019-09-17 03:52 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2019-10-09 16:07 - 2019-09-17 03:52 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2019-10-09 16:07 - 2019-09-17 03:52 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-10-09 16:07 - 2019-09-17 03:51 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2019-10-09 16:07 - 2019-09-17 03:51 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2019-10-09 16:07 - 2019-09-17 03:51 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2019-10-09 16:07 - 2019-09-17 03:51 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2019-10-09 16:07 - 2019-09-17 03:51 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2019-10-09 16:07 - 2019-09-17 03:51 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2019-10-09 16:07 - 2019-09-17 03:51 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2019-10-09 16:07 - 2019-09-17 02:13 - 000455392 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2019-10-09 16:07 - 2019-09-12 05:53 - 000442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2019-10-09 16:07 - 2019-09-12 05:52 - 000373248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2019-10-09 16:07 - 2019-09-12 05:52 - 000195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2019-10-09 16:07 - 2019-09-12 05:44 - 000680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2019-10-09 16:07 - 2019-09-12 05:44 - 000499712 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2019-10-09 16:07 - 2019-09-12 05:44 - 000438784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2019-10-09 16:07 - 2019-09-12 05:44 - 000295936 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2019-10-09 16:07 - 2019-09-12 05:44 - 000284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2019-10-09 16:07 - 2019-09-12 05:24 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2019-10-09 16:07 - 2019-09-11 06:56 - 000353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2019-10-09 16:07 - 2019-09-11 06:56 - 000241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msltus40.dll
2019-10-09 16:07 - 2019-09-10 04:27 - 000383488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2019-10-09 16:07 - 2019-09-10 04:27 - 000320512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2019-10-09 16:07 - 2019-09-10 04:27 - 000160256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2019-10-09 16:07 - 2019-09-10 04:24 - 001281536 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2019-10-09 16:07 - 2019-09-10 04:24 - 000486912 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2019-10-09 16:07 - 2019-09-10 04:24 - 000355328 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2019-10-09 16:07 - 2019-09-10 04:24 - 000174080 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2019-10-09 16:07 - 2019-09-10 04:24 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll
2019-10-09 16:07 - 2019-09-10 04:24 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2019-10-09 16:07 - 2019-09-10 04:02 - 006135296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2019-10-09 16:07 - 2019-09-10 04:00 - 000361472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2019-10-09 16:07 - 2019-09-10 04:00 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWWIN.EXE
2019-10-09 16:07 - 2019-09-10 04:00 - 000054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2019-10-09 16:07 - 2019-09-10 04:00 - 000028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe
2019-10-09 16:07 - 2019-09-10 04:00 - 000028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
2019-10-09 16:07 - 2019-09-10 03:54 - 003231744 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2019-10-09 16:07 - 2019-09-10 03:53 - 000416256 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2019-10-09 16:07 - 2019-09-10 03:53 - 000152576 _____ (Microsoft Corporation) C:\Windows\system32\DWWIN.EXE
2019-10-09 16:07 - 2019-09-10 03:53 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2019-10-09 16:07 - 2019-09-10 03:53 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2019-10-09 16:07 - 2019-09-10 03:52 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\monitor.sys
2019-10-09 16:07 - 2019-09-10 03:49 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2019-10-09 16:07 - 2019-09-10 02:09 - 007082496 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2019-10-09 16:07 - 2019-09-10 02:09 - 003187712 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2019-10-08 10:51 - 2019-10-08 10:51 - 000113120 _____ C:\Users\Leire\Desktop\Impresión reserva Punta Begoña.pdf
2019-10-07 17:17 - 2019-10-07 17:17 - 000000000 ____D C:\Users\Leire\AppData\Local\Nota_Inc
2019-10-03 15:11 - 2019-10-12 20:46 - 000003446 _____ C:\Windows\system32\Tasks\AdobeGCInvoker-1.0
2019-10-03 15:11 - 2019-10-08 20:07 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2019-10-03 15:11 - 2019-10-08 20:07 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData
2019-10-02 16:52 - 2019-10-02 16:52 - 000001968 _____ C:\Users\Public\Desktop\AVG AntiVirus FREE.lnk
2019-10-02 16:52 - 2019-10-02 16:52 - 000001968 _____ C:\ProgramData\Desktop\AVG AntiVirus FREE.lnk
2019-10-02 16:50 - 2019-10-02 16:50 - 000355760 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\avgBoot.exe
2019-10-02 16:50 - 2019-10-02 16:50 - 000236288 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgStm.sys
2019-10-02 16:50 - 2019-10-02 16:50 - 000171784 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgMonFlt.sys
2019-09-18 10:41 - 2019-08-16 03:02 - 000123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2019-09-18 10:41 - 2019-08-16 02:56 - 000142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2019-09-17 10:49 - 2019-08-29 04:52 - 000836608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2019-09-17 10:49 - 2019-08-29 04:50 - 001078784 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2019-09-17 10:49 - 2019-08-27 04:34 - 000350208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys
2019-09-17 10:49 - 2019-08-23 00:07 - 000628480 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2019-09-17 10:49 - 2019-08-21 03:59 - 000311008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2019-09-17 10:49 - 2019-08-21 03:56 - 000071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2019-09-17 10:49 - 2019-08-21 03:56 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2019-09-17 10:49 - 2019-08-21 03:56 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2019-09-17 10:49 - 2019-08-21 01:19 - 000034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2019-09-17 10:49 - 2019-08-20 06:24 - 000385248 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2019-09-17 10:49 - 2019-08-20 06:21 - 000101376 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2019-09-17 10:49 - 2019-08-20 06:21 - 000046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2019-09-17 10:49 - 2019-08-20 06:21 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2019-09-17 10:49 - 2019-08-20 06:21 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2019-09-17 10:49 - 2019-08-20 05:59 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ws2ifsl.sys
2019-09-17 10:49 - 2019-08-20 04:47 - 001251840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2019-09-17 10:49 - 2019-08-15 09:59 - 000878080 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-09-17 10:49 - 2019-08-15 09:59 - 000583680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2019-09-17 10:49 - 2019-08-14 19:54 - 000271360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll
2019-09-17 10:49 - 2019-08-14 19:53 - 000253440 _____ (Microsoft) C:\Windows\SysWOW64\DShowRdpFilter.dll
2019-09-17 10:49 - 2019-08-14 07:22 - 000374496 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2019-09-17 10:49 - 2019-08-14 07:20 - 000300032 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2019-09-17 10:49 - 2019-08-14 07:20 - 000282112 _____ (Microsoft) C:\Windows\system32\DShowRdpFilter.dll
2019-09-17 10:49 - 2019-08-14 07:20 - 000133120 _____ (Microsoft Corporation) C:\Windows\system32\tssrvlic.dll
2019-09-17 10:49 - 2019-08-14 06:59 - 000053760 _____ (Microsoft Corporation) C:\Windows\system32\LSCSHostPolicy.dll
2019-09-17 10:49 - 2019-08-14 06:52 - 000455680 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2019-09-17 10:49 - 2019-08-14 00:20 - 000162016 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2019-09-17 10:49 - 2019-08-14 00:19 - 000988384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2019-09-17 10:49 - 2019-08-14 00:19 - 000267488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2019-09-17 10:49 - 2019-08-14 00:16 - 000484864 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2019-09-17 10:49 - 2019-08-14 00:15 - 000732160 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2019-09-17 10:49 - 2019-08-14 00:15 - 000405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2019-09-17 10:49 - 2019-08-14 00:15 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2019-09-17 10:49 - 2019-08-14 00:13 - 000363520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2019-09-17 10:49 - 2019-08-14 00:13 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2019-09-17 10:49 - 2019-08-13 04:58 - 001312256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2019-09-17 10:49 - 2019-08-13 04:58 - 000475648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxbde40.dll
2019-09-17 10:49 - 2019-08-13 04:58 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll
2019-09-17 10:49 - 2019-08-13 02:56 - 002863104 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2019-09-17 10:49 - 2019-08-13 02:56 - 001712640 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2019-09-17 10:49 - 2019-08-13 02:56 - 001650176 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2019-09-17 10:49 - 2019-08-13 02:56 - 000802304 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2019-09-17 10:49 - 2019-08-13 02:56 - 000634368 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2019-09-17 10:49 - 2019-08-13 02:56 - 000501760 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2019-09-17 10:49 - 2019-08-13 02:56 - 000456192 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2019-09-17 10:49 - 2019-08-13 02:56 - 000315904 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2019-09-17 10:49 - 2019-08-13 02:56 - 000257024 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-10-14 11:26 - 2011-04-12 11:10 - 000747494 _____ C:\Windows\system32\perfh00A.dat
2019-10-14 11:26 - 2011-04-12 11:10 - 000158966 _____ C:\Windows\system32\perfc00A.dat
2019-10-14 11:26 - 2009-07-14 07:13 - 001677306 _____ C:\Windows\system32\PerfStringBackup.INI
2019-10-14 11:26 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2019-10-14 11:22 - 2015-11-17 19:46 - 000000000 ____D C:\ProgramData\NVIDIA
2019-10-14 11:20 - 2017-09-14 15:43 - 000000000 ____D C:\Users\Leire\AppData\Local\CrashDumps
2019-10-14 11:20 - 2016-05-24 06:55 - 000000000 ____D C:\Users\Leire\AppData\Roaming\WTablet
2019-10-14 11:20 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-10-14 11:19 - 2009-07-14 06:45 - 000025600 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-10-14 11:19 - 2009-07-14 06:45 - 000025600 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-10-14 11:11 - 2016-10-24 11:30 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2019-10-14 11:11 - 2016-10-24 11:30 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2019-10-14 11:11 - 2016-10-24 11:30 - 000004468 _____ C:\Windows\system32\Tasks\Adobe Flash Player PPAPI Notifier
2019-10-14 11:11 - 2016-10-24 11:30 - 000000000 ____D C:\Windows\system32\Macromed
2019-10-14 11:11 - 2016-07-12 19:54 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2019-10-14 11:11 - 2015-11-17 22:38 - 000000000 ____D C:\Users\Leire\AppData\Local\Adobe
2019-10-14 11:06 - 2019-05-20 15:43 - 000000000 ____D C:\Users\Leire\AppData\LocalLow\Mozilla
2019-10-13 12:30 - 2016-12-15 10:32 - 000000000 ____D C:\Users\Leire\AppData\Roaming\obs-studio
2019-10-13 12:13 - 2016-09-10 14:12 - 000000000 ____D C:\Users\Leire\Documents\CEX
2019-10-13 12:12 - 2016-11-10 19:40 - 000000000 ____D C:\Users\Leire\AppData\Roaming\GRAPHISOFT
2019-10-13 12:11 - 2016-11-10 19:32 - 000002534 _____ C:\Windows\vpd.properties
2019-10-13 12:11 - 2016-11-10 19:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GRAPHISOFT
2019-10-13 11:38 - 2018-11-09 10:18 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-10-13 11:37 - 2019-08-23 15:08 - 000002234 _____ C:\Users\Leire\Desktop\Navegador Opera.lnk
2019-10-13 11:20 - 2018-11-09 10:18 - 000000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2019-10-13 11:02 - 2019-06-04 11:25 - 000000000 ____D C:\Users\Leire\AppData\Local\BitTorrentHelper
2019-10-13 11:02 - 2015-11-17 23:05 - 000000000 ____D C:\Users\Leire\AppData\Roaming\uTorrent
2019-10-13 11:00 - 2015-11-17 18:19 - 000191840 _____ C:\Users\Leire\AppData\Local\GDIPFONTCACHEV1.DAT
2019-10-13 11:00 - 2009-07-14 06:45 - 006105880 _____ C:\Windows\system32\FNTCACHE.DAT
2019-10-13 10:57 - 2015-11-18 16:20 - 000000000 ____D C:\Users\Public\Documents\Autodesk
2019-10-13 10:57 - 2015-11-18 16:20 - 000000000 ____D C:\ProgramData\Documents\Autodesk
2019-10-13 10:57 - 2015-11-18 16:20 - 000000000 ____D C:\Program Files\Common Files\Autodesk Shared
2019-10-13 10:57 - 2015-11-18 16:20 - 000000000 ____D C:\Program Files\Autodesk
2019-10-13 10:57 - 2015-11-18 16:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
2019-10-13 10:57 - 2015-11-18 16:16 - 000000000 ____D C:\Users\Leire\AppData\Roaming\Autodesk
2019-10-13 10:57 - 2015-11-18 16:16 - 000000000 ____D C:\ProgramData\Autodesk
2019-10-13 10:57 - 2009-07-14 07:32 - 000000000 ____D C:\Windows\Downloaded Program Files
2019-10-12 20:46 - 2019-08-23 15:08 - 000004038 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1566565696
2019-10-12 20:46 - 2019-07-09 17:42 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-10-12 20:46 - 2019-07-09 17:42 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-10-12 20:46 - 2019-07-09 17:42 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-10-12 20:46 - 2019-07-09 17:42 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-10-12 20:46 - 2018-08-28 18:21 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2019-10-12 20:46 - 2018-06-14 16:55 - 000003798 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-10-12 20:46 - 2018-06-14 16:55 - 000003790 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-10-12 20:46 - 2018-05-09 10:41 - 000003940 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-10-12 20:46 - 2017-11-25 14:06 - 000004146 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-10-12 20:46 - 2017-11-25 13:54 - 000003738 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-10-12 20:46 - 2017-11-25 13:54 - 000003494 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-10-12 20:46 - 2017-07-28 10:21 - 000003166 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1895503046-2164595843-4212185805-1000
2019-10-12 20:46 - 2017-04-15 17:22 - 000003604 _____ C:\Windows\system32\Tasks\GarminUpdaterTask
2019-10-12 20:46 - 2017-03-27 17:08 - 000004174 _____ C:\Windows\system32\Tasks\Antivirus Emergency Update
2019-10-12 20:46 - 2016-12-15 09:03 - 000003400 _____ C:\Windows\system32\Tasks\GyazoUpdateTaskMachineDaily
2019-10-12 20:46 - 2016-12-15 09:03 - 000003274 _____ C:\Windows\system32\Tasks\GyazoUpdateTaskMachine
2019-10-12 20:46 - 2015-11-17 22:40 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2019-10-12 20:46 - 2015-11-17 18:20 - 000003536 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2019-10-12 20:46 - 2015-11-17 18:20 - 000003408 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2019-10-11 13:18 - 2019-03-19 13:34 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-10-11 13:18 - 2009-07-14 05:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2019-10-11 13:17 - 2019-03-19 13:31 - 000000000 ____D C:\Program Files\Microsoft Office
2019-10-11 10:03 - 2016-03-10 15:49 - 000000000 ___RD C:\Users\Leire\Documents\OneDrive
2019-10-11 10:03 - 2016-03-10 15:19 - 000002190 _____ C:\Users\Leire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2019-10-10 18:52 - 2015-11-17 20:34 - 000000000 ____D C:\ProgramData\Riot Games
2019-10-10 18:51 - 2019-06-13 18:54 - 000000000 ____D C:\Riot Games
2019-10-09 16:19 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\PolicyDefinitions
2019-10-09 16:12 - 2015-11-17 23:57 - 000000000 ____D C:\Windows\system32\MRT
2019-10-09 16:09 - 2015-11-17 23:57 - 127230528 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-10-09 11:14 - 2019-04-09 15:32 - 001001472 ___SH C:\Users\Leire\Desktop\Thumbs.db
2019-10-09 11:09 - 2019-03-20 17:07 - 000000000 ____D C:\Users\Leire\.fontconfig
2019-10-09 10:49 - 2019-03-23 18:17 - 000000000 ____D C:\Windows\files
2019-10-08 10:56 - 2015-11-17 18:20 - 000000000 ____D C:\Program Files (x86)\Google
2019-10-02 16:50 - 2019-01-14 16:49 - 000275232 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsdriver.sys
2019-10-02 16:50 - 2019-01-05 14:43 - 000210328 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsh.sys
2019-10-02 16:50 - 2019-01-05 14:43 - 000065376 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbuniv.sys
2019-10-02 16:50 - 2019-01-05 14:43 - 000037880 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgArDisk.sys
2019-10-02 16:50 - 2018-10-20 15:13 - 000043512 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgKbd.sys
2019-10-02 16:50 - 2017-11-27 13:40 - 000205600 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgArPot.sys
2019-10-02 16:50 - 2017-03-27 17:08 - 000848688 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSnx.sys
2019-10-02 16:50 - 2017-03-27 17:08 - 000461216 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSP.sys
2019-10-02 16:50 - 2017-03-27 17:08 - 000317304 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgVmm.sys
2019-10-02 16:50 - 2017-03-27 17:08 - 000111096 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRdr2.sys
2019-10-02 16:50 - 2017-03-27 17:08 - 000084560 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRvrt.sys
2019-10-02 12:55 - 2019-03-29 11:31 - 000000000 ____D C:\Program Files\iTunes
2019-10-02 12:46 - 2019-06-18 12:17 - 000000000 ____D C:\Users\Leire\AppData\Roaming\vlc
2019-09-30 19:02 - 2019-03-01 21:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2019-09-30 10:25 - 2009-07-14 07:08 - 000032526 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2019-09-29 17:39 - 2015-11-17 18:21 - 000002222 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-09-20 21:33 - 2018-03-05 13:46 - 000000000 ____D C:\Windows\rescache
2019-09-17 13:01 - 2015-11-17 22:31 - 000000000 ___SD C:\Windows\system32\CompatTel
2019-09-17 10:51 - 2015-11-17 20:00 - 001650956 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2019-09-14 16:27 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\NDF

==================== Files in the root of some directories ================

2017-12-20 18:14 - 2018-01-08 13:04 - 000000132 _____ () C:\Users\Leire\AppData\Roaming\Adobe IllExport Filter CS6 Prefs
2016-07-14 09:35 - 2018-03-27 19:38 - 000000132 _____ () C:\Users\Leire\AppData\Roaming\Adobe PNG Format CS6 Prefs
2017-09-15 12:58 - 2019-07-23 17:35 - 000000034 _____ () C:\Users\Leire\AppData\Roaming\AdobeWLCMCache.dat
2019-07-24 18:37 - 2019-08-05 11:58 - 000000028 _____ () C:\Users\Leire\AppData\Roaming\kulerdata.json
2018-04-30 19:57 - 2018-09-20 15:48 - 000000132 _____ () C:\Users\Leire\AppData\Roaming\Prefs. de formato PNG de Adobe CS6
2018-09-28 09:20 - 2018-09-28 09:20 - 000000000 _____ () C:\Users\Leire\AppData\Local\oobelibMkey.log
2018-03-13 20:10 - 2018-11-08 22:20 - 000007651 _____ () C:\Users\Leire\AppData\Local\resmon.resmoncfg

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2019-10-13 00:17
==================== End of FRST.txt ============================

Addition.txt Parte 1

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-10-2019 02
Ran by Leire (14-10-2019 11:28:06)
Running from C:\Users\Leire\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2015-11-17 12:47:41)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-1895503046-2164595843-4212185805-500 - Administrator - Disabled)
HomeGroupUser$ (S-1-5-21-1895503046-2164595843-4212185805-1002 - Limited - Enabled)
Invitado (S-1-5-21-1895503046-2164595843-4212185805-501 - Limited - Enabled)
Leire (S-1-5-21-1895503046-2164595843-4212185805-1000 - Administrator - Enabled) => C:\Users\Leire

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: AVG Antivirus (Disabled - Up to date) {4FC75CA5-1654-5411-7CFB-1893D506BCF4}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Antivirus (Disabled - Up to date) {F4A6BD41-306E-5B9F-464B-23E1AE81F649}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-1895503046-2164595843-4212185805-1000\...\uTorrent) (Version: 3.5.5.45365 - BitTorrent Inc.)
Actualización de NVIDIA 37.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 37.0.0.0 - NVIDIA Corporation) Hidden
adobe (HKLM\...\{DC92137A-66A3-4FEF-A5B1-FB233399C823}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 19.012.20040 - Adobe Systems Incorporated)
Adobe Connect (HKU\S-1-5-21-1895503046-2164595843-4212185805-1000\...\Adobe Connect App) (Version: 2019.3.3.32 - Adobe Systems Inc.)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.7.0.400 - Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.270 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.270 - Adobe)
Adobe Illustrator CC 2019 (HKLM-x32\...\ILST_23_0_2) (Version: 23.0.2 - Adobe Systems Incorporated)
Adobe InCopy CC 2019 (HKLM-x32\...\AICY_14_0) (Version: 14.0 - Adobe Systems Incorporated)
Adobe InDesign CC 2019 (HKLM-x32\...\IDSN_14_0) (Version: 14.0 - Adobe Systems Incorporated)
Adobe Photoshop CC 2019 (HKLM-x32\...\PHSP_20_0_4) (Version: 20.0.4 - Adobe Systems Incorporated)
ANT Drivers Installer x64 (HKLM\...\{B7626024-53D9-4982-A1EE-64BC9438DFD5}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
AORUS ENGINE (HKLM-x32\...\AORUS ENGINE_is1) (Version: 1.4.6.0 - GIGABYTE Technology Co.,Inc.)
Apple Application Support (32 bits) (HKLM-x32\...\{2DB9CC90-24C4-4260-935D-511973B75707}) (Version: 7.6 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{DC327764-A1B1-4EF3-A07C-38741E3557E7}) (Version: 7.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{6CECF0FB-EE71-4FE5-8AE0-FA007408934A}) (Version: 13.0.0.38 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Autodesk A360 Collaboration for Revit 2017 (HKLM\...\Autodesk A360 Collaboration for Revit 2017) (Version: 17.0.416.0 - Autodesk)
Autodesk App Manager (HKLM-x32\...\{C070121A-C8C5-4D52-9A7D-D240631BD433}) (Version: 1.1.0 - Autodesk)
Autodesk BIM 360 Revit 2017 Add-in 64 bit (HKLM\...\{A26EBAD5-9591-407F-9D6C-C7A4F3DFE506}) (Version: 4.37.6853 - Autodesk)
Autodesk Content Service (HKLM-x32\...\{62F029AB-85F2-0000-866A-9FC0DD99DDBC}) (Version: 3.1.3.0 - Autodesk) Hidden
Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.1.3.0 - Autodesk)
Autodesk Content Service Language Pack (HKLM-x32\...\{62F029AB-85F2-0001-866A-9FC0DD99DDBC}) (Version: 3.1.3.0 - Autodesk) Hidden
Autodesk Featured Apps (HKLM-x32\...\{F732FEDA-7713-4428-934B-EF83B8DD65D0}) (Version: 1.1.0 - Autodesk)
Autodesk License Service (x64) - 3.1 (HKLM\...\{EB6FE58F-8576-4272-BB9C-6B47D9EDFA4D}) (Version: 3.1.26.0 - Autodesk)
Autodesk Material Library 2016 (HKLM-x32\...\{29A7D6EC-63C2-42FD-8143-5812ABD2923F}) (Version: 6.3.0.18 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2014 (HKLM-x32\...\{51BF3210-B825-4092-8E0D-66D689916E02}) (Version: 4.0.19.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2016 (HKLM-x32\...\{6B4CFC6E-ECB0-47FE-95D3-65C680ED0687}) (Version: 6.3.0.18 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2017 (HKLM-x32\...\{3FBFBC43-9882-43FA-B979-2D53896747B3}) (Version: 15.11.3.0 - Autodesk)
Autodesk Material Library Low Resolution Image Library 2017 (HKLM-x32\...\{360AC116-6CD4-4E7D-8174-28D47B05E898}) (Version: 15.11.3.0 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2017 (HKLM-x32\...\{CB6E007E-701D-42CD-AF0E-4BE9C36C7F7C}) (Version: 15.11.3.0 - Autodesk)
Autodesk Revit 2017 (HKLM\...\Autodesk Revit 2017) (Version: 17.0.416.0 - Autodesk)
Autodesk Revit 2017 (HKLM\...\Revit 2017) (Version:  - )
Autodesk Revit Content Libraries 2017 - Español (Spanish) (HKLM\...\Autodesk Revit Content Libraries 2017 - Español (Spanish)) (Version: 17.0.416.0 - Autodesk)
Autodesk Revit Content Libraries 2017 - Español (Spanish) (HKLM\...\Revit Content Libraries 2017 - Español (Spanish)) (Version:  - )
Autodesk Revit MEP Imperial Content v2.0 (HKLM\...\{F2538944-3E07-4E97-B41A-FC48AB53EE9D}) (Version: 2.0 - Autodesk)
Autodesk Revit MEP Metric Content v2.0 (HKLM\...\{DEF775C7-84BF-4730-976A-FE3747F1757C}) (Version: 2.0 - Autodesk)
Autodesk Workflows 2016 (HKLM\...\{535CDED0-D690-4738-83EE-09056A365BAC}) (Version: 6.3.0.18 - Autodesk, Inc.)
Autodesk Workflows 2017 (HKLM\...\{23A13F78-5B67-441A-ABF9-48BE8B5455DB}) (Version: 15.11.13.0 - Autodesk, Inc.)
AVG AntiVirus FREE (HKLM-x32\...\AVG Antivirus) (Version: 19.8.3108 - AVG Technologies)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Brackets (HKLM-x32\...\{9CB3A036-0B7E-49B7-A60B-291E245CA6B2}) (Version: 1.13.17696 - brackets.io)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.74.1085 - AB Team, d.o.o.)
calibre (HKLM-x32\...\{F36B475A-C7DD-4B1E-989B-8B78900E9DFD}) (Version: 3.46.0 - Kovid Goyal)
CERMA_v4_2 versión 4.2 (HKLM-x32\...\{2699707D-1815-4CED-928A-95F231A6C6F6}_is1) (Version: 4.2 - )
ComicRack v0.9.178 (HKLM\...\ComicRack) (Version: v0.9.178 - cYo Soft)
Commandos 2: Men of Courage (HKLM-x32\...\{F7963BA0-EE1C-11D4-9FA5-00A0C9E6A342}) (Version:  - )
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DIAL Communication Framework (HKLM-x32\...\{562D0D31-FBAF-4505-8B27-4EC92EEA91D6}) (Version: 1.3.1.215 - DIAL GmbH)
DIAL Data Dispatcher (HKLM-x32\...\DIAL Data Dispatcher1.0) (Version: 1.0 - DIAL GmbH)
DIALux 4.13 (HKLM-x32\...\DIALux) (Version: 4.13.0.0 - DIAL GmbH)
DIALux evo (x64) (HKLM-x32\...\{5FF70775-5D3A-4A26-B9ED-1BF642E9987C}) (Version: 5.6.2.31925 - DIAL GmbH)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 419.35 - NVIDIA Corporation) Hidden
Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.8000.13 - Dolby Laboratories Inc)
Dynamo 0.9.1 (HKLM\...\{85626FB3-CAF9-49C1-AA28-E3C75164BD6F}) (Version: 0.9.1.4062 - Autodesk)
EaseUS Todo Backup Free 11.5 (HKLM-x32\...\EaseUS Todo Backup_is1) (Version: 11.5 - CHENGDU YIWO Tech Development Co., Ltd)
Elevated Installer (HKLM-x32\...\{067FCCD5-0DC8-4D84-849C-A82656EFD36C}) (Version: 6.16.1.0 - Garmin Ltd or its subsidiaries) Hidden
FARO LS 1.1.501.0 (64bit) (HKLM-x32\...\{8A470330-70B2-49AD-86AF-79885EF9898A}) (Version: 5.1.0.30630 - FARO Scanner Production)
FormIt 360 Converter For Revit 2017 (HKLM\...\{637211B6-D2E9-474A-BF06-4F61F1254104}) (Version: 1.9.0.0 - Autodesk)
Galería de fotos (HKLM-x32\...\{198CEF22-A27F-4DC7-9B66-2C22A4B1CA09}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Garmin BaseCamp (HKLM-x32\...\{23A4DBD1-D847-4957-995D-8B1CC527E2E2}) (Version: 4.6.2.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM-x32\...\{78B7CE44-6303-4EC8-9A53-B7F3F3F89E24}) (Version: 6.16.1.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express (HKLM-x32\...\{824324a6-400d-4ee8-9aa0-72a8627a425e}) (Version: 6.16.1.0 - Garmin Ltd or its subsidiaries)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 77.0.3865.90 - Google LLC)
Google Earth Pro (HKLM-x32\...\{9D524A1E-F2FC-444D-B12A-7592CEB56EB5}) (Version: 7.3.2.5776 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.301 - Google LLC) Hidden
GRAPHISOFT BIMcloud - Administrador de Servidor BIM 20 SPA (HKLM\...\109FFF2FFF20FF00FF2101F02F02F000-R1) (Version: 20.0 - GRAPHISOFT)
GRAPHISOFT BIMcloud - Módulo de Servidor BIM 20 SPA (HKLM\...\110FFF2FFF20FF00FF2101F02F02F000-R1) (Version: 20.0 - GRAPHISOFT)
Gyazo 4.0.1.0 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version:  - Nota Inc.)
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Herramienta oficial de calculo del DB HR del CTE (HKLM-x32\...\Herramienta oficial de calculo del DB HR del CTE 3.0) (Version: 3.0 - Ministerio de Fomento)
HP Dropbox Plugin (HKLM-x32\...\{7BEBB31E-58C4-4FA5-9AD1-ACBE32BF0D12}) (Version: 36.0.41.58587 - HP)
HP Google Drive Plugin (HKLM-x32\...\{63BD9C12-5CE9-4294-B1C3-A09F971FAFB5}) (Version: 36.0.41.58587 - HP)
HP OfficeJet 3830 series Ayuda (HKLM-x32\...\{C4BF4EE8-27DB-44E4-B311-19E5DD46F8FB}) (Version: 35.0.0 - Hewlett Packard)
HP OfficeJet 3830 series Software básico del dispositivo (HKLM\...\{B73C5A7C-DD07-4817-B2A2-3A65820588BF}) (Version: 40.11.1119.1786 - HP Inc.)
IBM SPSS Statistics 25 (HKLM\...\{C2D1E17D-CB8A-4742-84FA-1DB5C6A1ABDD}) (Version: 25.0.0.0 - IBM Corp)
IBM SPSS Statistics 25 25.0.0.0 (HKLM-x32\...\IBM SPSS Statistics 25 25.0.0.0) (Version: 25.0.0.0 - IBM SPSS Statistics 25)
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{AA67D612-0BE5-44D6-9A91-592958F754A1}) (Version: 13.0.198 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
IronPython 2.7.3 (HKLM-x32\...\{1EBADAEA-1A0F-40E3-848C-0DD8C5E5A10D}) (Version: 2.7.31000.0 - IronPython Team)
iSkysoft Helper Compact 2.5.2 (HKLM-x32\...\{9BF12010-8799-41A5-A671-E9CFDE9E79F3}_is1) (Version: 2.5.2 - iSkysoft)
Java 8 Update 221 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180221F0}) (Version: 8.0.2210.11 - Oracle Corporation)
Last.fm Desktop Scrobbler (HKLM-x32\...\{B13709CB-85AE-4F45-BFF9-2CB2B7A78F83}) (Version: 3.1.29 - Last.fm)
Last.fm Scrobbler 2.1.37 (HKLM-x32\...\LastFM_is1) (Version:  - Last.fm)
League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
Logitech Gaming Software 9.02 (HKLM\...\Logitech Gaming Software) (Version: 9.02.65 - Logitech Inc.)
Malwarebytes versión 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes)
MAMP & MAMP PRO 4.0 version 4.0.0 (HKLM-x32\...\{A62E77D4-9B74-4CA0-A254-EFE711F7A298}_is1) (Version: 4.0.0 - appsolute Gmbh)
MEGAsync (HKLM-x32\...\MEGAsync) (Version:  - Mega Limited)
Microsoft .NET Framework 4.7.2 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office Profesional Plus 2016 - es-es (HKLM\...\ProplusRetail - es-es) (Version: 16.0.12026.20320 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1895503046-2164595843-4212185805-1000\...\OneDriveSetup.exe) (Version: 19.152.0927.0012 - Microsoft Corporation)
Microsoft Project Profesional 2016 - es-es (HKLM\...\ProjectProRetail - es-es) (Version: 16.0.12026.20320 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visio Profesional 2016 - es-es (HKLM\...\VisioProRetail - es-es) (Version: 16.0.12026.20320 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{14297226-E0A0-3781-8911-E9D529552663}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.15.26706 (HKLM-x32\...\{95ac1cfa-f4fb-4d1b-8912-7f9d5fbb140d}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (HKLM-x32\...\{7e9fae12-5bbf-47fb-b944-09c49e75c061}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Movavi Video Suite 17 (HKLM-x32\...\Movavi Video Suite 17) (Version: 17.0.1 - Movavi)
Movie Maker (HKLM-x32\...\{9C82436F-F19C-42A4-B476-F87A28A95BF9}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 68.0.2 (x64 es-ES) (HKLM\...\Mozilla Firefox 68.0.2 (x64 es-ES)) (Version: 68.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 66.0.5 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.15 - NVIDIA Corporation) Hidden
NVIDIA Controlador de audio HD 1.3.38.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.16 - NVIDIA Corporation)
NVIDIA Controlador de gráficos 431.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 431.60 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.19.0.107 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.19.0.107 - NVIDIA Corporation)
NVIDIA Software del sistema PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 24.0.1 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.12026.20320 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.12026.20320 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0C0A-1000-0000000FF1CE}) (Version: 16.0.12026.20320 - Microsoft Corporation) Hidden
Opera Stable 63.0.3368.107 (HKU\S-1-5-21-1895503046-2164595843-4212185805-1000\...\Opera 63.0.3368.107) (Version: 63.0.3368.107 - Opera Software)
Panasonic DIALux Plugin 2.0 (HKLM-x32\...\{DB593EA8-9734-4FA3-BED3-D5CBBE514C16}) (Version: 2.02.0000 - Panasonic Corporation)
Panel de control de NVIDIA 431.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 431.60 - NVIDIA Corporation) Hidden
Paquete de controladores de Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Paquete de controladores de Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB  (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
Paquete de idioma de Microsoft Visual Studio 2010 Tools para Office Runtime (x64) - ESN (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - ESN) (Version: 10.0.50903 - Microsoft Corporation)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.2.1 - pdfforge)
PDFsam Basic (HKLM-x32\...\{910EA44E-8446-405D-BFE1-82F562F847D0}) (Version: 3.30.0.0 - Andrea Vacondio)
Personal Accelerator for Revit (HKLM\...\{7C317DB0-F31F-4024-A289-92CF4B6FB256}) (Version: 16.0.1109.0 - Autodesk) Hidden
Personal Accelerator for Revit (HKLM\...\Personal Accelerator for Revit) (Version: 16.0.1109.0 - Autodesk)
Philips Product Selector 5.2.9.17 (HKLM-x32\...\{81AD9228-21AC-4DBD-AE33-98146A88BAA8}) (Version: 5.2.9.17 - Philips Lighting) Hidden
Philips Product Selector 5.2.9.17 (HKLM-x32\...\InstallShield_{81AD9228-21AC-4DBD-AE33-98146A88BAA8}) (Version: 5.2.9.17 - Philips Lighting)
PhotoScape (HKLM-x32\...\PhotoScape) (Version:  - )
PPS max plugin 1.7.0 (HKLM-x32\...\PPS max plugin_is1) (Version: 1.7.0.0 - Tree C Technology B.V.)
Presto 8.8 (HKLM-x32\...\{099EA4F2-0BE8-443B-B6EE-2B8FDF035DC0}) (Version:  - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.88.617.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6662 - Realtek Semiconductor Corp.)
Revit 2017 (HKLM\...\{7346B4A0-1700-0510-0000-705C0D862004}) (Version: 17.0.416.0 - Autodesk) Hidden
Revit Content Libraries 2017 - Español (Spanish) (HKLM\...\{941030D0-1700-0410-0000-818BB38A95FC}) (Version: 17.0.416.0 - Autodesk) Hidden
Revo Uninstaller Pro 3.1.8 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.8 - VS Revo Group, Ltd.)
RGB Fusion (HKLM-x32\...\{FFA8F1FA-3C2C-4A94-AC0B-0DF47272C25F}) (Version: 3.18.1026.1 - GIGABYTE)
Samsung Data Migration (HKLM-x32\...\{3B304604-0BF5-488E-AB95-F2F2E31206F3}) (Version: 3.1 - Samsung)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 5.0.0.790 - Samsung Electronics)
Servidor BIM de GRAPHISOFT 20 SPA (HKLM\...\116FFF2FFF20FF00FF2101F02F02F000-R1) (Version: 20.0 - GRAPHISOFT)
sign pro PDF (novaPDF OEM 7.7 printer) (HKLM\...\sign pro PDF_is1) (Version: 7.7.396 - Softland)
SketchUp Import for AutoCAD 2014 (HKLM-x32\...\{644E9589-F73A-49A4-AC61-A953B9DE5669}) (Version: 1.1.0 - Autodesk)
Skype versión 8.52 (HKLM-x32\...\Skype_is1) (Version: 8.52 - Skype Technologies S.A.)
Tableta Wacom (HKLM\...\Wacom Tablet Driver) (Version: 6.3.35-3 - Wacom Technology Corp.)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.41110 - TeamViewer)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)
VdhCoApp 1.2.4 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version:  - DownloadHelper)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{6DA2B636-698A-3294-BF4A-B5E11B238CDD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{8CCEA24C-51AE-3B71-9092-7D0C44DDA2DF}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{C3A57BB3-9AA6-3F6F-9395-6C062BDD5FC4}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{F6F09DD8-F39B-3A16-ADB9-C9E6B56903F9}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{04B34E21-5BEE-3D2B-8D3D-E3E80D253F64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{14866AAD-1F23-39AC-A62B-7091ED1ADE64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{4B90093A-5D9C-3956-8ABB-95848BE6EFAD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{B42E259C-E4D4-37F1-A1B2-EB9C4FC5A04D}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
V-Ray 3.4 for SketchUp (HKLM\...\V-Ray 3.4 for SketchUp) (Version: 3.40.04 - Chaos Software Ltd)
V-Ray Swarm (HKLM\...\V-Ray Swarm) (Version: 1.3.6 - Chaos Software Ltd)
Wacom sign pro PDF (HKLM-x32\...\{FF489CB2-9356-424B-8AB6-B6299807727E}) (Version: 2.0.13 - Wacom Co., Ltd.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1895503046-2164595843-4212185805-1000_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe => No File
CustomCLSID: HKU\S-1-5-21-1895503046-2164595843-4212185805-1000_Classes\CLSID\{7DE1BE5C-CEBA-4F1D-ACBC-9CE11EE9A2A1}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-1895503046-2164595843-4212185805-1000_Classes\CLSID\{BD0DEB94-63DB-4392-9420-6EEE05094B1F}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-1895503046-2164595843-4212185805-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2014\es-ES\acadficn.dll => No File
CustomCLSID: HKU\S-1-5-21-1895503046-2164595843-4212185805-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Leire\AppData\Local\MEGAsync\ShellExtX64.dll [2019-06-05] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Leire\AppData\Local\MEGAsync\ShellExtX64.dll [2019-06-05] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Leire\AppData\Local\MEGAsync\ShellExtX64.dll [2019-06-05] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Leire\AppData\Local\MEGAsync\ShellExtX64.dll [2019-06-05] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Leire\AppData\Local\MEGAsync\ShellExtX64.dll [2019-06-05] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Leire\AppData\Local\MEGAsync\ShellExtX64.dll [2019-06-05] (Mega Limited -> )
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [DIALuxShellExtension] -> {F23E3460-D1B1-4F51-8C3D-E5D91E3C71C8} => E:\PROGRAMAS carpeta instalacion\DIALux evo 6\Dialux.ShellExtension.x64.dll [2016-11-16] (DIAL GmbH) [File not signed]
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Leire\AppData\Local\MEGAsync\ShellExtX64.dll [2019-06-05] (Mega Limited -> )
ContextMenuHandlers1: [SimpleShlExt] -> {45203D3B-3D73-4497-8AFE-D29950AC6C55} => E:\PROGRAMAS carpeta instalacion\EaseUs\Todo Backup\bin\x64\ImageSh.dll [2018-12-25] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co.,Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Leire\AppData\Local\MEGAsync\ShellExtX64.dll [2019-06-05] (Mega Limited -> )
ContextMenuHandlers2: [SimpleShlExt] -> {45203D3B-3D73-4497-8AFE-D29950AC6C55} => E:\PROGRAMAS carpeta instalacion\EaseUs\Todo Backup\bin\x64\ImageSh.dll [2018-12-25] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co.,Ltd)
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Leire\AppData\Local\MEGAsync\ShellExtX64.dll [2019-06-05] (Mega Limited -> )
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Leire\AppData\Local\MEGAsync\ShellExtX64.dll [2019-06-05] (Mega Limited -> )
ContextMenuHandlers4: [SimpleShlExt] -> {45203D3B-3D73-4497-8AFE-D29950AC6C55} => E:\PROGRAMAS carpeta instalacion\EaseUs\Todo Backup\bin\x64\ImageSh.dll [2018-12-25] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co.,Ltd)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-07-17] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2019-10-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2016-12-15] (VS Revo Group -> VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ==================


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

ShortcutWithArgument: C:\Users\Leire\Desktop\zeit - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 3"
ShortcutWithArgument: C:\Users\Leire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Hangouts de Google.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory="Profile 3" --app-id=knipolnnllmklapflnccelgolnpehhpl
ShortcutWithArgument: C:\Users\Leire\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\zeit - Chrome - copia.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 3"
ShortcutWithArgument: C:\Users\Leire\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Persona 1 - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"
ShortcutWithArgument: C:\Users\Leire\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\37ea5785e6fa6bd2\Hangouts de Google.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=nckgahadagoaajjgafhacjanaoiihapd

==================== Loaded Modules (Whitelisted) ==============

2018-04-09 21:02 - 2018-04-09 21:02 - 000174592 _____ () [File not signed] \\?\C:\Program Files\Chaos Group\V-Ray Swarm\node_modules\ffi\build\Release\ffi_bindings.node
2018-04-09 21:02 - 2018-04-09 21:02 - 000163328 _____ () [File not signed] \\?\C:\Program Files\Chaos Group\V-Ray Swarm\node_modules\ref\build\Release\binding.node
2018-04-09 21:02 - 2018-04-09 21:02 - 000204800 _____ () [File not signed] \\?\C:\Program Files\Chaos Group\V-Ray Swarm\node_modules\v8-profiler\build\profiler\v5.6.5\node-v48-win32-x64\profiler.node
2019-04-12 16:03 - 2016-07-21 10:54 - 000137728 _____ () [File not signed] C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\CBSCreateVC.dll
2019-04-12 16:03 - 2016-10-08 16:59 - 001506304 _____ () [File not signed] C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\DAQExp.dll
2019-04-19 11:21 - 2016-03-07 18:08 - 001291264 _____ () [File not signed] E:\PROGRAMAS carpeta instalacion\EaseUs\Todo Backup\bin\libxml2.dll
2019-04-19 11:21 - 2004-10-05 03:08 - 000055808 _____ () [File not signed] E:\PROGRAMAS carpeta instalacion\EaseUs\Todo Backup\bin\zlib1.dll
2017-04-18 05:45 - 2017-04-18 05:45 - 000808960 _____ () [File not signed] E:\PROGRAMAS carpeta instalacion\Garmin express\Garmin\Express\CefSharp.BrowserSubprocess.Core.dll
2017-04-18 05:45 - 2017-04-18 05:45 - 001227264 _____ () [File not signed] E:\PROGRAMAS carpeta instalacion\Garmin express\Garmin\Express\CefSharp.Core.dll
2019-07-25 15:31 - 2019-07-25 15:31 - 000073216 _____ () [File not signed] E:\PROGRAMAS carpeta instalacion\Garmin express\Garmin\Express\FixBootSector.dll
2017-05-08 10:35 - 2017-05-08 10:35 - 000325632 _____ () [File not signed] E:\PROGRAMAS carpeta instalacion\Garmin express\Garmin\Express\GpsImgWrapper.dll
2017-04-09 23:49 - 2017-04-09 23:49 - 067109376 _____ () [File not signed] E:\PROGRAMAS carpeta instalacion\Garmin express\Garmin\Express\libcef.dll
2017-04-09 23:49 - 2017-04-09 23:49 - 000079360 _____ () [File not signed] E:\PROGRAMAS carpeta instalacion\Garmin express\Garmin\Express\libegl.dll
2017-04-09 23:49 - 2017-04-09 23:49 - 002246144 _____ () [File not signed] E:\PROGRAMAS carpeta instalacion\Garmin express\Garmin\Express\libglesv2.dll
2013-01-14 16:20 - 2013-01-14 16:20 - 000527872 _____ (AMYUNI Technologies hxxp://www.amyuni.com) [File not signed] C:\Windows\system32\spool\DRIVERS\x64\3\acpdfui450.dll
2019-07-25 15:31 - 2019-07-25 15:31 - 001976832 _____ (Apache Software Foundation) [File not signed] E:\PROGRAMAS carpeta instalacion\Garmin express\Garmin\Express\XercesLib.dll
2016-11-16 11:40 - 2016-11-16 11:33 - 001437696 _____ (DIAL GmbH) [File not signed] E:\PROGRAMAS carpeta instalacion\DIALux evo 6\Dialux.ShellExtension.x64.dll
2019-07-25 15:33 - 2019-07-25 15:33 - 000234496 _____ (Dynastream Innovations Inc.) [File not signed] E:\PROGRAMAS carpeta instalacion\Garmin express\Garmin\Express\ANT_WrappedLib.dll
2019-04-19 11:21 - 2008-11-25 17:18 - 000892928 _____ (Free Software Foundation) [File not signed] E:\PROGRAMAS carpeta instalacion\EaseUs\Todo Backup\bin\iconv.dll
2019-07-25 15:31 - 2019-07-25 15:31 - 002711552 _____ (Garmin International) [File not signed] E:\PROGRAMAS carpeta instalacion\Garmin express\Garmin\Express\legacyio.dll
2017-05-08 10:35 - 2017-05-08 10:35 - 000343552 _____ (Garmin International, Inc.) [File not signed] E:\PROGRAMAS carpeta instalacion\Garmin express\Garmin\Express\IMG_GPSMAP.dll
2019-07-25 15:31 - 2019-07-25 15:31 - 000425472 _____ (Garmin) [File not signed] E:\PROGRAMAS carpeta instalacion\Garmin express\Garmin\Express\XMLdll.dll
2019-08-22 11:44 - 2015-09-21 13:16 - 001039360 _____ (Hewlett-Packard Co.) [File not signed] c:\users\leire\appdata\local\temp\7zs26b5\hpslpsvc64.dll
2019-08-22 12:28 - 2017-03-27 22:26 - 007592960 _____ (HP Inc.) [File not signed] C:\Windows\system32\spool\DRIVERS\x64\3\HPOJ3830_FaxPCSendRenderPlugin.dll
2018-03-26 13:58 - 2018-03-26 13:58 - 000112128 _____ (Microsoft Corporation) [File not signed] C:\Windows\Microsoft.Net\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
2015-11-17 22:46 - 2015-11-17 22:46 - 000870912 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\spool\DRIVERS\x64\3\PS5UI.DLL
2015-11-18 16:21 - 2015-11-18 16:21 - 000225280 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll
2015-08-12 11:48 - 2015-11-21 10:20 - 000101376 _____ (Sand Studio) [File not signed] E:\Software\AirDroid\Plugins\AirContextMenu_3_1_5.dll
2019-07-25 15:32 - 2019-07-25 15:32 - 000090112 _____ (Silicon Laboratories, Inc.) [File not signed] E:\PROGRAMAS carpeta instalacion\Garmin express\Garmin\Express\DSI_SiUSBXp_3_1.DLL
2017-04-09 23:49 - 2017-04-09 23:49 - 000434176 _____ (The Chromium Authors) [File not signed] E:\PROGRAMAS carpeta instalacion\Garmin express\Garmin\Express\chrome_elf.dll
2018-04-06 20:29 - 2018-04-06 20:29 - 002286747 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\LIBEAY32.dll
2018-04-06 20:29 - 2018-04-06 20:29 - 000416627 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\ssleay32.dll
2019-04-12 16:03 - 2016-10-08 17:00 - 000708608 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\CBSProducstInfo.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:1CE11B51 [94]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-1895503046-2164595843-4212185805-1000\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1"

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-1895503046-2164595843-4212185805-1000\...\localhost -> localhost

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2019-04-11 14:28 - 000000035 _____ C:\Windows\system32\drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Intel\Shared Libraries\redist\intel64\compiler;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Windows Live\Shared;E:\PROGRAMAS carpeta instalacion\Calibre\;C:\Program Files\Common Files\Autodesk Shared\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\IBM\SPSS\Statistics\25\JRE\bin;C:\Program Files (x86)\Brackets\command;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
HKU\S-1-5-21-1895503046-2164595843-4212185805-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Leire\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: Media is not connected to internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

MSCONFIG\startupfolder: C:^Users^Leire^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Enviar a OneNote.lnk => C:\Windows\pss\Enviar a OneNote.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Leire^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^EvernoteClipper.lnk => C:\Windows\pss\EvernoteClipper.lnk.Startup
MSCONFIG\startupreg: Autodesk Desktop App => "C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray
MSCONFIG\startupreg: Autodesk Sync => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
MSCONFIG\startupreg: DAEMON Tools Lite Automount => "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
MSCONFIG\startupreg: EPLTarget => 
MSCONFIG\startupreg: GarminExpressTrayApp => "E:\PROGRAMAS carpeta instalacion\Garmin express\Garmin\Express Tray\ExpressTray.exe"
MSCONFIG\startupreg: Gyazo => C:\Program Files (x86)\Gyazo\GyStation.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: OneDrive => "C:\Users\Leire\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
MSCONFIG\startupreg: pac => C:\Program Files\Autodesk\Personal Accelerator for Revit\RevitAccelerator.exe
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Spotify Web Helper => C:\Users\Leire\AppData\Roaming\Spotify\SpotifyWebHelper.exe --autostart

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{732F1BD3-A999-4699-9485-5ED6ECDABB67}] => (Allow) E:\PROGRAMAS carpeta instalacion\EaseUs\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> )
FirewallRules: [{787678B6-2BCD-40AB-8C29-7177613CE110}] => (Allow) E:\PROGRAMAS carpeta instalacion\EaseUs\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> )
FirewallRules: [TCP Query User{80EC70D1-FE13-4645-B7B3-42885D8476AA}C:\program files\hp\hp officejet 3830 series\bin\hpnetworkcommunicatorcom.exe] => (Block) C:\program files\hp\hp officejet 3830 series\bin\hpnetworkcommunicatorcom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [UDP Query User{E747D237-1F96-43F5-A0EE-A09028F05CE5}C:\program files\hp\hp officejet 3830 series\bin\hpnetworkcommunicatorcom.exe] => (Block) C:\program files\hp\hp officejet 3830 series\bin\hpnetworkcommunicatorcom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [TCP Query User{70DEF64B-5BE9-4021-A129-7A580674F23C}E:\lol\rads\projects\league_client\releases\0.0.0.172\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.172\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{12403850-DDE6-4A41-B79A-448154925F34}E:\lol\rads\projects\league_client\releases\0.0.0.172\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.172\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{3E7BDBDC-64C4-4F09-9205-544EE39C79CD}C:\program files\hp\hp officejet 3830 series\bin\hpnetworkcommunicatorcom.exe] => (Allow) C:\program files\hp\hp officejet 3830 series\bin\hpnetworkcommunicatorcom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [UDP Query User{E2756B52-FAE6-45F7-9475-CD8981E2867C}C:\program files\hp\hp officejet 3830 series\bin\hpnetworkcommunicatorcom.exe] => (Allow) C:\program files\hp\hp officejet 3830 series\bin\hpnetworkcommunicatorcom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [TCP Query User{83095A2B-F767-4884-8487-5256D287AAA8}C:\users\leire\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\leire\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{D466ADFE-F448-4AF5-A747-02B371A24076}C:\users\leire\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\leire\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{0EFA6568-23F4-40D1-AD7E-533859966AAA}C:\program files (x86)\gigabyte\aorus graphics engine\aorus.exe] => (Allow) C:\program files (x86)\gigabyte\aorus graphics engine\aorus.exe No File
FirewallRules: [UDP Query User{B89713AB-38EA-4851-88AB-03EA4E6D8B05}C:\program files (x86)\gigabyte\aorus graphics engine\aorus.exe] => (Allow) C:\program files (x86)\gigabyte\aorus graphics engine\aorus.exe No File
FirewallRules: [TCP Query User{0900D57A-F4CB-49D3-8A4B-9EF82540618B}C:\program files (x86)\gigabyte\aorus engine\aorus.exe] => (Allow) C:\program files (x86)\gigabyte\aorus engine\aorus.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGABYTE Technology Co.,Ltd.)
FirewallRules: [UDP Query User{2A921E90-6DF1-453F-8561-E5E5AC004736}C:\program files (x86)\gigabyte\aorus engine\aorus.exe] => (Allow) C:\program files (x86)\gigabyte\aorus engine\aorus.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGABYTE Technology Co.,Ltd.)
FirewallRules: [{450C69EA-C751-45A0-AB33-A1218FC25B11}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C23C4579-FBDE-4B2D-AAF7-AD2E0EC36698}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3BE56448-BDB1-4259-8811-E6E0650B5782}] => (Allow) C:\Users\Leire\AppData\Local\Temp\7zS68B6\HPDiagnosticCoreUI.exe (HP Inc. -> HPDC LP)
FirewallRules: [{D046F86A-8F7A-4824-B3AE-C857465FA71D}] => (Allow) C:\Users\Leire\AppData\Local\Temp\7zS68B6\HPDiagnosticCoreUI.exe (HP Inc. -> HPDC LP)
FirewallRules: [{61F0907E-6708-4E05-8AE7-954F9D3BD47B}] => (Allow) C:\Users\Leire\AppData\Local\Temp\7zS6E2C\HPDiagnosticCoreUI.exe (HP Inc. -> HPDC LP)
FirewallRules: [{80DF9BAB-90BD-4405-93CA-516AE631B8BC}] => (Allow) C:\Users\Leire\AppData\Local\Temp\7zS6E2C\HPDiagnosticCoreUI.exe (HP Inc. -> HPDC LP)
FirewallRules: [{BEB2306F-5B18-430C-A4F5-29398EC1BD22}] => (Allow) C:\Users\Leire\AppData\Local\Temp\7zS1A2B\HP.EasyStart.exe (HP Inc. -> HP)
FirewallRules: [TCP Query User{E54A56B9-5E4B-44C3-91F6-07B2B2994203}E:\lol\rads\projects\league_client\releases\0.0.0.174\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.174\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{4CC19703-8064-475C-AFD3-7EE676275ABD}E:\lol\rads\projects\league_client\releases\0.0.0.174\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.174\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{C7D8A2FC-6E33-429A-872A-194DE7D081C7}E:\lol\rads\projects\league_client\releases\0.0.0.174\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.174\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{E4F318A8-9A31-4A08-95C1-52E019A3439E}E:\lol\rads\projects\league_client\releases\0.0.0.174\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.174\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{F4009854-4CEB-405D-B32C-4BB10B100F1B}C:\users\leire\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\leire\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{F5EE411F-B935-4CC9-8BBB-03AE4037DD1A}C:\users\leire\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\leire\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{3FA50675-B99D-46CC-BC1A-AE327FABFF60}E:\lol\rads\projects\league_client\releases\0.0.0.175\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.175\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{169757FD-C1ED-4EAF-866B-2ECC96410531}E:\lol\rads\projects\league_client\releases\0.0.0.175\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.175\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{5376B69F-F65C-45A8-8040-67AE6A02444A}E:\lol\rads\projects\league_client\releases\0.0.0.176\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.176\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{B7403A5D-DEB8-4F7F-BEEF-D888401550C8}E:\lol\rads\projects\league_client\releases\0.0.0.176\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.176\deploy\leagueclient.exe No File
FirewallRules: [{653E1AD5-15E8-423E-90A7-1862DD7E7146}] => (Block) E:\lol\rads\projects\league_client\releases\0.0.0.176\deploy\leagueclient.exe No File
FirewallRules: [{282004D2-C38B-4247-948D-78EEA2229DB4}] => (Block) E:\lol\rads\projects\league_client\releases\0.0.0.176\deploy\leagueclient.exe No File
FirewallRules: [{458DF624-EC9C-4C81-BDFE-B49421C4270B}] => (Allow) C:\Users\Leire\AppData\Local\Temp\7zS3658\HPDiagnosticCoreUI.exe (HP Inc. -> HPDC LP)
FirewallRules: [{D94DCE8C-0571-44A5-9668-6B943F13E904}] => (Allow) C:\Users\Leire\AppData\Local\Temp\7zS3658\HPDiagnosticCoreUI.exe (HP Inc. -> HPDC LP)
FirewallRules: [{F4833C0E-EFBA-4CF1-BF5A-9A8FFDD261BD}] => (Allow) C:\Users\Leire\AppData\Local\Temp\7zS37B9\HPDiagnosticCoreUI.exe (HP Inc. -> HPDC LP)
FirewallRules: [{47C7C139-4822-480E-B090-A9AC2CC8D116}] => (Allow) C:\Users\Leire\AppData\Local\Temp\7zS37B9\HPDiagnosticCoreUI.exe (HP Inc. -> HPDC LP)
FirewallRules: [TCP Query User{371DB51A-C041-4102-BB36-5504E096F676}C:\users\leire\appdata\local\temp\7zs37b9\hpdiagnosticcoreui.exe] => (Allow) C:\users\leire\appdata\local\temp\7zs37b9\hpdiagnosticcoreui.exe (HP Inc. -> HPDC LP)
FirewallRules: [UDP Query User{B20FAF87-805D-4573-9657-7FA0593117CB}C:\users\leire\appdata\local\temp\7zs37b9\hpdiagnosticcoreui.exe] => (Allow) C:\users\leire\appdata\local\temp\7zs37b9\hpdiagnosticcoreui.exe (HP Inc. -> HPDC LP)
FirewallRules: [TCP Query User{65F680C1-B8CB-47D2-B6BA-D98A86AD48C8}E:\lol\rads\projects\league_client\releases\0.0.0.177\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.177\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{7D178243-2422-472C-8ECB-C2B8665F509A}E:\lol\rads\projects\league_client\releases\0.0.0.177\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.177\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{76D719AE-9925-4169-96DF-5D95A12ADF5C}E:\lol\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{8D320BFB-8401-4476-94A8-002546116013}E:\lol\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{2B2E667A-A75D-4593-BC85-6CE8181E4135}E:\lol\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{867FA54D-EB23-4A48-AD1E-4E597927E571}E:\lol\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.179\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{6C953BCE-64E1-42DB-8B07-7B34E50C16B0}C:\users\leire\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\leire\appdata\roaming\spotify\spotify.exe No File
FirewallRules: [UDP Query User{F4032849-EF3D-41E5-BC03-B8C10B48128A}C:\users\leire\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\leire\appdata\roaming\spotify\spotify.exe No File
FirewallRules: [{31B4FAA4-E839-469A-80D7-5038B2DA4468}] => (Allow) C:\Users\Leire\AppData\Local\Temp\7zS59E3\HPDiagnosticCoreUI.exe (HP Inc. -> HPDC LP)
FirewallRules: [{462C822A-F12B-4D20-A1BB-D62AC99AAE9A}] => (Allow) C:\Users\Leire\AppData\Local\Temp\7zS59E3\HPDiagnosticCoreUI.exe (HP Inc. -> HPDC LP)
FirewallRules: [TCP Query User{809B2A63-BF8A-4DF9-B9DF-2E6F222E6EEE}C:\program files\sketchup\sketchup 2017\sketchup.exe] => (Allow) C:\program files\sketchup\sketchup 2017\sketchup.exe No File

Addition.txt Parte 2


FirewallRules: [UDP Query User{218AD9B8-8642-48CD-90B9-756A8F69FE78}C:\program files\sketchup\sketchup 2017\sketchup.exe] => (Allow) C:\program files\sketchup\sketchup 2017\sketchup.exe No File
FirewallRules: [TCP Query User{467A6E66-C4C6-4F17-A880-AA7B87C5B29E}C:\program files\chaos group\v-ray\v-ray 3.4 for sketchup\extension\vrayneui-win32-x64\vrayneui.exe] => (Allow) C:\program files\chaos group\v-ray\v-ray 3.4 for sketchup\extension\vrayneui-win32-x64\vrayneui.exe (Chaos Software, Ltd) [File not signed]
FirewallRules: [UDP Query User{FFB98FBB-DD97-48E1-817F-1BAA661CF3AD}C:\program files\chaos group\v-ray\v-ray 3.4 for sketchup\extension\vrayneui-win32-x64\vrayneui.exe] => (Allow) C:\program files\chaos group\v-ray\v-ray 3.4 for sketchup\extension\vrayneui-win32-x64\vrayneui.exe (Chaos Software, Ltd) [File not signed]
FirewallRules: [TCP Query User{6E875876-0FAF-4A91-B4F7-26DB3EFAFA51}E:\lol\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{337BF519-3C3C-45BD-A1F0-75E7FF0ACF18}E:\lol\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{72630131-C396-4AE2-A32A-D2237D7253FC}E:\lol\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{2376BB96-D73D-4302-8DF2-2474DA2F07F6}E:\lol\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{C8CE33F2-A588-49B4-ADCC-4C27E6B12FC3}E:\lol\rads\projects\league_client\releases\0.0.0.182\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.182\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{DA720BAF-4809-4DDC-9628-7120BF0D55E2}E:\lol\rads\projects\league_client\releases\0.0.0.182\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.182\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{06F06867-12E5-48EA-8C92-F864F42D51E4}E:\lol\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{9E0C5066-A754-4DDB-B894-6E139CA1DA99}E:\lol\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{B3F92BFC-4921-493D-9824-9E30B03A97D4}E:\lol\rads\projects\league_client\releases\0.0.0.184\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.184\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{335A715C-65C0-4B29-8DAC-FB9BB103CC24}E:\lol\rads\projects\league_client\releases\0.0.0.184\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.184\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{3AD5E936-8628-47CC-890D-BDA6B4F9A775}E:\lol\rads\projects\league_client\releases\0.0.0.185\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.185\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{ACC0E3A7-2BE0-40E3-86F1-2C6330E9EAA2}E:\lol\rads\projects\league_client\releases\0.0.0.185\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.185\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{E3EF0A20-23CF-4910-9811-DEE403F198A8}E:\lol\rads\projects\league_client\releases\0.0.0.187\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.187\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{D9B9907B-1C53-40C5-AFDA-C189217FABBA}E:\lol\rads\projects\league_client\releases\0.0.0.187\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.187\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{CFF98381-D010-4740-BE4D-CA5BEBB623A6}E:\lol\rads\projects\league_client\releases\0.0.0.188\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.188\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{BE93DA4F-6788-4B4C-AF63-201E86FCBB80}E:\lol\rads\projects\league_client\releases\0.0.0.188\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.188\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{E7A24B04-AAFC-4D8E-9497-F668D845EA6E}E:\lol\rads\projects\league_client\releases\0.0.0.189\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.189\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{0E6216E0-6763-4899-A1AA-D32957CD1172}E:\lol\rads\projects\league_client\releases\0.0.0.189\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.189\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{A5DEB1D4-341A-4BBE-BD67-FF4CD5FD9BF4}E:\lol\rads\projects\league_client\releases\0.0.0.190\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.190\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{0CC7159B-D0C2-46DB-80ED-848934C0E0DE}E:\lol\rads\projects\league_client\releases\0.0.0.190\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.190\deploy\leagueclient.exe No File
FirewallRules: [{FCDBA6CF-62FD-4F88-B4D9-972DCD0393AC}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DB81FDF5-4ACD-44F9-838A-496ACFF102F5}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{3A2DF9A9-87CD-4F1D-A7D6-395F0003B47A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{5D1DE26D-A611-44D7-A124-366E247D760A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{A0D48DBA-75A2-4539-8D06-DD2806577958}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{E24E654A-50B4-4DF6-81B5-D935F066B283}E:\lol\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{890541FF-DBBE-4B36-8740-45ABA17F11FE}E:\lol\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe No File
FirewallRules: [{39C16CFB-C4E0-476A-8FDB-B0AB606DB10A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D5F06E09-480B-4C2A-B885-4226F7DFBDC1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{BA764AFB-0315-41F3-92F3-941D3C85CD7D}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [UDP Query User{09FD2FB5-5B9B-415A-A287-4B4B1ABFA201}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [{990CC6F8-7A10-4D3B-9042-5425AD67BD6B}] => (Allow) C:\Users\Leire\AppData\Local\Temp\7zS47BF\HPDiagnosticCoreUI.exe (HP Inc. -> HPDC LP)
FirewallRules: [{68D67943-297A-449C-AECE-3D0887543802}] => (Allow) C:\Users\Leire\AppData\Local\Temp\7zS47BF\HPDiagnosticCoreUI.exe (HP Inc. -> HPDC LP)
FirewallRules: [{7BEF9227-30F6-47E3-8B41-2D8D34311D21}] => (Allow) C:\Users\Leire\AppData\Local\Temp\7zS488D\HPDiagnosticCoreUI.exe (HP Inc. -> HPDC LP)
FirewallRules: [{11FDEFFB-561D-4186-9AC8-4D65CC20F526}] => (Allow) C:\Users\Leire\AppData\Local\Temp\7zS488D\HPDiagnosticCoreUI.exe (HP Inc. -> HPDC LP)
FirewallRules: [TCP Query User{2130F2C1-ED76-4105-9B44-1C104585C6E4}E:\programas carpeta instalacion\hearthstone\hearthstone\hearthstone.exe] => (Allow) E:\programas carpeta instalacion\hearthstone\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [UDP Query User{7B3E6090-275E-408C-A367-0BC00B4D251D}E:\programas carpeta instalacion\hearthstone\hearthstone\hearthstone.exe] => (Allow) E:\programas carpeta instalacion\hearthstone\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [TCP Query User{57D53125-56FB-4C81-B993-977D46991000}E:\software\office 2013-2019 c2r install v6.4.4\files\bin\kmss.exe] => (Allow) E:\software\office 2013-2019 c2r install v6.4.4\files\bin\kmss.exe No File
FirewallRules: [UDP Query User{4AFB49FD-841C-4648-BCE2-DA39FDC92DDA}E:\software\office 2013-2019 c2r install v6.4.4\files\bin\kmss.exe] => (Allow) E:\software\office 2013-2019 c2r install v6.4.4\files\bin\kmss.exe No File
FirewallRules: [TCP Query User{1BF6E335-CCE9-41AA-9D7F-CE212ABE0522}E:\software\office 2013-2019 c2r install v6.4.4\files\bin\kmss.exe] => (Allow) E:\software\office 2013-2019 c2r install v6.4.4\files\bin\kmss.exe No File
FirewallRules: [UDP Query User{AE5EFDF9-FFD3-498D-A1A1-3820D2062DDF}E:\software\office 2013-2019 c2r install v6.4.4\files\bin\kmss.exe] => (Allow) E:\software\office 2013-2019 c2r install v6.4.4\files\bin\kmss.exe No File
FirewallRules: [TCP Query User{9052DE93-3B44-4862-8D40-3818446354AE}E:\zeit\programas\instalador office\office 2013-2019 c2r install v6.4.4\files\bin\kmss.exe] => (Allow) E:\zeit\programas\instalador office\office 2013-2019 c2r install v6.4.4\files\bin\kmss.exe No File
FirewallRules: [UDP Query User{6D3844CB-90AF-4FEA-AD25-3B8F7902B2E7}E:\zeit\programas\instalador office\office 2013-2019 c2r install v6.4.4\files\bin\kmss.exe] => (Allow) E:\zeit\programas\instalador office\office 2013-2019 c2r install v6.4.4\files\bin\kmss.exe No File
FirewallRules: [{F8B6F2BF-BAA4-464E-8C28-2427B4DFE830}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe No File
FirewallRules: [{DCC5878D-3FB8-418C-8D46-73903FFE5F5C}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe No File
FirewallRules: [TCP Query User{CDBFD96C-8891-4E66-B2F0-D03A90AF82E7}E:\lol\rads\projects\league_client\releases\0.0.0.193\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.193\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{FABA74DB-B2C1-4FBF-939D-5FF7BF9B538A}E:\lol\rads\projects\league_client\releases\0.0.0.193\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.193\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{D5641CF9-DFA0-423F-A96E-D1C897A6E2CA}C:\windows\files\bin\kmss.exe] => (Block) C:\windows\files\bin\kmss.exe No File
FirewallRules: [UDP Query User{AF8BE379-0083-4793-AF7B-F2FCD47AE0B5}C:\windows\files\bin\kmss.exe] => (Block) C:\windows\files\bin\kmss.exe No File
FirewallRules: [TCP Query User{303F6972-1754-4CEF-9597-B662798833AA}E:\programas carpeta instalacion\comicrack\comicrack.exe] => (Allow) E:\programas carpeta instalacion\comicrack\comicrack.exe () [File not signed]
FirewallRules: [UDP Query User{C8E28F05-9733-432C-90F6-705491FD6DFB}E:\programas carpeta instalacion\comicrack\comicrack.exe] => (Allow) E:\programas carpeta instalacion\comicrack\comicrack.exe () [File not signed]
FirewallRules: [TCP Query User{683491C4-AC10-4C70-9F52-9B428437743B}E:\programas carpeta instalacion\comicrack\comicrack.exe] => (Allow) E:\programas carpeta instalacion\comicrack\comicrack.exe () [File not signed]
FirewallRules: [UDP Query User{81113344-B1E9-4406-A7D0-ECCA67151386}E:\programas carpeta instalacion\comicrack\comicrack.exe] => (Allow) E:\programas carpeta instalacion\comicrack\comicrack.exe () [File not signed]
FirewallRules: [TCP Query User{9E4883CA-2EE6-4690-A398-6FDBB02C264B}E:\lol\rads\projects\league_client\releases\0.0.0.194\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.194\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{A1D840D2-23F8-47BC-B836-3B8CB7AD3D89}E:\lol\rads\projects\league_client\releases\0.0.0.194\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.194\deploy\leagueclient.exe No File
FirewallRules: [{7AEB655A-AD82-4E92-AA55-240A6BD37E62}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4D8AEF0A-F9AF-4B64-8826-F11F2A756003}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{6F0682ED-B163-4072-8FAC-5E51120B6613}E:\lol\rads\projects\league_client\releases\0.0.0.195\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.195\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{0ABD4391-EBF4-42D1-B271-EA2352F8A02D}E:\lol\rads\projects\league_client\releases\0.0.0.195\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.195\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{067041FB-6926-450B-BC17-D08F8856581C}E:\lol\rads\projects\league_client\releases\0.0.0.196\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.196\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{BC94AA20-9105-4CBD-834A-CE1A25C044A4}E:\lol\rads\projects\league_client\releases\0.0.0.196\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.196\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{E3F26808-E876-42F8-98E6-C01CBBDA381A}E:\lol\rads\projects\league_client\releases\0.0.0.197\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.197\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{A92A0065-439E-4AB9-B0C8-2144A499BD5C}E:\lol\rads\projects\league_client\releases\0.0.0.197\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.197\deploy\leagueclient.exe No File
FirewallRules: [{B1F1E157-FE44-477A-8D15-C2C0FE47068F}] => (Allow) C:\Program Files (x86)\Iperius Backup\Iperius.exe No File
FirewallRules: [{AD8D2BF0-D14A-4D13-BE52-B4C306BF732B}] => (Allow) C:\Program Files (x86)\Iperius Backup\Iperius.exe No File
FirewallRules: [{F2A311ED-2B7E-423B-9BC3-4E62BD4678C0}] => (Allow) C:\Program Files (x86)\Iperius Backup\IperiusService.exe No File
FirewallRules: [{7EE55C22-429E-4A72-B8EF-D8A5657E2FE3}] => (Allow) C:\Program Files (x86)\Iperius Backup\IperiusService.exe No File
FirewallRules: [{B6A3C1A8-B1CD-4E27-83F2-5A3A0BC9D60F}] => (Allow) E:\PROGRAMAS carpeta instalacion\EaseUs\Todo Backup\bin\TbService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)
FirewallRules: [{B7824B6B-9338-452B-BEBF-D0FEFB32FDF3}] => (Allow) E:\PROGRAMAS carpeta instalacion\EaseUs\Todo Backup\bin\TbService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)
FirewallRules: [{3BEE7F22-4D4A-41C7-ADEF-4860F2E37677}] => (Allow) E:\PROGRAMAS carpeta instalacion\EaseUs\Todo Backup\bin\TBConsoleUI.exe (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)
FirewallRules: [{BF4D6E1C-E1BB-4AB5-8A8D-4E52BC40E0BA}] => (Allow) E:\PROGRAMAS carpeta instalacion\EaseUs\Todo Backup\bin\TBConsoleUI.exe (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)
FirewallRules: [{3B475437-E00C-43B5-9FFC-D4F34BB4F4A8}] => (Allow) E:\PROGRAMAS carpeta instalacion\EaseUs\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> )
FirewallRules: [{839D8B46-9F60-42FF-822C-D6CCC5C0CFC3}] => (Allow) E:\PROGRAMAS carpeta instalacion\EaseUs\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> )
FirewallRules: [TCP Query User{4D5D634C-22E9-4AA5-9B70-03EA0D8EF1B2}E:\lol\rads\projects\league_client\releases\0.0.0.200\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.200\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{F5BCF873-FFE7-4FBE-91E1-3F337705D3E3}E:\lol\rads\projects\league_client\releases\0.0.0.200\deploy\leagueclient.exe] => (Allow) E:\lol\rads\projects\league_client\releases\0.0.0.200\deploy\leagueclient.exe No File
FirewallRules: [{601606EC-D2D5-4090-8EF1-B3E98CC47F40}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{98B6A681-1A1A-441F-8BD6-65157FCA3C54}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{83C368EA-F1A8-42F5-A66A-8D41D329E454}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{77814632-CE66-4169-9895-1355AF92D247}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{302D9D87-F080-4961-8401-55FD07F183E5}] => (Allow) C:\Riot Games\League of Legends\LeagueClient.exe (Riot Games, Inc. -> )
FirewallRules: [{F41C1A5B-0C2E-4F8D-B5C9-05EC321AC79D}] => (Allow) C:\Riot Games\League of Legends\LeagueClient.exe (Riot Games, Inc. -> )
FirewallRules: [TCP Query User{50F71561-CC9C-42F4-AFBE-65F035BB79A7}C:\windows\files\bin\kmss.exe] => (Block) C:\windows\files\bin\kmss.exe No File
FirewallRules: [UDP Query User{DACDC1B1-1C33-4AEC-A681-3AFCC43191DC}C:\windows\files\bin\kmss.exe] => (Block) C:\windows\files\bin\kmss.exe No File
FirewallRules: [TCP Query User{092F8877-395A-4553-9F38-D3F16198474D}E:\programas carpeta instalacion\hearthstone\hearthstone\hearthstone.exe] => (Allow) E:\programas carpeta instalacion\hearthstone\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [UDP Query User{6BBF06B3-B3CB-4179-8A8F-CE17C28AC970}E:\programas carpeta instalacion\hearthstone\hearthstone\hearthstone.exe] => (Allow) E:\programas carpeta instalacion\hearthstone\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [{B31B2EF0-0A8B-435D-873C-1BEFB3847738}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F1676EDD-F78D-4E66-B448-A2A20620146A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{AC0E025C-A642-4E35-93F5-5DEB921163AC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{1C7AE57C-ABD9-4D71-A9B4-F9DD50922C69}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{3CEB0DFA-7FBC-4F59-AE20-9FB78B7BFC2D}] => (Allow) C:\Users\Leire\AppData\Local\Temp\7zS7DEC\HPDiagnosticCoreUI.exe (HP Inc. -> HPDC LP)
FirewallRules: [{C7A7EEE8-D238-4DC3-9BD5-0CE6508C0CAC}] => (Allow) C:\Users\Leire\AppData\Local\Temp\7zS7DEC\HPDiagnosticCoreUI.exe (HP Inc. -> HPDC LP)
FirewallRules: [TCP Query User{8289F7E5-D574-42C9-B305-13DAE0413E5B}C:\program files (x86)\gigabyte\aorus engine\aorus.exe] => (Block) C:\program files (x86)\gigabyte\aorus engine\aorus.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGABYTE Technology Co.,Ltd.)
FirewallRules: [UDP Query User{50D2AD84-5B06-479C-84BF-22B584CAEA9D}C:\program files (x86)\gigabyte\aorus engine\aorus.exe] => (Block) C:\program files (x86)\gigabyte\aorus engine\aorus.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGABYTE Technology Co.,Ltd.)
FirewallRules: [{68F3D81D-EA30-44AD-A754-724AA22A6ACA}] => (Allow) C:\Users\Leire\AppData\Local\Temp\7zS3C60\HPDiagnosticCoreUI.exe (HP Inc. -> HPDC LP)
FirewallRules: [{33956C13-9DB5-4AC1-94DD-16CAA77F66FC}] => (Allow) C:\Users\Leire\AppData\Local\Temp\7zS3C60\HPDiagnosticCoreUI.exe (HP Inc. -> HPDC LP)
FirewallRules: [TCP Query User{5088779B-52C5-4A37-A360-65F678CB4D4B}C:\riot games\league of legends\game\league of legends.exe] => (Allow) C:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> )
FirewallRules: [UDP Query User{B14A146B-AD68-4E35-A4A1-D4A7DD006744}C:\riot games\league of legends\game\league of legends.exe] => (Allow) C:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> )
FirewallRules: [{38C41961-79B2-4B20-8C8E-253175D82DFB}] => (Allow) C:\Users\Leire\AppData\Local\Temp\7zS3527\HPDiagnosticCoreUI.exe (HP Inc. -> HPDC LP)
FirewallRules: [{34594CB3-8C9F-4394-B618-702822184ED2}] => (Allow) C:\Users\Leire\AppData\Local\Temp\7zS3527\HPDiagnosticCoreUI.exe (HP Inc. -> HPDC LP)
FirewallRules: [{90F05A3B-4B40-4E2A-89D5-08DED07CABA4}] => (Allow) C:\Users\Leire\AppData\Local\Temp\7zS43AF\HPDiagnosticCoreUI.exe (HP Inc. -> HPDC LP)
FirewallRules: [{8052B614-B792-437C-AF04-8B50D98F46B8}] => (Allow) C:\Users\Leire\AppData\Local\Temp\7zS43AF\HPDiagnosticCoreUI.exe (HP Inc. -> HPDC LP)
FirewallRules: [{3EF2968A-D79A-4494-ADD4-3D3EC94CA113}] => (Allow) C:\Users\Leire\AppData\Local\Temp\7zS5F39\HPDiagnosticCoreUI.exe (HP Inc. -> HPDC LP)
FirewallRules: [{5936F712-5DD0-4B6A-9C87-289B2664F1DF}] => (Allow) C:\Users\Leire\AppData\Local\Temp\7zS5F39\HPDiagnosticCoreUI.exe (HP Inc. -> HPDC LP)
FirewallRules: [{21CC9EA7-A779-470B-BC3F-8E1CC33A0A94}] => (Allow) C:\Users\Leire\AppData\Local\Temp\7zS26B5\hppiw.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{1680104E-E905-4DFA-A369-0950928F2C44}] => (Allow) C:\Users\Leire\AppData\Local\Temp\7zS26B5\hppiw.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{25981D2D-12A2-4C2E-AEE3-A8F3297C4F87}] => (Allow) C:\Users\Leire\AppData\Local\Temp\7zS3226\hppiw.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{BB54D2B5-478B-458C-8F45-38FE40661326}] => (Allow) C:\Users\Leire\AppData\Local\Temp\7zS3226\hppiw.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{652789FF-D1B5-470E-88A3-D60739A0C75C}] => (Allow) C:\Users\Leire\AppData\Local\Temp\7zS3257\hppiw.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{C365ED8A-85A0-4F40-95F0-DE66C56D849D}] => (Allow) C:\Users\Leire\AppData\Local\Temp\7zS3257\hppiw.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{16E52D37-C91E-4709-A825-93587939BEA7}] => (Allow) C:\Users\Leire\AppData\Local\Temp\7zS3CEA\HP.EasyStart.exe (HP Inc. -> HP)
FirewallRules: [{7912F7D9-39FA-44FE-8218-9741F2006914}] => (Allow) C:\Users\Leire\AppData\Local\Temp\7zS4535\HP.EasyStart.exe (HP Inc. -> HP)
FirewallRules: [{4E9214FB-99A6-47C8-9A03-07429993813D}] => (Allow) C:\Program Files\HP\HP OfficeJet 3830 series\bin\FaxApplications.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{F1358F97-4AA3-4571-A709-E5F45B9D1513}] => (Allow) C:\Program Files\HP\HP OfficeJet 3830 series\bin\DigitalWizards.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{D255F7FD-03A5-465B-B94C-76A38A27861F}] => (Allow) C:\Program Files\HP\HP OfficeJet 3830 series\bin\SendAFax.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{DB1B5593-B27B-4967-A5B7-DF99C4339F49}] => (Allow) C:\Program Files\HP\HP OfficeJet 3830 series\bin\FaxPrinterUtility.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{2BC18B29-1F9C-4C1D-9D62-5060FA7A2F16}] => (Allow) C:\Program Files\HP\HP OfficeJet 3830 series\Bin\DeviceSetup.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{BEC2A954-5F67-498D-9F4E-CC26AD9ECA1F}] => (Allow) LPort=5357
FirewallRules: [{D1D476C8-DE0F-40B4-BBED-81F8670E42D8}] => (Allow) C:\Program Files\HP\HP OfficeJet 3830 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [TCP Query User{3921404C-66C8-4D0E-9B63-B1D69210471A}C:\users\leire\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\leire\appdata\roaming\spotify\spotify.exe No File
FirewallRules: [UDP Query User{143C24D1-CB6C-4433-AEBE-37338B47AADB}C:\users\leire\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\leire\appdata\roaming\spotify\spotify.exe No File
FirewallRules: [{2E0CD839-7466-49C1-B876-ADF4AAB86E9F}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{1A2E28EA-5CB3-4A14-8092-82898FB5FEF4}C:\users\leire\appdata\local\programs\deezer-desktop\deezer.exe] => (Allow) C:\users\leire\appdata\local\programs\deezer-desktop\deezer.exe No File
FirewallRules: [UDP Query User{86C8D2DD-A57F-456F-BDCA-8D6A7688DFA5}C:\users\leire\appdata\local\programs\deezer-desktop\deezer.exe] => (Allow) C:\users\leire\appdata\local\programs\deezer-desktop\deezer.exe No File
FirewallRules: [{D71A98EE-520E-405D-B1E9-4C0F1944AD1D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{A67482C2-35E0-4A72-8252-0790CC0FA6DE}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3C226895-7501-4A7C-A4D4-50F41A86C7F6}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

==================== Restore Points =========================

09-10-2019 16:07:41 Windows Update
13-10-2019 11:39:39 Removed Microsoft Fix it Center
13-10-2019 12:12:10 Removed SketchUp 2017
13-10-2019 12:13:19 Removed Autodesk Material Library 2014.
13-10-2019 12:13:55 Removed Autodesk Material Library 2017
13-10-2019 12:14:54 Removed Autodesk Material Library Low Resolution Image Library 2016
13-10-2019 12:15:26 Removed Autodesk Material Library Medium Resolution Image Library 2016
14-10-2019 11:16:02 Revo Uninstaller Pro's restore point - SpyHun

==================== Faulty Device Manager Devices =============

Name: Controladora de bus serie universal(USB)
Description: Controladora de bus serie universal(USB)
Class Guid: 
Manufacturer: 
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Controladora de bus serie universal(USB)
Description: Controladora de bus serie universal(USB)
Class Guid: 
Manufacturer: 
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Controladora de bus SM
Description: Controladora de bus SM
Class Guid: 
Manufacturer: 
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Controladora de bus serie universal(USB)
Description: Controladora de bus serie universal(USB)
Class Guid: 
Manufacturer: 
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (10/14/2019 11:20:58 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: Last.fm Desktop Scrobbler.exe, versión: 3.1.29.1, marca de tiempo: 0x5be9c779
Nombre del módulo con errores: wmp.dll, versión: 12.0.7601.24499, marca de tiempo: 0x5d0118b6
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x001c68de
Id. del proceso con errores: 0xbb8
Hora de inicio de la aplicación con errores: 0x01d58270a6e48e8b
Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Last.fm\Last.fm Desktop Scrobbler\Last.fm Desktop Scrobbler.exe
Ruta de acceso del módulo con errores: C:\Windows\system32\wmp.dll
Id. del informe: edf35370-ee63-11e9-b163-50e549e848ee

Error: (10/14/2019 11:20:53 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (10/14/2019 11:20:39 AM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Error de activación de la licencia de Windows. Error 0x00000000.

Error: (10/14/2019 11:20:39 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Error de la activación de licencia (slui.exe) con el siguiente código:
0x800401F9

Error: (10/14/2019 11:16:02 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al consultar la interfaz IVssWriterCallback. HR = 0x80070005, Acceso denegado.
.
A menudo ocurre por una configuración de seguridad incorrecta en el proceso de escritura o de solicitud.


Operación:
   Recopilando datos del escritor

Contexto:
   Id. de clase del escritor: {e8132975-6f93-4464-a53e-1050253ae220}
   Nombre del escritor: System Writer
   Id. de instancia del escritor: {7e1ce63f-23a9-4329-9b3e-8cd0085a7d18}

Error: (10/14/2019 10:19:10 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: Last.fm Desktop Scrobbler.exe, versión: 3.1.29.1, marca de tiempo: 0x5be9c779
Nombre del módulo con errores: wmp.dll, versión: 12.0.7601.24499, marca de tiempo: 0x5d0118b6
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x001c68de
Id. del proceso con errores: 0x844
Hora de inicio de la aplicación con errores: 0x01d582680a506851
Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Last.fm\Last.fm Desktop Scrobbler\Last.fm Desktop Scrobbler.exe
Ruta de acceso del módulo con errores: C:\Windows\system32\wmp.dll
Id. del informe: 4c26cf17-ee5b-11e9-9a76-50e549e848ee

Error: (10/14/2019 10:18:24 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (10/14/2019 10:18:13 AM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Error de activación de la licencia de Windows. Error 0x00000000.


System errors:
=============
Error: (10/14/2019 11:20:59 AM) (Source: VDS Basic Provider) (EventID: 1) (User: )
Description: Error inesperado. Código de error: [email protected]

Error: (10/14/2019 11:20:58 AM) (Source: VDS Basic Provider) (EventID: 1) (User: )
Description: Error inesperado. Código de error: [email protected]

Error: (10/14/2019 11:20:52 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Hardlock no pudo iniciarse debido al siguiente error: 
Windows no puede comprobar la firma digital en este archivo. Un cambio reciente en el hardware o en el software podría haber instalado un archivo con una firma incorrecta o dañada, o podría también tratarse de un software malintencionado proveniente de un origen desconocido.

Error: (10/14/2019 11:20:43 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Se recibió la siguiente alerta irrecuperable: 70.

Error: (10/14/2019 11:19:31 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Protección de software terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 120000 milisegundos: Reiniciar el servicio.

Error: (10/14/2019 11:19:31 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Intel(R) Dynamic Application Loader Host Interface Service se terminó de manera inesperada. Esto ha sucedido 1 veces.

Error: (10/14/2019 11:19:31 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Disco virtual terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 60000 milisegundos: Reiniciar el servicio.

Error: (10/14/2019 11:19:31 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Windows Live ID Sign-in Assistant terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 10000 milisegundos: Reiniciar el servicio.


CodeIntegrity:
===================================

Date: 2019-10-14 11:20:52.954
Description: 
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys porque el hash del archivo no se encuentra en el sistema. Puede que un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.

Date: 2019-10-14 11:20:52.704
Description: 
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys porque el hash del archivo no se encuentra en el sistema. Puede que un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.

Date: 2019-10-14 10:18:23.988
Description: 
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys porque el hash del archivo no se encuentra en el sistema. Puede que un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.

Date: 2019-10-14 10:18:23.738
Description: 
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys porque el hash del archivo no se encuentra en el sistema. Puede que un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.

Date: 2019-10-13 11:35:29.662
Description: 
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys porque el hash del archivo no se encuentra en el sistema. Puede que un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.

Date: 2019-10-13 11:35:29.413
Description: 
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys porque el hash del archivo no se encuentra en el sistema. Puede que un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.

Date: 2019-10-13 11:01:03.609
Description: 
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys porque el hash del archivo no se encuentra en el sistema. Puede que un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.

Date: 2019-10-13 11:01:03.359
Description: 
Windows no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume2\Windows\System32\drivers\hardlock.sys porque el hash del archivo no se encuentra en el sistema. Puede que un cambio reciente de hardware o software haya instalado un archivo dañado o con una firma incorrecta, o que exista un software malintencionado de origen desconocido.

==================== Memory info =========================== 

BIOS: Award Software International, Inc. F5 10/12/2011
Motherboard: Gigabyte Technology Co., Ltd. Z68XP-UD4
Processor: Intel(R) Core(TM) i7-2600K CPU @ 3.40GHz
Percentage of memory in use: 39%
Total physical RAM: 16367.12 MB
Available physical RAM: 9932.19 MB
Total Virtual: 32732.38 MB
Available Virtual: 25203.62 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.66 GB) (Free:265.72 GB) NTFS
Drive e: () (Fixed) (Total:931.51 GB) (Free:115.1 GB) NTFS

\\?\Volume{def70d44-2ba9-11e8-9c38-806e6f6e6963}\ () (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 7C9E72C9)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 704E0039)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Ahí dejo ambos documentos. Muchas gracias por adelantado, espero vuestra respuesta. Gracias!

Bien… y ahora sigue estos pasos, :arrow_forward: MUY Importante :arrow_backward: Realiza una copia de seguridad del registro :

  • Para hacerlo descarga :arrow_forward: DelFix.exe(en tu escritorio).

  • Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona -Ejecutar como Administrador-).

  • Atención, ahora marca/selecciona únicamente la casilla :white_check_mark: Create registry backup, las demás casillas NO. :face_with_monocle:

  • Pulsar en Run.

Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.

:warning: Con los demás programas cerrados ve a :arrow_forward: Inicio :arrow_forward: Ejecutar :arrow_forward: y escribe Notepad.exe.

  • Ahora debes copiar y pegar los códigos/líneas que están en el interior del recuadro de más abajo, dentro del Notepad.
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
CustomCLSID: HKU\S-1-5-21-1895503046-2164595843-4212185805-1000_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe => No File
CustomCLSID: HKU\S-1-5-21-1895503046-2164595843-4212185805-1000_Classes\CLSID\{7DE1BE5C-CEBA-4F1D-ACBC-9CE11EE9A2A1}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-1895503046-2164595843-4212185805-1000_Classes\CLSID\{BD0DEB94-63DB-4392-9420-6EEE05094B1F}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-1895503046-2164595843-4212185805-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2014\es-ES\acadficn.dll => No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
AlternateDataStreams: C:\ProgramData\TEMP:1CE11B51 [94]
FF Extension: (BetterTTV) - C:\Users\Leire\AppData\Roaming\Mozilla\Firefox\Profiles\4y90dtjm.default\Extensions\[email protected] [2019-08-23] [UpdateUrl:hxxps://nightdev.com/betterttv/firefox/updates.json]
FF Extension: (Pink-Yellow-Blue) - C:\Users\Leire\AppData\Roaming\Mozilla\Firefox\Profiles\4y90dtjm.default\Extensions\{a1d41d49-e21d-4ee0-954c-d33ad5ef90be}.xpi [2019-08-19]
FF Extension: (Yellow to Yellow) - C:\Users\Leire\AppData\Roaming\Mozilla\Firefox\Profiles\4y90dtjm.default\Extensions\{f3625ec1-42fc-4183-bcab-8a5ab6b0bae5}.xpi [2019-08-19]
R2 EsgShKernel; C:\Program Files\EnigmaSoft\SpyHunter\ShKernel.exe [11457840 2019-10-13] (EnigmaSoft Limited -> EnigmaSoft Limited)
R2 ShMonitor; C:\Program Files\EnigmaSoft\SpyHunter\ShMonitor.exe [512816 2019-10-13] (EnigmaSoft Limited -> EnigmaSoft Limited)
R3 EnigmaFileMonDriver; C:\Windows\System32\drivers\EnigmaFileMonDriver.sys [68424 2019-10-14] (EnigmaSoft Limited -> EnigmaSoft Limited)
2019-10-13 11:04 - 2019-10-14 11:20 - 000068424 _____ (EnigmaSoft Limited) C:\Windows\system32\Drivers\EnigmaFileMonDriver.sys
2019-10-13 11:04 - 2019-10-13 11:20 - 000000000 ____D C:\ProgramData\EnigmaSoft Limited
2019-10-13 11:04 - 2019-10-13 11:04 - 000001010 _____ C:\Users\Public\Desktop\SpyHunter5.lnk
2019-10-13 11:04 - 2019-10-13 11:04 - 000001010 _____ C:\ProgramData\Desktop\SpyHunter5.lnk
2019-10-13 11:04 - 2019-10-13 11:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EnigmaSoft
2019-10-13 11:04 - 2019-10-13 11:04 - 000000000 ____D C:\Program Files\EnigmaSoft
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {00DD4B7C-AF45-4C5B-BBB4-59C56D6D4D23} - \{18E33739-9B6C-4834-B587-A4B0DC39D839} -> No File <==== ATTENTION
Task: {173DE8A0-9D8F-475E-AF7C-827915DAEB7E} - \{68656588-3BCC-4BA6-A460-6E0D9010729A} -> No File <==== ATTENTION
Task: {18814521-5D12-4B06-97B8-3E57C08ECFBB} - \{95304FB1-B750-4C95-959F-60AB60262AA8} -> No File <==== ATTENTION
Task: {248F7713-BA71-40D4-A6E2-AFA94CADE858} - \{F3F67E1B-4064-45B3-A3A7-3C77FA577DEE} -> No File <==== ATTENTION
Task: {2740AB40-A7A7-4283-AD00-329DA484F139} - \{0DAC133D-B375-453F-B2D8-7686ADB20A25} -> No File <==== ATTENTION
Task: {56E145EB-8D46-4DF7-8D42-C20C3F125A0B} - \{F1BD5EC7-15AC-475A-9F31-7A5F74AC1419} -> No File <==== ATTENTION
Task: {784E6130-07FE-403A-B921-561E17C5D100} - \{D716DE4F-F474-48E6-AE81-EBFEA1520A72} -> No File <==== ATTENTION
Task: {8D3D7C1B-49FF-40D1-B1D9-316ABB2B01C7} - \{D9258C07-F885-49F0-87D8-22EDA70742E5} -> No File <==== ATTENTION
Task: {B810B219-ACB0-442E-A863-A3A155E59B1C} - \{742AAC86-20A7-4B7E-BA09-5CDD4787F631} -> No File <==== ATTENTION
Task: {B91792C0-487E-41B2-BA9B-6E887563E679} - \{1374C2A1-C4EC-4E4D-BE95-4D1D88136866} -> No File <==== ATTENTION
Task: {D1FEAA49-4AFF-450B-93DF-B9DB41A23AE9} - \{A409177E-88DA-440B-B4C2-4324B118DE7A} -> No File <==== ATTENTION
Task: {F10EF1F4-912B-428A-97F9-EB09ECEDC5B7} - \{B044483D-22F7-4BC2-97F8-E44F6A3D6455} -> No File <==== ATTENTION
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END

Guárdalo bajo el nombre de FIXLIST.TXT en el escritorio :arrow_backward: Esto es muy importante.

:o: Nota :o: Es importante que la herramienta FRST.exe(Farbar Recovery Scanner Tool) y FIXLIST.TXT se encuentren en la misma ubicación (escritorio) o si no, no trabajara.

Y ahora inicia tu equipo desde el :arrow_forward: Modo Seguro – con funciones de Red, de Windows

  • Ejecuta FRST.exe.(Si usas Windows Vista/7/8 o 10, presiona clic derecho y seleccionas -Ejecutar como Administrador-).

  • Presionar el botón FIX y aguardar a que termine.

  • La Herramienta guardara el reporte de reparación en el escritorio (FIXLOG.TXT).

Pegar el contenido de este fichero en tu próxima respuesta. :+1:

Reiniciar el equipo y comprobar su funcionamiento en relación al problema planteado y comentarlo.

Saludos.

Fixlog.txt

Fix result of Farbar Recovery Scan Tool (x64) Version: 12-10-2019 02
Ran by Leire (14-10-2019 15:13:53) Run:1
Running from C:\Users\Leire\Desktop
Loaded Profiles: Leire (Available Profiles: Leire)
Boot Mode: Safe Mode (with Networking)
==============================================

fixlist content:
*****************
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
CustomCLSID: HKU\S-1-5-21-1895503046-2164595843-4212185805-1000_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe => No File
CustomCLSID: HKU\S-1-5-21-1895503046-2164595843-4212185805-1000_Classes\CLSID\{7DE1BE5C-CEBA-4F1D-ACBC-9CE11EE9A2A1}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-1895503046-2164595843-4212185805-1000_Classes\CLSID\{BD0DEB94-63DB-4392-9420-6EEE05094B1F}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-1895503046-2164595843-4212185805-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2014\es-ES\acadficn.dll => No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
AlternateDataStreams: C:\ProgramData\TEMP:1CE11B51 [94]
FF Extension: (BetterTTV) - C:\Users\Leire\AppData\Roaming\Mozilla\Firefox\Profiles\4y90dtjm.default\Extensions\[email protected] [2019-08-23] [UpdateUrl:hxxps://nightdev.com/betterttv/firefox/updates.json]
FF Extension: (Pink-Yellow-Blue) - C:\Users\Leire\AppData\Roaming\Mozilla\Firefox\Profiles\4y90dtjm.default\Extensions\{a1d41d49-e21d-4ee0-954c-d33ad5ef90be}.xpi [2019-08-19]
FF Extension: (Yellow to Yellow) - C:\Users\Leire\AppData\Roaming\Mozilla\Firefox\Profiles\4y90dtjm.default\Extensions\{f3625ec1-42fc-4183-bcab-8a5ab6b0bae5}.xpi [2019-08-19]
R2 EsgShKernel; C:\Program Files\EnigmaSoft\SpyHunter\ShKernel.exe [11457840 2019-10-13] (EnigmaSoft Limited -> EnigmaSoft Limited)
R2 ShMonitor; C:\Program Files\EnigmaSoft\SpyHunter\ShMonitor.exe [512816 2019-10-13] (EnigmaSoft Limited -> EnigmaSoft Limited)
R3 EnigmaFileMonDriver; C:\Windows\System32\drivers\EnigmaFileMonDriver.sys [68424 2019-10-14] (EnigmaSoft Limited -> EnigmaSoft Limited)
2019-10-13 11:04 - 2019-10-14 11:20 - 000068424 _____ (EnigmaSoft Limited) C:\Windows\system32\Drivers\EnigmaFileMonDriver.sys
2019-10-13 11:04 - 2019-10-13 11:20 - 000000000 ____D C:\ProgramData\EnigmaSoft Limited
2019-10-13 11:04 - 2019-10-13 11:04 - 000001010 _____ C:\Users\Public\Desktop\SpyHunter5.lnk
2019-10-13 11:04 - 2019-10-13 11:04 - 000001010 _____ C:\ProgramData\Desktop\SpyHunter5.lnk
2019-10-13 11:04 - 2019-10-13 11:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EnigmaSoft
2019-10-13 11:04 - 2019-10-13 11:04 - 000000000 ____D C:\Program Files\EnigmaSoft
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {00DD4B7C-AF45-4C5B-BBB4-59C56D6D4D23} - \{18E33739-9B6C-4834-B587-A4B0DC39D839} -> No File <==== ATTENTION
Task: {173DE8A0-9D8F-475E-AF7C-827915DAEB7E} - \{68656588-3BCC-4BA6-A460-6E0D9010729A} -> No File <==== ATTENTION
Task: {18814521-5D12-4B06-97B8-3E57C08ECFBB} - \{95304FB1-B750-4C95-959F-60AB60262AA8} -> No File <==== ATTENTION
Task: {248F7713-BA71-40D4-A6E2-AFA94CADE858} - \{F3F67E1B-4064-45B3-A3A7-3C77FA577DEE} -> No File <==== ATTENTION
Task: {2740AB40-A7A7-4283-AD00-329DA484F139} - \{0DAC133D-B375-453F-B2D8-7686ADB20A25} -> No File <==== ATTENTION
Task: {56E145EB-8D46-4DF7-8D42-C20C3F125A0B} - \{F1BD5EC7-15AC-475A-9F31-7A5F74AC1419} -> No File <==== ATTENTION
Task: {784E6130-07FE-403A-B921-561E17C5D100} - \{D716DE4F-F474-48E6-AE81-EBFEA1520A72} -> No File <==== ATTENTION
Task: {8D3D7C1B-49FF-40D1-B1D9-316ABB2B01C7} - \{D9258C07-F885-49F0-87D8-22EDA70742E5} -> No File <==== ATTENTION
Task: {B810B219-ACB0-442E-A863-A3A155E59B1C} - \{742AAC86-20A7-4B7E-BA09-5CDD4787F631} -> No File <==== ATTENTION
Task: {B91792C0-487E-41B2-BA9B-6E887563E679} - \{1374C2A1-C4EC-4E4D-BE95-4D1D88136866} -> No File <==== ATTENTION
Task: {D1FEAA49-4AFF-450B-93DF-B9DB41A23AE9} - \{A409177E-88DA-440B-B4C2-4324B118DE7A} -> No File <==== ATTENTION
Task: {F10EF1F4-912B-428A-97F9-EB09ECEDC5B7} - \{B044483D-22F7-4BC2-97F8-E44F6A3D6455} -> No File <==== ATTENTION
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END
*****************

Error: Restore point can only be created in normal mode.
Processes closed successfully.
HKU\S-1-5-21-1895503046-2164595843-4212185805-1000_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB} => removed successfully
HKU\S-1-5-21-1895503046-2164595843-4212185805-1000_Classes\CLSID\{7DE1BE5C-CEBA-4F1D-ACBC-9CE11EE9A2A1} => removed successfully
HKU\S-1-5-21-1895503046-2164595843-4212185805-1000_Classes\CLSID\{BD0DEB94-63DB-4392-9420-6EEE05094B1F} => removed successfully
HKU\S-1-5-21-1895503046-2164595843-4212185805-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005} => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avg => removed successfully
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => not found
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\00avg => removed successfully
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => not found
C:\ProgramData\TEMP => ":1CE11B51" ADS removed successfully
C:\Users\Leire\AppData\Roaming\Mozilla\Firefox\Profiles\4y90dtjm.default\Extensions\[email protected] => moved successfully
C:\Users\Leire\AppData\Roaming\Mozilla\Firefox\Profiles\4y90dtjm.default\Extensions\{a1d41d49-e21d-4ee0-954c-d33ad5ef90be}.xpi => moved successfully
C:\Users\Leire\AppData\Roaming\Mozilla\Firefox\Profiles\4y90dtjm.default\Extensions\{f3625ec1-42fc-4183-bcab-8a5ab6b0bae5}.xpi => moved successfully
HKLM\System\CurrentControlSet\Services\EsgShKernel => removed successfully
EsgShKernel => service removed successfully
HKLM\System\CurrentControlSet\Services\ShMonitor => removed successfully
ShMonitor => service removed successfully
HKLM\System\CurrentControlSet\Services\EnigmaFileMonDriver => removed successfully
EnigmaFileMonDriver => service removed successfully
C:\Windows\system32\Drivers\EnigmaFileMonDriver.sys => moved successfully
C:\ProgramData\EnigmaSoft Limited => moved successfully
C:\Users\Public\Desktop\SpyHunter5.lnk => moved successfully
"C:\ProgramData\Desktop\SpyHunter5.lnk" => not found
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EnigmaSoft => moved successfully
C:\Program Files\EnigmaSoft => moved successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{00DD4B7C-AF45-4C5B-BBB4-59C56D6D4D23}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{00DD4B7C-AF45-4C5B-BBB4-59C56D6D4D23}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{18E33739-9B6C-4834-B587-A4B0DC39D839}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{173DE8A0-9D8F-475E-AF7C-827915DAEB7E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{173DE8A0-9D8F-475E-AF7C-827915DAEB7E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{68656588-3BCC-4BA6-A460-6E0D9010729A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{18814521-5D12-4B06-97B8-3E57C08ECFBB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{18814521-5D12-4B06-97B8-3E57C08ECFBB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{95304FB1-B750-4C95-959F-60AB60262AA8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{248F7713-BA71-40D4-A6E2-AFA94CADE858}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{248F7713-BA71-40D4-A6E2-AFA94CADE858}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{F3F67E1B-4064-45B3-A3A7-3C77FA577DEE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2740AB40-A7A7-4283-AD00-329DA484F139}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2740AB40-A7A7-4283-AD00-329DA484F139}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{0DAC133D-B375-453F-B2D8-7686ADB20A25}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{56E145EB-8D46-4DF7-8D42-C20C3F125A0B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{56E145EB-8D46-4DF7-8D42-C20C3F125A0B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{F1BD5EC7-15AC-475A-9F31-7A5F74AC1419}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{784E6130-07FE-403A-B921-561E17C5D100}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{784E6130-07FE-403A-B921-561E17C5D100}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{D716DE4F-F474-48E6-AE81-EBFEA1520A72}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8D3D7C1B-49FF-40D1-B1D9-316ABB2B01C7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8D3D7C1B-49FF-40D1-B1D9-316ABB2B01C7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{D9258C07-F885-49F0-87D8-22EDA70742E5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B810B219-ACB0-442E-A863-A3A155E59B1C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B810B219-ACB0-442E-A863-A3A155E59B1C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{742AAC86-20A7-4B7E-BA09-5CDD4787F631}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B91792C0-487E-41B2-BA9B-6E887563E679}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B91792C0-487E-41B2-BA9B-6E887563E679}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{1374C2A1-C4EC-4E4D-BE95-4D1D88136866}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D1FEAA49-4AFF-450B-93DF-B9DB41A23AE9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D1FEAA49-4AFF-450B-93DF-B9DB41A23AE9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{A409177E-88DA-440B-B4C2-4324B118DE7A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F10EF1F4-912B-428A-97F9-EB09ECEDC5B7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F10EF1F4-912B-428A-97F9-EB09ECEDC5B7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B044483D-22F7-4BC2-97F8-E44F6A3D6455}" => removed successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-21-1895503046-2164595843-4212185805-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-21-1895503046-2164595843-4212185805-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully


========= End of RemoveProxy: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= End of CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows


Adaptador de Ethernet Conexi¢n de  rea local:

   Sufijo DNS espec¡fico para la conexi¢n. . : 
   V¡nculo: direcci¢n IPv6 local. . . : fe80::50ae:4101:3421:c951%11
   Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.1.37
   M scara de subred . . . . . . . . . . . . : 255.255.255.0
   Puerta de enlace predeterminada . . . . . : 192.168.1.1

Adaptador de t£nel isatap.{008BCA4E-6039-477D-AE3D-E0F819FBC9EF}:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de t£nel Teredo Tunneling Pseudo-Interface:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

========= End of CMD: =========


========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

========= End of CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0 [ 7.5.7601 ]
BITS administration utility.
(C) Copyright 2000-2006 Microsoft Corp.

BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.

Unable to connect to BITS - 0x8007042c
No se puede iniciar el servicio o grupo de dependencia.



========= End of CMD: =========


========= netsh advfirewall reset =========

Aceptar


========= End of CMD: =========


========= netsh advfirewall set allprofiles state ON =========

Aceptar


========= End of CMD: =========


========= netsh int ipv4 reset =========

Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= End of CMD: =========


========= netsh int ipv6 reset =========

No hay valores configurados por el usuario para restablecer.


========= End of CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 14830622 B
Java, Flash, Steam htmlcache => 878 B
Windows/system/drivers => 2153344346 B
Edge => 0 B
Chrome => 1001701035 B
Firefox => 1095471628 B
Opera => 444555853 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 128 B
systemprofile32 => 688 B
LocalService => 688 B
NetworkService => 688 B
Leire => 12844348544 B

RecycleBin => 0 B
EmptyTemp: => 16.4 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 15:14:48 ====

SpyHunter 5 ha desaparecido del PC, así como la carpeta de EnigmaSoft en c://archivos de programa. Me ha iniciado un poco lento el ordenador, no sé si habrá sido cosa del momento. Pero por lo demás todo perfecto, no hay rastro del programa! Muchas, muchas gracias. Os quiero tanto. :stuck_out_tongue_winking_eye:

Hola, Excelente. :clap:

Y ahora realiza TRES APAGADOS totales del equipo con sus respectivos ENCENDIDOS y compruebas cómo arranca el equipo en la ultima ocasión.

Nos comentas los resultados.

Saludos.

Hecho. Y parece que va bien. También es verdad que quizás estoy más preocupado y pendiente y me parece que se inicia algo más lento, creo que soy yo. Pero realmente está funcionando fluido y sin problemas. ¡Muchas gracias como siempre!

Hola.

Una pregunta… porque instalaste ese “maravilloso” :crazy_face: :-1: programa. :thinking:

No lo hice yo y creo que fue por aviso de troyano o algo y se activaron las alarmas y a la primera búsqueda de google: pum :sweat_smile: De hecho ya has visto… a la mínima que veo un problema que no me es fácil solucionar acudo a vuestra ayuda. Ya funciona perfecto y no tiene nada. Gracias :slight_smile:

Perfecto :clap: excelente, nos alegra ver que ya está el problema inicial completamente arreglado, ahora solo queda eliminar las herramientas usadas.

Para hacerlo descarga :arrow_forward: DelFix.exe en tu escritorio.

  • Doble clic para ejecutarlo. (Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona - Ejecutar como Administrador -).

  • Marca todas las casillas, y pulsas en Run

Se abrirá el informe (DelFix.txt), puedes cerrarlo.


Para cualquier otro problema, no dudes en volver a postear., ya sabes dónde estamos. :+1:

Tema Solucionado.

Saludos, Javier.