Necesito ayuda

Addition 1

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 23-07-2020

Ran by Ismael (24-07-2020 17:21:38)

Running from C:\Users\Ismael\Desktop

Windows 10 Home Version 1909 18363.959 (X64) (2019-09-20 18:47:22)

Boot Mode: Normal

==========================================================

==================== Accounts: =============================

23CCC0D15F044A3E90B7 (S-1-5-21-2375054329-1883842248-1515162951-1008 - Limited - Enabled)

535F84997734438C8BAE (S-1-5-21-2375054329-1883842248-1515162951-1006 - Limited - Enabled)

Administrator (S-1-5-21-2375054329-1883842248-1515162951-500 - Administrator - Disabled)

DefaultAccount (S-1-5-21-2375054329-1883842248-1515162951-503 - Limited - Disabled)

Guest (S-1-5-21-2375054329-1883842248-1515162951-501 - Limited - Disabled)

Ismael (S-1-5-21-2375054329-1883842248-1515162951-1001 - Administrator - Enabled) => C:\Users\Ismael

WDAGUtilityAccount (S-1-5-21-2375054329-1883842248-1515162951-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}

AV: Kaspersky Security Cloud (Disabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8}

AS: Kaspersky Free (Enabled - Up to date) {B1D2E896-6D96-7460-F17A-838B9D00DD65}

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

FW: Kaspersky Security Cloud (Disabled) {32888857-01C3-7AB6-E095-11CC1854D0A3}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\uTorrent) (Version: 3.5.5.45449 - BitTorrent Inc.)

A360 Desktop (HKLM\...\{B65CD59E-A771-4354-AA4B-C3E01B496BCD}) (Version: 8.2.3.1800 - Autodesk)

ACA & MEP 2018 Object Enabler (HKLM\...\{28B89EEF-1004-0000-5102-CF3F3A09B77D}) (Version: 8.0.40.0 - Autodesk) Hidden

ACAD Private (HKLM\...\{28B89EEF-1001-0000-3102-CF3F3A09B77D}) (Version: 22.0.49.0 - Autodesk) Hidden

ACE COMBAT ASSAULT HORIZON Enhanced Edition (HKLM-x32\...\ACE COMBAT ASSAULT HORIZON Enhanced Edition_is1) (Version: - )

Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 20.009.20074 - Adobe Systems Incorporated)

Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.403 - Adobe)

Adobe Premiere Pro CC 2018 (HKLM-x32\...\PPRO_12_0_0) (Version: 12.0.0 - Adobe Systems Incorporated)

AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 20.4.1 - Advanced Micro Devices, Inc.)

Anno 2205 (HKLM-x32\...\Anno 2205_is1) (Version: - )

ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.13 - Michael Tippach)

Assassin's Creed Rogue (HKLM-x32\...\Uplay Install 895) (Version: - Ubisoft)

Assassins Creed Unity versión 1.5.0 (HKLM-x32\...\{5CF3C6FD-33E1-46B6-870F-89478DEFF185}_is1) (Version: 1.5.0 - UBISoft)

aTube Catcher versión 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)

Audacity 2.2.1 (HKLM-x32\...\Audacity_is1) (Version: 2.2.1 - Audacity Team)

AutoCAD 2018 - Español (Spanish) (HKLM\...\{28B89EEF-1001-040A-2102-CF3F3A09B77D}) (Version: 22.0.49.0 - Autodesk) Hidden

AutoCAD 2018 Language Pack - Español (Spanish) (HKLM\...\{28B89EEF-1001-040A-1102-CF3F3A09B77D}) (Version: 22.0.49.0 - Autodesk) Hidden

AutoCAD 2018 (HKLM\...\{28B89EEF-1001-0000-0102-CF3F3A09B77D}) (Version: 22.0.49.0 - Autodesk) Hidden

Autodesk Advanced Material Library Image Library 2018 (HKLM-x32\...\{177AD7F6-9C77-4E50-BA53-B7259C5F282D}) (Version: 16.11.1.0 - Autodesk)

Autodesk App Manager 2016-2018 (HKLM-x32\...\{20EC0CA2-346E-4660-9903-51B278DF15F6}) (Version: 2.4.0 - Autodesk)

Autodesk AutoCAD 2018 - Español (Spanish) (HKLM\...\AutoCAD 2018 - Español (Spanish)) (Version: 22.0.49.0 - Autodesk)

Autodesk AutoCAD Performance Feedback Tool 1.2.8 (HKLM-x32\...\{214D3370-746E-4886-8EAA-5769EB87D044}) (Version: 1.2.8.0 - Autodesk)

Autodesk Desktop App (HKLM-x32\...\Autodesk Desktop App) (Version: 7.0.7.230 - Autodesk)

Autodesk License Service (x64) - 5.1.4 (HKLM\...\{3609A8D9-FC0C-4C9B-9F58-0B1D1A4FE556}) (Version: 5.1.4.0 - Autodesk)

Autodesk Material Library 2018 (HKLM-x32\...\{7847611E-92E9-4917-B395-71C91D523104}) (Version: 16.11.1.0 - Autodesk)

Autodesk Material Library Base Resolution Image Library 2018 (HKLM-x32\...\{FCDED119-A969-4E48-8A32-D21AD6B03253}) (Version: 16.11.1.0 - Autodesk)

Autodesk ReCap (HKLM\...\{6ED27C84-0000-1033-0102-D4DAEFFC23C2}) (Version: 4.0.0.28 - Autodesk) Hidden

Autodesk ReCap (HKLM\...\Autodesk ReCap 360) (Version: 4.0.0.28 - Autodesk)

Avid BBD Delay (HKLM\...\{7166744A-A8B4-4F2E-B924-CAAE18B34C1B}) (Version: 12.0.1.657 - Avid Technology, Inc.)

Avid Black Op Distortion (HKLM\...\{8D47277C-6703-42AB-8CA0-BFC373B0F336}) (Version: 12.0.0.615 - Avid Technology, Inc.)

Avid Black Spring (HKLM\...\{0D565B7E-FE8D-4337-86C3-A16D519E7DF2}) (Version: 12.0.0.615 - Avid Technology, Inc.)

Avid Black/Shiny Wah (HKLM\...\{CD273B2B-C2EB-489B-A65A-DAE69AF372FA}) (Version: 12.0.0.615 - Avid Technology, Inc.)

Avid C1 Chorus/Vibrato (HKLM\...\{F4FEC0E6-ADE9-478C-82BD-C5A4EACE7EBC}) (Version: 12.0.0.615 - Avid Technology, Inc.)

Avid DC Distortion (HKLM\...\{F6465C5D-6472-45EC-BC73-ED469EC58990}) (Version: 12.0.0.615 - Avid Technology, Inc.)

Avid Flanger (HKLM\...\{2D821F0B-58EE-4E09-977F-BFE332F0C0CB}) (Version: 12.0.0.615 - Avid Technology, Inc.)

Avid Gray Compressor (HKLM\...\{46EF7BCB-B69D-4B4F-B6EA-F6A6DA12F98B}) (Version: 12.0.0.615 - Avid Technology, Inc.)

Avid Green JRC Overdrive (HKLM\...\{E02B86C6-76A8-4F39-A12D-1BDCB31B58DF}) (Version: 12.0.0.615 - Avid Technology, Inc.)

Avid Orange Phaser (HKLM\...\{1CDF0CE5-8478-492D-A927-D9FDADEF1982}) (Version: 12.0.0.615 - Avid Technology, Inc.)

Avid Pro Tools (HKLM\...\{440A8FC5-DF1F-49F2-8936-227247138A34}) (Version: 12.5.0.395 - Avid Technology, Inc.)

Avid Roto Speaker (HKLM\...\{46EA6B2B-1672-4547-9E35-26D3E5767338}) (Version: 12.0.0.615 - Avid Technology, Inc.)

Avid Studio Reverb (HKLM\...\{8A93FD75-EA02-418C-AE3A-468EAD06CCCE}) (Version: 12.0.0.615 - Avid Technology, Inc.)

Avid Tape Echo (HKLM\...\{E01E8218-4DFF-47C1-8BC1-AEDEA8792D31}) (Version: 12.0.0.615 - Avid Technology, Inc.)

Avid Tri-Knob Fuzz (HKLM\...\{D2B2119B-31FC-4C97-9E66-8CF384F17330}) (Version: 12.0.0.615 - Avid Technology, Inc.)

Avid Vibe Phaser (HKLM\...\{7EFCE9CA-22C4-4A5C-ACF4-35CB53A364AB}) (Version: 12.0.0.615 - Avid Technology, Inc.)

Avid White Boost (HKLM\...\{2D411652-9A8D-4CF6-B435-00B5338D4DE7}) (Version: 12.0.0.615 - Avid Technology, Inc.)

BlueStacks 3 (HKLM-x32\...\BlueStacks) (Version: 3.50.66.2547 - BlueStack Systems, Inc.)

Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)

Branding64 (HKLM\...\{856DA29A-EA4A-468B-BBC2-B5F60DD75BFE}) (Version: 1.00.0002 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization BR (HKLM\...\{A1F7029B-189A-D46A-05D4-C7EBBB1F009F}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization CHS (HKLM\...\{2803AC43-60F9-9CD6-295F-589B2EE3FED8}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization CHT (HKLM\...\{4F572E63-3C9C-C309-BA75-C113278C152D}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization CS (HKLM\...\{F7F3376A-35BD-22F5-E8FE-31F0124465F1}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization DA (HKLM\...\{B71E0D12-088D-91B2-249F-1E2D27BF3F03}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization DE (HKLM\...\{142FA9FE-83E3-1B87-320E-73D450083C4F}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization EL (HKLM\...\{7C350240-B882-6665-F318-6BACDFCB39AD}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization ES (HKLM\...\{51AB5F9E-A0D9-866F-BC7D-908B7B64C544}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization FI (HKLM\...\{BD19E4B4-7D20-1A01-7A97-7B3398ED7216}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization FR (HKLM\...\{92784795-5410-1BAE-2DE8-B08AA939EDAE}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization HU (HKLM\...\{791052C7-675B-F84F-B654-716718FB3CFB}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization IT (HKLM\...\{B3909DD8-3560-DB7D-3FA2-59A407B18E69}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization JA (HKLM\...\{230DFB28-7B17-F3DB-E0E9-CFAF5AF437D4}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization KO (HKLM\...\{2817064F-C179-02E5-F752-DABB0A89A04E}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization NL (HKLM\...\{DCBBB6E6-6732-BD8C-35B1-B0037C9C3CCF}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization NO (HKLM\...\{272DB21B-7B02-66F4-B01E-8533A8133EAA}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization PL (HKLM\...\{EEAECCBD-772A-0533-1555-738F32309006}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization RU (HKLM\...\{09D7E2A9-3FC2-60DF-52BB-59C174690395}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization SV (HKLM\...\{CF22635E-0FB3-2ACC-9205-A341951E01FB}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization TH (HKLM\...\{3F817498-6A80-AD5D-F843-909F992DC1C1}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization TR (HKLM\...\{8A1C1036-95EA-6FD4-1358-D22577B597C9}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

CCleaner (HKLM\...\CCleaner) (Version: 5.68 - Piriform)

Celemony Melodyne Studio 4 (HKLM-x32\...\Celemony Melodyne Studio 4) (Version: 4.0.4.001 - Celemony)

Cheating-Death 4.33.4 (HKLM-x32\...\Cheating-Death) (Version: - )

Colin McRae DiRT 2 (HKLM-x32\...\Colin McRae DiRT 2) (Version: - FX Interactive)

Compatibilidad con Aplicaciones de Apple (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)

Counter-Strike 1.6 (HKLM-x32\...\Counter-Strike 1.6_is1) (Version: Counter-Strike 1.6 No Steam - KingSOFT DVD)

Cracklock 3.9.45 (HKLM-x32\...\Cracklock_is1) (Version: 3.9.45 - William Blum)

CyberLink Power Media Player 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.6.8827 - CyberLink Corp.)

DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 5.0.1.0406 - Disc Soft Ltd)

Documentation Manager (HKLM\...\{59C2C057-0051-48B0-8570-75E21B5BBAE1}) (Version: 21.90.3.2 - Intel Corporation) Hidden

Dropbox 25 GB (HKLM-x32\...\{84D8451D-2ED6-3A59-ABA5-2A447F7C6310}) (Version: 4.1.2.0 - Dropbox, Inc.)

Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.335.1 - Dropbox, Inc.) Hidden

Eines de correcció del Microsoft Office 2016: català (HKLM\...\{90160000-001F-0403-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden

ELAN Touchpad 18.2.21.1_X64_WHQL (HKLM\...\Elantech) (Version: 18.2.21.1 - ELAN Microelectronic Corp.)

Energy Star (HKLM\...\{5CB22648-35F8-41BC-9C35-1E41FE6E12A5}) (Version: 1.1.1 - HP Inc.)

Epic Games Launcher (HKLM-x32\...\{9E53E30C-33FB-4784-BB0F-186178764ED8}) (Version: 1.1.257.0 - Epic Games, Inc.)

Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden

EPSON USB Display (HKLM-x32\...\{7650F538-6274-44EA-8F50-843479073333}) (Version: 1.45.000 - SEIKO EPSON CORPORATION)

Escritorio movistar Latam (HKLM-x32\...\movistarLATAM) (Version: - Escritorio movistar Latam)

FabFilter Total Bundle (HKLM-x32\...\FabFilter Total Bundle) (Version: 2016.02.02 - FabFilter)

Facebook Gameroom 1.21.6697.19829 (HKLM-x32\...\{7BE2211B-F86C-40CA-A6CC-69564D9BD5E2}) (Version: 1.21.6697.19829 - Facebook)

Fallout New Vegas Ultimate Edition versión 1.4.0.525 (HKLM-x32\...\Fallout New Vegas Ultimate Edition_is1) (Version: 1.4.0.525 - Bethesda Softworks)

FARO LS 1.1.600.6 (64bit) (HKLM-x32\...\{510A08AF-1649-4844-94E5-EAC43A023685}) (Version: 6.0.6.5 - FARO Scanner Production)

Ferramentas de verificación de Microsoft Office 2016 - Galego (HKLM\...\{90160000-001F-0456-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden

FileZilla Client 3.48.0 (HKLM-x32\...\FileZilla Client) (Version: 3.48.0 - Tim Kosse)

First AIR Instruments (HKLM\...\{71F15787-675A-41AA-98E2-4403383ECF11}) (Version: 12.0.0.615 - AIR Music Technology)

FlatOut 2 (HKLM-x32\...\FlatOut 2) (Version: - FX Interactive)

FXWebPlayer (HKLM-x32\...\FXWebPlayer) (Version: - FX Interactive) <==== ATTENTION

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 84.0.4147.89 - Google LLC)

Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden

Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden

HP 3D DriveGuard (HKLM-x32\...\{8F183B2E-D21D-4070-8132-DD39C3CBFA5C}) (Version: 6.0.41.1 - HP)

HP Audio Switch (HKLM-x32\...\{3A5141D4-47DB-4302-9B1C-272BE585BC8A}) (Version: 1.0.179.0 - HP Inc.)

HP CoolSense (HKLM-x32\...\{20CC03C7-7B48-4130-B7FA-39BC128E3A9E}) (Version: 2.21.5 - HP Inc.)

HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)

HP ePrint SW (HKLM-x32\...\{54da9769-2364-4bd3-8139-6400500778b3}) (Version: 5.3.22034 - HP Inc.)

HP JumpStart Apps (HKLM-x32\...\HP JumpStart Apps) (Version: 7.0.21 - HP Inc.)

HP JumpStart Bridge (HKLM-x32\...\{EB0912FF-C311-4E0F-A6B1-420FDD3C295E}) (Version: 1.3.0.407 - HP Inc.)

HP JumpStart Launch (HKLM-x32\...\{81CA40FD-E11B-4DC1-AE33-A71EB044B8B7}) (Version: 1.1.275.0 - HP Inc.)

HP Orbit (HKLM-x32\...\{82b971c1-85fa-4c53-ada1-4ec6be0c0c8a}) (Version: 3.5.171.271 - HP Inc.)

HP PC Hardware Diagnostics Windows (HKLM-x32\...\{DF16F6E3-6550-468A-9C0C-306B4F60D501}) (Version: 1.5.8.0 - HP Inc.)

HP Support Assistant (HKLM-x32\...\{4780AF24-213D-4187-86F2-0014A6D6077B}) (Version: 8.8.26.13 - HP Inc.)

HP Support Solutions Framework (HKLM-x32\...\{00612F78-52C4-46C0-97F0-F50B6036B5E2}) (Version: 12.16.22.11 - HP Inc.)

HP System Event Utility (HKLM-x32\...\{57058272-92B0-4EFA-8FDD-ED3E5D689D37}) (Version: 1.4.32 - HP Inc.)

HP Wireless Button Driver (HKLM-x32\...\{F5852AA8-30EA-495B-84B4-C2403C935D6F}) (Version: 1.1.19.1 - HP)

HUAWEI DataCard Driver 4.05.00.00 (HKLM-x32\...\HUAWEI DataCard Driver) (Version: 4.05.00.00 - Huawei technologies Co., Ltd.)

ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)

Intel Driver && Support Assistant (HKLM-x32\...\{0B6D9E45-696A-452C-B0FE-32A37F1792F9}) (Version: 20.7.26.7 - Intel) Hidden

Intel(R) Computing Improvement Program (HKLM\...\{D98C2DF9-C731-4322-A5F0-D897300216EE}) (Version: 2.4.05718 - Intel Corporation)

Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000080-0210-1034-84C8-B8D95FA3C8C3}) (Version: 21.80.0.3 - Intel Corporation)

Intel® Driver & Support Assistant (HKLM-x32\...\{3fa11c9d-9f7f-4020-bcef-dbf9c9fe309f}) (Version: 20.7.26.7 - Intel)

Intel® PROSet/Wireless Software (HKLM-x32\...\{f8c930bd-0a68-425f-8c11-87723d1e2c97}) (Version: 20.90.0 - Intel Corporation)

Intel® Software Installer (HKLM-x32\...\{4ac3b686-ca29-4a13-a973-06a4d4dd09e6}) (Version: 21.90.3.2 - Intel Corporation) Hidden

iZotope Meter Tap 3 (HKLM\...\Meter Tap 3_is1) (Version: 1.0.3 - iZotope)

iZotope Nectar 3 (HKLM\...\Nectar 3_is1) (Version: 3.1.0 - iZotope)

iZotope Relay (HKLM\...\Relay_is1) (Version: 1.0.2 - iZotope)

Kaspersky Password Manager (HKLM-x32\...\{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab) Hidden

Kaspersky Password Manager (HKLM-x32\...\InstallWIX_{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab)

Kaspersky Secure Connection (HKLM-x32\...\{145AE349-477A-45E5-A57C-5F5BF2BB5775}) (Version: 20.0.14.1085 - Kaspersky) Hidden

Kaspersky Security Cloud (HKLM-x32\...\{D891550B-ACFE-4797-B368-BCFC434BBEB1}) (Version: 20.0.14.1085 - Kaspersky) Hidden

Kaspersky Security Cloud (HKLM-x32\...\InstallWIX_{D891550B-ACFE-4797-B368-BCFC434BBEB1}) (Version: 20.0.14.1085 - Kaspersky)

LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )

Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden

Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden

LEGO Marvel's Avengers (HKLM-x32\...\LEGO Marvel's Avengers_is1) (Version: - )

Los Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.25.136.1020 - Electronic Arts Inc.)

LS-USBMX1/2/3 Steering... (HKLM-x32\...\{CC7F0FAA-9768-4CE2-B133-72C66492EC06}) (Version: 1.00.0000 - GASIA)

Malwarebytes version 4.1.2.73 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.2.73 - Malwarebytes)

MediaTek Driver Packages version 5.14.53.00 (HKLM\...\MediaTek Driver Packages_is1) (Version: 5.14.53.00 - MediaTek.Inc.)

MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)

Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 84.0.522.40 - Microsoft Corporation)

Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.133.5 - )

Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)

Microsoft OneDrive (HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\OneDriveSetup.exe) (Version: 20.114.0607.0002 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)

Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.23.27820 (HKLM-x32\...\{852adda4-4c78-4a38-b583-c0b360a329d6}) (Version: 14.23.27820.0 - Microsoft Corporation)

Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)

Mozilla Firefox 68.0.2 (x64 es-ES) (HKLM\...\Mozilla Firefox 68.0.2 (x64 es-ES)) (Version: 68.0.2 - Mozilla)

Native Instruments Kinetic Metal (HKLM-x32\...\Native Instruments Kinetic Metal) (Version: 1.0.0.12 - Native Instruments)

Need for Speed Most Wanted 2012 versión 1.5 (HKLM-x32\...\{F65D0A95-56E8-487B-9E27-3D90EEE78089}_is1) (Version: 1.5 - EA Games)

Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.65.2 - Black Tree Gaming)

NVIDIA PhysX (HKLM-x32\...\{80407BA7-7763-4395-AB98-5233F1B34E65}) (Version: 9.13.1220 - NVIDIA Corporation)

OEM Application Profile (HKLM-x32\...\{B4B7FD8F-06FC-E277-4F29-8F75F8281D8F}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)

OpenAL (HKLM-x32\...\OpenAL) (Version: - )

PACE License Support Win64 (HKLM\...\{83E92696-D92D-4c7e-B094-0BE853B191FE}) (Version: 2.5.2.1034 - PACE Anti-Piracy, Inc.) Hidden

PACE License Support Win64 (HKLM-x32\...\InstallShield_{83E92696-D92D-4c7e-B094-0BE853B191FE}) (Version: 2.5.2.1034 - PACE Anti-Piracy, Inc.)

QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)

Race Driver GRID (HKLM-x32\...\Race Driver GRID) (Version: - FX Interactive)

Rapture3D 2.4.11 Game (HKLM-x32\...\{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1) (Version: - Blue Ripple Sound)

Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.370.184 - Realtek Semiconductor Corp.)

Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.16.323.2017 - Realtek)

Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8437 - Realtek Semiconductor Corp.)

REAPER (x64) (HKLM\...\REAPER) (Version: - )

Revisores de Texto do Microsoft Office 2016 – Português (Brasil) (HKLM\...\{90160000-001F-0416-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden

Samsung Printer Center (HKLM-x32\...\Samsung Printer Center) (Version: 1.0.0.28 - Samsung Electronics Co., Ltd.)

ScpToolkit (HKLM\...\{AC052048-9828-45E3-872B-04CE30A3B58B}) (Version: 1.6.238.16010 - Nefarius Software Solutions)

Spintires MudRunner MULTi8 - ElAmigos versión 28.05.2018 (HKLM-x32\...\{4E13DB1E-1DA1-42DF-A76E-5FB91F25BD45}_is1) (Version: 28.05.2018 - Focus Home Interactive)

STAR WARS Battlefront II (HKLM-x32\...\1421404701_is1) (Version: 1.1_xplay - GOG.com)

Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)

Sugar Bytes TransVST 1.0 (HKLM\...\TransVST_is1) (Version: 1.0 - Sugar Bytes)

Tableta Wacom (HKLM\...\Wacom Tablet Driver) (Version: 6.3.17-3 - Wacom Technology Corp.)

The Elder Scrolls V Skyrim - Legendary Edition (HKLM-x32\...\The Elder Scrolls V Skyrim - Legendary Edition_is1) (Version: - )

The Sims 4: City Living (HKLM\...\dGhlc2ltczRjaXR5bGl2aW5n_is1) (Version: 1 - )

Tribler (HKLM-x32\...\Tribler) (Version: 7.4.0 - The Tribler Team)

Uninstall Samsung Printer Software (HKLM-x32\...\TotalUninstaller) (Version: 4.0.0.67 - Samsung Electronics CO., LTD.)

Update for Skype for Business 2016 (KB4484286) 64-Bit Edition (HKLM\...\{90160000-0011-0000-1000-0000000FF1CE}_Office16.PROPLUS_{5F64605A-1F38-44BE-BB99-1799A6D11A62}) (Version: - Microsoft)

Update for Skype for Business 2016 (KB4484286) 64-Bit Edition (HKLM\...\{90160000-00C1-0000-1000-0000000FF1CE}_Office16.PROPLUS_{5F64605A-1F38-44BE-BB99-1799A6D11A62}) (Version: - Microsoft)

Update for Skype for Business 2016 (KB4484286) 64-Bit Edition (HKLM\...\{90160000-012B-0C0A-1000-0000000FF1CE}_Office16.PROPLUS_{5F64605A-1F38-44BE-BB99-1799A6D11A62}) (Version: - Microsoft)

Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden

Uplay (HKLM-x32\...\Uplay) (Version: 102.0 - Ubisoft)

VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN)

VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.8 - VideoLAN)

Voxengo plugin bundle 1.0.0 (Repack) (HKLM\...\Voxengo plugin bundle_is1) (Version: - )

Vulkan Run Time Libraries 1.0.37.0 (HKLM\...\VulkanRT1.0.37.0) (Version: 1.0.37.0 - LunarG, Inc.)

Vulkan Run Time Libraries 1.0.65.0 (HKLM\...\VulkanRT1.0.65.0-2) (Version: 1.0.65.0 - LunarG, Inc.) Hidden

War Thunder Launcher 1.0.3.213 (HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)

WavePad, editor de audio (HKLM-x32\...\WavePad) (Version: 9.11 - NCH Software)

Waves Central (HKLM\...\{ab507e17-892b-5203-838d-d58d8d09c50f}) (Version: 11.0.60 - Waves Audio Ltd)

WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)

WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)

WinRAR 5.90 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH)

XLN Audio Addictive Drums 2 (HKLM\...\Addictive Drums 2_is1) (Version: 2.1.9 - XLN Audio)

Xpand!2 (HKLM-x32\...\{dadbcc76-2a7e-4f53-a77a-3868c51bdd80}) (Version: 2.2.7.19000 - AIR Music Tech GmbH)

Xpand!2 Content (HKLM-x32\...\{AEB475C2-FC86-4082-87D7-352DFB075B2C}) (Version: 2.2.7.19000 - AIR Music Tech GmbH) Hidden

Xpand!2 Factory Content (HKLM-x32\...\{C1149DC5-F5B9-455E-B6B3-B81D9B5C80A0}) (Version: 2.2.7.19000 - AIR Music Tech GmbH) Hidden

Xpand!2 VST32 (HKLM-x32\...\{87716891-1EC0-46CC-8821-5A4DC75EEFD7}) (Version: 2.2.7.19000 - AIR Music Tech GmbH) Hidden

Xpand!2 VST64 (HKLM\...\{B9802F00-659C-4C21-9BA5-0958BAC6EFEF}) (Version: 2.2.7.19000 - AIR Music Tech GmbH) Hidden

Zoom (HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\ZoomUMX) (Version: 5.0 - Zoom Video Communications, Inc.)

Packages:

=========

Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-07] (Autodesk Inc.)

Complemento de Fotos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2018-09-13] (Microsoft Corporation)

HP JumpStart -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStart_1.2.378.0_x64__v10z8vjag6ke6 [2017-08-20] (HP Inc.)

HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_115.1.152.0_x64__v10z8vjag6ke6 [2020-05-29] (HP Inc.)

iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12107.3.48019.0_x64__nzyj5cx40ttqa [2020-05-21] (Apple Inc.) [Startup Task]

Keeper - Password Manager & Secure File Storage -> C:\Program Files\WindowsApps\KeeperSecurityInc.Keeper_14.0.33.0_x64__kejf07qmg0jnm [2019-08-26] (Keeper Security Inc)

Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_600.4.119.0_x64__8xx8rvfyw5nnt [2020-07-19] (Facebook Inc) [Startup Task]

Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-15] (Microsoft Corporation) [MS Ad]

Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-15] (Microsoft Corporation) [MS Ad]

Microsoft Minesweeper -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMinesweeper_2.9.1913.0_x86__8wekyb3d8bbwe [2019-12-24] (Microsoft Studios) [MS Ad]

Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.7162.0_x64__8wekyb3d8bbwe [2020-07-21] (Microsoft Studios) [MS Ad]

Microsoft Treasure Hunt -> C:\Program Files\WindowsApps\Microsoft.MicrosoftTreasureHunt_2.1.11080.0_x86__8wekyb3d8bbwe [2019-11-28] (Microsoft Studios) [MS Ad]

Microsoft Ultimate Word Games -> C:\Program Files\WindowsApps\Microsoft.Studios.Wordament_3.6.10070.0_x64__8wekyb3d8bbwe [2019-10-16] (Microsoft Studios) [MS Ad]

MSN El tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]

Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-07-19] (Netflix, Inc.)

Plex -> C:\Program Files\WindowsApps\CAF9E577.Plex_3.2.20.0_x64__aam28m9va5cke [2017-11-26] (Plex)

Traductor -> C:\Program Files\WindowsApps\Microsoft.BingTranslator_5.6.0.0_x64__8wekyb3d8bbwe [2019-10-14] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2375054329-1883842248-1515162951-1001_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145}\localserver32 -> C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (IDSA Production signing key -> Intel)

CustomCLSID: HKU\S-1-5-21-2375054329-1883842248-1515162951-1001_Classes\CLSID\{9AAF0EB6-42D8-46C1-A2EF-679511B37A0D}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2018\acad.exe (Autodesk, Inc -> Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-2375054329-1883842248-1515162951-1001_Classes\CLSID\{B6EB585B-B467-4E46-A9C7-48D7D6FD26CB}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2018\acad.exe (Autodesk, Inc -> Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-2375054329-1883842248-1515162951-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2018\es-ES\acadficn.dll (Autodesk Development Sarl -> Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-2375054329-1883842248-1515162951-1001_Classes\CLSID\{F78B9A86-F2A7-48BD-8443-494F9ECAA46B} -> [MEGAsync] => C:\Users\Ismael\Documents\MEGAsync [2020-07-20 06:53]

ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Ismael\AppData\Local\MEGAsync\ShellExtX64.dll [2020-07-20] (Mega Limited -> )

ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Ismael\AppData\Local\MEGAsync\ShellExtX64.dll [2020-07-20] (Mega Limited -> )

ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Ismael\AppData\Local\MEGAsync\ShellExtX64.dll [2020-07-20] (Mega Limited -> )

ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll [2017-02-03] (Autodesk, Inc -> Autodesk, Inc.)

ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Ismael\AppData\Local\MEGAsync\ShellExtX64.dll [2020-07-20] (Mega Limited -> )

ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Ismael\AppData\Local\MEGAsync\ShellExtX64.dll [2020-07-20] (Mega Limited -> )

ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Ismael\AppData\Local\MEGAsync\ShellExtX64.dll [2020-07-20] (Mega Limited -> )

ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2017-02-03] (Autodesk, Inc -> Autodesk)

ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> No File

ContextMenuHandlers1: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\x64\ShellEx.dll [2020-02-28] (Kaspersky Lab -> AO Kaspersky Lab)

ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Ismael\AppData\Local\MEGAsync\ShellExtX64.dll [2020-07-20] (Mega Limited -> )

ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)

ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)

ContextMenuHandlers2: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\x64\ShellEx.dll [2020-02-28] (Kaspersky Lab -> AO Kaspersky Lab)

ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Ismael\AppData\Local\MEGAsync\ShellExtX64.dll [2020-07-20] (Mega Limited -> )

ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-07-24] (Malwarebytes Corporation -> Malwarebytes)

ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Ismael\AppData\Local\MEGAsync\ShellExtX64.dll [2020-07-20] (Mega Limited -> )

ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> No File

ContextMenuHandlers4: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\x64\ShellEx.dll [2020-02-28] (Kaspersky Lab -> AO Kaspersky Lab)

ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Ismael\AppData\Local\MEGAsync\ShellExtX64.dll [2020-07-20] (Mega Limited -> )

ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2020-04-01] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)

ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> No File

ContextMenuHandlers6: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\x64\ShellEx.dll [2020-02-28] (Kaspersky Lab -> AO Kaspersky Lab)

ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-07-24] (Malwarebytes Corporation -> Malwarebytes)

ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)

ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-18] (Fox Magic Software) [File not signed]

HKLM\...\Drivers32: [vidc.VP60] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)

HKLM\...\Drivers32: [vidc.VP61] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\Ismael\Desktop\Half Life 2 E1.lnk -> C:\Users\Ismael\Documents\My Games\Half.Life.2.Episode.One.SPANiSH.Web2k2\iniciar.bat ()

ShortcutWithArgument: C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Escritorio Remoto de Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=gbchcmhmhahfdphkhkmpfmihenigjmpp

ShortcutWithArgument: C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Google Keep_ notas y listas.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default --app-id=hmjkmjkepdijhoojdojkdfohbdgmmhki

ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Priceline.com.lnk -> C:\Program Files (x86)\HP\Shared\WizLink.exe () -> hxxp://secure.rezserver.com/sdk/v1/LinkFwd?refid=7684&destination=priceline&refclickid=square

ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VUDU - Streaming Movies.lnk -> C:\Program Files (x86)\HP\Shared\WizLink.exe () -> hxxp://js.redirect.hp.com/jumpstation?bd=all&c=*&locale=en_us&pf=cnnb&s=VUDU_URL&tp=startmenu

==================== Loaded Modules (Whitelisted) =============

2019-12-04 04:00 - 2019-12-04 04:00 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 003567616 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll

2020-07-23 00:03 - 2020-07-23 00:03 - 000160256 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\BRIDGECommon\06166fc3362255067cee05400b4ccbd9\BRIDGECommon.ni.dll

2020-07-23 00:06 - 2020-07-23 00:06 - 000120832 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\BridgeExtension\4abd5033dfb01e66ec8bc00887f2f39e\BridgeExtension.ni.dll

2020-07-23 00:06 - 2020-07-23 00:06 - 000348160 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CleanStartController\7954b5d3e9951ccac5b0abf6c0babc8a\CleanStartController.ni.dll

2020-07-23 00:42 - 2020-07-23 00:42 - 000138240 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Interop.IWs06dcaa36#\7a40d1ff9faea2f3483bc62a28fd59f7\Interop.IWshRuntimeLibrary.ni.dll

2020-07-23 00:06 - 2020-07-23 00:06 - 000072704 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\NativeInterop\54c320aeebbfb352010089635a5f5e16\NativeInterop.ni.dll

2020-07-23 00:42 - 2020-07-23 00:42 - 000134656 _____ (hardcodet.net) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Hardcodet.W6cab32f3#\4fddde7137e682576bbf91fa9e2c8a22\Hardcodet.Wpf.TaskbarNotification.ni.dll

2020-07-23 00:06 - 2020-07-23 00:06 - 000134656 _____ (HP Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CommonPortable\e01704f2f9e2759800f3b7fdfaed1595\CommonPortable.ni.dll

2020-07-23 00:42 - 2020-07-23 00:42 - 001701888 _____ (Mark Heath & Contributors) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\NAudio\b0544d4f29595e38f575f91f8992c87e\NAudio.ni.dll

2020-07-23 00:42 - 2020-07-23 00:42 - 003060736 _____ (Newtonsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Newtonsoft.Json\0bb842fc38b93514a0e24f3d94c776d9\Newtonsoft.Json.ni.dll

2020-03-10 10:31 - 2020-03-10 10:31 - 001631744 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files\Intel\SUR\QUEENCREEK\x64\SQLite.Interop.dll

2020-03-10 10:31 - 2020-03-10 10:31 - 001918464 _____ (SQLite Development Team) [File not signed] C:\Program Files\Intel\SUR\QUEENCREEK\sqlite3.DLL

2020-03-10 10:31 - 2020-03-10 10:31 - 001918464 _____ (SQLite Development Team) [File not signed] C:\Program Files\Intel\SUR\QUEENCREEK\x64\sqlite3.dll

2020-07-23 00:42 - 2020-07-23 00:42 - 000793088 _____ (The Apache Software Foundation) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\log4net\19bea58cbe49b7ce5ba6ebe8127ec7ae\log4net.ni.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000039424 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000413696 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000519168 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 001431040 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 001180672 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000135680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll

2020-04-01 15:10 - 2020-04-01 15:10 - 006010880 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 006345216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 001078272 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000313856 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 004000256 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 003802624 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000171008 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 001083904 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000205312 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000329728 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000113152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000376320 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 092323328 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 005560832 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000463360 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000188416 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 002888704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000053760 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000017408 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000287232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000329216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000136192 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000089088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000312320 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll

2020-04-01 15:10 - 2020-04-01 15:10 - 000085504 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData:9E4957CE5A9494B2 [217]

AlternateDataStreams: C:\Users\All Users:9E4957CE5A9494B2 [217]

AlternateDataStreams: C:\ProgramData\Application Data:9E4957CE5A9494B2 [217]

AlternateDataStreams: C:\Users\Ismael\Desktop\adwcleaner_8.0.7.exe:SmartScreen [7]

AlternateDataStreams: C:\Users\Ismael\Desktop\ccsetup568.exe:SmartScreen [7]

AlternateDataStreams: C:\Users\Ismael\Desktop\FRST64.exe:SmartScreen [7]

AlternateDataStreams: C:\Users\Ismael\Desktop\MBSetup.exe:SmartScreen [7]

AlternateDataStreams: C:\Users\Ismael\Desktop\ZHPCleaner.exe:SmartScreen [7]

AlternateDataStreams: C:\Users\Ismael\Downloads\reaper612c_x64-install.exe:SmartScreen [7]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\25399ADF.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\25399ADF.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\Software\Classes\.scr: AutoCADScriptFile =>

==================== Internet Explorer trusted/restricted ==========

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\localhost -> localhost

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-03-18 17:03 - 2019-01-03 10:50 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts

127.0.0.1 localhost

2018-03-17 20:54 - 2020-06-06 00:54 - 000000601 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

16 613

613

8 8 363

192.168.137.1 LAPTOP-GK51HF6J.mshome.net # 2024 7 3 24 15 45 16 613

50

22

22

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files (x86)\QuickTime\QTSystem\;

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Ismael\Pictures\Fondos\167400.jpg

DNS Servers: 8.8.8.8 - 8.8.4.4

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )

Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\Services: AdAppMgrSvc => 2

MSCONFIG\Services: EMP_UDSA => 2

HKLM\...\StartupApproved\StartupFolder: => "ScpToolkit Tray Notifications.lnk"

HKLM\...\StartupApproved\StartupFolder: => "SPDriverInstall.lnk"

HKLM\...\StartupApproved\Run: => "MouseDriver"

HKLM\...\StartupApproved\Run: => "DigidesignMMERefresh"

HKLM\...\StartupApproved\Run32: => "Autodesk Desktop App"

HKLM\...\StartupApproved\Run32: => "EPSON_UD_START"

HKLM\...\StartupApproved\Run32: => "APSDaemon"

HKLM\...\StartupApproved\Run32: => "Intel Driver & Support Assistant"

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\StartupApproved\StartupFolder: => "Send to OneNote.lnk"

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\StartupApproved\StartupFolder: => "MEGAsync.lnk"

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\StartupApproved\StartupFolder: => "Facebook Gameroom.lnk"

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\StartupApproved\StartupFolder: => "EvernoteClipper.lnk"

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\StartupApproved\Run: => "OneDrive"

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\StartupApproved\Run: => "Autodesk Sync"

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\StartupApproved\Run: => "DAEMON Tools Lite"

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\StartupApproved\Run: => "Steam"

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\StartupApproved\Run: => "Imo Messenger"

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\StartupApproved\Run: => "EpicGamesLauncher"

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\StartupApproved\Run: => "kpm.exe"

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\StartupApproved\Run: => "Gaijin.Net Updater"

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\StartupApproved\Run: => "AMDDVR"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{077A5548-225F-4CB9-89A1-C1A640637D65}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe => No File

FirewallRules: [TCP Query User{6F0AA92C-9E5E-42D5-8AC3-89FD2F4A095D}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe => No File

FirewallRules: [UDP Query User{9553889A-9CDA-484A-B485-F9901A0E71B2}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe => No File

FirewallRules: [TCP Query User{AB0CA59B-2213-4E83-B759-F3923C82E212}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe => No File

FirewallRules: [UDP Query User{8B6DD467-8DCD-4EB2-9B6C-928CB7A2BBD9}C:\program files (x86)\videolan\vlc\vlc.exe] => (Block) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)

FirewallRules: [TCP Query User{3ED6A839-73D3-4119-B836-4204692065B1}C:\program files (x86)\videolan\vlc\vlc.exe] => (Block) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)

FirewallRules: [UDP Query User{55A5AE0B-5788-487C-91B9-C1883BD8F6C5}C:\program files (x86)\red faction guerrilla remarstered\rfg.exe] => (Allow) C:\program files (x86)\red faction guerrilla remarstered\rfg.exe => No File

FirewallRules: [TCP Query User{84457690-4CD2-41F3-8B17-9B2EF57A6E54}C:\program files (x86)\red faction guerrilla remarstered\rfg.exe] => (Allow) C:\program files (x86)\red faction guerrilla remarstered\rfg.exe => No File

FirewallRules: [UDP Query User{A016947D-B86D-46CE-9ACE-CE280DAFDC3B}C:\program files\nefarius software solutions\scptoolkit\scpserver.exe] => (Block) C:\program files\nefarius software solutions\scptoolkit\scpserver.exe (Scarlet.Crush Productions) [File not signed]

FirewallRules: [TCP Query User{776A5E55-A733-4A59-8C30-FBC58587F553}C:\program files\nefarius software solutions\scptoolkit\scpserver.exe] => (Block) C:\program files\nefarius software solutions\scptoolkit\scpserver.exe (Scarlet.Crush Productions) [File not signed]

FirewallRules: [{0A7F984F-38C5-4493-BA73-5EC3457DA662}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{F733C335-1AB8-4BFA-BE1B-202C0049C8AE}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{BE681ADF-ACF5-4DC4-9053-5CC0D4BF3F47}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{A48FF1DB-E27C-405D-B5AC-55B589D0CEC7}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{8AD44958-E128-43DB-827D-D5FF6977C04D}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )

FirewallRules: [{993CE3DB-CC13-435F-B266-D87D6E23E0B1}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)

FirewallRules: [{EB4F0F94-9B12-4D51-82FD-99D52E42B9FE}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)

FirewallRules: [{EE0585E5-50BF-4555-9518-9273412B7CAC}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVDMovie.exe (CyberLink Corp. -> CyberLink Corp.)

FirewallRules: [{D93DC133-A134-4567-93A5-560EB7BFFB5B}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.)

FirewallRules: [{ED17749B-B144-4D13-81DA-AAA23BE92DBB}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{E0A12C19-1E0C-46B5-93F5-752FC717EC94}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{252630D5-CE44-470F-8AE5-9BFF4BA99ADB}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{90410D76-A9D0-4B9B-9ACC-E7C1E9CE07B6}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{BA0BC246-20BE-4F00-8275-869B295120F8}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Printer Center\SamsungPrinterCenter.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)

FirewallRules: [{F4D2D018-8F69-4E37-9673-847C0A83192C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)

FirewallRules: [{35480715-3187-4270-9103-F3C13B85201C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)

FirewallRules: [{AF5EABF7-84F0-47DF-A707-255D5C2F92F9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)

FirewallRules: [{4272C76E-23DD-4789-8A8C-F4536C32C6C8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)

Addition 2

FirewallRules: [{4CD7A90D-1DA7-446A-9F4E-3B1F9C833EEC}] => (Block) C:\program files\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe => No File

FirewallRules: [{C874E0FA-7F23-412C-95C9-85CFEC1930A3}] => (Block) C:\program files\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe => No File

FirewallRules: [UDP Query User{57884E9F-ED6E-4CEE-B29A-6EC09C27426A}C:\program files\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe] => (Allow) C:\program files\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe => No File

FirewallRules: [TCP Query User{082F2F76-A4C4-49F0-AC32-61CD81E70783}C:\program files\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe] => (Allow) C:\program files\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe => No File

FirewallRules: [UDP Query User{2C971467-C98E-4800-A0E1-7E8A4F82575F}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => No File

FirewallRules: [TCP Query User{720DC142-CFE7-49DE-A163-1130428D3EC3}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => No File

FirewallRules: [{29A48509-93D0-421A-8EDF-253C2BF88C66}] => (Allow) C:\Program Files (x86)\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)

FirewallRules: [{E49A90F2-4EB5-4AAB-AB92-9C38E2638D8A}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe => No File

FirewallRules: [{40A4F4CA-535C-47EB-9933-D7B8248FF171}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe => No File

FirewallRules: [{69211B68-2197-43E5-831B-FE21DCE5E987}] => (Allow) LPort=5000

FirewallRules: [{5D79CBE6-BE28-41D3-A4C2-8036F69047F2}] => (Allow) LPort=59774

FirewallRules: [{5F6A35B2-7DAA-4DB0-83EA-53C6E7958778}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{4FB1DA33-4D1B-4D3D-B7F2-A8DF4E88511E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{6810EE3A-A8D4-4EB0-884A-41E90D978D8B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{68B3F6B5-8E8B-4B11-BB46-B0F1072B5231}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{7654B124-E643-4FA9-9269-90DC94BE1606}] => (Allow) C:\Program Files\HP\HP Orbit Service\HPOrbitService.exe (HP Inc. -> HP Inc.)

FirewallRules: [{B92A16A7-8E99-4AD5-A993-AA3BD3A0F576}] => (Allow) LPort=13148

FirewallRules: [TCP Query User{DE2CBD49-D98F-4593-A73F-5955749BA70B}C:\program files (x86)\race driver grid\grid.exe] => (Allow) C:\program files (x86)\race driver grid\grid.exe (Codemasters) [File not signed]

FirewallRules: [UDP Query User{99270B5E-A12D-4680-9C96-540F4BEA48DC}C:\program files (x86)\race driver grid\grid.exe] => (Allow) C:\program files (x86)\race driver grid\grid.exe (Codemasters) [File not signed]

FirewallRules: [{641A0357-E8A4-4525-8945-A307A41B9C10}] => (Block) C:\program files (x86)\race driver grid\grid.exe (Codemasters) [File not signed]

FirewallRules: [{8DDC4D5A-9D68-48EF-AC0E-48D5CBA34BB1}] => (Block) C:\program files (x86)\race driver grid\grid.exe (Codemasters) [File not signed]

FirewallRules: [TCP Query User{915F10D0-6EAE-4CB9-B8FD-263A9AB55843}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) C:\program files (x86)\counter-strike 1.6\hl.exe (Valve) [File not signed]

FirewallRules: [UDP Query User{DE03D17C-C1F6-45A0-B07F-1723F326C482}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) C:\program files (x86)\counter-strike 1.6\hl.exe (Valve) [File not signed]

FirewallRules: [TCP Query User{78A99611-B859-44CC-8322-F039C735A802}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) C:\program files (x86)\counter-strike 1.6\hl.exe (Valve) [File not signed]

FirewallRules: [UDP Query User{DFEEEF48-45D3-4667-A9E4-9B73382F2BB5}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) C:\program files (x86)\counter-strike 1.6\hl.exe (Valve) [File not signed]

FirewallRules: [TCP Query User{BD9F865E-316A-4C83-9467-B3158B150F55}C:\users\ismael\documents\my games\geometry wars 3 dimensions portable\gw3.exe] => (Allow) C:\users\ismael\documents\my games\geometry wars 3 dimensions portable\gw3.exe () [File not signed]

FirewallRules: [UDP Query User{587F8ED7-BD2D-4875-B614-B8328B3D2992}C:\users\ismael\documents\my games\geometry wars 3 dimensions portable\gw3.exe] => (Allow) C:\users\ismael\documents\my games\geometry wars 3 dimensions portable\gw3.exe () [File not signed]

FirewallRules: [TCP Query User{7F877BA8-889A-4870-813D-E27F2DC1034E}C:\users\ismael\documents\my games\geometry wars 3 dimensions portable\gw3.exe] => (Allow) C:\users\ismael\documents\my games\geometry wars 3 dimensions portable\gw3.exe () [File not signed]

FirewallRules: [UDP Query User{8EE4005A-3DAB-4F64-8524-D8BA8AD90632}C:\users\ismael\documents\my games\geometry wars 3 dimensions portable\gw3.exe] => (Allow) C:\users\ismael\documents\my games\geometry wars 3 dimensions portable\gw3.exe () [File not signed]

FirewallRules: [{7134C7D6-3FE6-4477-87DA-6FFFEF044397}] => (Allow) C:\Program Files (x86)\Ubisoft\Assassin's Creed Rogue\ACC.exe (UBISOFT ENTERTAINMENT INC. -> )

FirewallRules: [{F05A46F7-3C70-4D9A-847D-7932DB380514}] => (Allow) C:\Program Files (x86)\Ubisoft\Assassin's Creed Rogue\ACC.exe (UBISOFT ENTERTAINMENT INC. -> )

FirewallRules: [{1453E798-16DA-4DD2-A162-B163A5BAFE27}] => (Allow) C:\Program Files\The Sims 4 City Living\Game\Bin\TS4.exe (Electronic Arts Inc.) [File not signed]

FirewallRules: [{A34A5587-9F72-4B8D-B113-BB70BAFA6A5C}] => (Allow) C:\Program Files\The Sims 4 City Living\Game\Bin\TS4.exe (Electronic Arts Inc.) [File not signed]

FirewallRules: [{1E5B5CE6-569F-4977-92FC-0E823A0C066F}] => (Allow) C:\Program Files\The Sims 4 City Living\Game\Bin\TS4_x64.exe (Electronic Arts Inc.) [File not signed]

FirewallRules: [{7222D0D0-47CD-4F9B-BF8C-4EC9EF274C57}] => (Allow) C:\Program Files\The Sims 4 City Living\Game\Bin\TS4_x64.exe (Electronic Arts Inc.) [File not signed]

FirewallRules: [TCP Query User{2FBF7B6E-DC3F-4BBC-8DB7-AF868CC4EAA6}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => No File

FirewallRules: [UDP Query User{35EBB063-B3D1-43CC-809D-CDEA5262D68C}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => No File

FirewallRules: [{5DA0979D-F70E-4156-8D24-DC937C4B285D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe => No File

FirewallRules: [{D51490EF-CE8A-4D40-83EE-1FCD417DC724}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe => No File

FirewallRules: [{A5092403-C351-4CA7-9030-FF013FC85DF4}] => (Allow) C:\Program Files\Tribler\tribler.exe (Technische Universiteit Delft -> )

FirewallRules: [{F534EE72-726F-4026-931E-26D8AFA513CF}] => (Allow) C:\Program Files\Tribler\tribler.exe (Technische Universiteit Delft -> )

FirewallRules: [TCP Query User{89D9A460-9057-44A4-92AA-2A03A300004F}C:\program files\transmission\transmission-qt.exe] => (Allow) C:\program files\transmission\transmission-qt.exe => No File

FirewallRules: [UDP Query User{F56A06A4-D6BE-44D7-8A0F-AA5E39511EDB}C:\program files\transmission\transmission-qt.exe] => (Allow) C:\program files\transmission\transmission-qt.exe => No File

FirewallRules: [TCP Query User{9CB1A159-8EC3-479F-935D-C3080ACB4418}C:\program files (x86)\need for speed most wanted 2012\nfs13.exe] => (Allow) C:\program files (x86)\need for speed most wanted 2012\nfs13.exe (Electronic Arts) [File not signed]

FirewallRules: [UDP Query User{DF888C02-4E50-4ED6-839D-901F32CF16D1}C:\program files (x86)\need for speed most wanted 2012\nfs13.exe] => (Allow) C:\program files (x86)\need for speed most wanted 2012\nfs13.exe (Electronic Arts) [File not signed]

FirewallRules: [{690D989C-4CF4-4236-AB93-1DD68A399024}] => (Allow) C:\Program Files\Avid\Pro Tools\AvidVideoEngine.exe => No File

FirewallRules: [{414C5A4B-525B-4DC5-BDCC-791310A7B15B}] => (Allow) C:\Program Files\Avid\Pro Tools\ProTools.exe (Avid Technology, Inc.) [File not signed]

FirewallRules: [{2A862C21-1AC6-4B93-AB4B-B18F071ADF2A}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{D2BAAD53-82B4-415D-A91C-298BBCBB9471}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)

FirewallRules: [{B5F967C0-78B3-4AA8-A89B-083E19F97566}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)

FirewallRules: [{F80415BB-F08A-4964-AD09-19EB95C7EB87}] => (Allow) C:\Users\Ismael\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)

FirewallRules: [{3063B923-12D3-4C9E-B4DF-07D1A3568196}] => (Allow) C:\Users\Ismael\AppData\Roaming\Zoom\bin\airhost.exe => No File

FirewallRules: [{1EF9565D-4521-448B-8695-C3A41024A69B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tomb Raider\TombRaider.exe (Square Enix) [File not signed]

FirewallRules: [{297DB9CA-0CC0-4E3E-BBA8-CE534F5E66AB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tomb Raider\TombRaider.exe (Square Enix) [File not signed]

FirewallRules: [{24532D50-C67D-49D0-9CF0-45CF48650050}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)

FirewallRules: [{C17CEDB9-8169-49BC-8EB2-A55FC348BC6A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)

FirewallRules: [TCP Query User{6DE78005-1FDA-4467-8BB7-E24E170CEC43}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)

FirewallRules: [UDP Query User{9CE72E88-913E-4340-8485-ACD3CABE2D35}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)

FirewallRules: [{96E978F4-9F9D-499A-8624-4D2852096680}] => (Allow) C:\Users\Ismael\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)

FirewallRules: [{70450209-7681-4274-97A8-A75C3DD37E41}] => (Allow) C:\Users\Ismael\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)

FirewallRules: [TCP Query User{2B0EF755-6C03-4BD5-B58A-3F78B28398C5}C:\program files (x86)\steam\steamapps\common\goat of duty\goatofduty\binaries\win64\goatofduty-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\goat of duty\goatofduty\binaries\win64\goatofduty-win64-shipping.exe => No File

FirewallRules: [UDP Query User{46589817-4E1B-4373-B1E0-A35E38677AD6}C:\program files (x86)\steam\steamapps\common\goat of duty\goatofduty\binaries\win64\goatofduty-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\goat of duty\goatofduty\binaries\win64\goatofduty-win64-shipping.exe => No File

FirewallRules: [{B8EB73A5-B811-4FD0-BABB-F0090523BCC0}] => (Allow) C:\Program Files\Epic Games\WatchDogs\bin\Watch_Dogs.exe (Ubisoft Entertainment -> Ubisoft Entertainment)

FirewallRules: [{69DBE89C-0DAB-4AC4-B35D-EBD2CAB9A96E}] => (Allow) C:\Program Files\Epic Games\WatchDogs\bin\Watch_Dogs.exe (Ubisoft Entertainment -> Ubisoft Entertainment)

FirewallRules: [{6C255EAD-A840-4FB6-9D51-209D4AE15D65}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\World of Tanks Blitz\wotblitz.exe (Wargaming.net) [File not signed]

FirewallRules: [{DE96D99A-4701-4665-AE78-15F1B03C8E3B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\World of Tanks Blitz\wotblitz.exe (Wargaming.net) [File not signed]

FirewallRules: [{8F18E9DC-C385-4B53-BB6A-6B9DF82F95B1}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12107.3.48019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{4F56925F-856F-4F60-96F7-842D5C728007}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12107.3.48019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{55E48A89-5D4E-4D5B-95B5-29BFDEF86792}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12107.3.48019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{D0A89CC7-56EA-4EBD-AFB2-5452692BA320}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12107.3.48019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{F6A1FB34-93C2-4DB7-92F9-AD0813F8D142}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12107.3.48019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{0C29659A-EF71-49BA-AF1C-60E89FC2FA87}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12107.3.48019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{E14ECAC3-9DDB-4CCA-BDA6-B19AADE0A900}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12107.3.48019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{71A46042-20D4-47E0-B6C6-F92148C33FEC}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12107.3.48019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{34BE96CB-D9F4-4367-A7C2-2495BAA888BA}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )

FirewallRules: [{1C9F0FDE-C61A-462D-8B6C-EFA123E7D634}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )

FirewallRules: [{BE3FC16C-FBDC-4FB6-ADAC-AD28A1BC67FF}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )

FirewallRules: [{FECE4153-64DF-47DA-8465-235A7FCB0D9D}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )

FirewallRules: [{B0975CC8-68E0-4BEC-AD5F-622F04637F50}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [{1E2D4913-6CA0-42B7-9D6C-40C8619F6A4C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [{C85568DE-CE67-44E5-9059-D0EEFA0602B7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [{5AF04685-315B-4B89-9B70-5378CE3FE893}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [{7F37A00D-C1A8-435B-B629-84EAB1074B72}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

24-07-2020 01:08:45 ZHPcleaner

==================== Faulty Device Manager Devices ============

Name: Dash L3 Hands-Free HF

Description: Rol Handsfree de perfil manos libres de Microsoft Bluetooth

Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}

Manufacturer: Microsoft

Service: BthHFEnum

Problem: : This device cannot start. (Code10)

Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.

On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

==================== Event log errors: ========================

Application errors:

==================

Error: (07/24/2020 05:11:26 PM) (Source: ESENT) (EventID: 455) (User: )

Description: svchost (3964,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (07/24/2020 05:03:06 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: ISMAEL)

Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.

Error: (07/24/2020 04:59:55 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Nombre de la aplicación con errores: DropboxOEM.exe, versión: 4.1.2.0, marca de tiempo: 0x583ce457

Nombre del módulo con errores: KERNELBASE.dll, versión: 10.0.18362.959, marca de tiempo: 0x51671cfe

Código de excepción: 0xe0434352

Desplazamiento de errores: 0x001143d2

Identificador del proceso con errores: 0x1be0

Hora de inicio de la aplicación con errores: 0x01d661fd5e80e5dd

Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe

Ruta de acceso del módulo con errores: C:\WINDOWS\System32\KERNELBASE.dll

Identificador del informe: f94abc39-841e-47f9-92c3-54d56e57b8bb

Nombre completo del paquete con errores:

Identificador de aplicación relativa del paquete con errores:

Error: (07/24/2020 04:59:52 PM) (Source: .NET Runtime) (EventID: 1026) (User: )

Description: Aplicación: DropboxOEM.exe

Versión de Framework: v4.0.30319

Descripción: el proceso terminó debido a una excepción no controlada.

Información de la excepción: System.Xml.XmlException

en System.Xml.XmlTextReaderImpl.Throw(System.Exception)

en System.Xml.XmlTextReaderImpl.Throw(System.String, System.String[])

en System.Xml.XmlTextReaderImpl.ParseText(Int32 ByRef, Int32 ByRef, Int32 ByRef)

en System.Xml.XmlTextReaderImpl.ParseText()

en System.Xml.XmlTextReaderImpl.ParseElementContent()

en System.Xml.XmlTextReaderImpl.Read()

en System.Xml.XmlTextReader.Read()

en System.Xml.XmlTextReaderImpl.Skip()

en System.Xml.XmlTextReader.Skip()

en System.Configuration.XmlUtil.StrictSkipToNextElement(System.Configuration.ExceptionAction)

en System.Configuration.BaseConfigurationRecord.ScanSectionsRecursive(System.Configuration.XmlUtil, System.String, Boolean, System.String, System.Configuration.OverrideModeSetting, Boolean)

en System.Configuration.BaseConfigurationRecord.ScanSectionsRecursive(System.Configuration.XmlUtil, System.String, Boolean, System.String, System.Configuration.OverrideModeSetting, Boolean)

en System.Configuration.BaseConfigurationRecord.ScanSections(System.Configuration.XmlUtil)

en System.Configuration.BaseConfigurationRecord.InitConfigFromFile()

Información de la excepción: System.Configuration.ConfigurationErrorsException

en System.Configuration.ConfigurationSchemaErrors.ThrowIfErrors(Boolean)

en System.Configuration.BaseConfigurationRecord.ThrowIfParseErrors(System.Configuration.ConfigurationSchemaErrors)

en System.Configuration.BaseConfigurationRecord.ThrowIfInitErrors()

en System.Configuration.ClientConfigurationSystem.OnConfigRemoved(System.Object, System.Configuration.Internal.InternalConfigEventArgs)

Información de la excepción: System.Configuration.ConfigurationErrorsException

en System.Configuration.ClientConfigurationSystem.OnConfigRemoved(System.Object, System.Configuration.Internal.InternalConfigEventArgs)

en System.Configuration.Internal.InternalConfigRoot.OnConfigRemoved(System.Configuration.Internal.InternalConfigEventArgs)

en System.Configuration.Internal.InternalConfigRoot.RemoveConfigImpl(System.String, System.Configuration.BaseConfigurationRecord)

en System.Configuration.BaseConfigurationRecord.GetSectionRecursive(System.String, Boolean, Boolean, Boolean, Boolean, System.Object ByRef, System.Object ByRef)

en System.Configuration.BaseConfigurationRecord.GetSection(System.String)

en System.Configuration.ClientConfigurationSystem.System.Configuration.Internal.IInternalConfigSystem.GetSection(System.String)

en System.Configuration.ConfigurationManager.GetSection(System.String)

en System.Configuration.ClientSettingsStore.ReadSettings(System.String, Boolean)

en System.Configuration.LocalFileSettingsProvider.GetPropertyValues(System.Configuration.SettingsContext, System.Configuration.SettingsPropertyCollection)

en System.Configuration.SettingsBase.GetPropertiesFromProvider(System.Configuration.SettingsProvider)

en System.Configuration.SettingsBase.GetPropertyValueByName(System.String)

en System.Configuration.SettingsBase.get_Item(System.String)

en System.Configuration.ApplicationSettingsBase.GetPropertyValue(System.String)

en System.Configuration.ApplicationSettingsBase.get_Item(System.String)

en DropboxOEM.Properties.Settings.get_ForegroundProcessPriority()

en DropboxOEM.App.Application_Startup(System.Object, System.Windows.StartupEventArgs)

en System.Windows.Application.OnStartup(System.Windows.StartupEventArgs)

en System.Windows.Application.<.ctor>b__1_0(System.Object)

en System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)

en System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)

en System.Windows.Threading.DispatcherOperation.InvokeImpl()

en System.Windows.Threading.DispatcherOperation.InvokeInSecurityContext(System.Object)

en System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)

en System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)

en System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)

en MS.Internal.CulturePreservingExecutionContext.Run(MS.Internal.CulturePreservingExecutionContext, System.Threading.ContextCallback, System.Object)

en System.Windows.Threading.DispatcherOperation.Invoke()

en System.Windows.Threading.Dispatcher.ProcessQueue()

en System.Windows.Threading.Dispatcher.WndProcHook(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)

en MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)

en MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)

en System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)

en System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)

en System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)

en MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)

en MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)

en System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)

  en System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame)

en System.Windows.Application.RunDispatcher(System.Object)

en System.Windows.Application.RunInternal(System.Windows.Window)

en System.Windows.Application.Run(System.Windows.Window)

en DropboxOEM.App.Main()

Error: (07/24/2020 04:59:15 PM) (Source: SideBySide) (EventID: 78) (User: )

Description: Error al generar el contexto de activación para "C:\Program Files (x86)\Audacity\audacity.exe". Error en el archivo de manifiesto o directiva "" en la línea .

Una versión de componente requerida por la aplicación está en conflicto con la versión de otro componente activo.

Los componentes en conflicto son:.

Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.959_none_e6c7bbbf130c62bb.manifest.

Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.959_none_2e74f29627888bc1.manifest.

Error: (07/24/2020 04:00:03 PM) (Source: ESENT) (EventID: 455) (User: )

Description: svchost (4716,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (07/24/2020 11:28:12 AM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 16 1.0.0.127.in-addr.arpa. PTR Ismael-2.local.

Error: (07/24/2020 11:28:12 AM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: mDNSCoreReceiveResponse: Received from 127.0.0.1:5353 14 1.0.0.127.in-addr.arpa. PTR Ismael.local.

System errors:

=============

Error: (07/24/2020 04:58:51 PM) (Source: Service Control Manager) (EventID: 7023) (User: )

Description: El servicio MessagingService_3a5f5f se cerró con el siguiente error:

El dispositivo no está listo.

Error: (07/24/2020 03:52:56 PM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: El servicio Ds3Service no pudo iniciarse debido al siguiente error:

El servicio no respondió a tiempo a la solicitud de inicio o de control.

Error: (07/24/2020 03:52:56 PM) (Source: Service Control Manager) (EventID: 7009) (User: )

Description: Se agotó el tiempo de espera (45000 ms) para la conexión con el servicio Ds3Service.

Error: (07/24/2020 03:50:41 PM) (Source: sptd2) (EventID: 4) (User: )

Description: El controlador detectó un error interno en la estructura de datos de .

Error: (07/24/2020 03:50:12 PM) (Source: Service Control Manager) (EventID: 7043) (User: )

Description: El servicio Windows Update no se cerró correctamente después de recibir un control de aviso de apagado.

Error: (07/24/2020 03:49:38 PM) (Source: DCOM) (EventID: 10010) (User: ISMAEL)

Description: El servidor Microsoft.Windows.Cortana_1.13.0.18362_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppXrav05394kr2asczrmehhj4x2zas01ft6.mca no se registró con DCOM dentro del tiempo de espera requerido.

Error: (07/24/2020 01:45:29 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)

Description: Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070663: Actualización para Skype for Business 2016 (KB4484326) Edición de 64 bits.

Error: (07/24/2020 01:45:24 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)

Description: Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80070663: Actualización de seguridad para Microsoft Word 2016 (KB4484438) Edición de 64 bits.

Windows Defender:

===================================

Date: 2020-07-18 19:23:24.794

Description:

Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.

Para más información, consulta lo siguiente:

https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Crack&threatid=2147734096&enterprise=0

Nombre: HackTool:Win32/Crack

Id.: 2147734096

Gravedad: Alta

Categoría: Herramienta

Ruta de acceso: file:_C:\Program Files (x86)\Bethesda Softworks\The Elder Scrolls V Skyrim - Legendary Edition\steam_api.dll

Origen de detección: Equipo local

Tipo de detección: Concreto

Origen de detección: Protección en tiempo real

Usuario: ISMAEL\Ismael

Nombre de proceso: C:\Program Files (x86)\Bethesda Softworks\The Elder Scrolls V Skyrim - Legendary Edition\SkyrimLauncher.exe

Versión de inteligencia de seguridad: AV: 1.319.1748.0, AS: 1.319.1748.0, NIS: 1.319.1748.0

Versión de motor: AM: 1.1.17200.2, NIS: 1.1.17200.2

Date: 2020-07-18 19:21:59.286

Description:

Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.

Para más información, consulta lo siguiente:

https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Crack&threatid=2147734096&enterprise=0

Nombre: HackTool:Win32/Crack

Id.: 2147734096

Gravedad: Alta

Categoría: Herramienta

Ruta de acceso: file:_C:\Program Files (x86)\Bethesda Softworks\The Elder Scrolls V Skyrim - Legendary Edition\steam_api.dll

Origen de detección: Equipo local

Tipo de detección: Concreto

Origen de detección: Protección en tiempo real

Usuario: ISMAEL\Ismael

Nombre de proceso: C:\Program Files (x86)\Bethesda Softworks\The Elder Scrolls V Skyrim - Legendary Edition\SkyrimLauncher.exe

Versión de inteligencia de seguridad: AV: 1.319.1748.0, AS: 1.319.1748.0, NIS: 1.319.1748.0

Versión de motor: AM: 1.1.17200.2, NIS: 1.1.17200.2

Date: 2020-07-18 19:21:47.171

Description:

Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.

Para más información, consulta lo siguiente:

https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Crack&threatid=2147734096&enterprise=0

Nombre: HackTool:Win32/Crack

Id.: 2147734096

Gravedad: Alta

Categoría: Herramienta

Ruta de acceso: file:_C:\Program Files (x86)\Bethesda Softworks\The Elder Scrolls V Skyrim - Legendary Edition\steam_api.dll

Origen de detección: Equipo local

Tipo de detección: Concreto

Origen de detección: Protección en tiempo real

Usuario: ISMAEL\Ismael

Nombre de proceso: C:\Program Files (x86)\Bethesda Softworks\The Elder Scrolls V Skyrim - Legendary Edition\SkyrimLauncher.exe

Versión de inteligencia de seguridad: AV: 1.319.1748.0, AS: 1.319.1748.0, NIS: 1.319.1748.0

Versión de motor: AM: 1.1.17200.2, NIS: 1.1.17200.2

Date: 2020-04-11 02:02:03.409

Description:

Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.

Para más información, consulta lo siguiente:

https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Occamy.C&threatid=2147726780&enterprise=0

Nombre: Trojan:Win32/Occamy.C

Id.: 2147726780

Gravedad: Grave

Categoría: Caballo de Troya

Ruta de acceso: file:_C:\Users\Ismael\Documents\My Games\THE SIMS 4\Game\Bin\RldOrigin.dll

Origen de detección: Equipo local

Tipo de detección: FastPath

Origen de detección: Sistema

Usuario: NT AUTHORITY\SYSTEM

Nombre de proceso: Unknown

Versión de inteligencia de seguridad: AV: 1.313.1262.0, AS: 1.313.1262.0, NIS: 1.313.1262.0

Versión de motor: AM: 1.1.16900.4, NIS: 1.1.16900.4

Date: 2020-04-11 00:38:32.779

Description:

Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.

Para más información, consulta lo siguiente:

https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0

Nombre: HackTool:Win32/AutoKMS

Id.: 2147685180

Gravedad: Alta

Categoría: Herramienta

Ruta de acceso: rootcert:_648384A4DEE53D4C1C87E10D67CC99307CCC9C98

Origen de detección: Desconocido

Tipo de detección: Concreto

Origen de detección: Sistema

Usuario: NT AUTHORITY\SYSTEM

Nombre de proceso: Unknown

Versión de inteligencia de seguridad: AV: 1.313.1255.0, AS: 1.313.1255.0, NIS: 1.313.1255.0

Versión de motor: AM: 1.1.16900.4, NIS: 1.1.16900.4

Date: 2020-07-15 17:49:30.684

Description:

Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.

Nueva versión de inteligencia de seguridad:

Versión anterior de inteligencia de seguridad: 1.313.1262.0

Origen de actualización: Centro de protección contra malware de Microsoft

Tipo de inteligencia de seguridad: AntiVirus

Tipo de actualización: Completa

Usuario: NT AUTHORITY\NETWORK SERVICE

Versión actual del motor:

Versión anterior del motor: 1.1.16900.4

Código de error: 0x80072ee7

Descripción del error: No se pudo resolver el nombre de servidor o su dirección

Date: 2020-07-15 17:49:30.682

Description:

Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.

Nueva versión de inteligencia de seguridad:

Versión anterior de inteligencia de seguridad: 1.313.1262.0

Origen de actualización: Centro de protección contra malware de Microsoft

Tipo de inteligencia de seguridad: AntiSpyware

Tipo de actualización: Completa

Usuario: NT AUTHORITY\NETWORK SERVICE

Versión actual del motor:

Versión anterior del motor: 1.1.16900.4

Código de error: 0x80072ee7

Descripción del error: No se pudo resolver el nombre de servidor o su dirección

Date: 2020-07-15 17:49:30.681

Description:

Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.

Nueva versión de inteligencia de seguridad:

Versión anterior de inteligencia de seguridad: 1.313.1262.0

Origen de actualización: Centro de protección contra malware de Microsoft

Tipo de inteligencia de seguridad: AntiVirus

Tipo de actualización: Completa

Usuario: NT AUTHORITY\NETWORK SERVICE

Versión actual del motor:

Versión anterior del motor: 1.1.16900.4

Código de error: 0x80072ee7

Descripción del error: No se pudo resolver el nombre de servidor o su dirección

Date: 2020-07-15 17:49:30.651

Description:

Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.

Nueva versión de inteligencia de seguridad:

Versión anterior de inteligencia de seguridad: 1.313.1262.0

Origen de actualización: Centro de protección contra malware de Microsoft

Tipo de inteligencia de seguridad: AntiVirus

Tipo de actualización: Completa

Usuario: NT AUTHORITY\NETWORK SERVICE

Versión actual del motor:

Versión anterior del motor: 1.1.16900.4

Código de error: 0x80072ee7

Descripción del error: No se pudo resolver el nombre de servidor o su dirección

Date: 2020-07-15 17:49:30.650

Description:

Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.

Nueva versión de inteligencia de seguridad:

Versión anterior de inteligencia de seguridad: 1.313.1262.0

Origen de actualización: Centro de protección contra malware de Microsoft

Tipo de inteligencia de seguridad: AntiSpyware

Tipo de actualización: Completa

Usuario: NT AUTHORITY\NETWORK SERVICE

Versión actual del motor:

Versión anterior del motor: 1.1.16900.4

Código de error: 0x80072ee7

Descripción del error: No se pudo resolver el nombre de servidor o su dirección

CodeIntegrity:

===================================

Date: 2020-07-24 17:23:17.000

Description:

Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-07-24 17:19:17.006

Description:

Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-07-24 17:13:16.997

Description:

Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-07-24 17:13:07.862

Description:

Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-07-24 17:11:58.875

Description:

Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-07-24 17:11:31.540

Description:

Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-07-24 17:08:17.004

Description:

Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-07-24 17:06:08.816

Description:

Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: AMI F.27 10/30/2018

Motherboard: HP 8357

Processor: AMD A10-9620P RADEON R5, 10 COMPUTE CORES 4C+6G

Percentage of memory in use: 31%

Total physical RAM: 15813.78 MB

Available physical RAM: 10777.87 MB

Total Virtual: 19397.78 MB

Available Virtual: 12741.36 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:918.37 GB) (Free:150.85 GB) NTFS

Drive d: (RECOVERY) (Fixed) (Total:11.91 GB) (Free:1.45 GB) NTFS ==>[system with boot components (obtained from drive)]

\\?\Volume{73d02a69-5031-4638-8fdb-134c4c50da75}\ (Windows RE tools) (Fixed) (Total:0.96 GB) (Free:0.43 GB) NTFS

\\?\Volume{a4af9ed1-ebf9-4ec7-a79b-89560793dfb7}\ () (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================

Disk: 0 (Size: 931.5 GB) (Disk ID: F893FEC9)

Partition: GPT.

==================== End of Addition.txt =======================

Adicionalmente a esto que se ha encontrado en mi computadora que realmente ya me lo esperaba tengo otro problema con el wifi y no se si está relacionado a esto o a que cosa pero he intentado resolverlo por ejemplo actualizando los controladores y no me funciona. El problema es que cuando hay inestabilidad en la conexión a internet el sistema me indica que no hay internet, pero no solo eso sino que me bloquea la conexión, y adicionalmente a eso jamás cambia de nuevo al estado normal cuando vuelve la conexión por si solo, siempre tengo que reiniciar la conexión manualmente, es decir, cuando se cae la conexión a internet ya no tengo acceso a internet hasta que yo reinicie la conexión manualmente, a veces pasa que tengo internet pero el sistema dice que no hay porque en algun momento se cayó la conexión y luego volvió y como me dice que no hay no me deja conectarme a nada aunque si haya internet.

Si se encuentran con alguna información que dice que tengo más RAM que la que mencioné al principio es por que la amplié, no hay nada mal ahí

Quedo atento a su respuesta. Salu2 :grin:

Hola @Ismael_Longat_Marrer

Debes volver a ejecutar Malwarebytes en un Análisis Personalizado y eliminar TODO lo que te detecte, especialmente los Hacktool, Cracks y/o Keygen que aunque tu los creas santos, suelen llamar a sus amigos por puerta trasera.

Esperamos ese nuevo reporte.

Luego al reiniciar ejecutas nuevamente FRST tal como lo hiciste la primera vez, y usando el Método 4 de la guía nos pegas sus reportes frescos.

Sube los reportes tal cual.

Sobre los problemas de conexión parecen parte de tu infección ya llegaremos a ello, eso si trata de no demorarte tanto, por que los malwares se multiplican en cada reinicio.

Salu2

¿Funcionaría si dejo algunas cosas en cuarentena en vez de borrarlas? Es que me son muy necesarias algunas de esas cosas. Yo sería super feliz de poder permitirme comprar los productos originales y eliminar ese problema pero… la realidad es diferente :man_shrugging:

Mis disculpas por modificar el reporte, antes de mandarlo me arrepentí de haber ignorado uno de los elementos y lo eliminé manualmente, era algo bastante pesado y que no me servía

Entiendo perfectamente, envía todo a cuarentena y una vez que terminemos de desinfectar es tu equipo tu decisión.

Espero los reportes.

Salu2

FRST 1

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26-07-2020

Ran by Ismael (administrator) on ISMAEL (HP HP Pavilion Laptop 17-ar0xx) (28-07-2020 03:46:36)

Running from C:\Users\Ismael\Desktop

Loaded Profiles: Ismael

Platform: Windows 10 Home Version 1909 18363.959 (X64) Language: Inglés (Estados Unidos)

Default browser: Edge

Boot Mode: Normal

Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

(Advanced Micro Devices, Inc. -> ) C:\Program Files\ATI Technologies\ATI.ACE\a4\AdaptiveSleepService.exe

(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe

(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe

(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe

(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0353575.inf_amd64_a259cfe43398f427\B353558\atieclxx.exe

(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0353575.inf_amd64_a259cfe43398f427\B353558\atiesrxx.exe

(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe

(Avid Technology, Inc.) [File not signed] C:\Program Files\Avid\Pro Tools\MMERefresh.exe

(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe

(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe

(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe

(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe

(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe

(HP Inc. -> ) C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe

(HP Inc. -> HP Development Company, L.P.) C:\Program Files (x86)\HP\HP CoolSense\CoolSense.exe

(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe

(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe

(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe

(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe

(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe

(HP Inc. -> HP Inc.) C:\Program Files\HP\HP Orbit Service\HPOrbitService.exe

(HP Inc. -> HP) C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe

(IDSA Production signing key -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe

(IDSA Production signing key -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe

(IDSA Production signing key -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe

(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe

(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe

(Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe

(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe

(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe

(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe

(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe

(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe

(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksdeui.exe

(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe

(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avpui.exe

(Kaspersky Lab -> Kaspersky Lab AO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\plugin-nm-server-v2.exe

(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe

(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe

(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe

(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <13>

(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\Office16\ONENOTEM.EXE

(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\Office16\WINWORD.EXE

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CastSrv.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe <2>

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe

(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2006.10-0\MsMpEng.exe

(PACE Anti-Piracy, Inc. -> PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe

(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe

(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe

(Samsung Electronics CO., LTD. -> ) C:\Windows\SysWOW64\SecUPDUtilSvc.exe

(Telefónica I+D) [File not signed] C:\Program Files (x86)\movistar\Escritorio movistar Latam\ImpWiFiSvc.exe

(Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe

(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe

(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe

(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe

(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3666536 2018-02-25] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)

HKLM\...\Run: [MouseDriver] => TiltWheelMouse.exe

HKLM\...\Run: [DigidesignMMERefresh] => C:\Program Files\Avid\Pro Tools\MMERefresh.exe [117760 2019-02-10] (Avid Technology, Inc.) [File not signed]

HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"

HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [706392 2017-11-21] (Autodesk, Inc. -> Autodesk, Inc.)

HKLM-x32\...\Run: [EPSON_UD_START] => C:\Program Files (x86)\EPSON Projector\EPSON USB Display V1.4\EMP_UD.exe [329704 2010-06-09] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)

HKLM-x32\...\Run: [HPRadioMgr] => C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe [324600 2017-04-25] (HP Inc. -> HP)

HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [707624 2018-08-08] (HP Inc. -> HP Inc.)

HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.)

HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [236392 2020-07-09] (IDSA Production signing key -> Intel)

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [2007576 2017-02-03] (Autodesk, Inc -> Autodesk, Inc.)

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [5583120 2015-02-27] (Disc Soft Ltd -> Disc Soft Ltd)

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3377440 2020-07-23] (Valve -> Valve Corporation)

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [28990136 2020-06-17] (Piriform Software Ltd -> Piriform Software Ltd)

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\Run: [kpm.exe] => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm.exe [659976 2020-07-17] (Kaspersky Lab -> AO Kaspersky Lab)

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\Run: [Gaijin.Net Updater] => C:\Users\Ismael\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2350824 2020-07-15] (Gaijin Network LTD -> Gaijin Entertainment)

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\Run: [AMDDVR] => C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe [2491064 2020-04-01] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\MountPoints2: {0504b5ae-1728-11e8-9974-9061ae195865} - "F:\setup.exe"

HKLM\...\Windows x64\Print Processors\Canon MP230 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDB5.DLL [30208 2012-03-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)

HKLM\...\Windows x64\Print Processors\us005PC: C:\Windows\System32\spool\prtprocs\x64\us005pc.dll [43520 2017-06-14] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)

HKLM\...\Print\Monitors\Canon BJ Language Monitor MP230 series: C:\WINDOWS\system32\CNMLMB5.DLL [389120 2012-03-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)

HKLM\...\Print\Monitors\us008 Langmon: C:\WINDOWS\system32\us008lm.dll [31256 2016-02-15] (Microsoft Windows Hardware Compatibility Publisher -> )

HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.89\Installer\chrmstp.exe [2020-07-21] (Google LLC -> Google LLC)

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ScpToolkit Tray Notifications.lnk [2019-03-13]

ShortcutTarget: ScpToolkit Tray Notifications.lnk -> C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpTrayApp.exe (Scarlet.Crush Productions) [File not signed]

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SPDriverInstall.lnk [2019-12-11]

ShortcutTarget: SPDriverInstall.lnk -> C:\Program Files\MediaTek\SP Driver\SPDriverInstall (No File)

Startup: C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Enviar a OneNote.lnk [2020-06-06]

ShortcutTarget: Enviar a OneNote.lnk -> C:\Program Files\Microsoft Office\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)

Startup: C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2018-06-25]

ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\Ismael\AppData\Local\Facebook\Games\FacebookGameroom.exe (Facebook, Inc. -> Facebook) [File not signed]

Startup: C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2017-12-01]

ShortcutTarget: MEGAsync.lnk -> C:\Users\Ismael\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited)

GroupPolicy: Restriction ? <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {015D2964-E32A-493A-BE92-719446AEF200} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [198696 2016-12-07] (HP Inc. -> HP Inc.)

Task: {09CFC255-DFF0-49D4-B87B-13BA6AF1AF81} - System32\Tasks\HPJumpStartLaunch => C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe [459264 2017-02-01] (HP Inc. -> )

Task: {220315C7-5A7D-44DF-9B91-551F8EAF38AF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

Task: {292A72D9-F34A-4215-BE0B-5B0F7FA087FF} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3087184 2020-03-10] (Intel(R) Software Development Products -> Intel Corporation)

Task: {2F08780C-F045-4058-BE5A-78DDC90C5A92} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3087184 2020-03-10] (Intel(R) Software Development Products -> Intel Corporation)

Task: {33B981E1-BB10-46D6-8B35-78E429557959} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [320856 2020-04-23] (HP Inc. -> HP Inc.)

Task: {35F6E311-0292-4417-B300-7183F4C1FA57} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-11-26] (Dropbox, Inc -> Dropbox, Inc.)

Task: {37AF552B-8ED6-4693-94C4-CD7926FB2E1F} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\BIN64\InstallManagerApp.exe [1628160 2020-04-01] (Advanced Micro Devices, Inc.) [File not signed]

Task: {3E351CB3-2B19-4583-9A73-AE95192F7ADA} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [69304 2020-04-01] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)

Task: {47DB0FF2-DF25-4EA7-8B60-F845562C4A0F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1505624 2020-05-20] (HP Inc. -> HP Inc.)

Task: {4E1AA2DE-51E3-4763-B5CE-0F32D9ECCA06} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_403_pepper.exe [1471032 2020-07-14] (Adobe Inc. -> Adobe)

Task: {55A06B51-8E6C-4324-A57B-8D8407339968} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

Task: {5D15A2D4-99A7-455E-8625-D3888E8B8CD7} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24584376 2020-06-17] (Piriform Software Ltd -> Piriform Software Ltd)

Task: {66045EC8-4FEC-4FA1-8216-760566E8DBF0} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [616232 2016-11-28] (Dropbox, Inc -> DropboxOEM)

Task: {6A454BA0-3B77-4F5F-A673-6581D24127D1} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-07-14] (Adobe Inc. -> Adobe)

Task: {6D950106-EBF3-4333-BF09-4CD2DFBE20DF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1505624 2020-05-20] (HP Inc. -> HP Inc.)

Task: {72C987BB-FD3D-4478-9662-4BE5D78F302E} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

Task: {93F58169-BEC3-4CC4-9C35-972389F00719} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-2375054329-1883842248-1515162951-1001 => C:\Users\Ismael\AppData\Local\MEGAsync\MEGAupdater.exe [615672 2020-07-20] (Mega Limited -> Mega Limited)

Task: {946DB17F-7FB7-44EB-A252-5C73B2CF2623} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-06-17] (Piriform Software Ltd -> Piriform Software Ltd)

Task: {958B2577-D612-4F2A-AD92-5366B70A1BD5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1331792 2020-05-07] (Adobe Inc. -> Adobe Inc.)

Task: {999E0B09-462D-4BFD-8C6F-40991FBF3772} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-11-26] (Google Inc -> Google Inc.)

Task: {A8159E0C-08C3-4754-9EFA-BE9FA7164647} - System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe [791232 2020-02-28] (Kaspersky Lab -> AO Kaspersky Lab)

Task: {AB61D05A-B571-4526-80B5-C79EC74A3FCD} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9274312 2018-05-14] (Realtek Semiconductor Corp. -> Realtek Semiconductor)

Task: {AF421F4C-4304-425D-ACD8-7D60B564D961} - System32\Tasks\Driver Booster SkipUAC (Ismael) => C:\Program Files (x86)\IObit\Driver Booster\5.4.0\DriverBooster.exe

Task: {B06136D1-2E87-447E-86D4-5C09D959C1FA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [135000 2020-06-22] (HP Inc. -> HP Inc.)

Task: {B15E1A23-A72D-4F2C-AFED-559A955DE21C} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1644472 2019-06-21] (HP Inc. -> HP Inc.)

Task: {B177F39D-9B2C-4E27-94A2-F8947A0398B4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [662872 2020-04-30] (HP Inc. -> HP Inc.)

Task: {B26CF767-C2A1-4B4F-8D7A-97FE4A24FF65} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe

Task: {BB7B99FA-97B2-4F33-93C9-06C6515611CB} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61624 2020-04-01] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)

Task: {C9CF63C0-CF78-40F9-A550-E2E7F94D0BAA} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe

Task: {CCEDEA84-4D03-4CA5-A8BB-C193EBD89BAA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1133912 2020-06-19] (HP Inc. -> HP Inc.)

Task: {CFDD6A24-3B9A-42B4-BB8F-248BAAEF6FE8} - System32\Tasks\HPEA3JOBS => C:\Program [Argument = Files\HP\HP ePrint\hpeprint.exe /CheckJobs]

Task: {D678CEF7-53E8-4577-9F44-E10C46903612} - System32\Tasks\HP\HP CoolSense\HP CoolSense Start at Logon => C:\Program Files (x86)\HP\HP CoolSense\CoolSense.exe [1356648 2017-01-12] (HP Inc. -> HP Development Company, L.P.)

Task: {DAC77A8E-5A2C-41FC-96F6-D19350802916} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [752136 2020-06-18] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)

Task: {E0B98C42-63DA-4025-BCDA-09480BA52BF3} - System32\Tasks\updater => C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpUpdater.exe [464384 2016-01-10] (Nefarius Software Solutions) [File not signed]

Task: {E32A0AEA-C6B7-48F5-A2C8-BA747AF28679} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-11-26] (Google Inc -> Google Inc.)

Task: {E3BEAED8-2D08-42C4-85C1-24A45452141F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [662872 2020-04-30] (HP Inc. -> HP Inc.)

Task: {EF5232AC-0987-4790-9CB5-4DC393101D4E} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1628160 2020-04-01] (Advanced Micro Devices, Inc.) [File not signed]

Task: {F19A83DD-051B-4DFE-A71F-A4BBB22F22D0} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"

Task: {F22DF5E4-DE4E-45E2-84A5-36A0C8577DE3} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-11-26] (Dropbox, Inc -> Dropbox, Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

Task: C:\WINDOWS\Tasks\HPCeeScheduleForIsmael.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.1.192.12 10.1.192.13

Tcpip\..\Interfaces\{18228e1c-9e80-4594-83c0-542fa1bccdea}: [DhcpNameServer] 10.1.192.12 10.1.192.13

Tcpip\..\Interfaces\{e684d1f8-8dac-4380-94ca-257858004af5}: [DhcpNameServer] 10.1.192.13 10.1.192.12

Internet Explorer:

==================

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HCTE

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE

HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HCTE

HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2020-02-15] (Microsoft Corporation -> Microsoft Corporation)

BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-20] (Microsoft Corporation -> Microsoft Corporation)

BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2017-10-27] (HP Inc. -> HP Inc.)

BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2019-12-17] (Microsoft Corporation -> Microsoft Corporation)

BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-22] (Microsoft Corporation -> Microsoft Corporation)

BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2017-10-27] (HP Inc. -> HP Inc.)

Toolbar: HKU\S-1-5-21-2375054329-1883842248-1515162951-1001 -> No Name - {EF293C5A-9F37-49FD-91C4-2B867063FC54} - No File

Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation)

Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation)

Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation)

Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation)

Edge:

======

DownloadDir: C:\Users\Ismael\Downloads

Edge DefaultProfile: Default

Edge Profile: C:\Users\Ismael\AppData\Local\Microsoft\Edge\User Data\Default [2020-07-28]

Edge HomePage: Default -> hxxps://www.google.com/

Edge Extension: (Kaspersky Password Manager) - C:\Users\Ismael\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dhnkblpjbkfklfloegejegedcafpliaa [2020-07-28]

Edge Extension: (Kaspersky Protection) - C:\Users\Ismael\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\elhpdacimkjpccooodognopfhbdgnpbk [2020-07-14]

Edge Extension: (Ghostery – Bloqueador de anuncios para privacidad) - C:\Users\Ismael\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fclbdkbhjlgkbpfldjodgjncejkkjcme [2020-06-06]

Edge Extension: (Google Mail Checker) - C:\Users\Ismael\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2020-06-03]

Edge HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [elhpdacimkjpccooodognopfhbdgnpbk]

FireFox:

========

FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [File not signed]

FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [File not signed]

FF Plugin-x32: @fxinteractive.com/fxplanet -> C:\ProgramData\FXWebPlayer\npfxplanet.dll [2017-11-26] (FX Interactive -> FX Interactive)

FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-08-13] (Microsoft Corporation -> Microsoft Corporation)

FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [File not signed]

FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [No File]

FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-03] (Adobe Inc. -> Adobe Systems Inc.)

FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [File not signed]

FF Plugin HKU\S-1-5-21-2375054329-1883842248-1515162951-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\Ismael\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-05-12] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)

Chrome:

=======

CHR DefaultProfile: Default

CHR Profile: C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default [2020-07-24]

CHR Notifications: Default -> hxxps://forospyware.com; hxxps://web.whatsapp.com; hxxps://www.cnet.com; hxxps://www.facebook.com; hxxps://www.workana.com; hxxps://www.youtube.com

CHR HomePage: Default -> hxxps://www.google.com/

CHR StartupUrls: Default -> "hxxp://www.google.co.ve/"

CHR Extension: (Presentaciones) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-11-26]

CHR Extension: (Documentos) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-11-26]

CHR Extension: (Google Drive) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-26]

CHR Extension: (YouTube) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-11-26]

CHR Extension: (Kaspersky Password Manager) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhnkblpjbkfklfloegejegedcafpliaa [2020-04-23]

CHR Extension: (Kaspersky Protection) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\elhpdacimkjpccooodognopfhbdgnpbk [2020-07-20]

CHR Extension: (Hojas de cálculo) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-11-26]

CHR Extension: (Escritorio Remoto de Chrome) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2019-07-20]

CHR Extension: (Documentos de Google sin conexión) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-05-20]

CHR Extension: (Google Keep: notas y listas) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2020-07-20]

CHR Extension: (Google Mail Checker) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2019-04-29]

CHR Extension: (Ghostery – Bloqueador de anuncios para privacidad) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2020-06-03]

CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-05]

CHR Extension: (Gmail) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-30]

CHR Extension: (Chrome Media Router) - C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-07-24]

CHR Profile: C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-07-24]

CHR Profile: C:\Users\Ismael\AppData\Local\Google\Chrome\User Data\System Profile [2020-07-24]

CHR HKLM\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk

CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

CHR HKLM-x32\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1364904 2017-11-21] (Autodesk, Inc. -> Autodesk Inc.)

R2 AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [155016 2018-02-09] (Advanced Micro Devices, Inc. -> )

S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-07-14] (Adobe Inc. -> Adobe)

R2 AMD External Events Utility; C:\WINDOWS\System32\DriverStore\FileRepository\c0353575.inf_amd64_a259cfe43398f427\B353558\atiesrxx.exe [524512 2020-04-02] (Advanced Micro Devices, Inc. -> AMD)

R2 AVP20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [357416 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)

S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-11-26] (Dropbox, Inc -> Dropbox, Inc.)

S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-11-26] (Dropbox, Inc -> Dropbox, Inc.)

R2 DigiRefresh; C:\Program Files\Avid\Pro Tools\MMERefresh.exe [117760 2019-02-10] (Avid Technology, Inc.) [File not signed]

S3 digiSPTIService64; C:\Program Files\Avid\Pro Tools\digisptiservice64.exe [197632 2019-02-10] (Avid Technology, Inc.) [File not signed]

S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1272592 2015-02-27] (Disc Soft Ltd -> Disc Soft Ltd)

S2 Ds3Service; C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpService.exe [389632 2016-01-10] (Scarlet.Crush Productions) [File not signed]

S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803952 2019-08-02] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)

S4 EMP_UDSA; C:\Program Files (x86)\EPSON Projector\EPSON USB Display V1.4\EMP_UDSA.exe [104424 2010-06-09] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)

R2 ETDService; C:\Program Files\Elantech\ETDService.exe [152680 2018-02-25] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)

R2 HP Orbit Service; C:\Program Files\HP\HP Orbit Service\HPOrbitService.exe [3421616 2017-06-20] (HP Inc. -> HP Inc.)

R2 HPJumpStartBridge; C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe [471040 2017-05-23] (HP Inc. -> HP Inc.)

S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-04] (Hewlett-Packard Company -> HP)

R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [379224 2020-05-20] (HP Inc. -> HP Inc.)

R2 HPWMISVC; C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [628768 2017-07-13] (HP Inc. -> HP Inc.)

S3 klvssbridge64_20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\x64\vssbridge64.exe [438928 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)

R2 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [351472 2020-07-17] (Kaspersky Lab -> AO Kaspersky Lab)

R2 KSDE4.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe [619752 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)

R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6970968 2020-07-24] (Malwarebytes Inc -> Malwarebytes)

S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [310880 2018-09-05] (Intel Corporation -> )

R2 SamsungUPDUtilSvc; C:\WINDOWS\SysWOW64\SecUPDUtilSvc.exe [143664 2018-06-28] (Samsung Electronics CO., LTD. -> )

S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [384512 2019-03-19] (Microsoft Windows -> )

R2 TGCM_ImportWiFiSvc; C:\Program Files (x86)\movistar\Escritorio movistar Latam\ImpWiFiSvc.exe [194048 2010-03-08] (Telefónica I+D) [File not signed]

S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\NisSrv.exe [2496144 2020-07-22] (Microsoft Windows Publisher -> Microsoft Corporation)

R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\MsMpEng.exe [104192 2020-07-22] (Microsoft Windows Publisher -> Microsoft Corporation)

R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [652240 2016-07-14] (Wacom Technology Corporation -> Wacom Technology, Corp.)

S3 GamesAppService; "C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe" [X]

R2 PaceLicenseDServices; "C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe" -u hxxps://activation.paceap.com/InitiateActivation

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 25399ADF; C:\WINDOWS\System32\drivers\25399ADF.sys [478392 2020-01-11] (Kaspersky Lab -> Kaspersky Lab ZAO)

R3 Accelerometer; C:\WINDOWS\System32\drivers\Accelerometer.sys [54688 2020-06-04] (HP Inc. -> HP)

R3 AmdAS4; C:\WINDOWS\System32\drivers\AmdAS4.sys [27016 2017-04-01] (Advanced Micro Devices Inc. -> Advanced Micro Devices, INC.)

S3 amdkmcsp; C:\WINDOWS\system32\DRIVERS\amdkmcsp.sys [101232 2017-06-12] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)

R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0353575.inf_amd64_a259cfe43398f427\B353558\atikmdag.sys [65752288 2020-04-02] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)

R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0353575.inf_amd64_a259cfe43398f427\B353558\atikmpag.sys [592096 2020-04-02] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)

R0 amdpsp; C:\WINDOWS\System32\DRIVERS\amdpsp.sys [243056 2017-06-12] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)

R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [108152 2019-11-17] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)

S3 BstkDrv; C:\Program Files (x86)\BlueStacks\BstkDrv.sys [270904 2017-11-16] (Bluestack Systems, Inc. -> Bluestack System Inc.)

R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [246912 2019-02-16] (Kaspersky Lab -> AO Kaspersky Lab)

S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)

R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30352 2018-02-17] (Disc Soft Ltd -> Disc Soft Ltd)

R3 ETDSMBus; C:\WINDOWS\System32\drivers\ETDSMBus.sys [32816 2018-02-25] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronic Corp.)

R0 hpdskflt; C:\WINDOWS\System32\drivers\hpdskflt.sys [64928 2020-06-04] (HP Inc. -> HP)

R3 huawei_enumerator; C:\WINDOWS\System32\drivers\ew_jubusenum.sys [76288 2010-04-09] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)

R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-05-29] (Martin Malik - REALiX -> REALiX(tm))

R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [79768 2020-04-14] (Kaspersky Lab -> AO Kaspersky Lab)

R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [145504 2020-02-08] (Kaspersky Lab -> AO Kaspersky Lab)

R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [93312 2019-03-12] (Kaspersky Lab -> AO Kaspersky Lab)

S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [37816 2020-02-08] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)

R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [251800 2020-04-14] (Kaspersky Lab -> AO Kaspersky Lab)

R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [643840 2020-06-26] (Kaspersky Lab -> AO Kaspersky Lab)

R1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [1277704 2020-06-26] (Kaspersky Lab -> AO Kaspersky Lab)

S3 klids; C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\klids.sys [240200 2020-07-16] (Kaspersky Lab -> AO Kaspersky Lab)

R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [998296 2020-04-14] (Kaspersky Lab -> AO Kaspersky Lab)

R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [58192 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab)

R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [79760 2020-04-14] (Kaspersky Lab -> AO Kaspersky Lab)

R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [59512 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab)

R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [51328 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab)

S3 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [45904 2019-03-10] (Kaspersky Lab -> AO Kaspersky Lab)

R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [48592 2018-03-16] (AnchorFree Inc -> The OpenVPN Project)

R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [256752 2020-04-16] (Kaspersky Lab -> AO Kaspersky Lab)

R3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [99152 2020-02-28] (Kaspersky Lab -> AO Kaspersky Lab)

R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [309968 2020-04-16] (Kaspersky Lab -> AO Kaspersky Lab)

R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [116920 2020-07-14] (Kaspersky Lab -> AO Kaspersky Lab)

R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [206880 2020-04-18] (Kaspersky Lab -> AO Kaspersky Lab)

R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [105600 2019-03-05] (Kaspersky Lab -> AO Kaspersky Lab)

R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [211048 2020-02-08] (Kaspersky Lab -> AO Kaspersky Lab)

R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [232344 2020-04-14] (Kaspersky Lab -> AO Kaspersky Lab)

S3 libusbK; C:\WINDOWS\System32\drivers\libusbK.sys [47200 2019-03-13] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net)

R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [216056 2020-07-24] (Malwarebytes Inc -> Malwarebytes)

S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-07-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)

R0 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-07-24] (Malwarebytes Inc -> Malwarebytes)

R3 NIWinCDEmu; C:\WINDOWS\System32\drivers\NIWinCDEmu.sys [112408 2016-09-07] (NATIVE INSTRUMENTS GmbH -> )

R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)

R0 sptd2; C:\WINDOWS\System32\Drivers\sptd2.sys [162960 2018-02-17] (Disc Soft Ltd -> Duplex Secure Ltd)

S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)

S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45976 2020-07-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)

R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [408816 2020-07-22] (Microsoft Windows -> Microsoft Corporation)

S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64224 2020-07-22] (Microsoft Windows -> Microsoft Corporation)

R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [35392 2020-06-08] (HP Inc. -> HP)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-07-28 03:44 - 2020-07-28 03:45 - 002295808 _____ (Farbar) C:\Users\Ismael\Desktop\FRST64.exe

2020-07-28 03:42 - 2020-07-28 03:42 - 000000000 ____D C:\Users\Ismael\Desktop\FRST-OlderVersion

2020-07-28 03:18 - 2020-07-28 03:18 - 000000000 ___HD C:\ProgramData\temp

2020-07-28 02:28 - 2020-07-28 02:28 - 000002560 _____ C:\Users\Ismael\Desktop\DETECCION.txt

2020-07-24 21:59 - 2020-07-24 22:03 - 001490268 _____ C:\WINDOWS\Minidump\072420-52703-01.dmp

2020-07-24 21:59 - 2020-07-24 21:59 - 1343997523 _____ C:\WINDOWS\MEMORY.DMP

2020-07-24 17:21 - 2020-07-28 02:42 - 000095602 _____ C:\Users\Ismael\Desktop\Addition.txt

2020-07-24 17:17 - 2020-07-28 03:48 - 000043645 _____ C:\Users\Ismael\Desktop\FRST.txt

2020-07-24 17:17 - 2020-07-28 03:47 - 000000000 ____D C:\FRST

2020-07-24 17:11 - 2020-07-25 07:03 - 000003446 _____ C:\Users\Ismael\Desktop\deteccion1.txt

2020-07-24 01:36 - 2020-07-28 03:07 - 000000000 ____D C:\Users\Ismael\AppData\LocalLow\IGDump

2020-07-24 01:34 - 2020-07-24 01:34 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys

2020-07-24 01:34 - 2020-07-24 01:34 - 000216056 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys

2020-07-24 01:34 - 2020-07-24 01:34 - 000002040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk

2020-07-24 01:34 - 2020-07-24 01:33 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys

2020-07-24 01:34 - 2020-07-24 01:33 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys

2020-07-24 01:33 - 2020-07-24 01:33 - 000000000 ____D C:\ProgramData\Malwarebytes

2020-07-24 01:21 - 2020-07-24 01:21 - 000000000 ____D C:\Program Files\Malwarebytes

2020-07-24 01:11 - 2020-07-24 01:11 - 000010137 _____ C:\Users\Ismael\Desktop\ZHPCleaner (R).html

2020-07-24 01:11 - 2020-07-24 01:11 - 000003069 _____ C:\Users\Ismael\Desktop\ZHPCleaner (R).txt

2020-07-24 01:06 - 2020-07-24 01:06 - 000010120 _____ C:\Users\Ismael\Desktop\ZHPCleaner (S).html

2020-07-24 01:06 - 2020-07-24 01:06 - 000003071 _____ C:\Users\Ismael\Desktop\ZHPCleaner (S).txt

2020-07-24 00:40 - 2020-07-24 00:40 - 000000000 _____ C:\Users\Ismael\Desktop\Nuevo documento de texto.txt

2020-07-24 00:27 - 2020-07-24 00:32 - 000000000 ____D C:\AdwCleaner

2020-07-24 00:19 - 2020-07-24 00:19 - 000000870 _____ C:\Users\Public\Desktop\CCleaner.lnk

2020-07-24 00:19 - 2020-07-24 00:19 - 000000870 _____ C:\ProgramData\Desktop\CCleaner.lnk

2020-07-23 23:57 - 2020-07-24 00:03 - 003311488 _____ (Nicolas Coolman) C:\Users\Ismael\Desktop\ZHPCleaner.exe

2020-07-23 23:48 - 2020-07-23 23:51 - 008414384 _____ (Malwarebytes) C:\Users\Ismael\Desktop\adwcleaner_8.0.7.exe

2020-07-23 23:47 - 2020-07-23 23:47 - 002025944 _____ (Malwarebytes) C:\Users\Ismael\Desktop\MBSetup.exe

2020-07-22 19:29 - 2020-07-22 19:29 - 000000000 ____D C:\Users\Ismael\AppData\LocalLow\Daedalic Entertainment GmbH

2020-07-22 19:29 - 2020-07-22 19:29 - 000000000 ____D C:\Users\Ismael\AppData\Local\Daedalic Entertainment GmbH

2020-07-22 18:22 - 2020-07-22 18:22 - 000000060 _____ C:\Users\Ismael\Desktop\Reparaciones de sistema.txt

2020-07-22 05:38 - 2020-07-22 05:38 - 000000305 _____ C:\Users\Ismael\Desktop\AER Memories of Old.url

2020-07-22 04:00 - 2020-07-22 04:00 - 000000000 ____D C:\Users\Ismael\AppData\LocalLow\TerriVellmann

2020-07-20 17:13 - 2020-07-20 17:13 - 000000000 ____D C:\Users\Ismael\AppData\Roaming\iZotope

2020-07-20 17:11 - 2020-07-20 17:22 - 000000000 ____D C:\Users\Ismael\AppData\Roaming\Celemony Software GmbH

2020-07-20 17:11 - 2020-07-20 17:11 - 000000000 ____D C:\ProgramData\Celemony Software GmbH

2020-07-20 17:08 - 2020-07-20 17:08 - 000000000 ____D C:\Program Files\Celemony

2020-07-20 17:07 - 2020-07-20 17:08 - 000001010 _____ C:\Users\Ismael\Desktop\Melodyne Studio 4.lnk

2020-07-20 17:07 - 2020-07-20 17:07 - 000000000 ____D C:\Program Files\Common Files\Celemony

2020-07-20 17:07 - 2020-07-20 17:07 - 000000000 ____D C:\Program Files (x86)\Celemony

2020-07-20 17:06 - 2020-07-20 17:06 - 000000000 ____D C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Celemony

2020-07-20 16:57 - 2020-07-20 17:13 - 000000000 ____D C:\Users\Ismael\Documents\iZotope

2020-07-20 16:57 - 2020-07-20 17:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iZotope

2020-07-20 16:57 - 2020-07-20 17:04 - 000000000 ____D C:\Program Files (x86)\iZotope

2020-07-20 06:54 - 2020-07-20 16:52 - 000000000 ____D C:\Users\Ismael\Documents\MEGAsync Downloads

2020-07-20 06:53 - 2020-07-20 06:53 - 000000000 ___RD C:\Users\Ismael\Documents\MEGAsync

2020-07-18 20:33 - 2020-07-18 20:33 - 000002185 _____ C:\Users\Ismael\Desktop\TESV.exe - Acceso directo.lnk

2020-07-18 18:20 - 2020-07-18 18:20 - 000000000 ___HD C:\$WINDOWS.~BT

2020-07-18 16:52 - 2020-07-18 16:52 - 000000000 ___HD C:\$WinREAgent

2020-07-18 14:38 - 2020-07-18 14:41 - 013666016 _____ C:\Users\Ismael\Downloads\reaper612c_x64-install.exe

2020-07-18 02:42 - 2020-07-18 02:42 - 000000000 ____D C:\Program Files (x86)\FabFilter

2020-07-18 02:41 - 2020-07-18 02:42 - 000000000 ____D C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FabFilter

2020-07-17 18:54 - 2020-07-17 18:54 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 011608064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 009712640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 005099384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 004470272 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe

2020-07-17 18:54 - 2020-07-17 18:54 - 003525608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 003365376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe

2020-07-17 18:54 - 2020-07-17 18:54 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 001539072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe

2020-07-17 18:54 - 2020-07-17 18:54 - 001346048 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 001344512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 001272160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 001112576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMNetMgr.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 001012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 000940544 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 000920064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 000747832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 000723968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 000688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 000651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMEX.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 000588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\msra.exe

2020-07-17 18:54 - 2020-07-17 18:54 - 000526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 000521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 000503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSCOMEX.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedReality.Broker.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 000432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 000355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 000352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswmdm.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Feedback.Analog.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConsoleLogon.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HoloShellRuntime.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 000146944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmidx.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmjpegdec.dll

2020-07-17 18:54 - 2020-07-17 18:54 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeUISrv.exe

2020-07-17 18:53 - 2020-07-17 18:53 - 019851776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 019812864 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 018031104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll

FRST 2

2020-07-17 18:53 - 2020-07-17 18:53 - 007823912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 007012864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 006292992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 005909504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 004129424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 003822592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 003515392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb

2020-07-17 18:53 - 2020-07-17 18:53 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 002230240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 002204160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 001704448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcndmgr.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 001467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 001410048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmc.exe

2020-07-17 18:53 - 2020-07-17 18:53 - 001344512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMNetMgr.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 001307136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 001099608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000967680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000891392 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000850944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapi3.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000832512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdosys.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000609280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr

2020-07-17 18:53 - 2020-07-17 18:53 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000555520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000549376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr

2020-07-17 18:53 - 2020-07-17 18:53 - 000484864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\psisdecd.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000478208 _____ (Microsoft® Windows® Operating System) C:\WINDOWS\SysWOW64\wvc.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswmdm.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\termmgr.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000345560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WlanMM.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VAN.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wavemsp.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpg2splt.ax

2020-07-17 18:53 - 2020-07-17 18:53 - 000199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmidx.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cic.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWSDAHost.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkspbrokerAx.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmjpegdec.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000083600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devenum.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000028368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SecurityCenterBrokerPS.dll

2020-07-17 18:53 - 2020-07-17 18:53 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 025902592 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 022641664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 008015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 007760384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 007269376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 004858880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 004610560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 003398656 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb

2020-07-17 18:52 - 2020-07-17 18:52 - 002281472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcndmgr.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 002184504 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 001803776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe

2020-07-17 18:52 - 2020-07-17 18:52 - 001637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 001138688 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 001066496 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdosys.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000995840 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapi3.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe

2020-07-17 18:52 - 2020-07-17 18:52 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000868352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi2fs.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000740352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000686080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000640000 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\psisdecd.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000575488 _____ (Microsoft® Windows® Operating System) C:\WINDOWS\system32\wvc.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msTextPrediction.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000571904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe

2020-07-17 18:52 - 2020-07-17 18:52 - 000498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\azroles.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedRealitySvc.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\termmgr.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000423424 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi2.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000406992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000398336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMM.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000398336 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iassdo.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000293888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CXHProvisioningServer.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000267776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000260096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wavemsp.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpg2splt.ax

2020-07-17 18:52 - 2020-07-17 18:52 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\FileHistory.exe

2020-07-17 18:52 - 2020-07-17 18:52 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpRelayTransport.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagSvc.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\cic.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000204008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityCenterBroker.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE

2020-07-17 18:52 - 2020-07-17 18:52 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Clipboard.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWSDAHost.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000133120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasrecst.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkspbrokerAx.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasnap.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe

2020-07-17 18:52 - 2020-07-17 18:52 - 000099712 _____ (Microsoft Corporation) C:\WINDOWS\system32\FsIso.exe

2020-07-17 18:52 - 2020-07-17 18:52 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000093448 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx

2020-07-17 18:52 - 2020-07-17 18:52 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx

2020-07-17 18:52 - 2020-07-17 18:52 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiverExt.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasads.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000041864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityCenterBrokerPS.dll

2020-07-17 18:52 - 2020-07-17 18:52 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe

2020-07-17 18:52 - 2020-07-17 18:52 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 005765648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 001397568 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe

2020-07-17 18:51 - 2020-07-17 18:51 - 001314304 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagperf.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 001284608 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 001215488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe

2020-07-17 18:51 - 2020-07-17 18:51 - 001195008 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 001125376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CBDHSvc.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe

2020-07-17 18:51 - 2020-07-17 18:51 - 001009152 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000992256 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2fs.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000945176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000898048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000875008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000783488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe

2020-07-17 18:51 - 2020-07-17 18:51 - 000740664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DismApi.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000692224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000619008 _____ (Microsoft Corporation) C:\WINDOWS\system32\azroles.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000490496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iassdo.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000407864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwizeng.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000387584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000384512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000271360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpviewerax.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE

2020-07-17 18:51 - 2020-07-17 18:51 - 000223544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Dism.exe

2020-07-17 18:51 - 2020-07-17 18:51 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000196096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasrecst.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netprofm.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasnap.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowService.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msaatext.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WwanRadioManager.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasads.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiverExt.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Print.Workflow.Source.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtutils.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe

2020-07-17 18:51 - 2020-07-17 18:51 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowProxy.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.Native.dll

2020-07-17 18:51 - 2020-07-17 18:51 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin

2020-07-17 18:51 - 2020-07-17 18:51 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin

2020-07-17 18:51 - 2020-07-17 18:51 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin

2020-07-17 18:51 - 2020-07-17 18:51 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin

2020-07-17 18:51 - 2020-07-17 18:51 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin

2020-07-17 18:51 - 2020-07-17 18:51 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin

2020-07-17 18:51 - 2020-07-17 18:51 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin

2020-07-17 18:51 - 2020-07-17 18:51 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin

2020-07-17 18:51 - 2020-07-17 18:51 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin

2020-07-17 18:51 - 2020-07-17 18:51 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin

2020-07-17 18:51 - 2020-07-17 18:51 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin

2020-07-17 18:51 - 2020-07-17 18:51 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin

2020-07-17 18:50 - 2020-07-17 18:50 - 006523856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll

2020-07-17 18:50 - 2020-07-17 18:50 - 002583496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll

2020-07-17 18:50 - 2020-07-17 18:50 - 001477632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll

2020-07-17 18:50 - 2020-07-17 18:50 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll

2020-07-17 18:50 - 2020-07-17 18:50 - 001420328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll

2020-07-17 18:50 - 2020-07-17 18:50 - 001348096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll

2020-07-17 18:50 - 2020-07-17 18:50 - 000894024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll

2020-07-17 18:50 - 2020-07-17 18:50 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowsperformancerecordercontrol.dll

2020-07-17 18:50 - 2020-07-17 18:50 - 000685384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll

2020-07-17 18:50 - 2020-07-17 18:50 - 000673448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe

2020-07-17 18:50 - 2020-07-17 18:50 - 000653824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll

2020-07-17 18:50 - 2020-07-17 18:50 - 000632320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll

2020-07-17 18:50 - 2020-07-17 18:50 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll

2020-07-17 18:50 - 2020-07-17 18:50 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll

2020-07-17 18:50 - 2020-07-17 18:50 - 000453944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe

2020-07-17 18:50 - 2020-07-17 18:50 - 000442096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll

2020-07-17 18:50 - 2020-07-17 18:50 - 000405944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll

2020-07-17 18:50 - 2020-07-17 18:50 - 000380224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll

2020-07-17 18:50 - 2020-07-17 18:50 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll

2020-07-17 18:50 - 2020-07-17 18:50 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll

2020-07-17 18:50 - 2020-07-17 18:50 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl

2020-07-17 18:50 - 2020-07-17 18:50 - 000199496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe

2020-07-17 18:50 - 2020-07-17 18:50 - 000194560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\psr.exe

2020-07-17 18:50 - 2020-07-17 18:50 - 000193600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll

2020-07-17 18:50 - 2020-07-17 18:50 - 000190056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll

2020-07-17 18:50 - 2020-07-17 18:50 - 000186368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdigest.dll

2020-07-17 18:50 - 2020-07-17 18:50 - 000150336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe

2020-07-17 18:50 - 2020-07-17 18:50 - 000130112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll

2020-07-17 18:50 - 2020-07-17 18:50 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll

2020-07-17 18:50 - 2020-07-17 18:50 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EaseOfAccessDialog.exe

2020-07-17 18:50 - 2020-07-17 18:50 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\keyiso.dll

2020-07-17 18:50 - 2020-07-17 18:50 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll

2020-07-17 18:50 - 2020-07-17 18:50 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll

2020-07-17 18:50 - 2020-07-17 18:50 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll

2020-07-17 18:50 - 2020-07-17 18:50 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll

2020-07-17 18:50 - 2020-07-17 18:50 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll

2020-07-17 18:50 - 2020-07-17 18:50 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 014820352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 006089512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 005946368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 005195432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 005111808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 005004344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 003974368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe

2020-07-17 18:49 - 2020-07-17 18:49 - 003743048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 002831872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 002799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys

2020-07-17 18:49 - 2020-07-17 18:49 - 002576896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 001991592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 001952880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 001737728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 001665728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 001655472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 001581568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 001550336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 001512960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 001495040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 001484384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 001463808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 001371136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 001357824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 001306944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 001265152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 001250816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpsharercom.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 001247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 001223168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 001068544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 001055184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 001048992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 001014784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000950272 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000913408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000895600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000892928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000882176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000867840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000848384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000844096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000793320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputHost.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000782848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000779080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000778872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000717824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000695208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000690176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkObjCore.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000628416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000628024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000600064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000594992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000582056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.applicationmodel.datatransfer.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000572200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000565248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000564496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000542288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000538664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000522240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000508720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000508216 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwizeng.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000502784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000478296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000451864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000442368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000410112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.Phone.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000406992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000354816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpviewerax.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys

2020-07-17 18:49 - 2020-07-17 18:49 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000311440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\RASMM.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnclient.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000287744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Preview.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.NetworkOperators.ESim.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PickerPlatform.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000268552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000266552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemSettings.DataModel.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkEd.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000176952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Management.Workplace.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000165192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Core.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSM.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\useractivitybroker.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Energy.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppExtension.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleprn.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CameraCaptureUI.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000090952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000086272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Credentials.UI.CredentialPicker.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sethc.exe

2020-07-17 18:49 - 2020-07-17 18:49 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DiagnosticInvoker.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemUWPLauncher.exe

2020-07-17 18:49 - 2020-07-17 18:49 - 000052152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ResourcePolicyClient.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnrollCtrl.exe

2020-07-17 18:49 - 2020-07-17 18:49 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atlthunk.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe

2020-07-17 18:49 - 2020-07-17 18:49 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemEventsBrokerClient.dll

2020-07-17 18:49 - 2020-07-17 18:49 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 009931576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe

2020-07-17 18:48 - 2020-07-17 18:48 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 006437376 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 004565264 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe

2020-07-17 18:48 - 2020-07-17 18:48 - 003800576 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 003748352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 003368104 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 002768984 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 002737664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 002087168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 001821696 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 001743680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 001658368 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 001654304 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 001393952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 001290192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 001284608 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 001261568 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 001260744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 001153024 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsperformancerecordercontrol.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 001100800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 001003832 _____ (Microsoft Corporation) C:\WINDOWS\system32\DismApi.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000932256 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe

2020-07-17 18:48 - 2020-07-17 18:48 - 000931840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000892048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000889416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000882184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll

FRST 3

2020-07-17 18:48 - 2020-07-17 18:48 - 000822200 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe

2020-07-17 18:48 - 2020-07-17 18:48 - 000797448 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000777216 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000760296 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000742712 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000696832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000692224 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockController.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000639488 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000605896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000561464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys

2020-07-17 18:48 - 2020-07-17 18:48 - 000557056 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000518464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe

2020-07-17 18:48 - 2020-07-17 18:48 - 000501760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000486912 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000467960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000440832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wksprt.exe

2020-07-17 18:48 - 2020-07-17 18:48 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000357176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpr.exe

2020-07-17 18:48 - 2020-07-17 18:48 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys

2020-07-17 18:48 - 2020-07-17 18:48 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000280376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dism.exe

2020-07-17 18:48 - 2020-07-17 18:48 - 000269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkEd.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000260288 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000247864 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000220992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe

2020-07-17 18:48 - 2020-07-17 18:48 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys

2020-07-17 18:48 - 2020-07-17 18:48 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWorkflowService.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\msaatext.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000165840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe

2020-07-17 18:48 - 2020-07-17 18:48 - 000165296 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000132408 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000129600 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkStatus.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAMM.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000108856 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Authentication.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe

2020-07-17 18:48 - 2020-07-17 18:48 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\keyiso.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Print.Workflow.Source.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\RpcEpMap.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtutils.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000063288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe

2020-07-17 18:48 - 2020-07-17 18:48 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstUI.exe

2020-07-17 18:48 - 2020-07-17 18:48 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe

2020-07-17 18:48 - 2020-07-17 18:48 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIMgrBroker.exe

2020-07-17 18:48 - 2020-07-17 18:48 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWorkflowProxy.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.Native.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIManagerBrokerps.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll

2020-07-17 18:48 - 2020-07-17 18:48 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 007917408 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 007268640 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 006169088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 005283264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 004014592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 003727360 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys

2020-07-17 18:47 - 2020-07-17 18:47 - 002467840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 002357248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 002237096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 002161664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 002074112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 001946144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 001918464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 001877504 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 001827328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 001764336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 001683968 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 001656904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 001612800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 001540608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 001486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe

2020-07-17 18:47 - 2020-07-17 18:47 - 001466368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsharercom.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 001447424 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe

2020-07-17 18:47 - 2020-07-17 18:47 - 001374208 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 001337856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 001274128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 001159168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 001151304 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 001121792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 001086776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 001007616 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000931840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkObjCore.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000716320 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000684864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000678720 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000553984 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys

2020-07-17 18:47 - 2020-07-17 18:47 - 000549048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000475136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\swprv.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.NetworkOperators.ESim.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000397824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000392504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PickerPlatform.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuickActionsDataModel.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnclient.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Cortana.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000311608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000295936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl

2020-07-17 18:47 - 2020-07-17 18:47 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\PasswordEnrollmentManager.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.Desktop.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\psr.exe

2020-07-17 18:47 - 2020-07-17 18:47 - 000220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\MtcModel.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeopleBand.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000209216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairingExperienceMEM.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredDialogBroker.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CaptureService.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\EaseOfAccessDialog.exe

2020-07-17 18:47 - 2020-07-17 18:47 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000104248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\sethc.exe

2020-07-17 18:47 - 2020-07-17 18:47 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe

2020-07-17 18:47 - 2020-07-17 18:47 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnosticsTool.exe

2020-07-17 18:47 - 2020-07-17 18:47 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000040248 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkPS.dll

2020-07-17 18:47 - 2020-07-17 18:47 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 017792512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 007850288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 007297536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 006233080 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 006066808 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 004625192 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe

2020-07-17 18:46 - 2020-07-17 18:46 - 003712000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 003581240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys

2020-07-17 18:46 - 2020-07-17 18:46 - 003187200 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys

2020-07-17 18:46 - 2020-07-17 18:46 - 002656256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 002552120 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 002505496 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 002448712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 002289664 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 002285056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 002264064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 002060288 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 001942528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 001787392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 001745728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 001723392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 001640448 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 001604608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 001583104 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 001500160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 001392128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 001385696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 001335296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 001271296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrSvc.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 001183744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe

2020-07-17 18:46 - 2020-07-17 18:46 - 001081344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 001073664 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 001059840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 001055232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 001028336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Perception.Stub.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 001008960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000958608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Ocr.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000919880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000917504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000904192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys

2020-07-17 18:46 - 2020-07-17 18:46 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000827904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000821232 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe

2020-07-17 18:46 - 2020-07-17 18:46 - 000750592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000737792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000648192 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000608256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000548984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000524784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000502784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000472064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000458240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000441152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys

2020-07-17 18:46 - 2020-07-17 18:46 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000425056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000411640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000399672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DataModel.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000381152 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialEnrollmentManager.exe

2020-07-17 18:46 - 2020-07-17 18:46 - 000375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000340328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.internal.shellcommon.shareexperience.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceDirectoryClient.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000239928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Workplace.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpdMtp.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\useractivitybroker.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SIUF.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Internal.Input.ExpressiveInput.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Energy.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3mm.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppExtension.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe

2020-07-17 18:46 - 2020-07-17 18:46 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpdMtpUS.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000146232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourcePolicyServer.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleprn.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Storage.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\CameraCaptureUI.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000128312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe

2020-07-17 18:46 - 2020-07-17 18:46 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000110040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Credentials.UI.CredentialPicker.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticInvoker.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\atl.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemUWPLauncher.exe

2020-07-17 18:46 - 2020-07-17 18:46 - 000076952 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialEnrollmentManagerForUser.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000070248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourcePolicyClient.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanRadioManager.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxGipRadioManager.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnrollCtrl.exe

2020-07-17 18:46 - 2020-07-17 18:46 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\NfcRadioMedia.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\atlthunk.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerClient.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CSystemEventsBrokerClient.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll

2020-07-17 18:46 - 2020-07-17 18:46 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe

2020-07-17 18:46 - 2020-07-17 18:46 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll

2020-07-17 18:45 - 2020-07-17 18:45 - 000656696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys

2020-07-17 18:45 - 2020-07-17 18:45 - 000531768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS

2020-07-17 18:45 - 2020-07-17 18:45 - 000204608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys

2020-07-17 17:36 - 2020-07-17 17:37 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe

2020-07-17 17:36 - 2020-07-17 17:37 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe

2020-07-16 13:56 - 2020-07-16 13:56 - 000000000 ____D C:\Users\Ismael\AppData\LocalLow\Dry Cactus

2020-07-15 17:55 - 2020-07-15 17:55 - 000001719 _____ C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kontakt.lnk

2020-07-15 17:00 - 2020-07-27 23:00 - 000000000 ____D C:\Users\Ismael\Documents\Sesiones

2020-07-15 16:49 - 2020-07-15 17:03 - 000000000 ____D C:\Users\Ismael\Documents\Libreria

2020-07-15 15:05 - 2020-06-26 20:33 - 000045760 _____ C:\Users\Ismael\Downloads\Fix_HFW_486_HEN.pkg

2020-07-15 15:05 - 2020-06-26 20:08 - 001719136 _____ C:\Users\Ismael\Downloads\15.280_Licencias.pkg

2020-07-15 15:05 - 2020-06-26 19:35 - 000052704 _____ C:\Users\Ismael\Downloads\Fix_CFW_486_REBUG_LITE.pkg

2020-07-15 15:05 - 2020-06-26 17:45 - 234689856 _____ C:\Users\Ismael\Downloads\WIKISTORE_1.0.7.pkg

2020-07-15 15:00 - 2020-06-26 23:14 - 910341767 _____ C:\Users\Ismael\Downloads\TIENDAS ACTUALES PS3.rar

2020-07-15 14:57 - 2020-05-14 19:44 - 592644298 _____ C:\Users\Ismael\Downloads\Wizoo Latigo + Crack & Working by www.darkstudio.cl.rar

2020-07-15 14:34 - 2020-07-15 17:02 - 000000000 ____D C:\Users\Ismael\Downloads\Kontakt 6.0.2

2020-07-15 14:31 - 2020-07-15 17:01 - 000000000 ____D C:\Users\Ismael\Downloads\Kontakt 6.2.1 Update

2020-07-15 14:06 - 2020-07-15 14:06 - 000000000 ____D C:\ProgramData\AIR Music Technology

2020-07-15 13:49 - 2020-07-15 13:49 - 000000000 ____D C:\Users\Ismael\Documents\FabFilter

2020-07-15 13:49 - 2020-07-15 13:49 - 000000000 ____D C:\Users\Ismael\AppData\Roaming\FabFilter

2020-07-15 01:32 - 2020-07-15 01:32 - 000001939 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Waves Central.lnk

2020-07-15 01:32 - 2020-07-15 01:32 - 000001927 _____ C:\Users\Public\Desktop\Waves Central.lnk

2020-07-15 01:32 - 2020-07-15 01:32 - 000001927 _____ C:\ProgramData\Desktop\Waves Central.lnk

2020-07-15 01:13 - 2020-07-15 01:39 - 000000000 ____D C:\Users\Ismael\AppData\Roaming\Waves Central

2020-07-15 01:13 - 2020-07-15 01:13 - 000000000 ____D C:\Users\Ismael\AppData\Roaming\Waves Audio

2020-07-15 01:13 - 2020-07-15 01:13 - 000000000 ____D C:\Users\Ismael\AppData\Local\Waves Audio

2020-07-15 01:13 - 2020-07-15 01:13 - 000000000 ____D C:\ProgramData\Waves Audio

2020-07-15 01:13 - 2020-07-15 01:13 - 000000000 ____D C:\Program Files (x86)\Waves

2020-07-15 01:00 - 2020-07-15 01:31 - 000000000 ____D C:\Program Files\Waves Central

2020-07-15 01:00 - 2020-07-15 01:14 - 000000000 ____D C:\Users\Ismael\AppData\Local\central-updater

2020-07-15 00:59 - 2020-07-15 00:59 - 000000000 ____D C:\Users\Ismael\AppData\Roaming\Voxengo

2020-07-15 00:59 - 2020-07-15 00:59 - 000000000 ____D C:\Program Files (x86)\VstPluginsVoxengo

2020-07-15 00:58 - 2020-07-15 00:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Slate Digital

2020-07-15 00:55 - 2020-07-20 17:06 - 000000000 ____D C:\Program Files\Common Files\vst3

2020-07-15 00:55 - 2020-07-15 00:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Slate Digital

2020-07-15 00:54 - 2020-07-16 01:02 - 000000000 ____D C:\ProgramData\Slate Digital

2020-07-15 00:47 - 2020-07-15 00:47 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71.dll

2020-07-15 00:47 - 2020-07-15 00:47 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll

2020-07-15 00:19 - 2020-07-15 00:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Avid

2020-07-15 00:03 - 2020-07-15 00:03 - 000000222 _____ C:\Users\Ismael\Desktop\War Thunder.url

2020-07-14 19:23 - 2020-07-14 19:23 - 000116920 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys

2020-07-14 19:14 - 2020-07-14 19:14 - 021642808 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-07-28 03:45 - 2018-09-05 22:24 - 000000000 ____D C:\ProgramData\Kaspersky Lab

2020-07-28 03:44 - 2019-03-19 00:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft

2020-07-28 03:41 - 2018-11-17 21:35 - 000000000 ____D C:\Users\Ismael\AppData\Local\CrashDumps

2020-07-28 03:30 - 2020-04-11 00:25 - 000003096 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate

2020-07-28 03:30 - 2019-09-20 13:58 - 000000000 ____D C:\Users\Ismael

2020-07-28 03:15 - 2019-09-20 14:42 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT

2020-07-28 03:15 - 2019-09-20 13:38 - 000000000 ____D C:\WINDOWS\system32\SleepStudy

2020-07-28 02:23 - 2020-03-10 17:30 - 000000000 ____D C:\Users\Public\Pro Tools

2020-07-28 01:22 - 2019-03-19 00:52 - 000000000 ___HD C:\Program Files\WindowsApps

2020-07-28 01:22 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\AppReadiness

2020-07-27 23:08 - 2019-03-19 00:50 - 000000000 ____D C:\WINDOWS\INF

2020-07-27 22:37 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\system32\NDF

2020-07-27 22:33 - 2019-09-20 14:42 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update

2020-07-27 16:55 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports

2020-07-27 04:22 - 2018-06-27 04:00 - 000000000 ____D C:\Program Files (x86)\Steam

2020-07-25 11:45 - 2020-06-03 17:51 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk

2020-07-25 04:24 - 2020-05-15 07:13 - 000000000 ____D C:\Users\Ismael\Documents\DAVAProject

2020-07-24 21:59 - 2020-02-18 16:38 - 000000000 ____D C:\WINDOWS\Minidump

2020-07-24 01:34 - 2019-03-19 00:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP

2020-07-24 01:11 - 2019-01-02 22:07 - 000000000 ____D C:\Users\Ismael\AppData\Roaming\ZHP

2020-07-24 00:35 - 2017-06-08 11:39 - 000000990 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job

2020-07-24 00:35 - 2017-06-08 11:39 - 000000986 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job

2020-07-24 00:34 - 2019-03-19 00:37 - 001048576 _____ C:\WINDOWS\system32\config\BBI

2020-07-24 00:33 - 2017-08-20 07:48 - 000065536 _____ C:\WINDOWS\psp_storage.bin

2020-07-24 00:32 - 2018-11-15 21:36 - 000000000 ____D C:\Users\Ismael\AppData\Local\Lavasoft

2020-07-24 00:32 - 2018-11-15 21:32 - 000000000 ____D C:\ProgramData\Lavasoft

2020-07-24 00:32 - 2018-05-29 00:05 - 000000000 ____D C:\Users\Ismael\AppData\Roaming\IObit

2020-07-24 00:32 - 2018-05-29 00:05 - 000000000 ____D C:\ProgramData\IObit

2020-07-24 00:24 - 2020-04-05 03:57 - 000000000 ____D C:\Users\Ismael\AppData\Roaming\uTorrent

2020-07-23 22:19 - 2019-09-20 14:42 - 000004050 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA

2020-07-23 22:19 - 2019-09-20 14:42 - 000003818 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore

2020-07-23 21:44 - 2019-09-20 14:42 - 000003364 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2375054329-1883842248-1515162951-1001

2020-07-23 21:44 - 2019-09-20 13:58 - 000002414 _____ C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk

2020-07-23 21:44 - 2017-11-26 09:25 - 000000000 ___RD C:\Users\Ismael\OneDrive

2020-07-23 17:34 - 2017-06-08 11:32 - 000000000 ____D C:\ProgramData\Package Cache

2020-07-22 18:09 - 2019-03-19 00:37 - 000000000 ____D C:\WINDOWS\CbsTemp

2020-07-22 17:06 - 2018-03-02 19:58 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd

2020-07-22 16:38 - 2017-11-26 15:27 - 000000000 ____D C:\Users\Ismael\AppData\Local\ElevatedDiagnostics

2020-07-22 04:53 - 2018-05-18 13:47 - 000000000 ____D C:\Program Files\Epic Games

2020-07-21 05:40 - 2017-11-26 10:12 - 000002306 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk

2020-07-20 08:06 - 2019-03-19 00:37 - 000032768 _____ C:\WINDOWS\system32\config\ELAM

2020-07-20 06:55 - 2017-12-01 19:30 - 000000000 ____D C:\Users\Ismael\AppData\Local\MEGAsync

2020-07-19 00:33 - 2020-05-02 21:09 - 000000000 ____D C:\Users\Ismael\Downloads\FarCry 4 [MULTI7][PCDVD][FULL UNLOCKED][P2P][WwW.GamesTorrents.CoM]

2020-07-18 18:31 - 2019-07-20 13:03 - 000000000 ___DC C:\WINDOWS\Panther

2020-07-18 14:44 - 2020-01-26 20:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\REAPER (x64)

2020-07-18 14:44 - 2020-01-26 20:15 - 000000000 ____D C:\Program Files\REAPER (x64)

2020-07-18 14:37 - 2020-06-03 17:51 - 000003578 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA

2020-07-18 14:37 - 2020-06-03 17:51 - 000003454 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore

2020-07-18 04:00 - 2019-01-02 13:43 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job

2020-07-17 23:35 - 2017-12-02 13:09 - 000000000 ____D C:\Users\Ismael\AppData\Local\Packages

2020-07-17 20:50 - 2017-11-28 12:51 - 000000000 ___RD C:\Users\Ismael\3D Objects

2020-07-17 20:50 - 2017-03-17 23:53 - 000000000 __RHD C:\Users\Public\AccountPictures

2020-07-17 20:46 - 2019-09-20 14:33 - 000822000 _____ C:\WINDOWS\system32\perfh00A.dat

2020-07-17 20:46 - 2019-09-20 14:33 - 000172362 _____ C:\WINDOWS\system32\perfc00A.dat

2020-07-17 20:46 - 2019-09-20 14:14 - 001919666 _____ C:\WINDOWS\system32\PerfStringBackup.INI

2020-07-17 20:41 - 2019-09-20 13:38 - 000572384 _____ C:\WINDOWS\system32\FNTCACHE.DAT

2020-07-17 20:33 - 2019-03-19 00:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12

2020-07-17 20:33 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX

2020-07-17 20:33 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism

2020-07-17 20:33 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Com

2020-07-17 20:33 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers

2020-07-17 20:31 - 2019-03-19 00:52 - 000000000 ___SD C:\WINDOWS\system32\F12

2020-07-17 20:31 - 2019-03-19 00:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs

2020-07-17 20:31 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\SystemResources

2020-07-17 20:31 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\system32\oobe

2020-07-17 20:31 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\system32\es-MX

2020-07-17 20:31 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\system32\Dism

2020-07-17 20:31 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\system32\Com

2020-07-17 20:31 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers

2020-07-17 20:27 - 2019-03-19 02:20 - 000000000 ____D C:\Program Files\Windows Photo Viewer

2020-07-17 20:27 - 2019-03-19 02:20 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer

2020-07-17 20:27 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\ShellExperiences

2020-07-17 20:27 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\bcastdvr

2020-07-17 20:27 - 2019-03-19 00:52 - 000000000 ____D C:\Program Files\Common Files\System

2020-07-17 19:39 - 2019-09-20 14:42 - 000004170 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{4AEDBCBA-7F5E-4628-B998-6D728FC53811}

2020-07-17 18:46 - 2019-09-20 13:44 - 002876416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll

2020-07-15 17:50 - 2020-03-10 14:14 - 000000000 ____D C:\Program Files\VSTPlugins

2020-07-15 17:50 - 2017-12-09 12:59 - 000000000 ____D C:\Program Files\Common Files\Native Instruments

2020-07-15 17:50 - 2017-12-09 12:49 - 000000000 ____D C:\Program Files\Native Instruments

2020-07-15 14:22 - 2020-01-26 20:15 - 000000000 ____D C:\Users\Ismael\AppData\Roaming\REAPER

2020-07-15 00:57 - 2020-03-10 14:14 - 000000000 ____D C:\ProgramData\AudioUTOPiA

2020-07-15 00:55 - 2020-03-10 14:14 - 000000000 ____D C:\Program Files (x86)\VSTPlugins

2020-07-14 22:52 - 2019-09-20 14:42 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task

2020-07-14 22:50 - 2017-12-07 16:08 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

2020-07-14 19:22 - 2020-04-10 10:40 - 000001517 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver & Support Assistant.lnk

2020-07-14 19:22 - 2019-02-12 12:28 - 000000000 ____D C:\Program Files (x86)\Intel

2020-07-14 19:14 - 2019-09-25 17:52 - 000003926 _____ C:\WINDOWS\system32\Tasks\BlueStacksHelper

2020-07-14 19:14 - 2019-09-20 14:42 - 000004568 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player PPAPI Notifier

2020-07-14 19:14 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed

2020-07-14 19:14 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\system32\Macromed

==================== Files in the root of some directories ========

2017-11-26 16:24 - 2017-12-13 22:13 - 000002295 _____ () C:\Users\Ismael\AppData\Local\Cracklock.settings

2018-08-17 01:52 - 2018-08-17 01:52 - 000000001 _____ () C:\Users\Ismael\AppData\Local\llftool.4.40.agreement

2018-08-17 01:53 - 2018-08-17 01:53 - 000000019 _____ () C:\Users\Ismael\AppData\Local\llftool.license

2017-12-14 20:15 - 2018-06-28 02:14 - 000007598 _____ () C:\Users\Ismael\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Addition 1

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-07-2020

Ran by Ismael (28-07-2020 03:50:31)

Running from C:\Users\Ismael\Desktop

Windows 10 Home Version 1909 18363.959 (X64) (2019-09-20 18:47:22)

Boot Mode: Normal

==========================================================

==================== Accounts: =============================

23CCC0D15F044A3E90B7 (S-1-5-21-2375054329-1883842248-1515162951-1008 - Limited - Enabled)

535F84997734438C8BAE (S-1-5-21-2375054329-1883842248-1515162951-1006 - Limited - Enabled)

Administrator (S-1-5-21-2375054329-1883842248-1515162951-500 - Administrator - Disabled)

DefaultAccount (S-1-5-21-2375054329-1883842248-1515162951-503 - Limited - Disabled)

Guest (S-1-5-21-2375054329-1883842248-1515162951-501 - Limited - Disabled)

Ismael (S-1-5-21-2375054329-1883842248-1515162951-1001 - Administrator - Enabled) => C:\Users\Ismael

WDAGUtilityAccount (S-1-5-21-2375054329-1883842248-1515162951-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}

AV: Kaspersky Security Cloud (Disabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8}

AS: Kaspersky Free (Enabled - Up to date) {B1D2E896-6D96-7460-F17A-838B9D00DD65}

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

FW: Kaspersky Security Cloud (Disabled) {32888857-01C3-7AB6-E095-11CC1854D0A3}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\uTorrent) (Version: 3.5.5.45449 - BitTorrent Inc.)

A360 Desktop (HKLM\...\{B65CD59E-A771-4354-AA4B-C3E01B496BCD}) (Version: 8.2.3.1800 - Autodesk)

ACA & MEP 2018 Object Enabler (HKLM\...\{28B89EEF-1004-0000-5102-CF3F3A09B77D}) (Version: 8.0.40.0 - Autodesk) Hidden

ACAD Private (HKLM\...\{28B89EEF-1001-0000-3102-CF3F3A09B77D}) (Version: 22.0.49.0 - Autodesk) Hidden

ACE COMBAT ASSAULT HORIZON Enhanced Edition (HKLM-x32\...\ACE COMBAT ASSAULT HORIZON Enhanced Edition_is1) (Version: - )

Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 20.009.20074 - Adobe Systems Incorporated)

Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.403 - Adobe)

Adobe Premiere Pro CC 2018 (HKLM-x32\...\PPRO_12_0_0) (Version: 12.0.0 - Adobe Systems Incorporated)

AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 20.4.1 - Advanced Micro Devices, Inc.)

Anno 2205 (HKLM-x32\...\Anno 2205_is1) (Version: - )

ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.13 - Michael Tippach)

Assassin's Creed Rogue (HKLM-x32\...\Uplay Install 895) (Version: - Ubisoft)

Assassins Creed Unity versión 1.5.0 (HKLM-x32\...\{5CF3C6FD-33E1-46B6-870F-89478DEFF185}_is1) (Version: 1.5.0 - UBISoft)

aTube Catcher versión 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)

Audacity 2.2.1 (HKLM-x32\...\Audacity_is1) (Version: 2.2.1 - Audacity Team)

AutoCAD 2018 - Español (Spanish) (HKLM\...\{28B89EEF-1001-040A-2102-CF3F3A09B77D}) (Version: 22.0.49.0 - Autodesk) Hidden

AutoCAD 2018 Language Pack - Español (Spanish) (HKLM\...\{28B89EEF-1001-040A-1102-CF3F3A09B77D}) (Version: 22.0.49.0 - Autodesk) Hidden

AutoCAD 2018 (HKLM\...\{28B89EEF-1001-0000-0102-CF3F3A09B77D}) (Version: 22.0.49.0 - Autodesk) Hidden

Autodesk Advanced Material Library Image Library 2018 (HKLM-x32\...\{177AD7F6-9C77-4E50-BA53-B7259C5F282D}) (Version: 16.11.1.0 - Autodesk)

Autodesk App Manager 2016-2018 (HKLM-x32\...\{20EC0CA2-346E-4660-9903-51B278DF15F6}) (Version: 2.4.0 - Autodesk)

Autodesk AutoCAD 2018 - Español (Spanish) (HKLM\...\AutoCAD 2018 - Español (Spanish)) (Version: 22.0.49.0 - Autodesk)

Autodesk AutoCAD Performance Feedback Tool 1.2.8 (HKLM-x32\...\{214D3370-746E-4886-8EAA-5769EB87D044}) (Version: 1.2.8.0 - Autodesk)

Autodesk Desktop App (HKLM-x32\...\Autodesk Desktop App) (Version: 7.0.7.230 - Autodesk)

Autodesk License Service (x64) - 5.1.4 (HKLM\...\{3609A8D9-FC0C-4C9B-9F58-0B1D1A4FE556}) (Version: 5.1.4.0 - Autodesk)

Autodesk Material Library 2018 (HKLM-x32\...\{7847611E-92E9-4917-B395-71C91D523104}) (Version: 16.11.1.0 - Autodesk)

Autodesk Material Library Base Resolution Image Library 2018 (HKLM-x32\...\{FCDED119-A969-4E48-8A32-D21AD6B03253}) (Version: 16.11.1.0 - Autodesk)

Autodesk ReCap (HKLM\...\{6ED27C84-0000-1033-0102-D4DAEFFC23C2}) (Version: 4.0.0.28 - Autodesk) Hidden

Autodesk ReCap (HKLM\...\Autodesk ReCap 360) (Version: 4.0.0.28 - Autodesk)

Avid BBD Delay (HKLM\...\{7166744A-A8B4-4F2E-B924-CAAE18B34C1B}) (Version: 12.0.1.657 - Avid Technology, Inc.)

Avid Black Op Distortion (HKLM\...\{8D47277C-6703-42AB-8CA0-BFC373B0F336}) (Version: 12.0.0.615 - Avid Technology, Inc.)

Avid Black Spring (HKLM\...\{0D565B7E-FE8D-4337-86C3-A16D519E7DF2}) (Version: 12.0.0.615 - Avid Technology, Inc.)

Avid Black/Shiny Wah (HKLM\...\{CD273B2B-C2EB-489B-A65A-DAE69AF372FA}) (Version: 12.0.0.615 - Avid Technology, Inc.)

Avid C1 Chorus/Vibrato (HKLM\...\{F4FEC0E6-ADE9-478C-82BD-C5A4EACE7EBC}) (Version: 12.0.0.615 - Avid Technology, Inc.)

Avid DC Distortion (HKLM\...\{F6465C5D-6472-45EC-BC73-ED469EC58990}) (Version: 12.0.0.615 - Avid Technology, Inc.)

Avid Flanger (HKLM\...\{2D821F0B-58EE-4E09-977F-BFE332F0C0CB}) (Version: 12.0.0.615 - Avid Technology, Inc.)

Avid Gray Compressor (HKLM\...\{46EF7BCB-B69D-4B4F-B6EA-F6A6DA12F98B}) (Version: 12.0.0.615 - Avid Technology, Inc.)

Avid Green JRC Overdrive (HKLM\...\{E02B86C6-76A8-4F39-A12D-1BDCB31B58DF}) (Version: 12.0.0.615 - Avid Technology, Inc.)

Avid Orange Phaser (HKLM\...\{1CDF0CE5-8478-492D-A927-D9FDADEF1982}) (Version: 12.0.0.615 - Avid Technology, Inc.)

Avid Pro Tools (HKLM\...\{440A8FC5-DF1F-49F2-8936-227247138A34}) (Version: 12.5.0.395 - Avid Technology, Inc.)

Avid Roto Speaker (HKLM\...\{46EA6B2B-1672-4547-9E35-26D3E5767338}) (Version: 12.0.0.615 - Avid Technology, Inc.)

Avid Studio Reverb (HKLM\...\{8A93FD75-EA02-418C-AE3A-468EAD06CCCE}) (Version: 12.0.0.615 - Avid Technology, Inc.)

Avid Tape Echo (HKLM\...\{E01E8218-4DFF-47C1-8BC1-AEDEA8792D31}) (Version: 12.0.0.615 - Avid Technology, Inc.)

Avid Tri-Knob Fuzz (HKLM\...\{D2B2119B-31FC-4C97-9E66-8CF384F17330}) (Version: 12.0.0.615 - Avid Technology, Inc.)

Avid Vibe Phaser (HKLM\...\{7EFCE9CA-22C4-4A5C-ACF4-35CB53A364AB}) (Version: 12.0.0.615 - Avid Technology, Inc.)

Avid White Boost (HKLM\...\{2D411652-9A8D-4CF6-B435-00B5338D4DE7}) (Version: 12.0.0.615 - Avid Technology, Inc.)

BlueStacks 3 (HKLM-x32\...\BlueStacks) (Version: 3.50.66.2547 - BlueStack Systems, Inc.)

Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)

Branding64 (HKLM\...\{856DA29A-EA4A-468B-BBC2-B5F60DD75BFE}) (Version: 1.00.0002 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization BR (HKLM\...\{A1F7029B-189A-D46A-05D4-C7EBBB1F009F}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization CHS (HKLM\...\{2803AC43-60F9-9CD6-295F-589B2EE3FED8}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization CHT (HKLM\...\{4F572E63-3C9C-C309-BA75-C113278C152D}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization CS (HKLM\...\{F7F3376A-35BD-22F5-E8FE-31F0124465F1}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization DA (HKLM\...\{B71E0D12-088D-91B2-249F-1E2D27BF3F03}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization DE (HKLM\...\{142FA9FE-83E3-1B87-320E-73D450083C4F}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization EL (HKLM\...\{7C350240-B882-6665-F318-6BACDFCB39AD}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization ES (HKLM\...\{51AB5F9E-A0D9-866F-BC7D-908B7B64C544}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization FI (HKLM\...\{BD19E4B4-7D20-1A01-7A97-7B3398ED7216}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization FR (HKLM\...\{92784795-5410-1BAE-2DE8-B08AA939EDAE}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization HU (HKLM\...\{791052C7-675B-F84F-B654-716718FB3CFB}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization IT (HKLM\...\{B3909DD8-3560-DB7D-3FA2-59A407B18E69}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization JA (HKLM\...\{230DFB28-7B17-F3DB-E0E9-CFAF5AF437D4}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization KO (HKLM\...\{2817064F-C179-02E5-F752-DABB0A89A04E}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization NL (HKLM\...\{DCBBB6E6-6732-BD8C-35B1-B0037C9C3CCF}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization NO (HKLM\...\{272DB21B-7B02-66F4-B01E-8533A8133EAA}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization PL (HKLM\...\{EEAECCBD-772A-0533-1555-738F32309006}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization RU (HKLM\...\{09D7E2A9-3FC2-60DF-52BB-59C174690395}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization SV (HKLM\...\{CF22635E-0FB3-2ACC-9205-A341951E01FB}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization TH (HKLM\...\{3F817498-6A80-AD5D-F843-909F992DC1C1}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Next Localization TR (HKLM\...\{8A1C1036-95EA-6FD4-1358-D22577B597C9}) (Version: 2017.0319.1455.26818 - Advanced Micro Devices, Inc.) Hidden

CCleaner (HKLM\...\CCleaner) (Version: 5.68 - Piriform)

Celemony Melodyne Studio 4 (HKLM-x32\...\Celemony Melodyne Studio 4) (Version: 4.0.4.001 - Celemony)

Cheating-Death 4.33.4 (HKLM-x32\...\Cheating-Death) (Version: - )

Colin McRae DiRT 2 (HKLM-x32\...\Colin McRae DiRT 2) (Version: - FX Interactive)

Compatibilidad con Aplicaciones de Apple (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)

Counter-Strike 1.6 (HKLM-x32\...\Counter-Strike 1.6_is1) (Version: Counter-Strike 1.6 No Steam - KingSOFT DVD)

Cracklock 3.9.45 (HKLM-x32\...\Cracklock_is1) (Version: 3.9.45 - William Blum)

CyberLink Power Media Player 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.6.8827 - CyberLink Corp.)

DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 5.0.1.0406 - Disc Soft Ltd)

Documentation Manager (HKLM\...\{59C2C057-0051-48B0-8570-75E21B5BBAE1}) (Version: 21.90.3.2 - Intel Corporation) Hidden

Dropbox 25 GB (HKLM-x32\...\{84D8451D-2ED6-3A59-ABA5-2A447F7C6310}) (Version: 4.1.2.0 - Dropbox, Inc.)

Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.335.1 - Dropbox, Inc.) Hidden

Eines de correcció del Microsoft Office 2016: català (HKLM\...\{90160000-001F-0403-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden

ELAN Touchpad 18.2.21.1_X64_WHQL (HKLM\...\Elantech) (Version: 18.2.21.1 - ELAN Microelectronic Corp.)

Energy Star (HKLM\...\{5CB22648-35F8-41BC-9C35-1E41FE6E12A5}) (Version: 1.1.1 - HP Inc.)

Epic Games Launcher (HKLM-x32\...\{9E53E30C-33FB-4784-BB0F-186178764ED8}) (Version: 1.1.257.0 - Epic Games, Inc.)

Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden

EPSON USB Display (HKLM-x32\...\{7650F538-6274-44EA-8F50-843479073333}) (Version: 1.45.000 - SEIKO EPSON CORPORATION)

Escritorio movistar Latam (HKLM-x32\...\movistarLATAM) (Version: - Escritorio movistar Latam)

FabFilter Total Bundle (HKLM-x32\...\FabFilter Total Bundle) (Version: 2016.02.02 - FabFilter)

Facebook Gameroom 1.21.6697.19829 (HKLM-x32\...\{7BE2211B-F86C-40CA-A6CC-69564D9BD5E2}) (Version: 1.21.6697.19829 - Facebook)

Fallout New Vegas Ultimate Edition versión 1.4.0.525 (HKLM-x32\...\Fallout New Vegas Ultimate Edition_is1) (Version: 1.4.0.525 - Bethesda Softworks)

FARO LS 1.1.600.6 (64bit) (HKLM-x32\...\{510A08AF-1649-4844-94E5-EAC43A023685}) (Version: 6.0.6.5 - FARO Scanner Production)

Ferramentas de verificación de Microsoft Office 2016 - Galego (HKLM\...\{90160000-001F-0456-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden

FileZilla Client 3.48.0 (HKLM-x32\...\FileZilla Client) (Version: 3.48.0 - Tim Kosse)

First AIR Instruments (HKLM\...\{71F15787-675A-41AA-98E2-4403383ECF11}) (Version: 12.0.0.615 - AIR Music Technology)

FlatOut 2 (HKLM-x32\...\FlatOut 2) (Version: - FX Interactive)

FXWebPlayer (HKLM-x32\...\FXWebPlayer) (Version: - FX Interactive) <==== ATTENTION

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 84.0.4147.89 - Google LLC)

Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden

Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden

HP 3D DriveGuard (HKLM-x32\...\{8F183B2E-D21D-4070-8132-DD39C3CBFA5C}) (Version: 6.0.41.1 - HP)

HP Audio Switch (HKLM-x32\...\{3A5141D4-47DB-4302-9B1C-272BE585BC8A}) (Version: 1.0.179.0 - HP Inc.)

HP CoolSense (HKLM-x32\...\{20CC03C7-7B48-4130-B7FA-39BC128E3A9E}) (Version: 2.21.5 - HP Inc.)

HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)

HP ePrint SW (HKLM-x32\...\{54da9769-2364-4bd3-8139-6400500778b3}) (Version: 5.3.22034 - HP Inc.)

HP JumpStart Apps (HKLM-x32\...\HP JumpStart Apps) (Version: 7.0.21 - HP Inc.)

HP JumpStart Bridge (HKLM-x32\...\{EB0912FF-C311-4E0F-A6B1-420FDD3C295E}) (Version: 1.3.0.407 - HP Inc.)

HP JumpStart Launch (HKLM-x32\...\{81CA40FD-E11B-4DC1-AE33-A71EB044B8B7}) (Version: 1.1.275.0 - HP Inc.)

HP Orbit (HKLM-x32\...\{82b971c1-85fa-4c53-ada1-4ec6be0c0c8a}) (Version: 3.5.171.271 - HP Inc.)

HP PC Hardware Diagnostics Windows (HKLM-x32\...\{DF16F6E3-6550-468A-9C0C-306B4F60D501}) (Version: 1.5.8.0 - HP Inc.)

HP Support Assistant (HKLM-x32\...\{4780AF24-213D-4187-86F2-0014A6D6077B}) (Version: 8.8.26.13 - HP Inc.)

HP Support Solutions Framework (HKLM-x32\...\{00612F78-52C4-46C0-97F0-F50B6036B5E2}) (Version: 12.16.22.11 - HP Inc.)

HP System Event Utility (HKLM-x32\...\{57058272-92B0-4EFA-8FDD-ED3E5D689D37}) (Version: 1.4.32 - HP Inc.)

HP Wireless Button Driver (HKLM-x32\...\{F5852AA8-30EA-495B-84B4-C2403C935D6F}) (Version: 1.1.19.1 - HP)

HUAWEI DataCard Driver 4.05.00.00 (HKLM-x32\...\HUAWEI DataCard Driver) (Version: 4.05.00.00 - Huawei technologies Co., Ltd.)

ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)

Intel Driver && Support Assistant (HKLM-x32\...\{0B6D9E45-696A-452C-B0FE-32A37F1792F9}) (Version: 20.7.26.7 - Intel) Hidden

Intel(R) Computing Improvement Program (HKLM\...\{D98C2DF9-C731-4322-A5F0-D897300216EE}) (Version: 2.4.05718 - Intel Corporation)

Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000080-0210-1034-84C8-B8D95FA3C8C3}) (Version: 21.80.0.3 - Intel Corporation)

Intel® Driver & Support Assistant (HKLM-x32\...\{3fa11c9d-9f7f-4020-bcef-dbf9c9fe309f}) (Version: 20.7.26.7 - Intel)

Intel® PROSet/Wireless Software (HKLM-x32\...\{f8c930bd-0a68-425f-8c11-87723d1e2c97}) (Version: 20.90.0 - Intel Corporation)

Intel® Software Installer (HKLM-x32\...\{4ac3b686-ca29-4a13-a973-06a4d4dd09e6}) (Version: 21.90.3.2 - Intel Corporation) Hidden

iZotope Meter Tap 3 (HKLM\...\Meter Tap 3_is1) (Version: 1.0.3 - iZotope)

iZotope Nectar 3 (HKLM\...\Nectar 3_is1) (Version: 3.1.0 - iZotope)

iZotope Relay (HKLM\...\Relay_is1) (Version: 1.0.2 - iZotope)

Kaspersky Password Manager (HKLM-x32\...\{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab) Hidden

Kaspersky Password Manager (HKLM-x32\...\InstallWIX_{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab)

Kaspersky Secure Connection (HKLM-x32\...\{145AE349-477A-45E5-A57C-5F5BF2BB5775}) (Version: 20.0.14.1085 - Kaspersky) Hidden

Kaspersky Security Cloud (HKLM-x32\...\{D891550B-ACFE-4797-B368-BCFC434BBEB1}) (Version: 20.0.14.1085 - Kaspersky) Hidden

Kaspersky Security Cloud (HKLM-x32\...\InstallWIX_{D891550B-ACFE-4797-B368-BCFC434BBEB1}) (Version: 20.0.14.1085 - Kaspersky)

LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )

Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden

Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden

LEGO Marvel's Avengers (HKLM-x32\...\LEGO Marvel's Avengers_is1) (Version: - )

Los Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.25.136.1020 - Electronic Arts Inc.)

LS-USBMX1/2/3 Steering... (HKLM-x32\...\{CC7F0FAA-9768-4CE2-B133-72C66492EC06}) (Version: 1.00.0000 - GASIA)

Malwarebytes version 4.1.2.73 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.2.73 - Malwarebytes)

MediaTek Driver Packages version 5.14.53.00 (HKLM\...\MediaTek Driver Packages_is1) (Version: 5.14.53.00 - MediaTek.Inc.)

MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)

Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 84.0.522.44 - Microsoft Corporation)

Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.133.5 - )

Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)

Microsoft OneDrive (HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\OneDriveSetup.exe) (Version: 20.114.0607.0002 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)

Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.23.27820 (HKLM-x32\...\{852adda4-4c78-4a38-b583-c0b360a329d6}) (Version: 14.23.27820.0 - Microsoft Corporation)

Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)

Mozilla Firefox 68.0.2 (x64 es-ES) (HKLM\...\Mozilla Firefox 68.0.2 (x64 es-ES)) (Version: 68.0.2 - Mozilla)

Native Instruments Kinetic Metal (HKLM-x32\...\Native Instruments Kinetic Metal) (Version: 1.0.0.12 - Native Instruments)

Need for Speed Most Wanted 2012 versión 1.5 (HKLM-x32\...\{F65D0A95-56E8-487B-9E27-3D90EEE78089}_is1) (Version: 1.5 - EA Games)

Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.65.2 - Black Tree Gaming)

NVIDIA PhysX (HKLM-x32\...\{80407BA7-7763-4395-AB98-5233F1B34E65}) (Version: 9.13.1220 - NVIDIA Corporation)

OEM Application Profile (HKLM-x32\...\{B4B7FD8F-06FC-E277-4F29-8F75F8281D8F}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)

OpenAL (HKLM-x32\...\OpenAL) (Version: - )

PACE License Support Win64 (HKLM\...\{83E92696-D92D-4c7e-B094-0BE853B191FE}) (Version: 2.5.2.1034 - PACE Anti-Piracy, Inc.) Hidden

PACE License Support Win64 (HKLM-x32\...\InstallShield_{83E92696-D92D-4c7e-B094-0BE853B191FE}) (Version: 2.5.2.1034 - PACE Anti-Piracy, Inc.)

QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)

Race Driver GRID (HKLM-x32\...\Race Driver GRID) (Version: - FX Interactive)

Rapture3D 2.4.11 Game (HKLM-x32\...\{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1) (Version: - Blue Ripple Sound)

Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.370.184 - Realtek Semiconductor Corp.)

Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.16.323.2017 - Realtek)

Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8437 - Realtek Semiconductor Corp.)

REAPER (x64) (HKLM\...\REAPER) (Version: - )

Revisores de Texto do Microsoft Office 2016 – Português (Brasil) (HKLM\...\{90160000-001F-0416-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden

Samsung Printer Center (HKLM-x32\...\Samsung Printer Center) (Version: 1.0.0.28 - Samsung Electronics Co., Ltd.)

ScpToolkit (HKLM\...\{AC052048-9828-45E3-872B-04CE30A3B58B}) (Version: 1.6.238.16010 - Nefarius Software Solutions)

Spintires MudRunner MULTi8 - ElAmigos versión 28.05.2018 (HKLM-x32\...\{4E13DB1E-1DA1-42DF-A76E-5FB91F25BD45}_is1) (Version: 28.05.2018 - Focus Home Interactive)

STAR WARS Battlefront II (HKLM-x32\...\1421404701_is1) (Version: 1.1_xplay - GOG.com)

Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)

Sugar Bytes TransVST 1.0 (HKLM\...\TransVST_is1) (Version: 1.0 - Sugar Bytes)

Tableta Wacom (HKLM\...\Wacom Tablet Driver) (Version: 6.3.17-3 - Wacom Technology Corp.)

The Elder Scrolls V Skyrim - Legendary Edition (HKLM-x32\...\The Elder Scrolls V Skyrim - Legendary Edition_is1) (Version: - )

The Sims 4: City Living (HKLM\...\dGhlc2ltczRjaXR5bGl2aW5n_is1) (Version: 1 - )

Tribler (HKLM-x32\...\Tribler) (Version: 7.4.0 - The Tribler Team)

Uninstall Samsung Printer Software (HKLM-x32\...\TotalUninstaller) (Version: 4.0.0.67 - Samsung Electronics CO., LTD.)

Update for Skype for Business 2016 (KB4484286) 64-Bit Edition (HKLM\...\{90160000-0011-0000-1000-0000000FF1CE}_Office16.PROPLUS_{5F64605A-1F38-44BE-BB99-1799A6D11A62}) (Version: - Microsoft)

Update for Skype for Business 2016 (KB4484286) 64-Bit Edition (HKLM\...\{90160000-00C1-0000-1000-0000000FF1CE}_Office16.PROPLUS_{5F64605A-1F38-44BE-BB99-1799A6D11A62}) (Version: - Microsoft)

Update for Skype for Business 2016 (KB4484286) 64-Bit Edition (HKLM\...\{90160000-012B-0C0A-1000-0000000FF1CE}_Office16.PROPLUS_{5F64605A-1F38-44BE-BB99-1799A6D11A62}) (Version: - Microsoft)

Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden

Uplay (HKLM-x32\...\Uplay) (Version: 102.0 - Ubisoft)

VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN)

VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.8 - VideoLAN)

Voxengo plugin bundle 1.0.0 (Repack) (HKLM\...\Voxengo plugin bundle_is1) (Version: - )

Vulkan Run Time Libraries 1.0.37.0 (HKLM\...\VulkanRT1.0.37.0) (Version: 1.0.37.0 - LunarG, Inc.)

Vulkan Run Time Libraries 1.0.65.0 (HKLM\...\VulkanRT1.0.65.0-2) (Version: 1.0.65.0 - LunarG, Inc.) Hidden

War Thunder Launcher 1.0.3.213 (HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)

WavePad, editor de audio (HKLM-x32\...\WavePad) (Version: 9.11 - NCH Software)

Waves Central (HKLM\...\{ab507e17-892b-5203-838d-d58d8d09c50f}) (Version: 11.0.60 - Waves Audio Ltd)

WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)

WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)

WinRAR 5.90 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH)

XLN Audio Addictive Drums 2 (HKLM\...\Addictive Drums 2_is1) (Version: 2.1.9 - XLN Audio)

Xpand!2 (HKLM-x32\...\{dadbcc76-2a7e-4f53-a77a-3868c51bdd80}) (Version: 2.2.7.19000 - AIR Music Tech GmbH)

Xpand!2 Content (HKLM-x32\...\{AEB475C2-FC86-4082-87D7-352DFB075B2C}) (Version: 2.2.7.19000 - AIR Music Tech GmbH) Hidden

Xpand!2 Factory Content (HKLM-x32\...\{C1149DC5-F5B9-455E-B6B3-B81D9B5C80A0}) (Version: 2.2.7.19000 - AIR Music Tech GmbH) Hidden

Xpand!2 VST32 (HKLM-x32\...\{87716891-1EC0-46CC-8821-5A4DC75EEFD7}) (Version: 2.2.7.19000 - AIR Music Tech GmbH) Hidden

Xpand!2 VST64 (HKLM\...\{B9802F00-659C-4C21-9BA5-0958BAC6EFEF}) (Version: 2.2.7.19000 - AIR Music Tech GmbH) Hidden

Zoom (HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\ZoomUMX) (Version: 5.0 - Zoom Video Communications, Inc.)

Packages:

=========

Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-07] (Autodesk Inc.)

Complemento de Fotos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2018-09-13] (Microsoft Corporation)

HP JumpStart -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStart_1.2.378.0_x64__v10z8vjag6ke6 [2017-08-20] (HP Inc.)

HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_115.1.152.0_x64__v10z8vjag6ke6 [2020-05-29] (HP Inc.)

iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12107.3.48019.0_x64__nzyj5cx40ttqa [2020-05-21] (Apple Inc.) [Startup Task]

Keeper - Password Manager & Secure File Storage -> C:\Program Files\WindowsApps\KeeperSecurityInc.Keeper_14.0.33.0_x64__kejf07qmg0jnm [2019-08-26] (Keeper Security Inc)

Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_600.4.119.0_x64__8xx8rvfyw5nnt [2020-07-19] (Facebook Inc) [Startup Task]

Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-15] (Microsoft Corporation) [MS Ad]

Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-15] (Microsoft Corporation) [MS Ad]

Microsoft Minesweeper -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMinesweeper_2.9.1913.0_x86__8wekyb3d8bbwe [2019-12-24] (Microsoft Studios) [MS Ad]

Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.7162.0_x64__8wekyb3d8bbwe [2020-07-21] (Microsoft Studios) [MS Ad]

Microsoft Treasure Hunt -> C:\Program Files\WindowsApps\Microsoft.MicrosoftTreasureHunt_2.1.11080.0_x86__8wekyb3d8bbwe [2019-11-28] (Microsoft Studios) [MS Ad]

Microsoft Ultimate Word Games -> C:\Program Files\WindowsApps\Microsoft.Studios.Wordament_3.6.10070.0_x64__8wekyb3d8bbwe [2019-10-16] (Microsoft Studios) [MS Ad]

MSN El tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]

Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-07-19] (Netflix, Inc.)

Plex -> C:\Program Files\WindowsApps\CAF9E577.Plex_3.2.20.0_x64__aam28m9va5cke [2017-11-26] (Plex)

Traductor -> C:\Program Files\WindowsApps\Microsoft.BingTranslator_5.6.0.0_x64__8wekyb3d8bbwe [2019-10-14] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2375054329-1883842248-1515162951-1001_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145}\localserver32 -> C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (IDSA Production signing key -> Intel)

CustomCLSID: HKU\S-1-5-21-2375054329-1883842248-1515162951-1001_Classes\CLSID\{9AAF0EB6-42D8-46C1-A2EF-679511B37A0D}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2018\acad.exe (Autodesk, Inc -> Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-2375054329-1883842248-1515162951-1001_Classes\CLSID\{B6EB585B-B467-4E46-A9C7-48D7D6FD26CB}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2018\acad.exe (Autodesk, Inc -> Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-2375054329-1883842248-1515162951-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2018\es-ES\acadficn.dll (Autodesk Development Sarl -> Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-2375054329-1883842248-1515162951-1001_Classes\CLSID\{F78B9A86-F2A7-48BD-8443-494F9ECAA46B} -> [MEGAsync] => C:\Users\Ismael\Documents\MEGAsync [2020-07-20 06:53]

ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Ismael\AppData\Local\MEGAsync\ShellExtX64.dll [2020-07-20] (Mega Limited -> )

ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Ismael\AppData\Local\MEGAsync\ShellExtX64.dll [2020-07-20] (Mega Limited -> )

ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Ismael\AppData\Local\MEGAsync\ShellExtX64.dll [2020-07-20] (Mega Limited -> )

ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll [2017-02-03] (Autodesk, Inc -> Autodesk, Inc.)

ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Ismael\AppData\Local\MEGAsync\ShellExtX64.dll [2020-07-20] (Mega Limited -> )

ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Ismael\AppData\Local\MEGAsync\ShellExtX64.dll [2020-07-20] (Mega Limited -> )

ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Ismael\AppData\Local\MEGAsync\ShellExtX64.dll [2020-07-20] (Mega Limited -> )

ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2017-02-03] (Autodesk, Inc -> Autodesk)

ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> No File

ContextMenuHandlers1: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\x64\ShellEx.dll [2020-02-28] (Kaspersky Lab -> AO Kaspersky Lab)

ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Ismael\AppData\Local\MEGAsync\ShellExtX64.dll [2020-07-20] (Mega Limited -> )

ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)

ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)

ContextMenuHandlers2: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\x64\ShellEx.dll [2020-02-28] (Kaspersky Lab -> AO Kaspersky Lab)

ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Ismael\AppData\Local\MEGAsync\ShellExtX64.dll [2020-07-20] (Mega Limited -> )

ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-07-24] (Malwarebytes Corporation -> Malwarebytes)

ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Ismael\AppData\Local\MEGAsync\ShellExtX64.dll [2020-07-20] (Mega Limited -> )

ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> No File

ContextMenuHandlers4: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\x64\ShellEx.dll [2020-02-28] (Kaspersky Lab -> AO Kaspersky Lab)

ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Ismael\AppData\Local\MEGAsync\ShellExtX64.dll [2020-07-20] (Mega Limited -> )

ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2020-04-01] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)

ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> No File

ContextMenuHandlers6: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\x64\ShellEx.dll [2020-02-28] (Kaspersky Lab -> AO Kaspersky Lab)

ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-07-24] (Malwarebytes Corporation -> Malwarebytes)

ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)

ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-18] (Fox Magic Software) [File not signed]

HKLM\...\Drivers32: [vidc.VP60] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)

HKLM\...\Drivers32: [vidc.VP61] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\Ismael\Desktop\Half Life 2 E1.lnk -> C:\Users\Ismael\Documents\My Games\Half.Life.2.Episode.One.SPANiSH.Web2k2\iniciar.bat ()

ShortcutWithArgument: C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Escritorio Remoto de Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=gbchcmhmhahfdphkhkmpfmihenigjmpp

ShortcutWithArgument: C:\Users\Ismael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Google Keep_ notas y listas.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default --app-id=hmjkmjkepdijhoojdojkdfohbdgmmhki

ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Priceline.com.lnk -> C:\Program Files (x86)\HP\Shared\WizLink.exe () -> hxxp://secure.rezserver.com/sdk/v1/LinkFwd?refid=7684&destination=priceline&refclickid=square

ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VUDU - Streaming Movies.lnk -> C:\Program Files (x86)\HP\Shared\WizLink.exe () -> hxxp://js.redirect.hp.com/jumpstation?bd=all&c=*&locale=en_us&pf=cnnb&s=VUDU_URL&tp=startmenu

==================== Loaded Modules (Whitelisted) =============

2019-12-04 04:00 - 2019-12-04 04:00 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 003567616 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll

2020-07-23 00:03 - 2020-07-23 00:03 - 000160256 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\BRIDGECommon\06166fc3362255067cee05400b4ccbd9\BRIDGECommon.ni.dll

2020-07-23 00:06 - 2020-07-23 00:06 - 000120832 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\BridgeExtension\4abd5033dfb01e66ec8bc00887f2f39e\BridgeExtension.ni.dll

2020-07-23 00:06 - 2020-07-23 00:06 - 000348160 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CleanStartController\7954b5d3e9951ccac5b0abf6c0babc8a\CleanStartController.ni.dll

2020-07-23 00:42 - 2020-07-23 00:42 - 000138240 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Interop.IWs06dcaa36#\7a40d1ff9faea2f3483bc62a28fd59f7\Interop.IWshRuntimeLibrary.ni.dll

2020-07-23 00:06 - 2020-07-23 00:06 - 000072704 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\NativeInterop\54c320aeebbfb352010089635a5f5e16\NativeInterop.ni.dll

2020-07-23 00:42 - 2020-07-23 00:42 - 000134656 _____ (hardcodet.net) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Hardcodet.W6cab32f3#\4fddde7137e682576bbf91fa9e2c8a22\Hardcodet.Wpf.TaskbarNotification.ni.dll

2020-07-23 00:06 - 2020-07-23 00:06 - 000134656 _____ (HP Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CommonPortable\e01704f2f9e2759800f3b7fdfaed1595\CommonPortable.ni.dll

2020-07-23 00:42 - 2020-07-23 00:42 - 001701888 _____ (Mark Heath & Contributors) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\NAudio\b0544d4f29595e38f575f91f8992c87e\NAudio.ni.dll

2020-07-23 00:42 - 2020-07-23 00:42 - 003060736 _____ (Newtonsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Newtonsoft.Json\0bb842fc38b93514a0e24f3d94c776d9\Newtonsoft.Json.ni.dll

2020-03-10 10:31 - 2020-03-10 10:31 - 001918464 _____ (SQLite Development Team) [File not signed] C:\Program Files\Intel\SUR\QUEENCREEK\x64\sqlite3.dll

2020-07-23 00:42 - 2020-07-23 00:42 - 000793088 _____ (The Apache Software Foundation) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\log4net\19bea58cbe49b7ce5ba6ebe8127ec7ae\log4net.ni.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000039424 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000413696 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000519168 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 001431040 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 001180672 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000135680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll

2020-04-01 15:10 - 2020-04-01 15:10 - 006010880 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 006345216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 001078272 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000313856 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 004000256 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 003802624 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000171008 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 001083904 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000205312 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000329728 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000113152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000376320 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 092323328 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 005560832 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000463360 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000188416 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 002888704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000053760 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000017408 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000287232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000329216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000136192 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000089088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000312320 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll

2019-12-04 04:00 - 2019-12-04 04:00 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll

2020-04-01 15:10 - 2020-04-01 15:10 - 000085504 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData:9E4957CE5A9494B2 [217]

AlternateDataStreams: C:\Users\All Users:9E4957CE5A9494B2 [217]

AlternateDataStreams: C:\ProgramData\Application Data:9E4957CE5A9494B2 [217]

AlternateDataStreams: C:\Users\Ismael\Desktop\adwcleaner_8.0.7.exe:SmartScreen [7]

AlternateDataStreams: C:\Users\Ismael\Desktop\FRST64.exe:SmartScreen [7]

AlternateDataStreams: C:\Users\Ismael\Desktop\MBSetup.exe:SmartScreen [7]

AlternateDataStreams: C:\Users\Ismael\Desktop\ZHPCleaner.exe:SmartScreen [7]

AlternateDataStreams: C:\Users\Ismael\Downloads\reaper612c_x64-install.exe:SmartScreen [7]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\25399ADF.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\25399ADF.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\Software\Classes\.scr: AutoCADScriptFile =>

==================== Internet Explorer trusted/restricted ==========

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\localhost -> localhost

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-03-18 17:03 - 2019-01-03 10:50 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts

127.0.0.1 localhost

2018-03-17 20:54 - 2020-06-06 00:54 - 000000601 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

16 613

613

8 8 363

192.168.137.1 LAPTOP-GK51HF6J.mshome.net # 2024 7 3 24 15 45 16 613

50

22

22

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files (x86)\QuickTime\QTSystem\;

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Ismael\Pictures\Fondos\167400.jpg

DNS Servers: 10.1.192.12 - 10.1.192.13

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )

Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\Services: AdAppMgrSvc => 2

MSCONFIG\Services: EMP_UDSA => 2

HKLM\...\StartupApproved\StartupFolder: => "ScpToolkit Tray Notifications.lnk"

HKLM\...\StartupApproved\StartupFolder: => "SPDriverInstall.lnk"

HKLM\...\StartupApproved\Run: => "MouseDriver"

HKLM\...\StartupApproved\Run: => "DigidesignMMERefresh"

HKLM\...\StartupApproved\Run32: => "Autodesk Desktop App"

HKLM\...\StartupApproved\Run32: => "EPSON_UD_START"

HKLM\...\StartupApproved\Run32: => "APSDaemon"

HKLM\...\StartupApproved\Run32: => "Intel Driver & Support Assistant"

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\StartupApproved\StartupFolder: => "Send to OneNote.lnk"

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\StartupApproved\StartupFolder: => "MEGAsync.lnk"

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\StartupApproved\StartupFolder: => "Facebook Gameroom.lnk"

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\StartupApproved\StartupFolder: => "EvernoteClipper.lnk"

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\StartupApproved\Run: => "OneDrive"

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\StartupApproved\Run: => "Autodesk Sync"

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\StartupApproved\Run: => "DAEMON Tools Lite"

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\StartupApproved\Run: => "Steam"

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\StartupApproved\Run: => "Imo Messenger"

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\StartupApproved\Run: => "EpicGamesLauncher"

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\StartupApproved\Run: => "kpm.exe"

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\StartupApproved\Run: => "Gaijin.Net Updater"

HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\StartupApproved\Run: => "AMDDVR"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{077A5548-225F-4CB9-89A1-C1A640637D65}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe => No File

FirewallRules: [TCP Query User{6F0AA92C-9E5E-42D5-8AC3-89FD2F4A095D}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe => No File

FirewallRules: [UDP Query User{9553889A-9CDA-484A-B485-F9901A0E71B2}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe => No File

FirewallRules: [TCP Query User{AB0CA59B-2213-4E83-B759-F3923C82E212}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe => No File

FirewallRules: [UDP Query User{8B6DD467-8DCD-4EB2-9B6C-928CB7A2BBD9}C:\program files (x86)\videolan\vlc\vlc.exe] => (Block) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)

FirewallRules: [TCP Query User{3ED6A839-73D3-4119-B836-4204692065B1}C:\program files (x86)\videolan\vlc\vlc.exe] => (Block) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)

FirewallRules: [UDP Query User{55A5AE0B-5788-487C-91B9-C1883BD8F6C5}C:\program files (x86)\red faction guerrilla remarstered\rfg.exe] => (Allow) C:\program files (x86)\red faction guerrilla remarstered\rfg.exe => No File

FirewallRules: [TCP Query User{84457690-4CD2-41F3-8B17-9B2EF57A6E54}C:\program files (x86)\red faction guerrilla remarstered\rfg.exe] => (Allow) C:\program files (x86)\red faction guerrilla remarstered\rfg.exe => No File

FirewallRules: [UDP Query User{A016947D-B86D-46CE-9ACE-CE280DAFDC3B}C:\program files\nefarius software solutions\scptoolkit\scpserver.exe] => (Block) C:\program files\nefarius software solutions\scptoolkit\scpserver.exe (Scarlet.Crush Productions) [File not signed]

FirewallRules: [TCP Query User{776A5E55-A733-4A59-8C30-FBC58587F553}C:\program files\nefarius software solutions\scptoolkit\scpserver.exe] => (Block) C:\program files\nefarius software solutions\scptoolkit\scpserver.exe (Scarlet.Crush Productions) [File not signed]

FirewallRules: [{0A7F984F-38C5-4493-BA73-5EC3457DA662}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{F733C335-1AB8-4BFA-BE1B-202C0049C8AE}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{BE681ADF-ACF5-4DC4-9053-5CC0D4BF3F47}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)

Addition 2

FirewallRules: [{A48FF1DB-E27C-405D-B5AC-55B589D0CEC7}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{8AD44958-E128-43DB-827D-D5FF6977C04D}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )

FirewallRules: [{993CE3DB-CC13-435F-B266-D87D6E23E0B1}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)

FirewallRules: [{EB4F0F94-9B12-4D51-82FD-99D52E42B9FE}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)

FirewallRules: [{EE0585E5-50BF-4555-9518-9273412B7CAC}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVDMovie.exe (CyberLink Corp. -> CyberLink Corp.)

FirewallRules: [{D93DC133-A134-4567-93A5-560EB7BFFB5B}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.)

FirewallRules: [{ED17749B-B144-4D13-81DA-AAA23BE92DBB}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{E0A12C19-1E0C-46B5-93F5-752FC717EC94}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{252630D5-CE44-470F-8AE5-9BFF4BA99ADB}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{90410D76-A9D0-4B9B-9ACC-E7C1E9CE07B6}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{BA0BC246-20BE-4F00-8275-869B295120F8}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Printer Center\SamsungPrinterCenter.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)

FirewallRules: [{F4D2D018-8F69-4E37-9673-847C0A83192C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File

FirewallRules: [{35480715-3187-4270-9103-F3C13B85201C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File

FirewallRules: [{AF5EABF7-84F0-47DF-A707-255D5C2F92F9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)

FirewallRules: [{4272C76E-23DD-4789-8A8C-F4536C32C6C8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)

FirewallRules: [{4CD7A90D-1DA7-446A-9F4E-3B1F9C833EEC}] => (Block) C:\program files\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe => No File

FirewallRules: [{C874E0FA-7F23-412C-95C9-85CFEC1930A3}] => (Block) C:\program files\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe => No File

FirewallRules: [UDP Query User{57884E9F-ED6E-4CEE-B29A-6EC09C27426A}C:\program files\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe] => (Allow) C:\program files\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe => No File

FirewallRules: [TCP Query User{082F2F76-A4C4-49F0-AC32-61CD81E70783}C:\program files\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe] => (Allow) C:\program files\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe => No File

FirewallRules: [UDP Query User{2C971467-C98E-4800-A0E1-7E8A4F82575F}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => No File

FirewallRules: [TCP Query User{720DC142-CFE7-49DE-A163-1130428D3EC3}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => No File

FirewallRules: [{29A48509-93D0-421A-8EDF-253C2BF88C66}] => (Allow) C:\Program Files (x86)\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)

FirewallRules: [{E49A90F2-4EB5-4AAB-AB92-9C38E2638D8A}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe => No File

FirewallRules: [{40A4F4CA-535C-47EB-9933-D7B8248FF171}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe => No File

FirewallRules: [{69211B68-2197-43E5-831B-FE21DCE5E987}] => (Allow) LPort=5000

FirewallRules: [{5D79CBE6-BE28-41D3-A4C2-8036F69047F2}] => (Allow) LPort=59774

FirewallRules: [{5F6A35B2-7DAA-4DB0-83EA-53C6E7958778}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{4FB1DA33-4D1B-4D3D-B7F2-A8DF4E88511E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{6810EE3A-A8D4-4EB0-884A-41E90D978D8B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{68B3F6B5-8E8B-4B11-BB46-B0F1072B5231}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{7654B124-E643-4FA9-9269-90DC94BE1606}] => (Allow) C:\Program Files\HP\HP Orbit Service\HPOrbitService.exe (HP Inc. -> HP Inc.)

FirewallRules: [{B92A16A7-8E99-4AD5-A993-AA3BD3A0F576}] => (Allow) LPort=13148

FirewallRules: [TCP Query User{DE2CBD49-D98F-4593-A73F-5955749BA70B}C:\program files (x86)\race driver grid\grid.exe] => (Allow) C:\program files (x86)\race driver grid\grid.exe (Codemasters) [File not signed]

FirewallRules: [UDP Query User{99270B5E-A12D-4680-9C96-540F4BEA48DC}C:\program files (x86)\race driver grid\grid.exe] => (Allow) C:\program files (x86)\race driver grid\grid.exe (Codemasters) [File not signed]

FirewallRules: [{641A0357-E8A4-4525-8945-A307A41B9C10}] => (Block) C:\program files (x86)\race driver grid\grid.exe (Codemasters) [File not signed]

FirewallRules: [{8DDC4D5A-9D68-48EF-AC0E-48D5CBA34BB1}] => (Block) C:\program files (x86)\race driver grid\grid.exe (Codemasters) [File not signed]

FirewallRules: [TCP Query User{915F10D0-6EAE-4CB9-B8FD-263A9AB55843}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) C:\program files (x86)\counter-strike 1.6\hl.exe (Valve) [File not signed]

FirewallRules: [UDP Query User{DE03D17C-C1F6-45A0-B07F-1723F326C482}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) C:\program files (x86)\counter-strike 1.6\hl.exe (Valve) [File not signed]

FirewallRules: [TCP Query User{78A99611-B859-44CC-8322-F039C735A802}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) C:\program files (x86)\counter-strike 1.6\hl.exe (Valve) [File not signed]

FirewallRules: [UDP Query User{DFEEEF48-45D3-4667-A9E4-9B73382F2BB5}C:\program files (x86)\counter-strike 1.6\hl.exe] => (Allow) C:\program files (x86)\counter-strike 1.6\hl.exe (Valve) [File not signed]

FirewallRules: [TCP Query User{BD9F865E-316A-4C83-9467-B3158B150F55}C:\users\ismael\documents\my games\geometry wars 3 dimensions portable\gw3.exe] => (Allow) C:\users\ismael\documents\my games\geometry wars 3 dimensions portable\gw3.exe () [File not signed]

FirewallRules: [UDP Query User{587F8ED7-BD2D-4875-B614-B8328B3D2992}C:\users\ismael\documents\my games\geometry wars 3 dimensions portable\gw3.exe] => (Allow) C:\users\ismael\documents\my games\geometry wars 3 dimensions portable\gw3.exe () [File not signed]

FirewallRules: [TCP Query User{7F877BA8-889A-4870-813D-E27F2DC1034E}C:\users\ismael\documents\my games\geometry wars 3 dimensions portable\gw3.exe] => (Allow) C:\users\ismael\documents\my games\geometry wars 3 dimensions portable\gw3.exe () [File not signed]

FirewallRules: [UDP Query User{8EE4005A-3DAB-4F64-8524-D8BA8AD90632}C:\users\ismael\documents\my games\geometry wars 3 dimensions portable\gw3.exe] => (Allow) C:\users\ismael\documents\my games\geometry wars 3 dimensions portable\gw3.exe () [File not signed]

FirewallRules: [{7134C7D6-3FE6-4477-87DA-6FFFEF044397}] => (Allow) C:\Program Files (x86)\Ubisoft\Assassin's Creed Rogue\ACC.exe (UBISOFT ENTERTAINMENT INC. -> )

FirewallRules: [{F05A46F7-3C70-4D9A-847D-7932DB380514}] => (Allow) C:\Program Files (x86)\Ubisoft\Assassin's Creed Rogue\ACC.exe (UBISOFT ENTERTAINMENT INC. -> )

FirewallRules: [{1453E798-16DA-4DD2-A162-B163A5BAFE27}] => (Allow) C:\Program Files\The Sims 4 City Living\Game\Bin\TS4.exe (Electronic Arts Inc.) [File not signed]

FirewallRules: [{A34A5587-9F72-4B8D-B113-BB70BAFA6A5C}] => (Allow) C:\Program Files\The Sims 4 City Living\Game\Bin\TS4.exe (Electronic Arts Inc.) [File not signed]

FirewallRules: [{1E5B5CE6-569F-4977-92FC-0E823A0C066F}] => (Allow) C:\Program Files\The Sims 4 City Living\Game\Bin\TS4_x64.exe (Electronic Arts Inc.) [File not signed]

FirewallRules: [{7222D0D0-47CD-4F9B-BF8C-4EC9EF274C57}] => (Allow) C:\Program Files\The Sims 4 City Living\Game\Bin\TS4_x64.exe (Electronic Arts Inc.) [File not signed]

FirewallRules: [TCP Query User{2FBF7B6E-DC3F-4BBC-8DB7-AF868CC4EAA6}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => No File

FirewallRules: [UDP Query User{35EBB063-B3D1-43CC-809D-CDEA5262D68C}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => No File

FirewallRules: [{5DA0979D-F70E-4156-8D24-DC937C4B285D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe => No File

FirewallRules: [{D51490EF-CE8A-4D40-83EE-1FCD417DC724}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe => No File

FirewallRules: [{A5092403-C351-4CA7-9030-FF013FC85DF4}] => (Allow) C:\Program Files\Tribler\tribler.exe (Technische Universiteit Delft -> )

FirewallRules: [{F534EE72-726F-4026-931E-26D8AFA513CF}] => (Allow) C:\Program Files\Tribler\tribler.exe (Technische Universiteit Delft -> )

FirewallRules: [TCP Query User{89D9A460-9057-44A4-92AA-2A03A300004F}C:\program files\transmission\transmission-qt.exe] => (Allow) C:\program files\transmission\transmission-qt.exe => No File

FirewallRules: [UDP Query User{F56A06A4-D6BE-44D7-8A0F-AA5E39511EDB}C:\program files\transmission\transmission-qt.exe] => (Allow) C:\program files\transmission\transmission-qt.exe => No File

FirewallRules: [TCP Query User{9CB1A159-8EC3-479F-935D-C3080ACB4418}C:\program files (x86)\need for speed most wanted 2012\nfs13.exe] => (Allow) C:\program files (x86)\need for speed most wanted 2012\nfs13.exe (Electronic Arts) [File not signed]

FirewallRules: [UDP Query User{DF888C02-4E50-4ED6-839D-901F32CF16D1}C:\program files (x86)\need for speed most wanted 2012\nfs13.exe] => (Allow) C:\program files (x86)\need for speed most wanted 2012\nfs13.exe (Electronic Arts) [File not signed]

FirewallRules: [{690D989C-4CF4-4236-AB93-1DD68A399024}] => (Allow) C:\Program Files\Avid\Pro Tools\AvidVideoEngine.exe => No File

FirewallRules: [{414C5A4B-525B-4DC5-BDCC-791310A7B15B}] => (Allow) C:\Program Files\Avid\Pro Tools\ProTools.exe (Avid Technology, Inc.) [File not signed]

FirewallRules: [{2A862C21-1AC6-4B93-AB4B-B18F071ADF2A}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{D2BAAD53-82B4-415D-A91C-298BBCBB9471}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)

FirewallRules: [{B5F967C0-78B3-4AA8-A89B-083E19F97566}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)

FirewallRules: [{F80415BB-F08A-4964-AD09-19EB95C7EB87}] => (Allow) C:\Users\Ismael\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)

FirewallRules: [{3063B923-12D3-4C9E-B4DF-07D1A3568196}] => (Allow) C:\Users\Ismael\AppData\Roaming\Zoom\bin\airhost.exe => No File

FirewallRules: [{1EF9565D-4521-448B-8695-C3A41024A69B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tomb Raider\TombRaider.exe (Square Enix) [File not signed]

FirewallRules: [{297DB9CA-0CC0-4E3E-BBA8-CE534F5E66AB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tomb Raider\TombRaider.exe (Square Enix) [File not signed]

FirewallRules: [{24532D50-C67D-49D0-9CF0-45CF48650050}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)

FirewallRules: [{C17CEDB9-8169-49BC-8EB2-A55FC348BC6A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)

FirewallRules: [TCP Query User{6DE78005-1FDA-4467-8BB7-E24E170CEC43}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)

FirewallRules: [UDP Query User{9CE72E88-913E-4340-8485-ACD3CABE2D35}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)

FirewallRules: [{96E978F4-9F9D-499A-8624-4D2852096680}] => (Allow) C:\Users\Ismael\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)

FirewallRules: [{70450209-7681-4274-97A8-A75C3DD37E41}] => (Allow) C:\Users\Ismael\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)

FirewallRules: [TCP Query User{2B0EF755-6C03-4BD5-B58A-3F78B28398C5}C:\program files (x86)\steam\steamapps\common\goat of duty\goatofduty\binaries\win64\goatofduty-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\goat of duty\goatofduty\binaries\win64\goatofduty-win64-shipping.exe => No File

FirewallRules: [UDP Query User{46589817-4E1B-4373-B1E0-A35E38677AD6}C:\program files (x86)\steam\steamapps\common\goat of duty\goatofduty\binaries\win64\goatofduty-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\goat of duty\goatofduty\binaries\win64\goatofduty-win64-shipping.exe => No File

FirewallRules: [{B8EB73A5-B811-4FD0-BABB-F0090523BCC0}] => (Allow) C:\Program Files\Epic Games\WatchDogs\bin\Watch_Dogs.exe (Ubisoft Entertainment -> Ubisoft Entertainment)

FirewallRules: [{69DBE89C-0DAB-4AC4-B35D-EBD2CAB9A96E}] => (Allow) C:\Program Files\Epic Games\WatchDogs\bin\Watch_Dogs.exe (Ubisoft Entertainment -> Ubisoft Entertainment)

FirewallRules: [{6C255EAD-A840-4FB6-9D51-209D4AE15D65}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\World of Tanks Blitz\wotblitz.exe (Wargaming.net) [File not signed]

FirewallRules: [{DE96D99A-4701-4665-AE78-15F1B03C8E3B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\World of Tanks Blitz\wotblitz.exe (Wargaming.net) [File not signed]

FirewallRules: [{8F18E9DC-C385-4B53-BB6A-6B9DF82F95B1}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12107.3.48019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{4F56925F-856F-4F60-96F7-842D5C728007}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12107.3.48019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{55E48A89-5D4E-4D5B-95B5-29BFDEF86792}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12107.3.48019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{D0A89CC7-56EA-4EBD-AFB2-5452692BA320}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12107.3.48019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{F6A1FB34-93C2-4DB7-92F9-AD0813F8D142}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12107.3.48019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{0C29659A-EF71-49BA-AF1C-60E89FC2FA87}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12107.3.48019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{E14ECAC3-9DDB-4CCA-BDA6-B19AADE0A900}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12107.3.48019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{71A46042-20D4-47E0-B6C6-F92148C33FEC}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12107.3.48019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)

FirewallRules: [{34BE96CB-D9F4-4367-A7C2-2495BAA888BA}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )

FirewallRules: [{1C9F0FDE-C61A-462D-8B6C-EFA123E7D634}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )

FirewallRules: [{BE3FC16C-FBDC-4FB6-ADAC-AD28A1BC67FF}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )

FirewallRules: [{FECE4153-64DF-47DA-8465-235A7FCB0D9D}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )

FirewallRules: [{B0975CC8-68E0-4BEC-AD5F-622F04637F50}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [{1E2D4913-6CA0-42B7-9D6C-40C8619F6A4C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [{C85568DE-CE67-44E5-9059-D0EEFA0602B7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [{5AF04685-315B-4B89-9B70-5378CE3FE893}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [{7F37A00D-C1A8-435B-B629-84EAB1074B72}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

24-07-2020 01:08:45 ZHPcleaner

==================== Faulty Device Manager Devices ============

Name: Dash L3 Hands-Free HF

Description: Rol Handsfree de perfil manos libres de Microsoft Bluetooth

Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}

Manufacturer: Microsoft

Service: BthHFEnum

Problem: : This device cannot start. (Code10)

Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.

On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

==================== Event log errors: ========================

Application errors:

==================

Error: (07/28/2020 03:43:40 AM) (Source: ESENT) (EventID: 455) (User: )

Description: svchost (5316,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (07/28/2020 03:41:06 AM) (Source: Application Error) (EventID: 1000) (User: )

Description: Nombre de la aplicación con errores: mbam.exe, versión: 4.0.0.753, marca de tiempo: 0x5f107449

Nombre del módulo con errores: Qt5Core.dll, versión: 5.14.1.0, marca de tiempo: 0x5e8272e4

Código de excepción: 0xc0000005

Desplazamiento de errores: 0x0000000000219d05

Identificador del proceso con errores: 0x26c0

Hora de inicio de la aplicación con errores: 0x01d664b271c06ca5

Ruta de acceso de la aplicación con errores: C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe

Ruta de acceso del módulo con errores: C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll

Identificador del informe: 0811d335-bc9c-4bcb-9ee1-b384261aaa5c

Nombre completo del paquete con errores:

Identificador de aplicación relativa del paquete con errores:

Error: (07/28/2020 03:34:23 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: ISMAEL)

Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.

Error: (07/28/2020 03:31:24 AM) (Source: Application Error) (EventID: 1000) (User: )

Description: Nombre de la aplicación con errores: DropboxOEM.exe, versión: 4.1.2.0, marca de tiempo: 0x583ce457

Nombre del módulo con errores: KERNELBASE.dll, versión: 10.0.18362.959, marca de tiempo: 0x51671cfe

Código de excepción: 0xe0434352

Desplazamiento de errores: 0x001143d2

Identificador del proceso con errores: 0x2ed8

Hora de inicio de la aplicación con errores: 0x01d664b112489cf7

Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe

Ruta de acceso del módulo con errores: C:\WINDOWS\System32\KERNELBASE.dll

Identificador del informe: bd1bece4-5033-42fa-8072-29069ebbdff2

Nombre completo del paquete con errores:

Identificador de aplicación relativa del paquete con errores:

Error: (07/28/2020 03:31:18 AM) (Source: .NET Runtime) (EventID: 1026) (User: )

Description: Aplicación: DropboxOEM.exe

Versión de Framework: v4.0.30319

Descripción: el proceso terminó debido a una excepción no controlada.

Información de la excepción: System.Xml.XmlException

en System.Xml.XmlTextReaderImpl.Throw(System.Exception)

en System.Xml.XmlTextReaderImpl.Throw(System.String, System.String[])

en System.Xml.XmlTextReaderImpl.ParseText(Int32 ByRef, Int32 ByRef, Int32 ByRef)

en System.Xml.XmlTextReaderImpl.ParseText()

en System.Xml.XmlTextReaderImpl.ParseElementContent()

en System.Xml.XmlTextReaderImpl.Read()

en System.Xml.XmlTextReader.Read()

en System.Xml.XmlTextReaderImpl.Skip()

en System.Xml.XmlTextReader.Skip()

en System.Configuration.XmlUtil.StrictSkipToNextElement(System.Configuration.ExceptionAction)

en System.Configuration.BaseConfigurationRecord.ScanSectionsRecursive(System.Configuration.XmlUtil, System.String, Boolean, System.String, System.Configuration.OverrideModeSetting, Boolean)

en System.Configuration.BaseConfigurationRecord.ScanSectionsRecursive(System.Configuration.XmlUtil, System.String, Boolean, System.String, System.Configuration.OverrideModeSetting, Boolean)

en System.Configuration.BaseConfigurationRecord.ScanSections(System.Configuration.XmlUtil)

en System.Configuration.BaseConfigurationRecord.InitConfigFromFile()

Información de la excepción: System.Configuration.ConfigurationErrorsException

en System.Configuration.ConfigurationSchemaErrors.ThrowIfErrors(Boolean)

en System.Configuration.BaseConfigurationRecord.ThrowIfParseErrors(System.Configuration.ConfigurationSchemaErrors)

en System.Configuration.BaseConfigurationRecord.ThrowIfInitErrors()

en System.Configuration.ClientConfigurationSystem.OnConfigRemoved(System.Object, System.Configuration.Internal.InternalConfigEventArgs)

Información de la excepción: System.Configuration.ConfigurationErrorsException

en System.Configuration.ClientConfigurationSystem.OnConfigRemoved(System.Object, System.Configuration.Internal.InternalConfigEventArgs)

en System.Configuration.Internal.InternalConfigRoot.OnConfigRemoved(System.Configuration.Internal.InternalConfigEventArgs)

en System.Configuration.Internal.InternalConfigRoot.RemoveConfigImpl(System.String, System.Configuration.BaseConfigurationRecord)

en System.Configuration.BaseConfigurationRecord.GetSectionRecursive(System.String, Boolean, Boolean, Boolean, Boolean, System.Object ByRef, System.Object ByRef)

en System.Configuration.BaseConfigurationRecord.GetSection(System.String)

en System.Configuration.ClientConfigurationSystem.System.Configuration.Internal.IInternalConfigSystem.GetSection(System.String)

en System.Configuration.ConfigurationManager.GetSection(System.String)

en System.Configuration.ClientSettingsStore.ReadSettings(System.String, Boolean)

en System.Configuration.LocalFileSettingsProvider.GetPropertyValues(System.Configuration.SettingsContext, System.Configuration.SettingsPropertyCollection)

en System.Configuration.SettingsBase.GetPropertiesFromProvider(System.Configuration.SettingsProvider)

en System.Configuration.SettingsBase.GetPropertyValueByName(System.String)

en System.Configuration.SettingsBase.get_Item(System.String)

en System.Configuration.ApplicationSettingsBase.GetPropertyValue(System.String)

en System.Configuration.ApplicationSettingsBase.get_Item(System.String)

en DropboxOEM.Properties.Settings.get_ForegroundProcessPriority()

en DropboxOEM.App.Application_Startup(System.Object, System.Windows.StartupEventArgs)

en System.Windows.Application.OnStartup(System.Windows.StartupEventArgs)

en System.Windows.Application.<.ctor>b__1_0(System.Object)

en System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)

en System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)

en System.Windows.Threading.DispatcherOperation.InvokeImpl()

en System.Windows.Threading.DispatcherOperation.InvokeInSecurityContext(System.Object)

en System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)

en System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)

en System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)

en MS.Internal.CulturePreservingExecutionContext.Run(MS.Internal.CulturePreservingExecutionContext, System.Threading.ContextCallback, System.Object)

en System.Windows.Threading.DispatcherOperation.Invoke()

en System.Windows.Threading.Dispatcher.ProcessQueue()

en System.Windows.Threading.Dispatcher.WndProcHook(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)

en MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)

en MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)

en System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)

en System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)

en System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)

en MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)

en MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)

en System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)

en System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame)

en System.Windows.Application.RunDispatcher(System.Object)

en System.Windows.Application.RunInternal(System.Windows.Window)

en System.Windows.Application.Run(System.Windows.Window)

en DropboxOEM.App.Main()

Error: (07/28/2020 03:30:43 AM) (Source: SideBySide) (EventID: 78) (User: )

Description: Error al generar el contexto de activación para "C:\Program Files (x86)\Audacity\audacity.exe". Error en el archivo de manifiesto o directiva "" en la línea .

Una versión de componente requerida por la aplicación está en conflicto con la versión de otro componente activo.

Los componentes en conflicto son:.

Componente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.959_none_e6c7bbbf130c62bb.manifest.

Componente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.959_none_2e74f29627888bc1.manifest.

Error: (07/28/2020 03:28:18 AM) (Source: ESENT) (EventID: 455) (User: )

Description: svchost (1592,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (07/28/2020 03:20:09 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )

Description: Event-ID 0

System errors:

=============

Error: (07/28/2020 03:30:15 AM) (Source: Service Control Manager) (EventID: 7023) (User: )

Description: El servicio MessagingService_4f3416 se cerró con el siguiente error:

El dispositivo no está listo.

Error: (07/28/2020 03:17:33 AM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: El servicio Ds3Service no pudo iniciarse debido al siguiente error:

El servicio no respondió a tiempo a la solicitud de inicio o de control.

Error: (07/28/2020 03:17:33 AM) (Source: Service Control Manager) (EventID: 7009) (User: )

Description: Se agotó el tiempo de espera (45000 ms) para la conexión con el servicio Ds3Service.

Error: (07/28/2020 03:16:09 AM) (Source: Service Control Manager) (EventID: 7023) (User: )

Description: El servicio NcbService se cerró con el siguiente error:

Uno de los dispositivos conectados al sistema no funciona.

Error: (07/28/2020 03:14:58 AM) (Source: sptd2) (EventID: 4) (User: )

Description: El controlador detectó un error interno en la estructura de datos de .

Error: (07/28/2020 03:15:49 AM) (Source: EventLog) (EventID: 6008) (User: )

Description: El cierre anterior del sistema a las 2:44:30 AM del ‎7/‎28/‎2020 resultó inesperado.

Error: (07/27/2020 10:47:46 PM) (Source: Service Control Manager) (EventID: 7023) (User: )

Description: El servicio MessagingService_18e655 se cerró con el siguiente error:

El dispositivo no está listo.

Error: (07/27/2020 10:46:13 PM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: El servicio Ds3Service no pudo iniciarse debido al siguiente error:

El servicio no respondió a tiempo a la solicitud de inicio o de control.

Windows Defender:

===================================

Date: 2020-07-18 19:23:24.794

Description:

Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.

Para más información, consulta lo siguiente:

https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Crack&threatid=2147734096&enterprise=0

Nombre: HackTool:Win32/Crack

Id.: 2147734096

Gravedad: Alta

Categoría: Herramienta

Ruta de acceso: file:_C:\Program Files (x86)\Bethesda Softworks\The Elder Scrolls V Skyrim - Legendary Edition\steam_api.dll

Origen de detección: Equipo local

Tipo de detección: Concreto

Origen de detección: Protección en tiempo real

Usuario: ISMAEL\Ismael

Nombre de proceso: C:\Program Files (x86)\Bethesda Softworks\The Elder Scrolls V Skyrim - Legendary Edition\SkyrimLauncher.exe

Versión de inteligencia de seguridad: AV: 1.319.1748.0, AS: 1.319.1748.0, NIS: 1.319.1748.0

Versión de motor: AM: 1.1.17200.2, NIS: 1.1.17200.2

Date: 2020-07-18 19:21:59.286

Description:

Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.

Para más información, consulta lo siguiente:

https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Crack&threatid=2147734096&enterprise=0

Nombre: HackTool:Win32/Crack

Id.: 2147734096

Gravedad: Alta

Categoría: Herramienta

Ruta de acceso: file:_C:\Program Files (x86)\Bethesda Softworks\The Elder Scrolls V Skyrim - Legendary Edition\steam_api.dll

Origen de detección: Equipo local

Tipo de detección: Concreto

Origen de detección: Protección en tiempo real

Usuario: ISMAEL\Ismael

Nombre de proceso: C:\Program Files (x86)\Bethesda Softworks\The Elder Scrolls V Skyrim - Legendary Edition\SkyrimLauncher.exe

Versión de inteligencia de seguridad: AV: 1.319.1748.0, AS: 1.319.1748.0, NIS: 1.319.1748.0

Versión de motor: AM: 1.1.17200.2, NIS: 1.1.17200.2

Date: 2020-07-18 19:21:47.171

Description:

Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.

Para más información, consulta lo siguiente:

https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Crack&threatid=2147734096&enterprise=0

Nombre: HackTool:Win32/Crack

Id.: 2147734096

Gravedad: Alta

Categoría: Herramienta

Ruta de acceso: file:_C:\Program Files (x86)\Bethesda Softworks\The Elder Scrolls V Skyrim - Legendary Edition\steam_api.dll

Origen de detección: Equipo local

Tipo de detección: Concreto

Origen de detección: Protección en tiempo real

Usuario: ISMAEL\Ismael

Nombre de proceso: C:\Program Files (x86)\Bethesda Softworks\The Elder Scrolls V Skyrim - Legendary Edition\SkyrimLauncher.exe

Versión de inteligencia de seguridad: AV: 1.319.1748.0, AS: 1.319.1748.0, NIS: 1.319.1748.0

Versión de motor: AM: 1.1.17200.2, NIS: 1.1.17200.2

Date: 2020-04-11 02:02:03.409

Description:

Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.

Para más información, consulta lo siguiente:

https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Occamy.C&threatid=2147726780&enterprise=0

Nombre: Trojan:Win32/Occamy.C

Id.: 2147726780

Gravedad: Grave

Categoría: Caballo de Troya

Ruta de acceso: file:_C:\Users\Ismael\Documents\My Games\THE SIMS 4\Game\Bin\RldOrigin.dll

Origen de detección: Equipo local

Tipo de detección: FastPath

Origen de detección: Sistema

Usuario: NT AUTHORITY\SYSTEM

Nombre de proceso: Unknown

Versión de inteligencia de seguridad: AV: 1.313.1262.0, AS: 1.313.1262.0, NIS: 1.313.1262.0

Versión de motor: AM: 1.1.16900.4, NIS: 1.1.16900.4

Date: 2020-04-11 00:38:32.779

Description:

Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.

Para más información, consulta lo siguiente:

https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0

Nombre: HackTool:Win32/AutoKMS

Id.: 2147685180

Gravedad: Alta

Categoría: Herramienta

Ruta de acceso: rootcert:_648384A4DEE53D4C1C87E10D67CC99307CCC9C98

Origen de detección: Desconocido

Tipo de detección: Concreto

Origen de detección: Sistema

Usuario: NT AUTHORITY\SYSTEM

Nombre de proceso: Unknown

Versión de inteligencia de seguridad: AV: 1.313.1255.0, AS: 1.313.1255.0, NIS: 1.313.1255.0

Versión de motor: AM: 1.1.16900.4, NIS: 1.1.16900.4

Date: 2020-07-15 17:49:30.684

Description:

Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.

Nueva versión de inteligencia de seguridad:

Versión anterior de inteligencia de seguridad: 1.313.1262.0

Origen de actualización: Centro de protección contra malware de Microsoft

Tipo de inteligencia de seguridad: AntiVirus

Tipo de actualización: Completa

Usuario: NT AUTHORITY\NETWORK SERVICE

Versión actual del motor:

Versión anterior del motor: 1.1.16900.4

Código de error: 0x80072ee7

Descripción del error: No se pudo resolver el nombre de servidor o su dirección

Date: 2020-07-15 17:49:30.682

Description:

Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.

Nueva versión de inteligencia de seguridad:

Versión anterior de inteligencia de seguridad: 1.313.1262.0

Origen de actualización: Centro de protección contra malware de Microsoft

Tipo de inteligencia de seguridad: AntiSpyware

Tipo de actualización: Completa

Usuario: NT AUTHORITY\NETWORK SERVICE

Versión actual del motor:

Versión anterior del motor: 1.1.16900.4

Código de error: 0x80072ee7

Descripción del error: No se pudo resolver el nombre de servidor o su dirección

Date: 2020-07-15 17:49:30.681

Description:

Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.

Nueva versión de inteligencia de seguridad:

Versión anterior de inteligencia de seguridad: 1.313.1262.0

Origen de actualización: Centro de protección contra malware de Microsoft

Tipo de inteligencia de seguridad: AntiVirus

Tipo de actualización: Completa

Usuario: NT AUTHORITY\NETWORK SERVICE

Versión actual del motor:

Versión anterior del motor: 1.1.16900.4

Código de error: 0x80072ee7

Descripción del error: No se pudo resolver el nombre de servidor o su dirección

Date: 2020-07-15 17:49:30.651

Description:

Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.

Nueva versión de inteligencia de seguridad:

Versión anterior de inteligencia de seguridad: 1.313.1262.0

Origen de actualización: Centro de protección contra malware de Microsoft

Tipo de inteligencia de seguridad: AntiVirus

Tipo de actualización: Completa

Usuario: NT AUTHORITY\NETWORK SERVICE

Versión actual del motor:

Versión anterior del motor: 1.1.16900.4

Código de error: 0x80072ee7

Descripción del error: No se pudo resolver el nombre de servidor o su dirección

Date: 2020-07-15 17:49:30.650

Description:

Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.

Nueva versión de inteligencia de seguridad:

Versión anterior de inteligencia de seguridad: 1.313.1262.0

Origen de actualización: Centro de protección contra malware de Microsoft

Tipo de inteligencia de seguridad: AntiSpyware

Tipo de actualización: Completa

Usuario: NT AUTHORITY\NETWORK SERVICE

Versión actual del motor:

Versión anterior del motor: 1.1.16900.4

Código de error: 0x80072ee7

Descripción del error: No se pudo resolver el nombre de servidor o su dirección

CodeIntegrity:

===================================

Date: 2020-07-28 03:45:55.923

Description:

Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2020-07-28 03:45:53.883

Description:

Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2020-07-28 03:45:51.828

Description:

Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2020-07-28 03:45:49.780

Description:

Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2020-07-28 03:42:07.552

Description:

Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2020-07-28 03:42:05.491

Description:

Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2020-07-28 03:42:03.440

Description:

Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2020-07-28 03:42:01.401

Description:

Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

==================== Memory info ===========================

BIOS: AMI F.27 10/30/2018

Motherboard: HP 8357

Processor: AMD A10-9620P RADEON R5, 10 COMPUTE CORES 4C+6G

Percentage of memory in use: 34%

Total physical RAM: 15813.78 MB

Available physical RAM: 10338.25 MB

Total Virtual: 19397.78 MB

Available Virtual: 12368.43 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:918.37 GB) (Free:146.15 GB) NTFS

Drive d: (RECOVERY) (Fixed) (Total:11.91 GB) (Free:1.45 GB) NTFS ==>[system with boot components (obtained from drive)]

\\?\Volume{73d02a69-5031-4638-8fdb-134c4c50da75}\ (Windows RE tools) (Fixed) (Total:0.96 GB) (Free:0.43 GB) NTFS

\\?\Volume{a4af9ed1-ebf9-4ec7-a79b-89560793dfb7}\ () (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================

Disk: 0 (Size: 931.5 GB) (Disk ID: F893FEC9)

Partition: GPT.

==================== End of Addition.txt =======================

Saludos, quería comentar que mi situación con la conexión ha escalado, ahora el problema no se resuelve reiniciando la conexión, ni deshabilitando y volviendo a habilitar los adaptadores sino que ahora debo reinciar la computadora.

Se me iba olvidando el reporte de Malwarebytes xd

Malwarebytes
www.malwarebytes.com

-Detalles del registro-
Fecha del análisis: 27/7/20
Hora del análisis: 4:58
Archivo de registro: 58efbc16-cfe7-11ea-984d-48ba4e3f3899.json

-Información del software-
Versión: 4.1.2.73
Versión de los componentes: 1.0.990
Versión del paquete de actualización: 1.0.27513
Licencia: Prueba

-Información del sistema-
SO: Windows 10 (Build 18362.959)
CPU: x64
Sistema de archivos: NTFS
Usuario: ISMAEL\Ismael

-Resumen del análisis-
Tipo de análisis: Análisis personalizado
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 972366
Amenazas detectadas: 6
Amenazas en cuarentena: 6
Tiempo transcurrido: 12 hr, 18 min, 32 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Activado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)

Módulo: 0
(No hay elementos maliciosos detectados)

Clave del registro: 0
(No hay elementos maliciosos detectados)

Valor del registro: 0
(No hay elementos maliciosos detectados)

Datos del registro: 0
(No hay elementos maliciosos detectados)

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 0
(No hay elementos maliciosos detectados)

Archivo: 6
CrackTool.Agent, C:\GAMES\ASSASSINS CREED UNITY\UPLAY_R164.DLL, En cuarentena, 5951, 324694, 1.0.27513, , ame, 
CrackTool.Agent, C:\GAMES\ASSASSINS CREED UNITY\UPLAY_R1_LOADER64.DLL, En cuarentena, 5951, 324694, 1.0.27513, , ame, 
Generic.Malware/Suspicious, C:\USERS\ISMAEL\APPDATA\ROAMING\Microsoft\Windows\Recent\Harmonic.Maximizer.1.0.0.rar.lnk, En cuarentena, 0, 392686, , , , 
Generic.Malware/Suspicious, C:\PLUGGINS-\LATEST VST PLUGGINS-VOL-34\AUDIORITY HARMONIC MAXIMIZER V1.0.0 WIN AND OSX INCL PATCHED AND KEYGEN-R2R\HARMONIC.MAXIMIZER.1.0.0.RAR, En cuarentena, 0, 392686, 1.0.27513, , shuriken, 
Generic.Malware/Suspicious, C:\PLUGGINS-\LATEST VST PLUGGINS-VOL-34\PLUGIN ALLIANCE UNFILTERED AUDIO 100 BUNDLE V1.1.0 WIN AND OSX INCL PATCHED AND KEYGEN-R2R\UNFILTERED.AUDIO.100.BUNDLE.V1.1.0.MACOSX.RAR, En cuarentena, 0, 392686, 1.0.27513, , shuriken, 
HackTool.AutoKMS, C:\USERS\ISMAEL\DOCUMENTS\PENDRIVE\2019\OFFICE 2013-2019 C2R INSTALL V6.4.4\OINSTALL.EXE, En cuarentena, 7646, 841426, 1.0.27513, 62DCA56267ECA3A8BD7DCD3F, dds, 00825573

Sector físico: 0
(No hay elementos maliciosos detectados)

WMI: 0
(No hay elementos maliciosos detectados)


(end)

Hola @Ismael_Longat_Marrer

Realiza lo siguiente:

Paso 1:

Desinstala con Revo Uninstaller en su Modo Avanzado:

  • Driver Booster
  • FXWebPlayer

Manual de Revo Uninstaller.

Paso 2:

Con mucha atención:

1.- Muy Importante >>> Realizar una copia de Seguridad de su Registro.

  • Descarga/Ejecuta DelFix desde el escritorio de Windows.
  • Clic Derecho, “Ejecutar como Administrador”.
  • En la ventana principal, marca solamente la casilla “Create Registry Backup”.
  • Clic en Run.

Al terminar se abrirá un reporte llamado DelFix.txt, guárdelo por si fuera necesario y cierre la herramienta…

Luego ve a::

2.- Inicio >>> Ejecutar >>> Escribe notepad.exe o abra un nuevo archivo Notepad y copie y pegue lo siguiente:

Start::
CloseProcesses:
HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\MountPoints2: {0504b5ae-1728-11e8-9974-9061ae195865} - "F:\setup.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.89\Installer\chrmstp.exe [2020-07-21] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SPDriverInstall.lnk [2019-12-11]
ShortcutTarget: SPDriverInstall.lnk -> C:\Program Files\MediaTek\SP Driver\SPDriverInstall (No File)
GroupPolicy: Restriction ? <==== ATTENTION
Task: {AF421F4C-4304-425D-ACD8-7D60B564D961} - System32\Tasks\Driver Booster SkipUAC (Ismael) => C:\Program Files (x86)\IObit\Driver Booster\5.4.0\DriverBooster.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HCTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
Toolbar: HKU\S-1-5-21-2375054329-1883842248-1515162951-1001 -> No Name - {EF293C5A-9F37-49FD-91C4-2B867063FC54} - No File
Edge HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [elhpdacimkjpccooodognopfhbdgnpbk]
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [No File]
CHR HKLM\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk
S3 GamesAppService; "C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe" [X]
Tcpip\Parameters: [DhcpNameServer] 10.1.192.12 10.1.192.13
Tcpip\..\Interfaces\{18228e1c-9e80-4594-83c0-542fa1bccdea}: [DhcpNameServer] 10.1.192.12 10.1.192.13
Tcpip\..\Interfaces\{e684d1f8-8dac-4380-94ca-257858004af5}: [DhcpNameServer] 10.1.192.13 10.1.192.12
2020-07-24 00:32 - 2018-11-15 21:36 - 000000000 ____D C:\Users\Ismael\AppData\Local\Lavasoft
2020-07-24 00:32 - 2018-11-15 21:32 - 000000000 ____D C:\ProgramData\Lavasoft
2020-07-24 00:32 - 2018-05-29 00:05 - 000000000 ____D C:\Users\Ismael\AppData\Roaming\IObit
2020-07-24 00:32 - 2018-05-29 00:05 - 000000000 ____D C:\ProgramData\IObit
2020-07-18 04:00 - 2019-01-02 13:43 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
FXWebPlayer (HKLM-x32\...\FXWebPlayer) (Version: - FX Interactive) <==== ATTENTION
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> No File
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> No File
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> No File
C:\Program Files (x86)\IObit
AlternateDataStreams: C:\ProgramData:9E4957CE5A9494B2 [217]
AlternateDataStreams: C:\Users\All Users:9E4957CE5A9494B2 [217]
AlternateDataStreams: C:\ProgramData\Application Data:9E4957CE5A9494B2 [217]
AlternateDataStreams: C:\Users\Ismael\Desktop\adwcleaner_8.0.7.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\Ismael\Desktop\FRST64.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\Ismael\Desktop\MBSetup.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\Ismael\Desktop\ZHPCleaner.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\Ismael\Downloads\reaper612c_x64-install.exe:SmartScreen [7]
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\25399ADF.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\25399ADF.sys => ""="Driver"
FirewallRules: [UDP Query User{077A5548-225F-4CB9-89A1-C1A640637D65}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe => No File
FirewallRules: [TCP Query User{6F0AA92C-9E5E-42D5-8AC3-89FD2F4A095D}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe => No File
FirewallRules: [UDP Query User{9553889A-9CDA-484A-B485-F9901A0E71B2}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe => No File
FirewallRules: [TCP Query User{AB0CA59B-2213-4E83-B759-F3923C82E212}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe => No File
FirewallRules: [UDP Query User{55A5AE0B-5788-487C-91B9-C1883BD8F6C5}C:\program files (x86)\red faction guerrilla remarstered\rfg.exe] => (Allow) C:\program files (x86)\red faction guerrilla remarstered\rfg.exe => No File
FirewallRules: [TCP Query User{84457690-4CD2-41F3-8B17-9B2EF57A6E54}C:\program files (x86)\red faction guerrilla remarstered\rfg.exe] => (Allow) C:\program files (x86)\red faction guerrilla remarstered\rfg.exe => No File
FirewallRules: [{F4D2D018-8F69-4E37-9673-847C0A83192C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{35480715-3187-4270-9103-F3C13B85201C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{4CD7A90D-1DA7-446A-9F4E-3B1F9C833EEC}] => (Block) C:\program files\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe => No File
FirewallRules: [{C874E0FA-7F23-412C-95C9-85CFEC1930A3}] => (Block) C:\program files\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe => No File
FirewallRules: [UDP Query User{57884E9F-ED6E-4CEE-B29A-6EC09C27426A}C:\program files\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe] => (Allow) C:\program files\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe => No File
FirewallRules: [TCP Query User{082F2F76-A4C4-49F0-AC32-61CD81E70783}C:\program files\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe] => (Allow) C:\program files\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe => No File
FirewallRules: [UDP Query User{2C971467-C98E-4800-A0E1-7E8A4F82575F}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => No File
FirewallRules: [TCP Query User{720DC142-CFE7-49DE-A163-1130428D3EC3}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => No File
FirewallRules: [{E49A90F2-4EB5-4AAB-AB92-9C38E2638D8A}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe => No File
FirewallRules: [{40A4F4CA-535C-47EB-9933-D7B8248FF171}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe => No File
C:\Program Files (x86)\Common Files\Mcafee
FirewallRules: [TCP Query User{2FBF7B6E-DC3F-4BBC-8DB7-AF868CC4EAA6}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => No File
FirewallRules: [UDP Query User{35EBB063-B3D1-43CC-809D-CDEA5262D68C}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => No File
FirewallRules: [{5DA0979D-F70E-4156-8D24-DC937C4B285D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe => No File
FirewallRules: [{D51490EF-CE8A-4D40-83EE-1FCD417DC724}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe => No File
FirewallRules: [TCP Query User{89D9A460-9057-44A4-92AA-2A03A300004F}C:\program files\transmission\transmission-qt.exe] => (Allow) C:\program files\transmission\transmission-qt.exe => No File
FirewallRules: [UDP Query User{F56A06A4-D6BE-44D7-8A0F-AA5E39511EDB}C:\program files\transmission\transmission-qt.exe] => (Allow) C:\program files\transmission\transmission-qt.exe => No File
FirewallRules: [{690D989C-4CF4-4236-AB93-1DD68A399024}] => (Allow) C:\Program Files\Avid\Pro Tools\AvidVideoEngine.exe => No File
FirewallRules: [{3063B923-12D3-4C9E-B4DF-07D1A3568196}] => (Allow) C:\Users\Ismael\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [TCP Query User{2B0EF755-6C03-4BD5-B58A-3F78B28398C5}C:\program files (x86)\steam\steamapps\common\goat of duty\goatofduty\binaries\win64\goatofduty-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\goat of duty\goatofduty\binaries\win64\goatofduty-win64-shipping.exe => No File
FirewallRules: [UDP Query User{46589817-4E1B-4373-B1E0-A35E38677AD6}C:\program files (x86)\steam\steamapps\common\goat of duty\goatofduty\binaries\win64\goatofduty-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\goat of duty\goatofduty\binaries\win64\goatofduty-win64-shipping.exe => No File

CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
End::
  • Lo guarda bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.

Nota: Es necesario que el ejecutable Frst.exe/Frst64.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no la herramienta no trabajará.

3.- Inicie su ordenador en >>> Modo Seguro >>> Aplicable a Windows 10. o Windows 7.

4.- Desconecte el equipo de Internet, apague el router, desconecte el cable.

  • Ejecute Frst.exe o Frst64.exe. según el caso.
  • Presione el botón Fix/Corregir y aguarde a que termine.
  • La Herramienta guardará el reporte en su escritorio (Fixlog.txt).
  • Reinicia y lo pega en su próxima respuesta.

Nos comentas…

Salu2

No consigo nada llamado Driver Booster

Hola @Ismael_Longat_Marrer

Continúa con los demás pasos… :+1:

Salu2

Hola, aqui está el reporte

Fix result of Farbar Recovery Scan Tool (x64) Version: 26-07-2020
Ran by Ismael (29-07-2020 21:50:49) Run:1
Running from C:\Users\Ismael\Desktop
Loaded Profiles: Ismael
Boot Mode: Safe Mode (minimal)
==============================================

fixlist content:
*****************
CloseProcesses:
HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\...\MountPoints2: {0504b5ae-1728-11e8-9974-9061ae195865} - "F:\setup.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.89\Installer\chrmstp.exe [2020-07-21] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SPDriverInstall.lnk [2019-12-11]
ShortcutTarget: SPDriverInstall.lnk -> C:\Program Files\MediaTek\SP Driver\SPDriverInstall (No File)
GroupPolicy: Restriction ? <==== ATTENTION
Task: {AF421F4C-4304-425D-ACD8-7D60B564D961} - System32\Tasks\Driver Booster SkipUAC (Ismael) => C:\Program Files (x86)\IObit\Driver Booster\5.4.0\DriverBooster.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HCTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
Toolbar: HKU\S-1-5-21-2375054329-1883842248-1515162951-1001 -> No Name - {EF293C5A-9F37-49FD-91C4-2B867063FC54} - No File
Edge HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [elhpdacimkjpccooodognopfhbdgnpbk]
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [No File]
CHR HKLM\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk
S3 GamesAppService; "C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe" [X]
Tcpip\Parameters: [DhcpNameServer] 10.1.192.12 10.1.192.13
Tcpip\..\Interfaces\{18228e1c-9e80-4594-83c0-542fa1bccdea}: [DhcpNameServer] 10.1.192.12 10.1.192.13
Tcpip\..\Interfaces\{e684d1f8-8dac-4380-94ca-257858004af5}: [DhcpNameServer] 10.1.192.13 10.1.192.12
2020-07-24 00:32 - 2018-11-15 21:36 - 000000000 ____D C:\Users\Ismael\AppData\Local\Lavasoft
2020-07-24 00:32 - 2018-11-15 21:32 - 000000000 ____D C:\ProgramData\Lavasoft
2020-07-24 00:32 - 2018-05-29 00:05 - 000000000 ____D C:\Users\Ismael\AppData\Roaming\IObit
2020-07-24 00:32 - 2018-05-29 00:05 - 000000000 ____D C:\ProgramData\IObit
2020-07-18 04:00 - 2019-01-02 13:43 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
FXWebPlayer (HKLM-x32\...\FXWebPlayer) (Version: - FX Interactive) <==== ATTENTION
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> No File
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> No File
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> No File
C:\Program Files (x86)\IObit
AlternateDataStreams: C:\ProgramData:9E4957CE5A9494B2 [217]
AlternateDataStreams: C:\Users\All Users:9E4957CE5A9494B2 [217]
AlternateDataStreams: C:\ProgramData\Application Data:9E4957CE5A9494B2 [217]
AlternateDataStreams: C:\Users\Ismael\Desktop\adwcleaner_8.0.7.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\Ismael\Desktop\FRST64.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\Ismael\Desktop\MBSetup.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\Ismael\Desktop\ZHPCleaner.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\Ismael\Downloads\reaper612c_x64-install.exe:SmartScreen [7]
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\25399ADF.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\25399ADF.sys => ""="Driver"
FirewallRules: [UDP Query User{077A5548-225F-4CB9-89A1-C1A640637D65}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe => No File
FirewallRules: [TCP Query User{6F0AA92C-9E5E-42D5-8AC3-89FD2F4A095D}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe => No File
FirewallRules: [UDP Query User{9553889A-9CDA-484A-B485-F9901A0E71B2}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe => No File
FirewallRules: [TCP Query User{AB0CA59B-2213-4E83-B759-F3923C82E212}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe => No File
FirewallRules: [UDP Query User{55A5AE0B-5788-487C-91B9-C1883BD8F6C5}C:\program files (x86)\red faction guerrilla remarstered\rfg.exe] => (Allow) C:\program files (x86)\red faction guerrilla remarstered\rfg.exe => No File
FirewallRules: [TCP Query User{84457690-4CD2-41F3-8B17-9B2EF57A6E54}C:\program files (x86)\red faction guerrilla remarstered\rfg.exe] => (Allow) C:\program files (x86)\red faction guerrilla remarstered\rfg.exe => No File
FirewallRules: [{F4D2D018-8F69-4E37-9673-847C0A83192C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{35480715-3187-4270-9103-F3C13B85201C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{4CD7A90D-1DA7-446A-9F4E-3B1F9C833EEC}] => (Block) C:\program files\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe => No File
FirewallRules: [{C874E0FA-7F23-412C-95C9-85CFEC1930A3}] => (Block) C:\program files\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe => No File
FirewallRules: [UDP Query User{57884E9F-ED6E-4CEE-B29A-6EC09C27426A}C:\program files\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe] => (Allow) C:\program files\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe => No File
FirewallRules: [TCP Query User{082F2F76-A4C4-49F0-AC32-61CD81E70783}C:\program files\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe] => (Allow) C:\program files\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe => No File
FirewallRules: [UDP Query User{2C971467-C98E-4800-A0E1-7E8A4F82575F}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => No File
FirewallRules: [TCP Query User{720DC142-CFE7-49DE-A163-1130428D3EC3}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => No File
FirewallRules: [{E49A90F2-4EB5-4AAB-AB92-9C38E2638D8A}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe => No File
FirewallRules: [{40A4F4CA-535C-47EB-9933-D7B8248FF171}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe => No File
C:\Program Files (x86)\Common Files\Mcafee
FirewallRules: [TCP Query User{2FBF7B6E-DC3F-4BBC-8DB7-AF868CC4EAA6}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => No File
FirewallRules: [UDP Query User{35EBB063-B3D1-43CC-809D-CDEA5262D68C}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => No File
FirewallRules: [{5DA0979D-F70E-4156-8D24-DC937C4B285D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe => No File
FirewallRules: [{D51490EF-CE8A-4D40-83EE-1FCD417DC724}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe => No File
FirewallRules: [TCP Query User{89D9A460-9057-44A4-92AA-2A03A300004F}C:\program files\transmission\transmission-qt.exe] => (Allow) C:\program files\transmission\transmission-qt.exe => No File
FirewallRules: [UDP Query User{F56A06A4-D6BE-44D7-8A0F-AA5E39511EDB}C:\program files\transmission\transmission-qt.exe] => (Allow) C:\program files\transmission\transmission-qt.exe => No File
FirewallRules: [{690D989C-4CF4-4236-AB93-1DD68A399024}] => (Allow) C:\Program Files\Avid\Pro Tools\AvidVideoEngine.exe => No File
FirewallRules: [{3063B923-12D3-4C9E-B4DF-07D1A3568196}] => (Allow) C:\Users\Ismael\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [TCP Query User{2B0EF755-6C03-4BD5-B58A-3F78B28398C5}C:\program files (x86)\steam\steamapps\common\goat of duty\goatofduty\binaries\win64\goatofduty-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\goat of duty\goatofduty\binaries\win64\goatofduty-win64-shipping.exe => No File
FirewallRules: [UDP Query User{46589817-4E1B-4373-B1E0-A35E38677AD6}C:\program files (x86)\steam\steamapps\common\goat of duty\goatofduty\binaries\win64\goatofduty-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\goat of duty\goatofduty\binaries\win64\goatofduty-win64-shipping.exe => No File
CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:

*****************

Processes closed successfully.
HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0504b5ae-1728-11e8-9974-9061ae195865} => removed successfully
HKLM\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96} => removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SPDriverInstall.lnk => moved successfully
"C:\Program Files\MediaTek\SP Driver\SPDriverInstall" => not found
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AF421F4C-4304-425D-ACD8-7D60B564D961}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AF421F4C-4304-425D-ACD8-7D60B564D961}" => removed successfully
C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (Ismael) => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster SkipUAC (Ismael)" => removed successfully
C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => moved successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
"HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL" => removed successfully
HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\Software\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
"HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EF293C5A-9F37-49FD-91C4-2B867063FC54}" => removed successfully
HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\SOFTWARE\Microsoft\Edge\Extensions\elhpdacimkjpccooodognopfhbdgnpbk => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0 => removed successfully
HKLM\SOFTWARE\Google\Chrome\Extensions\elhpdacimkjpccooodognopfhbdgnpbk => removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj => removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\elhpdacimkjpccooodognopfhbdgnpbk => removed successfully
HKLM\System\CurrentControlSet\Services\GamesAppService => removed successfully
GamesAppService => service removed successfully
"HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\\DhcpNameServer" => removed successfully
"HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{18228e1c-9e80-4594-83c0-542fa1bccdea}\\DhcpNameServer" => removed successfully
"HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{e684d1f8-8dac-4380-94ca-257858004af5}\\DhcpNameServer" => removed successfully
C:\Users\Ismael\AppData\Local\Lavasoft => moved successfully
C:\ProgramData\Lavasoft => moved successfully
C:\Users\Ismael\AppData\Roaming\IObit => moved successfully
C:\ProgramData\IObit => moved successfully
"C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job" => not found
FXWebPlayer (HKLM-x32\...\FXWebPlayer) (Version: - FX Interactive) <==== ATTENTION => Error: No automatic fix found for this entry.
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\IObitUnstaler => removed successfully
HKLM\Software\Classes\CLSID\{836AB26C-2DE4-41D3-AC24-4C6C2699B960} => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\IObitUnstaler => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\IObitUnstaler => removed successfully
C:\Program Files (x86)\IObit => moved successfully
C:\ProgramData => ":9E4957CE5A9494B2" ADS removed successfully
"C:\Users\All Users" => ":9E4957CE5A9494B2" ADS not found.
"C:\ProgramData\Application Data" => ":9E4957CE5A9494B2" ADS not found.
C:\Users\Ismael\Desktop\adwcleaner_8.0.7.exe => ":SmartScreen" ADS removed successfully
C:\Users\Ismael\Desktop\FRST64.exe => ":SmartScreen" ADS removed successfully
C:\Users\Ismael\Desktop\MBSetup.exe => ":SmartScreen" ADS removed successfully
C:\Users\Ismael\Desktop\ZHPCleaner.exe => ":SmartScreen" ADS removed successfully
C:\Users\Ismael\Downloads\reaper612c_x64-install.exe => ":SmartScreen" ADS removed successfully
HKLM\System\CurrentControlSet\Control\SafeBoot\Minimal\25399ADF.sys => removed successfully
HKLM\System\CurrentControlSet\Control\SafeBoot\Network\25399ADF.sys => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{077A5548-225F-4CB9-89A1-C1A640637D65}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{6F0AA92C-9E5E-42D5-8AC3-89FD2F4A095D}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{9553889A-9CDA-484A-B485-F9901A0E71B2}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{AB0CA59B-2213-4E83-B759-F3923C82E212}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{55A5AE0B-5788-487C-91B9-C1883BD8F6C5}C:\program files (x86)\red faction guerrilla remarstered\rfg.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{84457690-4CD2-41F3-8B17-9B2EF57A6E54}C:\program files (x86)\red faction guerrilla remarstered\rfg.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F4D2D018-8F69-4E37-9673-847C0A83192C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{35480715-3187-4270-9103-F3C13B85201C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4CD7A90D-1DA7-446A-9F4E-3B1F9C833EEC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C874E0FA-7F23-412C-95C9-85CFEC1930A3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{57884E9F-ED6E-4CEE-B29A-6EC09C27426A}C:\program files\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{082F2F76-A4C4-49F0-AC32-61CD81E70783}C:\program files\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{2C971467-C98E-4800-A0E1-7E8A4F82575F}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{720DC142-CFE7-49DE-A163-1130428D3EC3}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E49A90F2-4EB5-4AAB-AB92-9C38E2638D8A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{40A4F4CA-535C-47EB-9933-D7B8248FF171}" => removed successfully
"C:\Program Files (x86)\Common Files\Mcafee" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{2FBF7B6E-DC3F-4BBC-8DB7-AF868CC4EAA6}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{35EBB063-B3D1-43CC-809D-CDEA5262D68C}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5DA0979D-F70E-4156-8D24-DC937C4B285D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D51490EF-CE8A-4D40-83EE-1FCD417DC724}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{89D9A460-9057-44A4-92AA-2A03A300004F}C:\program files\transmission\transmission-qt.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{F56A06A4-D6BE-44D7-8A0F-AA5E39511EDB}C:\program files\transmission\transmission-qt.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{690D989C-4CF4-4236-AB93-1DD68A399024}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3063B923-12D3-4C9E-B4DF-07D1A3568196}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{2B0EF755-6C03-4BD5-B58A-3F78B28398C5}C:\program files (x86)\steam\steamapps\common\goat of duty\goatofduty\binaries\win64\goatofduty-win64-shipping.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{46589817-4E1B-4373-B1E0-A35E38677AD6}C:\program files (x86)\steam\steamapps\common\goat of duty\goatofduty\binaries\win64\goatofduty-win64-shipping.exe" => removed successfully

========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

========= End of CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows


========= End of CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.

Unable to connect to BITS - 0x8007043c

========= End of CMD: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= End of CMD: =========


========= netsh advfirewall reset =========


Error al intentar ponerse en contacto con el servicio Firewall de Windows Defender. Aseg£rate de que el servicio se est  ejecutando e intenta la solicitud de nuevo.


========= End of CMD: =========


========= netsh advfirewall set allprofiles state ON =========


Error al intentar ponerse en contacto con el servicio Firewall de Windows Defender. Aseg£rate de que el servicio se est  ejecutando e intenta la solicitud de nuevo.


========= End of CMD: =========


========= netsh int ipv4 reset =========

No hay valores configurados por el usuario para restablecer.


========= End of CMD: =========


========= netsh int ipv6 reset =========

No hay valores configurados por el usuario para restablecer.


========= End of CMD: =========


========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-21-2375054329-1883842248-1515162951-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully


========= End of RemoveProxy: =========

C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 11558912 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 40161863 B
Java, Flash, Steam htmlcache => 376344457 B
Windows/system/drivers => 9109957 B
Edge => 29884 B
Chrome => 7066511 B
Firefox => 83980520 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 6656 B
Users => 6656 B
ProgramData => 6656 B
Public => 6656 B
systemprofile => 6656 B
systemprofile32 => 6656 B
LocalService => 243813 B
NetworkService => 255025 B
Ismael => 17687707 B

RecycleBin => 119620166 B
EmptyTemp: => 635.2 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 21:52:05 ====

Hola @Ismael_Longat_Marrer

Faltaría que comentes luego de reiniciar como sigue el equipo y si aun continuan los problemas…:thinking:

Salu2

Hola, muchas gracias por la ayuda, en un principio los problemas de conexión seguían, cuando intentaba conectarme a la red no la reconocía, luego la eliminé e intenté conectarme de nuevo y no podía conectarme a la red. Traté varias cosas y nada funcionaba hasta que me conecté a otra red y cuando volví a intentar conectarme a la red habitual se conectó sin problemas. Hasta ahora aparentemente se resolvió ese problema. Respecto al tema del uso de la RAM sigue igual. Pero el sistema ahora arranca más rápido y ya no me abre las ventanas de cmd al iniciar sesión

Hola @Ismael_Longat_Marrer

Buenísimo que algo haya mejorado.

Paso 1:

Abre el Administrador de tareas >>> Pestaña Procesos >>>> toma una imagen y la subes:

Paso 2:

Optimiza ese equipo:

1.- Descarga y / o Ejecuta CCleaner a/o desde tu escritorio.

  • Siguiendo su manual, lo instalas y/o ejecutas según el caso, utiliza la opción Limpiador del mismo, tal como se explica en su Manual.

2.- Realiza un análisis completo del Disco Duro siguiendo la guía:

IMPORTANTE: Si el porcentaje de Avance parece pararse, NO Canceles el proceso. Déjalo continuar si es necesario durante 24 horas más. .

Una vez terminado el proceso, que puede/debe durar bastante rato, debes poner el informe que se habrá guardado por parte de Windows y que tienes que encontrar siguiendo estos pasos :arrow_right: ¿Cuándo y cómo usar el visor de eventos (eventvwr.msc)?

Fíjate bien en como es el informe que viene en ese tema, para que busques algo similar y NO pongas cualquier otra cosa.

3.- Libera espacio en disco siguiendo los pasos de:

4.- Desfragmenta el/los discos duros y particiones del PC, siguiendo los pasos de:

Nota: Si tu disco es un SSD este paso no es necesario.

Luego de reiniciar, nos comentas como sigue el equipo.

Salu2.