Windows 10. no puedo abrir las aplicaciones del sistema, no funciona casi nada¿me toca reinstalar?


#1

Buenas compañeros…uff vaya cambio ha pegado el foro…Mi enhorabuena. :slight_smile: Acudo aquí como ultimo recurso antes de practicar un formateo, resulta que ayer se me bloqueó el pc y despues de reiniciar Windows no me funciona correctamente. Si abro inicio no puedo ejecutar ni una busqueda ni configuración ni aplicaciones de windows, si abro Edge se cierra, no puedo ejecutar reparadores de microsoft que me descargo, puedo actualizar windows, ni crear cuentas de usuario…

¿Se os ocurre que esta pasando? he intentado alguna cosa que he leido por internet pero es dificil, porque tengo muchas cosas inutilizadas y es dificil seguir los pasos.

A ver si se os ocurre algo… Un saludo mil gracias!!


#2

Hola @Dustito. :+1:

Has probado a entrar en windows desde el modo seguro. :thinking:

Intenta usando el 2º MÉTODO: de esta Faq de Windows 8(aplicable a Windows 10) :arrow_forward: ¿Cómo iniciar Windows 8/8.1 en Modo Seguro?, para trabajar desde ese modo de windows.

Y verifica si tampoco es posible hacer prácticamente nada desde ahi.??

Nos comentas.


#3

Muchas gracias por la rapida respuesta Javier. En cuanto llegue a casa esta tarde lo pruebo y os comento. La verdad es que quizas es de las cosas que primero tenia que haber probado pero ya no sabia ni si quiera si windows 10 se podia arrancar de esa forma…:weary:


#4

Hola.

Perfecto. :+1:

Cuando un equipo se apaga de forma súbita, el solo o tenemos nosotros mismos que recurrir a hacerlo de forma brusca(pulsando botón de encendido por mas de 30 segundos o similar) pueden producirse daños en el disco duro y ese es un primer problema que suele ser necesario verificar. :thinking:

Aparte de ese problema, pueden existir otros muchos factores/programas/infecciones que repercuten en un comportamiento como el que tu describes. :roll_eyes:

Entrando a windows desde el modo seguro es una pirmera opcion/manera para ir chequeando como se comporta la maquina, y una vez que nos comentes resultados podremos ir dándote otros pasos a realizar.

Ya nos dirás como te fue.

Saludos.


#5

Prueba realizada! En principio me ha sido imposible ejecutar el bat para el reinicio en modo administrador, sin modo administrador he reiniciado en modo seguro con red (el numero 5) y tengo los mismos sintomas…


#6

Hola. :+1:

Intenta realizar los siguientes pasos desde el modo seguro de windows, veamos si puedes realizarlos. :thinking:

Para intentar verificar como tienes el disco duro de tu equipo, sigue el 3er. MÉTODO: descrito en esta Faq de ayuda :arrow_right: ¿Cómo usar CHKDSK para realizar una comprobación del disco?, que es válida también para un Windows 10.

Una vez terminado el proceso, que puede/debe durar bastante rato, y ya iniciando en modo normal de windows debes poner el informe que se habrá guardado por parte de Windows y que tienes que encontrar siguiendo estos pasos :arrow_right: ¿Cuándo y cómo usar el visor de eventos (eventvwr.msc)?

Fíjate bien en como es el informe que viene en ese tema, para que busques algo similar y NO pongas cualquier otra cosa.

Nos pones el informe y comentas como sigue el problema del equipo.

Saludos.


#7

He realizado la comprobación del disco, como tardaba mucho por el 15% me he ido un rato. Al volver me he encontrado la siguiente pantalla:

Enlace a la imagen del error

Al reiniciar me ha saltado la pantalla de correción de disco al 100% y ha iniciado windows

Al ejecutar eventvwr.msc, me salta el siguiente error, como al igual de ejecutar algun que otro exe o msc:

Enlace a la imagen del error 2

Así que no puedo sacar el informe por el metodo que mencionas y sigue el mismo funcionamiento defectuoso en windows.

He sacado el informe de la ruta de la captura y me sale esto:

Diagnóstico de Reparación de inicio y registro de reparación

Número de intentos de reparación: 1

Detalles de la sesión

Disco del sistema = \Device\Harddisk1 Directorio de Windows = E:\WINDOWS Comprobación automática = 1 Número de causas principales = 1

Prueba realizada:

Nombre: Buscar actualizaciones Resultado: Se completó correctamente. Código de error = 0x0 Tiempo invertido = 0 ms

Prueba realizada:

Nombre: Prueba de disco del sistema Resultado: Se completó correctamente. Código de error = 0x0 Tiempo invertido = 0 ms

Prueba realizada:

Nombre: Diagnóstico de errores de disco Resultado: Se completó correctamente. Código de error = 0x0 Tiempo invertido = 0 ms

Prueba realizada:

Nombre: Prueba de metadatos de disco Resultado: Se completó correctamente. Código de error = 0x0 Tiempo invertido = 188 ms

Prueba realizada:

Nombre: Prueba de metadatos de disco Resultado: Se completó correctamente. Código de error = 0x0 Tiempo invertido = 31 ms

Prueba realizada:

Nombre: Prueba de sistema operativo de destino Resultado: Se completó correctamente. Código de error = 0x0 Tiempo invertido = 16 ms

Prueba realizada:

Nombre: Comprobación de contenido de volumen Resultado: Se completó correctamente. Código de error = 0x0 Tiempo invertido = 875 ms

Prueba realizada:

Nombre: Diagnóstico del administrador de arranque Resultado: Se completó correctamente. Código de error = 0x0 Tiempo invertido = 0 ms

Prueba realizada:

Nombre: Diagnóstico de registro de arranque del sistema Resultado: Se completó correctamente. Código de error = 0x0 Tiempo invertido = 0 ms

Causa principal encontrada:

Un archivo de arranque imprescindible e:\boot\resources\custom\bootres.dll está dañado.

Acción de reparación: Reparación de archivos Resultado: Error. Código de error = 0x2 Tiempo invertido = 2641 ms

Muchas gracias por el cable Javier! Sigo atento el hilo…


#8

El proceso de reparación del disco NO ha terminado correctamente y por eso luego salio el mensaje de reparación automática que NO se pudo realizar que pusiste. :-1:

Cuantos años tiene ese equipo.??

Y cuantos años tiene el disco duro donde se aloja windows.??

Tienes un solo disco instalado en ese equipo.??


#10

El equipo lo compre a principios de 2010…

El disco SSD es del 2012 un Crucial CT128M4 - Unidad de estado sólido 128 GB M4, donde tengo el windows, el photoshop y algun que otro programa tocho que use habitualmente. Luego tengo un disco normal que me compre con el ordenador a principios de 2010 un Western Digital Caviar Black 640GB SATA2 MAESTRO, que uso como almacenamiento.

Si te sirve, desde hace un par de años he tenido bastantes bloqueos del pc, hay veces que 1 al día. Unas veces la pantalla se queda congelada, otras sale la tipica pantalla azul de error con un código que va cambiando.

Este es mi equipo completo:

AMD Phenom II 555 X2 Dual Core 3.2GHz Black Edition AM3 Box (mutado a 4 nucleos)

Mushkin BlackLine PC3-12800 DDR3 1600 4GB 2x2GB CL7

G.Skill Ripjaws X DDR3 1600 PC3-12800 8GB 2x4GB CL9

Asus M4A785TD-V EVO Socket AM3

NVIDIA GTX 770

Western Digital Caviar Black 640GB SATA2 MAESTRO

OCZ ModXStream PRO 500W Modular

Crucial CT128M4 - Unidad de estado sólido 128 GB M4

Scythe Mugen 3 Rev B

Antec Three Hundred

La verdad que sería interesante saber si algún disco esta jodido, porque visto lo visto estaría pensando en actualizar el equipo más adelante, y reutilizar los componentes que pudiese, como los discos. Y si me compro un equipo nuevo y empieza fallarme porque un disco esté mal sería una faena…Pero bueno para eso aun queda algo de tiempo…

Muchas gracias por la ayuda y las molestias Javier


#11

Hola.

Entiendo… veamos por lo que comentas, :thinking: creo que sabrás quitar el disco mecánico adicional que tienes en ese equipo.??

Y dispones de algún otro equipo donde pudieras preparar alternativamente algún USB/CD con herramientas de verificación adicional.??


#12

Si sin problemas, podría quitar el disco, pero ¿no valdria simplemente con quitarlo de la bios? Tengo un portatil por ahi, supongo que podría preparar lo que comentas.

Gracias de nuevo!


#13

Hola.

Perfecto… entonces lo primero que vas a realizar es probando con la desconexión del disco adicional(el mecánico) y hazlo quitando los dos cables, el de corriente y el de datos, mejor quitar los cables y asegurarnos, que quitandolo de la BIOS únicamente el disco seguirá recibiendo corriente y es mejor la desconexión física.

Una vez lo hayas desconectado repites el proceso de verificación del disco SSD donde tienes windows instalado, usando el procedimiento que te indiqué anteriormente y nos comentas resultados.

Saludos.


#14

Buenas realizadado el proceso de verificacion del disco sin el disco duro mecanico conectado. A la hora de ejecutar el visor de eventos no me dejaba, pero al reiniciar en modo seguro si he podido ejecutarlo… He visto que hay varios errores con el id 1001 sobre la misma hora te los copio todos y perdona por el tocho porque creo que algunos son repetidos, supongo que el que te interesa es el que dice “Comprobando el sistema de archivos en C”:

Nombre de registro:Application Origen: Microsoft-Windows-Wininit Fecha: 10/01/2019 19:16:58 Id. del evento:1001 Categoría de la tarea:Ninguno Nivel: Información Palabras clave:Clásico Usuario: No disponible Equipo: DESKTOP-0KVORQ4 Descripción:

Comprobando el sistema de archivos en C: El tipo del sistema de archivos es NTFS.

Uno de los discos necesita ser comprobado para ver coherencias. Se puede cancelar la comprobación de disco, pero se recomienda que continúe. Windows comprobará ahora el disco.

Etapa 1: Examen de la estructura básica del sistema de archivos… 359424 registros de archivos procesados.

Comprobación de archivos completada. 21173 registros de archivos grandes procesados.

0 registros de archivos no válidos procesados.

Etapa 2: Examen de la vinculación de nombres de archivos… 34143 registros de análisis procesados.

464054 entradas de índice procesadas.

Comprobación de índices completada. 0 archivos no indizados examinados.

0 archivos no indizados recuperados en objetos perdidos.

34143 registros de análisis procesados.

Etapa 3: Examen de los descriptores de seguridad… Liberando 21 entradas de índice no usadas del índice $SII del archivo 0x9. Liberando 21 entradas de índice no usadas del índice $SDH del archivo 0x9. Liberando 21 descriptores de seguridad no usados. Comprobación de descriptores de seguridad completada. 52316 archivos de datos procesados.

CHKDSK está comprobando el diario USN… 27284384 bytes de USN procesados.

Se ha completado la comprobación del diario USN.

Etapa 4: Búsqueda de clústeres incorrectos en los datos del archivo de usuario… 359408 archivos procesados.

Comprobación de datos de archivo completada.

Etapa 5: Búsqueda de clústeres incorrectos disponibles… 18909546 clústeres disponibles procesados.

La comprobación del espacio disponible se completó.

Se examinó el sistema de archivos sin encontrar problemas. No se requieren más acciones.

124025826 KB de espacio total en disco. 47773704 KB en 195848 archivos. 139564 KB en 52317 índices. 0 KB en sectores defectuosos. 474374 KB en uso por el sistema. El archivo de registro ha ocupado 65536 kilobytes. 75638184 KB disponibles en disco.

  4096 bytes en cada unidad de asignación.

31006456 unidades de asignación en disco en total. 18909546 unidades de asignación disponibles en disco.

Información interna: 00 7c 05 00 70 c9 03 00 95 1d 07 00 00 00 00 00 .|…p… 54 01 00 00 0b 84 00 00 00 00 00 00 00 00 00 00 T…

Windows ha finalizado la comprobación del disco. Espere mientras se reinicia el sistema.


#15

Hola.

El equipo sigue con el mismo problema.??

En modo seguro puedes trabajar con el equipo sin problemas.??


#16

Si que es verdad que puedo hacer alguna cosa que en modo normal no puedo, como ejecutar el gestor de eventos y hacer una búsqueda desde el menu de inicio, pero otras cosas que he probado, como ejecutar iconos del menu de inicio no puedo.


#17

Bien… pues vamos a ver si desde modo seguro con conexión de red(para todos los pasos) puedes llegar a realizar todos estos pasos que te explico a continuación, síguelos en el orden indicado y leyendo todo lo explicado. :+1:

Si algún paso/ejecución de programa NO lograras hacerlo continua con el siguiente paso y luego comentas que ocurrió exactamente para NO poder hacerlo. :thinking:

:one: Desactiva temporalmente el Antivirus :arrow_forward: Cómo deshabilitar temporalmente su Antivirus, mientras estemos realizando TODOS los pasos.

Vamos a descargar en TU ESCRITORIO(y NO en otro lugar :face_with_monocle:) todas las herramientas que vamos a utilizar en este procedimiento (pero no las ejecutes todavía) :


:two: Ejecutas las herramientas de una en una y en el orden indicado :



CCleaner.-

  • Instalas y Ejecutas CCleaner siguiendo los pasos indicados en el manual.

  • Úsalo primero en su opción de Limpiador para borrar cookies, temporales de Internet y todos los archivos que te muestre como obsoletos.

  • Después usa su opción de Registro para limpiar todo el registro de Windows(haciendo copia de seguridad).

Malwarebytes.-

  • Instalas y Ejecutas MBAM siguiendo los pasos indicados en el manual.

  • Realiza un Análisis Completo. :white_check_mark:

  • Seleccionando TODOS a Cuarentena para enviarlo a la cuarentena y Reinicias el sistema.

  • En el apartado del manual :arrow_forward:Historial :arrow_backward: encontrarás el informe del MBAM, que debes copiar y pegar en tu próxima respuesta, para analizarlo.

AdwCleaner.-

  • Ejecuta Adwcleaner.exe.

  • Pulsamos en el botón Analizar ahora, y espera a que se realice el proceso, inmediatamente pulsa siempre sobre el botón Iniciar Reparación.

  • Espera a que se complete y sigue las instrucciones, si te pidiera Reiniciar el sistema Aceptas.

  • El log/informe lo encontramos en la pestaña “Informes”, volviendo a abrir el programa si fuese necesario, para poder copiarlo y pegarlo en tu próxima respuesta.

  • El informe también se puede encontrar en C:\AdwCleaner\Logs\AdwCleaner[C00].txt

Junkware Removal Tool.-

  • Ejecuta JRT.exe.

  • Y pulsar cualquier tecla para continuar, esperar pacientemente a que termine el proceso.

  • Si en algún momento te pide Reiniciar hazlo.

  • Al finalizar, un registro/informe (JRT.txt) se guardara en el escritorio y se abrirá automáticamente.

  • Copia y pega el contenido de JRT.txt en tu próxima respuesta.

Farbar Recovery Scan Tool.-

  • Ejecuta FRST.exe.

  • En el mensaje de la ventana del Disclaimer, pulsamos Yes

  • En la ventana principal pulsamos en el botón Scan y esperamos a que concluya el proceso.

  • Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.

:three: Poner los informes en tu próxima respuesta de :

  • Malwarebytes, AdwCleaner, JRT, FRST + Addition.txt, y en ese orden. :+1:

Debes copiarlos y pegarlos con todo su contenido y usaras varios mensajes si recibes un mensaje de error indicando que es muy largo(mas de 50.000 caracteres aprox.).

Y nos cuentas como funciona tu equipo en relación al problema planteado. :face_with_monocle:

Saludos Javier.


#18

Voy al lio…

Reinicio en modo seguro con red.

Paso 1: -No tengo antivirus instalado. He ido a mirar si el windows defender estaba activo pero al abrirlo se cierra la ventana aun estando en modo seguro.

-Descargo los programas en el escritorio

Paso 2: -Ejecuto Ccleaner…Limpiador y Registro. -Ejecuto Malwarebytes. -Ejecuto Adwcleaner. -Ejecuto JRT -Ejecuto FRST

Paso 3:

-Informe Malwarebytes:

Malwarebytes
www.malwarebytes.com

-Detalles del registro-
Fecha del análisis: 11/1/19
Hora del análisis: 21:52
Archivo de registro: d18bef20-15e2-11e9-a676-e0cb4ec62230.json

-Información del software-
Versión: 3.6.1.2711
Versión de los componentes: 1.0.508
Versión del paquete de actualización: 1.0.8211
Licencia: Gratis

-Información del sistema-
SO: Windows 10 (Build 17134.472)
CPU: x64
Sistema de archivos: NTFS
Usuario: DESKTOP-0KVORQ4\Dustito

-Resumen del análisis-
Tipo de análisis: Análisis de amenazas
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 296418
Amenazas detectadas: 4
Amenazas en cuarentena: 3
Tiempo transcurrido: 1 min, 10 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)

Módulo: 0
(No hay elementos maliciosos detectados)

Clave del registro: 0
(No hay elementos maliciosos detectados)

Valor del registro: 0
(No hay elementos maliciosos detectados)

Datos del registro: 0
(No hay elementos maliciosos detectados)

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 0
(No hay elementos maliciosos detectados)

Archivo: 4
Adware.Elex.ShrtCln, C:\USERS\DUSTITO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\SyncData.sqlite3, Sustituido, [259], [454693],1.0.8211
Adware.Elex.ShrtCln, C:\USERS\DUSTITO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Error durante la eliminación, [259], [454693],1.0.8211
Adware.Elex.ShrtCln, C:\USERS\DUSTITO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\SyncData.sqlite3, Sustituido, [259], [454693],1.0.8211
Adware.Elex.ShrtCln, C:\USERS\DUSTITO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Sustituido, [259], [454693],1.0.8211

Sector físico: 0
(No hay elementos maliciosos detectados)

WMI: 0
(No hay elementos maliciosos detectados)


(end)

-Informe AdwCleaner Analisis:

# -------------------------------
# Malwarebytes AdwCleaner 7.2.6.0
# -------------------------------
# Build:    12-18-2018
# Database: 2019-01-10.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start:    01-11-2019
# Duration: 00:00:14
# OS:       Windows 10 Pro
# Scanned:  32265
# Detected: 28


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

PUP.Optional.Legacy             C:\Users\Dustito\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ace Stream Media
PUP.Optional.Legacy             C:\Users\Dustito\AppData\LocalLow\.acestream
PUP.Optional.Legacy             C:\Users\Dustito\AppData\Roaming\.acestream
PUP.Optional.Legacy             C:\Users\Dustito\AppData\Roaming\acestream

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

PUP.Optional.ASMagicPlayer      HKCU\Software\Classes\acestream
PUP.Optional.AceStream          HKCU\Software\RegisteredApplications|AceStream
PUP.Optional.Legacy             HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\AceStream
PUP.Optional.Legacy             HKCU\Software\AceStream
PUP.Optional.Legacy             HKCU\Software\Classes\DVD\shell\PlayWithACEStream
PUP.Optional.Legacy             HKCU\Software\Classes\AudioCD\shell\PlayWithACEStream
PUP.Optional.Legacy             HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayVideoFilesOnArrival
PUP.Optional.Legacy             HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayVCDMovieOnArrival
PUP.Optional.Legacy             HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlaySVCDMovieOnArrival
PUP.Optional.Legacy             HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayMusicFilesOnArrival
PUP.Optional.Legacy             HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayDVDMovieOnArrival
PUP.Optional.Legacy             HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayDVDAudioOnArrival
PUP.Optional.Legacy             HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayCDAudioOnArrival
PUP.Optional.Legacy             HKCU\SOFTWARE\Classes\Applications\ace_player.exe
PUP.Optional.Legacy             HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{FFDE854E-E955-4A3B-A993-AD556E9277BF}C:\users\dustito\appdata\roaming\acestream\engine\ace_engine.exe
PUP.Optional.Legacy             HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{D197D53E-64F5-44AA-8965-7438CE063C81}C:\users\dustito\appdata\roaming\acestream\engine\ace_engine.exe
PUP.Optional.Legacy             HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{7468BE9F-7752-478E-A0C3-6B7656FA52B9}C:\users\dustito\appdata\roaming\acestream\engine\ace_engine.exe
PUP.Optional.Legacy             HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{402A0F3E-0607-46CB-8678-AACBDF6508A8}C:\users\dustito\appdata\roaming\acestream\engine\ace_engine.exe
PUP.Optional.Legacy             HKCU\Software\Classes\.acestream
PUP.Optional.Legacy             HKCU\Software\Classes\.tslive
PUP.Optional.Legacy             HKCU\Software\Classes\.acemedia
PUP.Optional.Legacy             HKCU\Software\Classes\.acelive

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

PUP.Optional.Legacy             http://www.istartsurf.com/?type=hp&ts=1411421379&from=smt&uid=WDCXWD6401AALS-00E8B0_WD-WMATV592412624126
PUP.Optional.SofTonicAssistant  Softonic ES

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.



########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########

-Informe AdwCleaner Limpieza:

# -------------------------------
# Malwarebytes AdwCleaner 7.2.6.0
# -------------------------------
# Build:    12-18-2018
# Database: 2019-01-10.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    01-11-2019
# Duration: 00:00:02
# OS:       Windows 10 Pro
# Cleaned:  27
# Failed:   1


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted       C:\Users\Dustito\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ace Stream Media
Deleted       C:\Users\Dustito\AppData\LocalLow\.acestream
Deleted       C:\Users\Dustito\AppData\Roaming\.acestream
Deleted       C:\Users\Dustito\AppData\Roaming\acestream

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted       HKCU\Software\Classes\acestream
Deleted       HKCU\Software\RegisteredApplications|AceStream
Deleted       HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\AceStream
Deleted       HKCU\Software\AceStream
Deleted       HKCU\Software\Classes\DVD\shell\PlayWithACEStream
Deleted       HKCU\Software\Classes\AudioCD\shell\PlayWithACEStream
Deleted       HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayVideoFilesOnArrival
Deleted       HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayVCDMovieOnArrival
Deleted       HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlaySVCDMovieOnArrival
Deleted       HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayMusicFilesOnArrival
Deleted       HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayDVDMovieOnArrival
Deleted       HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayDVDAudioOnArrival
Deleted       HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\ACEStreamPlayCDAudioOnArrival
Deleted       HKCU\SOFTWARE\Classes\Applications\ace_player.exe
Deleted       HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{FFDE854E-E955-4A3B-A993-AD556E9277BF}C:\users\dustito\appdata\roaming\acestream\engine\ace_engine.exe
Deleted       HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{D197D53E-64F5-44AA-8965-7438CE063C81}C:\users\dustito\appdata\roaming\acestream\engine\ace_engine.exe
Deleted       HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{7468BE9F-7752-478E-A0C3-6B7656FA52B9}C:\users\dustito\appdata\roaming\acestream\engine\ace_engine.exe
Deleted       HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{402A0F3E-0607-46CB-8678-AACBDF6508A8}C:\users\dustito\appdata\roaming\acestream\engine\ace_engine.exe
Deleted       HKCU\Software\Classes\.acestream
Deleted       HKCU\Software\Classes\.tslive
Deleted       HKCU\Software\Classes\.acemedia
Deleted       HKCU\Software\Classes\.acelive

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

Not Deleted   http://www.istartsurf.com/?type=hp&ts=1411421379&from=smt&uid=WDCXWD6401AALS-00E8B0_WD-WMATV592412624126
Deleted       Softonic ES

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [4490 octets] - [11/01/2019 21:58:50]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

-Informe Junkware Removal Tool:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 10 Enterprise x64 
Ran by Dustito (Limited) on 11/01/2019 at 22:52:55,78
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 1 

Successfully deleted: C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio (Folder) 



Registry: 0 





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 11/01/2019 at 22:54:05,07
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

-Informe Farbar Recovery Scan Tool - Frst:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09.01.2019 01
Ran by Dustito (administrator) on DESKTOP-0KVORQ4 (11-01-2019 23:37:34)
Running from C:\Users\Dustito\Desktop
Loaded Profiles: Dustito (Available Profiles: Dustito)
Platform: Windows 10 Pro Version 1803 17134.472 (X64) Language: Español (España, internacional)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Safe Mode (with Networking)
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\MsMpEng.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Google Inc.) C:\Users\Dustito\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Dustito\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Dustito\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Dustito\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Dustito\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Dustito\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Dustito\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Dustito\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Dustito\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Dustito\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Dustito\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Dustito\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Dustito\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Dustito\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Dustito\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [472992 2013-03-21] (Adobe Systems Incorporated)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM-x32\...\Run: [AdobeCEPServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe [1039240 2013-05-16] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle Corporation)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\Run: [Google Update] => C:\Users\Dustito\AppData\Local\Google\Update\1.3.33.23\GoogleUpdateCore.exe [605992 2018-12-20] (Google Inc.)
HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\Run: [Steam] => "D:\Juegos\Steam\steam.exe" -silent
HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\Run: [AceStream] => C:\Users\Dustito\AppData\Roaming\ACEStream\engine\ace_engine.exe
HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\Run: [Discord] => C:\Users\Dustito\AppData\Local\Discord\app-0.0.301\Discord.exe [57816920 2018-04-30] (Discord Inc.)
HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\MountPoints2: {bd43b402-0d25-11e8-8d6c-806e6f6e6963} - "E:\setup.exe" 
HKLM\...\Drivers32: [VIDC.RTV1] => C:\WINDOWS\system32\rtvcvfw64.dll [246272 2012-09-28] ()
HKLM\...\Drivers32-x32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] ()
Startup: C:\Users\Dustito\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Twitch.lnk [2018-11-27]
ShortcutTarget: Twitch.lnk -> D:\Programas\Twitch\Bin\Twitch.exe (No File)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b966607f-6443-4f4a-a47c-1e6cc2d582a3}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> D:\Programas\java64\bin\ssv.dll => No File
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> D:\Programas\java64\bin\jp2ssv.dll => No File
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> D:\Programas\java\bin\ssv.dll => No File
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> D:\Programas\java\bin\jp2ssv.dll => No File

FireFox:
========
FF DefaultProfile: qwkxqgi5.default
FF ProfilePath: C:\Users\Dustito\AppData\Roaming\Mozilla\Firefox\Profiles\qwkxqgi5.default [2019-01-11]
FF HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\Firefox\Extensions: [[email protected]] - C:\Users\Dustito\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => not found
FF Plugin: @java.com/DTPlugin,version=11.181.2 -> D:\Programas\java64\bin\dtplugin\npDeployJava1.dll [No File]
FF Plugin: @java.com/JavaPlugin,version=11.181.2 -> D:\Programas\java64\bin\plugin2\npjp2.dll [No File]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.2 -> D:\Programas\VLC\npvlc.dll [No File]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2013-03-21] (Adobe Systems)
FF Plugin-x32: @java.com/DTPlugin,version=11.181.2 -> D:\Programas\java\bin\dtplugin\npDeployJava1.dll [No File]
FF Plugin-x32: @java.com/JavaPlugin,version=11.181.2 -> D:\Programas\java\bin\plugin2\npjp2.dll [No File]
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-05-22] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-05-22] (NVIDIA Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2013-03-21] (Adobe Systems)
FF Plugin HKU\S-1-5-21-2553252518-2961909032-622737996-1001: @acestream.net/acestreamplugin,version=3.1.16.1 -> C:\Users\Dustito\AppData\Roaming\ACEStream\player\npace_plugin.dll [No File]
FF Plugin HKU\S-1-5-21-2553252518-2961909032-622737996-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Dustito\AppData\Local\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc.)
FF Plugin HKU\S-1-5-21-2553252518-2961909032-622737996-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Dustito\AppData\Local\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc.)

Chrome: 
=======
CHR StartupUrls: Default -> "hxxps://www.google.com/","hxxp://www.istartsurf.com/?type=hp&ts=1411421379&from=smt&uid=WDCXWD6401AALS-00E8B0_WD-WMATV592412624126"
CHR Profile: C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default [2019-01-11]
CHR Extension: (Presentaciones) - C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-02-09]
CHR Extension: (Documentos) - C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-02-09]
CHR Extension: (Google Drive) - C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-02-09]
CHR Extension: (Web Developer) - C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbameneiokkgbdmiekhjnmfkcnldhhm [2018-02-09]
CHR Extension: (MEGA) - C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2019-01-04]
CHR Extension: (YouTube) - C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-02-09]
CHR Extension: (Mobile/Responsive Web Design Tester) - C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\elmekokodcohlommfikpmojheggnbelo [2018-02-09]
CHR Extension: (Hojas de cálculo) - C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-02-09]
CHR Extension: (Avira Navegación segura) - C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2019-01-05]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-28]
CHR Extension: (Helium Backup) - C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpglbgbpeobllokpmeagpoagjbfknanl [2018-02-09]
CHR Extension: (Google Photos) - C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcglmfcclpfgljeaiahehebeoaiicbko [2018-02-09]
CHR Extension: (Windscribe - Free VPN and Ad Blocker) - C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnmpcagpplmpfojmgmnngilcnanddlhb [2018-08-21]
CHR Extension: (Window Resizer) - C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkelicaakdanhinjdeammmilcgefonfh [2018-10-22]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2018-04-11]
CHR Extension: (Google Maps) - C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2018-02-09]
CHR Extension: (Ace Script) - C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2018-12-13]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (TunnelBear VPN) - C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\omdakjcmkglenbhjadbccaookpfjihpa [2019-01-10]
CHR Extension: (Gmail) - C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-02-09]
CHR Extension: (Chrome Media Router) - C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-18]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2553252518-2961909032-622737996-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2553252518-2961909032-622737996-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7112264 2018-11-11] (GOG.com)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6347056 2018-09-19] (Malwarebytes)
S2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [786800 2018-11-16] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [786800 2018-11-16] (NVIDIA Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4737448 2018-07-15] (Microsoft Corporation)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\NisSrv.exe [3880120 2018-12-11] (Microsoft Corporation)
S3 WiaRpc; C:\WINDOWS\System32\wiarpc.dll [81920 2018-04-12] ()
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MsMpEng.exe [114208 2018-12-11] (Microsoft Corporation)
S3 GalaxyClientService; "D:\Juegos\GOG Galaxy\GalaxyClientService.exe" [X]
S2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 
S2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S1 HWiNFO; C:\WINDOWS\system32\drivers\HWiNFO64A.SYS [65320 2019-01-07] (REALiX(tm))
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [261032 2019-01-11] (Malwarebytes)
R3 MTsensor; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [17280 2018-02-09] ()
S3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_f32bf428bbff8aa5\nvlddmkm.sys [17194584 2018-05-23] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2018-10-25] (NVIDIA Corporation)
S3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [70024 2018-10-01] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [74576 2018-10-01] (NVIDIA Corporation)
S3 phantomtap; C:\WINDOWS\System32\drivers\phantomtap.sys [45056 2018-11-27] (The OpenVPN Project)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [889584 2015-08-31] (Realtek )
S3 UHSfiltv; C:\WINDOWS\system32\drivers\UHSfiltv.sys [32264 2018-02-09] (Creative Technology Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46680 2018-12-11] (Microsoft Corporation)
S0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [330936 2018-12-11] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62136 2018-12-11] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-01-11 23:37 - 2019-01-11 23:37 - 000016786 _____ C:\Users\Dustito\Desktop\FRST.txt
2019-01-11 23:37 - 2019-01-11 23:37 - 000000000 ____D C:\FRST
2019-01-11 22:54 - 2019-01-11 22:54 - 000000689 _____ C:\Users\Dustito\Desktop\JRT.txt
2019-01-11 22:01 - 2019-01-11 22:01 - 000261032 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2019-01-11 21:58 - 2019-01-11 21:59 - 000000000 ____D C:\AdwCleaner
2019-01-11 21:52 - 2019-01-11 21:52 - 000000000 ____D C:\Users\Dustito\AppData\Local\mbam
2019-01-11 21:51 - 2019-01-11 22:11 - 000263640 _____ C:\WINDOWS\ntbtlog.txt
2019-01-11 21:51 - 2019-01-11 21:52 - 000002093 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-01-11 21:51 - 2019-01-11 21:51 - 000000000 ____D C:\Users\Dustito\AppData\Local\mbamtray
2019-01-11 21:51 - 2019-01-11 21:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-01-11 21:51 - 2019-01-11 21:51 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-01-11 21:51 - 2019-01-11 21:51 - 000000000 ____D C:\Program Files\Malwarebytes
2019-01-11 21:51 - 2018-12-04 08:09 - 000152688 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2019-01-11 21:48 - 2019-01-11 21:48 - 000027894 _____ C:\Users\Dustito\Documents\registroccleaner.reg
2019-01-11 21:00 - 2019-01-11 21:00 - 000000300 ____H C:\WINDOWS\Tasks\CCleaner Update.job
2019-01-11 20:58 - 2019-01-11 20:58 - 002425856 _____ (Farbar) C:\Users\Dustito\Desktop\FRST64.exe
2019-01-11 20:57 - 2019-01-11 20:58 - 007320272 _____ (Malwarebytes) C:\Users\Dustito\Desktop\adwcleaner_7.2.6.0.exe
2019-01-11 20:57 - 2019-01-11 20:57 - 001790024 _____ (Malwarebytes) C:\Users\Dustito\Desktop\JRT.exe
2019-01-11 20:56 - 2019-01-11 20:56 - 081227760 _____ (Malwarebytes ) C:\Users\Dustito\Desktop\mb3-setup-consumer-3.6.1.2711-1.0.508-1.0.8211.exe
2019-01-11 20:55 - 2019-01-11 20:55 - 019299120 _____ (Piriform Software Ltd) C:\Users\Dustito\Desktop\ccsetup551.exe
2019-01-11 20:54 - 2019-01-11 20:54 - 019299120 _____ (Piriform Software Ltd) C:\Users\Dustito\Downloads\Sin confirmar 164573.crdownload
2019-01-10 22:01 - 2019-01-10 22:01 - 000072065 _____ C:\Users\Dustito\Downloads\What.They.Had.2018.1080p.WEB-DL.DD5.1.H264-FGT-[rarbg.to].torrent
2019-01-10 00:35 - 2019-01-10 00:35 - 019229160 _____ (Microsoft Corporation) C:\Users\Dustito\Downloads\MediaCreationTool1809.exe
2019-01-09 23:27 - 2019-01-09 23:28 - 000000299 _____ C:\Users\Dustito\Downloads\Chequear_ Disco_Windows.bat
2019-01-09 20:12 - 2019-01-09 20:12 - 062672552 _____ (Amazon) C:\Users\Dustito\Downloads\Sin confirmar 4414.crdownload
2019-01-09 19:28 - 2019-01-11 22:01 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2019-01-09 19:26 - 2019-01-09 19:26 - 000000036 _____ C:\Users\Dustito\Downloads\Apagar Windows 8-Iniciar a prueba de fallos.bat
2019-01-09 17:42 - 2019-01-09 17:42 - 000082944 _____ C:\Users\Dustito\Desktop\etiqueta.pdf
2019-01-09 00:48 - 2019-01-09 00:48 - 000522710 _____ C:\Users\Dustito\Downloads\AppsDiagnostic.diagcab
2019-01-09 00:30 - 2019-01-09 00:32 - 000000000 _____ C:\Recovery.txt
2019-01-09 00:00 - 2019-01-09 00:00 - 014148941 _____ C:\Users\Dustito\Downloads\windows10.0-kb4456655-x64_fca3f0c885da48efc6f9699b0c1eaf424e779434.msu
2019-01-08 23:54 - 2019-01-08 23:54 - 000000656 _____ C:\Users\Dustito\Downloads\wu10.diagcab
2019-01-08 23:48 - 2019-01-08 23:48 - 841685116 _____ C:\Users\Dustito\Downloads\windows10.0-kb4480966-x64_e92458eb0968b463f1bb84fec0478d542adc5b56.msu
2019-01-08 23:42 - 2018-09-20 05:12 - 001483576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2019-01-08 23:36 - 2019-01-08 23:36 - 000032238 _____ C:\Users\Dustito\Documents\cc_20190108_233644.reg
2019-01-07 23:18 - 2019-01-07 23:18 - 000000000 ____D C:\Users\Dustito\AppData\Roaming\Nidhogg
2019-01-07 23:11 - 2019-01-07 23:11 - 008553176 _____ (Martin Malík - REALiX ) C:\Users\Dustito\Downloads\hwi_600.exe
2019-01-07 23:11 - 2019-01-07 23:11 - 000065320 _____ (REALiX(tm)) C:\WINDOWS\system32\Drivers\HWiNFO64A.SYS
2019-01-07 23:11 - 2019-01-07 23:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO64
2019-01-07 23:05 - 2019-01-07 23:05 - 000000711 _____ C:\Users\Public\Desktop\CPUID HWMonitor.lnk
2019-01-07 23:05 - 2019-01-07 23:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2019-01-07 23:04 - 2019-01-07 23:04 - 001264096 _____ (CPUID, Inc. ) C:\Users\Dustito\Downloads\hwmonitor_1.38.exe
2019-01-07 23:01 - 2019-01-07 23:01 - 022588980 _____ C:\Users\Dustito\Downloads\[Guru3D.com]-RTSSSetup720 (1).zip
2019-01-07 22:51 - 2019-01-07 22:51 - 022588980 _____ C:\Users\Dustito\Downloads\[Guru3D.com]-RTSSSetup720.zip
2019-01-07 22:51 - 2019-01-07 22:51 - 000000000 ____D C:\Users\Dustito\Downloads\[Guru3D.com]-RTSSSetup720
2019-01-07 22:46 - 2019-01-07 22:52 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2019-01-07 22:46 - 2019-01-07 22:46 - 000000000 ____D C:\Users\Dustito\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2019-01-07 22:45 - 2019-01-07 22:45 - 000000768 _____ C:\Users\Dustito\Desktop\MSI Afterburner.lnk
2019-01-07 22:45 - 2019-01-07 22:45 - 000000000 ____D C:\Users\Dustito\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2019-01-07 22:44 - 2019-01-07 22:44 - 039514610 _____ C:\Users\Dustito\Downloads\MSIAfterburnerSetup.zip
2019-01-07 22:44 - 2019-01-07 22:44 - 000000000 ____D C:\Users\Dustito\Downloads\MSIAfterburnerSetup
2019-01-07 11:23 - 2019-01-07 11:23 - 000004844 _____ C:\Users\Dustito\Downloads\document.pdf
2019-01-01 02:12 - 2019-01-01 02:12 - 000000000 ____D C:\Users\Dustito\AppData\LocalLow\Clever Endeavour Games
2018-12-31 12:50 - 2018-12-31 12:51 - 000000000 ____D C:\Users\Dustito\.deeparteffects
2018-12-31 12:50 - 2018-12-31 12:50 - 000000857 _____ C:\Users\Dustito\Desktop\Deep Art Effects.lnk
2018-12-31 12:50 - 2018-12-31 12:50 - 000000000 ____D C:\Users\Dustito\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DeepArtEffects
2018-12-31 12:48 - 2018-12-31 12:49 - 758056100 _____ C:\Users\Dustito\Downloads\deep-art-effects-win-setup-1.0.11.exe
2018-12-31 11:41 - 2018-12-31 11:41 - 007885637 _____ C:\Users\Dustito\Downloads\Prisma v2.8.4.342 arm64.apk
2018-12-31 11:37 - 2018-12-31 11:38 - 012873753 _____ C:\Users\Dustito\Downloads\prisma-v3.1.0.358-androidcottage.com.apk
2018-12-31 11:36 - 2018-12-31 11:37 - 012873753 _____ C:\Users\Dustito\Downloads\Prisma-v3.1.0.358- Atualizado.apk
2018-12-31 11:32 - 2018-12-31 11:32 - 012873753 _____ C:\Users\Dustito\Downloads\Prisma-v3.1.0.358 (1).apk
2018-12-31 10:55 - 2018-12-31 10:55 - 012873753 _____ C:\Users\Dustito\Downloads\Prisma-v3.1.0.358.apk
2018-12-30 22:10 - 2018-12-30 22:10 - 000089435 _____ C:\Users\Dustito\Downloads\The.Old.Man.and.the.Gun.2018.1080p.WEBRip.x264.AAC2.0-SHITBOX-[rarbg.to].torrent
2018-12-30 21:08 - 2018-12-30 21:08 - 000000000 ____D C:\Users\Dustito\Documents\My Games
2018-12-30 20:58 - 2018-12-30 20:58 - 000000209 _____ C:\Users\Dustito\Desktop\Sonic & All-Stars Racing Transformed Collection.url
2018-12-30 20:57 - 2018-12-30 20:57 - 000000209 _____ C:\Users\Dustito\Desktop\Rocket League.url
2018-12-30 20:56 - 2018-12-30 20:56 - 000000209 _____ C:\Users\Dustito\Desktop\Ultimate Chicken Horse.url
2018-12-30 20:56 - 2018-12-30 20:56 - 000000209 _____ C:\Users\Dustito\Desktop\SpeedRunners.url
2018-12-30 20:56 - 2018-12-30 20:56 - 000000209 _____ C:\Users\Dustito\Desktop\Crawl.url
2018-12-30 20:56 - 2018-12-30 20:56 - 000000208 _____ C:\Users\Dustito\Desktop\Nidhogg.url
2018-12-30 20:55 - 2018-12-30 20:55 - 000000209 _____ C:\Users\Dustito\Desktop\Castle Crashers.url
2018-12-30 20:55 - 2018-12-30 20:55 - 000000209 _____ C:\Users\Dustito\Desktop\Broforce.url
2018-12-30 20:54 - 2018-12-30 20:54 - 000000209 _____ C:\Users\Dustito\Desktop\Keep Talking and Nobody Explodes.url
2018-12-29 23:22 - 2018-12-29 23:22 - 000140602 _____ C:\Users\Dustito\Downloads\Black.Mirror.Bandersnatch.2018.REPACK.1080p.WEB.X264-DEFLATE-[rarbg.to].torrent
2018-12-20 20:28 - 2018-12-14 13:24 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2018-12-20 20:28 - 2018-12-14 08:29 - 006567472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-12-20 20:28 - 2018-12-14 08:29 - 001130760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2018-12-20 20:28 - 2018-12-14 08:25 - 001035256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-12-20 20:28 - 2018-12-14 08:23 - 001221432 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2018-12-20 20:28 - 2018-12-14 08:23 - 001029944 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2018-12-20 20:28 - 2018-12-14 08:23 - 000566568 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2018-12-20 20:28 - 2018-12-14 08:23 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2018-12-20 20:28 - 2018-12-14 08:23 - 000076088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2018-12-20 20:28 - 2018-12-14 08:22 - 009084216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-12-20 20:28 - 2018-12-14 08:22 - 007520104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-12-20 20:28 - 2018-12-14 08:21 - 001457240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-12-20 20:28 - 2018-12-14 08:21 - 001257672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-12-20 20:28 - 2018-12-14 08:21 - 001140480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-12-20 20:28 - 2018-12-14 08:21 - 001098064 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2018-12-20 20:28 - 2018-12-14 08:21 - 000982912 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-12-20 20:28 - 2018-12-14 08:13 - 005775872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2018-12-20 20:28 - 2018-12-14 08:12 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2018-12-20 20:28 - 2018-12-14 08:10 - 001295360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2018-12-20 20:28 - 2018-12-14 08:07 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-12-20 20:28 - 2018-12-14 07:55 - 003396608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-12-20 20:28 - 2018-12-14 07:55 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2018-12-20 20:28 - 2018-12-14 07:54 - 006032384 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2018-12-20 20:28 - 2018-12-14 07:54 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2018-12-20 20:28 - 2018-12-14 07:54 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-12-20 20:28 - 2018-12-14 07:53 - 007573504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-12-20 20:28 - 2018-12-14 07:52 - 002173440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-12-20 20:28 - 2018-12-14 07:52 - 001826816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2018-12-20 20:28 - 2018-12-14 07:51 - 001551360 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-12-20 20:28 - 2018-12-14 07:50 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-12-20 20:28 - 2018-12-14 06:34 - 000001312 _____ C:\WINDOWS\system32\tcbres.wim
2018-12-19 21:47 - 2018-12-19 21:47 - 000087419 _____ C:\Users\Dustito\Downloads\The.Sisters.Brothers.2018.1080p.WEB-DL.DD5.1.H264-FGT-[rarbg.to].torrent
2018-12-16 18:40 - 2018-12-16 18:40 - 000000000 ____D C:\Users\Dustito\AppData\LocalLow\Team Cherry
2018-12-15 21:14 - 2018-12-15 21:14 - 062627744 _____ (Amazon) C:\Users\Dustito\Downloads\AmazonMusicInstaller.exe
2018-12-15 00:16 - 2018-12-15 00:16 - 000000000 ____D C:\Users\Dustito\Downloads\FIFA19 UPDATE V5 + Crk + Fix
2018-12-15 00:14 - 2018-12-15 00:15 - 1834690042 _____ C:\Users\Dustito\Downloads\FIFA19 UPDATE V5 + Crk + Fix.rar
2018-12-14 21:50 - 2018-12-14 21:55 - 000000000 ____D C:\Users\Dustito\Documents\FIFA 19
2018-12-14 00:49 - 2018-12-14 00:49 - 000000666 _____ C:\Users\Public\Desktop\FIFA 19.lnk
2018-12-14 00:49 - 2018-12-14 00:49 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2018-12-14 00:04 - 2018-12-14 00:04 - 033542144 _____ C:\Users\Dustito\Downloads\Sin confirmar 367201.crdownload
2018-12-13 22:49 - 2018-12-13 22:49 - 000000696 _____ C:\Users\Dustito\AppData\Local\recently-used.xbel
2018-12-13 21:36 - 2018-12-08 13:48 - 000034104 _____ C:\WINDOWS\system32\SyncAppvPublishingServer.exe
2018-12-13 21:36 - 2018-12-08 13:47 - 001786896 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2018-12-13 21:36 - 2018-12-08 13:47 - 001627656 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2018-12-13 21:36 - 2018-12-08 13:47 - 001422864 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2018-12-13 21:36 - 2018-12-08 13:47 - 001048712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2018-12-13 21:36 - 2018-12-08 13:47 - 001038352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll
2018-12-13 21:36 - 2018-12-08 13:47 - 000954384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVManifest.dll
2018-12-13 21:36 - 2018-12-08 13:47 - 000830480 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2018-12-13 21:36 - 2018-12-08 13:47 - 000825352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2018-12-13 21:36 - 2018-12-08 13:47 - 000750096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2018-12-13 21:36 - 2018-12-08 13:47 - 000670224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2018-12-13 21:36 - 2018-12-08 13:47 - 000652296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2018-12-13 21:36 - 2018-12-08 13:47 - 000645320 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2018-12-13 21:36 - 2018-12-08 13:47 - 000495632 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
2018-12-13 21:36 - 2018-12-08 13:47 - 000399880 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll
2018-12-13 21:36 - 2018-12-08 13:47 - 000258064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVFileSystemMetadata.dll
2018-12-13 21:36 - 2018-12-08 13:47 - 000231440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVShNotify.exe
2018-12-13 21:36 - 2018-12-08 13:47 - 000228368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamMap.dll
2018-12-13 21:36 - 2018-12-08 13:47 - 000201744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamingUX.dll
2018-12-13 21:36 - 2018-12-08 13:47 - 000180752 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVDllSurrogate.exe
2018-12-13 21:36 - 2018-12-08 13:47 - 000173072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVNice.exe
2018-12-13 21:36 - 2018-12-08 13:46 - 000549760 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2018-12-13 21:36 - 2018-12-08 13:43 - 000304144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssecflt.sys
2018-12-13 21:36 - 2018-12-08 13:42 - 004527800 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2018-12-13 21:36 - 2018-12-08 13:42 - 001634944 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2018-12-13 21:36 - 2018-12-08 13:42 - 001616824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2018-12-13 21:36 - 2018-12-08 13:41 - 002394960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2018-12-13 21:36 - 2018-12-08 13:41 - 000481880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2018-12-13 21:36 - 2018-12-08 13:40 - 001454648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2018-12-13 21:36 - 2018-12-08 13:39 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2018-12-13 21:36 - 2018-12-08 13:29 - 013572608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2018-12-13 21:36 - 2018-12-08 13:29 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2018-12-13 21:36 - 2018-12-08 13:28 - 012710400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-12-13 21:36 - 2018-12-08 13:28 - 006586880 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2018-12-13 21:36 - 2018-12-08 13:28 - 004708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2018-12-13 21:36 - 2018-12-08 13:27 - 005657600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2018-12-13 21:36 - 2018-12-08 13:27 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.SecureAssessment.dll
2018-12-13 21:36 - 2018-12-08 13:27 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storqosflt.sys
2018-12-13 21:36 - 2018-12-08 13:27 - 000068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdBth.dll
2018-12-13 21:36 - 2018-12-08 13:27 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdBth.dll
2018-12-13 21:36 - 2018-12-08 13:25 - 012500992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2018-12-13 21:36 - 2018-12-08 13:25 - 011902976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-12-13 21:36 - 2018-12-08 13:23 - 003649024 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-12-13 21:36 - 2018-12-08 13:23 - 002892288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-12-13 21:36 - 2018-12-08 13:23 - 001856512 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2018-12-13 21:36 - 2018-12-08 13:23 - 001661440 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2018-12-13 21:36 - 2018-12-08 13:23 - 000503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2018-12-13 21:36 - 2018-12-08 13:23 - 000471040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcSpecfc.dll
2018-12-13 21:36 - 2018-12-08 13:22 - 001586176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2018-12-13 21:36 - 2018-12-08 13:22 - 001469952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2018-12-13 21:36 - 2018-12-08 13:22 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2018-12-13 21:36 - 2018-12-08 09:12 - 000272408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll
2018-12-13 21:36 - 2018-12-08 09:12 - 000269336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2018-12-13 21:36 - 2018-12-08 09:12 - 000092688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2018-12-13 21:36 - 2018-12-08 09:07 - 005625352 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2018-12-13 21:36 - 2018-12-08 09:07 - 001328632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2018-12-13 21:36 - 2018-12-08 09:07 - 001063416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2018-12-13 21:36 - 2018-12-08 09:06 - 001017168 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2018-12-13 21:36 - 2018-12-08 09:06 - 000777512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2018-12-13 21:36 - 2018-12-08 09:06 - 000709936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-12-13 21:36 - 2018-12-08 09:06 - 000491416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2018-12-13 21:36 - 2018-12-08 09:06 - 000433168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2018-12-13 21:36 - 2018-12-08 09:06 - 000249088 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2018-12-13 21:36 - 2018-12-08 09:05 - 007436216 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-12-13 21:36 - 2018-12-08 09:05 - 002822656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-12-13 21:36 - 2018-12-08 09:05 - 002463384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2018-12-13 21:36 - 2018-12-08 09:05 - 001935008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2018-12-13 21:36 - 2018-12-08 09:05 - 001209888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2018-12-13 21:36 - 2018-12-08 09:05 - 001018880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2018-12-13 21:36 - 2018-12-08 09:05 - 000793592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2018-12-13 21:36 - 2018-12-08 09:05 - 000706040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2018-12-13 21:36 - 2018-12-08 09:05 - 000594224 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2018-12-13 21:36 - 2018-12-08 09:05 - 000421176 _____ (Microsoft Corporation) C:\WINDOWS\system32\xbgmengine.dll
2018-12-13 21:36 - 2018-12-08 09:05 - 000413920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2018-12-13 21:36 - 2018-12-08 09:05 - 000171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2018-12-13 21:36 - 2018-12-08 09:05 - 000130312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2018-12-13 21:36 - 2018-12-08 09:05 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fileinfo.sys
2018-12-13 21:36 - 2018-12-08 09:04 - 004404720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2018-12-13 21:36 - 2018-12-08 09:04 - 002590296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2018-12-13 21:36 - 2018-12-08 09:04 - 002371296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2018-12-13 21:36 - 2018-12-08 09:04 - 001943328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-12-13 21:36 - 2018-12-08 09:04 - 001188512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-12-13 21:36 - 2018-12-08 09:04 - 001150312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll
2018-12-13 21:36 - 2018-12-08 09:04 - 000885760 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2018-12-13 21:36 - 2018-12-08 09:04 - 000604984 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2018-12-13 21:36 - 2018-12-08 09:04 - 000527160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2018-12-13 21:36 - 2018-12-08 09:04 - 000416024 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2018-12-13 21:36 - 2018-12-08 09:04 - 000413176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2018-12-13 21:36 - 2018-12-08 09:04 - 000375608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2018-12-13 21:36 - 2018-12-08 09:04 - 000335672 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2018-12-13 21:36 - 2018-12-08 09:04 - 000268280 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2018-12-13 21:36 - 2018-12-08 09:04 - 000260800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2018-12-13 21:36 - 2018-12-08 09:04 - 000158624 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2018-12-13 21:36 - 2018-12-08 09:04 - 000128824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2018-12-13 21:36 - 2018-12-08 09:04 - 000058168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\iorate.sys
2018-12-13 21:36 - 2018-12-08 09:04 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2018-12-13 21:36 - 2018-12-08 08:49 - 025855488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-12-13 21:36 - 2018-12-08 08:47 - 000861744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2018-12-13 21:36 - 2018-12-08 08:47 - 000785760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2018-12-13 21:36 - 2018-12-08 08:46 - 002331480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2018-12-13 21:36 - 2018-12-08 08:46 - 001989040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2018-12-13 21:36 - 2018-12-08 08:46 - 001397104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVP9DEC.dll
2018-12-13 21:36 - 2018-12-08 08:46 - 000665224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2018-12-13 21:36 - 2018-12-08 08:46 - 000457056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll
2018-12-13 21:36 - 2018-12-08 08:46 - 000101192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2018-12-13 21:36 - 2018-12-08 08:45 - 006043496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2018-12-13 21:36 - 2018-12-08 08:45 - 004789952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2018-12-13 21:36 - 2018-12-08 08:45 - 002307240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2018-12-13 21:36 - 2018-12-08 08:45 - 001805656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2018-12-13 21:36 - 2018-12-08 08:45 - 001620472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2018-12-13 21:36 - 2018-12-08 08:45 - 001379816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2018-12-13 21:36 - 2018-12-08 08:45 - 001011872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2018-12-13 21:36 - 2018-12-08 08:45 - 000567256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2018-12-13 21:36 - 2018-12-08 08:45 - 000356864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2018-12-13 21:36 - 2018-12-08 08:45 - 000129296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2018-12-13 21:36 - 2018-12-08 08:42 - 022715392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-12-13 21:36 - 2018-12-08 08:42 - 009084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2018-12-13 21:36 - 2018-12-08 08:41 - 007057408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2018-12-13 21:36 - 2018-12-08 08:40 - 004710912 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2018-12-13 21:36 - 2018-12-08 08:40 - 004384768 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2018-12-13 21:36 - 2018-12-08 08:39 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnsruprov.dll
2018-12-13 21:36 - 2018-12-08 08:38 - 022016000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2018-12-13 21:36 - 2018-12-08 08:38 - 003392000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2018-12-13 21:36 - 2018-12-08 08:38 - 002739200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2018-12-13 21:36 - 2018-12-08 08:38 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\eeprov.dll
2018-12-13 21:36 - 2018-12-08 08:38 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2018-12-13 21:36 - 2018-12-08 08:38 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataUsageLiveTileTask.exe
2018-12-13 21:36 - 2018-12-08 08:38 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2018-12-13 21:36 - 2018-12-08 08:38 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcnfs.sys
2018-12-13 21:36 - 2018-12-08 08:38 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2018-12-13 21:36 - 2018-12-08 08:37 - 002825728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2018-12-13 21:36 - 2018-12-08 08:37 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2018-12-13 21:36 - 2018-12-08 08:37 - 000386048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2018-12-13 21:36 - 2018-12-08 08:37 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataUsageHandlers.dll
2018-12-13 21:36 - 2018-12-08 08:37 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2018-12-13 21:36 - 2018-12-08 08:37 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\appsruprov.dll
2018-12-13 21:36 - 2018-12-08 08:37 - 000157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\energyprov.dll
2018-12-13 21:36 - 2018-12-08 08:37 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2018-12-13 21:36 - 2018-12-08 08:37 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2018-12-13 21:36 - 2018-12-08 08:36 - 003381248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2018-12-13 21:36 - 2018-12-08 08:36 - 003090432 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2018-12-13 21:36 - 2018-12-08 08:36 - 002364928 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2018-12-13 21:36 - 2018-12-08 08:36 - 001768448 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2018-12-13 21:36 - 2018-12-08 08:36 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-12-13 21:36 - 2018-12-08 08:36 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2018-12-13 21:36 - 2018-12-08 08:36 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2018-12-13 21:36 - 2018-12-08 08:36 - 000356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2018-12-13 21:36 - 2018-12-08 08:36 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2018-12-13 21:36 - 2018-12-08 08:36 - 000153600 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
2018-12-13 21:36 - 2018-12-08 08:36 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mmcss.sys
2018-12-13 21:36 - 2018-12-08 08:35 - 002126336 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2018-12-13 21:36 - 2018-12-08 08:35 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2018-12-13 21:36 - 2018-12-08 08:35 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-12-13 21:36 - 2018-12-08 08:35 - 000623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-12-13 21:36 - 2018-12-08 08:34 - 001535488 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-12-13 21:36 - 2018-12-08 08:34 - 001023488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2018-12-13 21:36 - 2018-12-08 08:34 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2018-12-13 21:36 - 2018-12-08 08:34 - 000693248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2018-12-13 21:36 - 2018-12-08 08:34 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-12-13 21:36 - 2018-12-08 08:34 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2018-12-13 21:36 - 2018-12-08 08:33 - 019405312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-12-13 21:36 - 2018-12-08 08:33 - 002904064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-12-13 21:36 - 2018-12-08 08:33 - 001457152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2018-12-13 21:36 - 2018-12-08 08:33 - 001264640 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2018-12-13 21:36 - 2018-12-08 08:33 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2018-12-13 21:36 - 2018-12-08 08:33 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2018-12-13 21:36 - 2018-12-08 08:33 - 000823296 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2018-12-13 21:36 - 2018-12-08 08:33 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2018-12-13 21:36 - 2018-12-08 08:32 - 001032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2018-12-13 21:36 - 2018-12-08 08:32 - 000895488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2018-12-13 21:36 - 2018-12-08 08:32 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2018-12-13 21:36 - 2018-12-08 08:32 - 000542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-12-13 21:36 - 2018-12-08 08:32 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2018-12-13 21:36 - 2018-12-08 08:30 - 006647296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2018-12-13 21:36 - 2018-12-08 08:30 - 002966528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2018-12-13 21:36 - 2018-12-08 08:30 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2018-12-13 21:36 - 2018-12-08 08:29 - 005883904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2018-12-13 21:36 - 2018-12-08 08:29 - 002700288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2018-12-13 21:36 - 2018-12-08 08:29 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2018-12-13 21:36 - 2018-12-08 08:29 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2018-12-13 21:36 - 2018-12-08 08:28 - 002258944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2018-12-13 21:36 - 2018-12-08 08:28 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2018-12-13 21:36 - 2018-12-08 08:28 - 000391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2018-12-13 21:36 - 2018-12-08 08:28 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2018-12-13 21:36 - 2018-12-08 08:27 - 002449408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2018-12-13 21:36 - 2018-12-08 08:27 - 001986560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2018-12-13 21:36 - 2018-12-08 08:27 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2018-12-13 21:36 - 2018-12-08 08:27 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2018-12-13 21:36 - 2018-12-08 08:27 - 000555008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2018-12-13 21:36 - 2018-12-08 08:27 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2018-12-13 21:36 - 2018-12-08 08:26 - 001348096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2018-12-13 21:36 - 2018-12-08 08:26 - 000848384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2018-12-13 21:36 - 2018-12-08 08:25 - 000978944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2018-12-13 21:36 - 2018-12-08 08:25 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2018-12-13 21:36 - 2018-12-08 08:25 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2018-12-13 21:36 - 2018-12-08 08:25 - 000702464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2018-12-13 21:36 - 2018-12-08 08:25 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2018-12-13 21:36 - 2018-12-08 08:24 - 000795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2018-12-13 21:36 - 2018-12-08 08:24 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2018-12-13 21:36 - 2018-12-08 08:24 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-12-13 21:36 - 2018-12-08 08:24 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2018-12-13 21:36 - 2018-11-09 07:15 - 021388752 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-12-13 21:36 - 2018-11-09 07:00 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2018-12-13 21:36 - 2018-11-09 06:59 - 008623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2018-12-13 21:36 - 2018-11-09 06:58 - 000244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll

#19
2018-12-13 21:36 - 2018-11-09 06:57 - 004491264 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2018-12-13 21:36 - 2018-11-09 06:57 - 000208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sensrsvc.dll
2018-12-13 21:36 - 2018-11-09 06:56 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-12-13 21:36 - 2018-11-09 06:56 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ninput.dll
2018-12-13 21:36 - 2018-11-09 06:56 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll
2018-12-13 21:36 - 2018-11-09 06:55 - 001254400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2018-12-13 21:36 - 2018-11-09 06:55 - 000878592 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2018-12-13 21:36 - 2018-11-09 06:54 - 001535488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2018-12-13 21:36 - 2018-11-09 06:32 - 020383832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2018-12-13 21:36 - 2018-11-09 06:22 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2018-12-13 21:36 - 2018-11-09 06:20 - 007987712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2018-12-13 21:36 - 2018-11-09 06:20 - 003397632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2018-12-13 21:36 - 2018-11-09 06:19 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2018-12-13 21:36 - 2018-11-09 06:18 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2018-12-13 21:36 - 2018-11-09 06:18 - 000320512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ninput.dll
2018-12-13 21:36 - 2018-11-09 06:17 - 000704000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2018-12-13 21:36 - 2018-11-09 03:56 - 001213472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2018-12-13 21:36 - 2018-11-09 03:49 - 000723416 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2018-12-13 21:36 - 2018-11-09 03:49 - 000565048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2018-12-13 21:36 - 2018-11-09 03:49 - 000368656 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2018-12-13 21:36 - 2018-11-09 03:48 - 003179760 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2018-12-13 21:36 - 2018-11-09 03:48 - 002719736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-12-13 21:36 - 2018-11-09 03:48 - 001613288 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2018-12-13 21:36 - 2018-11-09 03:48 - 000899920 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2018-12-13 21:36 - 2018-11-09 03:48 - 000766704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2018-12-13 21:36 - 2018-11-09 03:48 - 000745472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2018-12-13 21:36 - 2018-11-09 03:48 - 000375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2018-12-13 21:36 - 2018-11-09 03:47 - 002765344 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-12-13 21:36 - 2018-11-09 03:47 - 002571128 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2018-12-13 21:36 - 2018-11-09 03:47 - 002062392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2018-12-13 21:36 - 2018-11-09 03:47 - 001285432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2018-12-13 21:36 - 2018-11-09 03:47 - 000930616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2018-12-13 21:36 - 2018-11-09 03:47 - 000537912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2018-12-13 21:36 - 2018-11-09 03:22 - 000185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2018-12-13 21:36 - 2018-11-09 03:22 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttpcom.dll
2018-12-13 21:36 - 2018-11-09 03:21 - 004866560 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-12-13 21:36 - 2018-11-09 03:21 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2018-12-13 21:36 - 2018-11-09 03:21 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2018-12-13 21:36 - 2018-11-09 03:21 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2018-12-13 21:36 - 2018-11-09 03:21 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2018-12-13 21:36 - 2018-11-09 03:20 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2018-12-13 21:36 - 2018-11-09 03:20 - 000399872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthAvctpSvc.dll
2018-12-13 21:36 - 2018-11-09 03:20 - 000193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys
2018-12-13 21:36 - 2018-11-09 03:20 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2018-12-13 21:36 - 2018-11-09 03:19 - 002368512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2018-12-13 21:36 - 2018-11-09 03:19 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-12-13 21:36 - 2018-11-09 03:19 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2018-12-13 21:36 - 2018-11-09 03:18 - 003320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-12-13 21:36 - 2018-11-09 03:18 - 001487360 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2018-12-13 21:36 - 2018-11-09 03:18 - 000573952 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2018-12-13 21:36 - 2018-11-09 03:18 - 000514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2018-12-13 21:36 - 2018-11-09 03:18 - 000300032 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2018-12-13 21:36 - 2018-11-09 03:17 - 002584576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2018-12-13 21:36 - 2018-11-09 03:17 - 001069568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2018-12-13 21:36 - 2018-11-09 03:16 - 004939776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-12-13 21:36 - 2018-11-09 03:16 - 002224640 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-12-13 21:36 - 2018-11-09 03:16 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2018-12-13 21:36 - 2018-11-09 03:16 - 001225216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2018-12-13 21:36 - 2018-11-09 03:16 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2018-12-13 21:36 - 2018-11-09 03:15 - 000943616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2018-12-13 21:36 - 2018-11-09 03:15 - 000933888 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2018-12-13 21:36 - 2018-11-09 03:15 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2018-12-13 21:36 - 2018-11-09 03:15 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-12-13 21:36 - 2018-11-09 03:07 - 002417976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2018-12-13 21:36 - 2018-11-09 03:07 - 001299704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2018-12-13 21:36 - 2018-11-09 02:48 - 000550728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2018-12-13 21:36 - 2018-11-09 02:47 - 000295224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2018-12-13 21:36 - 2018-11-09 02:46 - 002253184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-12-13 21:36 - 2018-11-09 02:46 - 002161008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2018-12-13 21:36 - 2018-11-09 02:46 - 001980776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2018-12-13 21:36 - 2018-11-09 02:46 - 000829960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2018-12-13 21:36 - 2018-11-09 02:46 - 000721024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2018-12-13 21:36 - 2018-11-09 02:46 - 000573504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2018-12-13 21:36 - 2018-11-09 02:31 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2018-12-13 21:36 - 2018-11-09 02:31 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2018-12-13 21:36 - 2018-11-09 02:30 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2018-12-13 21:36 - 2018-11-09 02:30 - 000082944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttpcom.dll
2018-12-13 21:36 - 2018-11-09 02:29 - 003711488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-12-13 21:36 - 2018-11-09 02:29 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-12-13 21:36 - 2018-11-09 02:29 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2018-12-13 21:36 - 2018-11-09 02:29 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2018-12-13 21:36 - 2018-11-09 02:28 - 002900992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2018-12-13 21:36 - 2018-11-09 02:27 - 000463872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2018-12-13 21:36 - 2018-11-09 02:26 - 004514816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-12-13 21:36 - 2018-11-09 02:26 - 001110528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2018-12-13 21:36 - 2018-11-09 02:26 - 000873472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2018-12-13 21:36 - 2018-11-09 02:26 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2018-12-13 21:36 - 2018-11-09 02:25 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2018-12-13 21:36 - 2018-11-09 02:25 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2018-12-13 21:36 - 2018-05-20 19:20 - 000022936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hvsicontainerservice.dll
2018-12-13 21:24 - 2018-12-13 21:24 - 005746248 _____ (Avira Operations GmbH & Co. KG) C:\Users\Dustito\Downloads\avira_de_trvpn_3190016051_owgj0xpmvudpdn1qtyur_wd.exe
2018-12-13 21:21 - 2018-12-13 21:21 - 005746248 _____ (Avira Operations GmbH & Co. KG) C:\Users\Dustito\Downloads\Sin confirmar 179637.crdownload
2018-12-13 21:12 - 2018-12-13 21:12 - 000098427 _____ C:\Users\Dustito\Downloads\First.Man.2018.1080p.WEB-DL.AAC2.0.H264-SHITBOX-[rarbg.to].torrent

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-01-11 23:36 - 2018-05-24 23:03 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-01-11 22:08 - 2018-05-24 23:13 - 001679422 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-01-11 22:08 - 2018-04-12 17:19 - 000750432 _____ C:\WINDOWS\system32\perfh00A.dat
2019-01-11 22:08 - 2018-04-12 17:19 - 000147354 _____ C:\WINDOWS\system32\perfc00A.dat
2019-01-11 22:08 - 2018-04-12 00:36 - 000000000 ____D C:\WINDOWS\INF
2019-01-11 22:00 - 2018-05-24 23:10 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-01-11 22:00 - 2018-04-11 22:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-01-11 22:00 - 2018-02-21 23:24 - 000000000 ____D C:\Users\Dustito\AppData\Local\CrashDumps
2019-01-11 22:00 - 2018-02-09 00:22 - 000000000 ____D C:\ProgramData\NVIDIA
2019-01-11 21:59 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-01-11 21:47 - 2018-08-28 23:17 - 000000000 ____D C:\WINDOWS\Minidump
2019-01-11 21:00 - 2018-02-21 21:40 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-01-10 00:18 - 2018-03-25 17:56 - 000001456 _____ C:\Users\Dustito\AppData\Local\Adobe Guardar para Web 13.0 Prefs
2019-01-09 19:30 - 2018-02-18 21:08 - 000000000 ____D C:\Users\Dustito\AppData\LocalLow\Mozilla
2019-01-09 00:57 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-01-09 00:52 - 2018-02-09 00:18 - 000000000 ____D C:\Users\Dustito\AppData\Local\Packages
2019-01-08 23:43 - 2018-04-12 00:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-01-08 23:36 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-01-08 23:28 - 2018-11-27 22:19 - 000000000 ____D C:\Users\Dustito\AppData\Local\atom
2019-01-08 23:20 - 2018-02-09 19:46 - 132790320 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-01-08 23:20 - 2018-02-09 19:46 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-01-08 19:47 - 2018-05-24 23:05 - 000000000 ____D C:\Users\Dustito
2019-01-07 23:01 - 2018-05-24 23:03 - 005117304 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-01-07 22:50 - 2018-07-02 16:45 - 000000000 ____D C:\Users\Dustito\AppData\Local\D3DSCache
2019-01-04 22:24 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-01-02 20:41 - 2018-04-12 00:41 - 000835480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-01-02 20:41 - 2018-04-12 00:41 - 000179600 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-01-01 03:31 - 2018-09-04 20:03 - 000001638 _____ C:\Users\Dustito\Desktop\RED-Win64-Shipping - Acceso directo.lnk
2018-12-31 11:17 - 2018-02-10 18:20 - 000000000 ____D C:\Users\Dustito\AppData\Local\PlaceholderTileLogoFolder
2018-12-30 20:58 - 2018-06-10 22:48 - 000000000 ____D C:\Users\Dustito\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2018-12-20 22:01 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\TextInput
2018-12-20 22:01 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2018-12-20 20:56 - 2018-05-24 23:10 - 000003884 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2553252518-2961909032-622737996-1001UA
2018-12-20 20:56 - 2018-05-24 23:10 - 000003616 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2553252518-2961909032-622737996-1001Core
2018-12-20 20:36 - 2018-05-24 23:10 - 000003380 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2553252518-2961909032-622737996-1001
2018-12-20 20:36 - 2018-05-24 23:05 - 000002403 _____ C:\Users\Dustito\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-12-20 20:36 - 2018-02-09 00:20 - 000000000 ___RD C:\Users\Dustito\OneDrive
2018-12-18 22:50 - 2018-02-18 21:08 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-12-18 22:50 - 2018-02-18 21:08 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-12-18 22:11 - 2018-02-09 00:22 - 000002506 _____ C:\Users\Dustito\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-12-18 22:09 - 2018-02-09 22:05 - 000000000 ____D C:\ProgramData\Package Cache
2018-12-14 14:30 - 2018-02-18 21:08 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-12-14 14:30 - 2018-02-09 20:58 - 000000000 ___RD C:\Users\Dustito\3D Objects
2018-12-14 14:30 - 2015-09-10 06:29 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-12-14 00:51 - 2018-04-12 00:38 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2018-12-14 00:51 - 2018-04-12 00:38 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2018-12-14 00:51 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\ShellComponents
2018-12-13 22:12 - 2018-03-27 17:42 - 000000000 ____D C:\Users\Dustito\AppData\Roaming\deluge

==================== Files in the root of some directories =======

2018-03-25 17:56 - 2019-01-10 00:18 - 000001456 _____ () C:\Users\Dustito\AppData\Local\Adobe Guardar para Web 13.0 Prefs
2018-03-07 20:58 - 2018-09-12 19:56 - 000000600 _____ () C:\Users\Dustito\AppData\Local\PUTTY.RND
2018-12-13 22:49 - 2018-12-13 22:49 - 000000696 _____ () C:\Users\Dustito\AppData\Local\recently-used.xbel

Some zero byte size files/folders:
==========================
C:\Windows\System32\DeviceSetupStatusProvider.dll
C:\Windows\System32\perftrack.dll
C:\Windows\System32\rometadata.dll
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\System32\wups.dll

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-05-24 23:03

==================== End of FRST.txt ============================

-Informe Farbar Recovery Scan Tool - Addition:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09.01.2019 01
Ran by Dustito (11-01-2019 23:38:10)
Running from C:\Users\Dustito\Desktop
Windows 10 Pro Version 1803 17134.472 (X64) (2018-05-24 22:11:02)
Boot Mode: Safe Mode (with Networking)
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-2553252518-2961909032-622737996-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2553252518-2961909032-622737996-503 - Limited - Disabled)
Dustito (S-1-5-21-2553252518-2961909032-622737996-1001 - Administrator - Enabled) => C:\Users\Dustito
Invitado (S-1-5-21-2553252518-2961909032-622737996-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2553252518-2961909032-622737996-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 18.01 (x64) (HKLM\...\7-Zip) (Version: 18.01 - Igor Pavlov)
Actualización de NVIDIA 34.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 34.0.0.0 - NVIDIA Corporation) Hidden
Adobe Illustrator CC (HKLM-x32\...\{F2321021-08A2-44D6-B1DF-BDB415F23EC3}) (Version: 17.0 - Adobe Systems Incorporated)
Adobe Photoshop CC (HKLM-x32\...\{2D99B50E-431D-4AA8-85C1-172A6F8BCF09}) (Version: 14.0 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 5.6 64-bit (HKLM\...\{D19E99C2-6D9D-4075-B446-B4387EAF70A5}) (Version: 5.6.0 - Adobe Systems Incorporated)
Atom (HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\atom) (Version: 1.32.2 - GitHub Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.51 - Piriform)
CPUID HWMonitor 1.38 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.38 - CPUID, Inc.)
DeepArtEffects (HKLM-x32\...\DeepArtEffects) (Version:  - )
Deluge 1.3.15 (HKLM-x32\...\Deluge) (Version:  - )
Discord (HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\Discord) (Version: 0.0.301 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 397.93 - NVIDIA Corporation) Hidden
FIFA 19 (HKLM-x32\...\{3391E07D-8484-4124-817E-FCBDA859FD62}) (Version: 1.0.58.64628 - Electronic Arts)
FileZilla Client 3.31.0 (HKLM-x32\...\FileZilla Client) (Version: 3.31.0 - Tim Kosse)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version:  - GOG.com)
Google Chrome (HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.)
HWiNFO64 Version 6.00 (HKLM\...\HWiNFO64_is1) (Version: 6.00 - Martin Malík - REALiX)
Java 8 Update 181 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180181F0}) (Version: 8.0.1810.13 - Oracle Corporation)
Java 8 Update 181 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180181F0}) (Version: 8.0.1810.13 - Oracle Corporation)
Kerbal Space Program (HKLM-x32\...\1429864849_is1) (Version: 1.5.1.02335 - GOG.com)
Malwarebytes versión 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\OneDriveSetup.exe) (Version: 18.222.1104.0007 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25008 (HKLM-x32\...\{f1e7e313-06df-4c56-96a9-99fdfd149c51}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 64.0 (x64 es-ES) (HKLM\...\Mozilla Firefox 64.0 (x64 es-ES)) (Version: 64.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 58.0.2 - Mozilla)
MSI Afterburner 4.5.0 (HKLM-x32\...\Afterburner) (Version: 4.5.0 - MSI Co., LTD)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.12 - NVIDIA Corporation) Hidden
NVIDIA Controlador de 3D Vision 397.93 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 397.93 - NVIDIA Corporation)
NVIDIA Controlador de audio HD 1.3.37.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.4 - NVIDIA Corporation)
NVIDIA Controlador de gráficos 397.93 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 397.93 - NVIDIA Corporation)
NVIDIA Controlador de la controladora 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.16.0.122 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.16.0.122 - NVIDIA Corporation)
NVIDIA Software del sistema PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
Overcooked! (HKLM-x32\...\{A3F5EE11-7F45-4CF2-9DD9-642FB2597124}) (Version:  - Team17 Digital Ltd)
Panel de control de NVIDIA 397.93 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 397.93 - NVIDIA Corporation) Hidden
Paquete de idioma de Microsoft Visual Studio 2010 Tools para Office Runtime (x64) - ESN (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - ESN) (Version: 10.0.50903 - Microsoft Corporation)
PDF Settings CC (HKLM-x32\...\{1FBAE18D-4DE4-47AA-83EC-D1B046F262DC}) (Version: 12.0 - Adobe Systems Incorporated) Hidden
PuTTY release 0.70 (64-bit) (HKLM\...\{45B3032F-22CC-40CD-9E97-4DA7095FA5A2}) (Version: 0.70.0.0 - Simon Tatham)
RivaTuner Statistics Server 7.2.0 (HKLM-x32\...\RTSS) (Version: 7.2.0 - Unwinder)
SD Card Formatter (HKLM-x32\...\{10C16E01-F739-4093-89A7-E570589FA0F6}) (Version: 5.0.0 - SD Association)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Telegram Desktop version 1.4.3 (HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 1.4.3 - Telegram Messenger LLP)
The Witcher 2 - Assassins of Kings Enhanced Edition (HKLM-x32\...\1207658930_is1) (Version: 3.5.0.26 - GOG.com)
Twitch (HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 7.0.0.0 - Twitch Interactive, Inc.)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM-x32\...\{7C070E60-8769-4763-BBD8-7537A28A60D4}) (Version: 1.10.0.0 - Microsoft Corporation) Hidden
VAVOO (HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\VAVOO) (Version:  - VAVOO)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.2 - VideoLAN)
Win32DiskImager version 1.0.0 (HKLM-x32\...\{3DFFA293-DF2C-4B23-92E5-3433BDC310E1}}_is1) (Version: 1.0.0 - ImageWriter Developers)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version:  - )
WinSCP 5.13.1 (HKLM-x32\...\winscp3_is1) (Version: 5.13.1 - Martin Prikryl)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2553252518-2961909032-622737996-1001_Classes\CLSID\{A2C6CB58-C076-425C-ACB7-6D19D64428CD}\localserver32 -> C:\Users\Dustito\AppData\Local\Google\Chrome\Application\71.0.3578.98\notification_helper.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2553252518-2961909032-622737996-1001_Classes\CLSID\{A804CF1A-91E5-4F0C-9E8C-DB39E74056DD}\InprocServer32 -> C:\Users\Dustito\AppData\Local\Google\Update\1.3.33.23\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2553252518-2961909032-622737996-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Dustito\AppData\Local\Google\Update\1.3.33.23\psuser_64.dll (Google Inc.)
ContextMenuHandlers1: [7-Zip] -> [CC]{23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> [CC]{23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-05-22] (NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {04DF3468-EA58-469C-8247-733CD43253B4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MpCmdRun.exe [2018-12-11] (Microsoft Corporation)
Task: {0D581F06-72D3-4DF9-9D02-5DA7A45C2439} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-11-16] (NVIDIA Corporation)
Task: {10010E7C-020E-442F-A8F6-DA445128C96A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-12-10] (Piriform Software Ltd)
Task: {1389B51D-2177-49C2-86B5-0793C613D1C7} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-12-10] (Piriform Ltd)
Task: {421E5811-A417-46D8-B790-18E53C58128B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MpCmdRun.exe [2018-12-11] (Microsoft Corporation)
Task: {45A4B91C-01F1-47CF-B0A5-2998F0C8B49F} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-11-16] (NVIDIA Corporation)
Task: {46CF6614-691C-4C00-BC09-B37E5FAF6A67} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MpCmdRun.exe [2018-12-11] (Microsoft Corporation)
Task: {47339768-0698-4BAF-9AF6-7DCD0BA50F69} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-11-16] (NVIDIA Corporation)
Task: {4813AFB3-C5E2-44AC-9FF2-C92FBA74DA63} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-11-16] (NVIDIA Corporation)
Task: {535BFBEA-728F-4625-8EF2-15C3F7F4F1DE} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2553252518-2961909032-622737996-1001Core => C:\Users\Dustito\AppData\Local\Google\Update\GoogleUpdate.exe [2018-02-09] (Google Inc.)
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {78EB6252-1F71-432C-91A3-83F8235B79FD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MpCmdRun.exe [2018-12-11] (Microsoft Corporation)
Task: {88759D07-7818-476E-9316-5B581948CC0A} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-11-16] (NVIDIA Corporation)
Task: {8C965530-B969-47A2-A9F6-FB80B95878CC} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-11-16] (NVIDIA Corporation)
Task: {BEB22A91-B75D-4B5B-BD7A-E94A179BFC45} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-11-16] (NVIDIA Corporation)
Task: {C4E87EE2-E9F5-456D-9A83-6F1EF36DF33B} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2553252518-2961909032-622737996-1001UA => C:\Users\Dustito\AppData\Local\Google\Update\GoogleUpdate.exe [2018-02-09] (Google Inc.)
Task: {C88B236C-2731-4CF3-8AB5-72A4AC89CA7C} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-11-16] (NVIDIA Corporation)
Task: {CBF96D42-EF0E-41E8-BE1A-8613F87A62AA} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-11-16] (NVIDIA Corporation)
Task: {EA45AF83-F762-4BAE-8C2F-AB641606B252} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-11-16] (NVIDIA Corporation)
Task: {EC39425F-6F37-4446-A797-DAA93AB07BD9} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-11-16] (NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CCleaner Update.job => C:\Program Files\CCleaner\CCUpdate.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


ShortcutWithArgument: C:\Users\Dustito\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Helium Backup.lnk -> C:\Users\Dustito\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=gpglbgbpeobllokpmeagpoagjbfknanl

==================== Loaded Modules (Whitelisted) ==============

2019-01-11 21:51 - 2018-11-15 11:01 - 002712432 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2018-04-12 00:34 - 2018-04-12 00:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll
2018-11-20 04:46 - 2018-11-20 04:46 - 004310296 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2018-04-12 00:34 - 2018-04-12 00:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-12-13 21:36 - 2018-11-09 03:17 - 002759680 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-12-20 20:28 - 2018-12-14 07:50 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-12-13 21:13 - 2018-12-13 21:14 - 000182272 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
2018-12-18 22:11 - 2018-12-12 06:11 - 005237216 _____ () C:\Users\Dustito\AppData\Local\Google\Chrome\Application\71.0.3578.98\libglesv2.dll
2018-12-18 22:11 - 2018-12-12 06:11 - 000117216 _____ () C:\Users\Dustito\AppData\Local\Google\Chrome\Application\71.0.3578.98\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMSwissArmy => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMSwissArmy => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="2"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-07-30 23:42 - 2015-07-30 23:39 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\PuTTY\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
HKU\S-1-5-21-2553252518-2961909032-622737996-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "AdobeCEPServiceManager"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\StartupApproved\Run: => "AceStream"
HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\StartupApproved\Run: => "Google Update"
HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\StartupApproved\Run: => "Discord"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{CE26DC42-F121-4A85-9EC2-A8AE6891D06E}D:\programas\vlc\vlc.exe] => (Allow) D:\programas\vlc\vlc.exe No File
FirewallRules: [TCP Query User{B7E47218-0FAF-4E87-84F9-E8278FB9DBDD}D:\programas\vlc\vlc.exe] => (Allow) D:\programas\vlc\vlc.exe No File
FirewallRules: [UDP Query User{DB1E785B-DE73-435D-9953-0340ED73AEBA}D:\programas\deluge\deluge.exe] => (Allow) D:\programas\deluge\deluge.exe No File
FirewallRules: [TCP Query User{FEBF6350-0F51-49D1-A3D8-8D03A477C93B}D:\programas\deluge\deluge.exe] => (Allow) D:\programas\deluge\deluge.exe No File
FirewallRules: [{7F05EAB4-E70C-4469-8EB6-E31604D1CA9B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [{7C0BB71E-63E8-43D9-96B2-1C441A7C6B56}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [UDP Query User{573F014F-B5D8-4F1F-A742-83A508ED7AD0}D:\juegos\gog galaxy\games\the witcher 2\bin\witcher2.exe] => (Allow) D:\juegos\gog galaxy\games\the witcher 2\bin\witcher2.exe No File
FirewallRules: [TCP Query User{BC74FF96-EC8E-4E77-A417-6F5D9A1C0A51}D:\juegos\gog galaxy\games\the witcher 2\bin\witcher2.exe] => (Allow) D:\juegos\gog galaxy\games\the witcher 2\bin\witcher2.exe No File
FirewallRules: [{5BC1CA35-47C0-4B38-8A7B-C61E2EA67F1F}] => (Allow) D:\Juegos\Steam\Steam.exe No File
FirewallRules: [{056B2800-ED36-4121-9571-EEC8C9BAA402}] => (Allow) D:\Juegos\Steam\Steam.exe No File
FirewallRules: [TCP Query User{26FC1257-C385-4574-BA87-2DAB65750BC3}D:\juegos\gog galaxy\games\the witcher 2\bin\witcher2.exe] => (Allow) D:\juegos\gog galaxy\games\the witcher 2\bin\witcher2.exe No File
FirewallRules: [UDP Query User{24BCF4AB-EF45-4C5A-ACFD-32E9F73FC56F}D:\juegos\gog galaxy\games\the witcher 2\bin\witcher2.exe] => (Allow) D:\juegos\gog galaxy\games\the witcher 2\bin\witcher2.exe No File
FirewallRules: [TCP Query User{447385C8-9BB3-4A00-9A98-F37FD491B80A}C:\users\dustito\appdata\local\vavoo\vavoo.exe] => (Allow) C:\users\dustito\appdata\local\vavoo\vavoo.exe (VAVOO)
FirewallRules: [UDP Query User{63967C5A-F3B4-449F-A3BE-B8F6671A8493}C:\users\dustito\appdata\local\vavoo\vavoo.exe] => (Allow) C:\users\dustito\appdata\local\vavoo\vavoo.exe (VAVOO)
FirewallRules: [TCP Query User{6A6C3542-45AB-4EBF-A6F0-EA4C360180FA}D:\programas\deluge\deluge.exe] => (Allow) D:\programas\deluge\deluge.exe No File
FirewallRules: [UDP Query User{55E1BC02-9E9E-4ACC-81F4-66CD8C8334F1}D:\programas\deluge\deluge.exe] => (Allow) D:\programas\deluge\deluge.exe No File
FirewallRules: [{4BBDE6D8-47EA-4D92-B1F7-E5582B665C0F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation)
FirewallRules: [{C52B6E77-4588-409A-BE9F-4D0EA4D8924C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation)
FirewallRules: [{E285FE9F-1E82-4441-B0B1-71B73952CE74}] => (Allow) D:\Juegos\Steam\steamapps\common\Batman Arkham Knight\Binaries\Win64\BatmanAK.exe No File
FirewallRules: [{8E3601A9-30BE-4C60-8286-D8E63491A843}] => (Allow) D:\Juegos\Steam\steamapps\common\Batman Arkham Knight\Binaries\Win64\BatmanAK.exe No File
FirewallRules: [{1350D85D-ADB0-4EBF-AF6F-B79F92CA7270}] => (Allow) D:\Juegos\Steam\bin\cef\cef.win7x64\steamwebhelper.exe No File
FirewallRules: [{0F408C44-884D-46ED-860E-FEFC4DE405B0}] => (Allow) D:\Juegos\Steam\bin\cef\cef.win7x64\steamwebhelper.exe No File
FirewallRules: [{1B23938F-1888-413E-8132-C28E8BE5EC17}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation)
FirewallRules: [{50F7D576-9AE1-4812-A5A2-26C6DC0A7F22}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation)
FirewallRules: [{33FB6484-9A3E-4777-AF3E-009167EA552F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation)
FirewallRules: [{E75B800E-FC0F-4E59-9A68-8FB9269CCC93}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation)
FirewallRules: [{A75800C0-965C-4F43-BB00-C8637352CA99}] => (Allow) D:\Juegos\Steam\steamapps\common\Hollow Knight\hollow_knight.exe No File
FirewallRules: [{7ED53773-5671-4DB3-A3CD-70D383923427}] => (Allow) D:\Juegos\Steam\steamapps\common\Hollow Knight\hollow_knight.exe No File
FirewallRules: [TCP Query User{0FA72582-2FDA-4B11-B2BF-6E9A696FD3BD}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [UDP Query User{BCECC27A-6FB4-4A3D-9CC7-C8A8AEA0ABE9}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [{A7D99DA9-CC16-4567-A834-7173C4C5DE5D}] => (Allow) D:\Juegos\FIFA19\FIFASetup\fifaconfig.exe No File
FirewallRules: [{ED81C044-28AF-490B-B506-46B00E65A4AB}] => (Allow) D:\Juegos\FIFA19\FIFASetup\fifaconfig.exe No File
FirewallRules: [TCP Query User{BD3176E9-53DA-4B17-BAF7-4F34DD58BD2D}D:\juegos\fifa19\fifa19.exe] => (Allow) D:\juegos\fifa19\fifa19.exe No File
FirewallRules: [UDP Query User{1DC40348-A7B5-453A-9E20-03F507429ECB}D:\juegos\fifa19\fifa19.exe] => (Allow) D:\juegos\fifa19\fifa19.exe No File
FirewallRules: [{40BDD26F-EE99-4233-BB38-841390EDCD0C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{37C9C979-DAB7-44FB-8B63-F62BB82FAB37}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{FCA2166F-F74D-4B4C-A64A-268B3CA04467}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{283751DD-9940-41F7-A783-865A4DCD235B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{60EF4A05-50EF-4C36-A458-A1EF6E8E6DFA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{E78B4B23-9862-4D28-9A7D-95BCC44948A8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{7B8274E2-887E-43C1-B855-0D8BA99A85D5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{6EEE5D5B-92ED-4A82-93AA-5C0E6CE137DA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{36293874-BB97-40F6-AD54-8D5935C5615B}] => (Allow) D:\Juegos\Steam\steamapps\common\Keep Talking and Nobody Explodes\ktane.exe No File
FirewallRules: [{8CE49177-4AF6-42B1-8709-71D098F78C4F}] => (Allow) D:\Juegos\Steam\steamapps\common\Keep Talking and Nobody Explodes\ktane.exe No File
FirewallRules: [{470D35DE-99F3-42B6-993C-7069DFC8E0A1}] => (Allow) D:\Juegos\Steam\steamapps\common\CastleCrashers\castle.exe No File
FirewallRules: [{933BEC1F-69C6-458A-8645-A2125EE49978}] => (Allow) D:\Juegos\Steam\steamapps\common\CastleCrashers\castle.exe No File
FirewallRules: [{2C6626E5-7DCF-4D13-93B3-99779EA8DAC1}] => (Allow) D:\Juegos\Steam\steamapps\common\Broforce\Broforce_beta.exe No File
FirewallRules: [{848DC91E-625C-427F-BFCD-429766F064C9}] => (Allow) D:\Juegos\Steam\steamapps\common\Broforce\Broforce_beta.exe No File
FirewallRules: [{E16E5939-CCA5-44E9-B2D2-C91237152E86}] => (Allow) D:\Juegos\Steam\steamapps\common\Crawl\Crawl.exe No File
FirewallRules: [{C68FC59A-2C17-4F6D-BCBA-5C0518BB01E9}] => (Allow) D:\Juegos\Steam\steamapps\common\Crawl\Crawl.exe No File
FirewallRules: [{727CE661-74EE-42CF-8906-A88639DB4E22}] => (Allow) D:\Juegos\Steam\steamapps\common\Nidhogg\Nidhogg.exe No File
FirewallRules: [{0784A41D-7C02-40E2-AB8E-D8E73708F0D1}] => (Allow) D:\Juegos\Steam\steamapps\common\Nidhogg\Nidhogg.exe No File
FirewallRules: [{5F8D2D4D-F5AF-4DCD-ACAA-B6953B2CA37E}] => (Allow) D:\Juegos\Steam\steamapps\common\Ultimate Chicken Horse\UltimateChickenHorse.exe No File
FirewallRules: [{E65A6B85-3C13-4F9C-87BB-2A0FFF7C8638}] => (Allow) D:\Juegos\Steam\steamapps\common\Ultimate Chicken Horse\UltimateChickenHorse.exe No File
FirewallRules: [{88BF01A9-4BC9-478F-BBBE-052EBCAB9056}] => (Allow) D:\Juegos\Steam\steamapps\common\SpeedRunners\SpeedRunners.exe No File
FirewallRules: [{FC1B1026-0130-4FBB-B06E-2BC84A19AB75}] => (Allow) D:\Juegos\Steam\steamapps\common\SpeedRunners\SpeedRunners.exe No File
FirewallRules: [{9705C210-0C2A-475A-862F-57137D05B321}] => (Allow) D:\Juegos\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe No File
FirewallRules: [{B966EC52-003E-4E68-A462-89FE84B3404B}] => (Allow) D:\Juegos\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe No File
FirewallRules: [{29551721-F32E-4390-8B29-7746449CE721}] => (Allow) D:\Juegos\Steam\steamapps\common\Sonic & All-Stars Racing Transformed\ASN_App_PcDx9_Final.exe No File
FirewallRules: [{7CE3E737-78A6-45BF-A200-A0234461088F}] => (Allow) D:\Juegos\Steam\steamapps\common\Sonic & All-Stars Racing Transformed\ASN_App_PcDx9_Final.exe No File
FirewallRules: [{55B13931-4D3B-42DB-B7B1-C87FC3F11328}] => (Allow) D:\Juegos\Steam\steamapps\common\Sonic & All-Stars Racing Transformed\Launcher.exe No File
FirewallRules: [{E1C4D113-D0FE-4F57-A8D6-81449BEA59D6}] => (Allow) D:\Juegos\Steam\steamapps\common\Sonic & All-Stars Racing Transformed\Launcher.exe No File
FirewallRules: [{5F7C9B92-2FAE-4E30-95DE-CB59F9714228}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Ltd)
FirewallRules: [{4D2ADFF9-DE5C-4852-9B85-85514E6719D7}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Ltd)

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Faulty Device Manager Devices =============

Name: NVIDIA Virtual Audio Device (Wave Extensible) (WDM)
Description: NVIDIA Virtual Audio Device (Wave Extensible) (WDM)
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: NVIDIA
Service: nvvad_WaveExtensible
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: NVIDIA High Definition Audio
Description: NVIDIA High Definition Audio
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: NVIDIA
Service: NVHDA
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver


==================== Event log errors: =========================

Application errors:
==================
Error: (01/11/2019 10:00:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: SearchUI.exe, versión: 10.0.17134.472, marca de tiempo: 0x5c13540c
Nombre del módulo con errores: edgehtml.dll, versión: 11.0.17134.471, marca de tiempo: 0xbea4e7df
Código de excepción: 0x800703ee
Desplazamiento de errores: 0x0000000000518ac9
Identificador del proceso con errores: 0x1290
Hora de inicio de la aplicación con errores: 0x01d4a9f0a7157184
Ruta de acceso de la aplicación con errores: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\SYSTEM32\edgehtml.dll
Identificador del informe: 95545c9e-9aea-4d29-b612-99d3c2edf85f
Nombre completo del paquete con errores: Microsoft.Windows.Cortana_1.10.7.17134_neutral_neutral_cw5n1h2txyewy
Identificador de aplicación relativa del paquete con errores: CortanaUI

Error: (01/11/2019 10:00:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: SearchUI.exe, versión: 10.0.17134.472, marca de tiempo: 0x5c13540c
Nombre del módulo con errores: edgehtml.dll, versión: 11.0.17134.471, marca de tiempo: 0xbea4e7df
Código de excepción: 0x800703ee
Desplazamiento de errores: 0x0000000000518ac9
Identificador del proceso con errores: 0x2394
Hora de inicio de la aplicación con errores: 0x01d4a9f0a4b07c5d
Ruta de acceso de la aplicación con errores: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\SYSTEM32\edgehtml.dll
Identificador del informe: b79d479b-b6b8-4cef-81ac-65ff7828575e
Nombre completo del paquete con errores: Microsoft.Windows.Cortana_1.10.7.17134_neutral_neutral_cw5n1h2txyewy
Identificador de aplicación relativa del paquete con errores: CortanaUI

Error: (01/11/2019 10:00:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: SearchUI.exe, versión: 10.0.17134.472, marca de tiempo: 0x5c13540c
Nombre del módulo con errores: edgehtml.dll, versión: 11.0.17134.471, marca de tiempo: 0xbea4e7df
Código de excepción: 0x800703ee
Desplazamiento de errores: 0x0000000000518ac9
Identificador del proceso con errores: 0x23e4
Hora de inicio de la aplicación con errores: 0x01d4a9f0a246afc2
Ruta de acceso de la aplicación con errores: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\SYSTEM32\edgehtml.dll
Identificador del informe: 4bba0243-1989-4a05-8bc4-ca860639b367
Nombre completo del paquete con errores: Microsoft.Windows.Cortana_1.10.7.17134_neutral_neutral_cw5n1h2txyewy
Identificador de aplicación relativa del paquete con errores: CortanaUI

Error: (01/11/2019 10:00:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: SearchUI.exe, versión: 10.0.17134.472, marca de tiempo: 0x5c13540c
Nombre del módulo con errores: edgehtml.dll, versión: 11.0.17134.471, marca de tiempo: 0xbea4e7df
Código de excepción: 0x800703ee
Desplazamiento de errores: 0x0000000000518ac9
Identificador del proceso con errores: 0x20b8
Hora de inicio de la aplicación con errores: 0x01d4a9f09fa5a970
Ruta de acceso de la aplicación con errores: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\SYSTEM32\edgehtml.dll
Identificador del informe: e9dadc65-93be-414d-ac3e-f66db48079c4
Nombre completo del paquete con errores: Microsoft.Windows.Cortana_1.10.7.17134_neutral_neutral_cw5n1h2txyewy
Identificador de aplicación relativa del paquete con errores: CortanaUI

Error: (01/11/2019 09:59:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: SearchUI.exe, versión: 10.0.17134.472, marca de tiempo: 0x5c13540c
Nombre del módulo con errores: edgehtml.dll, versión: 11.0.17134.471, marca de tiempo: 0xbea4e7df
Código de excepción: 0x800703ee
Desplazamiento de errores: 0x0000000000518ac9
Identificador del proceso con errores: 0x1d94
Hora de inicio de la aplicación con errores: 0x01d4a9f09d204d8d
Ruta de acceso de la aplicación con errores: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\SYSTEM32\edgehtml.dll
Identificador del informe: fe3a612a-552d-4710-a171-6a3dd67ca434
Nombre completo del paquete con errores: Microsoft.Windows.Cortana_1.10.7.17134_neutral_neutral_cw5n1h2txyewy
Identificador de aplicación relativa del paquete con errores: CortanaUI

Error: (01/11/2019 09:59:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: SearchUI.exe, versión: 10.0.17134.472, marca de tiempo: 0x5c13540c
Nombre del módulo con errores: edgehtml.dll, versión: 11.0.17134.471, marca de tiempo: 0xbea4e7df
Código de excepción: 0x800703ee
Desplazamiento de errores: 0x0000000000518ac9
Identificador del proceso con errores: 0x19c0
Hora de inicio de la aplicación con errores: 0x01d4a9f098b2cfb0
Ruta de acceso de la aplicación con errores: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\SYSTEM32\edgehtml.dll
Identificador del informe: 3745b317-95f6-4975-b171-cb0d21f71de5
Nombre completo del paquete con errores: Microsoft.Windows.Cortana_1.10.7.17134_neutral_neutral_cw5n1h2txyewy
Identificador de aplicación relativa del paquete con errores: CortanaUI

Error: (01/11/2019 09:55:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: SearchUI.exe, versión: 10.0.17134.472, marca de tiempo: 0x5c13540c
Nombre del módulo con errores: edgehtml.dll, versión: 11.0.17134.471, marca de tiempo: 0xbea4e7df
Código de excepción: 0x800703ee
Desplazamiento de errores: 0x0000000000518ac9
Identificador del proceso con errores: 0x1bc
Hora de inicio de la aplicación con errores: 0x01d4a9f001559d5b
Ruta de acceso de la aplicación con errores: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\SYSTEM32\edgehtml.dll
Identificador del informe: fc669400-76bf-474f-bc96-8d08585551e7
Nombre completo del paquete con errores: Microsoft.Windows.Cortana_1.10.7.17134_neutral_neutral_cw5n1h2txyewy
Identificador de aplicación relativa del paquete con errores: CortanaUI

Error: (01/11/2019 09:55:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: SearchUI.exe, versión: 10.0.17134.472, marca de tiempo: 0x5c13540c
Nombre del módulo con errores: edgehtml.dll, versión: 11.0.17134.471, marca de tiempo: 0xbea4e7df
Código de excepción: 0x800703ee
Desplazamiento de errores: 0x0000000000518ac9
Identificador del proceso con errores: 0x2714
Hora de inicio de la aplicación con errores: 0x01d4a9efff774236
Ruta de acceso de la aplicación con errores: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\SYSTEM32\edgehtml.dll
Identificador del informe: 4dc4a6a6-6192-4844-850c-03c06657d8cf
Nombre completo del paquete con errores: Microsoft.Windows.Cortana_1.10.7.17134_neutral_neutral_cw5n1h2txyewy
Identificador de aplicación relativa del paquete con errores: CortanaUI


System errors:
=============
Error: (01/11/2019 11:38:18 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-0KVORQ4)
Description: Error de DCOM "1084" al intentar iniciar el servicio ShellHWDetection con argumentos "No disponible" para ejecutar el servidor:
{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (01/11/2019 11:38:10 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-0KVORQ4)
Description: Error de DCOM "1084" al intentar iniciar el servicio ShellHWDetection con argumentos "No disponible" para ejecutar el servidor:
{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (01/11/2019 11:37:49 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-0KVORQ4)
Description: Error de DCOM "1084" al intentar iniciar el servicio ShellHWDetection con argumentos "No disponible" para ejecutar el servidor:
{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (01/11/2019 11:37:35 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-0KVORQ4)
Description: Error de DCOM "1084" al intentar iniciar el servicio ShellHWDetection con argumentos "No disponible" para ejecutar el servidor:
{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (01/11/2019 11:37:24 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-0KVORQ4)
Description: Error de DCOM "1084" al intentar iniciar el servicio ShellHWDetection con argumentos "No disponible" para ejecutar el servidor:
{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (01/11/2019 11:37:17 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-0KVORQ4)
Description: Error de DCOM "1084" al intentar iniciar el servicio ShellHWDetection con argumentos "No disponible" para ejecutar el servidor:
{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (01/11/2019 11:31:27 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-0KVORQ4)
Description: Error de DCOM "1084" al intentar iniciar el servicio ShellHWDetection con argumentos "No disponible" para ejecutar el servidor:
{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (01/11/2019 11:21:27 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-0KVORQ4)
Description: Error de DCOM "1084" al intentar iniciar el servicio ShellHWDetection con argumentos "No disponible" para ejecutar el servidor:
{DD522ACC-F821-461A-A407-50B198B896DC}


Windows Defender:
===================================
Date: 2018-12-30 11:47:44.780
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {15271C52-BAEC-4D50-B3CA-B5A680DE5098}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2018-12-20 21:15:40.857
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {B8BB7A91-0B25-4DC2-AC66-C39FD77C61E4}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2018-12-13 21:39:41.152
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {B6AD7DBA-6024-4DA7-A310-5B5842D770BE}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2018-12-08 22:15:38.146
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {89ACF4F9-5780-40BB-BBA2-32D259DADCFD}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2018-12-08 21:54:02.537
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {66D2F2B0-8F52-45CC-A3F1-071B0731114F}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-01-11 22:11:24.331
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.283.2758.0
Origen de actualización: Servidor de Microsoft Update
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión de motor actual: 
Versión de motor anterior: 1.1.15500.2
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 

Date: 2019-01-11 22:01:22.616
Description: 
La característica Protección en tiempo real de Antivirus de Windows Defender encontró un error:
Característica: Durante el acceso
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 
Motivo: La protección antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.

Date: 2019-01-11 21:56:26.583
Description: 
La característica Protección en tiempo real de Antivirus de Windows Defender encontró un error:
Característica: Durante el acceso
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 
Motivo: La protección antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.

Date: 2019-01-11 20:55:07.623
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.283.2621.0
Origen de actualización: Servidor de Microsoft Update
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión de motor actual: 
Versión de motor anterior: 1.1.15500.2
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 

Date: 2019-01-11 20:45:05.167
Description: 
La característica Protección en tiempo real de Antivirus de Windows Defender encontró un error:
Característica: Durante el acceso
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 
Motivo: La protección antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.

==================== Memory info =========================== 

Processor: AMD Phenom(tm) II X4 B55 Processor
Percentage of memory in use: 15%
Total physical RAM: 12286.18 MB
Available physical RAM: 10342.22 MB
Total Virtual: 14142.18 MB
Available Virtual: 12374.5 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:118.28 GB) (Free:72.7 GB) NTFS

\\?\Volume{98c28270-0000-0000-0000-100000000000}\ (Reservado para el sistema) (Fixed) (Total:0.49 GB) (Free:0.46 GB) NTFS
\\?\Volume{98c28270-0000-0000-0000-40b11d000000}\ () (Fixed) (Total:0.47 GB) (Free:0.09 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 119.2 GB) (Disk ID: 98C28270)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=118.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=482 MB) - (Type=27)

==================== End of Addition.txt ============================

Después de todo esto el equipo continua con los mismos problemas.

Muchas gracias otra vez Javier por el interes.


#20

Bien… y ahora sigue estos pasos,(hazlos de nuevo desde el modo seguro de windows) :arrow_forward: MUY Importante :arrow_backward: Realiza una copia de seguridad del registro :

  • Para hacerlo descarga :arrow_forward: DelFix.exe(en tu escritorio).

  • Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona -Ejecutar como Administrador-).

  • Atención, ahora marca/selecciona únicamente la casilla :white_check_mark: Create registry backup, las demás casillas NO. :face_with_monocle:

  • Pulsar en Run.

Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.

:warning: Con los demás programas cerrados ve a :arrow_forward: Inicio :arrow_forward: Ejecutar :arrow_forward: y escribe Notepad.exe.

  • Ahora debes copiar y pegar los códigos/líneas que están en el interior del recuadro de más abajo, dentro del Notepad.
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
CustomCLSID: HKU\S-1-5-21-2553252518-2961909032-622737996-1001_Classes\CLSID\{A2C6CB58-C076-425C-ACB7-6D19D64428CD}\localserver32 -> C:\Users\Dustito\AppData\Local\Google\Chrome\Application\71.0.3578.98\notification_helper.exe (Google Inc.)
ContextMenuHandlers1: [7-Zip] -> [CC]{23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [7-Zip] -> [CC]{23170F69-40C1-278A-1000-000100020000} => -> No File
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\Run: [Steam] => "D:\Juegos\Steam\steam.exe" -silent
HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\Run: [AceStream] => C:\Users\Dustito\AppData\Roaming\ACEStream\engine\ace_engine.exe
HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\MountPoints2: {bd43b402-0d25-11e8-8d6c-806e6f6e6963} - "E:\setup.exe"
HKLM\...\Drivers32: [VIDC.RTV1] => C:\WINDOWS\system32\rtvcvfw64.dll [246272 2012-09-28] ()
HKLM\...\Drivers32-x32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] ()
Startup: C:\Users\Dustito\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Twitch.lnk [2018-11-27]
ShortcutTarget: Twitch.lnk -> D:\Programas\Twitch\Bin\Twitch.exe (No File)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> D:\Programas\java64\bin\ssv.dll => No File
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> D:\Programas\java64\bin\jp2ssv.dll => No File
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> D:\Programas\java\bin\ssv.dll => No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> D:\Programas\java\bin\jp2ssv.dll => No File
FF HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\Firefox\Extensions: [[email protected]] - C:\Users\Dustito\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => not found
FF Plugin: @java.com/DTPlugin,version=11.181.2 -> D:\Programas\java64\bin\dtplugin\npDeployJava1.dll [No File]
FF Plugin: @java.com/JavaPlugin,version=11.181.2 -> D:\Programas\java64\bin\plugin2\npjp2.dll [No File]
FF Plugin: @videolan.org/vlc,version=3.0.2 -> D:\Programas\VLC\npvlc.dll [No File]
FF Plugin-x32: @java.com/DTPlugin,version=11.181.2 -> D:\Programas\java\bin\dtplugin\npDeployJava1.dll [No File]
FF Plugin-x32: @java.com/JavaPlugin,version=11.181.2 -> D:\Programas\java\bin\plugin2\npjp2.dll [No File]
FF Plugin HKU\S-1-5-21-2553252518-2961909032-622737996-1001: @acestream.net/acestreamplugin,version=3.1.16.1 -> C:\Users\Dustito\AppData\Roaming\ACEStream\player\npace_plugin.dll [No File]
CHR StartupUrls: Default -> "hxxps://www.google.com/","hxxp://www.istartsurf.com/?type=hp&ts=1411421379&from=smt&uid=WDCXWD6401AALS-00E8B0_WD-WMATV592412624126"
CHR Extension: (Avira Navegación segura) - C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2019-01-05]
CHR Extension: (Ace Script) - C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2018-12-13]
CHR HKU\S-1-5-21-2553252518-2961909032-622737996-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx
S3 WiaRpc; C:\WINDOWS\System32\wiarpc.dll [81920 2018-04-12] ()
S3 GalaxyClientService; "D:\Juegos\GOG Galaxy\GalaxyClientService.exe" [X]
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\Run: [Steam] => "D:\Juegos\Steam\steam.exe" -silent
HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\Run: [AceStream] => C:\Users\Dustito\AppData\Roaming\ACEStream\engine\ace_engine.exe
HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\MountPoints2: {bd43b402-0d25-11e8-8d6c-806e6f6e6963} - "E:\setup.exe"
HKLM\...\Drivers32: [VIDC.RTV1] => C:\WINDOWS\system32\rtvcvfw64.dll [246272 2012-09-28] ()
HKLM\...\Drivers32-x32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] ()
Startup: C:\Users\Dustito\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Twitch.lnk [2018-11-27]
ShortcutTarget: Twitch.lnk -> D:\Programas\Twitch\Bin\Twitch.exe (No File)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> D:\Programas\java64\bin\ssv.dll => No File
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> D:\Programas\java64\bin\jp2ssv.dll => No File
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> D:\Programas\java\bin\ssv.dll => No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> D:\Programas\java\bin\jp2ssv.dll => No File
FF HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\Firefox\Extensions: [[email protected]] - C:\Users\Dustito\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => not found
FF Plugin: @java.com/DTPlugin,version=11.181.2 -> D:\Programas\java64\bin\dtplugin\npDeployJava1.dll [No File]
FF Plugin: @java.com/JavaPlugin,version=11.181.2 -> D:\Programas\java64\bin\plugin2\npjp2.dll [No File]
FF Plugin: @videolan.org/vlc,version=3.0.2 -> D:\Programas\VLC\npvlc.dll [No File]
FF Plugin-x32: @java.com/DTPlugin,version=11.181.2 -> D:\Programas\java\bin\dtplugin\npDeployJava1.dll [No File]
FF Plugin-x32: @java.com/JavaPlugin,version=11.181.2 -> D:\Programas\java\bin\plugin2\npjp2.dll [No File]
FF Plugin HKU\S-1-5-21-2553252518-2961909032-622737996-1001: @acestream.net/acestreamplugin,version=3.1.16.1 -> C:\Users\Dustito\AppData\Roaming\ACEStream\player\npace_plugin.dll [No File]
CHR StartupUrls: Default -> "hxxps://www.google.com/","hxxp://www.istartsurf.com/?type=hp&ts=1411421379&from=smt&uid=WDCXWD6401AALS-00E8B0_WD-WMATV592412624126"
CHR Extension: (Avira Navegación segura) - C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2019-01-05]
CHR Extension: (Ace Script) - C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2018-12-13]
CHR HKU\S-1-5-21-2553252518-2961909032-622737996-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx
S3 WiaRpc; C:\WINDOWS\System32\wiarpc.dll [81920 2018-04-12] ()
S3 GalaxyClientService; "D:\Juegos\GOG Galaxy\GalaxyClientService.exe" [X]
C:\Windows\System32\DeviceSetupStatusProvider.dll
C:\Windows\System32\perftrack.dll
C:\Windows\System32\rometadata.dll
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\System32\wups.dll
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END

Guárdalo bajo el nombre de FIXLIST.TXT en el escritorio :arrow_backward: Esto es muy importante.

:o: Nota :o: Es importante que la herramienta FRST.exe(Farbar Recovery Scanner Tool) y FIXLIST.TXT se encuentren en la misma ubicación (escritorio) o si no, no trabajara.

  • Ejecuta FRST.exe.(Si usas Windows Vista/7/8 o 10, presiona clic derecho y seleccionas -Ejecutar como Administrador-).

  • Presionar el botón FIX y aguardar a que termine.

  • La Herramienta guardara el reporte de reparación en el escritorio (FIXLOG.TXT).

Pegar el contenido de este fichero en tu próxima respuesta. :+1:

Reiniciar el equipo y comprobar su funcionamiento en relación al problema planteado y comentarlo.

Saludos.


#21

Aquí te dejo el Log que me has pedido después de ejecutar el fix que me comentaste, lamentablemente el equipo sigue sin ir correctamente :frowning: :

-FIXLOG.TXT:

Fix result of Farbar Recovery Scan Tool (x64) Version: 09.01.2019 01
Ran by Dustito (12-01-2019 01:44:36) Run:1
Running from C:\Users\Dustito\Desktop
Loaded Profiles: Dustito (Available Profiles: Dustito)
Boot Mode: Safe Mode (with Networking)
==============================================

fixlist content:
*****************
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
CustomCLSID: HKU\S-1-5-21-2553252518-2961909032-622737996-1001_Classes\CLSID\{A2C6CB58-C076-425C-ACB7-6D19D64428CD}\localserver32 -> C:\Users\Dustito\AppData\Local\Google\Chrome\Application\71.0.3578.98\notification_helper.exe (Google Inc.)
ContextMenuHandlers1: [7-Zip] -> [CC]{23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [7-Zip] -> [CC]{23170F69-40C1-278A-1000-000100020000} => -> No File
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\Run: [Steam] => "D:\Juegos\Steam\steam.exe" -silent
HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\Run: [AceStream] => C:\Users\Dustito\AppData\Roaming\ACEStream\engine\ace_engine.exe
HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\MountPoints2: {bd43b402-0d25-11e8-8d6c-806e6f6e6963} - "E:\setup.exe"
HKLM\...\Drivers32: [VIDC.RTV1] => C:\WINDOWS\system32\rtvcvfw64.dll [246272 2012-09-28] ()
HKLM\...\Drivers32-x32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] ()
Startup: C:\Users\Dustito\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Twitch.lnk [2018-11-27]
ShortcutTarget: Twitch.lnk -> D:\Programas\Twitch\Bin\Twitch.exe (No File)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> D:\Programas\java64\bin\ssv.dll => No File
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> D:\Programas\java64\bin\jp2ssv.dll => No File
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> D:\Programas\java\bin\ssv.dll => No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> D:\Programas\java\bin\jp2ssv.dll => No File
FF HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\Firefox\Extensions: [[email protected]] - C:\Users\Dustito\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => not found
FF Plugin: @java.com/DTPlugin,version=11.181.2 -> D:\Programas\java64\bin\dtplugin\npDeployJava1.dll [No File]
FF Plugin: @java.com/JavaPlugin,version=11.181.2 -> D:\Programas\java64\bin\plugin2\npjp2.dll [No File]
FF Plugin: @videolan.org/vlc,version=3.0.2 -> D:\Programas\VLC\npvlc.dll [No File]
FF Plugin-x32: @java.com/DTPlugin,version=11.181.2 -> D:\Programas\java\bin\dtplugin\npDeployJava1.dll [No File]
FF Plugin-x32: @java.com/JavaPlugin,version=11.181.2 -> D:\Programas\java\bin\plugin2\npjp2.dll [No File]
FF Plugin HKU\S-1-5-21-2553252518-2961909032-622737996-1001: @acestream.net/acestreamplugin,version=3.1.16.1 -> C:\Users\Dustito\AppData\Roaming\ACEStream\player\npace_plugin.dll [No File]
CHR StartupUrls: Default -> "hxxps://www.google.com/","hxxp://www.istartsurf.com/?type=hp&ts=1411421379&from=smt&uid=WDCXWD6401AALS-00E8B0_WD-WMATV592412624126"
CHR Extension: (Avira Navegaci�n segura) - C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2019-01-05]
CHR Extension: (Ace Script) - C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2018-12-13]
CHR HKU\S-1-5-21-2553252518-2961909032-622737996-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx
S3 WiaRpc; C:\WINDOWS\System32\wiarpc.dll [81920 2018-04-12] ()
S3 GalaxyClientService; "D:\Juegos\GOG Galaxy\GalaxyClientService.exe" [X]
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\Run: [Steam] => "D:\Juegos\Steam\steam.exe" -silent
HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\Run: [AceStream] => C:\Users\Dustito\AppData\Roaming\ACEStream\engine\ace_engine.exe
HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\MountPoints2: {bd43b402-0d25-11e8-8d6c-806e6f6e6963} - "E:\setup.exe"
HKLM\...\Drivers32: [VIDC.RTV1] => C:\WINDOWS\system32\rtvcvfw64.dll [246272 2012-09-28] ()
HKLM\...\Drivers32-x32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] ()
Startup: C:\Users\Dustito\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Twitch.lnk [2018-11-27]
ShortcutTarget: Twitch.lnk -> D:\Programas\Twitch\Bin\Twitch.exe (No File)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> D:\Programas\java64\bin\ssv.dll => No File
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> D:\Programas\java64\bin\jp2ssv.dll => No File
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> D:\Programas\java\bin\ssv.dll => No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> D:\Programas\java\bin\jp2ssv.dll => No File
FF HKU\S-1-5-21-2553252518-2961909032-622737996-1001\...\Firefox\Extensions: [[email protected]] - C:\Users\Dustito\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => not found
FF Plugin: @java.com/DTPlugin,version=11.181.2 -> D:\Programas\java64\bin\dtplugin\npDeployJava1.dll [No File]
FF Plugin: @java.com/JavaPlugin,version=11.181.2 -> D:\Programas\java64\bin\plugin2\npjp2.dll [No File]
FF Plugin: @videolan.org/vlc,version=3.0.2 -> D:\Programas\VLC\npvlc.dll [No File]
FF Plugin-x32: @java.com/DTPlugin,version=11.181.2 -> D:\Programas\java\bin\dtplugin\npDeployJava1.dll [No File]
FF Plugin-x32: @java.com/JavaPlugin,version=11.181.2 -> D:\Programas\java\bin\plugin2\npjp2.dll [No File]
FF Plugin HKU\S-1-5-21-2553252518-2961909032-622737996-1001: @acestream.net/acestreamplugin,version=3.1.16.1 -> C:\Users\Dustito\AppData\Roaming\ACEStream\player\npace_plugin.dll [No File]
CHR StartupUrls: Default -> "hxxps://www.google.com/","hxxp://www.istartsurf.com/?type=hp&ts=1411421379&from=smt&uid=WDCXWD6401AALS-00E8B0_WD-WMATV592412624126"
CHR Extension: (Avira Navegaci�n segura) - C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2019-01-05]
CHR Extension: (Ace Script) - C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2018-12-13]
CHR HKU\S-1-5-21-2553252518-2961909032-622737996-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx
S3 WiaRpc; C:\WINDOWS\System32\wiarpc.dll [81920 2018-04-12] ()
S3 GalaxyClientService; "D:\Juegos\GOG Galaxy\GalaxyClientService.exe" [X]
C:\Windows\System32\DeviceSetupStatusProvider.dll
C:\Windows\System32\perftrack.dll
C:\Windows\System32\rometadata.dll
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\System32\wups.dll
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END
*****************

Error: Restore point can only be created in normal mode.
Processes closed successfully.
HKU\S-1-5-21-2553252518-2961909032-622737996-1001_Classes\CLSID\{A2C6CB58-C076-425C-ACB7-6D19D64428CD} => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\CLSID\[CC]{23170F69-40C1-278A-1000-000100020000} => not found
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\CLSID\[CC]{23170F69-40C1-278A-1000-000100020000} => not found
"HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce\\WAB Migrate" => removed successfully
"HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce\\WAB Migrate" => removed successfully
"HKU\S-1-5-21-2553252518-2961909032-622737996-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Steam" => removed successfully
"HKU\S-1-5-21-2553252518-2961909032-622737996-1001\Software\Microsoft\Windows\CurrentVersion\Run\\AceStream" => removed successfully
HKU\S-1-5-21-2553252518-2961909032-622737996-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bd43b402-0d25-11e8-8d6c-806e6f6e6963} => removed successfully
HKLM\Software\Classes\CLSID\{bd43b402-0d25-11e8-8d6c-806e6f6e6963} => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32\\VIDC.RTV1" => removed successfully
"HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32\\VIDC.RTV1" => removed successfully
C:\Users\Dustito\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Twitch.lnk => moved successfully
"D:\Programas\Twitch\Bin\Twitch.exe" => not found
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => removed successfully
HKLM\Software\Classes\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} => removed successfully
HKLM\Software\Classes\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} => removed successfully
"HKU\S-1-5-21-2553252518-2961909032-622737996-1001\Software\Mozilla\Firefox\Extensions\\[email protected]" => removed successfully
HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.181.2 => removed successfully
HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.181.2 => removed successfully
HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=3.0.2 => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.181.2 => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.181.2 => removed successfully
HKU\S-1-5-21-2553252518-2961909032-622737996-1001\Software\MozillaPlugins\@acestream.net/acestreamplugin,version=3.1.16.1 => removed successfully
"C:\Users\Dustito\AppData\Roaming\ACEStream\player\npace_plugin.dll" => not found
"Chrome StartupUrls" => removed successfully
CHR Extension: (Avira Navegaci�n segura) - C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2019-01-05] => Error: No automatic fix found for this entry.
CHR Extension: (Ace Script) - C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2018-12-13] => Error: No automatic fix found for this entry.
HKU\S-1-5-21-2553252518-2961909032-622737996-1001\SOFTWARE\Google\Chrome\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo => removed successfully
HKLM\System\CurrentControlSet\Services\WiaRpc => removed successfully
WiaRpc => service removed successfully
HKLM\System\CurrentControlSet\Services\GalaxyClientService => removed successfully
GalaxyClientService => service removed successfully
"HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce\\WAB Migrate" => not found
"HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce\\WAB Migrate" => not found
"HKU\S-1-5-21-2553252518-2961909032-622737996-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Steam" => not found
"HKU\S-1-5-21-2553252518-2961909032-622737996-1001\Software\Microsoft\Windows\CurrentVersion\Run\\AceStream" => not found
HKU\S-1-5-21-2553252518-2961909032-622737996-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bd43b402-0d25-11e8-8d6c-806e6f6e6963} => not found
HKLM\Software\Classes\CLSID\{bd43b402-0d25-11e8-8d6c-806e6f6e6963} => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32\\VIDC.RTV1" => not found
"HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32\\VIDC.RTV1" => not found
"C:\Users\Dustito\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Twitch.lnk" => not found
"D:\Programas\Twitch\Bin\Twitch.exe" => not found
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => not found
HKLM\Software\Classes\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => not found
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} => not found
HKLM\Software\Classes\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} => not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => not found
HKLM\Software\Wow6432Node\Classes\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} => not found
HKLM\Software\Wow6432Node\Classes\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} => not found
"HKU\S-1-5-21-2553252518-2961909032-622737996-1001\Software\Mozilla\Firefox\Extensions\\[email protected]" => not found
HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.181.2 => not found
HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.181.2 => not found
HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=3.0.2 => not found
HKLM\Software\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.181.2 => not found
HKLM\Software\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.181.2 => not found
HKU\S-1-5-21-2553252518-2961909032-622737996-1001\Software\MozillaPlugins\@acestream.net/acestreamplugin,version=3.1.16.1 => not found
"C:\Users\Dustito\AppData\Roaming\ACEStream\player\npace_plugin.dll" => not found
"Chrome StartupUrls" => not found
CHR Extension: (Avira Navegaci�n segura) - C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2019-01-05] => Error: No automatic fix found for this entry.
CHR Extension: (Ace Script) - C:\Users\Dustito\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2018-12-13] => Error: No automatic fix found for this entry.
HKU\S-1-5-21-2553252518-2961909032-622737996-1001\SOFTWARE\Google\Chrome\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo => not found
WiaRpc => service not found.
GalaxyClientService => service not found.
C:\Windows\System32\DeviceSetupStatusProvider.dll => moved successfully
C:\Windows\System32\perftrack.dll => moved successfully
C:\Windows\System32\rometadata.dll => moved successfully
C:\Windows\System32\RuntimeBroker.exe => moved successfully
C:\Windows\System32\wups.dll => moved successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-21-2553252518-2961909032-622737996-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-21-2553252518-2961909032-622737996-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully


========= End of RemoveProxy: =========


========= netsh winsock reset =========

La siguiente DLL de ayuda no se puede cargar: WWANCFG.DLL.

El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= End of CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows


Adaptador de Ethernet Ethernet:

   Sufijo DNS espec¡fico para la conexi¢n. . : Home
   V¡nculo: direcci¢n IPv6 local. . . : fe80::5c8a:ba9c:1afb:3cb2%12
   Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.1.131
   M scara de subred . . . . . . . . . . . . : 255.255.255.0
   Puerta de enlace predeterminada . . . . . : fe80::1%12
                                       192.168.1.1

========= End of CMD: =========


========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

========= End of CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.

Unable to connect to BITS - 0x8007043c
El servicio no puede iniciarse en modo a prueba de errores



========= End of CMD: =========


========= netsh advfirewall reset =========

La siguiente DLL de ayuda no se puede cargar: WWANCFG.DLL.
Aceptar


========= End of CMD: =========


========= netsh advfirewall set allprofiles state ON =========

La siguiente DLL de ayuda no se puede cargar: WWANCFG.DLL.
Aceptar


========= End of CMD: =========


========= netsh int ipv4 reset =========

La siguiente DLL de ayuda no se puede cargar: WWANCFG.DLL.
Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= End of CMD: =========


========= netsh int ipv6 reset =========

La siguiente DLL de ayuda no se puede cargar: WWANCFG.DLL.
Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= End of CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 8151040 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 72734030 B
Java, Flash, Steam htmlcache => 14132179 B
Windows/system/drivers => 671953 B
Edge => 215242 B
Chrome => 226406358 B
Firefox => 17351187 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
LocalService => 0 B
NetworkService => 3954 B
NetworkService => 0 B
Dustito => 95288233 B

RecycleBin => 0 B
EmptyTemp: => 414.8 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 01:45:19 ====