Windows 10 se queda colgado pantalla de inicio

#1

Buenas tardes Mi problema reciente, es que el Windows 10, carga muy muy lento, y tarda mucho en quedar estable, normalmente un reinicio me tardaba como máximo 2 min y ahora he notado que cuesta mucho tiempo casi 7 o 10 min, también he alcanzado a ver que en momentos el sistema tiende a quedar colgado por algunos segundos como si hubiera “lag interno” ya sospecho de una infección por virus. Gracias por su atención al tema

#2

Buenas @Cristian_cat bienvenido al Foro.

Para revisar tu máquina, sigue estos pasos, en el orden indicado y leyendo todo lo explicado. :+1:

:one: Desactiva temporalmente el Antivirus :arrow_forward: Cómo deshabilitar temporalmente su Antivirus, mientras estemos realizando TODOS los pasos.

Vamos a descargar en TU ESCRITORIO(y NO en otro lugar :face_with_monocle:) todas las herramientas que vamos a utilizar en este procedimiento (pero no las ejecutes todavía) :


:two: Ejecutas las herramientas de una en una y en el orden indicado :



CCleaner.-

  • Instalas y Ejecutas CCleaner siguiendo los pasos indicados en el manual.

  • Úsalo primero en su opción de Limpiador para borrar cookies, temporales de Internet y todos los archivos que te muestre como obsoletos.

  • Después usa su opción de Registro para limpiar todo el registro de Windows(haciendo copia de seguridad).

Malwarebytes.-

  • Instalas y Ejecutas MBAM siguiendo los pasos indicados en el manual.

  • Realiza un Análisis Completo. :white_check_mark:

  • Seleccionando TODOS a Cuarentena para enviarlo a la cuarentena y Reinicias el sistema.

  • En el apartado del manual :arrow_forward:Historial :arrow_backward: encontrarás el informe del MBAM, que debes copiar y pegar en tu próxima respuesta, para analizarlo.

AdwCleaner.-

  • Ejecuta Adwcleaner.exe.

  • Pulsamos en el botón Analizar ahora, y espera a que se realice el proceso, inmediatamente pulsa siempre sobre el botón Iniciar Reparación.

  • Espera a que se complete y sigue las instrucciones, si te pidiera Reiniciar el sistema Aceptas.

  • El log/informe lo encontramos en la pestaña “Informes”, volviendo a abrir el programa si fuese necesario, para poder copiarlo y pegarlo en tu próxima respuesta.

  • El informe también se puede encontrar en C:\AdwCleaner\Logs\AdwCleaner[C00].txt

Junkware Removal Tool.-

  • Ejecuta JRT.exe.

  • Y pulsar cualquier tecla para continuar, esperar pacientemente a que termine el proceso.

  • Si en algún momento te pide Reiniciar hazlo.

  • Al finalizar, un registro/informe (JRT.txt) se guardara en el escritorio y se abrirá automáticamente.

  • Copia y pega el contenido de JRT.txt en tu próxima respuesta.

Farbar Recovery Scan Tool.-

  • Ejecuta FRST.exe.

  • En el mensaje de la ventana del Disclaimer, pulsamos Yes

  • En la ventana principal pulsamos en el botón Scan y esperamos a que concluya el proceso.

  • Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.

:three: Poner los informes en tu próxima respuesta de :

  • Malwarebytes, AdwCleaner, JRT, FRST + Addition.txt, y en ese orden. :+1:

Debes copiarlos y pegarlos con todo su contenido y usaras varios mensajes si recibes un mensaje de error indicando que es muy largo(mas de 50.000 caracteres aprox.).

Y nos cuentas como funciona tu equipo en relación al problema planteado. :face_with_monocle:

Saludos Javier.

#3

Voy a ello, muchas gracias, en breve colocaré los resultados.

#4

Por cierto el Google crome me detecta el Farbar como archivo peligroso!, puedo darle aceptar?

#5

Hola.

Si…por supuesto…descargalo sin problemas. :+1:

#9
Malwarebytes
www.malwarebytes.com

-Detalles del registro-
Fecha del análisis: 16/4/19
Hora del análisis: 20:02
Archivo de registro: ca7c0204-6071-11e9-af04-bc5ff497ad69.json

-Información del software-
Versión: 3.7.1.2839
Versión de los componentes: 1.0.563
Versión del paquete de actualización: 1.0.10192
Licencia: Gratis

-Información del sistema-
SO: Windows 10 (Build 17763.437)
CPU: x64
Sistema de archivos: NTFS
Usuario: DESKTOP-3LB1VVH\Crhistian Rodriguez

-Resumen del análisis-
Tipo de análisis: Análisis de amenazas
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 379044
Amenazas detectadas: 20
Amenazas en cuarentena: 13
Tiempo transcurrido: 6 min, 0 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)

Módulo: 0
(No hay elementos maliciosos detectados)

Clave del registro: 4
Adware.Wajam, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NLASVC\PARAMETERS\INTERNET\MANUALPROXIES, En cuarentena, [508], [-1],0.0.0
Generic.Malware/Suspicious, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\KMSAutoNet, Sin acciones por parte del usuario, [0], [392686],1.0.10192
Generic.Malware/Suspicious, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{27EA8E45-A97F-49C3-AB20-2FB5B287E088}, En cuarentena, [0], [392686],1.0.10192
Generic.Malware/Suspicious, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{27EA8E45-A97F-49C3-AB20-2FB5B287E088}, En cuarentena, [0], [392686],1.0.10192

Valor del registro: 5
Adware.Wajam, HKU\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, En cuarentena, [508], [-1],0.0.0
Adware.Wajam, HKU\S-1-5-21-3188641711-1092517058-1664681219-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, En cuarentena, [508], [-1],0.0.0
Adware.Wajam, HKU\S-1-5-21-3188641711-1092517058-1664681219-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, En cuarentena, [508], [-1],0.0.0
Adware.Wajam, HKU\S-1-5-21-3188641711-1092517058-1664681219-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYOVERRIDE, En cuarentena, [508], [-1],0.0.0
Adware.Wajam, HKU\.DEFAULT\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, En cuarentena, [508], [-1],0.0.0

Datos del registro: 0
(No hay elementos maliciosos detectados)

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 1
Adware.Wajam, C:\WINDOWS\SYSTEM32\SSL, En cuarentena, [508], [533889],1.0.10192

Archivo: 10
Adware.Wajam, C:\WINDOWS\SYSTEM32\SSL\CERT.DB, En cuarentena, [508], [533889],1.0.10192
Adware.Wajam, C:\Windows\System32\SSL\7d3de5114cdfc3ca.cer, En cuarentena, [508], [533889],1.0.10192
Adware.Wajam, C:\Windows\System32\SSL\x.db, En cuarentena, [508], [533889],1.0.10192
Generic.Malware/Suspicious, C:\WINDOWS\SYSTEM32\TASKS\KMSAutoNet, Sin acciones por parte del usuario, [0], [392686],1.0.10192
Generic.Malware/Suspicious, C:\PROGRAMDATA\KMSAUTOS\KMSAUTO NET.EXE, Sin acciones por parte del usuario, [0], [392686],1.0.10192
Generic.Malware/Suspicious, C:\PROGRAMDATA\KMSAUTOS\BIN\TUNMIRROR2.EXE, Sin acciones por parte del usuario, [0], [392686],1.0.10192
Generic.Malware/Suspicious, C:\PROGRAMDATA\KMSAUTOS\BIN\KMSSS.EXE, Sin acciones por parte del usuario, [0], [392686],1.0.10192
RiskWare.GameHack.Generic, C:\USERS\CRHISTIAN RODRIGUEZ\DOWNLOADS\TOTAL WAR WARHAMMER II V1.0-V1.4.0 PLUS 18 TRAINER.EXE, Sin acciones por parte del usuario, [12545], [339459],1.0.10192
Trojan.PasswordStealer, C:\USERS\CRHISTIAN RODRIGUEZ\DOWNLOADS\SIN CONFIRMAR 192044.CRDOWNLOAD, En cuarentena, [3570], [619658],1.0.10192
RiskWare.GameHack.Generic, C:\USERS\CRHISTIAN RODRIGUEZ\DOWNLOADS\TOTAL.WAR.WARHAMMER.2.V1.4.0.PLUS18TRN.FLING.ZIP, Sin acciones por parte del usuario, [12545], [339459],1.0.10192

Sector físico: 0
(No hay elementos maliciosos detectados)

WMI: 0
(No hay elementos maliciosos detectados)


(end)
# -------------------------------
# Malwarebytes AdwCleaner 7.3.0.0
# -------------------------------
# Build:    04-04-2019
# Database: 2019-04-15.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    04-16-2019
# Duration: 00:00:02
# OS:       Windows 10 Pro
# Cleaned:  8
# Failed:   0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted       C:\Windows\Installer\{4D0A0750-B034-4DF8-97DE-26F1212AC2FF}

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted       HKCU\Software\PopWnd
Deleted       HKCU\Software\UpgSvr
Deleted       HKCU\Software\dlr
Deleted       HKLM\SOFTWARE\Classes\Applications\DriverDocSetup.exe
Deleted       HKU\.DEFAULT\Software\UpgSvr
Deleted       HKU\S-1-5-18\Software\UpgSvr

***** [ Chromium (and derivatives) ] *****

Deleted       Fast search

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1652 octets] - [16/04/2019 20:32:40]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 10 Enterprise x64 
Ran by Crhistian Rodriguez (Administrator) on 16/04/2019 at 20:43:02.96
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 0 




Registry: 0 





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 16/04/2019 at 20:52:02.47
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
#10
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15.04.2019 01
Ran by Crhistian Rodriguez (administrator) on DESKTOP-3LB1VVH (16-04-2019 20:53:41)
Running from C:\Users\Crhistian Rodriguez\Desktop
Loaded Profiles: Crhistian Rodriguez (Available Profiles: defaultuser0 & Crhistian Rodriguez)
Platform: Windows 10 Pro Version 1809 17763.437 (X64) Language: Español (México)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Autodesk, Inc. -> Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Huawei Technologies Co., Ltd. -> ) C:\ProgramData\MobileBrServ\mbbService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Rosetta Stone Ltd -> Rosetta Stone Ltd.) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1903.4-0\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Trace Software International -> ) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Electrical\server\EwServer.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Mentor Graphics Corporation -> Mentor Graphics Corporation) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe
(Sony) [File not signed] C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe
(Atheros Communications, Inc.) [File not signed] C:\Program Files (x86)\Jumpstart\jswpbapi.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Mentor Graphics Corporation -> Mentor Graphics Corporation) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\dispatcher.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1903.4-0\NisSrv.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.42.60.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.42.60.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(BlueStack Systems, Inc.) [File not signed] C:\Program Files (x86)\BlueStacks\HD-Agent.exe
(Sony Mobile Communications AB -> Sony) C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanionAgent.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD15\PowerDVD15Agent.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler64.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.42.60.0_x64__kzf8qxf38zg5c\SkypeBridge\SkypeBridge.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SrTasks.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19021.18010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Zune Launcher] => C:\Program Files\Zune\ZuneLauncher.exe [163552 2011-08-05] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [Cm108BSound] => C:\Program Files\TECKNET 7.1 GAMING HEADSET\CPL\FaceLift_x64.exe [2359296 2014-11-10] () [File not signed]
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [1691136 2012-05-31] (Wondershare) [File not signed]
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [PowerDVD15Agent] => C:\Program Files (x86)\CyberLink\PowerDVD15\PowerDVD15Agent.exe [949960 2015-05-27] (CyberLink Corp. -> CyberLink Corp.)
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [1058512 2018-12-18] (DivX, LLC. -> DivX, LLC)
HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [708904 2018-05-09] (Autodesk, Inc. -> Autodesk, Inc.)
HKLM-x32\...\Run: [jswtrayutil] => C:\Program Files (x86)\Jumpstart\jswtrayutil.exe [528384 2008-09-26] (Atheros Communications, Inc.) [File not signed]
HKU\S-1-5-21-3188641711-1092517058-1664681219-1001\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\Bluestacks\HD-Agent.exe [519168 2018-06-21] (BlueStack Systems, Inc.) [File not signed]
HKU\S-1-5-21-3188641711-1092517058-1664681219-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [35193232 2019-04-13] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-3188641711-1092517058-1664681219-1001\...\Run: [XperiaCompanionAgent] => C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanionAgent.exe [2347872 2018-12-12] (Sony Mobile Communications AB -> Sony)
HKU\S-1-5-21-3188641711-1092517058-1664681219-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22488952 2019-03-11] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3188641711-1092517058-1664681219-1001\...\Policies\Explorer: [] 
HKLM\...\Drivers32: [msacm.vorbis] => C:\Windows\system32\vorbis.acm [1470976 2015-03-11] (HMS hxxp://hp.vector.co.jp/authors/VA012897/) [File not signed]
HKLM\...\Drivers32: [msacm.vorbis] => C:\Windows\SysWOW64\vorbis.acm [1554944 2015-03-11] (HMS hxxp://hp.vector.co.jp/authors/VA012897/) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.103\Installer\chrmstp.exe [2019-04-05] (Google LLC -> Google Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Programa de descargas en segundo plano de SOLIDWORKS.lnk [2018-04-12]
ShortcutTarget: Programa de descargas en segundo plano de SOLIDWORKS.lnk -> C:\Program Files (x86)\Common Files\Gestor de instalación de SOLIDWORKS\BackgroundDownloading\sldBgDwld.exe (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes SolidWorks Corp.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS 2018 Fast Start.lnk [2018-04-12]
ShortcutTarget: SOLIDWORKS 2018 Fast Start.lnk -> C:\Windows\Installer\{837A0B0D-F508-4088-8B05-606477DEB905}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe (Flexera Software LLC) [File not signed]
Startup: C:\Users\Crhistian Rodriguez\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2017-02-02]
ShortcutTarget: MEGAsync.lnk -> C:\ProgramData\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited)
GroupPolicy: Restriction ? <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 178.156.54.1
Tcpip\..\Interfaces\{2af17c46-1524-46e1-96e6-37c7604e865f}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{7a7ea283-39f4-4976-8eb5-edf551bc226d}: [DhcpNameServer] 80.58.61.250 80.58.61.254
Tcpip\..\Interfaces\{7eaf90ae-c12b-4cad-a665-308c17a6a6a0}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{b83cb5ba-da53-4e16-b4a2-5e5b52d4b7b9}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{f5e09ba2-a92c-414d-b2b9-1f4418fb4a6a}: [DhcpNameServer] 178.156.54.1

Internet Explorer:
==================
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-04-05] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2019-04-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-04-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-04-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-04-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-04-05] (Microsoft Corporation -> Microsoft Corporation)

Edge: 
======
Edge HomeButtonPage: HKU\S-1-5-21-3188641711-1092517058-1664681219-1001 -> hxxp://www.google.hn/

FireFox:
========
FF Plugin: 3ds.com/ComposerPlayerWebPlugin_x86_64 -> C:\PROGRA~1\SOLIDW~1\SOLIDW~4\Bin\NPCOMP~1.DLL [2017-10-06] (Dassault Systemes SE -> Dassault Systemes)
FF Plugin-x32: 3ds.com/ComposerPlayerWebPlugin -> C:\PROGRA~1\SOLIDW~1\SOLIDW~4\Bin\x86\NPCOMP~1.DLL [2017-10-06] (Dassault Systemes SE -> Dassault Systemes)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2017-11-21] (DivX, LLC -> DivX, LLC)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-04-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-04-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2019-04-09] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2019-04-09] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-27] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-27] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-03-25] (Adobe Inc. -> Adobe Systems Inc.)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Crhistian Rodriguez\AppData\Local\Google\Chrome\User Data\DEFAULT [2019-04-16]
CHR Extension: (Presentaciones) - C:\Users\Crhistian Rodriguez\AppData\Local\Google\Chrome\User Data\DEFAULT\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Documentos) - C:\Users\Crhistian Rodriguez\AppData\Local\Google\Chrome\User Data\DEFAULT\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Google Drive) - C:\Users\Crhistian Rodriguez\AppData\Local\Google\Chrome\User Data\DEFAULT\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-10-14]
CHR Extension: (YouTube) - C:\Users\Crhistian Rodriguez\AppData\Local\Google\Chrome\User Data\DEFAULT\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-10-14]
CHR Extension: (Adobe Acrobat) - C:\Users\Crhistian Rodriguez\AppData\Local\Google\Chrome\User Data\DEFAULT\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-04-02]
CHR Extension: (MyJDownloader Browser Extension) - C:\Users\Crhistian Rodriguez\AppData\Local\Google\Chrome\User Data\DEFAULT\Extensions\fbcohnmimjicjdomonkcbcpbpnhggkip [2019-02-27]
CHR Extension: (Hojas de cálculo) - C:\Users\Crhistian Rodriguez\AppData\Local\Google\Chrome\User Data\DEFAULT\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Crhistian Rodriguez\AppData\Local\Google\Chrome\User Data\DEFAULT\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-15]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Crhistian Rodriguez\AppData\Local\Google\Chrome\User Data\DEFAULT\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Tab Hibernation) - C:\Users\Crhistian Rodriguez\AppData\Local\Google\Chrome\User Data\DEFAULT\Extensions\pbdpajcdgknpendpmecafmopknefafha [2019-04-16]
CHR Extension: (Gmail) - C:\Users\Crhistian Rodriguez\AppData\Local\Google\Chrome\User Data\DEFAULT\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-10-14]
CHR Extension: (Chrome Media Router) - C:\Users\Crhistian Rodriguez\AppData\Local\Google\Chrome\User Data\DEFAULT\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-03-23]
CHR Profile: C:\Users\Crhistian Rodriguez\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-04-16]
CHR Profile: C:\Users\Crhistian Rodriguez\AppData\Local\Google\Chrome\User Data\System Profile [2019-04-16]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1388920 2018-05-09] (Autodesk, Inc. -> Autodesk Inc.)
S2 Autodesk Content Service; C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [31160 2015-02-06] (Autodesk, Inc -> Autodesk, Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8473200 2019-03-27] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11082312 2019-04-02] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2019-01-12] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 ewserver; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Electrical\server\EwServer.exe [191664 2017-10-06] (Trace Software International -> )
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [337888 2016-05-04] (Intel(R) pGFX -> Intel Corporation)
S3 impi_hydra; C:\Program Files\Common Files\SolidWorks Shared\Simulation Worker Agent\hydra_service.exe [880296 2017-10-06] (Intel(R) Software Development Products -> Intel Corporation)
R2 jswpbapi; C:\Program Files (x86)\Jumpstart\jswpbapi.exe [265216 2008-09-26] (Atheros Communications, Inc.) [File not signed]
S3 jswpsapi; C:\Program Files (x86)\Jumpstart\jswpsapi.exe [954368 2008-09-26] (Atheros Communications, Inc.) [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
S2 MSSQL$TEW_SQLEXPRESS; C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe [372408 2017-07-06] (Microsoft Corporation -> Microsoft Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [781680 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [781680 2019-04-02] (NVIDIA Corporation -> NVIDIA Corporation)
R2 RemoteSolverDispatcher; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe [264712 2017-10-06] (Mentor Graphics Corporation -> Mentor Graphics Corporation)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5382448 2019-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Servicio HILINK; C:\ProgramData\MobileBrServ\mbbservice.exe [239184 2014-02-15] (Huawei Technologies Co., Ltd. -> )
S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2018-04-12] (SolidWorks) [File not signed]
S4 SQLAgent$TEW_SQLEXPRESS; C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [613056 2017-07-06] (Microsoft Corporation -> Microsoft Corporation)
S2 SWVisualize2018.BoostService; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Visualize Boost\SWVisualize.BoostService.exe [59280 2017-10-06] (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes)
S2 SWVisualize2018.Queue.Server; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Visualize\SWVisualize.Queue.Server.exe [24976 2017-10-06] (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1903.4-0\NisSrv.exe [3856504 2019-04-09] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1903.4-0\MsMpEng.exe [113992 2019-04-09] (Microsoft Corporation -> Microsoft Corporation)
S3 WsDrvInst; C:\Program Files (x86)\Wondershare\Video Converter Ultimate\Transfer\DriverInstall.exe [105184 2017-12-29] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 XperiaCompanionService; C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe [2191360 2018-12-12] (Sony) [File not signed]
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 
R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 asstahci64; C:\WINDOWS\System32\drivers\asstahci64.sys [88936 2015-06-17] (ASMedia Technology Inc. -> Asmedia Technology)
S3 AxtuDrv; C:\Windows\SysWOW64\Drivers\AxtuDrv.sys [21768 2016-10-13] (ASROCK Incorporation -> RW-Everything)
R3 BCMWL63A; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [11794392 2017-04-26] (Broadcom Corporation -> Broadcom Corp)
S3 BstkDrv; C:\Program Files (x86)\BlueStacks\BstkDrv.sys [269408 2018-06-21] (Bluestack Systems, Inc. -> Bluestack System Inc. )
R3 CLVirtualBus02; C:\WINDOWS\System32\drivers\CLVirtualBus02.sys [103176 2015-05-27] (CyberLink Corp. -> CyberLink)
R3 CMUAC; C:\WINDOWS\system32\DRIVERS\CMUAC.sys [613888 2014-10-09] (C-MEDIA ELECTRONICS INC. -> C-MEDIA)
R1 JSWPSLWF; C:\WINDOWS\system32\DRIVERS\jswpslwfx.sys [26624 2008-05-15] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-02-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [274416 2019-04-16] (Malwarebytes Corporation -> Malwarebytes)
R2 NPF; C:\WINDOWS\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_37ec54c19854e219\nvlddmkm.sys [20747736 2019-04-10] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-03-28] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69840 2019-03-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [66792 2019-02-20] (NVIDIA Corporation -> NVIDIA Corporation)
S3 PcaSp60; C:\Windows\SysWOW64\DRIVERS\PcaSp60.sys [38912 2010-09-07] (PRINTING COMMUNICATIONS ASSOCIATES, INC -> Printing Communications Assoc., Inc. (PCAUSA))
S4 RsFx0310; C:\WINDOWS\System32\DRIVERS\RsFx0310.sys [249024 2015-04-20] (Microsoft Corporation -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46472 2019-04-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [343520 2019-04-09] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [68576 2019-04-09] (Microsoft Windows -> Microsoft Corporation)
R2 {687703DE-DC6D-4649-892B-B8497854A6AB}; C:\Program Files (x86)\CyberLink\PowerDVD15\Common\NavFilter\000.fcl [29896 2015-05-27] (CyberLink Corp. -> CyberLink Corp.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-04-16 20:53 - 2019-04-16 20:55 - 000023979 _____ C:\Users\Crhistian Rodriguez\Desktop\FRST.txt
2019-04-16 20:53 - 2019-04-16 20:53 - 000000000 ____D C:\FRST
2019-04-16 20:52 - 2019-04-16 20:52 - 000000567 _____ C:\Users\Crhistian Rodriguez\Desktop\JRT.txt
2019-04-16 20:40 - 2019-04-16 20:33 - 000001688 _____ C:\Users\Crhistian Rodriguez\Desktop\AdwCleaner[C00].txt
2019-04-16 20:40 - 2019-04-16 20:32 - 000001652 _____ C:\Users\Crhistian Rodriguez\Desktop\AdwCleaner[S00].txt
2019-04-16 20:35 - 2019-04-16 20:35 - 000274416 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2019-04-16 20:30 - 2019-04-16 20:33 - 000000000 ____D C:\AdwCleaner
2019-04-16 20:19 - 2019-04-16 20:19 - 000004236 _____ C:\Users\Crhistian Rodriguez\Desktop\AnalisisMBa.txt
2019-04-16 19:55 - 2019-04-16 19:55 - 000001912 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-04-16 19:55 - 2019-04-16 19:55 - 000000000 ____D C:\Users\Crhistian Rodriguez\AppData\Local\mbamtray
2019-04-16 19:55 - 2019-04-16 19:55 - 000000000 ____D C:\Users\Crhistian Rodriguez\AppData\Local\mbam
2019-04-16 19:55 - 2019-04-16 19:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-04-16 19:55 - 2019-02-01 12:20 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2019-04-16 19:55 - 2019-01-08 16:32 - 000153328 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2019-04-16 19:51 - 2019-04-16 19:52 - 000462402 _____ C:\Users\Crhistian Rodriguez\Desktop\cc_20190416_195147.reg
2019-04-16 19:45 - 2019-04-16 19:46 - 002434048 _____ (Farbar) C:\Users\Crhistian Rodriguez\Desktop\FRST64.exe
2019-04-16 19:40 - 2019-04-16 19:40 - 000003936 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-04-16 19:40 - 2019-04-16 19:40 - 000002916 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2019-04-16 19:40 - 2019-04-16 19:40 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-04-16 19:40 - 2019-04-16 19:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2019-04-16 19:40 - 2019-04-16 19:40 - 000000000 ____D C:\Program Files\CCleaner
2019-04-16 19:27 - 2019-04-16 19:27 - 001790024 _____ (Malwarebytes) C:\Users\Crhistian Rodriguez\Desktop\JRT.exe
2019-04-16 19:26 - 2019-04-16 19:26 - 007025360 _____ (Malwarebytes) C:\Users\Crhistian Rodriguez\Desktop\adwcleaner_7.3.exe
2019-04-16 19:25 - 2019-04-16 19:25 - 062787888 _____ (Malwarebytes ) C:\Users\Crhistian Rodriguez\Desktop\mb3-setup-consumer-3.7.1.2839-1.0.563-1.0.10170.exe
2019-04-16 19:24 - 2019-04-16 19:24 - 021205512 _____ (Piriform Software Ltd) C:\Users\Crhistian Rodriguez\Desktop\ccsetup555.exe
2019-04-16 19:21 - 2019-04-16 19:22 - 000000000 ____D C:\Users\Crhistian Rodriguez\Desktop\Documentos de Escritorio
2019-04-16 09:43 - 2019-04-16 09:43 - 000019680 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_1785308477925.dll
2019-04-16 00:52 - 2019-04-16 01:30 - 000000000 ____D C:\Users\Crhistian Rodriguez\Downloads\HLMSYWTSN-1080 ZonaLeRos
2019-04-15 08:05 - 2019-04-15 08:05 - 000019680 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_1843510789909.dll
2019-04-13 18:17 - 2019-04-13 18:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Herramientas de Microsoft Office
2019-04-13 01:12 - 2019-04-13 01:23 - 000000000 ____D C:\Users\Crhistian Rodriguez\Downloads\RJGA0103-032-BRRIP108060FPS
2019-04-13 00:09 - 2019-04-13 00:09 - 000000000 ____D C:\Users\Crhistian Rodriguez\Downloads\Update1 T6 GamezFull
2019-04-12 15:20 - 2019-04-09 13:56 - 000141384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2019-04-12 15:17 - 2019-04-10 16:54 - 001006800 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2019-04-12 15:17 - 2019-04-10 16:54 - 001006800 _____ C:\WINDOWS\system32\vulkan-1.dll
2019-04-12 15:17 - 2019-04-10 16:54 - 000870096 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2019-04-12 15:17 - 2019-04-10 16:54 - 000870096 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2019-04-12 15:17 - 2019-04-10 16:54 - 000286416 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2019-04-12 15:17 - 2019-04-10 16:54 - 000286416 _____ C:\WINDOWS\system32\vulkaninfo.exe
2019-04-12 15:17 - 2019-04-10 16:54 - 000260304 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2019-04-12 15:17 - 2019-04-10 16:54 - 000260304 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2019-04-12 15:17 - 2019-04-10 16:53 - 000552328 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2019-04-12 15:17 - 2019-04-10 16:53 - 000457096 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2019-04-12 15:17 - 2019-04-10 16:52 - 002033112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2019-04-12 15:17 - 2019-04-10 16:52 - 001536144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2019-04-12 15:17 - 2019-04-10 16:52 - 001465432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2019-04-12 15:17 - 2019-04-10 16:52 - 001130584 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2019-04-12 15:17 - 2019-04-10 16:52 - 000668664 _____ C:\WINDOWS\system32\nvofapi64.dll
2019-04-12 15:17 - 2019-04-10 16:52 - 000631896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2019-04-12 15:17 - 2019-04-10 16:52 - 000534936 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2019-04-12 15:17 - 2019-04-10 16:52 - 000522144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2019-04-12 15:17 - 2019-04-10 13:52 - 010320528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2019-04-12 15:17 - 2019-04-10 13:52 - 008785944 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2019-04-12 15:17 - 2019-04-10 13:52 - 000915088 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2019-04-12 15:17 - 2019-04-10 13:52 - 000822576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2019-04-12 15:17 - 2019-04-10 13:51 - 001471600 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
2019-04-12 15:17 - 2019-04-10 13:51 - 001462024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2019-04-12 15:17 - 2019-04-10 13:51 - 001151984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
2019-04-12 15:17 - 2019-04-10 13:51 - 000794440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2019-04-12 15:17 - 2019-04-10 13:51 - 000638176 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2019-04-12 15:16 - 2019-04-10 16:52 - 040421064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2019-04-12 15:16 - 2019-04-10 16:52 - 035268296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2019-04-12 15:16 - 2019-04-10 16:52 - 004625552 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2019-04-12 15:16 - 2019-04-10 16:52 - 001734288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6442531.dll
2019-04-12 15:16 - 2019-04-10 16:52 - 001467864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6442531.dll
2019-04-12 15:16 - 2019-04-10 16:52 - 000752544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2019-04-12 15:16 - 2019-04-10 16:52 - 000611928 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2019-04-12 15:16 - 2019-04-10 13:51 - 017432992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2019-04-12 15:16 - 2019-04-10 13:51 - 001145536 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2019-04-12 15:10 - 2019-04-12 15:19 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2019-04-10 15:37 - 2019-04-10 15:37 - 020815360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 019025408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 012139008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 007919104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 006071296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 005436904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 003904512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 003602944 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 003551112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 003421696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2019-04-10 15:37 - 2019-04-10 15:37 - 001521664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 001459080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 001297120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 001294520 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 001259320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-04-10 15:37 - 2019-04-10 15:37 - 001072424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 000897536 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 000740352 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscsvc.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 000617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessManager.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpshell.exe
2019-04-10 15:37 - 2019-04-10 15:37 - 000454144 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 000372224 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdechangepin.exe
2019-04-10 15:37 - 2019-04-10 15:37 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 000363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinit.exe
2019-04-10 15:37 - 2019-04-10 15:37 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 000317240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssecflt.sys
2019-04-10 15:37 - 2019-04-10 15:37 - 000311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 000309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 000263600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssecuser.dll
2019-04-10 15:37 - 2019-04-10 15:37 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2019-04-10 15:37 - 2019-04-10 15:37 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfts.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 026810368 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 023440896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 015223296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 012843520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 009682744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-04-10 15:36 - 2019-04-10 15:36 - 008898048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 007877120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 006925824 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 006544824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 006440960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 006309040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 005765120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 005205448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 004704272 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 004660224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 004588536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-04-10 15:36 - 2019-04-10 15:36 - 004527624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 004304896 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 003690496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2019-04-10 15:36 - 2019-04-10 15:36 - 003657728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-04-10 15:36 - 2019-04-10 15:36 - 003656192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 003496448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AI.MachineLearning.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 002942464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 002925880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-04-10 15:36 - 2019-04-10 15:36 - 002871304 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-04-10 15:36 - 2019-04-10 15:36 - 002777224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 002701304 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 002689024 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 002627384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-04-10 15:36 - 2019-04-10 15:36 - 002346496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 002275896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 002127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 002073960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001994768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001969464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-04-10 15:36 - 2019-04-10 15:36 - 001918464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001860096 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001830200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001760768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001701888 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001697752 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-04-10 15:36 - 2019-04-10 15:36 - 001687552 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001674480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001671352 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001647632 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001641400 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001615872 ____R (The ICU Project) C:\WINDOWS\SysWOW64\icuin.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001590064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001506304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001484800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001478968 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001468952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-04-10 15:36 - 2019-04-10 15:36 - 001467344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001458056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001395056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001370624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001360184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2019-04-10 15:36 - 2019-04-10 15:36 - 001342400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-04-10 15:36 - 2019-04-10 15:36 - 001311232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001256448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001249280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001221944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001179680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-04-10 15:36 - 2019-04-10 15:36 - 001155072 ____R (The ICU Project) C:\WINDOWS\SysWOW64\icuuc.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001145856 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001072640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001064448 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001047552 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001026792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001019392 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 001001472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000998712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2019-04-10 15:36 - 2019-04-10 15:36 - 000982528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000981816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2019-04-10 15:36 - 2019-04-10 15:36 - 000976896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000964096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000927232 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000909840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2019-04-10 15:36 - 2019-04-10 15:36 - 000888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
#12
2019-04-10 15:36 - 2019-04-10 15:36 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-04-10 15:36 - 2019-04-10 15:36 - 000872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000845824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000828728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2019-04-10 15:36 - 2019-04-10 15:36 - 000821048 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000809784 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000793600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000772608 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000769536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-04-10 15:36 - 2019-04-10 15:36 - 000762880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000737080 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000731648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000730936 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000730112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000725928 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000711168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000699392 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000672256 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\objsel.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000660480 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000653040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000649064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedRealitySvc.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000620560 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000617784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000609792 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000598544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000568632 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000553784 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000551936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-04-10 15:36 - 2019-04-10 15:36 - 000540448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000531968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000528384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_PCDisplay.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000496128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000474928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2019-04-10 15:36 - 2019-04-10 15:36 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe
2019-04-10 15:36 - 2019-04-10 15:36 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000460800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2019-04-10 15:36 - 2019-04-10 15:36 - 000408528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000385536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-04-10 15:36 - 2019-04-10 15:36 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-04-10 15:36 - 2019-04-10 15:36 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\RADCUI.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcommdlg.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000322568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000312632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000301568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2019-04-10 15:36 - 2019-04-10 15:36 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RADCUI.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000257696 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedPCCSP.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincredui.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMPushRouterCore.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.SharedPC.CredentialProvider.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe
2019-04-10 15:36 - 2019-04-10 15:36 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincredui.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000159272 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2019-04-10 15:36 - 2019-04-10 15:36 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000147496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-04-10 15:36 - 2019-04-10 15:36 - 000143880 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
2019-04-10 15:36 - 2019-04-10 15:36 - 000134456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000133120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Radios.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000115360 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2019-04-10 15:36 - 2019-04-10 15:36 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleprn.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000107832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\EduPrintProv.exe
2019-04-10 15:36 - 2019-04-10 15:36 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvsetup.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000071208 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2019-04-10 15:36 - 2019-04-10 15:36 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntlanman.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDSPnf.exe
2019-04-10 15:36 - 2019-04-10 15:36 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntlanman.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscapi.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\credui.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\dataclen.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshhttp.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscapi.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfproc.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfts.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000039736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WppRecorder.sys
2019-04-10 15:36 - 2019-04-10 15:36 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfproc.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshhttp.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dataclen.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credui.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxssrv.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\RpcPing.exe
2019-04-10 15:36 - 2019-04-10 15:36 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscdll.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2019-04-10 15:36 - 2019-04-10 15:36 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RpcPing.exe
2019-04-10 15:36 - 2019-04-10 15:36 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscdll.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 017513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 007883776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 007687576 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 007645608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 004991112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 004866560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AI.MachineLearning.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 003982848 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 003557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 003384832 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 003377976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-04-10 15:35 - 2019-04-10 15:35 - 003334496 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 002995712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 002842624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 002720256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-04-10 15:35 - 2019-04-10 15:35 - 002592816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 002469376 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-04-10 15:35 - 2019-04-10 15:35 - 002438368 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 002189312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 002042368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 002022304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 001892864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 001856000 ____R (The ICU Project) C:\WINDOWS\system32\icuin.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 001844448 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 001671680 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 001616384 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 001605120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 001567232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 001496576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 001315328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 001259320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2019-04-10 15:35 - 2019-04-10 15:35 - 001253688 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-04-10 15:35 - 2019-04-10 15:35 - 001213752 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 001191728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 001133568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2019-04-10 15:35 - 2019-04-10 15:35 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-04-10 15:35 - 2019-04-10 15:35 - 001054200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-04-10 15:35 - 2019-04-10 15:35 - 001053192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-04-10 15:35 - 2019-04-10 15:35 - 001044280 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-04-10 15:35 - 2019-04-10 15:35 - 001035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 001022616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 001007616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000984888 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2019-04-10 15:35 - 2019-04-10 15:35 - 000982880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000974352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000926208 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000882176 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2019-04-10 15:35 - 2019-04-10 15:35 - 000877056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000874496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000871792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000865784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000855040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000850760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\conhost.exe
2019-04-10 15:35 - 2019-04-10 15:35 - 000807424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2019-04-10 15:35 - 2019-04-10 15:35 - 000799568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000793832 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000766480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000761280 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000757664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-04-10 15:35 - 2019-04-10 15:35 - 000756736 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000676352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000675096 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000651064 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-04-10 15:35 - 2019-04-10 15:35 - 000611840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000604008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000580024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000552448 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000551936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2019-04-10 15:35 - 2019-04-10 15:35 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2019-04-10 15:35 - 2019-04-10 15:35 - 000522752 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000513040 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000508208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000506168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000485192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000463672 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000407504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000404792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2019-04-10 15:35 - 2019-04-10 15:35 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000386872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000386360 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000385024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000384312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000343984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000325120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000306488 _____ (Microsoft Corporation) C:\WINDOWS\system32\computestorage.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000300032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000283032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000264704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiCloudStore.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000255128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmBroker.exe
2019-04-10 15:35 - 2019-04-10 15:35 - 000183296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Radios.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000169784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2019-04-10 15:35 - 2019-04-10 15:35 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spacebridge.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000159112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winquic.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000157496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2019-04-10 15:35 - 2019-04-10 15:35 - 000156984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winquic.sys
2019-04-10 15:35 - 2019-04-10 15:35 - 000149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleprn.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\negoexts.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2019-04-10 15:35 - 2019-04-10 15:35 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvsetup.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\negoexts.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000098664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpr.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000097808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2019-04-10 15:35 - 2019-04-10 15:35 - 000090424 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000089336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpr.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\KdsCli.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-04-10 15:35 - 2019-04-10 15:35 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mpsdrv.sys
2019-04-10 15:35 - 2019-04-10 15:35 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000035640 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-04-10 15:35 - 2019-04-10 15:35 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-04-10 15:35 - 2019-04-10 15:35 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-04-10 15:35 - 2019-04-10 15:35 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-04-10 15:35 - 2019-04-10 15:35 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-04-10 15:35 - 2019-04-10 15:35 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-04-10 15:35 - 2019-04-10 15:35 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-04-10 15:35 - 2019-04-10 15:35 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-04-10 15:35 - 2019-04-10 15:35 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-04-10 15:35 - 2019-04-10 15:35 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-04-10 15:35 - 2019-04-10 15:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2019-04-10 15:35 - 2019-04-10 15:35 - 000000000 ____D C:\Program Files\Speccy
2019-04-10 15:34 - 2019-04-10 15:34 - 002017792 _____ C:\WINDOWS\system32\rdpnano.dll
2019-04-10 15:34 - 2019-04-10 15:34 - 001672704 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2019-04-10 15:34 - 2019-04-10 15:34 - 000651792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-04-10 15:34 - 2019-04-10 15:34 - 000607744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2019-04-10 15:34 - 2019-04-10 15:34 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\objsel.dll
2019-04-10 15:34 - 2019-04-10 15:34 - 000421392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-04-10 15:34 - 2019-04-10 15:34 - 000300344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2019-04-10 15:34 - 2019-04-10 15:34 - 000234808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2019-04-10 15:34 - 2019-04-10 15:34 - 000195896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-04-10 15:34 - 2019-04-10 15:34 - 000131384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2019-04-10 15:34 - 2019-04-10 15:34 - 000095544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2019-04-08 13:14 - 2019-04-08 13:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Xbox 360 Accessories
2019-04-08 13:14 - 2019-04-08 13:14 - 000000000 ____D C:\Program Files\Microsoft Xbox 360 Accessories
2019-04-08 13:13 - 2019-04-08 13:13 - 007846264 _____ (Microsoft Corporation) C:\Users\Crhistian Rodriguez\Downloads\Xbox360_64Esp.exe
2019-04-06 10:43 - 2019-04-06 10:43 - 000019696 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_26571139206225.dll
2019-04-05 16:25 - 2019-04-05 16:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ages of Mages  The last keeper
2019-04-05 15:54 - 2019-04-05 15:54 - 000000000 ____D C:\Users\Crhistian Rodriguez\AppData\LocalLow\YFCgames
2019-04-05 15:16 - 2019-04-05 15:17 - 000000000 ____D C:\Users\Crhistian Rodriguez\Downloads\Al filo del mañana
2019-04-05 10:39 - 2019-04-13 18:17 - 000002580 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype Empresarial.lnk
2019-04-05 10:39 - 2019-04-13 18:17 - 000002531 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2019-04-05 10:39 - 2019-04-13 18:17 - 000002512 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2019-04-05 10:39 - 2019-04-13 18:17 - 000002494 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2019-04-05 10:39 - 2019-04-13 18:17 - 000002487 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2019-04-05 10:39 - 2019-04-13 18:17 - 000002485 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2019-04-05 10:39 - 2019-04-13 18:17 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2019-04-05 10:39 - 2019-04-13 18:17 - 000002439 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2019-04-04 16:02 - 2019-04-04 16:03 - 000000000 ____D C:\Users\Crhistian Rodriguez\Downloads\OW Update 1 GamezFull
2019-04-01 09:53 - 2019-04-01 09:54 - 000000000 ____D C:\Users\Crhistian Rodriguez\Downloads\Brexit
2019-04-01 09:36 - 2019-04-01 09:37 - 000000000 ____D C:\Users\Crhistian Rodriguez\Downloads\replica
2019-03-26 23:31 - 2019-04-10 16:52 - 005276064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2019-03-26 23:31 - 2019-04-10 13:52 - 001169120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2019-03-26 23:31 - 2019-04-10 13:51 - 020107920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2019-03-26 23:31 - 2019-04-10 13:51 - 004304672 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2019-03-26 23:31 - 2019-03-18 18:50 - 001734536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6441967.dll
2019-03-26 23:31 - 2019-03-18 18:50 - 001467648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6441967.dll
2019-03-24 11:48 - 2019-03-24 12:10 - 000000000 ____D C:\Users\Crhistian Rodriguez\Downloads\SRPG GamezFull

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-04-16 20:50 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-04-16 20:45 - 2017-08-24 20:54 - 000000000 ____D C:\ProgramData\NVIDIA
2019-04-16 20:37 - 2019-03-16 11:18 - 000000000 ____D C:\ProgramData\boost_interprocess
2019-04-16 20:36 - 2016-10-13 04:17 - 000000000 __SHD C:\Users\Crhistian Rodriguez\IntelGraphicsProfiles
2019-04-16 20:35 - 2019-03-07 14:06 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-04-16 20:33 - 2018-09-15 08:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-04-16 20:16 - 2019-03-07 13:34 - 001520904 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-04-16 19:55 - 2018-09-15 09:33 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-04-16 19:55 - 2016-11-13 04:02 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-04-16 19:44 - 2019-01-14 15:38 - 000000000 ____D C:\Users\Crhistian Rodriguez\AppData\Roaming\TS3Client
2019-04-16 19:44 - 2017-02-28 00:12 - 000000000 ____D C:\Users\Crhistian Rodriguez\AppData\Roaming\uTorrent
2019-04-16 19:44 - 2017-02-19 19:49 - 000000000 ____D C:\Program Files (x86)\Steam
2019-04-16 19:44 - 2017-01-06 19:55 - 000000000 ____D C:\Users\Crhistian Rodriguez\AppData\Roaming\MPC-HC
2019-04-16 19:43 - 2019-03-07 11:41 - 000000000 ___DC C:\WINDOWS\Panther
2019-04-16 19:43 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-04-16 19:43 - 2018-09-15 09:31 - 000000000 ____D C:\WINDOWS\INF
2019-04-16 19:43 - 2016-10-16 01:43 - 000000000 ____D C:\Users\Crhistian Rodriguez\AppData\Local\CrashDumps
2019-04-16 19:15 - 2017-02-28 22:41 - 000000000 ____D C:\Program Files (x86)\Sonic Adventure 2
2019-04-16 19:14 - 2017-01-24 15:21 - 000000000 ____D C:\Games
2019-04-16 19:02 - 2019-03-07 13:34 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-04-16 16:06 - 2017-02-03 16:05 - 000007634 _____ C:\Users\Crhistian Rodriguez\AppData\Local\Resmon.ResmonCfg
2019-04-16 14:59 - 2019-03-07 13:43 - 000000000 ____D C:\Users\Crhistian Rodriguez
2019-04-16 14:59 - 2016-10-14 04:25 - 000000000 ____D C:\Users\Crhistian Rodriguez\AppData\Local\JDownloader v2.0
2019-04-16 10:08 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-04-16 10:08 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-04-16 00:51 - 2019-03-07 14:06 - 000002526 _____ C:\WINDOWS\System32\Tasks\shut
2019-04-13 18:16 - 2016-10-14 02:16 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2019-04-13 07:33 - 2017-09-05 11:13 - 000000000 ___RD C:\Users\Crhistian Rodriguez\Desktop\Juegos PC Instalados
2019-04-12 15:29 - 2019-03-07 13:58 - 001767626 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-04-12 15:29 - 2018-09-15 18:39 - 000783180 _____ C:\WINDOWS\system32\perfh00A.dat
2019-04-12 15:29 - 2018-09-15 18:39 - 000152650 _____ C:\WINDOWS\system32\perfc00A.dat
2019-04-12 15:27 - 2016-11-17 23:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2019-04-12 15:23 - 2017-08-24 20:54 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2019-04-12 15:21 - 2017-08-24 20:54 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2019-04-12 15:19 - 2016-10-13 04:17 - 000000000 ____D C:\Users\Crhistian Rodriguez\AppData\Local\NVIDIA
2019-04-12 15:11 - 2019-03-07 14:06 - 000004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-04-12 15:11 - 2019-03-07 14:06 - 000004106 _____ C:\WINDOWS\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-04-12 15:11 - 2019-03-07 14:06 - 000003976 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-04-12 15:11 - 2019-03-07 14:06 - 000003940 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-04-12 15:10 - 2019-03-07 14:06 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-04-12 15:10 - 2019-03-07 14:06 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-04-12 15:10 - 2019-03-07 14:06 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-04-12 15:10 - 2019-03-07 14:06 - 000003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-04-12 15:10 - 2019-03-07 14:06 - 000003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-04-12 15:10 - 2019-03-07 14:06 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-04-12 15:10 - 2019-03-07 14:06 - 000003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-04-12 15:10 - 2017-08-24 20:54 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2019-04-12 15:04 - 2017-01-24 16:22 - 000000000 ____D C:\Juegos Pc 2
2019-04-12 13:13 - 2018-03-16 19:38 - 000000000 ____D C:\ProgramData\KMSAutoS
2019-04-10 23:57 - 2018-09-15 18:41 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2019-04-10 23:57 - 2018-09-15 09:33 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-04-10 23:57 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2019-04-10 23:57 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-04-10 23:57 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-04-10 23:57 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\es-MX
2019-04-10 23:57 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-04-10 23:57 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-04-10 23:57 - 2018-09-15 08:09 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-04-10 15:40 - 2018-09-15 09:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-04-10 15:38 - 2017-09-05 11:17 - 000000000 ___RD C:\Users\Crhistian Rodriguez\Desktop\Aplicaciones Instaladas
2019-04-10 15:24 - 2018-09-15 09:36 - 000835480 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-04-10 15:24 - 2018-09-15 09:36 - 000179608 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-04-10 15:24 - 2016-10-14 05:24 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-04-10 15:17 - 2016-10-14 05:24 - 131129288 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-04-10 13:51 - 2019-02-27 17:59 - 005045704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2019-04-10 12:46 - 2019-01-12 11:35 - 000000000 ____D C:\Users\Crhistian Rodriguez\AppData\Local\UnrealEngine
2019-04-09 17:07 - 2019-03-07 14:06 - 000004654 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2019-04-09 17:07 - 2019-03-07 14:06 - 000004430 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2019-04-09 17:07 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-04-09 17:07 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-04-09 16:46 - 2018-04-21 11:16 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-04-09 15:40 - 2019-02-27 17:59 - 000049910 _____ C:\WINDOWS\system32\nvinfo.pb
2019-04-09 13:43 - 2017-08-24 20:55 - 005365744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2019-04-09 13:43 - 2017-08-24 20:55 - 002624824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2019-04-09 13:43 - 2017-08-24 20:55 - 001767736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2019-04-09 13:43 - 2017-08-24 20:55 - 000651576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2019-04-09 13:43 - 2017-08-24 20:55 - 000450872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2019-04-09 13:43 - 2017-08-24 20:55 - 000124784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2019-04-09 13:43 - 2017-08-24 20:55 - 000082984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2019-04-09 12:08 - 2017-08-24 20:55 - 008530822 _____ C:\WINDOWS\system32\nvcoproc.bin
2019-04-09 10:08 - 2018-03-10 18:27 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-04-07 13:24 - 2017-04-12 17:51 - 000000000 ____D C:\Users\Crhistian Rodriguez\AppData\Local\MSfree Inc
2019-04-05 13:39 - 2019-03-12 18:33 - 000000000 ____D C:\Users\Crhistian Rodriguez\AppData\Roaming\Discord
2019-04-05 10:32 - 2016-10-14 03:14 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-04-02 19:00 - 2018-06-07 00:09 - 002769264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2019-04-02 19:00 - 2018-06-07 00:09 - 002149232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2019-04-02 19:00 - 2018-06-07 00:09 - 001322864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2019-04-02 17:25 - 2017-04-11 00:30 - 000001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2019-03-31 21:43 - 2019-03-07 14:06 - 000003408 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3188641711-1092517058-1664681219-1001
2019-03-31 21:42 - 2019-03-07 13:43 - 000002409 _____ C:\Users\Crhistian Rodriguez\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-03-31 21:42 - 2016-10-13 03:23 - 000000000 ___RD C:\Users\Crhistian Rodriguez\OneDrive
2019-03-30 11:37 - 2017-08-24 20:54 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2019-03-27 23:02 - 2019-03-07 14:06 - 000003554 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-03-27 23:02 - 2019-03-07 14:06 - 000003430 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-03-24 22:12 - 2016-10-16 14:38 - 000000000 ____D C:\Program Files (x86)\PS2
2019-03-20 10:51 - 2017-01-17 18:10 - 000000000 ____D C:\Peliculas 2
2019-03-20 10:40 - 2017-12-20 14:51 - 000000000 ____D C:\Users\Crhistian Rodriguez\AppData\Local\Ubisoft Game Launcher
2019-03-19 15:19 - 2017-07-18 20:43 - 000203632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2019-03-19 15:19 - 2017-07-18 20:43 - 000179568 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2019-03-19 07:42 - 2018-11-30 09:42 - 000069840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys

==================== Files in the root of some directories =======

2016-04-14 11:52 - 2016-04-14 11:52 - 002174976 _____ (Advanced Micro Devices Inc.) C:\Program Files (x86)\Common Files\atimpenc.dll
2017-02-19 08:00 - 2017-02-19 20:21 - 000001173 _____ () C:\Users\Crhistian Rodriguez\AppData\Roaming\KB8888239.log
2017-02-03 16:05 - 2019-04-16 16:06 - 000007634 _____ () C:\Users\Crhistian Rodriguez\AppData\Local\Resmon.ResmonCfg
2017-12-17 11:34 - 2017-12-17 11:34 - 000000000 _____ () C:\Users\Crhistian Rodriguez\AppData\Local\{A5333124-D793-4694-8EC2-359F8B7A84E6}

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\dllhost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\dllhost.exe => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================
#13
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15.04.2019 01
Ran by Crhistian Rodriguez (16-04-2019 20:56:07)
Running from C:\Users\Crhistian Rodriguez\Desktop
Windows 10 Pro Version 1809 17763.437 (X64) (2019-03-07 12:07:58)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-3188641711-1092517058-1664681219-500 - Administrator - Disabled)
Crhistian Rodriguez (S-1-5-21-3188641711-1092517058-1664681219-1001 - Administrator - Enabled) => C:\Users\Crhistian Rodriguez
DefaultAccount (S-1-5-21-3188641711-1092517058-1664681219-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-3188641711-1092517058-1664681219-1000 - Limited - Disabled) => C:\Users\defaultuser0
Invitado (S-1-5-21-3188641711-1092517058-1664681219-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3188641711-1092517058-1664681219-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

«Heroes VII» 1.8.0.37786 (HKLM-x32\...\«Heroes VII»_is1) (Version: 1.8.0.37786 - Ubisoft)
µTorrent (HKU\S-1-5-21-3188641711-1092517058-1664681219-1001\...\uTorrent) (Version: 3.5.3.44494 - BitTorrent Inc.)
ACA & MEP 2016 Object Enabler (HKLM\...\{5783F2D7-F004-0000-5102-0060B0CE6BBA}) (Version: 7.8.41.0 - Autodesk) Hidden
ACAD Private (HKLM\...\{5783F2D7-F001-0000-3102-0060B0CE6BBA}) (Version: 20.1.49.0 - Autodesk) Hidden
Actualización de NVIDIA 36.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 36.0.0.0 - NVIDIA Corporation) Hidden
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 19.010.20099 - Adobe Systems Incorporated)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.171 - Adobe)
Ages of Mages  The last keeper (HKLM-x32\...\Ages of Mages  The last keeper_is1) (Version:  - )
Anno 2205 (HKLM-x32\...\Anno 2205_is1) (Version:  - )
Aplicación de escritorio de Autodesk (HKLM-x32\...\Autodesk Desktop App) (Version: 7.0.10.89 - Autodesk)
Aplicaciones destacadas de Autodesk 2016 (HKLM-x32\...\{D42F37CD-9AF9-4435-A474-B387C5BB6B47}) (Version: 2.0.0 - Autodesk)
Armello MULTi12 - ElAmigos versión 1.9 (HKLM-x32\...\{9F5AEEA3-B30D-4846-9DB0-28DA4DBE895D}_is1) (Version: 1.9 - League of Geeks)
Ashes of the Singularity - Escalation (HKLM-x32\...\1581811358_is1) (Version: 2.0.0.2 - GOG.com)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach)
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{DF6C3726-7E53-4772-9763-E9F147769F51}) (Version: 3.1.6.0000 - Asmedia Technology)
ASRock eXtreme Tuner v0.1.434 (HKLM-x32\...\ASRock eXtreme Tuner_is1) (Version: 0.1.434 - ASRock Inc.)
Assassin's Creed IV Black Flag (HKLM-x32\...\Uplay Install 273) (Version:  - Ubisoft)
ASUS PCE-AC68 WLAN Card Driver (HKLM-x32\...\{39BD9681-D3B1-435C-A0C1-F87C68513401}) (Version: 2.1.4.3 - ASUS)
Audacity 1.2.6 (HKLM-x32\...\Audacity_is1) (Version:  - )
AutoCAD 2016 - English (HKLM\...\{5783F2D7-F001-0409-2102-0060B0CE6BBA}) (Version: 20.1.49.0 - Autodesk) Hidden
AutoCAD 2016 - Español (Spanish) (HKLM\...\{5783F2D7-F001-040A-2102-0060B0CE6BBA}) (Version: 20.1.49.0 - Autodesk) Hidden
AutoCAD 2016  Language Pack - Español (Spanish) (HKLM\...\{5783F2D7-F001-040A-1102-0060B0CE6BBA}) (Version: 20.1.49.0 - Autodesk) Hidden
AutoCAD 2016 (HKLM\...\{5783F2D7-F001-0000-0102-0060B0CE6BBA}) (Version: 20.1.107.0 - Autodesk) Hidden
AutoCAD 2016 Language Pack - English (HKLM\...\{5783F2D7-F001-0409-1102-0060B0CE6BBA}) (Version: 20.1.49.0 - Autodesk) Hidden
Autodesk Advanced Material Library Image Library 2016 (HKLM-x32\...\{94AD53E7-493B-4291-8714-7A3B761D2783}) (Version: 6.3.0.15 - Autodesk)
Autodesk App Manager 2016 (HKLM-x32\...\{4ECF9E00-2978-46AF-BD80-455EFEAB7A93}) (Version: 2.0.0 - Autodesk)
Autodesk AutoCAD 2016 - English (HKLM\...\AutoCAD 2016 - English) (Version: 20.1.49.0 - Autodesk)
Autodesk AutoCAD 2016 Language Pack - Español (Spanish) (HKLM\...\AutoCAD 2016 - Español (Spanish)) (Version: 20.1.49.0 - Autodesk)
Autodesk AutoCAD 2016 SP 1 (HKLM\...\AutoCAD 2016 SP1) (Version: 20.1.107.0 - Autodesk)
Autodesk AutoCAD Performance Feedback Tool 1.2.4 (HKLM-x32\...\{4E20873D-BC20-495C-AFD9-B18877B7F9BB}) (Version: 1.2.4.0 - Autodesk)
Autodesk BIM 360 Glue AutoCAD 2016 Add-in 64 bit (HKLM\...\{4BEE127E-95C4-434D-ABAC-65155192BB24}) (Version: 4.35.1742 - Autodesk)
Autodesk Content Service (HKLM\...\{A37CDB58-AAE8-0000-8C13-E0F7BACB0D5F}) (Version: 3.2.0.0 - Autodesk) Hidden
Autodesk Content Service (HKLM\...\Autodesk Content Service) (Version: 3.2.0.0 - Autodesk)
Autodesk Content Service Language Pack (HKLM\...\{A37CDB58-AAE8-0001-8C13-E0F7BACB0D5F}) (Version: 3.2.0.0 - Autodesk) Hidden
Autodesk Material Library 2016 (HKLM-x32\...\{29A7D6EC-63C2-42FD-8143-5812ABD2923F}) (Version: 6.3.0.15 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2016 (HKLM-x32\...\{6B4CFC6E-ECB0-47FE-95D3-65C680ED0687}) (Version: 6.3.0.15 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2016 (HKLM-x32\...\{415A5A54-325E-4815-9940-62A889CA3877}) (Version: 6.3.0.15 - Autodesk)
Autodesk ReCap 2016 (HKLM\...\{F6FD1651-0000-1033-0102-387BAF9B3B0A}) (Version: 1.5.0.33 - Autodesk) Hidden
Autodesk ReCap 2016 (HKLM\...\Autodesk ReCap 2016) (Version: 1.5.0.33 - Autodesk)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
BlueStacks App Player (HKLM-x32\...\BlueStacks) (Version: 4.1.21.2018 - BlueStack Systems, Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.55 - Piriform)
Celemony Melodyne Studio 4 (HKLM-x32\...\Celemony Melodyne Studio 4) (Version: 4.0.2.003 - Celemony)
Cities Skylines Deluxe Edition MULTi8 - ElAmigos versión 1.6.2 F1 (HKLM-x32\...\{93BFC3F2-15D2-4F7F-B20F-60304032749E}_is1) (Version: 1.6.2 F1 - Paradox Interactive)
Commandos - Beyond The Call Of Duty (HKLM-x32\...\1207662203_is1) (Version: 2.1.0.20 - GOG.com)
Commandos 3 - Destination Berlin (HKLM-x32\...\{C270BC04-1540-4673-960F-A546B2C860CD}) (Version:  - )
Core Temp 1.5.1 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.5.1 - ALCPU)
Crash Bandicoot N Sane Trilogy MULTi6 - ElAmigos versión 1.0 (HKLM-x32\...\{327BFB1B-E44E-4824-9EB7-EA92A8D3CAEC}_is1) (Version: 1.0 - Activision)
CyberLink PowerDVD 15 (HKLM-x32\...\{DE85B8F3-D088-4D6E-A970-EE0BC7883A66}) (Version: 15.0.1727.58 - CyberLink Corp.)
Discord (HKU\S-1-5-21-3188641711-1092517058-1664681219-1001\...\Discord) (Version: 0.0.305 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 425.31 - NVIDIA Corporation) Hidden
Divinity Original Sin - Enhanced Edition versión 2.0.119.430 (HKLM-x32\...\{2B548E1A-784B-4A7F-A577-4004123808E9}_is1) (Version: 2.0.119.430 - Larian Studios)
Dragon Age™: Inquisition (HKLM-x32\...\{DC4C36DC-4E5B-4262-B0C7-157DF534B969}) (Version: 1.0.0.11 - Electronic Arts)
Dungeons 3 MULTi6 - ElAmigos versión 1.4.4 H1 (HKLM-x32\...\{C9DC4F8F-37EF-476D-AE62-DD02EBA0358F}_is1) (Version: 1.4.4 H1 - Kalypso Media Digital)
Epic Games Launcher (HKLM-x32\...\{9B504F12-DA3B-4CEC-A6FD-B07D6C1FEA26}) (Version: 1.1.167.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
FARO LS 1.1.502.0 (64bit) (HKLM-x32\...\{66D83FE0-D798-4B38-86FE-FB48151E5AEF}) (Version: 5.2.0.35213 - FARO Scanner Production)
FIFA 18 MULTi18 - ElAmigos versión 1.0 (HKLM-x32\...\{F8DEE27B-0ABA-4B36-A615-317B4E2193D5}_is1) (Version: 1.0 - EA Games)
FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version:  - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version:  - Image-Line)
Gauntlet Slayer Edition (HKLM-x32\...\Gauntlet Slayer Edition_is1) (Version:  - )
GDR 4237 para SQL Server 2014 (KB4019091) (64-bit) (HKLM\...\KB4019091) (Version: 12.1.4237.0 - Microsoft Corporation)
Geeks3D FurMark 1.18.2.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version:  - Geeks3D)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 73.0.3683.103 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.7 - Google LLC) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version:  - Image-Line)
Importación de SketchUp 2016 (HKLM-x32\...\{C769FB7C-1F55-4B31-9A2A-21CEC50F4F92}) (Version: 2.0.0 - Autodesk)
Instalación de DivX (HKLM\...\DivX Setup) (Version: 10.8.7.0 - DivX, LLC)
Intel(R) Chipset Device Software (HKLM-x32\...\{c6cff78a-cccb-49d5-be68-ae0ec5f0d48a}) (Version: 10.1.1.8 - Intel(R) Corporation) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4358 - Intel Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Jumpstart Installation Program (HKLM-x32\...\{B0BCDCBD-863D-4CAB-BF68-8D1F6B1BDC13}) (Version:  - Atheros)
K-Lite Codec Pack 12.7.5 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.7.5 - KLCP)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Malwarebytes versión 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
Mega Man X Legacy Collection Bundle MULTi7 - ElAmigos versión 1.0 (HKLM-x32\...\{61CF267C-3E1E-4897-AE3A-30C6F1B33C88}_is1) (Version: 1.0 - Capcom)
MEGAsync (HKLM-x32\...\MEGAsync) (Version:  - Mega Limited)
Microsoft ASP.NET MVC 2 (HKLM-x32\...\{DD8FF2F3-0D97-4CF3-AF78-FA0E1B242244}) (Version: 2.0.60926.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft ODBC Driver 11 for SQL Server (HKLM\...\{BE00C353-3529-4C31-AED2-AE3598D2CD2B}) (Version: 12.1.4237.0 - Microsoft Corporation)
Microsoft Office Profesional Plus 2016 - es-es (HKLM\...\ProPlusRetail - es-es) (Version: 16.0.11425.20204 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3188641711-1092517058-1664681219-1001\...\OneDriveSetup.exe) (Version: 19.033.0218.0011 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files  (HKLM\...\{6292D514-17A4-403F-98F9-E150F10C043D}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2014 (64-bit) (HKLM\...\Microsoft SQL Server SQLServer2014) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2014 Setup (English) (HKLM\...\{EDB86AFA-B3AA-45F6-BEEB-DA14A47FC1FB}) (Version: 12.1.4237.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom  (HKLM\...\{FF7DDA05-6EA7-4C01-B44A-3E57F8B9B97B}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{57660847-B1F7-35BD-9118-F62EB863A598}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft VSS Writer for SQL Server 2014 (HKLM\...\{366CD715-2FF4-40B4-A8B4-A05E5D21A945}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{449EFED6-5F86-4428-8EB2-3DA1F6E67CE4}) (Version: 1.20.146.0 - Microsoft)
Monopoly Plus MULTi10 - ElAmigos versión 1.0 (HKLM-x32\...\{5A6CB8CE-8EB4-4F09-BD26-6AC8DED1454F}_is1) (Version: 1.0 - Ubisoft)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.5.8 - Notepad++ Team)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.15 - NVIDIA Corporation) Hidden
NVIDIA Controlador de 3D Vision 425.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 425.31 - NVIDIA Corporation)
NVIDIA Controlador de audio HD 1.3.38.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.13 - NVIDIA Corporation)
NVIDIA Controlador de gráficos 425.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 425.31 - NVIDIA Corporation)
NVIDIA Controlador de la controladora 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.18.0.102 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.18.0.102 - NVIDIA Corporation)
NVIDIA Software del sistema PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11425.20204 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.11425.20204 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.11425.20204 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0C0A-0000-0000000FF1CE}) (Version: 16.0.11425.20204 - Microsoft Corporation) Hidden
Overcooked 2 MULTi10 - ElAmigos versión 03.10.2018 (HKLM-x32\...\{37217CDE-B25E-4371-BC16-9AF1A369E395}_is1) (Version: 03.10.2018 - Team17)
Overcooked Gourmet Edition MULTi6 - ElAmigos versión 02.12.2016 (HKLM-x32\...\{0F050BE4-8590-4E47-9CC8-29C4EB7A1EB5}_is1) (Version: 02.12.2016 - Team17)
Panel de control de NVIDIA 425.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 425.31 - NVIDIA Corporation) Hidden
Pillars of Eternity The White March Part II (HKLM-x32\...\Pillars of Eternity The White March Part II_is1) (Version:  - )
PlanetSide 2 (HKU\S-1-5-21-3188641711-1092517058-1664681219-1001\...\DG0-PlanetSide 2) (Version:  - Sony Online Entertainment)
Portal Knights MULTi17 - ElAmigos versión 1.4.5 (HKLM-x32\...\{CE2C0C9B-AAAC-4896-976A-AAF0F3F91342}_is1) (Version: 1.4.5 - 505 Games)
Rosetta Stone Language Training (HKLM-x32\...\{00384623-4937-4D7D-BDD9-23513D1C50AB}) (Version: 5.0.37.0 - Rosetta Stone, Ltd)
Rosetta Stone Ltd Services (HKLM-x32\...\{3165E4A6-D5DE-46B0-8597-D55E2B826B84}) (Version: 3.2.21 - Rosetta Stone Ltd.)
Sacred 2 Gold Edition (HKLM-x32\...\Sacred 2 Gold Edition_is1) (Version:  - )
Service Pack 1 for SQL Server 2014 (KB3058865) (64-bit) (HKLM\...\KB3058865) (Version: 12.1.4100.1 - Microsoft Corporation)
Servicio HILINK (HKLM-x32\...\Servicio HILINK) (Version: 22.001.25.00.259 - Huawei Technologies Co.,Ltd)
Servicio Xperia Companion (HKLM\...\{034C1685-55DC-4C0F-A802-970803148AE0}) (Version: 2.4.3.0 - Sony) Hidden
Sid Meiers Civilization VI Proper (HKLM\...\c2lkbWVpZXJzY2l2aWxpemF0aW9udmk_is1) (Version: 1 - )
SOLIDWORKS 2018 SP0 (HKLM\...\{837A0B0D-F508-4088-8B05-606477DEB905}) (Version: 26.100.5031 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS 2018 SP0 (HKLM-x32\...\SolidWorks Installation Manager 20180-40000-1100-100) (Version: 26.0.0.5031 - SolidWorks Corporation)
SOLIDWORKS 2018 Spanish Resources (HKLM\...\{AB871742-099B-4A28-8055-D182A64DE5CE}) (Version: 26.100.5031 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS CAM 2018 SP0 (HKLM\...\{C9043FEF-A6CE-4725-8A93-1488DF0335DF}) (Version: 26.00.5031 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS Composer 2018 SP0 (HKLM\...\{BA93FA95-96A6-42A5-A503-F78E769ABA1E}) (Version: 26.00.5031 - Dassault Systémes SolidWorks Corp) Hidden
SOLIDWORKS eDrawings 2018 SP0 (HKLM\...\{20B1A150-ADEA-4E9F-B5FC-DE77EFE404E7}) (Version: 18.00.5043 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS Electrical 2018 SP0 (HKLM\...\{F5280967-D8E8-4386-B4E0-62937CFE1970}) (Version: 26.00.5031 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS Explorer 2018 SP0 (HKLM\...\{6792CDBC-DB8C-4CA4-AC71-19F3BAA5C3B7}) (Version: 26.00.5031 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS Flow Simulation 2018 SP0  (HKLM\...\{984CA261-0340-4C4F-AC6E-FE4890B5D6DF}) (Version: 26.00.5032 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS Inspection 2018 SP0 (HKLM\...\{23526481-9826-46D3-A38C-CA9B3F59FD0C}) (Version: 26.00.5031 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS PCB 2018 SP0 (HKLM\...\{754EACE8-AA6E-42D8-81D4-23869D7F80F3}) (Version: 26.00.5031 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS Plastics 2018 SP0 (HKLM\...\{9F301E50-ED1C-408F-85AC-D182E400F61B}) (Version: 26.00.5031 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS Visualize 2018 SP0 (HKLM\...\{FA9DFD3D-B786-491F-8195-8320FA7D2425}) (Version: 26.00.5031 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS Visualize Boost 2018 SP0 (HKLM\...\{6C127049-F1BE-47DA-97C9-8B1CE0BFC087}) (Version: 26.00.5031 - Dassault Systèmes SolidWorks Corp) Hidden
Sonic Mania Plus (HKLM-x32\...\Sonic Mania Plus_is1) (Version:  - )
Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
SQL Server 2014 Common Files (HKLM\...\{BD1CD96B-FE4B-4EAE-83D4-6EF55AB5779C}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Common Files (HKLM\...\{F7012F84-80F5-4C25-852E-B1BA03276FE6}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (HKLM\...\{17531BCD-C627-46A2-9F1E-7CC920E0E94A}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (HKLM\...\{5082A9F3-AEE5-4639-9BA7-C19661BA7331}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (HKLM\...\{ACC530B8-B6B4-40D6-B59B-152468CF47D0}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (HKLM\...\{D1B847A9-B06B-4264-9EF0-78E6E1571E65}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server Browser for SQL Server 2014 (HKLM-x32\...\{3204DE95-97D2-4261-A286-98A262E171D4}) (Version: 12.1.4100.1 - Microsoft Corporation)
Sql Server Customer Experience Improvement Program (HKLM\...\{6476DB81-F263-4C04-8574-AAD31136C304}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
Star Wars™: The Force Unleashed™ (HKLM-x32\...\1189268228_is1) (Version: 1.2 - GOG.com)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.2.3 - TeamSpeak Systems GmbH)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)
TECKNET 7.1 GAMING HEADSET (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392006620}) (Version: 1.00.0019 - )
The Witcher 3: Wild Hunt Game of the Year Edition (HKLM\...\dGhld2l0Y2hlcjN3aWxkaHVudA_is1) (Version: 1 - )
Total Video Converter 3.71 100812 (HKLM-x32\...\Total Video Converter 3.71_is1) (Version:  - EffectMatrix Inc.)
Total War WARHAMMER II MULTi8 - ElAmigos versión 1.4.1 (HKLM-x32\...\{C0809411-C20D-4AC1-BCAB-B42138131355}_is1) (Version: 1.4.1 - SEGA)
Total War WARHAMMER MULTi10 - ElAmigos versión 1.6.0 (HKLM-x32\...\{BA3B65FA-E575-4F87-9A94-4E8B11DD0F29}_is1) (Version: 1.6.0 - SEGA)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{1FD817A6-63E1-4519-BFD4-228DABB7AB6B}) (Version: 2.55.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{E1D7CB46-BAE9-4D58-99C4-582332B1755A}) (Version: 1.13.0.0 - Microsoft Corporation) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 46.0 - Ubisoft)
VC80CRTRedist - 8.0.50727.6195 (HKLM-x32\...\{933B4015-4618-4716-A828-5289FC03165F}) (Version: 1.2.0 - DivX, Inc) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
VSO ConvertXToDVD (HKLM-x32\...\{CE1F93C0-4353-4C9D-84DA-AB4E7C63ED32}_is1) (Version: 5.1.0.2 - VSO Software)
Warcraft III (HKLM-x32\...\Warcraft III) (Version:  - )
Warcraft III: All Products (HKU\S-1-5-21-3188641711-1092517058-1664681219-1001\...\Warcraft III) (Version:  - )
Warhammer 40000 Dawn of War III MULTi13 - ElAmigos versión 4.0.0.16278 (HKLM-x32\...\{92D32959-2A86-470F-B9B1-9DC309DD2ADB}_is1) (Version: 4.0.0.16278 - SEGA)
WinAVI Video Converter (HKLM-x32\...\WinAVI Video Converter 10.0_is1) (Version:  - ZJ Computing,Inc.)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version:  - )
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
Wondershare Filmora(Build 8.7.1) (HKLM\...\Wondershare Filmora_is1) (Version:  - Wondershare Software)
Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare)
Wondershare Video Converter Ultimate(Build 10.2.1.158) (HKLM-x32\...\Video Converter Ultimate_is1) (Version: 10.2.1.158 - Wondershare Software)
Wondershare Video Converter Ultimate(Build 6.0.3.2) (HKLM-x32\...\Wondershare Video Converter Ultimate_is1) (Version: 6.0.3.2 - Wondershare Software)
World in Conflict (HKLM-x32\...\Uplay Install 90) (Version:  - Ubisoft)
WPTx64 (HKLM-x32\...\{0B2C58EB-67A2-225B-60B2-D1990E55DD33}) (Version: 8.100.26866 - Microsoft)
Xilisoft Video Convertidor Ultimate (HKLM-x32\...\Xilisoft Video Convertidor Ultimate) (Version: 7.8.21.20170920 - Xilisoft)
Xperia Companion (HKLM-x32\...\{C32507B2-D80A-45DD-8D31-31858292C91C}) (Version: 2.4.3.0 - Sony) Hidden
Xperia Companion (HKLM-x32\...\{f7c475f1-4d2f-48c3-b5d1-6ffc35a6828a}) (Version: 2.4.3.0 - Sony)
Zune (HKLM\...\Zune) (Version: 04.08.2345.00 - Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3188641711-1092517058-1664681219-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-3188641711-1092517058-1664681219-1001_Classes\CLSID\{0B628DE4-07AD-4284-81CA-5B439F67C5E6}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3188641711-1092517058-1664681219-1001_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3188641711-1092517058-1664681219-1001_Classes\CLSID\{5370C727-1451-4700-A960-77630950AF6D}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3188641711-1092517058-1664681219-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation)
CustomCLSID: HKU\S-1-5-21-3188641711-1092517058-1664681219-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2016\en-US\acadficn.dll (Autodesk, Inc -> Autodesk, Inc.)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2019-02-27] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2019-02-27] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2019-02-27] (Mega Limited -> )
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2015-02-06] (Autodesk, Inc -> Autodesk, Inc.)
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2019-02-27] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2019-02-27] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2019-02-27] (Mega Limited -> )
ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2015-02-06] (Autodesk, Inc -> Autodesk)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2018-07-23] (Notepad++ -> )
ContextMenuHandlers1: [DivXShellExtensionItem] -> {48A8A3B0-57E8-4F2B-A49D-19E02B92377B} => C:\Program Files (x86)\Common Files\DivX Shared\DivXShellExtension64.dll [2018-10-09] (DivX, LLC -> DivX, LLC)
ContextMenuHandlers1: [DivXShellExtensionItem64] -> {6B49A276-0DBA-43F4-BC96-A841AD11B40B} => C:\Program Files (x86)\Common Files\DivX Shared\DivXShellExtension64.dll [2018-10-09] (DivX, LLC -> DivX, LLC)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2019-02-27] (Mega Limited -> )
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-02-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-02-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1: [WondershareVideoConverterFileOpreation] -> {FEB746CA-95C2-485F-B386-C30D4E56D22E} => C:\Windows\SysWoW64\WSCM64.dll [2012-11-20] (Wondershare Software Co., Ltd.  -> )
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2019-02-27] (Mega Limited -> )
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2019-02-27] (Mega Limited -> )
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-04] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-04-09] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-02-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-02-15] (win.rar GmbH -> Alexander Roshal)



NO ME DEJA ESCRIBIR MAS EN LAS REPUESTAS HASTA DENTRO DE 22 HORAS:shushing_face:
#14

Hola.

Para que puedas seguir poniendo mensajes, solo debes leer distintos temas del FORO para que te deje poner mas mensajes, ademas en vez de poner un mensaje para cada informe es mucho mejor hacer un menaje con varios informes y de esa manera hubieras tenido mensajes suficientes para incluir todos los informes.

Ademas recuerda comentarnos como sigue el problema que planteaste inicialmente.

Saludos.


P.D// @Cristian_cat, prueba ahora para ver si YA te deja añadir lo que faltaba del informe, que he juntado y reducido tus respuesta y posiblemente ya puedas añadirlo. :thinking: :+1:


#15
==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {004DC53E-A71D-46CB-8966-8EDADD1E9221} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1903.4-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {163065C8-991F-4A0D-88AE-CF21ABAD9325} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-3188641711-1092517058-1664681219-1001 => C:\ProgramData\MEGAsync\MEGAupdater.exe (Mega Limited -> Mega Limited)
Task: {1FD99DD3-E852-4B7A-B39E-2345C45BBCF0} - System32\Tasks\PCEAC68WLANMGR => C:\Program Files (x86)\ASUS\PCE-AC68 WLAN Card Utilities\WlanMgr.exe
Task: {23AFFD60-1F65-4AFE-B6D4-3162CFDFF0AA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1903.4-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {2662149F-1E92-4CFD-B2F1-6F5662EE6B88} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {2752D084-2B9B-41E8-85B2-C6CDDC58CC30} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {27CA6990-BFD1-4578-949E-94494837EBBE} - System32\Tasks\shut => C:\Windows\System32\shutdown.exe (Microsoft Windows -> Microsoft Corporation)
Task: {34B86EB5-E60D-482F-801D-C72E3CEC8698} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {35BF8B9B-764F-485D-9492-58C55F8F927F} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {42B961B9-A58D-4F26-A108-5D4845EACCC8} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5104619A-BE71-403F-9967-3FA16A989177} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1903.4-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {52F5ACCB-754B-4406-9D10-A8553F9839CA} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {5D06A311-0C8F-436D-8EFB-BFC65D449E79} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
Task: {69E308E3-BB08-4EA3-9382-73D9C2848F99} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6AF1362E-69C4-41A7-8A19-7561E5BDD2A5} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {705768B5-AE36-44CE-8508-DEB3FE436520} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {71D32C8E-40E5-4349-AA86-A72580004C33} - System32\Tasks\temp => C:\Windows\System32\shutdown.exe (Microsoft Windows -> Microsoft Corporation)
Task: {74B11722-D213-4236-8B5D-356FD5DDC860} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_171_pepper.exe (Adobe Inc. -> Adobe)
Task: {74C11E19-1445-4023-9FE4-6F16097B48F4} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7F9CBD07-0EF2-4D20-AA2D-FCCE25D2EFCA} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8F8FBFCC-7818-43D2-BEC5-BD32934E36A1} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {9A5DCBEB-7DB3-4797-B247-7C36682A1F33} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9E778FB9-EE16-4626-8773-A1F131346313} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {A27EF3C0-6DC1-4B6F-87B4-1F5B8369B396} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Inc. -> Adobe)
Task: {A323A0F5-9617-4460-B85D-4196D3CD104B} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A421A4C7-8E30-4810-AAFC-A23D170EBA39} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe (Piriform Software Ltd -> Piriform Software Ltd)
Task: {AFA49A04-6E78-45DC-B386-D242DF8C3D3F} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B0A0726B-6ADC-4DAA-A244-C9E2D380A484} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {B6449E96-6B72-4EDC-A20C-99B08D92C63A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {BD0CCC64-42CB-4542-91AA-BBDF7CF2058E} - System32\Tasks\cFos\Registration Tasks\Open Browser => c:\program files (x86)\google\chrome\application\chrome.exe "hxxp://www.cfos.de/en/cfosspeed/documentation/driver-not-loaded.htm?reg-10.10.2238-asrock&days=1"
Task: {C5CC3377-24BE-4051-A3E7-9EDD3FA03370} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E64E8493-2946-4EC2-9505-6F66C4A18540} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E94175DF-4901-4F24-A2E8-17D178B73C36} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1903.4-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {EB58DF6A-3038-4969-A0EC-2FF9DBA657B0} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {ECFD071F-EC8F-467E-9353-91E6A7100E47} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {F489B768-2A15-4B31-A24A-2BBCC878550E} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {FFBF5CC4-48BA-4B83-B22D-7A4E0ACDD250} - System32\Tasks\DivXUpdate => C:\Program Files (x86)\Common Files\DivX Shared\DivX Update\DivXUpdate.exe (DivX, LLC -> DivX, LLC)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->\\.\root\subscription:ActiveScriptEventConsumer.Name=\"ASEC\"",Filter="\\.\root\subscription:__EventFilter.Name=\"EventFilter sethomePage2\":: <==== ATTENTION
WMI:subscription\__TimerInstruction->SethomePage Interval Timer:: <==== ATTENTION
WMI:subscription\__IntervalTimerInstruction->SethomePage Interval Timer:: <==== ATTENTION
WMI:subscription\__EventFilter->EventFilter sethomePage2::[Query => Select * From __timerevent Where TimerId = "SethomePage Interval Timer"] <==== ATTENTION

ShortcutWithArgument: C:\Users\Crhistian Rodriguez\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  

==================== Loaded Modules (Whitelisted) ==============

2018-12-12 13:11 - 2018-12-12 13:11 - 002191360 _____ (Sony) [File not signed] C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe
2017-08-25 09:22 - 2008-09-26 20:03 - 000265216 _____ (Atheros Communications, Inc.) [File not signed] C:\Program Files (x86)\Jumpstart\jswpbapi.exe
2018-06-22 19:08 - 2018-06-21 11:36 - 000519168 _____ (BlueStack Systems, Inc.) [File not signed] C:\Program Files (x86)\BlueStacks\HD-Agent.exe
2019-04-16 19:55 - 2019-03-13 09:22 - 004571648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Widgets.dll
2019-04-16 19:55 - 2019-03-13 09:22 - 000438272 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5WinExtras.dll
2019-04-16 19:55 - 2019-03-13 09:22 - 002234880 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Network.dll
2019-04-16 19:55 - 2019-03-13 09:22 - 003084800 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Quick.dll
2019-04-16 19:55 - 2019-03-13 09:22 - 002950144 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Qml.dll
2019-04-16 19:55 - 2019-03-13 09:22 - 005139968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Gui.dll
2019-04-16 19:55 - 2019-03-13 09:22 - 005010944 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
2019-04-16 19:55 - 2019-03-13 09:22 - 001181184 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\platforms\qwindows.dll
2019-04-16 19:55 - 2019-03-13 09:22 - 000124928 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\styles\qwindowsvistastyle.dll
2019-04-16 19:55 - 2019-03-13 09:22 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qico.dll
2019-04-16 19:55 - 2019-03-13 09:22 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qsvg.dll
2019-04-16 19:55 - 2019-03-13 09:22 - 000259584 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Svg.dll
2019-04-16 19:55 - 2019-03-13 09:22 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick.2\qtquick2plugin.dll
2019-04-16 19:55 - 2019-03-13 09:22 - 000729088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\qtquickcontrolsplugin.dll
2019-04-16 19:55 - 2019-03-13 09:22 - 000073216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Layouts\qquicklayoutsplugin.dll
2019-04-16 19:55 - 2019-03-13 09:22 - 000179712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\dialogplugin.dll
2019-04-16 19:55 - 2019-03-13 09:22 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Window.2\windowplugin.dll
2019-04-16 19:55 - 2019-03-13 09:22 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQml\Models.2\modelsplugin.dll
2019-04-16 19:55 - 2019-03-13 09:22 - 000101888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\PrivateWidgets\widgetsplugin.dll
2017-01-06 19:54 - 2013-12-10 13:31 - 002303488 _____ (Python Software Foundation) [File not signed] C:\Program Files (x86)\CyberLink\PowerDVD15\Common\koan\python27.dll
2017-01-06 19:53 - 2013-12-10 13:31 - 000074240 _____ () [File not signed] C:\Program Files (x86)\CyberLink\PowerDVD15\Common\Koan\_ctypes.pyd
2017-01-06 19:53 - 2013-12-10 13:31 - 000285184 _____ () [File not signed] C:\Program Files (x86)\CyberLink\PowerDVD15\Common\Koan\_hashlib.pyd
2017-01-06 19:53 - 2013-12-10 13:31 - 000040960 _____ () [File not signed] C:\Program Files (x86)\CyberLink\PowerDVD15\Common\Koan\_socket.pyd
2017-01-06 19:53 - 2013-12-10 13:31 - 000721920 _____ () [File not signed] C:\Program Files (x86)\CyberLink\PowerDVD15\Common\Koan\_ssl.pyd
2017-01-06 19:54 - 2015-02-12 13:18 - 000348160 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\CyberLink\PowerDVD15\Kernel\DMS\MSVCR71.dll
2017-01-06 19:54 - 2015-02-12 13:18 - 000499712 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\CyberLink\PowerDVD15\Kernel\DMS\MSVCP71.dll
#17
==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\desktop.ini:CachedTiles [478]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [472]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-3188641711-1092517058-1664681219-1001\Software\Classes\.scr: AutoCADScriptFile => 
HKU\S-1-5-21-3188641711-1092517058-1664681219-1001\Software\Classes\regfile: regedit.exe "%1" <==== ATTENTION

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2016-07-16 13:47 - 2018-12-24 14:14 - 000000097 _____ C:\WINDOWS\system32\drivers\etc\hosts

127.0.0.1       localhost

2017-10-28 14:53 - 2019-01-30 14:07 - 000000672 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

37.0.107 Lenovo-PC.mshome.net # 2019 2 0 3 16 8 38 851
851
7 41 601
601

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3188641711-1092517058-1664681219-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Crhistian Rodriguez\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 178.156.54.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{AE599A59-C18A-45FA-9F4C-1A943872D10B}] => (Allow) C:\Program Files (x86)\Dragon Age Inquisition\DragonAgeInquisition.exe (Electronic Arts -> Electronic Arts) [File not signed]
FirewallRules: [{1F8ACAC9-AFAC-457F-934E-069EB7A19BA2}] => (Allow) C:\Program Files (x86)\Dragon Age Inquisition\DragonAgeInquisition.exe (Electronic Arts -> Electronic Arts) [File not signed]
FirewallRules: [{B4957CEE-6595-42E6-89AC-1CB2DC3DC547}] => (Allow) %systemroot%\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{4482CE6A-0ABC-4616-89D5-1E25EB061967}] => (Allow) %systemroot%\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{52289F6A-7578-42A6-8D91-BB3EB28B34E4}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C9B7F4CB-5C93-4A50-9808-01F77D65AF31}] => (Allow) I:\GoW2\Guild Wars 2\Gw2.exe (ArenaNet LLC -> ArenaNet)
FirewallRules: [{8A387C8B-4F30-4E3F-B47B-C7FA70089835}] => (Allow) I:\GoW2\Guild Wars 2\Gw2.exe (ArenaNet LLC -> ArenaNet)
FirewallRules: [{0C64A449-CB00-40CC-8DD9-F0451B3B2B4B}] => (Allow) I:\GoW2\Guild Wars 2\Gw2.exe (ArenaNet LLC -> ArenaNet)
FirewallRules: [{6D467715-56F0-461B-A793-3F7E94A8C54F}] => (Allow) I:\GoW2\Guild Wars 2\Gw2.exe (ArenaNet LLC -> ArenaNet)
FirewallRules: [{2F2F588A-10B1-4821-8FDD-83839C478340}] => (Allow) I:\GoW2\Guild Wars 2\Gw2-64.exe (ArenaNet LLC -> ArenaNet)
FirewallRules: [{B16E1744-93DE-4752-B43C-4ED87C09A9D8}] => (Allow) I:\GoW2\Guild Wars 2\Gw2-64.exe (ArenaNet LLC -> ArenaNet)
FirewallRules: [{65C5832B-6ECE-4360-9FA3-1270355C5877}] => (Allow) I:\GoW2\Guild Wars 2\Gw2-64.exe (ArenaNet LLC -> ArenaNet)
FirewallRules: [{5E6D2B4C-4950-42E9-967B-391A22C961F3}] => (Allow) I:\GoW2\Guild Wars 2\Gw2-64.exe (ArenaNet LLC -> ArenaNet)
FirewallRules: [{5621EA65-F62E-4A88-B782-DCF5C148AA3D}] => (Allow) C:\Program Files (x86)\BlueStacks\HD-Player.exe (BlueStack Systems, Inc.) [File not signed]
FirewallRules: [{C737C2CF-DC58-4269-8C36-3F83D8649A71}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{1B04FD0B-4B06-4977-B1A3-4F73E7BE356B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{1360C8CB-462F-4E59-919B-32C9328FBF0C}C:\games\r.g. catalyst\heroes vii\binaries\win64\mmh7game-win64-shipping.exe] => (Allow) C:\games\r.g. catalyst\heroes vii\binaries\win64\mmh7game-win64-shipping.exe (Limbic Entertainment GmbH -> Ubisoft, Inc.)
FirewallRules: [TCP Query User{9F514296-D6B3-4D7D-AD1A-BAAF1C51FDA1}C:\games\r.g. catalyst\heroes vii\binaries\win64\mmh7game-win64-shipping.exe] => (Allow) C:\games\r.g. catalyst\heroes vii\binaries\win64\mmh7game-win64-shipping.exe (Limbic Entertainment GmbH -> Ubisoft, Inc.)
FirewallRules: [{C47EA6C6-F6FB-4887-AF30-E2F39C3FC890}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\World in Conflict\wic_ds.exe (Massive Entertainment -> ) [File not signed]
FirewallRules: [{FB44F57D-FA13-463E-B04E-E7EF48B05BFF}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\World in Conflict\wic_ds.exe (Massive Entertainment -> ) [File not signed]
FirewallRules: [{021F9ACC-D8F4-4228-A6BF-38D8EB227B12}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\World in Conflict\wic_online.exe (Massive Entertainment -> Massive Entertainment) [File not signed]
FirewallRules: [{222DF19E-423D-4A05-82DF-39B479A3B0BB}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\World in Conflict\wic_online.exe (Massive Entertainment -> Massive Entertainment) [File not signed]
FirewallRules: [{8000890F-80DE-448F-976C-37D8F1DCA222}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\World in Conflict\wic.exe (Massive Entertainment -> Massive Entertainment) [File not signed]
FirewallRules: [{A930C099-FA3A-494D-A1BF-29FC794DC3B9}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\World in Conflict\wic.exe (Massive Entertainment -> Massive Entertainment) [File not signed]
FirewallRules: [{E611FEE3-CEBF-4AEF-B9E9-BC3100DBB846}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFMP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{6F268292-39DD-4441-96E3-4A66BDED2A66}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFMP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{530C90BD-DFA7-4BB0-8DE9-F73594510F71}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFSP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{D7E68415-6032-43AD-9F86-25E0564DB354}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFSP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [UDP Query User{2FDE5721-CF34-403E-890C-4F954C6F57C2}C:\games\monopoly plus\monopoly.exe] => (Allow) C:\games\monopoly plus\monopoly.exe (Ubisoft Entertainment -> Asobo Studio)
FirewallRules: [TCP Query User{FD6B377F-1F9F-4B9D-BDCB-0C2DD2E71413}C:\games\monopoly plus\monopoly.exe] => (Allow) C:\games\monopoly plus\monopoly.exe (Ubisoft Entertainment -> Asobo Studio)
FirewallRules: [UDP Query User{616CED60-422A-4B6B-9C38-37D2D78C93B5}C:\games\total war warhammer ii\warhammer2.exe] => (Allow) C:\games\total war warhammer ii\warhammer2.exe (The Creative Assembly Ltd) [File not signed]
FirewallRules: [TCP Query User{C0185CCC-F400-4E3A-9CEC-3173C1A65974}C:\games\total war warhammer ii\warhammer2.exe] => (Allow) C:\games\total war warhammer ii\warhammer2.exe (The Creative Assembly Ltd) [File not signed]
FirewallRules: [{E845E9CC-E12C-4E4F-9A0B-71F4ED7811E7}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{91A293B0-EAA1-4DC3-A1D3-C83799832026}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{B97DBA2C-B554-4B92-914D-42382EC2CB3F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{86AFF694-7996-486A-976F-120423BBCAA4}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{A5EA6CB4-B6A3-489B-8166-12F9B230F11A}C:\games\warhammer 40000 dawn of war iii\relicdow3.exe] => (Allow) C:\games\warhammer 40000 dawn of war iii\relicdow3.exe (Relic Entertainment Inc.) [File not signed]
FirewallRules: [TCP Query User{9D23A576-BCAA-46AA-A42D-7FB9ED70D635}C:\games\warhammer 40000 dawn of war iii\relicdow3.exe] => (Allow) C:\games\warhammer 40000 dawn of war iii\relicdow3.exe (Relic Entertainment Inc.) [File not signed]
FirewallRules: [TCP Query User{48C1C022-6A7F-4A7E-AC6F-91F32385A1D2}C:\program files (x86)\ps2\planetside2_x64.exe] => (Allow) C:\program files (x86)\ps2\planetside2_x64.exe (Daybreak Game Company LLC -> Daybreak Game Company, LLC)
FirewallRules: [UDP Query User{9FFFB390-520C-46ED-8268-0B54684C830E}C:\program files (x86)\ps2\planetside2_x64.exe] => (Allow) C:\program files (x86)\ps2\planetside2_x64.exe (Daybreak Game Company LLC -> Daybreak Game Company, LLC)
FirewallRules: [{0F643F8C-BDB5-4E06-8A39-A532F7EECF83}] => (Allow) %ProgramFiles%\Zune\Zune.exe No File
FirewallRules: [{688ABFC8-8295-4531-A0E0-385090DD5AE4}] => (Allow) %ProgramFiles%\Zune\ZuneNSS.exe No File
FirewallRules: [{976F9276-FB8B-41B7-B565-29D3793F4700}] => (Allow) %ProgramFiles%\Zune\ZuneNSS.exe No File
FirewallRules: [{DDF44DD6-BB4E-4F33-9F98-9BBA9C30E56C}] => (Allow) %ProgramFiles%\Zune\ZuneNSS.exe No File
FirewallRules: [{CDCC97D7-8D93-4AA3-AA64-995B23E8A13C}] => (Allow) %ProgramFiles%\Zune\ZuneNSS.exe No File
FirewallRules: [{B97E362E-F080-44E5-BA1E-1F0567214E15}] => (Allow) %ProgramFiles%\Zune\ZuneNSS.exe No File
FirewallRules: [{069E731B-AEF5-427B-A04E-8FACF3DBA23A}] => (Allow) %ProgramFiles%\Zune\ZuneNSS.exe No File
FirewallRules: [{CE2C5A5C-E2F3-4D81-9AC6-9C76195501F5}] => (Allow) %ProgramFiles%\Zune\ZuneNSS.exe No File
FirewallRules: [{CDB94D36-53C1-4A15-B33F-AA706B9745A5}] => (Allow) %ProgramFiles%\Zune\ZuneNSS.exe No File
FirewallRules: [TCP Query User{03C07986-23FC-435B-853B-7AC35B54C3AA}C:\program files (x86)\deep silver\sacred 2 gold edition\system\s2gs.exe] => (Allow) C:\program files (x86)\deep silver\sacred 2 gold edition\system\s2gs.exe (Ascaron Entertainment GmbH -> Ascaron Entertainment GmbH) [File not signed]
FirewallRules: [UDP Query User{01145CB5-FD2E-41F9-801F-8593D86C7798}C:\program files (x86)\deep silver\sacred 2 gold edition\system\s2gs.exe] => (Allow) C:\program files (x86)\deep silver\sacred 2 gold edition\system\s2gs.exe (Ascaron Entertainment GmbH -> Ascaron Entertainment GmbH) [File not signed]
FirewallRules: [{443BEC52-655D-498F-B976-123EB3617229}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{03CEE93E-D6A5-46F1-9E90-461AB829966D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4366F0A3-CB4F-4C8B-9843-4384E8F4DB7E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BECDDE00-53F4-47CF-B4C8-EF5BE5E868C4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{28301BDB-89DF-4A1B-9465-BF1A1628CF73}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD15\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{B445646C-2B24-43FB-B931-57E52F2755FD}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD15\Kernel\DMS\CLMSServerPDVD15.exe (CyberLink Corp. -> CyberLink)
FirewallRules: [{383A741A-A8CB-4B2C-BAE9-70325D932A94}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD15\PowerDVD15Agent.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{60F29F94-5808-4E4B-BB89-023B16151D94}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD15\Movie\PowerDVDMovie.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{58F565BE-9C16-4DF4-8AC6-8C5DB64693BF}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD15\Movie\PowerDVD Cinema\PowerDVDCinema.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{391519D8-04A9-4A27-B261-3DA8D4881104}] => (Allow) C:\GOG Games\Ashes of the Singularity - Escalation\AshesEscalation.exe (Stardock Entertainment, Inc. -> Stardock Entertainment)
FirewallRules: [{770F7759-200F-47AF-8E45-54238699B86E}] => (Allow) C:\GOG Games\Ashes of the Singularity - Escalation\AshesEscalation.exe (Stardock Entertainment, Inc. -> Stardock Entertainment)
FirewallRules: [{09D0371F-56CC-443B-ACF5-1D6501F6A4F0}] => (Allow) C:\GOG Games\Ashes of the Singularity - Escalation\AshesEscalation.exe (Stardock Entertainment, Inc. -> Stardock Entertainment)
FirewallRules: [{F3C27F0B-6C05-492E-84A3-E71884C4E0D9}] => (Allow) C:\GOG Games\Ashes of the Singularity - Escalation\AshesEscalation.exe (Stardock Entertainment, Inc. -> Stardock Entertainment)
FirewallRules: [{88C99F7A-BEAC-4E5F-B027-8ABEC2F890E8}] => (Allow) C:\GOG Games\Ashes of the Singularity - Escalation\tachyon.exe (Stardock Entertainment, Inc. -> Stardock Entertainment)
FirewallRules: [{14ABF7F2-5026-459F-A30B-AF741C144044}] => (Allow) C:\GOG Games\Ashes of the Singularity - Escalation\tachyon.exe (Stardock Entertainment, Inc. -> Stardock Entertainment)
FirewallRules: [{D82818A2-D2B8-4C4D-AF7F-E8A83B55BC25}] => (Allow) C:\GOG Games\Ashes of the Singularity - Escalation\tachyon.exe (Stardock Entertainment, Inc. -> Stardock Entertainment)
FirewallRules: [{7FCE3B9F-929B-42E1-828C-DA059F866160}] => (Allow) C:\GOG Games\Ashes of the Singularity - Escalation\tachyon.exe (Stardock Entertainment, Inc. -> Stardock Entertainment)
FirewallRules: [TCP Query User{A5594649-EFBF-43A9-9C65-9AAFD77BC10B}C:\gog games\commandos bcd\mpserver.exe] => (Block) C:\gog games\commandos bcd\mpserver.exe () [File not signed]
FirewallRules: [UDP Query User{E1AD4324-0057-44A0-890D-9B27AFF2FE13}C:\gog games\commandos bcd\mpserver.exe] => (Block) C:\gog games\commandos bcd\mpserver.exe () [File not signed]
FirewallRules: [TCP Query User{61A71A93-0482-445D-A27A-0604130EC13F}C:\program files (x86)\electronic arts\kingdoms of amalur - reckoning\reckoning.exe] => (Allow) C:\program files (x86)\electronic arts\kingdoms of amalur - reckoning\reckoning.exe (Big Huge Games) [File not signed]
FirewallRules: [UDP Query User{4BDE7A08-2C29-45F5-8318-A90C1F57449C}C:\program files (x86)\electronic arts\kingdoms of amalur - reckoning\reckoning.exe] => (Allow) C:\program files (x86)\electronic arts\kingdoms of amalur - reckoning\reckoning.exe (Big Huge Games) [File not signed]
FirewallRules: [TCP Query User{D996533A-A176-482C-9710-30668C195DA3}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [UDP Query User{1F483AB8-6B27-4DDC-ADB9-2332E3B26147}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [{7253E336-6023-4865-ADCB-C0923BD0D1ED}] => (Allow) C:\Users\Crhistian Rodriguez\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{927DB87C-EA89-4203-BB42-1B7E92F1A634}] => (Allow) C:\Users\Crhistian Rodriguez\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{22F10720-F6A3-4F4A-814F-C85FDD9D8731}] => (Allow) C:\Users\Crhistian Rodriguez\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{EA2471BD-9D47-4CD0-AB58-367B0FE85302}] => (Allow) C:\Users\Crhistian Rodriguez\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{776DA5DC-D9C3-43B5-B9DE-4591C442A54D}] => (Allow) C:\Users\Crhistian Rodriguez\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{141A0F4B-6D5E-4A99-8750-F2657A6C83DF}] => (Allow) C:\Users\Crhistian Rodriguez\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{E31ECAE5-B84D-4847-AC6B-F6FDECA691E2}] => (Allow) LPort=50248
FirewallRules: [{7A739401-E6EA-4040-8979-12C7ED6331BA}] => (Allow) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneLtdServices.exe (Rosetta Stone Ltd -> Rosetta Stone Ltd.)
FirewallRules: [{A2350227-BA0A-4F63-825A-E8824841EE73}] => (Allow) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneLtdServices.exe (Rosetta Stone Ltd -> Rosetta Stone Ltd.)
FirewallRules: [{08F0DFE2-51A6-4374-A7F8-195BE8F7B891}] => (Allow) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe (Rosetta Stone Ltd -> Rosetta Stone Ltd.)
FirewallRules: [{546ABCE9-437D-4C27-BD53-592F7183EBE8}] => (Allow) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe (Rosetta Stone Ltd -> Rosetta Stone Ltd.)
FirewallRules: [TCP Query User{22B2E11C-487E-43C1-8114-039F0D300949}C:\games\total war warhammer\warhammer.exe] => (Allow) C:\games\total war warhammer\warhammer.exe (The Creative Assembly Ltd) [File not signed]
FirewallRules: [UDP Query User{0CA1DA6D-0267-4D8A-91C8-CD56E1D05EE1}C:\games\total war warhammer\warhammer.exe] => (Allow) C:\games\total war warhammer\warhammer.exe (The Creative Assembly Ltd) [File not signed]
FirewallRules: [TCP Query User{90CE47E8-4B34-4407-BA46-0C7A3A951477}C:\juegos pc 2\emulador wii u\mariokart 8\cemu_1.11.3\cemu.exe] => (Block) C:\juegos pc 2\emulador wii u\mariokart 8\cemu_1.11.3\cemu.exe () [File not signed]
FirewallRules: [UDP Query User{1F58E5AD-F0C3-4D4F-90D6-E77DBFE222C6}C:\juegos pc 2\emulador wii u\mariokart 8\cemu_1.11.3\cemu.exe] => (Block) C:\juegos pc 2\emulador wii u\mariokart 8\cemu_1.11.3\cemu.exe () [File not signed]
FirewallRules: [{7C3CF1AD-E921-402D-B205-96FB7128EC90}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B9710343-E87F-4E5C-BECD-C31A48ADB5F9}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{279FE5ED-4599-4C80-9441-7282F7C43F4A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{1D06688D-D6FB-4DE6-A325-8E2F47D3831D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F21AB8DE-5A33-47B1-863A-22A5B3F4AE03}] => (Allow) C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanion.exe (Sony Mobile Communications AB -> Sony)
FirewallRules: [{6FAC7BD6-87B1-44CF-B5AD-062DC19C5638}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
FirewallRules: [{4F16A5D5-3240-4FD2-A5BB-3F7D5A598EA2}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B1C4B5B0-1FE5-4737-9F94-BF3AF49D1F5A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{052F20A2-3FC1-43EC-AB96-F6B0A6086B1D}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D70188A4-D466-43FD-9FE2-2553DDE2D92A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{98CF382A-6EFE-4F47-A8C6-F4C3312ADFD8}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{3790C1F9-35AA-4AD7-8178-3B7E3EA9F036}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{979F783D-4E1F-43F1-9B44-80D069968B3A}C:\program files (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.194\deploy\leagueclient.exe] => (Allow) C:\program files (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.194\deploy\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [UDP Query User{ABD47AE1-9B29-42A2-B361-D9389AA2136A}C:\program files (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.194\deploy\leagueclient.exe] => (Allow) C:\program files (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.194\deploy\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [TCP Query User{E4225559-7AB0-42C4-9F67-535EA64F8B44}C:\program files (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.196\deploy\leagueclient.exe] => (Allow) C:\program files (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.196\deploy\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [UDP Query User{6F761F8F-5A96-4DEB-9519-3ECB33F67413}C:\program files (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.196\deploy\leagueclient.exe] => (Allow) C:\program files (x86)\league of legends\league of legends\rads\projects\league_client\releases\0.0.0.196\deploy\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [TCP Query User{D0504595-8C91-4570-96C8-32EEF24C857B}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{D11180D3-C160-4E8D-9755-6C76BFDE64F7}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{D2563AC3-BC78-4928-A7F2-F3C51F684248}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2A167674-D6AC-47C0-9A4B-B9D82A4719CE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{360FC1BC-0EA4-4BAF-B1CD-99A51937BA03}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{AD0E59A2-F1C6-4CF0-995E-3B1BCBBABD90}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)

==================== Restore Points =========================

10-04-2019 15:14:42 Windows Update
16-04-2019 20:43:27 JRT Pre-Junkware Removal

==================== Faulty Device Manager Devices =============

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (04/16/2019 08:39:05 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.

Error: (04/16/2019 08:19:14 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.

Error: (04/16/2019 08:16:04 PM) (Source: MSSQL$TEW_SQLEXPRESS) (EventID: 8317) (User: )
Description: Cannot query value 'First Counter' associated with registry key 'HKLM\SYSTEM\CurrentControlSet\Services\MSSQL$TEW_SQLEXPRESS\Performance'. SQL Server performance counters are disabled.

Error: (04/16/2019 07:09:38 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.

Error: (04/16/2019 07:06:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: dwm.exe, versión: 10.0.17763.1, marca de tiempo: 0xe52aabf3
Nombre del módulo con errores: KERNEL32.DLL, versión: 10.0.17763.437, marca de tiempo: 0xa9e3d878
Código de excepción: 0xe0464645
Desplazamiento de errores: 0x0000000000017974
Identificador del proceso con errores: 0x1618
Hora de inicio de la aplicación con errores: 0x01d4f47667fc7468
Ruta de acceso de la aplicación con errores: C:\WINDOWS\system32\dwm.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\System32\KERNEL32.DLL
Identificador del informe: 2d94e6f7-6842-435a-9adc-f4b4e2353573
Nombre completo del paquete con errores: 
Identificador de aplicación relativa del paquete con errores:

Error: (04/16/2019 07:03:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: dwm.exe, versión: 10.0.17763.1, marca de tiempo: 0xe52aabf3
Nombre del módulo con errores: KERNEL32.DLL, versión: 10.0.17763.437, marca de tiempo: 0xa9e3d878
Código de excepción: 0xe0464645
Desplazamiento de errores: 0x0000000000017974
Identificador del proceso con errores: 0x438
Hora de inicio de la aplicación con errores: 0x01d4f47633f8e60e
Ruta de acceso de la aplicación con errores: C:\WINDOWS\system32\dwm.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\System32\KERNEL32.DLL
Identificador del informe: 3b78d4cb-023f-4a4e-8868-0b5263c0c268
Nombre completo del paquete con errores: 
Identificador de aplicación relativa del paquete con errores:

Error: (04/16/2019 04:06:27 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.

Error: (04/16/2019 01:51:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: bad_module_info, versión: 0.0.0.0, marca de tiempo: 0x00000000
Nombre del módulo con errores: unknown, versión: 0.0.0.0, marca de tiempo: 0x00000000
Código de excepción: 0xc0000374
Desplazamiento de errores: 0x00007ffc6c73af89
Identificador del proceso con errores: 0xd0c
Hora de inicio de la aplicación con errores: 0x01d4f4395a55ec91
Ruta de acceso de la aplicación con errores: bad_module_info
Ruta de acceso del módulo con errores: unknown
Identificador del informe: 56571187-c109-479f-b9a2-3fb520d61041
Nombre completo del paquete con errores: 
Identificador de aplicación relativa del paquete con errores:


System errors:
=============
Error: (04/16/2019 08:52:25 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-3LB1VVH)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 y APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 al usuario DESKTOP-3LB1VVH\Crhistian Rodriguez con SID (S-1-5-21-3188641711-1092517058-1664681219-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (04/16/2019 08:45:31 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio NVIDIA LocalSystem Container terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 6000 milisegundos: Reiniciar el servicio.

Error: (04/16/2019 08:45:31 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio NVIDIA Display Container LS terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 6000 milisegundos: Reiniciar el servicio.

Error: (04/16/2019 08:41:24 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-3LB1VVH)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 y APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 al usuario DESKTOP-3LB1VVH\Crhistian Rodriguez con SID (S-1-5-21-3188641711-1092517058-1664681219-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (04/16/2019 08:37:56 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: La configuración de permisos específico de la aplicación no concede el permiso Iniciar Local para la aplicación de servidor COM con CLSID 
Windows.SecurityCenter.WscDataProtection
 y APPID 
No disponible
 al usuario NT AUTHORITY\SYSTEM con SID (S-1-5-18) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (04/16/2019 08:37:56 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: La configuración de permisos específico de la aplicación no concede el permiso Iniciar Local para la aplicación de servidor COM con CLSID 
Windows.SecurityCenter.WscBrokerManager
 y APPID 
No disponible
 al usuario NT AUTHORITY\SYSTEM con SID (S-1-5-18) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (04/16/2019 08:37:56 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: La configuración de permisos específico de la aplicación no concede el permiso Iniciar Local para la aplicación de servidor COM con CLSID 
Windows.SecurityCenter.SecurityAppBroker
 y APPID 
No disponible
 al usuario NT AUTHORITY\SYSTEM con SID (S-1-5-18) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (04/16/2019 08:35:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio SWVisualize2018.BoostService no pudo iniciarse debido al siguiente error: 
El servicio no respondió a tiempo a la solicitud de inicio o de control.


Windows Defender:
===================================
Date: 2019-04-15 23:31:22.884
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {4AC3AF7C-D078-47A6-8156-52A0C94262D5}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-04-14 01:31:13.869
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {26032D11-1C77-446F-ACD2-234FABA71B34}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-04-12 16:35:01.693
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {78AA5AAF-9BEC-49FD-A4FA-342D5E5490C0}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-04-12 14:57:44.628
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {EE69340D-E62E-4A80-A945-4CE974889E4C}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-04-12 13:36:00.324
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {992EB8E8-5B5C-4494-BDEB-1D55978289F0}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7-3770K CPU @ 3.50GHz
Percentage of memory in use: 22%
Total physical RAM: 16265.9 MB
Available physical RAM: 12556.46 MB
Total Virtual: 18697.9 MB
Available Virtual: 13643.05 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:1861.68 GB) (Free:72.56 GB) NTFS
Drive d: (Digital_LG) (CDROM) (Total:0.66 GB) (Free:0 GB) CDFS
Drive i: (ESPECTRO) (Fixed) (Total:931.51 GB) (Free:19.38 GB) NTFS

\\?\Volume{3b126507-0000-0000-0000-100000000000}\ (Reservado para el sistema) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS
\\?\Volume{3b126507-0000-0000-0000-e08ad1010000}\ () (Fixed) (Total:0.84 GB) (Free:0.44 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: E19A5F66)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 3B126507)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=1861.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=865 MB) - (Type=27)

==================== End of Addition.txt ============================

Debo agradecer la atención, desde ayer hice varias pruebas y mejoró definitivamente, siento que está normal de nuevo, creo que las herramientas han sido las apropiadas.:grinning:

Quisiera preguntar si hay algo mas que hacer, que no se encuentre terminado? los resultados son visiblemente los correcto pero confio en los expertos.

Gracias Javier, y al equipo de Spyware

#18

Hola.

Todavía NO hemos terminado. :roll_eyes:

Bien… y ahora sigue estos pasos, :arrow_forward: MUY Importante :arrow_backward: Realiza una copia de seguridad del registro :

  • Para hacerlo descarga :arrow_forward: DelFix.exe(en tu escritorio).

  • Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona -Ejecutar como Administrador-).

  • Atención, ahora marca/selecciona únicamente la casilla :white_check_mark: Create registry backup, las demás casillas NO. :face_with_monocle:

  • Pulsar en Run.

Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.

:warning: Con los demás programas cerrados ve a :arrow_forward: Inicio :arrow_forward: Ejecutar :arrow_forward: y escribe Notepad.exe.

  • Ahora debes copiar y pegar los códigos/líneas que están en el interior del recuadro de más abajo, dentro del Notepad.
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
Task: {71D32C8E-40E5-4349-AA86-A72580004C33} - System32\Tasks\temp => C:\Windows\System32\shutdown.exe (Microsoft Windows -> Microsoft Corporation)
Task: {BD0CCC64-42CB-4542-91AA-BBDF7CF2058E} - System32\Tasks\cFos\Registration Tasks\Open Browser => c:\program files (x86)\google\chrome\application\chrome.exe "hxxp://www.cfos.de/en/cfosspeed/documentation/driver-not-loaded.htm?reg-10.10.2238-asrock&days=1"
WMI:subscription\__FilterToConsumerBinding->\\.\root\subscription:ActiveScriptEventConsumer.Name=\"ASEC\"",Filter="\\.\root\subscription:__EventFilter.Name=\"EventFilter sethomePage2\":: <==== ATTENTION
WMI:subscription\__TimerInstruction->SethomePage Interval Timer:: <==== ATTENTION
WMI:subscription\__IntervalTimerInstruction->SethomePage Interval Timer:: <==== ATTENTION
WMI:subscription\__EventFilter->EventFilter sethomePage2::[Query => Select * From __timerevent Where TimerId = "SethomePage Interval Timer"] <==== ATTENTION
AlternateDataStreams: C:\desktop.ini:CachedTiles [478]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [472]
HKU\S-1-5-21-3188641711-1092517058-1664681219-1001\Software\Classes\regfile: regedit.exe "%1" <==== ATTENTION
HKU\S-1-5-21-3188641711-1092517058-1664681219-1001\...\Policies\Explorer: []
GroupPolicy: Restriction ? <==== ATTENTION
2016-04-14 11:52 - 2016-04-14 11:52 - 002174976 _____ (Advanced Micro Devices Inc.) C:\Program Files (x86)\Common Files\atimpenc.dll
2017-02-19 08:00 - 2017-02-19 20:21 - 000001173 _____ () C:\Users\Crhistian Rodriguez\AppData\Roaming\KB8888239.log
2017-02-03 16:05 - 2019-04-16 16:06 - 000007634 _____ () C:\Users\Crhistian Rodriguez\AppData\Local\Resmon.ResmonCfg
2017-12-17 11:34 - 2017-12-17 11:34 - 000000000 _____ () C:\Users\Crhistian Rodriguez\AppData\Local\{A5333124-D793-4694-8EC2-359F8B7A84E6}
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END

Guárdalo bajo el nombre de FIXLIST.TXT en el escritorio :arrow_backward: Esto es muy importante.

:o: Nota :o: Es importante que la herramienta FRST.exe(Farbar Recovery Scanner Tool) y FIXLIST.TXT se encuentren en la misma ubicación (escritorio) o si no, no trabajara.

Y ahora usa el 2º MÉTODO: de esta Faq de Windows 8(aplicable a Windows 10) :arrow_forward: ¿Cómo iniciar Windows 8/8.1 en Modo Seguro?, para trabajar desde ese modo de windows.

  • Ejecuta FRST.exe.(Si usas Windows Vista/7/8 o 10, presiona clic derecho y seleccionas -Ejecutar como Administrador-).

  • Presionar el botón FIX y aguardar a que termine.

  • La Herramienta guardara el reporte de reparación en el escritorio (FIXLOG.TXT).

Pegar el contenido de este fichero en tu próxima respuesta. :+1:

Reiniciar el equipo y comprobar su funcionamiento en relación al problema planteado y comentarlo.

Saludos.

#19
Fix result of Farbar Recovery Scan Tool (x64) Version: 17.04.2019
Ran by Crhistian Rodriguez (18-04-2019 13:52:39) Run:1
Running from C:\Users\Crhistian Rodriguez\Desktop
Loaded Profiles: Crhistian Rodriguez (Available Profiles: defaultuser0 & Crhistian Rodriguez)
Boot Mode: Safe Mode (with Networking)
==============================================

fixlist content:
*****************
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
Task: {71D32C8E-40E5-4349-AA86-A72580004C33} - System32\Tasks\temp => C:\Windows\System32\shutdown.exe (Microsoft Windows -> Microsoft Corporation)
Task: {BD0CCC64-42CB-4542-91AA-BBDF7CF2058E} - System32\Tasks\cFos\Registration Tasks\Open Browser => c:\program files (x86)\google\chrome\application\chrome.exe "hxxp://www.cfos.de/en/cfosspeed/documentation/driver-not-loaded.htm?reg-10.10.2238-asrock&days=1"
WMI:subscription\__FilterToConsumerBinding->\\.\root\subscription:ActiveScriptEventConsumer.Name=\"ASEC\"",Filter="\\.\root\subscription:__EventFilter.Name=\"EventFilter sethomePage2\":: <==== ATTENTION
WMI:subscription\__TimerInstruction->SethomePage Interval Timer:: <==== ATTENTION
WMI:subscription\__IntervalTimerInstruction->SethomePage Interval Timer:: <==== ATTENTION
WMI:subscription\__EventFilter->EventFilter sethomePage2::[Query => Select * From __timerevent Where TimerId = "SethomePage Interval Timer"] <==== ATTENTION
AlternateDataStreams: C:\desktop.ini:CachedTiles [478]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [472]
HKU\S-1-5-21-3188641711-1092517058-1664681219-1001\Software\Classes\regfile: regedit.exe "%1" <==== ATTENTION
HKU\S-1-5-21-3188641711-1092517058-1664681219-1001\...\Policies\Explorer: []
GroupPolicy: Restriction ? <==== ATTENTION
2016-04-14 11:52 - 2016-04-14 11:52 - 002174976 _____ (Advanced Micro Devices Inc.) C:\Program Files (x86)\Common Files\atimpenc.dll
2017-02-19 08:00 - 2017-02-19 20:21 - 000001173 _____ () C:\Users\Crhistian Rodriguez\AppData\Roaming\KB8888239.log
2017-02-03 16:05 - 2019-04-16 16:06 - 000007634 _____ () C:\Users\Crhistian Rodriguez\AppData\Local\Resmon.ResmonCfg
2017-12-17 11:34 - 2017-12-17 11:34 - 000000000 _____ () C:\Users\Crhistian Rodriguez\AppData\Local\{A5333124-D793-4694-8EC2-359F8B7A84E6}
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END
*****************

Error: Restore point can only be created in normal mode.
Processes closed successfully.
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{71D32C8E-40E5-4349-AA86-A72580004C33}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{71D32C8E-40E5-4349-AA86-A72580004C33}" => removed successfully
C:\WINDOWS\System32\Tasks\temp => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\temp" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BD0CCC64-42CB-4542-91AA-BBDF7CF2058E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BD0CCC64-42CB-4542-91AA-BBDF7CF2058E}" => removed successfully
C:\WINDOWS\System32\Tasks\cFos\Registration Tasks\Open Browser => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\cFos\Registration Tasks\Open Browser" => removed successfully
"\\.\root\subscription:ActiveScriptEventConsumer.Name=\"ASEC\"",Filter="\\.\root\subscription:__EventFilter.Name=\"EventFilter sethomePage2\"" => removed successfully
"SethomePage Interval Timer" => removed successfully
"SethomePage Interval Timer" => not found
"EventFilter sethomePage2" => removed successfully
C:\desktop.ini => ":CachedTiles" ADS removed successfully
C:\Users\Public\Shared Files => ":VersionCache" ADS removed successfully
HKU\S-1-5-21-3188641711-1092517058-1664681219-1001\Software\Classes\regfile => removed successfully
"HKU\S-1-5-21-3188641711-1092517058-1664681219-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\" => removed successfully
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => moved successfully
C:\Program Files (x86)\Common Files\atimpenc.dll => moved successfully
C:\Users\Crhistian Rodriguez\AppData\Roaming\KB8888239.log => moved successfully
C:\Users\Crhistian Rodriguez\AppData\Local\Resmon.ResmonCfg => moved successfully
C:\Users\Crhistian Rodriguez\AppData\Local\{A5333124-D793-4694-8EC2-359F8B7A84E6} => moved successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-21-3188641711-1092517058-1664681219-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-21-3188641711-1092517058-1664681219-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully


========= End of RemoveProxy: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= End of CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows


Adaptador de Ethernet Ethernet:

   Sufijo DNS espec¡fico para la conexi¢n. . : Home
   V¡nculo: direcci¢n IPv6 local. . . : fe80::8c2:1e4f:4e3d:5ccb%28
   Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.1.12
   M scara de subred . . . . . . . . . . . . : 255.255.255.0
   Puerta de enlace predeterminada . . . . . : 192.168.1.1

========= End of CMD: =========


========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

========= End of CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.

Unable to connect to BITS - 0x8007043c

========= End of CMD: =========


========= netsh advfirewall reset =========

Aceptar


========= End of CMD: =========


========= netsh advfirewall set allprofiles state ON =========

Aceptar


========= End of CMD: =========


========= netsh int ipv4 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= End of CMD: =========


========= netsh int ipv6 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= End of CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 9461760 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 49037052 B
Java, Flash, Steam htmlcache => 22405533 B
Windows/system/drivers => 128469048 B
Edge => 615895 B
Chrome => 384507957 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
LocalService => 0 B
NetworkService => 4854 B
NetworkService => 0 B
defaultuser0 => 0 B
Crhistian Rodriguez => 37027183 B

RecycleBin => 0 B
EmptyTemp: => 602.3 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 13:53:28 ====
#20

Dejo la copia del fixlog, me gustaría consultar si es posible, a modo de resumen y en palabras que podamos entender toda la comunidad, que se ha realizado y cual era el problema que me estaba afectando, debo enfatizar que ya no tengo la ralentización del sistema que tenía, y quiesiera saber que me estaba sucediendo.

El sistema operativo trabaja mucho mejor, Gracias!!!

Saludos.

#21

Perfecto @Cristian_cat :+1: excelente, nos alegra ver que ya está el problema inicial completamente arreglado, ahora solo queda eliminar las herramientas usadas.

Para hacerlo descarga :arrow_forward: DelFix.exe en tu escritorio.

  • Doble clic para ejecutarlo. (Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona - Ejecutar como Administrador -).

  • Marca todas las casillas, y pulsas en Run

Se abrirá el informe (DelFix.txt), puedes cerrarlo.

En cuanto a tu pregunta, poco hay que explicar, con mirar los informes que pusiste y ver la cantidad de infecciones que tenias se entiende perfectamente cual era tu problema(o el de otros muchos usuarios) que os infectáis por instalar todo tipo de porquerías. :face_vomiting: :crazy_face:


Para cualquier otro problema, no dudes en volver a postear., ya sabes dónde estamos. :+1:

Tema Solucionado.

Saludos, Javier.

cerrado #22